Exemplo n.º 1
0
 def test_direct_hkdf_extract_with_invalid_key(self):
     key = COSEKey.from_symmetric_key(key="a", alg="HS256")
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     with pytest.raises(ValueError) as err:
         ctx.extract(key, alg="A128GCM")
         pytest.fail("extract() should fail.")
     assert "context should be set." in str(err.value)
Exemplo n.º 2
0
 def test_direct_hkdf_verify_key_with_invalid_material(self):
     material = COSEKey.from_symmetric_key(
         key=base64url_decode(
             "hJtXIZ2uSN5kbQfbtTNWbpdmhkV8FJG-Onbc6mxCcYg"),
         alg="A256GCM",
     )
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     context = {
         "alg": "AES-CCM-16-64-128",
         "party_u": {
             "identity": "lighting-client",
         },
         "party_v": {
             "identity": "lighting-server",
         },
         "supp_pub": {
             "other": "Encryption Example 02",
         },
     }
     key = ctx.apply(
         material,
         context=context,
     )
     with pytest.raises(VerifyError) as err:
         ctx.verify_key(
             b"xxxxxxxxxx",
             key.key,
             context=context,
         )
         pytest.fail("verify_key() should fail.")
     assert "Failed to verify key." in str(err.value)
Exemplo n.º 3
0
 def test_direct_hkdf_verify_key(self):
     material = COSEKey.from_symmetric_key(
         key=base64url_decode(
             "hJtXIZ2uSN5kbQfbtTNWbpdmhkV8FJG-Onbc6mxCcYg"),
         alg="A256GCM",
     )
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     context = {
         "alg": "AES-CCM-16-64-128",
         "party_u": {
             "identity": "lighting-client",
         },
         "party_v": {
             "identity": "lighting-server",
         },
         "supp_pub": {
             "other": "Encryption Example 02",
         },
     }
     key = ctx.apply(material, context=context)
     ctx.verify_key(
         base64url_decode("hJtXIZ2uSN5kbQfbtTNWbpdmhkV8FJG-Onbc6mxCcYg"),
         key.key,
         context=context,
     )
Exemplo n.º 4
0
 def test_direct_hkdf_apply_without_alg(self):
     material = COSEKey.from_symmetric_key(token_bytes(16))
     ctx = DirectHKDF({1: -10}, {4: b"01"})
     with pytest.raises(ValueError) as err:
         ctx.apply(material)
         pytest.fail("apply() should fail.")
     assert "context should be set." in str(err.value)
Exemplo n.º 5
0
 def test_direct_hkdf_extract_with_invalid_context(self):
     key = COSEKey.from_symmetric_key(alg="A128GCM")
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     with pytest.raises(ValueError) as err:
         ctx.extract(key, alg="A128GCM", context=[None, None, None])
         pytest.fail("extract() should fail.")
     assert "Invalid context information." in str(err.value)
Exemplo n.º 6
0
 def test_direct_hkdf_apply_with_invalid_context(self, invalid, msg):
     material = COSEKey.from_symmetric_key(
         key=base64url_decode(
             "hJtXIZ2uSN5kbQfbtTNWbpdmhkV8FJG-Onbc6mxCcYg"),
         alg="A256GCM",
     )
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     with pytest.raises(ValueError) as err:
         ctx.apply(key=material, context=invalid)
         pytest.fail("apply() should fail.")
