graphvent/gql_test.go

package graphvent

import (
  "testing"
  "time"
  "errors"
  "net"
  "net/http"
  "io"
  "fmt"
  "encoding/json"
  "encoding/pem"
  "bytes"
  "crypto/rand"
  "crypto/ecdh"
  "crypto/ecdsa"
  "crypto/elliptic"
  "crypto/x509"
  "crypto/x509/pkix"
  "crypto/tls"
  "encoding/base64"
  "math/big"
)

func TestGQLThread(t * testing.T) {
  ctx := logTestContext(t, []string{})
  key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
  fatalErr(t, err)
  gql_t_r := NewGQLThread(RandID(), "GQL Thread", "init", ":0", ecdh.P256(), key, nil, nil)
  gql_t := &gql_t_r

  t1_r := NewSimpleThread(RandID(), "Test thread 1", "init", nil, BaseThreadActions, BaseThreadHandlers)
  t1 := &t1_r
  t2_r := NewSimpleThread(RandID(), "Test thread 2", "init", nil, BaseThreadActions, BaseThreadHandlers)
  t2 := &t2_r

  err = UpdateStates(ctx, []Node{gql_t, t1, t2}, func(nodes NodeMap) error {
    i1 := NewParentThreadInfo(true, "start", "restore")
    err := LinkThreads(ctx, gql_t, t1, &i1, nodes)
    if err != nil {
      return err
    }

    i2 := NewParentThreadInfo(false, "start", "restore")
    return LinkThreads(ctx, gql_t, t2, &i2, nodes)
  })
  fatalErr(t, err)

  go func(thread Thread){
    time.Sleep(10*time.Millisecond)
    err := UseStates(ctx, []Node{thread}, func(nodes NodeMap) error {
      return thread.Signal(ctx, CancelSignal(nil), nodes)
    })
    fatalErr(t, err)
  }(gql_t)

  err = ThreadLoop(ctx, gql_t, "start")
  fatalErr(t, err)
}

func TestGQLDBLoad(t * testing.T) {
  ctx := logTestContext(t, []string{})
  l1_r := NewSimpleLockable(RandID(), "Test Lockable 1")
  l1 := &l1_r

  t1_r := NewSimpleThread(RandID(), "Test Thread 1", "init", nil, BaseThreadActions, BaseThreadHandlers)
  t1 := &t1_r
  update_channel := UpdateChannel(t1, 10, NodeID{})

  u1_key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
  fatalErr(t, err)

  u1_shared := []byte{0xDE, 0xAD, 0xBE, 0xEF, 0x01, 0x23, 0x45, 0x67}

  u1_r := NewUser("Test User", time.Now(), &u1_key.PublicKey, u1_shared)
  u1 := &u1_r

  p1_r := NewPerNodePolicy(RandID(), nil, NewNodeActions([]string{"*"}))
  p1 := &p1_r

  key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
  fatalErr(t, err)
  gql_r := NewGQLThread(RandID(), "GQL Thread", "init", ":0", ecdh.P256(), key, nil, nil)
  gql := &gql_r

  info := NewParentThreadInfo(true, "start", "restore")
  err = UpdateStates(ctx, []Node{gql, t1, l1, u1, p1}, func(nodes NodeMap) error {
    err := u1.AddPolicy(p1)
    if err != nil {
      return err
    }
    gql.Users[KeyID(&u1_key.PublicKey)] = u1
    err = LinkLockables(ctx, gql, []Lockable{l1}, nodes)
    if err != nil {
      return err
    }
    return LinkThreads(ctx, gql, t1, &info, nodes)
  })
  fatalErr(t, err)

  err = UseStates(ctx, []Node{gql}, func(nodes NodeMap) error {
    err := gql.Signal(ctx, NewSignal(t1, "child_added"), nodes)
    if err != nil {
      return nil
    }
    return gql.Signal(ctx, AbortSignal(nil), nodes)
  })
  fatalErr(t, err)

  err = ThreadLoop(ctx, gql, "start")
  if errors.Is(err, NewThreadAbortedError(NodeID{})) {
    ctx.Log.Logf("test", "Main thread aborted by signal: %s", err)
  } else {
    fatalErr(t, err)
  }

