libgocryptfs/internal/stupidgcm/stupidgcm_test.go

// +build !without_openssl

// We compare against Go's built-in GCM implementation. Since stupidgcm only
// supports 128-bit IVs and Go only supports that from 1.5 onward, we cannot
// run these tests on older Go versions.
package stupidgcm

import (
	"crypto/aes"
	"crypto/cipher"
	"crypto/rand"
	"log"
	"testing"
)

// Get "n" random bytes from /dev/urandom or panic
func randBytes(n int) []byte {
	b := make([]byte, n)
	_, err := rand.Read(b)
	if err != nil {
		log.Panic("Failed to read random bytes: " + err.Error())
	}
	return b
}

// TestEncryptDecrypt encrypts and decrypts using both stupidgcm and Go's built-in
// GCM implementation and verifies that the results are identical.
func TestEncryptDecrypt(t *testing.T) {
	key := randBytes(32)
	sGCM := New(key, false)

	gAES, err := aes.NewCipher(key)
	if err != nil {
		t.Fatal(err)
	}
	gGCM, err := cipher.NewGCMWithNonceSize(gAES, 16)
	if err != nil {
		t.Fatal(err)
	}

	testEncryptDecrypt(t, sGCM, gGCM)
}

// Seal re-uses the "dst" buffer it is large enough.
// Check that this works correctly by testing different "dst" capacities from
// 5000 to 16 and "in" lengths from 1 to 5000.
func TestInplaceSeal(t *testing.T) {
	key := randBytes(32)
	sGCM := New(key, false)

	gAES, err := aes.NewCipher(key)
	if err != nil {
		t.Fatal(err)
	}
	gGCM, err := cipher.NewGCMWithNonceSize(gAES, 16)
	if err != nil {
		t.Fatal(err)
	}

	testInplaceSeal(t, sGCM, gGCM)
}

// Open re-uses the "dst" buffer it is large enough.
// Check that this works correctly by testing different "dst" capacities from
// 5000 to 16 and "in" lengths from 1 to 5000.
func TestInplaceOpen(t *testing.T) {
	key := randBytes(32)
	sGCM := New(key, false)

	gAES, err := aes.NewCipher(key)
	if err != nil {
		t.Fatal(err)
	}
	gGCM, err := cipher.NewGCMWithNonceSize(gAES, 16)
	if err != nil {
		t.Fatal(err)
	}

	testInplaceOpen(t, sGCM, gGCM)
}

// TestCorruption verifies that changes in the ciphertext result in a decryption
// error
func TestCorruption(t *testing.T) {
	key := randBytes(32)
	sGCM := New(key, false)

	testCorruption(t, sGCM)
}
macos: make testing without openssl work properly On MacOS, building and testing without openssl is much easier. The tests should skip tests that fail because of missing openssl instead of aborting. Fixes https://github.com/rfjakob/gocryptfs/issues/123 2017-07-14 23:22:15 +02:00			`// +build !without_openssl`

stupidgcm: skip tests on Go 1.4 and older Quoting from the patch: We compare against Go's built-in GCM implementation. Since stupidgcm only supports 128-bit IVs and Go only supports that from 1.5 onward, we cannot run these tests on older Go versions. 2016-05-04 22:34:52 +02:00			`// We compare against Go's built-in GCM implementation. Since stupidgcm only`
			`// supports 128-bit IVs and Go only supports that from 1.5 onward, we cannot`
			`// run these tests on older Go versions.`
stupidgcm: add our own thin wrapper around openssl gcm ...complete with tests and benchmark. This will allow us to get rid of the dependency to spacemonkeygo/openssl that causes problems on Arch Linux ( https://github.com/rfjakob/gocryptfs/issues/21 ) 2016-05-01 22:26:47 +02:00			`package stupidgcm`

			`import (`
			`"crypto/aes"`
			`"crypto/cipher"`
			`"crypto/rand"`
Replace all calls to naked panic() with log.Panic() We want all panics to show up in the syslog. 2016-12-10 11:50:16 +01:00			`"log"`
stupidgcm: add our own thin wrapper around openssl gcm ...complete with tests and benchmark. This will allow us to get rid of the dependency to spacemonkeygo/openssl that causes problems on Arch Linux ( https://github.com/rfjakob/gocryptfs/issues/21 ) 2016-05-01 22:26:47 +02:00			`"testing"`
			`)`

			`// Get "n" random bytes from /dev/urandom or panic`
			`func randBytes(n int) []byte {`
			`b := make([]byte, n)`
			`_, err := rand.Read(b)`
			`if err != nil {`
Replace all calls to naked panic() with log.Panic() We want all panics to show up in the syslog. 2016-12-10 11:50:16 +01:00			`log.Panic("Failed to read random bytes: " + err.Error())`
stupidgcm: add our own thin wrapper around openssl gcm ...complete with tests and benchmark. This will allow us to get rid of the dependency to spacemonkeygo/openssl that causes problems on Arch Linux ( https://github.com/rfjakob/gocryptfs/issues/21 ) 2016-05-01 22:26:47 +02:00			`}`
			`return b`
			`}`

