UNPKG

miscreant

Version:

Misuse resistant symmetric encryption library providing AES-SIV (RFC 5297), AES-PMAC-SIV, and STREAM constructions

github.com/miscreant/miscreant/tree/master/js/

miscreant/miscreant

88 lines (68 loc) 3.09 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
import { suite, test } from "mocha-typescript"; import * as chai from "chai"; import * as chaiAsPromised from "chai-as-promised"; import { AEADExample } from "./support/test_vectors"; import WebCrypto = require("node-webcrypto-ossl"); import * as miscreant from "../src/index"; let expect = chai.expect; chai.use(chaiAsPromised); @suite class AEADSpec { static vectors: AEADExample[]; static async before() { this.vectors = await AEADExample.loadAll(); } @test async "should correctly seal and open with polyfill cipher implementations"() { const polyfillProvider = new miscreant.PolyfillCryptoProvider(); for (let v of AEADSpec.vectors) { const aead = await miscreant.AEAD.importKey(v.key, v.alg, polyfillProvider); const sealed = await aead.seal(v.plaintext, v.nonce, v.ad); expect(sealed).to.eql(v.ciphertext); const unsealed = await aead.open(sealed, v.nonce, v.ad); expect(unsealed).not.to.be.null; expect(unsealed!).to.eql(v.plaintext); expect(() => aead.clear()).not.to.throw(); } } @test async "should correctly seal and open with WebCrypto cipher implementations"() { const webCryptoProvider = new miscreant.WebCryptoProvider(new WebCrypto()); for (let v of AEADSpec.vectors) { const aead = await miscreant.AEAD.importKey(v.key, v.alg, webCryptoProvider); const sealed = await aead.seal(v.plaintext, v.nonce, v.ad); expect(sealed).to.eql(v.ciphertext); const unsealed = await aead.open(sealed, v.nonce, v.ad); expect(unsealed).not.to.be.null; expect(unsealed!).to.eql(v.plaintext); expect(() => aead.clear()).not.to.throw(); } } @test async "should not open with incorrect key"() { const polyfillProvider = new miscreant.PolyfillCryptoProvider(); for (let v of AEADSpec.vectors) { const badKey = v.key; badKey[0] ^= badKey[0]; badKey[2] ^= badKey[2]; badKey[3] ^= badKey[8]; const aead = await miscreant.AEAD.importKey(badKey, v.alg, polyfillProvider); await expect(aead.open(v.ciphertext, v.nonce, v.ad)).to.be.rejectedWith(miscreant.IntegrityError); } } @test async "should not open with incorrect associated data"() { const polyfillProvider = new miscreant.PolyfillCryptoProvider(); for (let v of AEADSpec.vectors) { const badAd = new Uint8Array(1); const aead = await miscreant.AEAD.importKey(v.key, v.alg, polyfillProvider); await expect(aead.open(v.ciphertext, v.nonce, badAd)).to.be.rejectedWith(miscreant.IntegrityError); } } @test async "should not open with incorrect ciphertext"() { const polyfillProvider = new miscreant.PolyfillCryptoProvider(); for (let v of AEADSpec.vectors) { const badOutput = v.ciphertext; badOutput[0] ^= badOutput[0]; badOutput[1] ^= badOutput[1]; badOutput[3] ^= badOutput[8]; const aead = await miscreant.AEAD.importKey(v.key, v.alg, polyfillProvider); await expect(aead.open(badOutput, v.nonce, v.ad)).to.be.rejectedWith(miscreant.IntegrityError); } } }