  (*GraphTester)(t).WaitForValue(ctx, update_channel, "thread_aborted", t1, 100*time.Millisecond, "Didn't receive thread_abort from t1 on t1")

  err = UseStates(ctx, []Node{gql, u1}, func(nodes NodeMap) error {
    ser1, err := gql.Serialize()
    ser2, err := u1.Serialize()
    ctx.Log.Logf("test", "\n%s\n\n", ser1)
    ctx.Log.Logf("test", "\n%s\n\n", ser2)
    return err
  })

  gql_loaded, err := LoadNode(ctx, gql.ID())
  fatalErr(t, err)
  var t1_loaded *SimpleThread = nil

  var update_channel_2 chan GraphSignal
  err = UseStates(ctx, []Node{gql_loaded}, func(nodes NodeMap) error {
    ser, err := gql_loaded.Serialize()
    ctx.Log.Logf("test", "\n%s\n\n", ser)
    u_loaded := gql_loaded.(*GQLThread).Users[u1.ID()]
    child := gql_loaded.(Thread).Children()[0].(*SimpleThread)
    t1_loaded = child
    update_channel_2 = UpdateChannel(t1_loaded, 10, NodeID{})
    err = UseMoreStates(ctx, []Node{u_loaded}, nodes, func(nodes NodeMap) error {
      ser, err := u_loaded.Serialize()
      ctx.Log.Logf("test", "\n%s\n\n", ser)
      return err
    })
    gql_loaded.Signal(ctx, AbortSignal(nil), nodes)
    return err
  })

  err = ThreadLoop(ctx, gql_loaded.(Thread), "restore")
  if errors.Is(err, NewThreadAbortedError(NodeID{})) {
    ctx.Log.Logf("test", "Main thread aborted by signal: %s", err)
  } else {
    fatalErr(t, err)
  }
  (*GraphTester)(t).WaitForValue(ctx, update_channel_2, "thread_aborted", t1_loaded, 100*time.Millisecond, "Didn't received thread_aborted on t1_loaded from t1_loaded")

}

func TestGQLAuth(t * testing.T) {
  ctx := logTestContext(t, []string{"test", "gql"})
  key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
  fatalErr(t, err)

  serialNumberLimit := new(big.Int).Lsh(big.NewInt(1), 128)
  serialNumber, err := rand.Int(rand.Reader, serialNumberLimit)
  fatalErr(t, err)

  notBefore := time.Now()
  notAfter := notBefore.Add(365*24*time.Hour)


  template := x509.Certificate{
    SerialNumber: serialNumber,
    Subject: pkix.Name{
      Organization: []string{"mekkanized"},
    },
    NotBefore: notBefore,
    NotAfter: notAfter,
    KeyUsage: x509.KeyUsageDigitalSignature,
    ExtKeyUsage: []x509.ExtKeyUsage{x509.ExtKeyUsageServerAuth},
    BasicConstraintsValid: true,
  }

  ssl_key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
  fatalErr(t, err)
  ssl_cert, err := x509.CreateCertificate(rand.Reader, &template, &template, &ssl_key.PublicKey, ssl_key)
  fatalErr(t, err)
  ssl_cert_bytes := pem.EncodeToMemory(&pem.Block{Type: "CERTIFICATE", Bytes: ssl_cert})

  ssl_key_bytes, err := x509.MarshalECPrivateKey(ssl_key)
  fatalErr(t, err)
  ssl_key_pem := pem.EncodeToMemory(&pem.Block{Type: "PRIVATE KEY", Bytes: ssl_key_bytes})

  gql_t_r := NewGQLThread(RandID(), "GQL Thread", "init", ":0", ecdh.P256(), key, ssl_cert_bytes, ssl_key_pem)
  gql_t := &gql_t_r

  done := make(chan error, 1)

  var update_channel chan GraphSignal
  err = UseStates(ctx, []Node{gql_t}, func(nodes NodeMap) error {
    update_channel = UpdateChannel(gql_t, 10, NodeID{})
    return nil
  })
  fatalErr(t, err)

