java_src/src/test/java/com/google/crypto/tink/aead/AeadWrapperTest.java - third_party/tink - Git at Google

 // Copyright 2017 Google Inc.
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 //
 ////////////////////////////////////////////////////////////////////////////////

 package com.google.crypto.tink.aead;

 import static com.google.crypto.tink.testing.TestUtil.assertExceptionContains;
 import static org.junit.Assert.assertArrayEquals;
 import static org.junit.Assert.assertEquals;
 import static org.junit.Assert.assertThrows;

 import com.google.crypto.tink.Aead;
 import com.google.crypto.tink.CryptoFormat;
 import com.google.crypto.tink.PrimitiveSet;
 import com.google.crypto.tink.proto.KeyStatusType;
 import com.google.crypto.tink.proto.Keyset.Key;
 import com.google.crypto.tink.proto.OutputPrefixType;
 import com.google.crypto.tink.subtle.Random;
 import com.google.crypto.tink.testing.TestUtil;
 import java.security.GeneralSecurityException;
 import java.util.Arrays;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.junit.runners.JUnit4;

 /** Tests for AeadWrapper */
 @RunWith(JUnit4.class)
 public class AeadWrapperTest {
   private static final int AES_KEY_SIZE = 16;
   private static final int HMAC_KEY_SIZE = 20;

   @BeforeClass
   public static void setUp() throws Exception {
     AeadConfig.register();
   }

   @Test
   public void testBasicAesCtrHmacAead() throws Exception {
     byte[] aesCtrKeyValue = Random.randBytes(AES_KEY_SIZE);
     byte[] hmacKeyValue = Random.randBytes(HMAC_KEY_SIZE);
     int ivSize = 12;
     int tagSize = 16;
     PrimitiveSet<Aead> primitives =
         TestUtil.createPrimitiveSet(
             TestUtil.createKeyset(
                 TestUtil.createKey(
                     TestUtil.createAesCtrHmacAeadKeyData(
                         aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
                     42,
                     KeyStatusType.ENABLED,
                     OutputPrefixType.TINK)),
             Aead.class);
     Aead aead = new AeadWrapper().wrap(primitives);

     byte[] plaintext = Random.randBytes(20);
     byte[] associatedData = Random.randBytes(20);
     byte[] ciphertext = aead.encrypt(plaintext, associatedData);
     byte[] decrypted = aead.decrypt(ciphertext, associatedData);
     assertArrayEquals(plaintext, decrypted);
   }

   @Test
   public void testMultipleKeys() throws Exception {
     byte[] aesCtrKeyValue = Random.randBytes(AES_KEY_SIZE);
     byte[] hmacKeyValue = Random.randBytes(HMAC_KEY_SIZE);
     int ivSize = 12;
     int tagSize = 16;

     Key primary =
         TestUtil.createKey(
             TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
             42,
             KeyStatusType.ENABLED,
             OutputPrefixType.TINK);
     Key raw =
         TestUtil.createKey(
             TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
             43,
             KeyStatusType.ENABLED,
             OutputPrefixType.RAW);
     Key legacy =
         TestUtil.createKey(
             TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
             44,
             KeyStatusType.ENABLED,
             OutputPrefixType.LEGACY);

     Key tink =
         TestUtil.createKey(
             TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
             45,
             KeyStatusType.ENABLED,
             OutputPrefixType.TINK);

     Aead aead =
         new AeadWrapper()
             .wrap(
                 TestUtil.createPrimitiveSet(
                     TestUtil.createKeyset(primary, raw, legacy, tink), Aead.class));
     byte[] plaintext = Random.randBytes(20);
     byte[] associatedData = Random.randBytes(20);
     byte[] ciphertext = aead.encrypt(plaintext, associatedData);
     byte[] prefix = Arrays.copyOfRange(ciphertext, 0, CryptoFormat.NON_RAW_PREFIX_SIZE);

     assertArrayEquals(prefix, CryptoFormat.getOutputPrefix(primary));
     assertArrayEquals(plaintext, aead.decrypt(ciphertext, associatedData));
     assertEquals(
         CryptoFormat.NON_RAW_PREFIX_SIZE + plaintext.length + ivSize + tagSize, ciphertext.length);

