tests: fixed some tests

Author: DennisDyallo

Yubico.YubiKey/tests/integration/Yubico/YubiKey/Piv/BioMultiProtocolTests.cs

@@ -31,7 +31,7 @@ public class BioMultiProtocolTests : PivSessionIntegrationTestBase
         /// Tests with devices without Bio Metadata are skipped.
         /// </remarks>
         /// <param name="testDeviceType"></param>
-        [SkippableTheory(typeof(NotSupportedException))]
+        [SkippableTheory(typeof(DeviceNotFoundException))]
         [InlineData(StandardTestDevice.Fw5Bio)]
         public void BioMultiProtocol_Authenticate(
             StandardTestDevice testDeviceType)
@@ -61,7 +61,7 @@ public void BioMultiProtocol_Authenticate(
         /// Tests with devices without Bio Metadata are skipped.
         /// </remarks>
         /// <param name="testDeviceType"></param>
-        [SkippableTheory(typeof(NotSupportedException))]
+        [SkippableTheory(typeof(DeviceNotFoundException))]
         [InlineData(StandardTestDevice.Fw5Bio)]
         public void BioMultiProtocol_AttemptsRemaining(
             StandardTestDevice testDeviceType)
@@ -101,7 +101,7 @@ public void BioMultiProtocol_AttemptsRemaining(
         /// Tests with devices without Bio Metadata are skipped.
         /// </remarks>
         /// <param name="testDeviceType"></param>
-        [SkippableTheory(typeof(NotSupportedException))]
+        [SkippableTheory(typeof(DeviceNotFoundException))]
         [InlineData(StandardTestDevice.Fw5Bio)]
         public void BioMultiProtocol_TemporaryPin(
             StandardTestDevice testDeviceType)

Yubico.YubiKey/tests/integration/Yubico/YubiKey/Piv/ManagementKeyTests.cs

@@ -21,7 +21,7 @@
 namespace Yubico.YubiKey.Piv
 {
     [Trait(TraitTypes.Category, TestCategories.Simple)]
-    public class ManagementKeyTests
+    public class ManagementKeyTests : PivSessionIntegrationTestBase
     {
         private readonly byte[] _currentKey;
         private readonly byte[] _newKey;
@@ -45,28 +45,27 @@ public ManagementKeyTests(ITestOutputHelper output)
             };
         }
 
-        [Theory]
+        [SkippableTheory(typeof(DeviceNotFoundException))]
         [InlineData(StandardTestDevice.Fw5)]
         [InlineData(StandardTestDevice.Fw5Fips)]
         public void HasFeature_ReturnsCorrect(StandardTestDevice device)
         {
-            var testDevice = IntegrationTestDeviceEnumeration.GetTestDevice(device);
+            TestDeviceType = device;
 
-            var expectedResult = testDevice.FirmwareVersion >= new FirmwareVersion(major: 5, minor: 4, patch: 2);
-
-            var hasFeature = testDevice.HasFeature(YubiKeyFeature.PivAesManagementKey);
-
-            Assert.Equal(hasFeature, expectedResult);
+            Skip.If(Device.FirmwareVersion < FirmwareVersion.V5_4_2);
+            var hasFeature = Device.HasFeature(YubiKeyFeature.PivAesManagementKey);
+            Assert.True(hasFeature);
         }
 
-        [Theory]
+        [SkippableTheory(typeof(DeviceNotFoundException))]
         [InlineData(StandardTestDevice.Fw5)]
         [InlineData(StandardTestDevice.Fw5Fips)]
         public void GetManagementAlgorithm_WhenReset_ReturnsCorrectType(StandardTestDevice device)
         {
-            var testDevice = IntegrationTestDeviceEnumeration.GetTestDevice(device);
-            var shouldBeAes = testDevice.FirmwareVersion >= FirmwareVersion.V5_7_0;
-            var mustBeAes = shouldBeAes && testDevice.IsFipsSeries;
+            TestDeviceType = device;
+
+            var shouldBeAes = Device.FirmwareVersion >= FirmwareVersion.V5_7_0;
+            var mustBeAes = shouldBeAes && Device.IsFipsSeries;
             var defaultManagementKeyType = shouldBeAes
                 ? KeyType.AES192
                 : KeyType.TripleDES;
@@ -75,67 +74,63 @@ public void GetManagementAlgorithm_WhenReset_ReturnsCorrectType(StandardTestDevi
                 ? KeyType.AES192
                 : KeyType.TripleDES;
 
