mirror of
https://github.com/tahoe-lafs/tahoe-lafs.git
synced 2025-01-15 09:19:49 +00:00
1070 lines
45 KiB
Python
1070 lines
45 KiB
Python
"""
|
|
Ported to Python 3.
|
|
"""
|
|
from __future__ import absolute_import
|
|
from __future__ import division
|
|
from __future__ import print_function
|
|
from __future__ import unicode_literals
|
|
|
|
from future.utils import PY2
|
|
if PY2:
|
|
from future.builtins import filter, map, zip, ascii, chr, hex, input, next, oct, open, pow, round, super, bytes, dict, list, object, range, str, max, min # noqa: F401
|
|
|
|
from six import ensure_binary, ensure_text
|
|
|
|
import os, re, itertools
|
|
from base64 import b32decode
|
|
import json
|
|
from mock import Mock, patch
|
|
|
|
from testtools.matchers import (
|
|
Is,
|
|
)
|
|
|
|
from twisted.internet import defer, address
|
|
from twisted.python import log
|
|
from twisted.python.filepath import FilePath
|
|
from twisted.web.template import flattenString
|
|
|
|
from foolscap.api import Tub, Referenceable, fireEventually, flushEventualQueue
|
|
from twisted.application import service
|
|
from allmydata.crypto import ed25519
|
|
from allmydata.crypto.util import remove_prefix
|
|
from allmydata.crypto.error import BadSignature
|
|
from allmydata.interfaces import InsufficientVersionError
|
|
from allmydata.introducer.client import IntroducerClient
|
|
from allmydata.introducer.server import IntroducerService, FurlFileConflictError
|
|
from allmydata.introducer.common import get_tubid_string_from_ann, \
|
|
get_tubid_string, sign_to_foolscap, unsign_from_foolscap, \
|
|
UnknownKeyError
|
|
from allmydata.node import (
|
|
create_node_dir,
|
|
read_config,
|
|
)
|
|
# the "new way" to create introducer node instance
|
|
from allmydata.introducer.server import create_introducer
|
|
from allmydata.web import introweb
|
|
from allmydata.client import (
|
|
create_client,
|
|
create_introducer_clients,
|
|
)
|
|
from allmydata.util import pollmixin, idlib, fileutil, yamlutil
|
|
from allmydata.util.iputil import (
|
|
listenOnUnused,
|
|
)
|
|
from allmydata.scripts.common import (
|
|
write_introducer,
|
|
)
|
|
import allmydata.test.common_util as testutil
|
|
from .common import (
|
|
SyncTestCase,
|
|
AsyncTestCase,
|
|
AsyncBrokenTestCase,
|
|
)
|
|
|
|
class LoggingMultiService(service.MultiService):
|
|
def log(self, msg, **kw):
|
|
log.msg(msg, **kw)
|
|
|
|
class Node(testutil.SignalMixin, testutil.ReallyEqualMixin, AsyncTestCase):
|
|
|
|
def test_backwards_compat_import(self):
|
|
# for old introducer .tac files
|
|
from allmydata.introducer import IntroducerNode
|
|
IntroducerNode # pyflakes
|
|
|
|
@defer.inlineCallbacks
|
|
def test_create(self):
|
|
"""
|
|
A brand new introducer creates its config dir
|
|
"""
|
|
basedir = "introducer.IntroducerNode.test_create"
|
|
yield create_introducer(basedir)
|
|
self.assertTrue(os.path.exists(basedir))
|
|
|
|
def test_introducer_clients_unloadable(self):
|
|
"""
|
|
Error if introducers.yaml exists but we can't read it
|
|
"""
|
|
basedir = u"introducer.IntroducerNode.test_introducer_clients_unloadable"
|
|
os.mkdir(basedir)
|
|
os.mkdir(os.path.join(basedir, u"private"))
|
|
yaml_fname = os.path.join(basedir, u"private", u"introducers.yaml")
|
|
with open(yaml_fname, 'w') as f:
|
|
f.write(u'---\n')
|
|
os.chmod(yaml_fname, 0o000)
|
|
self.addCleanup(lambda: os.chmod(yaml_fname, 0o700))
|
|
# just mocking the yaml failure, as "yamlutil.safe_load" only
|
|
# returns None on some platforms for unreadable files
|
|
|
|
with patch("allmydata.client.yamlutil") as p:
|
|
p.safe_load = Mock(return_value=None)
|
|
|
|
fake_tub = Mock()
|
|
config = read_config(basedir, "portnum")
|
|
|
|
with self.assertRaises(EnvironmentError):
|
|
create_introducer_clients(config, fake_tub)
|
|
|
|
@defer.inlineCallbacks
|
|
def test_furl(self):
|
|
basedir = "introducer.IntroducerNode.test_furl"
|
|
create_node_dir(basedir, "testing")
|
|
public_fn = os.path.join(basedir, "introducer.furl")
|
|
private_fn = os.path.join(basedir, "private", "introducer.furl")
|
|
|
|
q1 = yield create_introducer(basedir)
|
|
del q1
|
|
# new nodes create unguessable furls in private/introducer.furl
|
|
ifurl = fileutil.read(private_fn, mode="r")
|
|
self.failUnless(ifurl)
|
|
ifurl = ifurl.strip()
|
|
self.failIf(ifurl.endswith("/introducer"), ifurl)
|
|
|
|
# old nodes created guessable furls in BASEDIR/introducer.furl
|
|
guessable = ifurl[:ifurl.rfind("/")] + "/introducer"
|
|
fileutil.write(public_fn, guessable+"\n", mode="w") # text
|
|
|
|
# if we see both files, throw an error
|
|
with self.assertRaises(FurlFileConflictError):
|
|
yield create_introducer(basedir)
|
|
|
|
# when we see only the public one, move it to private/ and use
|
|
# the existing furl instead of creating a new one
|
|
os.unlink(private_fn)
|
|
|
|
q2 = yield create_introducer(basedir)
|
