Fix caveat verification

QuickCheck properties > HUnit tests
author: Julien Tanguy <julien.tanguy@jhome.fr> 2015-05-16 02:12:14 +0200
committer: Julien Tanguy <julien.tanguy@jhome.fr> 2015-05-16 02:12:14 +0200
commit: 90695615c54b5939d7286e777cb1b19a221616b9 (patch)
tree: 0994f0d528149264fce9c8caa183fea4c6b653c0
parent: 857f2f3ba8ba2de9ab65ea3c66eafb718fe4e1a6 (diff)
download: hmacaroons-90695615c54b5939d7286e777cb1b19a221616b9.tar.gz
hmacaroons-90695615c54b5939d7286e777cb1b19a221616b9.tar.zst
hmacaroons-90695615c54b5939d7286e777cb1b19a221616b9.zip
3 files changed, 53 insertions, 46 deletions
diff --git a/src/Crypto/Macaroon/Verifier.hs b/src/Crypto/Macaroon/Verifier.hs
index 012d156..4eedff5 100644
--- a/src/Crypto/Macaroon/Verifier.hs
+++ b/src/Crypto/Macaroon/Verifier.hs
@@ -14,6 +14,8 @@ Portability : portable
 -}
 module Crypto.Macaroon.Verifier (
    Verified(..)
+  , CaveatVerifier(..)
+  , (<???>)
  , verifySig
  , verifyExact
  , verifyFun
@@ -28,7 +30,9 @@ import           Data.Bool
 import qualified Data.ByteString            as BS
 import           Data.Byteable
 import           Data.Foldable
+import           Data.Function
 import           Data.Maybe
+import           Data.Traversable
 import Data.Attoparsec.ByteString
 import Data.Attoparsec.ByteString.Char8
@@ -44,7 +48,16 @@ instance Monoid Verified where
  mappend _ _ = Failed
-type CaveatVerifier = Caveat -> Maybe Verified
+data CaveatVerifier = CV { vFun :: Caveat -> Maybe Verified , helpText :: String}
+instance Eq CaveatVerifier where
+  (==) = (==) `on` helpText
+instance Show CaveatVerifier where
+    show = helpText
+(<???>) :: (Caveat -> Maybe Verified) -> String -> CaveatVerifier
+f <???> t = CV f t
 verifySig :: Key -> Macaroon -> Verified
 verifySig k m = bool Failed Ok $
@@ -53,8 +66,8 @@ verifySig k m = bool Failed Ok $
    hash s c = toBytes (hmac s (vid c `BS.append` cid c) :: HMAC SHA256)
    derivedKey = toBytes (hmac "macaroons-key-generator" k :: HMAC SHA256)
-verifyCavs :: [Caveat -> Maybe Verified] -> Macaroon -> Verified
+verifyCavs :: [CaveatVerifier] -> Macaroon -> Verified
-verifyCavs verifiers m = mconcat $ map (\c -> mconcat . catMaybes $ map ($ c) verifiers) (caveats m)
+verifyCavs verifiers m = foldMap (\c -> fromMaybe Failed $ foldMap (($ c) . vFun) verifiers) (caveats m)
 verifyExact :: (Eq a) => Key -> a -> Parser a -> Caveat -> Maybe Verified
 verifyExact k expected = verifyFun k (expected ==)
diff --git a/test/Crypto/Macaroon/Instances.hs b/test/Crypto/Macaroon/Instances.hs
index 17044a0..c82bbd3 100644
--- a/test/Crypto/Macaroon/Instances.hs
+++ b/test/Crypto/Macaroon/Instances.hs
@@ -26,9 +26,16 @@ import           Crypto.Macaroon
 -- | Adjust the size parameter, by transforming it with the given
 -- function.
+-- Copied over from QuickCheck 2.8
 scale :: (Int -> Int) -> Gen a -> Gen a
 scale f g = sized (\n -> resize (f n) g)
+-- | Generates a random subsequence of the given list.