-            using var session = new PivSession(testDevice);
-            session.KeyCollector = TestKeyCollectorDelegate;
-
-            session.ResetApplication();
+            Session.KeyCollector = TestKeyCollectorDelegate;
 
             // This must throw for FIPS devices.
             if (mustBeAes)
             {
                 Assert.Throws<InvalidOperationException>(
-                    () => session.ChangeManagementKey(PivTouchPolicy.None, KeyType.TripleDES.GetPivAlgorithm()));
+                    () => Session.ChangeManagementKey(PivTouchPolicy.None, KeyType.TripleDES.GetPivAlgorithm()));
             }
             else
             {
-                session.ChangeManagementKey(PivTouchPolicy.None, alternativeManagementKeyType.GetPivAlgorithm());
-                Assert.Equal(alternativeManagementKeyType.GetPivAlgorithm(), session.ManagementKeyAlgorithm);
+                Session.ChangeManagementKey(PivTouchPolicy.None, alternativeManagementKeyType.GetPivAlgorithm());
+                Assert.Equal(alternativeManagementKeyType.GetPivAlgorithm(), Session.ManagementKeyAlgorithm);
 
-                session.AuthenticateManagementKey();
-                session.ResetApplication();
+                Session.AuthenticateManagementKey();
+                Session.ResetApplication();
 
-                Assert.Equal(defaultManagementKeyType.GetPivAlgorithm(), session.ManagementKeyAlgorithm);
+                Assert.Equal(defaultManagementKeyType.GetPivAlgorithm(), Session.ManagementKeyAlgorithm);
             }
         }
 
-        [Theory]
+        [SkippableTheory(typeof(DeviceNotFoundException))]
         [InlineData(StandardTestDevice.Fw5)]
         [InlineData(StandardTestDevice.Fw5Fips)]
         public void ChangeManagementKey_WithDefaultParameters_UsesCorrectTypeForRespectiveVersion(StandardTestDevice device)
         {
-            var testDevice = IntegrationTestDeviceEnumeration.GetTestDevice(device);
+            var Device = IntegrationTestDeviceEnumeration.GetTestDevice(device);
 
-            var shouldBeAes = testDevice.FirmwareVersion >= FirmwareVersion.V5_7_0;
-            var mustBeAes = shouldBeAes && testDevice.IsFipsSeries;
+            var shouldBeAes = Device.FirmwareVersion >= FirmwareVersion.V5_7_0;
+            var mustBeAes = shouldBeAes && Device.IsFipsSeries;
             var defaultManagementKeyType = shouldBeAes || mustBeAes
                 ? KeyType.AES192
                 : KeyType.TripleDES;
 
-            using var session = new PivSession(testDevice);
-            session.KeyCollector = TestKeyCollectorDelegate;
-            session.ResetApplication();
+            using var Session = new PivSession(Device);
+            Session.KeyCollector = TestKeyCollectorDelegate;
 
             // This must not throw. 5.7 FIPS requires management key to be AES192.
-            session.ChangeManagementKey();
-            Assert.Equal(defaultManagementKeyType.GetPivAlgorithm(), session.ManagementKeyAlgorithm);
+            Session.ChangeManagementKey();
+            Assert.Equal(defaultManagementKeyType.GetPivAlgorithm(), Session.ManagementKeyAlgorithm);
 