|
del q2
|
|
self.failIf(os.path.exists(public_fn))
|
|
ifurl2 = fileutil.read(private_fn, mode="r")
|
|
self.failUnless(ifurl2)
|
|
self.failUnlessEqual(ifurl2.strip(), guessable)
|
|
|
|
@defer.inlineCallbacks
|
|
def test_web_static(self):
|
|
basedir = u"introducer.Node.test_web_static"
|
|
create_node_dir(basedir, "testing")
|
|
fileutil.write(os.path.join(basedir, "tahoe.cfg"),
|
|
"[node]\n" +
|
|
"web.port = tcp:0:interface=127.0.0.1\n" +
|
|
"web.static = relative\n")
|
|
c = yield create_introducer(basedir)
|
|
w = c.getServiceNamed("webish")
|
|
abs_basedir = fileutil.abspath_expanduser_unicode(basedir)
|
|
expected = fileutil.abspath_expanduser_unicode(u"relative", abs_basedir)
|
|
self.failUnlessReallyEqual(w.staticdir, expected)
|
|
|
|
|
|
class ServiceMixin(object):
|
|
def setUp(self):
|
|
self.parent = LoggingMultiService()
|
|
self.parent.startService()
|
|
return super(ServiceMixin, self).setUp()
|
|
|
|
def tearDown(self):
|
|
log.msg("TestIntroducer.tearDown")
|
|
d = defer.maybeDeferred(super(ServiceMixin, self).tearDown)
|
|
d.addCallback(lambda res: self.parent.stopService())
|
|
d.addCallback(flushEventualQueue)
|
|
return d
|
|
|
|
class Introducer(ServiceMixin, AsyncTestCase):
|
|
def test_create(self):
|
|
ic = IntroducerClient(None, "introducer.furl", u"my_nickname",
|
|
"my_version", "oldest_version", fakeseq,
|
|
FilePath(self.mktemp()))
|
|
self.failUnless(isinstance(ic, IntroducerClient))
|
|
|
|
def test_listen(self):
|
|
i = IntroducerService()
|
|
i.setServiceParent(self.parent)
|
|
|
|
|
|
def fakeseq():
|
|
return 1, "nonce"
|
|
|
|
seqnum_counter = itertools.count(1)
|
|
def realseq():
|
|
return next(seqnum_counter), str(os.randint(1,100000))
|
|
|
|
def make_ann(furl):
|
|
ann = { "anonymous-storage-FURL": furl,
|
|
"permutation-seed-base32": get_tubid_string(furl) }
|
|
return ann
|
|
|
|
def make_ann_t(ic, furl, privkey, seqnum):
|
|
assert privkey
|
|
ann_d = ic.create_announcement_dict("storage", make_ann(furl))
|
|
ann_d["seqnum"] = seqnum
|
|
ann_d["nonce"] = "nonce"
|
|
ann_t = sign_to_foolscap(ann_d, privkey)
|
|
return ann_t
|
|
|
|
class Client(AsyncTestCase):
|
|
def test_duplicate_receive_v2(self):
|
|
ic1 = IntroducerClient(None,
|
|
"introducer.furl", u"my_nickname",
|
|
"ver23", "oldest_version", fakeseq,
|
|
FilePath(self.mktemp()))
|
|
# we use a second client just to create a different-looking
|
|
# announcement
|
|
ic2 = IntroducerClient(None,
|
|
"introducer.furl", u"my_nickname",
|
|
"ver24","oldest_version",fakeseq,
|
|
FilePath(self.mktemp()))
|
|
announcements = []
|
|
def _received(key_s, ann):
|
|
announcements.append( (key_s, ann) )
|
|
ic1.subscribe_to("storage", _received)
|
|
furl1 = b"pb://62ubehyunnyhzs7r6vdonnm2hpi52w6y@127.0.0.1:36106/gydnp"
|
|
furl1a = b"pb://62ubehyunnyhzs7r6vdonnm2hpi52w6y@127.0.0.1:7777/gydnp"
|
|
furl2 = b"pb://ttwwooyunnyhzs7r6vdonnm2hpi52w6y@127.0.0.1:36106/ttwwoo"
|
|
|
|
private_key, public_key = ed25519.create_signing_keypair()
|
|
public_key_str = ed25519.string_from_verifying_key(public_key)
|
|
pubkey_s = remove_prefix(public_key_str, b"pub-")
|
|
|
|
# ann1: ic1, furl1
|
|
# ann1a: ic1, furl1a (same SturdyRef, different connection hints)
|
|
# ann1b: ic2, furl1
|
|
# ann2: ic2, furl2
|
|
|
|
self.ann1 = make_ann_t(ic1, furl1, private_key, seqnum=10)
|
|
self.ann1old = make_ann_t(ic1, furl1, private_key, seqnum=9)
|
|
self.ann1noseqnum = make_ann_t(ic1, furl1, private_key, seqnum=None)
|
|
self.ann1b = make_ann_t(ic2, furl1, private_key, seqnum=11)
|
|
self.ann1a = make_ann_t(ic1, furl1a, private_key, seqnum=12)
|
|
self.ann2 = make_ann_t(ic2, furl2, private_key, seqnum=13)
|
|
|
|
ic1.remote_announce_v2([self.ann1]) # queues eventual-send
|
|
d = fireEventually()
|
|
def _then1(ign):
|
|
self.failUnlessEqual(len(announcements), 1)
|
|
key_s,ann = announcements[0]
|
|
self.failUnlessEqual(key_s, pubkey_s)
|
|
self.failUnlessEqual(ensure_binary(ann["anonymous-storage-FURL"]), furl1)
|
|
self.failUnlessEqual(ann["my-version"], "ver23")
|
|
d.addCallback(_then1)
|
|
|
|
# now send a duplicate announcement. This should not fire the
|
|
# subscriber
|
|
d.addCallback(lambda ign: ic1.remote_announce_v2([self.ann1]))
|
|
d.addCallback(fireEventually)
|
|
def _then2(ign):
|
|
self.failUnlessEqual(len(announcements), 1)
|
|
d.addCallback(_then2)
|
|
|
|
# an older announcement shouldn't fire the subscriber either
|
|
d.addCallback(lambda ign: ic1.remote_announce_v2([self.ann1old]))
|
|
d.addCallback(fireEventually)
|
|
def _then2a(ign):
|
|
self.failUnlessEqual(len(announcements), 1)
|
|
d.addCallback(_then2a)
|
|
|
|
# announcement with no seqnum cannot replace one with-seqnum
|
|
d.addCallback(lambda ign: ic1.remote_announce_v2([self.ann1noseqnum]))
|
|
d.addCallback(fireEventually)
|
|
def _then2b(ign):
|
|
self.failUnlessEqual(len(announcements), 1)
|
|
d.addCallback(_then2b)
