diff options
-rw-r--r-- | nitrocli/src/tests/mod.rs | 9 | ||||
-rw-r--r-- | nitrocli/src/tests/reset.rs | 54 |
2 files changed, 63 insertions, 0 deletions
diff --git a/nitrocli/src/tests/mod.rs b/nitrocli/src/tests/mod.rs index e0b0cf0..e2e6ce0 100644 --- a/nitrocli/src/tests/mod.rs +++ b/nitrocli/src/tests/mod.rs @@ -41,6 +41,7 @@ mod lock; mod otp; mod pin; mod pws; +mod reset; mod run; mod status; mod storage; @@ -110,6 +111,14 @@ impl Nitrocli { result } + pub fn admin_pin(&mut self, pin: impl Into<ffi::OsString>) { + self.admin_pin = Some(pin.into()) + } + + pub fn new_admin_pin(&mut self, pin: impl Into<ffi::OsString>) { + self.new_admin_pin = Some(pin.into()) + } + pub fn user_pin(&mut self, pin: impl Into<ffi::OsString>) { self.user_pin = Some(pin.into()) } diff --git a/nitrocli/src/tests/reset.rs b/nitrocli/src/tests/reset.rs new file mode 100644 index 0000000..2e567fa --- /dev/null +++ b/nitrocli/src/tests/reset.rs @@ -0,0 +1,54 @@ +// reset.rs + +// ************************************************************************* +// * Copyright (C) 2019 Robin Krahl (robin.krahl@ireas.org) * +// * * +// * This program is free software: you can redistribute it and/or modify * +// * it under the terms of the GNU General Public License as published by * +// * the Free Software Foundation, either version 3 of the License, or * +// * (at your option) any later version. * +// * * +// * This program is distributed in the hope that it will be useful, * +// * but WITHOUT ANY WARRANTY; without even the implied warranty of * +// * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * +// * GNU General Public License for more details. * +// * * +// * You should have received a copy of the GNU General Public License * +// * along with this program. If not, see <http://www.gnu.org/licenses/>. * +// ************************************************************************* + +use nitrokey::Authenticate; +use nitrokey::GetPasswordSafe; + +use super::*; + +#[test_device] +fn reset(device: nitrokey::DeviceWrapper) -> crate::Result<()> { + let new_admin_pin = "87654321"; + let mut ncli = Nitrocli::with_dev(device); + + // Change the admin PIN. + ncli.new_admin_pin(new_admin_pin); + let _ = ncli.handle(&["pin", "set", "admin"])?; + + // Check that the admin PIN has been changed. + let device = nitrokey::connect_model(ncli.model().unwrap())?; + let _ = device.authenticate_admin(new_admin_pin).unwrap(); + + // Perform factory reset + ncli.admin_pin(new_admin_pin); + let out = ncli.handle(&["reset"])?; + assert!(out.is_empty()); + + // Check that the admin PIN has been reset. + let device = nitrokey::connect_model(ncli.model().unwrap())?; + let device = device + .authenticate_admin(NITROKEY_DEFAULT_ADMIN_PIN) + .unwrap(); + + // Check that the password store works, i.e., the AES key has been + // built. + let _ = device.get_password_safe(NITROKEY_DEFAULT_USER_PIN)?; + + Ok(()) +} |