  go func(done chan error, thread Thread) {
    timeout := time.After(2*time.Second)
    select {
    case <-timeout:
      ctx.Log.Logf("test", "TIMEOUT")
    case <-done:
      ctx.Log.Logf("test", "DONE")
    }
    err := UseStates(ctx, []Node{gql_t}, func(nodes NodeMap) error {
      return thread.Signal(ctx, CancelSignal(nil), nodes)
    })
    fatalErr(t, err)
  }(done, gql_t)

  go func(thread Thread){
    (*GraphTester)(t).WaitForValue(ctx, update_channel, "server_started", gql_t, 100*time.Millisecond, "Server didn't start")
    port := gql_t.tcp_listener.Addr().(*net.TCPAddr).Port
    ctx.Log.Logf("test", "GQL_PORT: %d", port)

    customTransport := &http.Transport{
      Proxy:                 http.DefaultTransport.(*http.Transport).Proxy,
      DialContext:           http.DefaultTransport.(*http.Transport).DialContext,
      MaxIdleConns:          http.DefaultTransport.(*http.Transport).MaxIdleConns,
      IdleConnTimeout:       http.DefaultTransport.(*http.Transport).IdleConnTimeout,
      ExpectContinueTimeout: http.DefaultTransport.(*http.Transport).ExpectContinueTimeout,
      TLSHandshakeTimeout:   http.DefaultTransport.(*http.Transport).TLSHandshakeTimeout,
      TLSClientConfig:       &tls.Config{InsecureSkipVerify: true},
    }
    client := &http.Client{Transport: customTransport}
    url := fmt.Sprintf("https://localhost:%d/auth", port)

    id, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
    fatalErr(t, err)

    auth_req, ec_key, err := NewAuthReqJSON(ecdh.P256(), id)
    fatalErr(t, err)

    str, err := json.Marshal(auth_req)
    fatalErr(t, err)

    b := bytes.NewBuffer(str)
    req, err := http.NewRequest("PUT", url, b)
    fatalErr(t, err)

    resp, err := client.Do(req)
    fatalErr(t, err)

    body, err := io.ReadAll(resp.Body)
    fatalErr(t, err)

    resp.Body.Close()

    var j AuthRespJSON
    err = json.Unmarshal(body, &j)
    fatalErr(t, err)

    shared, err := ParseAuthRespJSON(j, elliptic.P256(), ecdh.P256(), ec_key)
    fatalErr(t, err)

    url = fmt.Sprintf("https://localhost:%d/gql", port)
    ser, err := json.MarshalIndent(&GQLPayload{
      Query: "query { Self { Users { ID } } }",
    }, "", "  ")
    fatalErr(t, err)

    b = bytes.NewBuffer(ser)
    req, err = http.NewRequest("GET", url, b)
    fatalErr(t, err)

    req.SetBasicAuth(KeyID(&id.PublicKey).String(), base64.StdEncoding.EncodeToString(shared))
    resp, err = client.Do(req)
    fatalErr(t, err)

    body, err = io.ReadAll(resp.Body)
    fatalErr(t, err)

    resp.Body.Close()

    ctx.Log.Logf("test", "TEST_RESP: %s", body)

    req.SetBasicAuth(KeyID(&id.PublicKey).String(), "BAD_PASSWORD")
    resp, err = client.Do(req)
    fatalErr(t, err)

    body, err = io.ReadAll(resp.Body)
    fatalErr(t, err)

    resp.Body.Close()

    ctx.Log.Logf("test", "TEST_RESP: %s", body)

    done <- nil
  }(gql_t)

  err = ThreadLoop(ctx, gql_t, "start")
  fatalErr(t, err)
}
Added base GQLThread 2023-06-25 20:20:59 -06:00			`package graphvent`

			`import (`
			`"testing"`
made gql_test.go pass 2023-06-25 22:19:05 -06:00			`"time"`
moved to ThreadLoop from separate StartThread and RestoreThread functions 2023-07-06 16:57:51 -06:00			`"errors"`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`"net"`
			`"net/http"`
			`"io"`
			`"fmt"`
			`"encoding/json"`
Added TLS to GQLThread 2023-07-21 01:05:24 -06:00			`"encoding/pem"`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`"bytes"`
			`"crypto/rand"`
			`"crypto/ecdh"`
			`"crypto/ecdsa"`
			`"crypto/elliptic"`
Added TLS to GQLThread 2023-07-21 01:05:24 -06:00			`"crypto/x509"`
			`"crypto/x509/pkix"`
			`"crypto/tls"`
GQLUser improvement 2023-07-20 00:24:22 -06:00			`"encoding/base64"`
Added TLS to GQLThread 2023-07-21 01:05:24 -06:00			`"math/big"`
Added base GQLThread 2023-06-25 20:20:59 -06:00			`)`

