UNPKG

wireguard-keygen

Version:

A TypeScript library for generating WireGuard key pairs using proper Curve25519 cryptography

github.com/princeomonu/wireguard-keygen

princeomonu/wireguard-keygen

64 lines (63 loc) 4.34 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); const assert_1 = require("assert"); const keygen_1 = require("./keygen"); /** * Test function for WireGuard key pair generation */ function testKeyPairGeneration() { console.log('Testing WireGuard key pair generation...'); // Test 1: Function returns an object with the expected properties const keyPair = (0, keygen_1.generateWireguardKeyPair)(); (0, assert_1.strict)(typeof keyPair === 'object', 'Key pair should be an object'); (0, assert_1.strict)('privateKey' in keyPair, 'Key pair should have privateKey property'); (0, assert_1.strict)('publicKey' in keyPair, 'Key pair should have publicKey property'); console.log('✓ Key pair has expected properties'); // Show example output console.log('\nExample generated key pair:'); console.log(`Private Key: ${keyPair.privateKey}`); console.log(`Public Key: ${keyPair.publicKey}`); // Test 2: Keys are strings (0, assert_1.strict)(typeof keyPair.privateKey === 'string', 'Private key should be a string'); (0, assert_1.strict)(typeof keyPair.publicKey === 'string', 'Public key should be a string'); console.log('✓ Keys are strings'); // Test 3: Keys are base64 format (should only contain valid base64 characters) const base64Regex = /^[A-Za-z0-9+/]*={0,2}$/; (0, assert_1.strict)(base64Regex.test(keyPair.privateKey), 'Private key should be valid base64'); (0, assert_1.strict)(base64Regex.test(keyPair.publicKey), 'Public key should be valid base64'); console.log('✓ Keys are valid base64 format'); // Test 4: Keys have expected length (32 bytes = 44 characters in base64) (0, assert_1.strict)(keyPair.privateKey.length === 44, 'Private key should be 44 characters (32 bytes in base64)'); (0, assert_1.strict)(keyPair.publicKey.length === 44, 'Public key should be 44 characters (32 bytes in base64)'); console.log('✓ Keys have correct length'); // Test 5: Keys are different from each other (0, assert_1.strict)(keyPair.privateKey !== keyPair.publicKey, 'Private and public keys should be different'); console.log('✓ Private and public keys are different'); // Test 6: Multiple calls generate different key pairs const keyPair2 = (0, keygen_1.generateWireguardKeyPair)(); (0, assert_1.strict)(keyPair.privateKey !== keyPair2.privateKey, 'Different calls should generate different private keys'); (0, assert_1.strict)(keyPair.publicKey !== keyPair2.publicKey, 'Different calls should generate different public keys'); console.log('✓ Multiple calls generate unique key pairs'); // Test 7: Same private key always generates same public key (deterministic) const testPrivateKey = keyPair.privateKey; const publicKey1 = (0, keygen_1.derivePublicKey)(testPrivateKey); const publicKey2 = (0, keygen_1.derivePublicKey)(testPrivateKey); (0, assert_1.strict)(publicKey1 === publicKey2, 'Same private key should always generate same public key'); (0, assert_1.strict)(publicKey1 === keyPair.publicKey, 'Derived public key should match original'); console.log('✓ Same private key always generates same public key (deterministic)'); // Test 8: Public key validation (0, assert_1.strict)((0, keygen_1.validatePublicKey)(keyPair.publicKey), 'Generated public key should be valid'); (0, assert_1.strict)((0, keygen_1.validatePublicKey)(keyPair2.publicKey), 'Second generated public key should be valid'); (0, assert_1.strict)(!(0, keygen_1.validatePublicKey)('invalid'), 'Invalid key should fail validation'); (0, assert_1.strict)(!(0, keygen_1.validatePublicKey)(''), 'Empty key should fail validation'); console.log('✓ Public key validation works correctly'); // Important cryptographic principle explanation console.log('\n📝 Cryptographic Key Pair Properties:'); console.log('• The SAME private key always generates the SAME public key (deterministic)'); console.log('• Each call to generateWireguardKeyPair() creates a NEW random private key'); console.log('• That\'s why we get different key pairs each time'); console.log('• Uses proper Curve25519 elliptic curve cryptography (@noble/curves)'); console.log('\nAll tests passed! ✨'); } // Run the tests testKeyPairGeneration();