     // encrypt with a non-primary RAW key and decrypt with the keyset
     Aead aead2 =
         new AeadWrapper()
             .wrap(
                 TestUtil.createPrimitiveSet(TestUtil.createKeyset(raw, legacy, tink), Aead.class));
     ciphertext = aead2.encrypt(plaintext, associatedData);
     assertArrayEquals(plaintext, aead.decrypt(ciphertext, associatedData));

     // encrypt with a random key not in the keyset, decrypt with the keyset should fail
     byte[] aesCtrKeyValue2 = Random.randBytes(AES_KEY_SIZE);
     byte[] hmacKeyValue2 = Random.randBytes(HMAC_KEY_SIZE);
     Key random =
         TestUtil.createKey(
             TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue2, ivSize, hmacKeyValue2, tagSize),
             44,
             KeyStatusType.ENABLED,
             OutputPrefixType.TINK);
     aead2 =
         new AeadWrapper()
             .wrap(TestUtil.createPrimitiveSet(TestUtil.createKeyset(random), Aead.class));
     final byte[] ciphertext2 = aead2.encrypt(plaintext, associatedData);
     GeneralSecurityException e =
         assertThrows(
             GeneralSecurityException.class, () -> aead.decrypt(ciphertext2, associatedData));
     assertExceptionContains(e, "decryption failed");
   }

   @Test
   public void testRawKeyAsPrimary() throws Exception {
     byte[] aesCtrKeyValue = Random.randBytes(AES_KEY_SIZE);
     byte[] hmacKeyValue = Random.randBytes(HMAC_KEY_SIZE);
     int ivSize = 12;
     int tagSize = 16;

     Key primary =
         TestUtil.createKey(
             TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
             42,
             KeyStatusType.ENABLED,
             OutputPrefixType.RAW);
     Key raw =
         TestUtil.createKey(
             TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
             43,
             KeyStatusType.ENABLED,
             OutputPrefixType.RAW);
     Key legacy =
         TestUtil.createKey(
             TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
             44,
             KeyStatusType.ENABLED,
             OutputPrefixType.LEGACY);
     Aead aead =
         new AeadWrapper()
             .wrap(
                 TestUtil.createPrimitiveSet(
                     TestUtil.createKeyset(primary, raw, legacy), Aead.class));
     byte[] plaintext = Random.randBytes(20);
     byte[] associatedData = Random.randBytes(20);
     byte[] ciphertext = aead.encrypt(plaintext, associatedData);
     assertArrayEquals(plaintext, aead.decrypt(ciphertext, associatedData));
     assertEquals(
         CryptoFormat.RAW_PREFIX_SIZE + plaintext.length + ivSize + tagSize, ciphertext.length);
   }

   @Test
   public void testSmallPlaintextWithRawKey() throws Exception {
     byte[] aesCtrKeyValue = Random.randBytes(AES_KEY_SIZE);
     byte[] hmacKeyValue = Random.randBytes(HMAC_KEY_SIZE);
     int ivSize = 12;
     int tagSize = 16;

     Key primary =
         TestUtil.createKey(
             TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
             42,
             KeyStatusType.ENABLED,
             OutputPrefixType.RAW);
     Aead aead =
         new AeadWrapper()
             .wrap(TestUtil.createPrimitiveSet(TestUtil.createKeyset(primary), Aead.class));
     byte[] plaintext = Random.randBytes(1);
     byte[] associatedData = Random.randBytes(20);
     byte[] ciphertext = aead.encrypt(plaintext, associatedData);
     assertArrayEquals(plaintext, aead.decrypt(ciphertext, associatedData));
     assertEquals(
         CryptoFormat.RAW_PREFIX_SIZE + plaintext.length + ivSize + tagSize, ciphertext.length);
   }
 }
	// Copyright 2017 Google Inc.
	//
	// Licensed under the Apache License, Version 2.0 (the "License");
	// you may not use this file except in compliance with the License.
	// You may obtain a copy of the License at
	//
	// http://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing, software
	// distributed under the License is distributed on an "AS IS" BASIS,
	// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	// See the License for the specific language governing permissions and
	// limitations under the License.
	//
	////////////////////////////////////////////////////////////////////////////////

