Christian Nennemann
3a139dfc7e
Strategic work for IETF submission of draft-nennemann-act-01 and
draft-nennemann-wimse-ect-02:
Package restructure:
- move ACT and ECT refimpls to workspace/packages/{act,ect}/
- ietf-act and ietf-ect distribution names (sibling packages)
- cross-spec interop test plan (INTEROP-TEST-PLAN.md)
ACT draft -01 revisions:
- rename 'par' claim to 'pred' (align with ECT)
- rename 'Agent Compact Token' to 'Agent Context Token' (semantic
alignment with ECT family)
- add Applicability section (MCP, OpenAI, LangGraph, A2A, CrewAI)
- add DAG vs Linear Delegation Chains section (differentiator vs
txn-tokens-for-agents actchain, Agentic JWT, AIP/IBCTs)
- add Related Work: AIP, SentinelAgent, Agentic JWT, txn-tokens-for-agents,
HDP, SCITT-AI-agent-execution
- pin SCITT arch to -22, note AUTH48 status
Outreach drafts:
- Emirdag liaison email (SCITT-AI coordination)
- OAuth ML response on txn-tokens-for-agents-06
Strategy document:
- STRATEGY.md with phased action plan, risk register, timeline
Submodule:
- update workspace/drafts/ietf-wimse-ect pointer to -02 commit
65 lines
1.8 KiB
Python
65 lines
1.8 KiB
Python
"""Tests for validate module."""
|
|
|
|
import json
|
|
import pytest
|
|
|
|
from ect.validate import (
|
|
EXT_MAX_DEPTH,
|
|
EXT_MAX_SIZE,
|
|
validate_ext,
|
|
validate_hash_format,
|
|
valid_uuid,
|
|
)
|
|
|
|
|
|
def test_valid_uuid():
|
|
assert valid_uuid("550e8400-e29b-41d4-a716-446655440000") is True
|
|
assert valid_uuid("00000000-0000-0000-0000-000000000000") is True
|
|
assert valid_uuid("") is False
|
|
assert valid_uuid("not-a-uuid") is False
|
|
assert valid_uuid("550e8400e29b41d4a716446655440000") is False # no dashes
|
|
|
|
|
|
def test_validate_ext_none():
|
|
validate_ext(None)
|
|
validate_ext({})
|
|
|
|
|
|
def test_validate_ext_size():
|
|
# Serialized JSON must exceed EXT_MAX_SIZE (4096) bytes
|
|
big = {"x": "y" * (EXT_MAX_SIZE - 2)} # "{\"x\":\"...\"}" + payload
|
|
raw = json.dumps(big)
|
|
assert len(raw.encode("utf-8")) > EXT_MAX_SIZE
|
|
with pytest.raises(ValueError, match="max size"):
|
|
validate_ext(big)
|
|
|
|
|
|
def test_validate_ext_depth():
|
|
deep = {"a": 1}
|
|
for _ in range(EXT_MAX_DEPTH):
|
|
deep = {"n": deep}
|
|
with pytest.raises(ValueError, match="depth"):
|
|
validate_ext(deep)
|
|
|
|
|
|
def test_validate_hash_format_empty():
|
|
validate_hash_format("")
|
|
|
|
|
|
def test_validate_hash_format_ok():
|
|
# Plain base64url per RFC 9449 / ECT spec (no algorithm prefix)
|
|
validate_hash_format("YQ")
|
|
validate_hash_format("dBjftJeZ4CVP-mB92K27uhbUJU1p1r_wW1gFWFOEjXk")
|
|
validate_hash_format("abc123-_XYZ")
|
|
|
|
|
|
def test_validate_hash_format_bad():
|
|
# Colon is not valid base64url — rejects old prefixed format
|
|
with pytest.raises(ValueError, match="plain base64url"):
|
|
validate_hash_format("sha-256:YQ")
|
|
with pytest.raises(ValueError, match="plain base64url"):
|
|
validate_hash_format("not valid!!")
|
|
# Null byte in payload
|
|
with pytest.raises(ValueError, match="plain base64url"):
|
|
validate_hash_format("YQ\x00")
|