|
|
|
|
# and a replacement announcement: same FURL, new other stuff. The
|
|
# subscriber *should* be fired.
|
|
d.addCallback(lambda ign: ic1.remote_announce_v2([self.ann1b]))
|
|
d.addCallback(fireEventually)
|
|
def _then3(ign):
|
|
self.failUnlessEqual(len(announcements), 2)
|
|
key_s,ann = announcements[-1]
|
|
self.failUnlessEqual(key_s, pubkey_s)
|
|
self.failUnlessEqual(ensure_binary(ann["anonymous-storage-FURL"]), furl1)
|
|
self.failUnlessEqual(ann["my-version"], "ver24")
|
|
d.addCallback(_then3)
|
|
|
|
# and a replacement announcement with a different FURL (it uses
|
|
# different connection hints)
|
|
d.addCallback(lambda ign: ic1.remote_announce_v2([self.ann1a]))
|
|
d.addCallback(fireEventually)
|
|
def _then4(ign):
|
|
self.failUnlessEqual(len(announcements), 3)
|
|
key_s,ann = announcements[-1]
|
|
self.failUnlessEqual(key_s, pubkey_s)
|
|
self.failUnlessEqual(ensure_binary(ann["anonymous-storage-FURL"]), furl1a)
|
|
self.failUnlessEqual(ann["my-version"], "ver23")
|
|
d.addCallback(_then4)
|
|
|
|
# now add a new subscription, which should be called with the
|
|
# backlog. The introducer only records one announcement per index, so
|
|
# the backlog will only have the latest message.
|
|
announcements2 = []
|
|
def _received2(key_s, ann):
|
|
announcements2.append( (key_s, ann) )
|
|
d.addCallback(lambda ign: ic1.subscribe_to("storage", _received2))
|
|
d.addCallback(fireEventually)
|
|
def _then5(ign):
|
|
self.failUnlessEqual(len(announcements2), 1)
|
|
key_s,ann = announcements2[-1]
|
|
self.failUnlessEqual(key_s, pubkey_s)
|
|
self.failUnlessEqual(ensure_binary(ann["anonymous-storage-FURL"]), furl1a)
|
|
self.failUnlessEqual(ann["my-version"], "ver23")
|
|
d.addCallback(_then5)
|
|
return d
|
|
|
|
class Server(AsyncTestCase):
|
|
def test_duplicate(self):
|
|
i = IntroducerService()
|
|
ic1 = IntroducerClient(None,
|
|
"introducer.furl", u"my_nickname",
|
|
"ver23", "oldest_version", realseq,
|
|
FilePath(self.mktemp()))
|
|
furl1 = b"pb://62ubehyunnyhzs7r6vdonnm2hpi52w6y@127.0.0.1:36106/gydnp"
|
|
|
|
private_key, _ = ed25519.create_signing_keypair()
|
|
|
|
ann1 = make_ann_t(ic1, furl1, private_key, seqnum=10)
|
|
ann1_old = make_ann_t(ic1, furl1, private_key, seqnum=9)
|
|
ann1_new = make_ann_t(ic1, furl1, private_key, seqnum=11)
|
|
ann1_noseqnum = make_ann_t(ic1, furl1, private_key, seqnum=None)
|
|
ann1_badseqnum = make_ann_t(ic1, furl1, private_key, seqnum="not an int")
|
|
|
|
i.remote_publish_v2(ann1, None)
|
|
all = i.get_announcements()
|
|
self.failUnlessEqual(len(all), 1)
|
|
self.failUnlessEqual(all[0].announcement["seqnum"], 10)
|
|
self.failUnlessEqual(i._debug_counts["inbound_message"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_duplicate"], 0)
|
|
self.failUnlessEqual(i._debug_counts["inbound_no_seqnum"], 0)
|
|
self.failUnlessEqual(i._debug_counts["inbound_old_replay"], 0)
|
|
self.failUnlessEqual(i._debug_counts["inbound_update"], 0)
|
|
|
|
i.remote_publish_v2(ann1, None)
|
|
all = i.get_announcements()
|
|
self.failUnlessEqual(len(all), 1)
|
|
self.failUnlessEqual(all[0].announcement["seqnum"], 10)
|
|
self.failUnlessEqual(i._debug_counts["inbound_message"], 2)
|
|
self.failUnlessEqual(i._debug_counts["inbound_duplicate"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_no_seqnum"], 0)
|
|
self.failUnlessEqual(i._debug_counts["inbound_old_replay"], 0)
|
|
self.failUnlessEqual(i._debug_counts["inbound_update"], 0)
|
|
|
|
i.remote_publish_v2(ann1_old, None)
|
|
all = i.get_announcements()
|
|
self.failUnlessEqual(len(all), 1)
|
|
self.failUnlessEqual(all[0].announcement["seqnum"], 10)
|
|
self.failUnlessEqual(i._debug_counts["inbound_message"], 3)
|
|
self.failUnlessEqual(i._debug_counts["inbound_duplicate"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_no_seqnum"], 0)
|
|
self.failUnlessEqual(i._debug_counts["inbound_old_replay"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_update"], 0)
|
|
|
|
i.remote_publish_v2(ann1_new, None)
|
|
all = i.get_announcements()
|
|
self.failUnlessEqual(len(all), 1)
|
|
self.failUnlessEqual(all[0].announcement["seqnum"], 11)
|
|
self.failUnlessEqual(i._debug_counts["inbound_message"], 4)
|
|
self.failUnlessEqual(i._debug_counts["inbound_duplicate"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_no_seqnum"], 0)
|
|
self.failUnlessEqual(i._debug_counts["inbound_old_replay"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_update"], 1)
|
|
|
|
i.remote_publish_v2(ann1_noseqnum, None)
|
|
all = i.get_announcements()
|
|
self.failUnlessEqual(len(all), 1)
|
|
self.failUnlessEqual(all[0].announcement["seqnum"], 11)
|
|
self.failUnlessEqual(i._debug_counts["inbound_message"], 5)
|
|
self.failUnlessEqual(i._debug_counts["inbound_duplicate"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_no_seqnum"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_old_replay"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_update"], 1)
|
|
|
|
i.remote_publish_v2(ann1_badseqnum, None)
|
|
all = i.get_announcements()
|
|
self.failUnlessEqual(len(all), 1)
|
|
self.failUnlessEqual(all[0].announcement["seqnum"], 11)
|
|
self.failUnlessEqual(i._debug_counts["inbound_message"], 6)
|
|
self.failUnlessEqual(i._debug_counts["inbound_duplicate"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_no_seqnum"], 2)