			`func TestGQLThread(t * testing.T) {`
Fixed typo in thread loading that resulted in the parent being loaded as an owner instead 2023-07-03 13:14:48 -06:00			`ctx := logTestContext(t, []string{})`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)`
			`fatalErr(t, err)`
Added TLS to GQLThread 2023-07-21 01:05:24 -06:00			`gql_t_r := NewGQLThread(RandID(), "GQL Thread", "init", ":0", ecdh.P256(), key, nil, nil)`
Finished rework of context 2023-07-09 20:30:19 -06:00			`gql_t := &gql_t_r`

			`t1_r := NewSimpleThread(RandID(), "Test thread 1", "init", nil, BaseThreadActions, BaseThreadHandlers)`
			`t1 := &t1_r`
			`t2_r := NewSimpleThread(RandID(), "Test thread 2", "init", nil, BaseThreadActions, BaseThreadHandlers)`
			`t2 := &t2_r`

Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`err = UpdateStates(ctx, []Node{gql_t, t1, t2}, func(nodes NodeMap) error {`
Moved GQL restore to ThreadRestore to be reused by other classes. And GQLThreadInfo to ParentThreadInfo 2023-07-11 16:54:09 -06:00			`i1 := NewParentThreadInfo(true, "start", "restore")`
Finished rework of context 2023-07-09 20:30:19 -06:00			`err := LinkThreads(ctx, gql_t, t1, &i1, nodes)`
			`if err != nil {`
			`return err`
			`}`
Add ChildGo to conveniently start children 2023-06-26 21:20:04 -06:00
Moved GQL restore to ThreadRestore to be reused by other classes. And GQLThreadInfo to ParentThreadInfo 2023-07-11 16:54:09 -06:00			`i2 := NewParentThreadInfo(false, "start", "restore")`
Finished rework of context 2023-07-09 20:30:19 -06:00			`return LinkThreads(ctx, gql_t, t2, &i2, nodes)`
			`})`
Added base GQLThread 2023-06-25 20:20:59 -06:00			`fatalErr(t, err)`

made gql_test.go pass 2023-06-25 22:19:05 -06:00			`go func(thread Thread){`
			`time.Sleep(10*time.Millisecond)`
Finished rework of context 2023-07-09 20:30:19 -06:00			`err := UseStates(ctx, []Node{thread}, func(nodes NodeMap) error {`
			`return thread.Signal(ctx, CancelSignal(nil), nodes)`
Modified SendUpdate to require it to be called from inside a UseStates context. 2023-07-04 18:45:23 -06:00			`})`
enhance tests for race conditions 2023-07-05 23:54:11 -06:00			`fatalErr(t, err)`
Finished rework of context 2023-07-09 20:30:19 -06:00			`}(gql_t)`
made gql_test.go pass 2023-06-25 22:19:05 -06:00
Finished rework of context 2023-07-09 20:30:19 -06:00			`err = ThreadLoop(ctx, gql_t, "start")`
Added base GQLThread 2023-06-25 20:20:59 -06:00			`fatalErr(t, err)`
			`}`
Added test to display GQLThread serialized data 2023-07-01 13:06:39 -06:00
			`func TestGQLDBLoad(t * testing.T) {`
Added KDF for shared secret to shared ecdsa key, and added signature to AuthRespJSON 2023-07-19 21:28:48 -06:00			`ctx := logTestContext(t, []string{})`
Finished rework of context 2023-07-09 20:30:19 -06:00			`l1_r := NewSimpleLockable(RandID(), "Test Lockable 1")`
			`l1 := &l1_r`
Added test to display GQLThread serialized data 2023-07-01 13:06:39 -06:00
Finished rework of context 2023-07-09 20:30:19 -06:00			`t1_r := NewSimpleThread(RandID(), "Test Thread 1", "init", nil, BaseThreadActions, BaseThreadHandlers)`
			`t1 := &t1_r`
Changed NodeID from string to UUID, filled in more auth 2023-07-19 20:03:13 -06:00			`update_channel := UpdateChannel(t1, 10, NodeID{})`
Added test to display GQLThread serialized data 2023-07-01 13:06:39 -06:00
GQLUser improvement 2023-07-20 00:24:22 -06:00			`u1_key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)`
			`fatalErr(t, err)`