+-- Copied over from QuickCheck 2.8
+sublistOf :: [a] -> Gen [a]
+sublistOf = filterM (\_ -> choose (False, True))
 newtype Url = Url { unUrl :: BS.ByteString } deriving (Show)
 instance Arbitrary Url where
diff --git a/test/Crypto/Macaroon/Verifier/Tests.hs b/test/Crypto/Macaroon/Verifier/Tests.hs
index 54c8db1..5f09bca 100644
--- a/test/Crypto/Macaroon/Verifier/Tests.hs
+++ b/test/Crypto/Macaroon/Verifier/Tests.hs
@@ -15,7 +15,7 @@ module Crypto.Macaroon.Verifier.Tests where
 import Data.List
 import qualified Data.ByteString.Char8 as B8
 import Test.Tasty
-import Test.Tasty.HUnit
+-- import Test.Tasty.HUnit
 import Test.Tasty.QuickCheck
 import           Crypto.Macaroon
@@ -25,7 +25,7 @@ import Crypto.Macaroon.Instances
 tests :: TestTree
 tests = testGroup "Crypto.Macaroon.Verifier" [ sigs
-                                             , exactCavs
+                                             , firstParty
                                             ]
 {-
@@ -45,49 +45,36 @@ m2 = addFirstPartyCaveat "test = caveat" m
 m3 :: Macaroon
 m3 = addFirstPartyCaveat "value = 42" m2
-exVerifiers = [ verifyExact "test" "caveat" (many' letter_ascii)
+exTC = verifyExact "test" "caveat" (many' letter_ascii) <???> "test = caveat"
-              , verifyExact "value" 42 decimal
+exTZ = verifyExact "test" "bleh" (many' letter_ascii) <???> "test = bleh"
-              ]
+exV42 = verifyExact "value" 42 decimal <???> "value = 42"
-exVerifiers' = [ verifyExact "test" "caveat" (many' letter_ascii)
+exV43 = verifyExact "value" 43 decimal <???> "value = 43"
-               , verifyExact "value" 43 decimal
-               ]
+funTCPre = verifyFun "test" ("cav" `isPrefixOf`) (many' letter_ascii) <???> "test startsWith cav"
-funVerifiers = [ verifyFun "test" ("cav" `isPrefixOf`) (many' letter_ascii)
+funTV43lte = verifyFun "value" (<= 43) decimal <???> "value <= 43"
-               , verifyFun "value" (<= 43) decimal
-               ]
+allvs = [exTC, exTZ, exV42, exV43, funTCPre, funTV43lte]
 {-
 - Tests
 -}
-sigs = testGroup "Signatures" [ basic
+sigs = testProperty "Signatures" $ \sm -> verifySig (secret sm) (macaroon sm) == Ok
-                              , one
-                              , two
+firstParty = testGroup "First party caveats" [
-                              ]
+    testGroup "Pure verifiers" [ 
+        testProperty "Zero caveat" $
-basic = testGroup "Basic Macaroon" [ none , sigQC ]
+                forAll (sublistOf allvs) (\vs -> Ok == verifyCavs vs m)
+      , testProperty "One caveat" $
-none = testCase "No caveat" $
+          forAll (sublistOf allvs) (\vs -> disjoin [
-    Ok @=? verifySig sec m
+              Ok == verifyCavs vs m2 .&&. any (`elem` vs) [exTC,funTCPre] .&&. (exTZ `notElem` vs)
+            , Failed === verifyCavs vs m2
-sigQC = testProperty "Random" $
+            ])
-    \sm -> verifySig (secret sm) (macaroon sm) == Ok
+      , testProperty "Two Exact" $
+          forAll (sublistOf allvs) (\vs -> disjoin [
-one = testCase "Macaroon with one caveat" $
+              Ok == verifyCavs vs m3 .&&.
-    Ok @=? verifySig sec m2
+                any (`elem` vs) [exTC,funTCPre] .&&.  (exTZ `notElem` vs) .&&.