|
|
self.failUnlessEqual(i._debug_counts["inbound_old_replay"], 1)
|
|
self.failUnlessEqual(i._debug_counts["inbound_update"], 1)
|
|
|
|
|
|
NICKNAME = u"n\u00EDickname-%s" # LATIN SMALL LETTER I WITH ACUTE
|
|
|
|
class SystemTestMixin(ServiceMixin, pollmixin.PollMixin):
|
|
|
|
def create_tub(self, portnum=None):
|
|
tubfile = os.path.join(self.basedir, "tub.pem")
|
|
self.central_tub = tub = Tub(certFile=tubfile)
|
|
#tub.setOption("logLocalFailures", True)
|
|
#tub.setOption("logRemoteFailures", True)
|
|
tub.setOption("expose-remote-exception-types", False)
|
|
tub.setServiceParent(self.parent)
|
|
self.central_portnum = listenOnUnused(tub, portnum)
|
|
|
|
class Queue(SystemTestMixin, AsyncTestCase):
|
|
def test_queue_until_connected(self):
|
|
self.basedir = "introducer/QueueUntilConnected/queued"
|
|
os.makedirs(self.basedir)
|
|
self.create_tub()
|
|
introducer = IntroducerService()
|
|
introducer.setServiceParent(self.parent)
|
|
iff = os.path.join(self.basedir, "introducer.furl")
|
|
ifurl = self.central_tub.registerReference(introducer, furlFile=iff)
|
|
tub2 = Tub()
|
|
tub2.setServiceParent(self.parent)
|
|
c = IntroducerClient(tub2, ifurl,
|
|
u"nickname", "version", "oldest", fakeseq,
|
|
FilePath(self.mktemp()))
|
|
furl1 = b"pb://onug64tu@127.0.0.1:123/short" # base32("short")
|
|
private_key, _ = ed25519.create_signing_keypair()
|
|
|
|
d = introducer.disownServiceParent()
|
|
|
|
def _offline(ign):
|
|
# now that the introducer server is offline, create a client and
|
|
# publish some messages
|
|
c.setServiceParent(self.parent) # this starts the reconnector
|
|
c.publish("storage", make_ann(furl1), private_key)
|
|
|
|
introducer.setServiceParent(self.parent) # restart the server
|
|
# now wait for the messages to be delivered
|
|
def _got_announcement():
|
|
return bool(introducer.get_announcements())
|
|
return self.poll(_got_announcement)
|
|
|
|
d.addCallback(_offline)
|
|
|
|
def _done(ign):
|
|
v = introducer.get_announcements()[0]
|
|
furl = v.announcement["anonymous-storage-FURL"]
|
|
self.failUnlessEqual(ensure_binary(furl), furl1)
|
|
d.addCallback(_done)
|
|
|
|
# now let the ack get back
|
|
def _wait_until_idle(ign):
|
|
def _idle():
|
|
if c._debug_outstanding:
|
|
return False
|
|
if introducer._debug_outstanding:
|
|
return False
|
|
return True
|
|
return self.poll(_idle)
|
|
|
|
d.addCallback(_wait_until_idle)
|
|
return d
|
|
|
|
|
|
class SystemTest(SystemTestMixin, AsyncTestCase):
|
|
|
|
def do_system_test(self):
|
|
self.create_tub()
|
|
introducer = IntroducerService()
|
|
introducer.setServiceParent(self.parent)
|
|
iff = os.path.join(self.basedir, "introducer.furl")
|
|
tub = self.central_tub
|
|
ifurl = self.central_tub.registerReference(introducer, furlFile=iff)
|
|
self.introducer_furl = ifurl.encode("utf-8")
|
|
|
|
# we have 5 clients who publish themselves as storage servers, and a
|
|
# sixth which does which not. All 6 clients subscriber to hear about
|
|
# storage. When the connections are fully established, all six nodes
|
|
# should have 5 connections each.
|
|
NUM_STORAGE = 5
|
|
NUM_CLIENTS = 6
|
|
|
|
clients = []
|
|
tubs = {}
|
|
received_announcements = {}
|
|
subscribing_clients = []
|
|
publishing_clients = []
|
|
printable_serverids = {}
|
|
self.the_introducer = introducer
|
|
privkeys = {}
|
|
pubkeys = {}
|
|
expected_announcements = [0 for c in range(NUM_CLIENTS)]
|
|
|
|
for i in range(NUM_CLIENTS):
|
|
tub = Tub()
|
|
#tub.setOption("logLocalFailures", True)
|
|
#tub.setOption("logRemoteFailures", True)
|
|
tub.setOption("expose-remote-exception-types", False)
|
|
tub.setServiceParent(self.parent)
|
|
listenOnUnused(tub)
|
|
log.msg("creating client %d: %s" % (i, tub.getShortTubID()))
|
|
c = IntroducerClient(tub, self.introducer_furl,
|
|
NICKNAME % str(i),
|
|
"version", "oldest",
|
|
fakeseq,
|
|
FilePath(self.mktemp()))
|
|
received_announcements[c] = {}
|
|
def got(key_s_or_tubid, ann, announcements):
|
|
index = key_s_or_tubid or get_tubid_string_from_ann(ann)
|
|
announcements[index] = ann
|
|
c.subscribe_to("storage", got, received_announcements[c])
|
|
subscribing_clients.append(c)
|
|
expected_announcements[i] += 1 # all expect a 'storage' announcement
|
|
|
|
node_furl = tub.registerReference(Referenceable()).encode("utf-8")
|
|
private_key, public_key = ed25519.create_signing_keypair()
|
|
public_key_str = ed25519.string_from_verifying_key(public_key)
|
|
privkeys[i] = private_key
|
|
pubkeys[i] = public_key_str
|
|
|
|
if i < NUM_STORAGE:
|
|
# sign all announcements
|
|
c.publish("storage", make_ann(node_furl), private_key)
|
|
printable_serverids[i] = remove_prefix(public_key_str, b"pub-")
|
|
publishing_clients.append(c)
|
|
else:
|
|
# the last one does not publish anything
|
|
pass
|
|
|
|
if i == 2:
|
|
# also publish something that nobody cares about
|
|
boring_furl = tub.registerReference(Referenceable()).encode("utf-8")
|
|
c.publish("boring", make_ann(boring_furl), private_key)
|
|
|
|
c.setServiceParent(self.parent)
|
|
clients.append(c)
|
|
tubs[c] = tub
|
|
|
|
def _wait_for_connected(ign):
|
|
def _connected():
|
|
for c in clients:
|
|
if not c.connected_to_introducer():
|
|
return False
|
|
return True
|
|
return self.poll(_connected)
