Timo/crypto-helper
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

async
Some checks failed
continuous-integration/drone/push Build is failing
Details

Browse Source
This commit is contained in:
Timo Hocker
2022-08-08 13:07:06 +02:00
parent 42857284fd
commit 00f1a57f8c
7 changed files with 109 additions and 87 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
test/spec/encryption.js
View File

@ -94,7 +94,7 @@ describe ('encryption', () => {
})
.toThrowError (
// eslint-disable-next-line max-len
'error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt'
/bad decrypt/ui
);
});

2
test/spec/rsa.js
View File

@ -19,7 +19,7 @@ describe ('rsa', () => {
it ('should throw on too small key size', async () => {
await expectAsync (crypto.generate_keypair (16))
.toBeRejectedWithError (
'error:0408F078:rsa routines:pkey_rsa_ctrl:key size too small'
/key size too small/ui
);
});

126
test/spec/signatures.js
View File

@ -18,26 +18,28 @@ describe ('signatures', () => {
.uninstall ();
});
it ('sign_object', () => {
it ('sign_object', async () => {
const obj = { foo: 'bar' };
expect (() => {
const str = crypto.sign_object (obj, 'baz');
await expectAsync ((async () => {
const str = await crypto.sign_object (obj, 'baz');
expect (typeof str)
.toEqual ('string');
}).not.toThrow ();
}) ())
.toBeResolved ();
});
it ('sign_object with rsa key', async () => {
const obj = { foo: 'bar' };
const k = await rsa.generate_keypair ();
expect (() => {
const str = crypto.sign_object (obj, k.private_key);
await expectAsync ((async () => {
const str = await crypto.sign_object (obj, k.private_key);
expect (typeof str)
.toEqual ('string');
}).not.toThrow ();
}) ())
.toBeResolved ();
});
it ('verify_signature with rsa key', () => {
it ('verify_signature with rsa key', async () => {
const obj = { foo: 'bar' };
const str = 'U1GcsN3yZzSKxPH8jhCGTKiswfazB9rMfUtE5351LT11t6EmS7xfPjnt'
+ '.5ytniC6q2ovoF7ZqbD8qk9r2kjjAcA9EYhLwC3wwJKPPsKdHSTFd7d9TzBP1skQ98X'
@ -54,12 +56,12 @@ describe ('signatures', () => {
+ 'dUmjCLWrOzx8SqdqJYmQJX+6GNswnvVF30bkW+/MJZF/P2jLFtSa24Monh7axIqx\n'
+ '8HG0xDw1Z98WV9oQh/vDP/KAs1cPp0AJlwIDAQAB\n'
+ '-----END RSA PUBLIC KEY-----\n';
const ver = crypto.verify_signature (str, key);
const ver = await crypto.verify_signature (str, key);
expect (ver)
.toEqual (obj);
});
it ('verify_signature reject with rsa key', () => {
it ('verify_signature reject with rsa key', async () => {
const str = 'U1GcsN3yZzSKxPH8jhCGTKiswfazB9rMfUtE5351LT11t6EmS7xfPjnt'
+ '.5ytniC6q2ovoF7ZqbD8qk9r2kjjAcA9EYhLwC3wwJKPPsKdHSTFd7d9TzBP1skQ98X'
+ 'LjRUkc2M8M84LmWLg76EvcY2pw6HwsFvCUoZYcKAJp3vkp9MQVrVYdHKMPkBjQKyy2V'
@ -75,179 +77,185 @@ describe ('signatures', () => {
+ 'dUmjCLWrOzx8SqdqJYmQJX+6GNswnvVF30bkW+/MJZF/P2jLFtSa24Monh7axIqx\n'
+ '8HG0xDw1Z98WV9oQh/vDP/KAs1cPp0AJlwIDAQAB\n'
+ '-----END RSA PUBLIC KEY-----\n';
const ver = crypto.verify_signature (str, key);
const ver = await crypto.verify_signature (str, key);
expect (ver)
.toBeNull ();
});
it ('should sign object with key info', () => {
it ('should sign object with key info', async () => {
const obj = { foo: 'bar' };
expect (() => {
await expectAsync ((async () => {
const str = crypto.sign_object (obj, 'baz', 'baz');
const res = crypto.get_signature_info (str);
const res = await crypto.get_signature_info (str);
expect (res.key_info)
.toEqual ('baz');
}).not.toThrow ();
}) ())
.toBeResolved ();
});
it ('should sign object with custom properties', () => {
it ('should sign object with custom properties', async () => {
const obj = { foo: 'bar' };
expect (() => {
await expectAsync ((async () => {
const str = crypto.sign_object (obj, 'baz', { bar: 'baz' });
const res = crypto.get_signature_info (str);
const res = await crypto.get_signature_info (str);
expect (res.bar)
.toEqual ('baz');
}).not.toThrow ();
}) ())
.toBeResolved ();
});
it ('should sign object with custom override properties', () => {
it ('should sign object with custom override properties', async () => {
const obj = { foo: 'bar' };
expect (() => {
await expectAsync ((async () => {
const str = crypto.sign_object (obj, 'baz', { iat: 'baz' });
const res = crypto.get_signature_info (str);
const res = await crypto.get_signature_info (str);
expect (res.iat)
.toEqual ('baz');
}).not.toThrow ();
}) ())
.toBeResolved ();
});
it ('decode_signed', () => {
it ('decode_signed', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
const dec = crypto.decode_signed (str);
const dec = await crypto.decode_signed (str);
expect (obj)
.toEqual (dec);
});
it ('verify_signature', () => {
it ('verify_signature', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
const dec = crypto.verify_signature (str, 'baz');
const dec = await crypto.verify_signature (str, 'baz');
expect (obj)
.toEqual (dec);
});
it ('should verify and return all info', () => {