             // This must throw for FIPS devices.
             if (mustBeAes)
             {
                 Assert.Throws<InvalidOperationException>(
-                    () => session.ChangeManagementKey(PivTouchPolicy.None, KeyType.TripleDES.GetPivAlgorithm()));
+                    () => Session.ChangeManagementKey(PivTouchPolicy.None, KeyType.TripleDES.GetPivAlgorithm()));
             }
         }
 
-        [Theory]
+        [SkippableTheory(typeof(DeviceNotFoundException))]
         [InlineData(StandardTestDevice.Fw5)]
         [InlineData(StandardTestDevice.Fw5Fips)]
-        public void RandomKey_Authenticates(StandardTestDevice testDeviceType)
+        public void RandomKey_Authenticates(StandardTestDevice DeviceType)
         {
-            var testDevice = IntegrationTestDeviceEnumeration.GetTestDevice(testDeviceType);
 
-            var shouldBeAes = testDevice.FirmwareVersion >= FirmwareVersion.V5_7_0;
-            var mustBeAes = shouldBeAes && testDevice.IsFipsSeries;
+            TestDeviceType = DeviceType;
+            var shouldBeAes = Device.FirmwareVersion >= FirmwareVersion.V5_7_0;
+            var mustBeAes = shouldBeAes && Device.IsFipsSeries;
             var defaultManagementKeyType = shouldBeAes || mustBeAes
                 ? KeyType.AES192
                 : KeyType.TripleDES;
@@ -145,44 +140,38 @@ public void RandomKey_Authenticates(StandardTestDevice testDeviceType)
             for (var index = 0; index < count; index++)
             {
                 GetRandomMgmtKey();
-                isValid = ChangeMgmtKey(testDevice, defaultManagementKeyType);
+                isValid = ChangeMgmtKey(defaultManagementKeyType);
                 if (!isValid)
                 {
                     break;
                 }
 
-                isValid = VerifyMgmtKey(isMutual: false, testDevice);
+                isValid = VerifyMgmtKey(isMutual: false);
                 if (!isValid)
                 {
                     break;
                 }
 
-                isValid = VerifyMgmtKey(isMutual: true, testDevice);
+                isValid = VerifyMgmtKey(isMutual: true);
                 if (!isValid)
                 {
                     break;
                 }
             }
 
-            ResetPiv(testDevice);
-
             Assert.True(isValid);
         }
 
-        private bool VerifyMgmtKey(bool isMutual, IYubiKeyDevice testDevice)
+        private bool VerifyMgmtKey(bool isMutual)
         {
-            using (var pivSession = new PivSession(testDevice))
-            {
-                pivSession.KeyCollector = TestKeyCollectorDelegate;
-                return pivSession.TryAuthenticateManagementKey(isMutual);
-            }
+            Session.KeyCollector = TestKeyCollectorDelegate;
+            return Session.TryAuthenticateManagementKey(isMutual);
         }
 
-        private bool ChangeMgmtKey(IYubiKeyDevice testDevice, KeyType managementKeyType)
+        private bool ChangeMgmtKey(KeyType managementKeyType)
         {
-            using var pivSession = new PivSession(testDevice);
-            pivSession.KeyCollector = TestKeyCollectorDelegate;
-            var isChanged = pivSession.TryChangeManagementKey(PivTouchPolicy.Default, managementKeyType.GetPivAlgorithm());
+            Session.KeyCollector = TestKeyCollectorDelegate;
+            var isChanged = Session.TryChangeManagementKey(PivTouchPolicy.Default, managementKeyType.GetPivAlgorithm());
             if (isChanged)
             {
                 Array.Copy(_newKey, _currentKey, length: 24);
@@ -191,10 +180,10 @@ private bool ChangeMgmtKey(IYubiKeyDevice testDevice, KeyType managementKeyType)
             return isChanged;
         }
 
-        private static void ResetPiv(IYubiKeyDevice testDevice)
+        private static void ResetPiv(IYubiKeyDevice Device)
         {
-            using var pivSession = new PivSession(testDevice);
-            pivSession.ResetApplication();
+            using var Session = new PivSession(Device);
+            Session.ResetApplication();
         }
 
         private void GetRandomMgmtKey()

