Google Git
Sign in
fuchsia / third_party / tink / 77ea5026740aaedda87a23e0254bd8a1639674b4 / . / cc / hybrid / internal / hpke_decrypt_boringssl_test.cc
blob: afdf7e38d755d6a8222c34c45089b307021e1887 [file] [log] [blame]
// Copyright 2021 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
///////////////////////////////////////////////////////////////////////////////
#include "tink/hybrid/internal/hpke_decrypt_boringssl.h"
#include <string>
#include <utility>
#include "gtest/gtest.h"
#include "absl/status/status.h"
#include "absl/strings/escaping.h"
#include "openssl/hpke.h"
#include "tink/hybrid/internal/hpke_test_util.h"
#include "tink/util/status.h"
#include "tink/util/test_matchers.h"
#include "tink/util/test_util.h"
#include "proto/hpke.pb.h"
namespace crypto {
namespace tink {
namespace internal {
namespace {
using ::crypto::tink::test::IsOk;
using ::crypto::tink::test::IsOkAndHolds;
using ::crypto::tink::test::StatusIs;
using ::google::crypto::tink::HpkeAead;
using ::google::crypto::tink::HpkeKdf;
using ::google::crypto::tink::HpkeKem;
using ::google::crypto::tink::HpkeParams;
using ::testing::Values;
class HpkeDecryptBoringSslTest : public testing::TestWithParam<HpkeParams> {};
INSTANTIATE_TEST_SUITE_P(
HpkeDecryptionBoringSslTestSuite, HpkeDecryptBoringSslTest,
Values(CreateHpkeParams(HpkeKem::DHKEM_X25519_HKDF_SHA256,
HpkeKdf::HKDF_SHA256, HpkeAead::AES_128_GCM),
CreateHpkeParams(HpkeKem::DHKEM_X25519_HKDF_SHA256,
HpkeKdf::HKDF_SHA256,
HpkeAead::CHACHA20_POLY1305)));
TEST_P(HpkeDecryptBoringSslTest, SetupSenderContextAndDecrypt) {
HpkeParams hpke_params = GetParam();
util::StatusOr<HpkeTestParams> params = CreateHpkeTestParams(hpke_params);
ASSERT_THAT(params, IsOk());
util::StatusOr<std::unique_ptr<HpkeKeyBoringSsl>> hpke_key =
HpkeKeyBoringSsl::New(hpke_params.kem(), params->recipient_private_key);
ASSERT_THAT(hpke_key, IsOk());
util::StatusOr<std::unique_ptr<HpkeDecryptBoringSsl>> hpke_decrypt =
HpkeDecryptBoringSsl::New(hpke_params, **hpke_key,
params->encapsulated_key,
params->application_info);
ASSERT_THAT(hpke_decrypt, IsOk());
util::StatusOr<std::string> plaintext =
(*hpke_decrypt)->Decrypt(params->ciphertext, params->associated_data);
ASSERT_THAT(plaintext, IsOkAndHolds(params->plaintext));
}
class HpkeDecryptBoringSslWithBadParamTest
: public testing::TestWithParam<HpkeParams> {};
INSTANTIATE_TEST_SUITE_P(
HpkeDecryptionBoringSslWithBadParamTestSuite,
HpkeDecryptBoringSslWithBadParamTest,
Values(CreateHpkeParams(HpkeKem::DHKEM_X25519_HKDF_SHA256,
HpkeKdf::KDF_UNKNOWN, HpkeAead::AES_128_GCM),
CreateHpkeParams(HpkeKem::DHKEM_X25519_HKDF_SHA256,
HpkeKdf::HKDF_SHA256, HpkeAead::AEAD_UNKNOWN)));
TEST_P(HpkeDecryptBoringSslWithBadParamTest, BadParamsFails) {
HpkeParams hpke_params = GetParam();
HpkeTestParams params = DefaultHpkeTestParams();
util::StatusOr<std::unique_ptr<HpkeKeyBoringSsl>> hpke_key =
HpkeKeyBoringSsl::New(hpke_params.kem(), params.recipient_private_key);
ASSERT_THAT(hpke_key, IsOk());
util::StatusOr<std::unique_ptr<HpkeDecryptBoringSsl>> hpke_decrypt =
HpkeDecryptBoringSsl::New(hpke_params, **hpke_key,
params.encapsulated_key,
params.application_info);
ASSERT_THAT(hpke_decrypt.status(),
StatusIs(absl::StatusCode::kInvalidArgument));
}
} // namespace
} // namespace internal
} // namespace tink
} // namespace crypto