|
|
|
|
# we watch the clients to determine when the system has settled down.
|
|
# Then we can look inside the server to assert things about its
|
|
# state.
|
|
|
|
def _wait_for_expected_announcements(ign):
|
|
def _got_expected_announcements():
|
|
for i,c in enumerate(subscribing_clients):
|
|
if len(received_announcements[c]) < expected_announcements[i]:
|
|
return False
|
|
return True
|
|
return self.poll(_got_expected_announcements)
|
|
|
|
# before shutting down any Tub, we'd like to know that there are no
|
|
# messages outstanding
|
|
|
|
def _wait_until_idle(ign):
|
|
def _idle():
|
|
for c in subscribing_clients + publishing_clients:
|
|
if c._debug_outstanding:
|
|
return False
|
|
if self.the_introducer._debug_outstanding:
|
|
return False
|
|
return True
|
|
return self.poll(_idle)
|
|
|
|
d = defer.succeed(None)
|
|
d.addCallback(_wait_for_connected)
|
|
d.addCallback(_wait_for_expected_announcements)
|
|
d.addCallback(_wait_until_idle)
|
|
|
|
def _check1(res):
|
|
log.msg("doing _check1")
|
|
dc = self.the_introducer._debug_counts
|
|
# each storage server publishes a record. There is also one
|
|
# "boring"
|
|
self.failUnlessEqual(dc["inbound_message"], NUM_STORAGE+1)
|
|
self.failUnlessEqual(dc["inbound_duplicate"], 0)
|
|
self.failUnlessEqual(dc["inbound_update"], 0)
|
|
self.failUnlessEqual(dc["inbound_subscribe"], NUM_CLIENTS)
|
|
# the number of outbound messages is tricky.. I think it depends
|
|
# upon a race between the publish and the subscribe messages.
|
|
self.failUnless(dc["outbound_message"] > 0)
|
|
# each client subscribes to "storage", and each server publishes
|
|
self.failUnlessEqual(dc["outbound_announcements"],
|
|
NUM_STORAGE*NUM_CLIENTS)
|
|
|
|
for c in subscribing_clients:
|
|
cdc = c._debug_counts
|
|
self.failUnless(cdc["inbound_message"])
|
|
self.failUnlessEqual(cdc["inbound_announcement"],
|
|
NUM_STORAGE)
|
|
self.failUnlessEqual(cdc["wrong_service"], 0)
|
|
self.failUnlessEqual(cdc["duplicate_announcement"], 0)
|
|
self.failUnlessEqual(cdc["update"], 0)
|
|
self.failUnlessEqual(cdc["new_announcement"],
|
|
NUM_STORAGE)
|
|
anns = received_announcements[c]
|
|
self.failUnlessEqual(len(anns), NUM_STORAGE)
|
|
|
|
serverid0 = printable_serverids[0]
|
|
ann = anns[serverid0]
|
|
nick = ann["nickname"]
|
|
self.assertIsInstance(nick, str)
|
|
self.failUnlessEqual(nick, NICKNAME % "0")
|
|
for c in publishing_clients:
|
|
cdc = c._debug_counts
|
|
expected = 1
|
|
if c in [clients[2], # boring
|
|
]:
|
|
expected = 2
|
|
self.failUnlessEqual(cdc["outbound_message"], expected)
|
|
# now check the web status, make sure it renders without error
|
|
ir = introweb.IntroducerRoot(self.parent)
|
|
self.parent.nodeid = b"NODEID"
|
|
log.msg("_check1 done")
|
|
return flattenString(None, ir._create_element())
|
|
d.addCallback(_check1)
|
|
|
|
def _check2(flattened_bytes):
|
|
text = flattened_bytes.decode("utf-8")
|
|
self.assertIn(NICKNAME % "0", text) # a v2 client
|
|
self.assertIn(NICKNAME % "1", text) # another v2 client
|
|
for i in range(NUM_STORAGE):
|
|
self.assertIn(ensure_text(printable_serverids[i]), text,
|
|
(i,printable_serverids[i],text))
|
|
# make sure there isn't a double-base32ed string too
|
|
self.assertNotIn(idlib.nodeid_b2a(printable_serverids[i]), text,
|
|
(i,printable_serverids[i],text))
|
|
log.msg("_check2 done")
|
|
d.addCallback(_check2)
|
|
|
|
# force an introducer reconnect, by shutting down the Tub it's using
|
|
# and starting a new Tub (with the old introducer). Everybody should
|
|
# reconnect and republish, but the introducer should ignore the
|
|
# republishes as duplicates. However, because the server doesn't know
|
|
# what each client does and does not know, it will send them a copy
|
|
# of the current announcement table anyway.
|
|
|
|
d.addCallback(lambda _ign: log.msg("shutting down introducer's Tub"))
|
|
d.addCallback(lambda _ign: self.central_tub.disownServiceParent())
|
|
|
|
def _wait_for_introducer_loss(ign):
|
|
def _introducer_lost():
|
|
for c in clients:
|
|
if c.connected_to_introducer():
|
|
return False
|
|
return True
|
|
return self.poll(_introducer_lost)
|
|
d.addCallback(_wait_for_introducer_loss)
|
|
|
|
def _restart_introducer_tub(_ign):
|
|
log.msg("restarting introducer's Tub")
|
|
# reset counters
|
|
for i in range(NUM_CLIENTS):
|
|
c = subscribing_clients[i]
|
|
for k in c._debug_counts:
|
|
c._debug_counts[k] = 0
|
|
for k in self.the_introducer._debug_counts:
|
|
self.the_introducer._debug_counts[k] = 0
|
|
expected_announcements[i] += 1 # new 'storage' for everyone
|
|
self.create_tub(self.central_portnum)
|
|
newfurl = self.central_tub.registerReference(self.the_introducer,
|
|
furlFile=iff)
|
|
assert ensure_binary(newfurl) == self.introducer_furl
|
|
d.addCallback(_restart_introducer_tub)
|
|
|
|
d.addCallback(_wait_for_connected)
|
|
d.addCallback(_wait_for_expected_announcements)
|
|
d.addCallback(_wait_until_idle)
|
|
d.addCallback(lambda _ign: log.msg(" reconnected"))
|
|
|
|
# TODO: publish something while the introducer is offline, then
|
|
# confirm it gets delivered when the connection is reestablished
|
|
def _check2(res):
|
|
log.msg("doing _check2")
|
|
# assert that the introducer sent out new messages, one per
|
|
# subscriber
|
|
dc = self.the_introducer._debug_counts
|
|
self.failUnlessEqual(dc["outbound_announcements"],
|
|
NUM_STORAGE*NUM_CLIENTS)
|
|
self.failUnless(dc["outbound_message"] > 0)
|
|
self.failUnlessEqual(dc["inbound_subscribe"], NUM_CLIENTS)
|
|
for c in subscribing_clients:
|
|
cdc = c._debug_counts
|
|
self.failUnlessEqual(cdc["inbound_message"], 1)
|
|
self.failUnlessEqual(cdc["inbound_announcement"], NUM_STORAGE)
|
|
self.failUnlessEqual(cdc["new_announcement"], 0)
|
|
self.failUnlessEqual(cdc["wrong_service"], 0)
|
|
self.failUnlessEqual(cdc["duplicate_announcement"], NUM_STORAGE)
|
|
d.addCallback(_check2)
