UNPKG

boho

Version:

Encryption, authentication, Secure communication

github.com/remocons/boho

remocons/boho

95 lines (73 loc) 2.77 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
import { describe, it } from 'node:test'; import assert from 'node:assert'; import Boho from 'boho' const MBP = Boho.MBP const MetaSize = Boho.MetaSize const BohoMsg = Boho.BohoMsg const Meta = Boho.Meta describe('AUTH process ESM', function () { const id = 'id' const key = 'key' // client side const c = new Boho() c.set_id8(id) c.set_key(key) // server side const s = new Boho() const auth_nonce_buffer = s.auth_nonce() const auth_hmac_buffer = c.auth_hmac(auth_nonce_buffer) const unpack = MBP.unpack(auth_hmac_buffer, Meta.AUTH_HMAC) // Find hashID8 from DATABASE then set the id and key. s.set_id8(id) s.set_key('wrong-key') // if key is wrong. const check_auth_hmack_fail = s.check_auth_hmac(unpack) s.set_key(key) // if correct. const auth_ack_buffer = s.check_auth_hmac(unpack) const auth_ack_buffer_with_incorrect_hmac = Boho.Buffer.alloc(9) const isCorrectSeverHMAC = c.check_auth_ack_hmac(auth_ack_buffer) auth_ack_buffer.copy(auth_ack_buffer_with_incorrect_hmac) auth_ack_buffer_with_incorrect_hmac[2] ^= 0x55 // change hmac const wrongSeverHMACResult = c.check_auth_ack_hmac(auth_ack_buffer_with_incorrect_hmac) // 1. client send AUTH_REQ first describe('2. server reply AUTH_NONCE', function () { it('should return static size buffer', function () { assert.equal(auth_nonce_buffer.byteLength, MetaSize.AUTH_NONCE) }) it('should pack[0] is header type ', function () { assert.ok(auth_nonce_buffer[0], BohoMsg.AUTH_NONCE) }) }) describe('3. client reply AUTH_HMAC', function () { it('should return static size buffer', function () { assert.equal(auth_hmac_buffer.byteLength, MetaSize.AUTH_HMAC) }) it('should pack[0] is header type ', function () { assert.ok(auth_hmac_buffer[0], BohoMsg.AUTH_HMAC) }) }) describe('3. server check AUTH_HMACK pack', function () { it('3.1. should success unpack', function () { assert.ok(typeof unpack === 'object') }) describe('3.2. check_auth_hmac(obj) ', function () { // wrong key of id. it('3.2.1. should return false when wrong key', function () { assert.ok(!check_auth_hmack_fail) }) // correct id and key it('3-2.2. should return AUTH_ACK buffer pack when correct key', function () { assert.equal(auth_ack_buffer[0], BohoMsg.AUTH_ACK) }) }) }) describe('4. client process', function () { describe('4.1 check_auth_ack_hmac()', function () { it('should return true when correct AUTH_ACK ', function () { assert.ok(isCorrectSeverHMAC) }) it('should return false when AUTH_ACK has wrong hmac', function () { assert.ok(!wrongSeverHMACResult) }) }) }) })