+                any (`elem` vs) [exV42,funTV43lte] .&&.  (exV43 `notElem` vs)
-two = testCase "Macaroon with two caveats" $
+            , Failed === verifyCavs vs m3
-    Ok @=? verifySig sec m3
+            ])
-exactCavs = testGroup "Exact Caveats" [
-    testGroup "Ignoring non-relevant" [
-        testCase "Zero caveat" $ Ok @=? verifyCavs exVerifiers m
-      , testCase "One caveat" $ Ok @=? verifyCavs exVerifiers' m2
      ]
-  , testCase "One caveat win" $ Ok @=? verifyCavs exVerifiers m2
+    ]
-  , testCase "Two caveat win" $ Ok @=? verifyCavs exVerifiers m3
-  , testCase "Two caveat fail" $ Failed @=? verifyCavs exVerifiers' m3
-  ]
-funCavs = testGroup "Function Caveats" [
-    testCase "One caveat win" $ Ok @=? verifyCavs funVerifiers m2
-  , testCase "Two caveat win" $ Ok @=? verifyCavs funVerifiers m3
-  ]
author	Julien Tanguy <julien.tanguy@jhome.fr>	2015-05-16 02:12:14 +0200
committer	Julien Tanguy <julien.tanguy@jhome.fr>	2015-05-16 02:12:14 +0200
commit	90695615c54b5939d7286e777cb1b19a221616b9 (patch)
tree	0994f0d528149264fce9c8caa183fea4c6b653c0
parent	857f2f3ba8ba2de9ab65ea3c66eafb718fe4e1a6 (diff)
download	hmacaroons-90695615c54b5939d7286e777cb1b19a221616b9.tar.gz hmacaroons-90695615c54b5939d7286e777cb1b19a221616b9.tar.zst hmacaroons-90695615c54b5939d7286e777cb1b19a221616b9.zip

diff --git a/src/Crypto/Macaroon/Verifier.hs b/src/Crypto/Macaroon/Verifier.hs index 012d156..4eedff5 100644 --- a/src/Crypto/Macaroon/Verifier.hs +++ b/src/Crypto/Macaroon/Verifier.hs
@@ -14,6 +14,8 @@ Portability : portable
14	-}	14	-}
15	module Crypto.Macaroon.Verifier (	15	module Crypto.Macaroon.Verifier (
16	Verified(..)	16	Verified(..)
		17	, CaveatVerifier(..)
		18	, (<???>)
17	, verifySig	19	, verifySig
18	, verifyExact	20	, verifyExact
19	, verifyFun	21	, verifyFun
@@ -28,7 +30,9 @@ import Data.Bool
28	import qualified Data.ByteString as BS	30	import qualified Data.ByteString as BS
29	import Data.Byteable	31	import Data.Byteable
30	import Data.Foldable	32	import Data.Foldable
		33	import Data.Function
31	import Data.Maybe	34	import Data.Maybe
		35	import Data.Traversable
32	import Data.Attoparsec.ByteString	36	import Data.Attoparsec.ByteString
33	import Data.Attoparsec.ByteString.Char8	37	import Data.Attoparsec.ByteString.Char8
34		38
@@ -44,7 +48,16 @@ instance Monoid Verified where
44	mappend _ _ = Failed	48	mappend _ _ = Failed
45		49
46		50
47	type CaveatVerifier = Caveat -> Maybe Verified	51	data CaveatVerifier = CV { vFun :: Caveat -> Maybe Verified , helpText :: String}
		52
		53	instance Eq CaveatVerifier where
		54	(==) = (==) `on` helpText
		55
		56	instance Show CaveatVerifier where
		57	show = helpText
		58
		59	(<???>) :: (Caveat -> Maybe Verified) -> String -> CaveatVerifier
		60	f <???> t = CV f t
48		61
49	verifySig :: Key -> Macaroon -> Verified	62	verifySig :: Key -> Macaroon -> Verified
50	verifySig k m = bool Failed Ok $	63	verifySig k m = bool Failed Ok $