Yubico.YubiKey/tests/integration/Yubico/YubiKey/Piv/MoveDeleteKeyTests.cs

@@ -21,7 +21,7 @@
 namespace Yubico.YubiKey.Piv
 {
     [Trait(TraitTypes.Category, TestCategories.Simple)]
-    public class MoveDeleteKeyTests
+    public class MoveDeleteKeyTests : PivSessionIntegrationTestBase
     {
         [SkippableTheory(typeof(NotSupportedException))]
         [InlineData(KeyType.RSA1024)]
@@ -36,26 +36,20 @@ public void MoveKey_WithGenerate(KeyType expectedAlgorithm)
             const byte sourceSlot = PivSlot.Retired1;
             const byte destinationSlot = PivSlot.Retired20;
 
-            var testDevice = IntegrationTestDeviceEnumeration.GetTestDevice(StandardTestDevice.Fw5);
-            using var pivSession = new PivSession(testDevice);
-            var collectorObj = new Simple39KeyCollector();
-            pivSession.KeyCollector = collectorObj.Simple39KeyCollectorDelegate;
-
-            DeleteKeys(pivSession, sourceSlot, destinationSlot);
-
-            var generatedKeyPair = pivSession.GenerateKeyPair(sourceSlot, expectedAlgorithm, PivPinPolicy.None);
-            var metadataForKeyPair = pivSession.GetMetadata(sourceSlot);
-            Assert.Equal(generatedKeyPair.EncodeAsPiv(), metadataForKeyPair.PublicKeyParameters?.EncodeAsPiv());
+            DeleteKeys(Session, sourceSlot, destinationSlot);
+            var devicePublicKey = Session.GenerateKeyPair(sourceSlot, expectedAlgorithm, PivPinPolicy.None);
+            var devicePublicKeySpan = devicePublicKey.EncodeAsPiv().Span;
 
             // Act
-            pivSession.MoveKey(sourceSlot, destinationSlot);
+            Session.MoveKey(sourceSlot, destinationSlot);
+            var destinationMetadata = Session.GetMetadata(destinationSlot);
 
             // Assert
             // Moved key slot should now be empty
-            Assert.Throws<InvalidOperationException>(() => pivSession.GetMetadata(sourceSlot));
-
-            var destinationMetadata = pivSession.GetMetadata(destinationSlot);
-            Assert.Equal(generatedKeyPair.EncodeAsPiv(), destinationMetadata.PublicKeyParameters?.EncodeAsPiv());
+            Assert.Throws<InvalidOperationException>(() => Session.GetMetadata(sourceSlot));
+            var movedPublicKey = destinationMetadata.PublicKeyParameters!.EncodeAsPiv().Span;
+            var isMoved = devicePublicKeySpan.SequenceEqual(movedPublicKey);
+            Assert.True(isMoved);
         }
 
         [SkippableTheory(typeof(NotSupportedException))]
@@ -70,28 +64,23 @@ public void MoveKey_WithImportedKey(KeyType expectedAlgorithm)
             // Arrange
             const byte sourceSlot = PivSlot.Retired1;
             const byte destinationSlot = PivSlot.Retired20;
+            var testPrivateKey = TestKeys.GetTestPrivateKey(expectedAlgorithm);
 
-            var testDevice = IntegrationTestDeviceEnumeration.GetTestDevice(StandardTestDevice.Fw5);
-            using var pivSession = new PivSession(testDevice);
-            pivSession.KeyCollector = new Simple39KeyCollector().Simple39KeyCollectorDelegate;
-
-            DeleteKeys(pivSession, sourceSlot, destinationSlot);
-
-            var (publicKey, privateKey) = TestKeys.GetKeyPair(expectedAlgorithm);
-            var importedPrivateKey = AsnPrivateKeyDecoder.CreatePrivateKey(privateKey.EncodedKey);
-            var importedPublicKey = AsnPublicKeyDecoder.CreatePublicKey(publicKey.EncodedKey);
+            DeleteKeys(Session, sourceSlot, destinationSlot);
 