	package com.google.crypto.tink.aead;

	import static com.google.crypto.tink.testing.TestUtil.assertExceptionContains;
	import static org.junit.Assert.assertArrayEquals;
	import static org.junit.Assert.assertEquals;
	import static org.junit.Assert.assertThrows;

	import com.google.crypto.tink.Aead;
	import com.google.crypto.tink.CryptoFormat;
	import com.google.crypto.tink.PrimitiveSet;
	import com.google.crypto.tink.proto.KeyStatusType;
	import com.google.crypto.tink.proto.Keyset.Key;
	import com.google.crypto.tink.proto.OutputPrefixType;
	import com.google.crypto.tink.subtle.Random;
	import com.google.crypto.tink.testing.TestUtil;
	import java.security.GeneralSecurityException;
	import java.util.Arrays;
	import org.junit.BeforeClass;
	import org.junit.Test;
	import org.junit.runner.RunWith;
	import org.junit.runners.JUnit4;

	/** Tests for AeadWrapper */
	@RunWith(JUnit4.class)
	public class AeadWrapperTest {
	private static final int AES_KEY_SIZE = 16;
	private static final int HMAC_KEY_SIZE = 20;

	@BeforeClass
	public static void setUp() throws Exception {
	AeadConfig.register();
	}

	@Test
	public void testBasicAesCtrHmacAead() throws Exception {
	byte[] aesCtrKeyValue = Random.randBytes(AES_KEY_SIZE);
	byte[] hmacKeyValue = Random.randBytes(HMAC_KEY_SIZE);
	int ivSize = 12;
	int tagSize = 16;
	PrimitiveSet<Aead> primitives =
	TestUtil.createPrimitiveSet(
	TestUtil.createKeyset(
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(
	aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
	42,
	KeyStatusType.ENABLED,
	OutputPrefixType.TINK)),
	Aead.class);
	Aead aead = new AeadWrapper().wrap(primitives);

	byte[] plaintext = Random.randBytes(20);
	byte[] associatedData = Random.randBytes(20);
	byte[] ciphertext = aead.encrypt(plaintext, associatedData);
	byte[] decrypted = aead.decrypt(ciphertext, associatedData);
	assertArrayEquals(plaintext, decrypted);
	}

	@Test
	public void testMultipleKeys() throws Exception {
	byte[] aesCtrKeyValue = Random.randBytes(AES_KEY_SIZE);
	byte[] hmacKeyValue = Random.randBytes(HMAC_KEY_SIZE);
	int ivSize = 12;
	int tagSize = 16;

	Key primary =
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
	42,
	KeyStatusType.ENABLED,
	OutputPrefixType.TINK);
	Key raw =
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
	43,
	KeyStatusType.ENABLED,
	OutputPrefixType.RAW);
	Key legacy =
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
	44,
	KeyStatusType.ENABLED,
	OutputPrefixType.LEGACY);

	Key tink =
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
	45,
	KeyStatusType.ENABLED,
	OutputPrefixType.TINK);

	Aead aead =
	new AeadWrapper()
	.wrap(
	TestUtil.createPrimitiveSet(
	TestUtil.createKeyset(primary, raw, legacy, tink), Aead.class));
	byte[] plaintext = Random.randBytes(20);
	byte[] associatedData = Random.randBytes(20);
	byte[] ciphertext = aead.encrypt(plaintext, associatedData);
	byte[] prefix = Arrays.copyOfRange(ciphertext, 0, CryptoFormat.NON_RAW_PREFIX_SIZE);

	assertArrayEquals(prefix, CryptoFormat.getOutputPrefix(primary));
	assertArrayEquals(plaintext, aead.decrypt(ciphertext, associatedData));
	assertEquals(
	CryptoFormat.NON_RAW_PREFIX_SIZE + plaintext.length + ivSize + tagSize, ciphertext.length);

