• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1#!/usr/bin/env python3
2#
3#  Copyright (c) 2016, The OpenThread Authors.
4#  All rights reserved.
5#
6#  Redistribution and use in source and binary forms, with or without
7#  modification, are permitted provided that the following conditions are met:
8#  1. Redistributions of source code must retain the above copyright
9#     notice, this list of conditions and the following disclaimer.
10#  2. Redistributions in binary form must reproduce the above copyright
11#     notice, this list of conditions and the following disclaimer in the
12#     documentation and/or other materials provided with the distribution.
13#  3. Neither the name of the copyright holder nor the
14#     names of its contributors may be used to endorse or promote products
15#     derived from this software without specific prior written permission.
16#
17#  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
18#  AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19#  IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20#  ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
21#  LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
22#  CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
23#  SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
24#  INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
25#  CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
26#  ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
27#  POSSIBILITY OF SUCH DAMAGE.
28#
29
30import unittest
31
32import config
33import thread_cert
34from pktverify.consts import MLE_ADVERTISEMENT, MLE_CHILD_ID_REQUEST
35from pktverify.packet_verifier import PacketVerifier
36
37LEADER = 1
38ED = 2
39
40
41class Cert_6_6_1_KeyIncrement(thread_cert.TestCase):
42    TOPOLOGY = {
43        LEADER: {
44            'name': 'LEADER',
45            'mode': 'rdn',
46            'allowlist': [ED]
47        },
48        ED: {
49            'name': 'ED',
50            'is_mtd': True,
51            'mode': 'rn',
52            'allowlist': [LEADER]
53        },
54    }
55
56    def test(self):
57        self.nodes[LEADER].start()
58        self.simulator.go(config.LEADER_STARTUP_DELAY)
59        self.assertEqual(self.nodes[LEADER].get_state(), "leader")
60
61        self.nodes[ED].start()
62        self.simulator.go(5)
63        self.assertEqual(self.nodes[ED].get_state(), "child")
64
65        self.collect_rloc16s()
66        addrs = self.nodes[ED].get_addrs()
67        for addr in addrs:
68            self.assertTrue(self.nodes[LEADER].ping(addr))
69
70        key_sequence_counter = self.nodes[LEADER].get_key_sequence_counter()
71        self.nodes[LEADER].set_key_sequence_counter(key_sequence_counter + 1)
72
73        addrs = self.nodes[ED].get_addrs()
74        for addr in addrs:
75            self.assertTrue(self.nodes[LEADER].ping(addr))
76
77    def verify(self, pv):
78        pkts = pv.pkts
79        pv.summary.show()
80
81        LEADER = pv.vars['LEADER']
82        ED = pv.vars['ED']
83        _leader_pkts = pkts.filter_wpan_src64(LEADER)
84        _ed_pkts = pkts.filter_wpan_src64(ED)
85
86        # Step 1: The DUT must start the network using
87        # thrKeySequenceCounter = 0
88        _leader_pkts.filter_mle_cmd(MLE_ADVERTISEMENT).must_next().must_verify(
89            lambda p: p.wpan.aux_sec.key_source == 0)
90
91        # Step 2: Verify that the topology described above is created.
92        # MLE Auxiliary security header shall contain Key Source = 0,
93        # KeyIndex = 1, KeyID Mode = 2
94        _ed_pkts.filter_mle_cmd(
95            MLE_CHILD_ID_REQUEST).must_next().must_verify(lambda p: p.wpan.aux_sec.key_index == 1 and p.wpan.aux_sec.
96                                                          key_id_mode == 2 and p.wpan.aux_sec.key_source == 0)
97
98        # Step 3: Leader send an ICMPv6 Echo Request to DUT.
99        # The MAC Auxiliary security header must contain
100        # KeyIndex = 1, KeyID Mode = 1
101        lp = _leader_pkts.filter_ping_request().filter(
102            lambda p: p.wpan.aux_sec.key_index == 1 and p.wpan.aux_sec.key_id_mode == 1 and p.wpan.dst16 == pv.vars[
103                'ED_RLOC16']).must_next()
104
105        # Step 4: DUT send an ICMPv6 Echo Reply to Leader.
106        # The MAC Auxiliary security header must contain
107        # KeyIndex = 1, KeyID Mode = 1
108        _ed_pkts.filter_ping_reply(identifier=lp.icmpv6.echo.identifier).must_next().must_verify(
109            lambda p: p.wpan.aux_sec.key_index == 1 and p.wpan.aux_sec.key_id_mode == 1)
110
111        # Step 5: Leader increment thrKeySequenceCounter by 1 to force a key switch.
112        # Step 6: Leader Send an ICMPv6 Echo Request to DUT.
113        # The MAC Auxiliary security header must contain
114        # KeyIndex = 2, KeyID Mode = 1
115        lp = _leader_pkts.filter_ping_request().filter(
116            lambda p: p.wpan.aux_sec.key_index == 2 and p.wpan.aux_sec.key_id_mode == 1 and p.wpan.dst16 == pv.vars[
117                'ED_RLOC16']).must_next()
118
119        # Step 7: DUT send an ICMPv6 Echo Reply to Leader.
120        # The MAC Auxiliary security header must contain
121        # KeyIndex = 2, KeyID Mode = 1
122        _ed_pkts.filter_ping_reply(identifier=lp.icmpv6.echo.identifier).must_next().must_verify(
123            lambda p: p.wpan.aux_sec.key_index == 2 and p.wpan.aux_sec.key_id_mode == 1)
124
125
126if __name__ == '__main__':
127    unittest.main()
128