@@ -53,8 +66,8 @@ verifySig k m = bool Failed Ok $
53	hash s c = toBytes (hmac s (vid c `BS.append` cid c) :: HMAC SHA256)	66	hash s c = toBytes (hmac s (vid c `BS.append` cid c) :: HMAC SHA256)
54	derivedKey = toBytes (hmac "macaroons-key-generator" k :: HMAC SHA256)	67	derivedKey = toBytes (hmac "macaroons-key-generator" k :: HMAC SHA256)
55		68
56	verifyCavs :: [Caveat -> Maybe Verified] -> Macaroon -> Verified	69	verifyCavs :: [CaveatVerifier] -> Macaroon -> Verified
57	verifyCavs verifiers m = mconcat $ map (\c -> mconcat . catMaybes $ map ($ c) verifiers) (caveats m)	70	verifyCavs verifiers m = foldMap (\c -> fromMaybe Failed $ foldMap (($ c) . vFun) verifiers) (caveats m)
58		71
59	verifyExact :: (Eq a) => Key -> a -> Parser a -> Caveat -> Maybe Verified	72	verifyExact :: (Eq a) => Key -> a -> Parser a -> Caveat -> Maybe Verified
60	verifyExact k expected = verifyFun k (expected ==)	73	verifyExact k expected = verifyFun k (expected ==)


diff --git a/test/Crypto/Macaroon/Instances.hs b/test/Crypto/Macaroon/Instances.hs index 17044a0..c82bbd3 100644 --- a/test/Crypto/Macaroon/Instances.hs +++ b/test/Crypto/Macaroon/Instances.hs
@@ -26,9 +26,16 @@ import Crypto.Macaroon
26		26
27	-- \| Adjust the size parameter, by transforming it with the given	27	-- \| Adjust the size parameter, by transforming it with the given
28	-- function.	28	-- function.
		29	-- Copied over from QuickCheck 2.8
29	scale :: (Int -> Int) -> Gen a -> Gen a	30	scale :: (Int -> Int) -> Gen a -> Gen a
30	scale f g = sized (\n -> resize (f n) g)	31	scale f g = sized (\n -> resize (f n) g)
31		32
		33
		34	-- \| Generates a random subsequence of the given list.
		35	-- Copied over from QuickCheck 2.8
		36	sublistOf :: [a] -> Gen [a]
		37	sublistOf = filterM (\_ -> choose (False, True))
		38
32	newtype Url = Url { unUrl :: BS.ByteString } deriving (Show)	39	newtype Url = Url { unUrl :: BS.ByteString } deriving (Show)
33		40
34	instance Arbitrary Url where	41	instance Arbitrary Url where


diff --git a/test/Crypto/Macaroon/Verifier/Tests.hs b/test/Crypto/Macaroon/Verifier/Tests.hs index 54c8db1..5f09bca 100644 --- a/test/Crypto/Macaroon/Verifier/Tests.hs +++ b/test/Crypto/Macaroon/Verifier/Tests.hs
@@ -15,7 +15,7 @@ module Crypto.Macaroon.Verifier.Tests where
15	import Data.List	15	import Data.List
16	import qualified Data.ByteString.Char8 as B8	16	import qualified Data.ByteString.Char8 as B8
17	import Test.Tasty	17	import Test.Tasty
18	import Test.Tasty.HUnit	18	-- import Test.Tasty.HUnit
19	import Test.Tasty.QuickCheck	19	import Test.Tasty.QuickCheck
20		20
21	import Crypto.Macaroon	21	import Crypto.Macaroon
@@ -25,7 +25,7 @@ import Crypto.Macaroon.Instances
25		25
26	tests :: TestTree	26	tests :: TestTree
27	tests = testGroup "Crypto.Macaroon.Verifier" [ sigs	27	tests = testGroup "Crypto.Macaroon.Verifier" [ sigs
28	, exactCavs	28	, firstParty
29	]	29	]
30		30