     assert msg in str(err.value)
Exemplo n.º 7
0
 def test_direct_hkdf_extract_with_raw_context(self):
     context = [
         10,
         [b"lighting-client", None, None],
         [b"lighting-server", None, None],
         [128, cbor2.dumps({1: -10}), b"Encryption Example 02"],
     ]
     key = COSEKey.from_symmetric_key(alg="A128GCM")
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     decoded = ctx.extract(key, context=context)
     assert decoded.alg == 10
     assert len(decoded.key) == 16
Exemplo n.º 8
0
 def test_direct_hkdf_apply_without_salt(self):
     context = [
         10,
         [b"lighting-client", None, None],
         [b"lighting-server", None, None],
         [128, cbor2.dumps({1: -10}), b"Encryption Example 02"],
     ]
     material = COSEKey.from_symmetric_key(token_bytes(16))
     ctx = DirectHKDF({1: -10}, {4: b"01"})
     key = ctx.apply(material, context=context)
     assert key.alg == 10
     assert len(key.key) == 16
Exemplo n.º 9
0
 def test_direct_hkdf_verify_key_with_raw_context(self):
     material = COSEKey.from_symmetric_key(
         key=base64url_decode(
             "hJtXIZ2uSN5kbQfbtTNWbpdmhkV8FJG-Onbc6mxCcYg"),
         alg="A256GCM",
     )
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     context = [
         10,
         [b"lighting-client", None, None],
         [b"lighting-server", None, None],
         [128, cbor2.dumps({1: -10}), b"Encryption Example 02"],
     ]
     key = ctx.apply(material, context=context)
     ctx.verify_key(
         base64url_decode("hJtXIZ2uSN5kbQfbtTNWbpdmhkV8FJG-Onbc6mxCcYg"),
         key.key,
         context=context,
     )
Exemplo n.º 10
0
 def test_direct_hkdf_apply_with_invalid_material(self):
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     with pytest.raises(ValueError) as err:
         ctx.apply(
             key=None,
             context={
                 "alg": "AES-CCM-16-64-128",
                 "party_u": {
                     "identity": "lighting-client",
                 },
                 "party_v": {
                     "identity": "lighting-server",
                 },
                 "supp_pub": {
                     "other": "Encryption Example 02",
                 },
             },
         )
         pytest.fail("apply() should fail.")
     assert "key should be set." in str(err.value)
Exemplo n.º 11
0
 def test_direct_hkdf_apply_with_invalid_key(self):
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     with pytest.raises(EncodeError) as err:
         ctx.apply(
             key=base64url_decode(
                 "hJtXIZ2uSN5kbQfbtTNWbpdmhkV8FJG-Onbc6mxCcYg"),
             context={
                 "alg": "AES-CCM-16-64-128",
                 "party_u": {
                     "identity": "lighting-client",
                 },
                 "party_v": {
                     "identity": "lighting-server",
                 },
                 "supp_pub": {
                     "other": "Encryption Example 02",
                 },
             },
         )
         pytest.fail("apply() should fail.")
     assert "Failed to derive key." in str(err.value)
Exemplo n.º 12
0
 def test_direct_hkdf_extract_with_json_context(self, alg, alg_id, key_len):
     key = COSEKey.from_symmetric_key(alg="A128GCM")
     ctx = DirectHKDF({1: -10}, {-20: b"aabbccddeeff"})
     decoded = ctx.extract(key, context={"alg": alg})
     assert decoded.alg == alg_id
     assert len(decoded.key) == key_len
Exemplo n.º 13
0
 def test_direct_hkdf_constructor_with_invalid_arg(self, protected,
                                                   unprotected, msg):
     with pytest.raises(ValueError) as err:
         DirectHKDF(protected, unprotected)
         pytest.fail("DirectHKDF() should fail.")
     assert msg in str(err.value)
Exemplo n.º 14
0
 def test_direct_hkdf_constructor_with_hkdf_sha_512(self):
     ctx = DirectHKDF({1: -11}, {-20: b"aabbccddeeff"})
     assert isinstance(ctx, DirectHKDF)
     assert ctx.alg == -11
Exemplo n.º 15
0
 def test_direct_hkdf_constructor_with_party_u_nonce(self):
     ctx = DirectHKDF({1: -10}, {-22: b"aabbccddeeff"})
     assert isinstance(ctx, DirectHKDF)
     assert ctx.alg == -10