|
|
|
|
# Then force an introducer restart, by shutting down the Tub,
|
|
# destroying the old introducer, and starting a new Tub+Introducer.
|
|
# Everybody should reconnect and republish, and the (new) introducer
|
|
# will distribute the new announcements, but the clients should
|
|
# ignore the republishes as duplicates.
|
|
|
|
d.addCallback(lambda _ign: log.msg("shutting down introducer"))
|
|
d.addCallback(lambda _ign: self.central_tub.disownServiceParent())
|
|
d.addCallback(_wait_for_introducer_loss)
|
|
d.addCallback(lambda _ign: log.msg("introducer lost"))
|
|
|
|
def _restart_introducer(_ign):
|
|
log.msg("restarting introducer")
|
|
self.create_tub(self.central_portnum)
|
|
# reset counters
|
|
for i in range(NUM_CLIENTS):
|
|
c = subscribing_clients[i]
|
|
for k in c._debug_counts:
|
|
c._debug_counts[k] = 0
|
|
expected_announcements[i] += 1 # new 'storage' for everyone
|
|
introducer = IntroducerService()
|
|
self.the_introducer = introducer
|
|
newfurl = self.central_tub.registerReference(self.the_introducer,
|
|
furlFile=iff)
|
|
assert ensure_binary(newfurl) == self.introducer_furl
|
|
d.addCallback(_restart_introducer)
|
|
|
|
d.addCallback(_wait_for_connected)
|
|
d.addCallback(_wait_for_expected_announcements)
|
|
d.addCallback(_wait_until_idle)
|
|
|
|
def _check3(res):
|
|
log.msg("doing _check3")
|
|
dc = self.the_introducer._debug_counts
|
|
self.failUnlessEqual(dc["outbound_announcements"],
|
|
NUM_STORAGE*NUM_CLIENTS)
|
|
self.failUnless(dc["outbound_message"] > 0)
|
|
self.failUnlessEqual(dc["inbound_subscribe"], NUM_CLIENTS)
|
|
for c in subscribing_clients:
|
|
cdc = c._debug_counts
|
|
self.failUnless(cdc["inbound_message"] > 0)
|
|
self.failUnlessEqual(cdc["inbound_announcement"], NUM_STORAGE)
|
|
self.failUnlessEqual(cdc["new_announcement"], 0)
|
|
self.failUnlessEqual(cdc["wrong_service"], 0)
|
|
self.failUnlessEqual(cdc["duplicate_announcement"], NUM_STORAGE)
|
|
|
|
d.addCallback(_check3)
|
|
return d
|
|
|
|
|
|
def test_system_v2_server(self):
|
|
self.basedir = "introducer/SystemTest/system_v2_server"
|
|
os.makedirs(self.basedir)
|
|
return self.do_system_test()
|
|
|
|
class FakeRemoteReference(object):
|
|
def notifyOnDisconnect(self, *args, **kwargs): pass
|
|
def getRemoteTubID(self): return "62ubehyunnyhzs7r6vdonnm2hpi52w6y"
|
|
def getLocationHints(self): return ["tcp:here.example.com:1234",
|
|
"tcp:there.example.com2345"]
|
|
def getPeer(self): return address.IPv4Address("TCP", "remote.example.com",
|
|
3456)
|
|
|
|
class ClientInfo(AsyncTestCase):
|
|
def test_client_v2(self):
|
|
introducer = IntroducerService()
|
|
tub = introducer_furl = None
|
|
client_v2 = IntroducerClient(tub, introducer_furl, NICKNAME % u"v2",
|
|
"my_version", "oldest",
|
|
fakeseq, FilePath(self.mktemp()))
|
|
#furl1 = b"pb://62ubehyunnyhzs7r6vdonnm2hpi52w6y@127.0.0.1:0/swissnum"
|
|
#ann_s = make_ann_t(client_v2, furl1, None, 10)
|
|
#introducer.remote_publish_v2(ann_s, Referenceable())
|
|
subscriber = FakeRemoteReference()
|
|
introducer.remote_subscribe_v2(subscriber, "storage",
|
|
client_v2._my_subscriber_info)
|
|
subs = introducer.get_subscribers()
|
|
self.failUnlessEqual(len(subs), 1)
|
|
s0 = subs[0]
|
|
self.failUnlessEqual(s0.service_name, "storage")
|
|
self.failUnlessEqual(s0.nickname, NICKNAME % u"v2")
|
|
self.failUnlessEqual(s0.version, "my_version")
|
|
|
|
|
|
class Announcements(AsyncTestCase):
|
|
def test_client_v2_signed(self):
|
|
introducer = IntroducerService()
|
|
tub = introducer_furl = None
|
|
client_v2 = IntroducerClient(tub, introducer_furl, u"nick-v2",
|
|
"my_version", "oldest",
|
|
fakeseq, FilePath(self.mktemp()))
|
|
furl1 = b"pb://62ubehyunnyhzs7r6vdonnm2hpi52w6y@127.0.0.1:0/swissnum"
|
|
|
|
private_key, public_key = ed25519.create_signing_keypair()
|
|
public_key_str = remove_prefix(ed25519.string_from_verifying_key(public_key), b"pub-")
|
|
|
|
ann_t0 = make_ann_t(client_v2, furl1, private_key, 10)
|
|
canary0 = Referenceable()
|
|
introducer.remote_publish_v2(ann_t0, canary0)
|
|
a = introducer.get_announcements()
|
|
self.failUnlessEqual(len(a), 1)
|
|
self.assertThat(a[0].canary, Is(canary0))
|
|
self.failUnlessEqual(a[0].index, ("storage", public_key_str))
|
|
self.failUnlessEqual(a[0].nickname, u"nick-v2")
|
|
self.failUnlessEqual(a[0].service_name, "storage")
|
|
self.failUnlessEqual(a[0].version, "my_version")
|
|
self.failUnlessEqual(ensure_binary(a[0].announcement["anonymous-storage-FURL"]), furl1)
|
|
|
|
def _load_cache(self, cache_filepath):
|
|
with cache_filepath.open() as f:
|
|
return yamlutil.safe_load(f)
|
|
|
|
@defer.inlineCallbacks
|
|
def test_client_cache(self):
|
|
"""
|
|
Announcements received by an introducer client are written to that
|
|
introducer client's cache file.
