openmls 0.8.1

A Rust implementation of the Messaging Layer Security (MLS) protocol, as defined in RFC 9420.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146

//! This module contains helpers for skipping validation. It is built such that setting the flag to
//! disable validation can only by set when the "test-utils" feature is enabled.
//! This module is used in two places, and they use different parts of it.
//! Code that performs validation and wants to check whether a check is disabled only uses the
//! [`is_disabled`] submodule. It contains getter functions that read the current state of the
//! flag.
//! Test code that disables checks uses the code in the [`checks`] submodule. It contains a module
//! for each check that can be disabled, and a getter for a handle, protected by a [`Mutex`]. This
//! is done because the flag state is shared between tests, and tests that set and unset the same
//! checks are not safe to run concurrently.
//! For example, a test could cann [`checks::confirmation_tag::handle`] to get a handle to disable
//! and re-enable the validation of confirmation tags.

pub(crate) mod is_disabled {
    use super::checks::*;

    pub(crate) fn confirmation_tag() -> bool {
        confirmation_tag::FLAG.load(core::sync::atomic::Ordering::Relaxed)
    }

    pub(crate) fn leaf_node_lifetime() -> bool {
        leaf_node_lifetime::FLAG.load(core::sync::atomic::Ordering::Relaxed)
    }
}

#[cfg(test)]
use std::sync::atomic::AtomicBool;

/// Contains a reference to a flag. Provides convenience functions to set and clear the flag.
#[cfg(test)]
#[derive(Clone, Copy, Debug)]
pub struct SkipValidationHandle {
    // we keep this field so we can see which handle this is when printing it. we don't need it otherwise
    #[allow(dead_code)]
    name: &'static str,
    flag: &'static AtomicBool,
}

/// Contains the flags and functions that return handles to control them.
pub(crate) mod checks {
    /// Disables validation of the confirmation_tag.
    pub(crate) mod confirmation_tag {
        use std::sync::atomic::AtomicBool;

        /// A way of disabling verification and validation of confirmation tags.
        pub(in crate::skip_validation) static FLAG: AtomicBool = AtomicBool::new(false);

        #[cfg(test)]
        pub(crate) use lock::handle;

        #[cfg(test)]
        mod lock {
            use super::FLAG;
            use crate::skip_validation::SkipValidationHandle;
            use once_cell::sync::Lazy;
            use std::sync::{Mutex, MutexGuard};

            /// The name of the check that can be skipped here
            const NAME: &str = "confirmation_tag";

            /// A mutex needed to run tests that use this flag sequentially
            static MUTEX: Lazy<Mutex<SkipValidationHandle>> =
                Lazy::new(|| Mutex::new(SkipValidationHandle::new_confirmation_tag_handle()));

            /// Takes the mutex and returns the control handle to the validation skipper
            pub(crate) fn handle() -> MutexGuard<'static, SkipValidationHandle> {
                MUTEX.lock().unwrap_or_else(|e| {
                    panic!("error taking skip-validation mutex for '{NAME}': {e}")
                })
            }

            impl SkipValidationHandle {
                pub fn new_confirmation_tag_handle() -> Self {
                    Self {
                        name: NAME,
                        flag: &FLAG,
                    }
                }
            }
        }
    }

    /// Disables validation of leaf node lifetimes
    pub(crate) mod leaf_node_lifetime {
        use std::sync::atomic::AtomicBool;

        /// A way of disabling verification and validation of leaf node lifetimes.
        pub(in crate::skip_validation) static FLAG: AtomicBool = AtomicBool::new(false);

        #[cfg(test)]
        pub(crate) use lock::handle;

        #[cfg(test)]
        mod lock {
            use super::FLAG;
            use crate::skip_validation::SkipValidationHandle;
            use once_cell::sync::Lazy;
            use std::sync::{Mutex, MutexGuard};

            /// The name of the check that can be skipped here
            const NAME: &str = "leaf_node_lifetime";

            /// A mutex needed to run tests that use this flag sequentially
            static MUTEX: Lazy<Mutex<SkipValidationHandle>> =
                Lazy::new(|| Mutex::new(SkipValidationHandle::new_leaf_node_lifetime_handle()));

            /// Takes the mutex and returns the control handle to the validation skipper
            pub(crate) fn handle() -> MutexGuard<'static, SkipValidationHandle> {
                MUTEX.lock().unwrap_or_else(|e| {
                    panic!("error taking skip-validation mutex for '{NAME}': {e}")
                })
            }

            impl SkipValidationHandle {
                pub fn new_leaf_node_lifetime_handle() -> Self {
                    Self {
                        name: NAME,
                        flag: &FLAG,
                    }
                }
            }
        }
    }
}

#[cfg(test)]
impl SkipValidationHandle {
    /// Disables validation for the check controlled by this handle
    pub fn disable_validation(self) {
        self.flag.store(true, core::sync::atomic::Ordering::Relaxed);
    }

    /// Enables validation for the check controlled by this handle
    pub fn enable_validation(self) {
        self.flag
            .store(false, core::sync::atomic::Ordering::Relaxed);
    }

    /// Runs function `f` with validation disabled
    pub fn with_disabled<R, F: FnMut() -> R>(self, mut f: F) -> R {
        self.disable_validation();
        let r = f();
        self.enable_validation();
        r
    }
}