peat-protocol 0.9.0-rc.7

Peat Coordination Protocol — hierarchical capability composition over CRDTs for heterogeneous mesh networks
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84

//! Re-exported from peat-mesh. See [`peat_mesh::security::keypair`].
//!
//! This module is a thin re-export wrapper. The canonical implementation and
//! unit tests live in `peat_mesh::security::keypair`. Tests here verify
//! that the re-exports are accessible through `peat_protocol`.
pub use peat_mesh::security::keypair::*;

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn reexport_generate_and_device_id() {
        let kp = DeviceKeypair::generate();
        let id = kp.device_id();
        assert_eq!(id.to_hex().len(), 32);
    }

    #[test]
    fn reexport_sign_verify_roundtrip() {
        let kp = DeviceKeypair::generate();
        let message = b"peat-protocol keypair roundtrip";
        let sig = kp.sign(message);
        assert!(kp.verify(message, &sig).is_ok());
    }

    #[test]
    fn reexport_verify_wrong_message_fails() {
        let kp = DeviceKeypair::generate();
        let sig = kp.sign(b"original");
        assert!(kp.verify(b"tampered", &sig).is_err());
    }

    #[test]
    fn reexport_from_secret_bytes_roundtrip() {
        let kp1 = DeviceKeypair::generate();
        let secret = kp1.secret_key_bytes();
        let kp2 = DeviceKeypair::from_secret_bytes(&secret).unwrap();
        assert_eq!(kp1.device_id(), kp2.device_id());
    }

    #[test]
    fn reexport_from_secret_bytes_invalid_length() {
        assert!(DeviceKeypair::from_secret_bytes(&[0u8; 16]).is_err());
    }

    #[test]
    fn reexport_from_seed_deterministic() {
        let kp1 = DeviceKeypair::from_seed(b"seed", "ctx").unwrap();
        let kp2 = DeviceKeypair::from_seed(b"seed", "ctx").unwrap();
        assert_eq!(kp1.device_id(), kp2.device_id());
    }

    #[test]
    fn reexport_from_seed_different_context_differs() {
        let kp1 = DeviceKeypair::from_seed(b"seed", "ctx-a").unwrap();
        let kp2 = DeviceKeypair::from_seed(b"seed", "ctx-b").unwrap();
        assert_ne!(kp1.device_id(), kp2.device_id());
    }

    #[test]
    fn reexport_verify_with_key() {
        let kp = DeviceKeypair::generate();
        let msg = b"data";
        let sig = kp.sign(msg);
        let vk = kp.verifying_key();
        assert!(DeviceKeypair::verify_with_key(&vk, msg, &sig).is_ok());
        assert!(DeviceKeypair::verify_with_key(&vk, b"wrong", &sig).is_err());
    }

    #[test]
    fn reexport_signature_from_bytes_roundtrip() {
        let kp = DeviceKeypair::generate();
        let sig = kp.sign(b"msg");
        let sig_bytes = sig.to_bytes();
        let parsed = DeviceKeypair::signature_from_bytes(&sig_bytes).unwrap();
        assert_eq!(sig, parsed);
    }

    #[test]
    fn reexport_signature_from_bytes_invalid_length() {
        assert!(DeviceKeypair::signature_from_bytes(&[0u8; 32]).is_err());
    }
}