|
|
"""
|
|
basedir = FilePath("introducer/ClientSeqnums/test_client_cache_1")
|
|
private = basedir.child("private")
|
|
private.makedirs()
|
|
write_introducer(basedir, "default", "nope")
|
|
cache_filepath = basedir.descendant([
|
|
"private",
|
|
"introducer_default_cache.yaml",
|
|
])
|
|
|
|
# if storage is enabled, the Client will publish its storage server
|
|
# during startup (although the announcement will wait in a queue
|
|
# until the introducer connection is established). To avoid getting
|
|
# confused by this, disable storage.
|
|
with basedir.child("tahoe.cfg").open("w") as f:
|
|
f.write(b"[storage]\n")
|
|
f.write(b"enabled = false\n")
|
|
|
|
c = yield create_client(basedir.path)
|
|
ic = c.introducer_clients[0]
|
|
private_key, public_key = ed25519.create_signing_keypair()
|
|
public_key_str = remove_prefix(ed25519.string_from_verifying_key(public_key), b"pub-")
|
|
furl1 = b"pb://onug64tu@127.0.0.1:123/short" # base32("short")
|
|
ann_t = make_ann_t(ic, furl1, private_key, 1)
|
|
|
|
ic.got_announcements([ann_t])
|
|
yield flushEventualQueue()
|
|
|
|
# check the cache for the announcement
|
|
announcements = self._load_cache(cache_filepath)
|
|
self.failUnlessEqual(len(announcements), 1)
|
|
self.failUnlessEqual(ensure_binary(announcements[0]['key_s']), public_key_str)
|
|
ann = announcements[0]["ann"]
|
|
self.failUnlessEqual(ensure_binary(ann["anonymous-storage-FURL"]), furl1)
|
|
self.failUnlessEqual(ann["seqnum"], 1)
|
|
|
|
# a new announcement that replaces the first should replace the
|
|
# cached entry, not duplicate it
|
|
furl2 = furl1 + b"er"
|
|
ann_t2 = make_ann_t(ic, furl2, private_key, 2)
|
|
ic.got_announcements([ann_t2])
|
|
yield flushEventualQueue()
|
|
announcements = self._load_cache(cache_filepath)
|
|
self.failUnlessEqual(len(announcements), 1)
|
|
self.failUnlessEqual(ensure_binary(announcements[0]['key_s']), public_key_str)
|
|
ann = announcements[0]["ann"]
|
|
self.failUnlessEqual(ensure_binary(ann["anonymous-storage-FURL"]), furl2)
|
|
self.failUnlessEqual(ann["seqnum"], 2)
|
|
|
|
# but a third announcement with a different key should add to the
|
|
# cache
|
|
private_key2, public_key2 = ed25519.create_signing_keypair()
|
|
public_key_str2 = remove_prefix(ed25519.string_from_verifying_key(public_key2), b"pub-")
|
|
furl3 = b"pb://onug64tu@127.0.0.1:456/short"
|
|
ann_t3 = make_ann_t(ic, furl3, private_key2, 1)
|
|
ic.got_announcements([ann_t3])
|
|
yield flushEventualQueue()
|
|
|
|
announcements = self._load_cache(cache_filepath)
|
|
self.failUnlessEqual(len(announcements), 2)
|
|
self.failUnlessEqual(set([public_key_str, public_key_str2]),
|
|
set([ensure_binary(a["key_s"]) for a in announcements]))
|
|
self.failUnlessEqual(set([furl2, furl3]),
|
|
set([ensure_binary(a["ann"]["anonymous-storage-FURL"])
|
|
for a in announcements]))
|
|
|
|
# test loading
|
|
yield flushEventualQueue()
|
|
ic2 = IntroducerClient(None, "introducer.furl", u"my_nickname",
|
|
"my_version", "oldest_version", fakeseq,
|
|
ic._cache_filepath)
|
|
announcements = {}
|
|
def got(key_s, ann):
|
|
announcements[key_s] = ann
|
|
ic2.subscribe_to("storage", got)
|
|
ic2._load_announcements() # normally happens when connection fails
|
|
yield flushEventualQueue()
|
|
|
|
self.failUnless(public_key_str in announcements)
|
|
self.failUnlessEqual(ensure_binary(announcements[public_key_str]["anonymous-storage-FURL"]),
|
|
furl2)
|
|
self.failUnlessEqual(ensure_binary(announcements[public_key_str2]["anonymous-storage-FURL"]),
|
|
furl3)
|
|
|
|
c2 = yield create_client(basedir.path)
|
|
c2.introducer_clients[0]._load_announcements()
|
|
yield flushEventualQueue()
|
|
self.assertEqual(c2.storage_broker.get_all_serverids(),
|
|
frozenset([public_key_str, public_key_str2]))
|
|
|
|
class ClientSeqnums(AsyncBrokenTestCase):
|
|
|
|
@defer.inlineCallbacks
|
|
def test_client(self):
|
|
basedir = FilePath("introducer/ClientSeqnums/test_client")
|
|
private = basedir.child("private")
|
|
private.makedirs()
|
|
write_introducer(basedir, "default", "nope")
|
|
# if storage is enabled, the Client will publish its storage server
|
|
# during startup (although the announcement will wait in a queue
|
|
# until the introducer connection is established). To avoid getting
|
|
# confused by this, disable storage.
|
|
with basedir.child("tahoe.cfg").open("w") as f:
|
|
f.write(b"[storage]\n")
|
|
f.write(b"enabled = false\n")
|
|
|
|
c = yield create_client(basedir.path)
|
|
ic = c.introducer_clients[0]
|
|
outbound = ic._outbound_announcements
|
|
published = ic._published_announcements
|
|
def read_seqnum():
|
|
seqnum = basedir.child("announcement-seqnum").getContent()
|
|
return int(seqnum)
|
|
|
|
ic.publish("sA", {"key": "value1"}, c._node_private_key)
|
|
self.failUnlessEqual(read_seqnum(), 1)
|
|
self.failUnless("sA" in outbound)
|
|
self.failUnlessEqual(outbound["sA"]["seqnum"], 1)
|
|
nonce1 = outbound["sA"]["nonce"]
|
|
self.failUnless(isinstance(nonce1, bytes))
|
|
# Make nonce unicode, to match JSON:
|
|
outbound["sA"]["nonce"] = str(nonce1, "utf-8")
|
|
self.failUnlessEqual(json.loads(published["sA"][0]),
|
|
outbound["sA"])
|
|
# [1] is the signature, [2] is the pubkey
|
|
|
|
# publishing a second service causes both services to be
|
|
# re-published, with the next higher sequence number
|
|
ic.publish("sB", {"key": "value2"}, c._node_private_key)
|
|
self.failUnlessEqual(read_seqnum(), 2)
|
|
self.failUnless("sB" in outbound)
|
|
self.failUnlessEqual(outbound["sB"]["seqnum"], 2)
|
|
self.failUnless("sA" in outbound)
|
|
self.failUnlessEqual(outbound["sA"]["seqnum"], 2)
|
|
nonce2 = outbound["sA"]["nonce"]
|
|
self.failUnless(isinstance(nonce2, bytes))
|
|
self.failIfEqual(nonce1, nonce2)
|
|
# Make nonce unicode, to match JSON:
|
|
outbound["sA"]["nonce"] = str(nonce2, "utf-8")
|
|
outbound["sB"]["nonce"] = str(outbound["sB"]["nonce"], "utf-8")
|
|
self.failUnlessEqual(json.loads(published["sA"][0]),
|
|
outbound["sA"])
|
|
self.failUnlessEqual(json.loads(published["sB"][0]),
|
|
outbound["sB"])
|
|
|
|
|
|
|
|
class TooNewServer(IntroducerService):
|
|
VERSION = { "http://allmydata.org/tahoe/protocols/introducer/v999":
|
|
{ },
|
|
"application-version": "greetings from the crazy future",
|
|
}
|
|
|
|
class NonV1Server(SystemTestMixin, AsyncTestCase):