it ('should verify and return all info', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz', { iat: 'baz' });
const dec = crypto.verify_signature_get_info (str, 'baz');
const dec = await crypto.verify_signature_get_info (str, 'baz');
expect (dec.obj)
.toEqual (obj);
expect (dec.iat)
.toEqual ('baz');
});
it ('should verify signature using function retrieved key', () => {
it ('should verify signature using function retrieved key', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
const dec = crypto.verify_signature (str, () => 'baz');
const dec = await crypto.verify_signature (str, () => 'baz');
expect (obj)
.toEqual (dec);
});
it ('should verify signature using function retrieved timeout 0', () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
const dec = crypto.verify_signature (str, 'baz', () => 0);
expect (obj)
.toEqual (dec);
});
it (
'should verify signature using function retrieved timeout 0',
async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
const dec = await crypto.verify_signature (str, 'baz', () => 0);
expect (obj)
.toEqual (dec);
}
);
it ('should reject tampered signatures', () => {
it ('should reject tampered signatures', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
const dec = crypto.verify_signature (str, 'foo');
const dec = await crypto.verify_signature (str, 'foo');
expect (dec)
.toEqual (null);
});
it ('should return null on invalid input', () => {
const ver = crypto.verify_signature (null, 'foo');
it ('should return null on invalid input', async () => {
const ver = await crypto.verify_signature (null, 'foo');
expect (ver)
.toEqual (null);
const dec = crypto.decode_signed (null, 'foo');
const dec = await crypto.decode_signed (null);
expect (dec)
.toEqual (null);
});
it ('should not fail verification if timeout unspecified', () => {
it ('should not fail verification if timeout unspecified', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
jasmine.clock ()
.tick (36e5);
const dec = crypto.verify_signature (str, 'baz');
const dec = await crypto.verify_signature (str, 'baz');
expect (obj)
.toEqual (dec);
});
it ('should reject old signatures', () => {
it ('should reject old signatures', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
jasmine.clock ()
.tick (50);
const dec = crypto.verify_signature (str, 'baz', 1);
const dec = await crypto.verify_signature (str, 'baz', 1);
expect (dec)
.toEqual (null);
});
it ('should not reject valid signatures', () => {
it ('should not reject valid signatures', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
jasmine.clock ()
.tick (50);
const dec = crypto.verify_signature (str, 'baz', 100);
const dec = await crypto.verify_signature (str, 'baz', 100);
expect (obj)
.toEqual (dec);
});
it ('should verify signature using function retrieved timeout', () => {
it ('should verify signature using function retrieved timeout', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz', { to: 100 });
jasmine.clock ()
.tick (50);
const dec = crypto.verify_signature (str, 'baz', (info) => info.to);
const dec = await crypto.verify_signature (str, 'baz', (info) => info.to);
expect (obj)
.toEqual (dec);
});
it ('verify_signature on almost timed out packet', () => {
it ('verify_signature on almost timed out packet', async () => {
const obj = { foo: 'bar' };
const str = crypto.sign_object (obj, 'baz');
jasmine.clock ()
.tick (10);
const dec = crypto.verify_signature (str, 'baz', 10);
const dec = await crypto.verify_signature (str, 'baz', 10);
expect (obj)
.toEqual (dec);
});
it ('should decode problematic token', () => {
it ('should decode problematic token', async () => {
// eslint-disable-next-line max-len
const str = 'wEJbzvUywiaiGWZUG6CtCXNkNmRGyVoi9icytpTe4gZhsb8Gk.5PZbhGL525mdV7EmYomTwUei6qULpLaZwSXy92eaUDNgbyXPHsr9dfUCeEBpTqmzuq3VtmmV43epUyWRoHocAsV3.2';
const obj = crypto.decode_signed (str);
const obj = await crypto.decode_signed (str);
expect (obj)
.toEqual ({ id: 1 });
});
it ('should automatically reencode b64 tokens', () => {
it ('should automatically reencode b64 tokens', async () => {
// eslint-disable-next-line max-len
const str = 'eyJpYXQiOjE1ODE0NDAwMTIyODgsIm9iaiI6eyJpZCI6MX19.24ZOsWrnfkNe%2FbM0r7DaVJMqE2bfn2aAM%2BZSzWeSf31OCTlXXNWD34RBL2X5v3UliYQ4IIsLNBFbaW9texPHug%3D%3D';
const obj = crypto.decode_signed (str);
const obj = await crypto.decode_signed (str);
expect (obj)
.toEqual ({ id: 1 });
});
it ('verify_signature on b64 string', () => {
it ('verify_signature on b64 string', async () => {
// eslint-disable-next-line max-len
const str = 'eyJpYXQiOjE2MDkzNDQ4MDMyMjcsIm9iaiI6eyJpZCI6MX19.N762xuMaNbT%2Fqb0uTKST68BZgSnmNxXaHl4GY7iAKqaDDEwZn3biYfg5DgJ45QgPZrndchczDjUqLkyXoqw4KQ%3D%3D';
const obj = crypto.verify_signature (str, 'baz');
const obj = await crypto.verify_signature (str, 'baz');
expect (obj)
.toEqual ({ id: 1 });
});