crypto-helper/test/index.js

/*
 * Copyright (C) Sapphirecode - All Rights Reserved
 * This file is part of crypto-helper which is released under MIT.
 * See file 'LICENSE' for full license details.
 * Created by Timo Hocker <timo@scode.ovh>, May 2020
 */

/* eslint-disable no-magic-numbers */
// @ts-nocheck
'use strict';

const test = require ('ava');
const crypto = require ('../index');

test ('random_hex', (t) => {
  const hex = crypto.random_hex (16);
  t.is (hex.length, 16);
  t.regex (hex, /^[0-9a-f]+$/iu);
});

test ('random_hex with default length', (t) => {
  const hex = crypto.random_hex ();
  t.is (hex.length, 8);
  t.regex (hex, /^[0-9a-f]+$/iu);
});

test ('random_hex should refuse lenght smaller 1', (t) => {
  const error = t.throws (
    () => (crypto.random_hex (0))
  );
  t.is (error.message, 'invalid length');
});

test ('random_hex should always return correct length', (t) => {
  for (let i = 1; i < 32; i++) {
    const hex = crypto.random_hex (i);
    t.is (hex.length, i);
  }
});

test ('random_string', (t) => {
  const str = crypto.random_string (16);
  t.is (str.length, 16);
});

test ('random_string with default length', (t) => {
  const str = crypto.random_string ();
  t.is (str.length, 8);
});

test ('random_string should refuse lenght smaller 1', (t) => {
  const error = t.throws (
    () => (crypto.random_string (0))
  );
  t.is (error.message, 'invalid length');
});

test ('random_string should always return correct length', (t) => {
  for (let i = 1; i < 32; i++) {
    const str = crypto.random_string (i);
    t.is (str.length, i);
  }
});


test ('hash_sha512', (t) => {
  const hash = crypto.hash_sha512 ('a', 'b');
  t.is (
    hash,
    // eslint-disable-next-line max-len
    '2d408a0717ec188158278a796c689044361dc6fdde28d6f04973b80896e1823975cdbf12eb63f9e0591328ee235d80e9b5bf1aa6a44f4617ff3caf6400eb172d'
  );
});

test ('checksum', (t) => {
  const hash = crypto.checksum ('foo');
  t.is (
    hash,
    // eslint-disable-next-line max-len
    '2c26b46b68ffc68ff99b453c1d30413413422d706483bfa0f98a5e886266e7ae'
  );
});

test ('create_salt', (t) => {
  const salt = crypto.create_salt ();
  t.is (salt.length, 64);
  t.regex (salt, /^[0-9a-f]+$/iu);
});

test ('sign_object', (t) => {
  const obj = { foo: 'bar' };
  t.notThrows (() => {
    const str = crypto.sign_object (obj, 'baz');
    t.is (typeof str, 'string');
  });
});

test ('decode_signed', (t) => {
  const obj = { foo: 'bar' };
  const str = crypto.sign_object (obj, 'baz');
  const dec = crypto.decode_signed (str);
  t.deepEqual (obj, dec);
});

test ('verify_signature', (t) => {
  const obj = { foo: 'bar' };
  const str = crypto.sign_object (obj, 'baz');
  const dec = crypto.verify_signature (str, 'baz');
  t.deepEqual (obj, dec);
});

test ('return null on invalid input', (t) => {
  const ver = crypto.verify_signature (null, 'foo');
  t.is (ver, null);
  const dec = crypto.decode_signed (null, 'foo');
  t.is (dec, null);
});

test ('do not fail verification if timeout unspecified', async (t) => {
  const obj = { foo: 'bar' };
  const str = crypto.sign_object (obj, 'baz');
  await new Promise ((res) => {
    setTimeout (res, 10);
  });
  const dec = crypto.verify_signature (str, 'baz');
  t.deepEqual (obj, dec);
});

test ('reject tampered signatures', (t) => {
  const obj = { foo: 'bar' };
  const str = crypto.sign_object (obj, 'baz');
  const dec = crypto.verify_signature (str, 'foo');
  t.is (dec, null);
});

