d023cd6c95
The rewritten openssl backend does not support this flag anymore, and it was inherently dangerour. Drop it (ignored for compatibility)
42 lines
812 B
Go
42 lines
812 B
Go
package cryptocore
|
|
|
|
import (
|
|
"testing"
|
|
|
|
"github.com/rfjakob/gocryptfs/v2/internal/stupidgcm"
|
|
)
|
|
|
|
// "New" should accept at least these param combinations
|
|
func TestCryptoCoreNew(t *testing.T) {
|
|
key := make([]byte, 32)
|
|
for _, useHKDF := range []bool{true, false} {
|
|
c := New(key, BackendGoGCM, 96, useHKDF)
|
|
if c.IVLen != 12 {
|
|
t.Fail()
|
|
}
|
|
c = New(key, BackendGoGCM, 128, useHKDF)
|
|
if c.IVLen != 16 {
|
|
t.Fail()
|
|
}
|
|
if stupidgcm.BuiltWithoutOpenssl {
|
|
continue
|
|
}
|
|
c = New(key, BackendOpenSSL, 128, useHKDF)
|
|
if c.IVLen != 16 {
|
|
t.Fail()
|
|
}
|
|
}
|
|
}
|
|
|
|
// "New" should panic on any key not 32 bytes long
|
|
func TestNewPanic(t *testing.T) {
|
|
defer func() {
|
|
if r := recover(); r == nil {
|
|
t.Errorf("The code did not panic")
|
|
}
|
|
}()
|
|
|
|
key := make([]byte, 16)
|
|
New(key, BackendOpenSSL, 128, true)
|
|
}
|