			`u1_shared := []byte{0xDE, 0xAD, 0xBE, 0xEF, 0x01, 0x23, 0x45, 0x67}`

Renamed GQLUser to User 2023-07-20 22:03:25 -06:00			`u1_r := NewUser("Test User", time.Now(), &u1_key.PublicKey, u1_shared)`
GQLUser improvement 2023-07-20 00:24:22 -06:00			`u1 := &u1_r`

Added more to policy, and updated lockable to use better IDs 2023-07-21 00:02:53 -06:00			`p1_r := NewPerNodePolicy(RandID(), nil, NewNodeActions([]string{"*"}))`
Added policy.go 2023-07-20 23:19:10 -06:00			`p1 := &p1_r`

Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)`
			`fatalErr(t, err)`
Added TLS to GQLThread 2023-07-21 01:05:24 -06:00			`gql_r := NewGQLThread(RandID(), "GQL Thread", "init", ":0", ecdh.P256(), key, nil, nil)`
Finished rework of context 2023-07-09 20:30:19 -06:00			`gql := &gql_r`
Added test to display GQLThread serialized data 2023-07-01 13:06:39 -06:00
Moved GQL restore to ThreadRestore to be reused by other classes. And GQLThreadInfo to ParentThreadInfo 2023-07-11 16:54:09 -06:00			`info := NewParentThreadInfo(true, "start", "restore")`
Added policy.go 2023-07-20 23:19:10 -06:00			`err = UpdateStates(ctx, []Node{gql, t1, l1, u1, p1}, func(nodes NodeMap) error {`
			`err := u1.AddPolicy(p1)`
			`if err != nil {`
			`return err`
			`}`
GQLUser improvement 2023-07-20 00:24:22 -06:00			`gql.Users[KeyID(&u1_key.PublicKey)] = u1`
Added policy.go 2023-07-20 23:19:10 -06:00			`err = LinkLockables(ctx, gql, []Lockable{l1}, nodes)`
Finished rework of context 2023-07-09 20:30:19 -06:00			`if err != nil {`
			`return err`
			`}`
			`return LinkThreads(ctx, gql, t1, &info, nodes)`
Modified SendUpdate to require it to be called from inside a UseStates context. 2023-07-04 18:45:23 -06:00			`})`
Fixed typo in thread loading that resulted in the parent being loaded as an owner instead 2023-07-03 13:14:48 -06:00			`fatalErr(t, err)`
Finished rework of context 2023-07-09 20:30:19 -06:00
			`err = UseStates(ctx, []Node{gql}, func(nodes NodeMap) error {`
			`err := gql.Signal(ctx, NewSignal(t1, "child_added"), nodes)`
			`if err != nil {`
			`return nil`
			`}`
			`return gql.Signal(ctx, AbortSignal(nil), nodes)`
Modified SendUpdate to require it to be called from inside a UseStates context. 2023-07-04 18:45:23 -06:00			`})`
Finished rework of context 2023-07-09 20:30:19 -06:00			`fatalErr(t, err)`