-            pivSession.ImportPrivateKey(sourceSlot, importedPrivateKey);
+            Session.ImportPrivateKey(sourceSlot, testPrivateKey.AsPrivateKey());
+            var devicePublicKey = Session.GetMetadata(sourceSlot);
 
             // Act
-            pivSession.MoveKey(sourceSlot, destinationSlot);
+            Session.MoveKey(sourceSlot, destinationSlot);
+            var destinationMetadata = Session.GetMetadata(destinationSlot);
 
             // Assert
             // Moved key slot should now be empty
-            Assert.Throws<InvalidOperationException>(() => pivSession.GetMetadata(sourceSlot));
-
-            var destinationMetadata = pivSession.GetMetadata(destinationSlot);
-            Assert.Equal(importedPublicKey.EncodeAsPiv(), destinationMetadata.PublicKeyParameters?.EncodeAsPiv());
+            Assert.Throws<InvalidOperationException>(() => Session.GetMetadata(sourceSlot));
+            var movedPublicKey = devicePublicKey.PublicKeyParameters!.EncodeAsPiv().Span;
+            var isMoved = devicePublicKey.PublicKeyParameters!.EncodeAsPiv().Span.SequenceEqual(movedPublicKey);
+            Assert.True(isMoved);
         }
 
         [SkippableTheory(typeof(NotSupportedException))]
@@ -107,43 +96,22 @@ public void DeleteKey_WithImportedKey(KeyType expectedAlgorithm)
             const byte slotToDelete = PivSlot.Retired1;
             var testDevice = IntegrationTestDeviceEnumeration.GetTestDevice();
 
-            using var pivSession = new PivSession(testDevice);
-            pivSession.KeyCollector = new Simple39KeyCollector().Simple39KeyCollectorDelegate;
-
             var testPrivateKey = TestKeys.GetTestPrivateKey(expectedAlgorithm);
             var privateKey = AsnPrivateKeyDecoder.CreatePrivateKey(testPrivateKey.EncodedKey);
-            pivSession.ImportPrivateKey(slotToDelete, privateKey);
+            Session.ImportPrivateKey(slotToDelete, privateKey);
 
             // Act
-            pivSession.DeleteKey(slotToDelete);
+            Session.DeleteKey(slotToDelete);
 
             // Assert
             // Key has been deleted and thus returns no data on the slot query
-            Assert.Throws<InvalidOperationException>(() => pivSession.GetMetadata(slotToDelete));
-        }
-
-        private static byte[] GetRandomDataBuffer(KeyType expectedAlgorithm)
-        {
-            byte[] dataToSign = expectedAlgorithm switch
-            {
-                KeyType.RSA1024 => new byte[128],
-                KeyType.RSA2048 => new byte[256],
-                KeyType.RSA3072 => new byte[384],
-                KeyType.RSA4096 => new byte[512],
-                KeyType.ECP256 => new byte[32],
-                KeyType.ECP384 => new byte[48],
-                _ => throw new ArgumentException("what are you trying to do")
-            };
-
-            Random.Shared.NextBytes(dataToSign);
-            dataToSign[0] &= 0x7F;
-            return dataToSign;
+            Assert.Throws<InvalidOperationException>(() => Session.GetMetadata(slotToDelete));
         }
 
-        private static void DeleteKeys(PivSession pivSession, byte sourceSlot, byte destinationSlot)
+        private static void DeleteKeys(PivSession Session, byte sourceSlot, byte destinationSlot)
         {
-            pivSession.DeleteKey(sourceSlot);
-            pivSession.DeleteKey(destinationSlot);
+            Session.DeleteKey(sourceSlot);
+            Session.DeleteKey(destinationSlot);
         }
     }
 }