2 * Copyright (c) 2014 Contextream, Inc. and others. All rights reserved.
4 * This program and the accompanying materials are made available under the
5 * terms of the Eclipse Public License v1.0 which accompanies this distribution,
6 * and is available at http://www.eclipse.org/legal/epl-v10.html
8 package org.opendaylight.lispflowmapping.implementation.authentication;
10 import static junit.framework.Assert.assertTrue;
11 import static org.junit.Assert.assertFalse;
13 import java.util.ArrayList;
15 import junitx.framework.ArrayAssert;
17 import org.junit.Test;
18 import org.opendaylight.lispflowmapping.implementation.serializer.MapRegisterSerializer;
19 import org.opendaylight.lispflowmapping.implementation.util.LispAFIConvertor;
20 import org.opendaylight.lispflowmapping.tools.junit.BaseTestCase;
21 import org.opendaylight.yang.gen.v1.urn.opendaylight.lfm.control.plane.rev150314.MapRegister;
22 import org.opendaylight.yang.gen.v1.urn.opendaylight.lfm.control.plane.rev150314.eidtolocatorrecords.EidToLocatorRecord;
23 import org.opendaylight.yang.gen.v1.urn.opendaylight.lfm.control.plane.rev150314.eidtolocatorrecords.EidToLocatorRecordBuilder;
24 import org.opendaylight.yang.gen.v1.urn.opendaylight.lfm.control.plane.rev150314.locatorrecords.LocatorRecord;
25 import org.opendaylight.yang.gen.v1.urn.opendaylight.lfm.control.plane.rev150314.mapnotifymessage.MapNotifyBuilder;
27 public class LispAuthenticationTest extends BaseTestCase {
30 public void validate_WrongAuthentication() throws Exception {
31 // LISP(Type = 3 Map-Register, P=1, M=1
35 // AuthDataLength: 20 Data:
36 // e8:f5:0b:c5:c5:f2:b0:21:27:a8:21:41:04:f3:46:5a:5a:5b:5c:5d
37 // EID prefix: 153.16.254.1/32 (EID=0x9910FE01), TTL: 10, Authoritative,
39 // Local RLOC: 192.168.136.10 (RLOC=0xC0A8880A), Reachable,
40 // Priority/Weight: 1/100, Multicast Priority/Weight: 255/0
42 MapRegister mapRegister = MapRegisterSerializer.getInstance().deserialize(hexToByteBuffer("38 00 01 01 FF BB " //
43 + "00 00 00 00 00 00 00 01 00 14 e8 f5 0b c5 c5 f2 " //
44 + "b0 21 27 a8 21 41 04 f3 46 5a 5a 5b 5c 5d 00 00 " //
45 + "00 0a 01 20 10 00 00 00 00 01 99 10 fe 01 01 64 " //
46 + "ff 00 00 05 00 01 c0 a8 88 0a"));
48 assertFalse(LispAuthenticationUtil.validate(mapRegister, "password"));
52 public void validate__SHA1() throws Exception {
53 // LISP(Type = 3 Map-Register, P=1, M=1
57 // AuthDataLength: 20 Data:
58 // b2:dd:1a:25:c0:60:b1:46:e8:dc:6d:a6:ae:2e:92:92:a6:ca:b7:9d
59 // EID prefix: 153.16.254.1/32 (EID=0x9910FE01), TTL: 10, Authoritative,
61 // Local RLOC: 192.168.136.10 (RLOC=0xC0A8880A), Reachable,
62 // Priority/Weight: 1/100, Multicast Priority/Weight: 255/0
64 MapRegister mapRegister = MapRegisterSerializer.getInstance().deserialize(hexToByteBuffer("38 00 01 01 FF BB " //
65 + "00 00 00 00 00 00 00 01 00 14 2c 61 b9 c9 9a 20 ba d8 f5 40 d3 55 6f 5f 6e 5a b2 0a bf b5 00 00 " //
66 + "00 0a 01 20 10 00 00 00 00 01 99 10 fe 01 01 64 " //
67 + "ff 00 00 05 00 01 c0 a8 88 0a"));
69 assertTrue(LispAuthenticationUtil.validate(mapRegister, "password"));
70 assertFalse(LispAuthenticationUtil.validate(mapRegister, "wrongPassword"));
74 public void validate__SHA256() throws Exception {
75 // LISP(Type = 3 Map-Register, P=1, M=1
79 // AuthDataLength: 32 Data:
80 // 70 30 d4 c6 10 44 0d 83 be 4d bf fd a9 8c 57 6d 68 a5 bf 32 11 c9 7b
81 // 58 c4 b9 9f 06 11 23 b9 38
82 // EID prefix: 153.16.254.1/32 (EID=0x9910FE01), TTL: 10, Authoritative,
84 // Local RLOC: 192.168.136.10 (RLOC=0xC0A8880A), Reachable,
85 // Priority/Weight: 1/100, Multicast Priority/Weight: 255/0
87 MapRegister mapRegister = MapRegisterSerializer
90 hexToByteBuffer("38 00 01 01 FF BB " //
91 + "00 00 00 00 00 00 00 02 00 20 70 30 d4 c6 10 44 0d 83 be 4d bf fd a9 8c 57 6d 68 a5 bf 32 11 c9 7b 58 c4 b9 9f 06 11 23 b9 38 00 00 " //