test ('reject old signatures', async (t) => {
  const obj = { foo: 'bar' };
  const str = crypto.sign_object (obj, 'baz');
  await new Promise ((res) => {
    setTimeout (res, 10);
  });
  const dec = crypto.verify_signature (str, 'baz', 1);
  t.is (dec, null);
});

test ('do not reject valid signatures', async (t) => {
  const obj = { foo: 'bar' };
  const str = crypto.sign_object (obj, 'baz');
  await new Promise ((res) => {
    setTimeout (res, 10);
  });
  const dec = crypto.verify_signature (str, 'baz', 100);
  t.deepEqual (obj, dec);
});

test ('decode problematic token', (t) => {
  // eslint-disable-next-line max-len
  const str = 'eyJpYXQiOjE1ODE0NDAwMTIyODgsIm9iaiI6eyJpZCI6MX19.24ZOsWrnfkNe%2FbM0r7DaVJMqE2bfn2aAM%2BZSzWeSf31OCTlXXNWD34RBL2X5v3UliYQ4IIsLNBFbaW9texPHug%3D%3D';
  const obj = crypto.decode_signed (str);
  t.deepEqual (obj, { id: 1 });
});
fix 2020-03-04 13:28:48 +01:00			`/*`
			`* Copyright (C) Sapphirecode - All Rights Reserved`
update 2020-05-15 16:28:17 +02:00			`* This file is part of crypto-helper which is released under MIT.`
fix license 2020-03-25 17:02:59 +01:00			`* See file 'LICENSE' for full license details.`
update 2020-05-15 16:28:17 +02:00			`* Created by Timo Hocker <timo@scode.ovh>, May 2020`
fix 2020-03-04 13:28:48 +01:00			`*/`

			`/* eslint-disable no-magic-numbers */`
			`// @ts-nocheck`
			`'use strict';`

			`const test = require ('ava');`
			`const crypto = require ('../index');`

			`test ('random_hex', (t) => {`
			`const hex = crypto.random_hex (16);`
			`t.is (hex.length, 16);`
			`t.regex (hex, /^[0-9a-f]+$/iu);`
			`});`

			`test ('random_hex with default length', (t) => {`
			`const hex = crypto.random_hex ();`
			`t.is (hex.length, 8);`
			`t.regex (hex, /^[0-9a-f]+$/iu);`
			`});`

			`test ('random_hex should refuse lenght smaller 1', (t) => {`
test for invalid length on random hex 2020-03-09 07:58:26 +01:00			`const error = t.throws (`
			`() => (crypto.random_hex (0))`
			`);`
formatting 2020-03-09 10:12:40 +01:00			`t.is (error.message, 'invalid length');`
fix 2020-03-04 13:28:48 +01:00			`});`

formatting 2020-03-09 10:12:40 +01:00			`test ('random_hex should always return correct length', (t) => {`
add length test for random string generators 2020-03-09 08:22:39 +01:00			`for (let i = 1; i < 32; i++) {`
			`const hex = crypto.random_hex (i);`
			`t.is (hex.length, i);`
			`}`
			`});`

fix 2020-03-04 13:28:48 +01:00			`test ('random_string', (t) => {`
			`const str = crypto.random_string (16);`
			`t.is (str.length, 16);`
			`});`

			`test ('random_string with default length', (t) => {`
			`const str = crypto.random_string ();`
			`t.is (str.length, 8);`
			`});`

			`test ('random_string should refuse lenght smaller 1', (t) => {`
fix test for zero length random string 2020-03-09 08:14:55 +01:00			`const error = t.throws (`
			`() => (crypto.random_string (0))`
			`);`
formatting 2020-03-09 10:12:40 +01:00			`t.is (error.message, 'invalid length');`
fix 2020-03-04 13:28:48 +01:00			`});`

formatting 2020-03-09 10:12:40 +01:00			`test ('random_string should always return correct length', (t) => {`
add length test for random string generators 2020-03-09 08:22:39 +01:00			`for (let i = 1; i < 32; i++) {`
			`const str = crypto.random_string (i);`
			`t.is (str.length, i);`
			`}`
			`});`


fix 2020-03-04 13:28:48 +01:00			`test ('hash_sha512', (t) => {`
			`const hash = crypto.hash_sha512 ('a', 'b');`
			`t.is (`
			`hash,`
			`// eslint-disable-next-line max-len`
			`'2d408a0717ec188158278a796c689044361dc6fdde28d6f04973b80896e1823975cdbf12eb63f9e0591328ee235d80e9b5bf1aa6a44f4617ff3caf6400eb172d'`
			`);`
			`});`

