Skip to content

Commit

Permalink
test(types): Add mutation tests for the Ed25519 types (#136)
Browse files Browse the repository at this point in the history 
Signed-off-by: Johannes Marbach <[email protected]>
  • Loading branch information
@Johennes
Johennes authored Mar 21, 2024
1 parent 6101be8 commit 0c75746
Showing 1 changed file with 117 additions and 0 deletions.
117 changes: 117 additions & 0 deletions src/types/ed25519.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -205,6 +205,9 @@ impl Ed25519SecretKey {
}

/// Get the byte representation of the secret key.
///
/// **Warning**: This creates a copy of the key which won't be zeroized, the
/// caller of the method needs to make sure to zeroize the returned array.
pub fn to_bytes(&self) -> Box<[u8; 32]> {
Box::new(self.0.to_bytes())
}
Expand Down Expand Up @@ -497,3 +500,117 @@ impl From<Ed25519KeypairPickle> for Ed25519Keypair {
Self { secret_key, public_key }
}
}

#[cfg(test)]
mod tests {
use super::ExpandedSecretKey;
use crate::{
types::ed25519::SecretKeys, Ed25519Keypair, Ed25519PublicKey, Ed25519SecretKey, KeyError,
};

#[test]
fn byte_decoding_roundtrip_succeeds_for_secret_key() {
let bytes = *b"oooooooooooooooooooooooooooooooo";
let key = Ed25519SecretKey::from_slice(&bytes);
assert_eq!(*(key.to_bytes()), bytes);
}

#[test]
fn base64_decoding_incorrect_num_of_bytes_fails_for_secret_key() {
assert!(matches!(
Ed25519SecretKey::from_base64("foo"),
Err(KeyError::InvalidKeyLength { .. })
));
}

#[test]
fn unpadded_base64_decoding_roundtrip_succeeds_for_secret_key() {
let base64 = "MTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTE";
let key = Ed25519SecretKey::from_base64(base64).expect("Should decode key from base64");
assert_eq!(key.to_base64(), base64);
}

#[test]
fn padded_base64_decoding_roundtrip_succeeds_for_secret_key() {
let base64 = "MTExMTExMTExMTExMTExMTExMTExMTExMTExMTExMTE=";
let key = Ed25519SecretKey::from_base64(base64).expect("Should decode key from base64");
assert_eq!(key.to_base64(), base64.trim_end_matches('='));
}

#[test]
fn byte_decoding_roundtrip_succeeds_for_public_key() {
let bytes = *b"oooooooooooooooooooooooooooooooo";
let key = Ed25519PublicKey::from_slice(&bytes).expect("Should decode key from bytes");
assert_eq!(key.as_bytes(), &bytes);
}

#[test]
fn base64_decoding_incorrect_num_of_bytes_fails_for_public_key() {
assert!(matches!(
Ed25519PublicKey::from_base64("foo"),
Err(KeyError::InvalidKeyLength { .. })
));
}

#[test]
fn unpadded_base64_decoding_roundtrip_succeeds_for_public_key() {
let base64 = "b29vb29vb29vb29vb29vb29vb29vb29vb29vb29vb28";
let key = Ed25519PublicKey::from_base64(base64).expect("Should decode key from base64");
assert_eq!(key.to_base64(), base64);
}

#[test]
fn padded_base64_decoding_roundtrip_succeeds_for_public_key() {
let base64 = "b29vb29vb29vb29vb29vb29vb29vb29vb29vb29vb28=";
let key = Ed25519PublicKey::from_base64(base64).expect("Should decode key from base64");
assert_eq!(key.to_base64(), base64.trim_end_matches('='));
}

#[test]
fn verifying_valid_signature_succeeds() {
let key_pair = Ed25519Keypair::new();
let signature = key_pair.secret_key.sign(b"foo");
key_pair.public_key().verify(b"foo", &signature).expect("Should verify valid signature");
}

#[test]
fn verifying_invalid_signature_fails() {
let key_pair = Ed25519Keypair::new();
let signature = key_pair.secret_key.sign(b"foo");
key_pair
.public_key()
.verify(b"bar", &signature)
.expect_err("Should reject invalid signature");
}

#[test]
fn can_only_expand_secret_key_once() {
let key_pair = Ed25519Keypair::new();
assert!(matches!(key_pair.secret_key, SecretKeys::Normal(_)));

let expanded_key = key_pair.expanded_secret_key();
let expanded_key_pair = Ed25519Keypair::from_expanded_key(&expanded_key).unwrap();
assert!(matches!(expanded_key_pair.secret_key, SecretKeys::Expanded(_)));
assert_eq!(expanded_key_pair.public_key(), key_pair.public_key());

let reexpanded_key = expanded_key_pair.expanded_secret_key();
assert_eq!(reexpanded_key, expanded_key);
}

#[test]
fn serialization_roundtrip_succeeds() {
let bytes = b"9999999999999999999999999999999999999999999999999999999999999999";
let key = ExpandedSecretKey::from_bytes(bytes).unwrap();
let serialized = serde_json::to_value(key).expect("Should serialize key");
let deserialized = serde_json::from_value::<ExpandedSecretKey>(serialized)
.expect("Should deserialize key");
assert_eq!(deserialized.as_bytes(), bytes);
}

#[test]
fn deserializing_from_invalid_length_fails() {
let serialized = serde_json::to_value(b"foo").expect("Should serialize key");
let deserialized = serde_json::from_value::<ExpandedSecretKey>(serialized);
assert!(deserialized.is_err());
}
}

0 comments on commit 0c75746

Please sign in to comment.