def prepare_db(self, base_dir):
self.pib_file = os.path.join(base_dir, 'pib.db')
self.tpm_dir = os.path.join(base_dir, 'ndnsec-key-file')
KeychainSqlite3.initialize(self.pib_file, 'tpm-file', self.tpm_dir)
def test_signing_suggest():
with TemporaryDirectory() as tmpdirname:
pib_file = os.path.join(tmpdirname, 'pib.db')
tpm_dir = os.path.join(tmpdirname, 'privKeys')
KeychainSqlite3.initialize(pib_file, 'tpm-file', tpm_dir)
keychain = KeychainSqlite3(pib_file, TpmFile(tpm_dir))
assert len(keychain) == 0
la_id = keychain.touch_identity('/la')
la_cert = la_id.default_key().default_cert().data
la_cert_data = parse_certificate(la_cert)
la_cert_name = la_cert_data.name
la_signer = keychain.get_signer({'cert': la_cert_name})
la_author_id = keychain.touch_identity('/la/author/1')
la_author_cert_name, la_author_cert = derive_cert(la_author_id.default_key().name,
Component.from_str('la-signer'),
la_cert_data.content, la_signer,
datetime.utcnow(), 100)
keychain.import_cert(la_id.default_key().name, la_author_cert_name, la_author_cert)
ny_id = keychain.touch_identity('/ny')
ny_cert = ny_id.default_key().default_cert().data
ny_cert_data = parse_certificate(ny_cert)
ny_cert_name = ny_cert_data.name
ny_signer = keychain.get_signer({'cert': ny_cert_name})
ny_author_id = keychain.touch_identity('/ny/author/2')
ny_author_cert_name, ny_author_cert = derive_cert(ny_author_id.default_key().name,
Component.from_str('ny-signer'),
ny_cert_data.content, ny_signer,
datetime.utcnow(), 100)
keychain.import_cert(ny_id.default_key().name, ny_author_cert_name, ny_author_cert)
lvs = r'''
#KEY: "KEY"/_/_/_
#article: /"article"/_topic/_ & { _topic: "eco" | "spo" } <= #author
#author: /site/"author"/_/#KEY <= #anchor
#anchor: /site/#KEY & {site: "la" | "ny" }
'''
checker = Checker(compile_lvs(lvs), {})
assert checker.suggest("/article/eco/day1", keychain) == la_author_cert_name
assert checker.suggest("/article/life/day1", keychain) is None
lvs = r'''
#KEY: "KEY"/_/_/_
#LAKEY: "KEY"/_/_signer/_ & { _signer: "la-signer" }
#article: /"article"/_topic/_ & { _topic: "eco" | "spo" } <= #author
#author: /site/"author"/_/#LAKEY <= #anchor
#anchor: /site/#KEY & {site: "la"}
'''
checker = Checker(compile_lvs(lvs), {})
assert checker.suggest("/article/eco/day1", keychain) == la_author_cert_name
lvs = r'''
#KEY: "KEY"/_/_/_version & { _version: $eq_type("v=0") }
#article: /"article"/_topic/_ & { _topic: "life" | "fin" } <= #author
#author: /site/"author"/_/#KEY & { site: "ny" } <= #anchor
#anchor: /site/#KEY & { site: "ny" }
'''
checker = Checker(compile_lvs(lvs), DEFAULT_USER_FNS)
assert checker.suggest("/article/fin/day1", keychain) == ny_author_cert_name
lvs = r'''
#KEY: "KEY"/_/_/_version & { _version: $eq_type("v=0") }
#NYKEY: "KEY"/_/_signer/_version& { _signer: "ny-signer", _version: $eq_type("v=0")}
#article: /"article"/_topic/_ <= #author
#author: /site/"author"/_/#NYKEY <= #anchor
#anchor: /site/#KEY & {site: "ny"}
#site: "ny"
'''
checker = Checker(compile_lvs(lvs), DEFAULT_USER_FNS)
assert checker.suggest("/article/eco/day1", keychain) == ny_author_cert_name