def test_anybody_can_verify(): """ In the last example, we used the lower-level Crypto API to verify the signature. Here, we show that anybody can do it without needing to directly access Crypto. """ # Alice can sign by default, by dint of her _default_crypto_powerups. alice = Alice() # So, our story is fairly simple: an everyman meets Alice. somebody = Character() somebody.learn_about_actor(alice) # Alice signs a message. message = b"A message for all my friends who can only verify and not sign." signature = alice.seal(message) # Our everyman can verify it. verification, cleartext = somebody.verify_from(alice, message, signature, decrypt=False) assert verification is True assert cleartext is NO_DECRYPTION_PERFORMED
def test_trying_to_find_unknown_actor_raises_not_found(): tony_clifton = Character() message = b"some_message" signature = ALICE.seal(message) # Tony can't reference Alice... with pytest.raises(Character.NotFound): verification = tony_clifton.verify_from(ALICE, signature, message) # ...before learning about Alice. tony_clifton.learn_about_actor(ALICE) verification, NO_DECRYPTION_PERFORMED = tony_clifton.verify_from(ALICE, signature, message) assert verification is True
def test_character_with_encrypting_power_can_encrypt(): """ Now, a Character *with* EncryptingKeyPair can encrypt. """ can_sign_and_encrypt = Character(crypto_power_ups=[SigningPower, EncryptingPower]) ursula = Ursula() can_sign_and_encrypt.learn_about_actor(ursula) cleartext = b"This is Officer Rod Farva. Come in, Ursula! Come in Ursula!" # TODO: Make encrypt_for actually encrypt. ciphertext, signature = can_sign_and_encrypt.encrypt_for(ursula, cleartext, sign=False) assert signature == NOT_SIGNED assert ciphertext is not None # annnd fail.
def test_trying_to_find_unknown_actor_raises_not_found(alice): """ Tony the test character can't make reference to a character he doesn't know about yet. """ tony_clifton = Character() message = b"some_message" signature = alice.seal(message) # Tony can't reference Alice... with pytest.raises(Character.NotFound): verification = tony_clifton.verify_from(alice, signature, message) # ...before learning about Alice. tony_clifton.learn_about_actor(alice) verification, NO_DECRYPTION_PERFORMED = tony_clifton.verify_from(alice, message, signature) assert verification is True
def test_signing_only_power_cannot_encrypt(): """ Similar to the above with signing, here we show that a Character without the EncryptingKeypair PowerUp can't encrypt. """ # Here's somebody who can sign but not encrypt. can_sign_but_not_encrypt = Character(crypto_power_ups=[SigningPower]) # ..and here's Ursula, for whom our Character above wants to encrypt. ursula = Ursula() # They meet. can_sign_but_not_encrypt.learn_about_actor(ursula) # The Character has the message ready... cleartext = "This is Officer Rod Farva. Come in, Ursula! Come in Ursula!" # But without the proper PowerUp, no encryption happens. with pytest.raises(NoEncryptingPower) as e_info: can_sign_but_not_encrypt.encrypt_for(ursula, cleartext)