moved to ThreadLoop from separate StartThread and RestoreThread functions 2023-07-06 16:57:51 -06:00			`err = ThreadLoop(ctx, gql, "start")`
Changed NodeID from string to UUID, filled in more auth 2023-07-19 20:03:13 -06:00			`if errors.Is(err, NewThreadAbortedError(NodeID{})) {`
moved to ThreadLoop from separate StartThread and RestoreThread functions 2023-07-06 16:57:51 -06:00			`ctx.Log.Logf("test", "Main thread aborted by signal: %s", err)`
			`} else {`
			`fatalErr(t, err)`
			`}`
Fixed typo in thread loading that resulted in the parent being loaded as an owner instead 2023-07-03 13:14:48 -06:00
moved to ThreadLoop from separate StartThread and RestoreThread functions 2023-07-06 16:57:51 -06:00			`(GraphTester)(t).WaitForValue(ctx, update_channel, "thread_aborted", t1, 100time.Millisecond, "Didn't receive thread_abort from t1 on t1")`
Fixed typo in thread loading that resulted in the parent being loaded as an owner instead 2023-07-03 13:14:48 -06:00
Added more to policy, and updated lockable to use better IDs 2023-07-21 00:02:53 -06:00			`err = UseStates(ctx, []Node{gql, u1}, func(nodes NodeMap) error {`
Finished rework of context 2023-07-09 20:30:19 -06:00			`ser1, err := gql.Serialize()`
Added more to policy, and updated lockable to use better IDs 2023-07-21 00:02:53 -06:00			`ser2, err := u1.Serialize()`
Changed NodeID from string to UUID, filled in more auth 2023-07-19 20:03:13 -06:00			`ctx.Log.Logf("test", "\n%s\n\n", ser1)`
			`ctx.Log.Logf("test", "\n%s\n\n", ser2)`
Added test to display GQLThread serialized data 2023-07-01 13:06:39 -06:00			`return err`
			`})`

Fixed typo in thread loading that resulted in the parent being loaded as an owner instead 2023-07-03 13:14:48 -06:00			`gql_loaded, err := LoadNode(ctx, gql.ID())`
Added test to display GQLThread serialized data 2023-07-01 13:06:39 -06:00			`fatalErr(t, err)`
Finished rework of context 2023-07-09 20:30:19 -06:00			`var t1_loaded *SimpleThread = nil`
Added test to display GQLThread serialized data 2023-07-01 13:06:39 -06:00
Finished rework of context 2023-07-09 20:30:19 -06:00			`var update_channel_2 chan GraphSignal`
			`err = UseStates(ctx, []Node{gql_loaded}, func(nodes NodeMap) error {`
			`ser, err := gql_loaded.Serialize()`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`ctx.Log.Logf("test", "\n%s\n\n", ser)`
Added more to policy, and updated lockable to use better IDs 2023-07-21 00:02:53 -06:00			`u_loaded := gql_loaded.(*GQLThread).Users[u1.ID()]`
Finished rework of context 2023-07-09 20:30:19 -06:00			`child := gql_loaded.(Thread).Children()[0].(*SimpleThread)`
			`t1_loaded = child`
Changed NodeID from string to UUID, filled in more auth 2023-07-19 20:03:13 -06:00			`update_channel_2 = UpdateChannel(t1_loaded, 10, NodeID{})`
Added more to policy, and updated lockable to use better IDs 2023-07-21 00:02:53 -06:00			`err = UseMoreStates(ctx, []Node{u_loaded}, nodes, func(nodes NodeMap) error {`
			`ser, err := u_loaded.Serialize()`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`ctx.Log.Logf("test", "\n%s\n\n", ser)`
Fixed typo in thread loading that resulted in the parent being loaded as an owner instead 2023-07-03 13:14:48 -06:00			`return err`
			`})`
Finished rework of context 2023-07-09 20:30:19 -06:00			`gql_loaded.Signal(ctx, AbortSignal(nil), nodes)`
Added test to display GQLThread serialized data 2023-07-01 13:06:39 -06:00			`return err`
			`})`
Fixed typo in thread loading that resulted in the parent being loaded as an owner instead 2023-07-03 13:14:48 -06:00
moved to ThreadLoop from separate StartThread and RestoreThread functions 2023-07-06 16:57:51 -06:00			`err = ThreadLoop(ctx, gql_loaded.(Thread), "restore")`
Changed NodeID from string to UUID, filled in more auth 2023-07-19 20:03:13 -06:00			`if errors.Is(err, NewThreadAbortedError(NodeID{})) {`
moved to ThreadLoop from separate StartThread and RestoreThread functions 2023-07-06 16:57:51 -06:00			`ctx.Log.Logf("test", "Main thread aborted by signal: %s", err)`
			`} else {`
			`fatalErr(t, err)`
			`}`
Fixed always initializing timeout on thread load. TODO: look at why loading it on thread load was causing the aborted event to not be sent 2023-07-10 01:07:56 -06:00			`(GraphTester)(t).WaitForValue(ctx, update_channel_2, "thread_aborted", t1_loaded, 100time.Millisecond, "Didn't received thread_aborted on t1_loaded from t1_loaded")`
Fixed typo in thread loading that resulted in the parent being loaded as an owner instead 2023-07-03 13:14:48 -06:00
Added test to display GQLThread serialized data 2023-07-01 13:06:39 -06:00			`}`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00
			`func TestGQLAuth(t * testing.T) {`
			`ctx := logTestContext(t, []string{"test", "gql"})`
			`key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)`
			`fatalErr(t, err)`
Added TLS to GQLThread 2023-07-21 01:05:24 -06:00
			`serialNumberLimit := new(big.Int).Lsh(big.NewInt(1), 128)`
			`serialNumber, err := rand.Int(rand.Reader, serialNumberLimit)`
			`fatalErr(t, err)`