			`// TestEncryptDecrypt encrypts and decrypts using both stupidgcm and Go's built-in`
Assorted spelling fixes. Mostly detected with the 'codespell' utility, but also includes some manual grammar fixes. 2018-12-27 12:03:00 +01:00			`// GCM implementation and verifies that the results are identical.`
stupidgcm: add our own thin wrapper around openssl gcm ...complete with tests and benchmark. This will allow us to get rid of the dependency to spacemonkeygo/openssl that causes problems on Arch Linux ( https://github.com/rfjakob/gocryptfs/issues/21 ) 2016-05-01 22:26:47 +02:00			`func TestEncryptDecrypt(t *testing.T) {`
			`key := randBytes(32)`
Add -forcedecode Force decode of encrypted files even if the integrity check fails, instead of failing with an IO error. Warning messages are still printed to syslog if corrupted files are encountered. It can be useful to recover files from disks with bad sectors or other corrupted media. Closes https://github.com/rfjakob/gocryptfs/pull/102 . 2017-04-08 02:09:28 +02:00			`sGCM := New(key, false)`
stupidgcm: add our own thin wrapper around openssl gcm ...complete with tests and benchmark. This will allow us to get rid of the dependency to spacemonkeygo/openssl that causes problems on Arch Linux ( https://github.com/rfjakob/gocryptfs/issues/21 ) 2016-05-01 22:26:47 +02:00
			`gAES, err := aes.NewCipher(key)`
			`if err != nil {`
			`t.Fatal(err)`
			`}`
			`gGCM, err := cipher.NewGCMWithNonceSize(gAES, 16)`
			`if err != nil {`
			`t.Fatal(err)`
			`}`

stupidgcm: deduplicate tests 1/2 Pull the code shared between chacha and gcm into generic functions. 2021-09-02 09:57:06 +02:00			`testEncryptDecrypt(t, sGCM, gGCM)`
stupidgcm: add our own thin wrapper around openssl gcm ...complete with tests and benchmark. This will allow us to get rid of the dependency to spacemonkeygo/openssl that causes problems on Arch Linux ( https://github.com/rfjakob/gocryptfs/issues/21 ) 2016-05-01 22:26:47 +02:00			`}`

stupidgcm: use "dst" as the output buffer it is big enough This saves an allocation of the ciphertext block. 2017-06-29 18:52:33 +02:00			`// Seal re-uses the "dst" buffer it is large enough.`
			`// Check that this works correctly by testing different "dst" capacities from`
			`// 5000 to 16 and "in" lengths from 1 to 5000.`
			`func TestInplaceSeal(t *testing.T) {`
			`key := randBytes(32)`
			`sGCM := New(key, false)`

			`gAES, err := aes.NewCipher(key)`
			`if err != nil {`
			`t.Fatal(err)`
			`}`
			`gGCM, err := cipher.NewGCMWithNonceSize(gAES, 16)`
			`if err != nil {`
			`t.Fatal(err)`
			`}`

stupidgcm: deduplicate tests 1/2 Pull the code shared between chacha and gcm into generic functions. 2021-09-02 09:57:06 +02:00			`testInplaceSeal(t, sGCM, gGCM)`
stupidgcm: use "dst" as the output buffer it is big enough This saves an allocation of the ciphertext block. 2017-06-29 18:52:33 +02:00			`}`

stupidgcm: Open: if "dst" is big enough, use it as the output buffer This means we won't need any allocation for the plaintext. 2017-06-30 23:24:12 +02:00			`// Open re-uses the "dst" buffer it is large enough.`
			`// Check that this works correctly by testing different "dst" capacities from`
			`// 5000 to 16 and "in" lengths from 1 to 5000.`
			`func TestInplaceOpen(t *testing.T) {`
stupidgcm: add test for in-place Open Adds a test for the optimization introduced in: stupidgcm: Open: if "dst" is big enough, use it as the output buffer 2017-07-01 09:55:14 +02:00			`key := randBytes(32)`
			`sGCM := New(key, false)`

			`gAES, err := aes.NewCipher(key)`
			`if err != nil {`
			`t.Fatal(err)`
			`}`
			`gGCM, err := cipher.NewGCMWithNonceSize(gAES, 16)`
			`if err != nil {`
			`t.Fatal(err)`
			`}`

stupidgcm: deduplicate tests 1/2 Pull the code shared between chacha and gcm into generic functions. 2021-09-02 09:57:06 +02:00			`testInplaceOpen(t, sGCM, gGCM)`
stupidgcm: Open: if "dst" is big enough, use it as the output buffer This means we won't need any allocation for the plaintext. 2017-06-30 23:24:12 +02:00			`}`

stupidgcm: add our own thin wrapper around openssl gcm ...complete with tests and benchmark. This will allow us to get rid of the dependency to spacemonkeygo/openssl that causes problems on Arch Linux ( https://github.com/rfjakob/gocryptfs/issues/21 ) 2016-05-01 22:26:47 +02:00			`// TestCorruption verifies that changes in the ciphertext result in a decryption`
			`// error`
			`func TestCorruption(t *testing.T) {`
			`key := randBytes(32)`
Add -forcedecode Force decode of encrypted files even if the integrity check fails, instead of failing with an IO error. Warning messages are still printed to syslog if corrupted files are encountered. It can be useful to recover files from disks with bad sectors or other corrupted media. Closes https://github.com/rfjakob/gocryptfs/pull/102 . 2017-04-08 02:09:28 +02:00			`sGCM := New(key, false)`
stupidgcm: add our own thin wrapper around openssl gcm ...complete with tests and benchmark. This will allow us to get rid of the dependency to spacemonkeygo/openssl that causes problems on Arch Linux ( https://github.com/rfjakob/gocryptfs/issues/21 ) 2016-05-01 22:26:47 +02:00
stupidgcm: deduplicate tests 1/2 Pull the code shared between chacha and gcm into generic functions. 2021-09-02 09:57:06 +02:00			`testCorruption(t, sGCM)`
stupidgcm: add our own thin wrapper around openssl gcm ...complete with tests and benchmark. This will allow us to get rid of the dependency to spacemonkeygo/openssl that causes problems on Arch Linux ( https://github.com/rfjakob/gocryptfs/issues/21 ) 2016-05-01 22:26:47 +02:00			`}`