92 + "00 0a 01 20 10 00 00 00 00 01 99 10 fe 01 01 64 " //
93 + "ff 00 00 05 00 01 c0 a8 88 0a"));
95 assertTrue(LispAuthenticationUtil.validate(mapRegister, "password"));
96 assertFalse(LispAuthenticationUtil.validate(mapRegister, "wrongPassword"));
100 public void validate__NoAuthentication() throws Exception {
101 // LISP(Type = 3 Map-Register, P=1, M=1
103 // Nonce: (something)
105 // AuthDataLength: 0:
106 // EID prefix: 153.16.254.1/32 (EID=0x9910FE01), TTL: 10, Authoritative,
108 // Local RLOC: 192.168.136.10 (RLOC=0xC0A8880A), Reachable,
109 // Priority/Weight: 1/100, Multicast Priority/Weight: 255/0
111 MapRegister mapRegister = MapRegisterSerializer.getInstance().deserialize(hexToByteBuffer("38 00 01 01 FF BB " //
112 + "00 00 00 00 00 00 00 00 00 00 " //
114 + "00 0a 01 20 10 00 00 00 00 01 99 10 fe 01 01 64 " //
115 + "ff 00 00 05 00 01 c0 a8 88 0a"));
117 assertTrue(LispAuthenticationUtil.validate(mapRegister, "password"));
118 assertTrue(LispAuthenticationUtil.validate(mapRegister, "wrongPassword"));
122 // public void authenticate__MapNotifySHA1() throws Exception {
123 // MapNotify mapNotify = new MapNotify();
124 // mapNotify.addEidToLocator(new EidToLocatorRecord().setPrefix(new
125 // LispIpv4Address(1)));
127 // mapNotify.addEidToLocator(new EidToLocatorRecord().setPrefix(new
128 // LispIpv4Address(73)));
129 // mapNotify.setNonce(6161616161L);
130 // mapNotify.setKeyId((short) 0x0001);
131 // byte[] wantedAuthenticationData = new byte[] { (byte) 0x66, (byte) 0x69,
132 // (byte) 0x2c, (byte) 0xb8, (byte) 0xb8, (byte) 0x58, (byte) 0x7c,
133 // (byte) 0x8f, (byte) 0x4c, (byte) 0xd4, (byte) 0x8b, (byte) 0x77, (byte)
134 // 0x46, (byte) 0xf0, (byte) 0x6b, (byte) 0x9f, (byte) 0x66,
135 // (byte) 0xd2, (byte) 0xaa, (byte) 0x2c };
136 // ArrayAssert.assertEquals(wantedAuthenticationData,
137 // LispAuthenticationUtil.createAuthenticationData(mapNotify, "password"));
142 // public void authenticate__MapNotifySHA256() throws Exception {
143 // MapNotify mapNotify = new MapNotify();
144 // mapNotify.addEidToLocator(new EidToLocatorRecord().setPrefix(new
145 // LispIpv4Address(1)));
147 // mapNotify.addEidToLocator(new EidToLocatorRecord().setPrefix(new
148 // LispIpv4Address(73)));
149 // mapNotify.setNonce(6161616161L);
150 // mapNotify.setKeyId((short) 0x0002);
151 // byte[] wantedAuthenticationData = new byte[] { (byte) 0x4c, (byte) 0xf1,
152 // (byte) 0x5a, (byte) 0x4c, (byte) 0xdb, (byte) 0x8d, (byte) 0x88,
153 // (byte) 0x47, (byte) 0xf1, (byte) 0x7f, (byte) 0x27, (byte) 0x81, (byte)
154 // 0x1e, (byte) 0xbf, (byte) 0x22, (byte) 0xc7, (byte) 0xe6,
155 // (byte) 0x70, (byte) 0x16, (byte) 0x5e, (byte) 0xa1, (byte) 0x59, (byte)
156 // 0xe4, (byte) 0x06, (byte) 0x3f, (byte) 0xc2, (byte) 0x6a,
157 // (byte) 0x1c, (byte) 0x86, (byte) 0xa5, (byte) 0x8d, (byte) 0x63 };
158 // ArrayAssert.assertEquals(wantedAuthenticationData,
159 // LispAuthenticationUtil.createAuthenticationData(mapNotify, "password"));
164 public void authenticate__MapNotifyNoAuthenticationData() throws Exception {
165 MapNotifyBuilder mapNotifyBuilder = new MapNotifyBuilder();
166 mapNotifyBuilder.setKeyId((short) 0x0000);
167 mapNotifyBuilder.setEidToLocatorRecord(new ArrayList<EidToLocatorRecord>());
168 EidToLocatorRecordBuilder etlrBuilder = new EidToLocatorRecordBuilder();
169 etlrBuilder.setLocatorRecord(new ArrayList<LocatorRecord>());
170 etlrBuilder.setLispAddressContainer(LispAFIConvertor.getIPContainer("1.1.1.1"));
171 etlrBuilder.setRecordTtl(55);
172 mapNotifyBuilder.getEidToLocatorRecord().add(etlrBuilder.build());
173 ArrayAssert.assertEquals(new byte[0], LispAuthenticationUtil.createAuthenticationData(mapNotifyBuilder.build(), "password"));