			`notBefore := time.Now()`
			`notAfter := notBefore.Add(36524time.Hour)`


			`template := x509.Certificate{`
			`SerialNumber: serialNumber,`
			`Subject: pkix.Name{`
			`Organization: []string{"mekkanized"},`
			`},`
			`NotBefore: notBefore,`
			`NotAfter: notAfter,`
			`KeyUsage: x509.KeyUsageDigitalSignature,`
			`ExtKeyUsage: []x509.ExtKeyUsage{x509.ExtKeyUsageServerAuth},`
			`BasicConstraintsValid: true,`
			`}`

			`ssl_key, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)`
			`fatalErr(t, err)`
			`ssl_cert, err := x509.CreateCertificate(rand.Reader, &template, &template, &ssl_key.PublicKey, ssl_key)`
			`fatalErr(t, err)`
			`ssl_cert_bytes := pem.EncodeToMemory(&pem.Block{Type: "CERTIFICATE", Bytes: ssl_cert})`

			`ssl_key_bytes, err := x509.MarshalECPrivateKey(ssl_key)`
			`fatalErr(t, err)`
			`ssl_key_pem := pem.EncodeToMemory(&pem.Block{Type: "PRIVATE KEY", Bytes: ssl_key_bytes})`

			`gql_t_r := NewGQLThread(RandID(), "GQL Thread", "init", ":0", ecdh.P256(), key, ssl_cert_bytes, ssl_key_pem)`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`gql_t := &gql_t_r`

			`done := make(chan error, 1)`

			`var update_channel chan GraphSignal`
			`err = UseStates(ctx, []Node{gql_t}, func(nodes NodeMap) error {`
Changed NodeID from string to UUID, filled in more auth 2023-07-19 20:03:13 -06:00			`update_channel = UpdateChannel(gql_t, 10, NodeID{})`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`return nil`
			`})`
			`fatalErr(t, err)`

			`go func(done chan error, thread Thread) {`
			`timeout := time.After(2*time.Second)`
			`select {`
			`case <-timeout:`
			`ctx.Log.Logf("test", "TIMEOUT")`
			`case <-done:`
			`ctx.Log.Logf("test", "DONE")`
			`}`
			`err := UseStates(ctx, []Node{gql_t}, func(nodes NodeMap) error {`
			`return thread.Signal(ctx, CancelSignal(nil), nodes)`
			`})`
			`fatalErr(t, err)`
			`}(done, gql_t)`

			`go func(thread Thread){`
			`(GraphTester)(t).WaitForValue(ctx, update_channel, "server_started", gql_t, 100time.Millisecond, "Server didn't start")`
			`port := gql_t.tcp_listener.Addr().(*net.TCPAddr).Port`
			`ctx.Log.Logf("test", "GQL_PORT: %d", port)`
Added TLS to GQLThread 2023-07-21 01:05:24 -06:00
			`customTransport := &http.Transport{`
			`Proxy: http.DefaultTransport.(*http.Transport).Proxy,`
			`DialContext: http.DefaultTransport.(*http.Transport).DialContext,`
			`MaxIdleConns: http.DefaultTransport.(*http.Transport).MaxIdleConns,`
			`IdleConnTimeout: http.DefaultTransport.(*http.Transport).IdleConnTimeout,`
			`ExpectContinueTimeout: http.DefaultTransport.(*http.Transport).ExpectContinueTimeout,`
			`TLSHandshakeTimeout: http.DefaultTransport.(*http.Transport).TLSHandshakeTimeout,`
			`TLSClientConfig: &tls.Config{InsecureSkipVerify: true},`
			`}`
			`client := &http.Client{Transport: customTransport}`
			`url := fmt.Sprintf("https://localhost:%d/auth", port)`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00
			`id, err := ecdsa.GenerateKey(elliptic.P256(), rand.Reader)`
			`fatalErr(t, err)`