			`test ('checksum', (t) => {`
			`const hash = crypto.checksum ('foo');`
			`t.is (`
			`hash,`
			`// eslint-disable-next-line max-len`
			`'2c26b46b68ffc68ff99b453c1d30413413422d706483bfa0f98a5e886266e7ae'`
			`);`
			`});`

			`test ('create_salt', (t) => {`
			`const salt = crypto.create_salt ();`
			`t.is (salt.length, 64);`
			`t.regex (salt, /^[0-9a-f]+$/iu);`
			`});`

			`test ('sign_object', (t) => {`
			`const obj = { foo: 'bar' };`
			`t.notThrows (() => {`
			`const str = crypto.sign_object (obj, 'baz');`
			`t.is (typeof str, 'string');`
			`});`
			`});`

			`test ('decode_signed', (t) => {`
			`const obj = { foo: 'bar' };`
			`const str = crypto.sign_object (obj, 'baz');`
			`const dec = crypto.decode_signed (str);`
			`t.deepEqual (obj, dec);`
			`});`

			`test ('verify_signature', (t) => {`
			`const obj = { foo: 'bar' };`
			`const str = crypto.sign_object (obj, 'baz');`
			`const dec = crypto.verify_signature (str, 'baz');`
			`t.deepEqual (obj, dec);`
			`});`

return null on error with signed objects 2020-03-10 13:37:12 +01:00			`test ('return null on invalid input', (t) => {`
			`const ver = crypto.verify_signature (null, 'foo');`
			`t.is (ver, null);`
			`const dec = crypto.decode_signed (null, 'foo');`
			`t.is (dec, null);`
			`});`

add tests for signature without timeout 2020-03-09 08:36:20 +01:00			`test ('do not fail verification if timeout unspecified', async (t) => {`
			`const obj = { foo: 'bar' };`
			`const str = crypto.sign_object (obj, 'baz');`
			`await new Promise ((res) => {`
			`setTimeout (res, 10);`
			`});`
			`const dec = crypto.verify_signature (str, 'baz');`
			`t.deepEqual (obj, dec);`
			`});`

fix 2020-03-04 13:28:48 +01:00			`test ('reject tampered signatures', (t) => {`
			`const obj = { foo: 'bar' };`
			`const str = crypto.sign_object (obj, 'baz');`
			`const dec = crypto.verify_signature (str, 'foo');`
			`t.is (dec, null);`
			`});`

			`test ('reject old signatures', async (t) => {`
			`const obj = { foo: 'bar' };`
			`const str = crypto.sign_object (obj, 'baz');`
			`await new Promise ((res) => {`
			`setTimeout (res, 10);`
			`});`
			`const dec = crypto.verify_signature (str, 'baz', 1);`
			`t.is (dec, null);`
			`});`

add stryker, test for timeout valid signature 2020-03-09 07:50:35 +01:00			`test ('do not reject valid signatures', async (t) => {`
			`const obj = { foo: 'bar' };`
			`const str = crypto.sign_object (obj, 'baz');`
			`await new Promise ((res) => {`
			`setTimeout (res, 10);`
			`});`
			`const dec = crypto.verify_signature (str, 'baz', 100);`
			`t.deepEqual (obj, dec);`
			`});`

fix 2020-03-04 13:28:48 +01:00			`test ('decode problematic token', (t) => {`
			`// eslint-disable-next-line max-len`
			`const str = 'eyJpYXQiOjE1ODE0NDAwMTIyODgsIm9iaiI6eyJpZCI6MX19.24ZOsWrnfkNe%2FbM0r7DaVJMqE2bfn2aAM%2BZSzWeSf31OCTlXXNWD34RBL2X5v3UliYQ4IIsLNBFbaW9texPHug%3D%3D';`
			`const obj = crypto.decode_signed (str);`
			`t.deepEqual (obj, { id: 1 });`
			`});`