	// encrypt with a non-primary RAW key and decrypt with the keyset
	Aead aead2 =
	new AeadWrapper()
	.wrap(
	TestUtil.createPrimitiveSet(TestUtil.createKeyset(raw, legacy, tink), Aead.class));
	ciphertext = aead2.encrypt(plaintext, associatedData);
	assertArrayEquals(plaintext, aead.decrypt(ciphertext, associatedData));

	// encrypt with a random key not in the keyset, decrypt with the keyset should fail
	byte[] aesCtrKeyValue2 = Random.randBytes(AES_KEY_SIZE);
	byte[] hmacKeyValue2 = Random.randBytes(HMAC_KEY_SIZE);
	Key random =
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue2, ivSize, hmacKeyValue2, tagSize),
	44,
	KeyStatusType.ENABLED,
	OutputPrefixType.TINK);
	aead2 =
	new AeadWrapper()
	.wrap(TestUtil.createPrimitiveSet(TestUtil.createKeyset(random), Aead.class));
	final byte[] ciphertext2 = aead2.encrypt(plaintext, associatedData);
	GeneralSecurityException e =
	assertThrows(
	GeneralSecurityException.class, () -> aead.decrypt(ciphertext2, associatedData));
	assertExceptionContains(e, "decryption failed");
	}

	@Test
	public void testRawKeyAsPrimary() throws Exception {
	byte[] aesCtrKeyValue = Random.randBytes(AES_KEY_SIZE);
	byte[] hmacKeyValue = Random.randBytes(HMAC_KEY_SIZE);
	int ivSize = 12;
	int tagSize = 16;

	Key primary =
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
	42,
	KeyStatusType.ENABLED,
	OutputPrefixType.RAW);
	Key raw =
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
	43,
	KeyStatusType.ENABLED,
	OutputPrefixType.RAW);
	Key legacy =
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
	44,
	KeyStatusType.ENABLED,
	OutputPrefixType.LEGACY);
	Aead aead =
	new AeadWrapper()
	.wrap(
	TestUtil.createPrimitiveSet(
	TestUtil.createKeyset(primary, raw, legacy), Aead.class));
	byte[] plaintext = Random.randBytes(20);
	byte[] associatedData = Random.randBytes(20);
	byte[] ciphertext = aead.encrypt(plaintext, associatedData);
	assertArrayEquals(plaintext, aead.decrypt(ciphertext, associatedData));
	assertEquals(
	CryptoFormat.RAW_PREFIX_SIZE + plaintext.length + ivSize + tagSize, ciphertext.length);
	}

	@Test
	public void testSmallPlaintextWithRawKey() throws Exception {
	byte[] aesCtrKeyValue = Random.randBytes(AES_KEY_SIZE);
	byte[] hmacKeyValue = Random.randBytes(HMAC_KEY_SIZE);
	int ivSize = 12;
	int tagSize = 16;

	Key primary =
	TestUtil.createKey(
	TestUtil.createAesCtrHmacAeadKeyData(aesCtrKeyValue, ivSize, hmacKeyValue, tagSize),
	42,
	KeyStatusType.ENABLED,
	OutputPrefixType.RAW);
	Aead aead =
	new AeadWrapper()
	.wrap(TestUtil.createPrimitiveSet(TestUtil.createKeyset(primary), Aead.class));
	byte[] plaintext = Random.randBytes(1);
	byte[] associatedData = Random.randBytes(20);
	byte[] ciphertext = aead.encrypt(plaintext, associatedData);
	assertArrayEquals(plaintext, aead.decrypt(ciphertext, associatedData));
	assertEquals(
	CryptoFormat.RAW_PREFIX_SIZE + plaintext.length + ivSize + tagSize, ciphertext.length);
	}
	}