31	{-	31	{-
@@ -45,49 +45,36 @@ m2 = addFirstPartyCaveat "test = caveat" m
45	m3 :: Macaroon	45	m3 :: Macaroon
46	m3 = addFirstPartyCaveat "value = 42" m2	46	m3 = addFirstPartyCaveat "value = 42" m2
47		47
48	exVerifiers = [ verifyExact "test" "caveat" (many' letter_ascii)	48	exTC = verifyExact "test" "caveat" (many' letter_ascii) <???> "test = caveat"
49	, verifyExact "value" 42 decimal	49	exTZ = verifyExact "test" "bleh" (many' letter_ascii) <???> "test = bleh"
50	]	50	exV42 = verifyExact "value" 42 decimal <???> "value = 42"
51	exVerifiers' = [ verifyExact "test" "caveat" (many' letter_ascii)	51	exV43 = verifyExact "value" 43 decimal <???> "value = 43"
52	, verifyExact "value" 43 decimal	52
53	]	53	funTCPre = verifyFun "test" ("cav" `isPrefixOf`) (many' letter_ascii) <???> "test startsWith cav"
54	funVerifiers = [ verifyFun "test" ("cav" `isPrefixOf`) (many' letter_ascii)	54	funTV43lte = verifyFun "value" (<= 43) decimal <???> "value <= 43"
55	, verifyFun "value" (<= 43) decimal	55
56	]	56	allvs = [exTC, exTZ, exV42, exV43, funTCPre, funTV43lte]
57		57
58	{-	58	{-
59	- Tests	59	- Tests
60	-}	60	-}
61	sigs = testGroup "Signatures" [ basic	61	sigs = testProperty "Signatures" $ \sm -> verifySig (secret sm) (macaroon sm) == Ok
62	, one	62
63	, two	63	firstParty = testGroup "First party caveats" [
64	]	64	testGroup "Pure verifiers" [
65		65	testProperty "Zero caveat" $
66	basic = testGroup "Basic Macaroon" [ none , sigQC ]	66	forAll (sublistOf allvs) (\vs -> Ok == verifyCavs vs m)
67		67	, testProperty "One caveat" $
68	none = testCase "No caveat" $	68	forAll (sublistOf allvs) (\vs -> disjoin [
69	Ok @=? verifySig sec m	69	Ok == verifyCavs vs m2 .&&. any (`elem` vs) [exTC,funTCPre] .&&. (exTZ `notElem` vs)
70		70	, Failed === verifyCavs vs m2
71	sigQC = testProperty "Random" $	71	])
72	\sm -> verifySig (secret sm) (macaroon sm) == Ok	72	, testProperty "Two Exact" $
73		73	forAll (sublistOf allvs) (\vs -> disjoin [
74	one = testCase "Macaroon with one caveat" $	74	Ok == verifyCavs vs m3 .&&.
75	Ok @=? verifySig sec m2	75	any (`elem` vs) [exTC,funTCPre] .&&. (exTZ `notElem` vs) .&&.
76		76	any (`elem` vs) [exV42,funTV43lte] .&&. (exV43 `notElem` vs)
77	two = testCase "Macaroon with two caveats" $	77	, Failed === verifyCavs vs m3
78	Ok @=? verifySig sec m3	78	])
79
80	exactCavs = testGroup "Exact Caveats" [
81	testGroup "Ignoring non-relevant" [
82	testCase "Zero caveat" $ Ok @=? verifyCavs exVerifiers m
83	, testCase "One caveat" $ Ok @=? verifyCavs exVerifiers' m2
84	]	79	]
85	, testCase "One caveat win" $ Ok @=? verifyCavs exVerifiers m2	80	]
86	, testCase "Two caveat win" $ Ok @=? verifyCavs exVerifiers m3
87	, testCase "Two caveat fail" $ Failed @=? verifyCavs exVerifiers' m3
88	]
89
90	funCavs = testGroup "Function Caveats" [
91	testCase "One caveat win" $ Ok @=? verifyCavs funVerifiers m2
92	, testCase "Two caveat win" $ Ok @=? verifyCavs funVerifiers m3
93	]