|
|
# if the client connects to a server that doesn't provide the 'v2'
|
|
# protocol, it is supposed to provide a useful error instead of a weird
|
|
# exception.
|
|
|
|
def test_failure(self):
|
|
self.basedir = "introducer/NonV1Server/failure"
|
|
os.makedirs(self.basedir)
|
|
self.create_tub()
|
|
i = TooNewServer()
|
|
i.setServiceParent(self.parent)
|
|
self.introducer_furl = self.central_tub.registerReference(i)
|
|
|
|
tub = Tub()
|
|
tub.setOption("expose-remote-exception-types", False)
|
|
tub.setServiceParent(self.parent)
|
|
listenOnUnused(tub)
|
|
c = IntroducerClient(tub, self.introducer_furl,
|
|
u"nickname-client", "version", "oldest",
|
|
fakeseq, FilePath(self.mktemp()))
|
|
announcements = {}
|
|
def got(key_s, ann):
|
|
announcements[key_s] = ann
|
|
c.subscribe_to("storage", got)
|
|
|
|
c.setServiceParent(self.parent)
|
|
|
|
# now we wait for it to connect and notice the bad version
|
|
|
|
def _got_bad():
|
|
return bool(c._introducer_error) or bool(c._publisher)
|
|
d = self.poll(_got_bad)
|
|
def _done(res):
|
|
self.failUnless(c._introducer_error)
|
|
self.failUnless(c._introducer_error.check(InsufficientVersionError),
|
|
c._introducer_error)
|
|
d.addCallback(_done)
|
|
return d
|
|
|
|
class DecodeFurl(SyncTestCase):
|
|
def test_decode(self):
|
|
# make sure we have a working base64.b32decode. The one in
|
|
# python2.4.[01] was broken.
|
|
furl = b'pb://t5g7egomnnktbpydbuijt6zgtmw4oqi5@127.0.0.1:51857/hfzv36i'
|
|
m = re.match(br'pb://(\w+)@', furl)
|
|
assert m
|
|
nodeid = b32decode(m.group(1).upper())
|
|
self.failUnlessEqual(nodeid, b"\x9fM\xf2\x19\xcckU0\xbf\x03\r\x10\x99\xfb&\x9b-\xc7A\x1d")
|
|
|
|
class Signatures(SyncTestCase):
|
|
|
|
def test_sign(self):
|
|
ann = {"key1": "value1"}
|
|
private_key, public_key = ed25519.create_signing_keypair()
|
|
public_key_str = ed25519.string_from_verifying_key(public_key)
|
|
ann_t = sign_to_foolscap(ann, private_key)
|
|
(msg, sig, key) = ann_t
|
|
self.failUnlessEqual(type(msg), type("".encode("utf-8"))) # bytes
|
|
self.failUnlessEqual(json.loads(msg.decode("utf-8")), ann)
|
|
self.failUnless(sig.startswith(b"v0-"))
|
|
self.failUnless(key.startswith(b"v0-"))
|
|
(ann2,key2) = unsign_from_foolscap(ann_t)
|
|
self.failUnlessEqual(ann2, ann)
|
|
self.failUnlessEqual(b"pub-" + key2, public_key_str)
|
|
|
|
# not signed
|
|
self.failUnlessRaises(UnknownKeyError,
|
|
unsign_from_foolscap, (msg, None, key))
|
|
self.failUnlessRaises(UnknownKeyError,
|
|
unsign_from_foolscap, (msg, sig, None))
|
|
# bad signature
|
|
bad_ann = {"key1": "value2"}
|
|
bad_msg = json.dumps(bad_ann).encode("utf-8")
|
|
self.failUnlessRaises(BadSignature,
|
|
unsign_from_foolscap, (bad_msg, sig, key))
|
|
|
|
# unrecognized signatures
|
|
self.failUnlessRaises(UnknownKeyError,
|
|
unsign_from_foolscap, (bad_msg, b"v999-sig", key))
|
|
self.failUnlessRaises(UnknownKeyError,
|
|
unsign_from_foolscap, (bad_msg, sig, b"v999-key"))
|
|
|
|
def test_unsigned_announcement(self):
|
|
ed25519.verifying_key_from_string(b"pub-v0-wodst6ly4f7i7akt2nxizsmmy2rlmer6apltl56zctn67wfyu5tq")
|
|
mock_tub = Mock()
|
|
ic = IntroducerClient(
|
|
mock_tub,
|
|
b"pb://",
|
|
u"fake_nick",
|
|
"0.0.0",
|
|
"1.2.3",
|
|
(0, u"i am a nonce"),
|
|
"invalid",
|
|
)
|
|
self.assertEqual(0, ic._debug_counts["inbound_announcement"])
|
|
ic.got_announcements([
|
|
(b"message", b"v0-aaaaaaa", b"v0-wodst6ly4f7i7akt2nxizsmmy2rlmer6apltl56zctn67wfyu5tq")
|
|
])
|
|
# we should have rejected this announcement due to a bad signature
|
|
self.assertEqual(0, ic._debug_counts["inbound_announcement"])
|
|
|
|
|
|
# add tests of StorageFarmBroker: if it receives duplicate announcements, it
|
|
# should leave the Reconnector in place, also if it receives
|
|
# same-FURL-different-misc, but if it receives same-nodeid-different-FURL, it
|
|
# should tear down the Reconnector and make a new one. This behavior used to
|
|
# live in the IntroducerClient, and thus used to be tested by test_introducer
|
|
|
|
# copying more tests from old branch:
|
|
|
|
# then also add Upgrade test
|