Security structures setup changes (#336)

* Add api to save security structure ids * Add validation for primary threshold factors in isolation * Add factors removal by list kind * Add sampls and tests * Fix import * Make primary threshold invalid status more explicit * Fix uniffi error * Update role threshold model (#338) * Update security structure threshold * Update api and tests * Update default threshold. Add tests * Add test * Fix swift tests * Fix fs removing from primary threshold. Add test * Update naming. Add Threshold ctor * Address PR comments * Remove unused variable * Add tests * Update sargon os security structure api * Add tests * Address review comment. Add tests * Version bump
radixdlt · Jan 14, 2025 · 51d850f · 51d850f
1 parent f98db7f
commit 51d850f
Show file tree

Hide file tree

Showing 117 changed files with 1,217 additions and 657 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/apple/Tests/TestCases/Profile/MFA/SecurityShieldsBuilderTests.swift b/apple/Tests/TestCases/Profile/MFA/SecurityShieldsBuilderTests.swift
@@ -19,7 +19,7 @@ struct ShieldTests {
 	func threshold() {
 		var builder = SecurityShieldBuilder()
 		#expect(builder.threshold == 0)
-		builder = builder.setThreshold(threshold: 42)
+		builder = builder.setThreshold(threshold: Threshold.specific(42))
 		#expect(builder.threshold == 42)
 	}
 
@@ -70,20 +70,20 @@ struct ShieldTests {
 			.addFactorSourceToPrimaryThreshold(factorSourceId: x)
 			.addFactorSourceToPrimaryThreshold(factorSourceId: y)
 			.addFactorSourceToPrimaryThreshold(factorSourceId: z)
-			.setThreshold(threshold: 3)
+			.setThreshold(threshold: Threshold.specific(3))
 			.addFactorSourceToRecoveryOverride(factorSourceId: y)
 		#expect(builder.recoveryRoleFactors == [y])
 
 		#expect(builder.threshold == 3)
 
-		builder = builder.removeFactorFromPrimary(factorSourceId: x)
+		builder = builder.removeFactorFromPrimary(factorSourceId: x, factorListKind: FactorListKind.threshold)
 		#expect(builder.threshold == 2)
 
 		builder = builder.removeFactorFromAllRoles(factorSourceId: y)
 		#expect(builder.recoveryRoleFactors == []) // assert `y` is removed from Recovery and Primary
 		#expect(builder.threshold == 1)
 
-		builder = builder.removeFactorFromPrimary(factorSourceId: z)
+		builder = builder.removeFactorFromPrimary(factorSourceId: z, factorListKind: FactorListKind.threshold)
 		#expect(builder.threshold == 0)
 		#expect(builder.primaryRoleThresholdFactors == [])
 	}
@@ -98,10 +98,10 @@ struct ShieldTests {
 
 		builder = builder.addFactorSourceToPrimaryThreshold(factorSourceId: .sampleDeviceOther) // actually this is added
 		#expect(builder.validate() == .PrimaryCannotHaveMultipleDevices)
-		builder = builder.removeFactorFromPrimary(factorSourceId: .sampleDeviceOther)
+		builder = builder.removeFactorFromPrimary(factorSourceId: .sampleDeviceOther, factorListKind: FactorListKind.threshold)
 
 		#expect(builder.validate() == .RecoveryRoleMustHaveAtLeastOneFactor)
-		builder = builder.removeFactorFromPrimary(factorSourceId: .sampleDeviceOther)
+		builder = builder.removeFactorFromPrimary(factorSourceId: .sampleDeviceOther, factorListKind: FactorListKind.threshold)
 			.addFactorSourceToRecoveryOverride(factorSourceId: .sampleLedger)
 
 		#expect(builder.validate() == .ConfirmationRoleMustHaveAtLeastOneFactor)
@@ -116,7 +116,7 @@ struct ShieldTests {
 	func primaryRoleWithThresholdFactorsCannotHaveAThresholdValueOfZero() throws {
 		var builder = SecurityShieldBuilder()
 			.addFactorSourceToPrimaryThreshold(factorSourceId: .sampleLedger)
-			.setThreshold(threshold: 0)
+			.setThreshold(threshold: Threshold.specific(0))
 		#expect(builder.validate() == .PrimaryRoleWithThresholdFactorsCannotHaveAThresholdValueOfZero)
 	}
 
