use crate::{clear_test_key_slot, TEST_DOMAINS, TEST_KEY_ID, TEST_KEY_LABEL};
use yubihsm::{object, wrap, Capability};

/// Generate an AES-CCM key wrapping key
#[test]
fn wrap_key_test() {
    let client = crate::get_hsm_client();

    let algorithm = wrap::Algorithm::Aes256Ccm;
    let capabilities = Capability::EXPORT_WRAPPED
        | Capability::IMPORT_WRAPPED
        | Capability::UNWRAP_DATA
        | Capability::WRAP_DATA;
    let delegated_capabilities = Capability::all();

    clear_test_key_slot(&client, object::Type::WrapKey);

    let key_id = client
        .generate_wrap_key(
            TEST_KEY_ID,
            TEST_KEY_LABEL.into(),
            TEST_DOMAINS,
            capabilities,
            delegated_capabilities,
            algorithm,
        )
        .unwrap_or_else(|err| panic!("error generating wrap key: {err}"));

    assert_eq!(key_id, TEST_KEY_ID);

    let object_info = client
        .get_object_info(TEST_KEY_ID, object::Type::WrapKey)
        .unwrap_or_else(|err| panic!("error getting object info: {err}"));

    assert_eq!(object_info.capabilities, capabilities);
    assert_eq!(object_info.object_id, TEST_KEY_ID);
    assert_eq!(object_info.domains, TEST_DOMAINS);
    assert_eq!(object_info.object_type, object::Type::WrapKey);
    assert_eq!(object_info.algorithm, algorithm.into());
    assert_eq!(object_info.origin, object::Origin::Generated);
    assert_eq!(&object_info.label.to_string(), TEST_KEY_LABEL);
}