Added KDF for shared secret to shared ecdsa key, and added signature to AuthRespJSON 2023-07-19 21:28:48 -06:00			`auth_req, ec_key, err := NewAuthReqJSON(ecdh.P256(), id)`
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`fatalErr(t, err)`

			`str, err := json.Marshal(auth_req)`
			`fatalErr(t, err)`
GQLUser improvement 2023-07-20 00:24:22 -06:00
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`b := bytes.NewBuffer(str)`
			`req, err := http.NewRequest("PUT", url, b)`
			`fatalErr(t, err)`
GQLUser improvement 2023-07-20 00:24:22 -06:00
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`resp, err := client.Do(req)`
			`fatalErr(t, err)`
GQLUser improvement 2023-07-20 00:24:22 -06:00
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`body, err := io.ReadAll(resp.Body)`
			`fatalErr(t, err)`
Added KDF for shared secret to shared ecdsa key, and added signature to AuthRespJSON 2023-07-19 21:28:48 -06:00
GQLUser improvement 2023-07-20 00:24:22 -06:00			`resp.Body.Close()`

Added KDF for shared secret to shared ecdsa key, and added signature to AuthRespJSON 2023-07-19 21:28:48 -06:00			`var j AuthRespJSON`
			`err = json.Unmarshal(body, &j)`
			`fatalErr(t, err)`

GQLUser improvement 2023-07-20 00:24:22 -06:00			`shared, err := ParseAuthRespJSON(j, elliptic.P256(), ecdh.P256(), ec_key)`
			`fatalErr(t, err)`

Added TLS to GQLThread 2023-07-21 01:05:24 -06:00			`url = fmt.Sprintf("https://localhost:%d/gql", port)`
GQLUser improvement 2023-07-20 00:24:22 -06:00			`ser, err := json.MarshalIndent(&GQLPayload{`
Added Users query to GQLThread 2023-07-20 22:17:45 -06:00			`Query: "query { Self { Users { ID } } }",`
GQLUser improvement 2023-07-20 00:24:22 -06:00			`}, "", " ")`
			`fatalErr(t, err)`

			`b = bytes.NewBuffer(ser)`
			`req, err = http.NewRequest("GET", url, b)`
Added KDF for shared secret to shared ecdsa key, and added signature to AuthRespJSON 2023-07-19 21:28:48 -06:00			`fatalErr(t, err)`
GQLUser improvement 2023-07-20 00:24:22 -06:00
			`req.SetBasicAuth(KeyID(&id.PublicKey).String(), base64.StdEncoding.EncodeToString(shared))`
			`resp, err = client.Do(req)`
			`fatalErr(t, err)`

			`body, err = io.ReadAll(resp.Body)`
			`fatalErr(t, err)`

			`resp.Body.Close()`

			`ctx.Log.Logf("test", "TEST_RESP: %s", body)`

			`req.SetBasicAuth(KeyID(&id.PublicKey).String(), "BAD_PASSWORD")`
			`resp, err = client.Do(req)`
			`fatalErr(t, err)`

			`body, err = io.ReadAll(resp.Body)`
			`fatalErr(t, err)`

			`resp.Body.Close()`

			`ctx.Log.Logf("test", "TEST_RESP: %s", body)`
Added KDF for shared secret to shared ecdsa key, and added signature to AuthRespJSON 2023-07-19 21:28:48 -06:00
Started to add authentication for GQL endpoint 2023-07-19 14:45:05 -06:00			`done <- nil`
			`}(gql_t)`

			`err = ThreadLoop(ctx, gql_t, "start")`
			`fatalErr(t, err)`
			`}`