@@ -147,7 +147,7 @@ struct ShieldTests {
 		#expect(builder.primaryRoleThresholdFactors == [factor])
 		#expect(builder.primaryRoleOverrideFactors == [other])
 
-		builder = builder.removeFactorFromPrimary(factorSourceId: factor)
+		builder = builder.removeFactorFromPrimary(factorSourceId: factor, factorListKind: FactorListKind.threshold)
 			.addFactorSourceToPrimaryOverride(factorSourceId: factor)
 			.addFactorSourceToPrimaryThreshold(factorSourceId: other)
 		#expect(builder.primaryRoleThresholdFactors == [other])
@@ -166,14 +166,14 @@ struct ShieldTests {
 
 		builder = builder.addFactorSourceToPrimaryThreshold(factorSourceId: .samplePassword)
 		#expect(builder.validate() == .PrimaryRoleWithPasswordInThresholdListMustHaveAnotherFactor)
-		builder = builder.setThreshold(threshold: 0)
+		builder = builder.setThreshold(threshold: Threshold.specific(0))
 
 		#expect(builder.validate() == .PrimaryRoleWithThresholdFactorsCannotHaveAThresholdValueOfZero)
-		builder = builder.setThreshold(threshold: 1)
+		builder = builder.setThreshold(threshold: Threshold.specific(1))
 		#expect(builder.validate() == .PrimaryRoleWithPasswordInThresholdListMustHaveAnotherFactor)
 		builder = builder.addFactorSourceToPrimaryThreshold(factorSourceId: .sampleLedger)
 		#expect(builder.validate() == .PrimaryRoleWithPasswordInThresholdListMustThresholdGreaterThanOne)
-		builder = builder.setThreshold(threshold: 2)
+		builder = builder.setThreshold(threshold: Threshold.specific(2))
 
 		builder = builder.addFactorSourceToRecoveryOverride(factorSourceId: .sampleArculus)
 			.addFactorSourceToConfirmationOverride(factorSourceId: .sampleArculusOther)
@@ -183,7 +183,7 @@ struct ShieldTests {
 		let shield = try! builder.build()
 
 		#expect(shield.matrixOfFactors.primaryRole.overrideFactors.isEmpty)
-		#expect(shield.matrixOfFactors.primaryRole.threshold == 2)
+		#expect(shield.matrixOfFactors.primaryRole.threshold == Threshold.specific(2))
 		#expect(shield.matrixOfFactors.primaryRole.thresholdFactors == [.samplePassword, .sampleLedger])
 	}
 
@@ -207,7 +207,7 @@ struct ShieldTests {
 			// Confirmation
 			.addFactorSourceToConfirmationOverride(factorSourceId: .sampleDevice)
 			// Remove
-			.removeFactorFromPrimary(factorSourceId: .sampleArculusOther)
+			.removeFactorFromPrimary(factorSourceId: .sampleArculusOther, factorListKind: FactorListKind.override)
 			.removeFactorFromRecovery(factorSourceId: .sampleLedgerOther)
 
 		builder.setAuthenticationSigningFactor(new: .sampleDevice)
@@ -232,15 +232,27 @@ struct ShieldTests {
 		#expect(shield.matrixOfFactors.confirmationRole.thresholdFactors == [])
 	}
 
-	@Test("selected factor sources for role status")
-	func selectedFactorSourcesForRoleStatus() {
+	@Test("selected primary threshold factors status")
+	func selectedPrimaryThresholdFactorsStatusInvalid() {
 		var builder = SecurityShieldBuilder()
 			.addFactorSourceToPrimaryThreshold(factorSourceId: .samplePassword)
-			.addFactorSourceToRecoveryOverride(factorSourceId: .sampleLedger)
 
-		#expect(builder.selectedFactorSourcesForRoleStatus(role: .primary) == .invalid)
-		#expect(builder.selectedFactorSourcesForRoleStatus(role: .recovery) == .optimal)
-		#expect(builder.selectedFactorSourcesForRoleStatus(role: .confirmation) == .insufficient)
+		#expect(builder.selectedPrimaryThresholdFactorsStatus() == .invalid(reason: SelectedPrimaryThresholdFactorsStatusInvalidReason.cannotBeUsedAlone(factorSourceKind: FactorSourceKind.password)))
+	}
+
+	@Test("selected primary threshold factors status")
+	func selectedPrimaryThresholdFactorsStatus() {
+		var builder = SecurityShieldBuilder()
+
+		#expect(builder.selectedPrimaryThresholdFactorsStatus() == .insufficient)
+
+		builder.addFactorSourceToPrimaryThreshold(factorSourceId: .sampleDevice)
+
+		#expect(builder.selectedPrimaryThresholdFactorsStatus() == .suboptimal)
+
+		builder.addFactorSourceToPrimaryThreshold(factorSourceId: .sampleLedger)
+
+		#expect(builder.selectedPrimaryThresholdFactorsStatus() == .optimal)
 	}
 }
 

diff --git a/crates/app/home-cards/Cargo.toml b/crates/app/home-cards/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "home-cards"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/app/key-derivation-traits/Cargo.toml b/crates/app/key-derivation-traits/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "key-derivation-traits"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/app/radix-connect-models/Cargo.toml b/crates/app/radix-connect-models/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "radix-connect-models"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/app/radix-connect/Cargo.toml b/crates/app/radix-connect/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "radix-connect"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 

diff --git a/crates/app/security-center/Cargo.toml b/crates/app/security-center/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "security-center"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/app/signing-traits/Cargo.toml b/crates/app/signing-traits/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "signing-traits"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/app/signing/Cargo.toml b/crates/app/signing/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "signing"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 

diff --git a/crates/common/build-info/Cargo.toml b/crates/common/build-info/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "build-info"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 build = "build.rs"
 

diff --git a/crates/common/bytes/Cargo.toml b/crates/common/bytes/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "bytes"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/common/entity-foundation/Cargo.toml b/crates/common/entity-foundation/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "entity-foundation"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/common/host-info/Cargo.toml b/crates/common/host-info/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "host-info"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/common/identified-vec-of/Cargo.toml b/crates/common/identified-vec-of/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "identified-vec-of"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/common/metadata/Cargo.toml b/crates/common/metadata/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "metadata"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/common/network/Cargo.toml b/crates/common/network/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "network"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/common/numeric/Cargo.toml b/crates/common/numeric/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "numeric"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/common/short-string/Cargo.toml b/crates/common/short-string/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "short-string"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/core/assert-json/Cargo.toml b/crates/core/assert-json/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "assert-json"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/core/collections/Cargo.toml b/crates/core/collections/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "core-collections"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/core/error/Cargo.toml b/crates/core/error/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "error"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/core/has-sample-values/Cargo.toml b/crates/core/has-sample-values/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "has-sample-values"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/core/misc/Cargo.toml b/crates/core/misc/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "core-misc"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/core/prelude/Cargo.toml b/crates/core/prelude/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "prelude"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/core/time-utils/Cargo.toml b/crates/core/time-utils/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "time-utils"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/core/utils/Cargo.toml b/crates/core/utils/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "core-utils"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/crypto/addresses/Cargo.toml b/crates/crypto/addresses/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "addresses"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/crypto/cap26-models/Cargo.toml b/crates/crypto/cap26-models/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "cap26-models"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/crypto/ecc/Cargo.toml b/crates/crypto/ecc/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "ecc"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/crypto/encryption/Cargo.toml b/crates/crypto/encryption/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "encryption"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/crypto/hash/Cargo.toml b/crates/crypto/hash/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "hash"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/crypto/hd/Cargo.toml b/crates/crypto/hd/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "hierarchical-deterministic"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/factors/factors/Cargo.toml b/crates/factors/factors/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "factors"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/factors/instances-provider/Cargo.toml b/crates/factors/instances-provider/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "factor-instances-provider"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]

diff --git a/crates/factors/keys-collector/Cargo.toml b/crates/factors/keys-collector/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "keys-collector"
-version = "1.1.106"
+version = "1.1.107"
 edition = "2021"
 
 [dependencies]