You've already forked linux-packaging-mono
acceptance-tests
data
debian
docs
external
Newtonsoft.Json
api-doc-tools
api-snapshot
aspnetwebstack
packages
src
test
Microsoft.TestCommon
Microsoft.Web.Helpers.Test
Microsoft.Web.Http.Data.Test
Microsoft.Web.Mvc.Test
Microsoft.Web.WebPages.OAuth.Test
SPA.Test
System.Json.Test.Integration
System.Json.Test.Unit
System.Net.Http.Formatting.Test.Integration
System.Net.Http.Formatting.Test.Unit
System.Web.Helpers.Test
Properties
TestFiles
ChartTest.cs
ConversionUtilTest.cs
CryptoTest.cs
DynamicDictionary.cs
DynamicHelperTest.cs
DynamicWrapper.cs
HelperResultTest.cs
JsonTest.cs
ObjectInfoTest.cs
PreComputedGridDataSourceTest.cs
ServerInfoTest.cs
System.Web.Helpers.Test.csproj
WebCacheTest.cs
WebGridDataSourceTest.cs
WebGridTest.cs
WebImageTest.cs
WebMailTest.cs
XhtmlAssert.cs
packages.config
System.Web.Http.Integration.Test
System.Web.Http.SelfHost.Test
System.Web.Http.Test
System.Web.Http.WebHost.Test
System.Web.Mvc.Test
System.Web.Razor.Test
System.Web.WebPages.Administration.Test
System.Web.WebPages.Deployment.Test
System.Web.WebPages.Razor.Test
System.Web.WebPages.Test
WebMatrix.Data.Test
WebMatrix.WebData.Test
Settings.StyleCop
tools
.gitattributes
.gitignore
License.txt
README.md
Runtime.msbuild
Runtime.sln
Runtime.xunit
Settings.StyleCop
build.cmd
binary-reference-assemblies
bockbuild
boringssl
cecil
cecil-legacy
corefx
corert
ikdasm
ikvm
linker
nuget-buildtasks
nunit-lite
roslyn-binaries
rx
xunit-binaries
ikvm-native
libgc
llvm
m4
man
mcs
mono
msvc
po
runtime
samples
scripts
support
tools
COPYING.LIB
LICENSE
Makefile.am
Makefile.in
NEWS
README.md
acinclude.m4
aclocal.m4
autogen.sh
code_of_conduct.md
compile
config.guess
config.h.in
config.rpath
config.sub
configure.REMOVED.git-id
configure.ac.REMOVED.git-id
depcomp
install-sh
ltmain.sh.REMOVED.git-id
missing
mkinstalldirs
mono-uninstalled.pc.in
test-driver
winconfig.h
173 lines
6.0 KiB
C#
173 lines
6.0 KiB
C#
|
// Copyright (c) Microsoft Corporation. All rights reserved. See License.txt in the project root for license information.
|
|||
|
|
|
|||
|
|
using System.IO;
|
|||
|
|
using System.Security.Cryptography;
|
|||
|
|
using System.Text;
|
|||
|
|
using Xunit;
|
|||
|
|
using Assert = Microsoft.TestCommon.AssertEx;
|
|||
|
|
|
|||
|
|
namespace System.Web.Helpers.Test
|
|||
|
|
{
|
|||
|
|
/// <summary>
|
|||
|
|
///This is a test class for CryptoTest and is intended
|
|||
|
|
///to contain all CryptoTest Unit Tests
|
|||
|
|
///</summary>
|
|||
|
|
public class CryptoTest
|
|||
|
|
{
|
|||
|
|
[Fact]
|
|||
|
|
public void SHA256HashTest_ReturnsValidData()
|
|||
|
|
{
|
|||
|
|
string data = "foo bar";
|
|||
|
|
string expected = "FBC1A9F858EA9E177916964BD88C3D37B91A1E84412765E29950777F265C4B75";
|
|||
|
|
string actual;
|
|||
|
|
actual = Crypto.SHA256(data);
|
|||
|
|
Assert.Equal(expected, actual);
|
|||
|
|
|
|||
|
|
actual = Crypto.Hash(Encoding.UTF8.GetBytes(data));
|
|||
|
|
Assert.Equal(expected, actual);
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void GenerateSaltTest()
|
|||
|
|
{
|
|||
|
|
string salt = Crypto.GenerateSalt();
|
|||
|
|
salt = Crypto.GenerateSalt(64);
|
|||
|
|
Assert.Equal(24, Crypto.GenerateSalt().Length);
|
|||
|
|
Assert.Equal(12, Crypto.GenerateSalt(8).Length);
|
|||
|
|
Assert.Equal(88, Crypto.GenerateSalt(64).Length);
|
|||
|
|
Assert.Equal(44, Crypto.GenerateSalt(32).Length);
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void HashPassword_PasswordGeneration()
|
|||
|
|
{
|
|||
|
|
// Act - call helper directly
|
|||
|
|
string generatedHash = Crypto.HashPassword("my-password");
|
|||
|
|
byte[] salt = new byte[16];
|
|||
|
|
Buffer.BlockCopy(Convert.FromBase64String(generatedHash), 1, salt, 0, 16); // extract salt from generated hash
|
|||
|
|
|
|||
|
|
// Act - perform PBKDF2 directly
|
|||
|
|
string generatedHash2;
|
|||
|
|
using (var ms = new MemoryStream())
|
|||
|
|
{
|
|||
|
|
using (var bw = new BinaryWriter(ms))
|
|||
|
|
{
|
|||
|
|
using (var deriveBytes = new Rfc2898DeriveBytes("my-password", salt, iterations: 1000))
|
|||
|
|
{
|
|||
|
|
bw.Write((byte)0x00); // version identifier
|
|||
|
|
bw.Write(salt); // salt
|
|||
|
|
bw.Write(deriveBytes.GetBytes(32)); // subkey
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
generatedHash2 = Convert.ToBase64String(ms.ToArray());
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
// Assert
|
|||
|
|
Assert.Equal(generatedHash2, generatedHash);
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void HashPassword_RoundTripping()
|
|||
|
|
{
|
|||
|
|
// Act & assert
|
|||
|
|
string password = "ImPepper";
|
|||
|
|
Assert.True(Crypto.VerifyHashedPassword(Crypto.HashPassword(password), password));
|
|||
|
|
Assert.False(Crypto.VerifyHashedPassword(Crypto.HashPassword(password), "ImSalt"));
|
|||
|
|
Assert.False(Crypto.VerifyHashedPassword(Crypto.HashPassword("Impepper"), password));
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void VerifyHashedPassword_CorrectPassword_ReturnsTrue()
|
|||
|
|
{
|
|||
|
|
// Arrange
|
|||
|
|
string hashedPassword = "ALyuoraY/cIWD1hjo+K81/pf83qo6Q6T+UBYcXN9P3A9WHLvEY10f+lwW5qPG6h9xw=="; // this is for 'my-password'
|
|||
|
|
|
|||
|
|
// Act
|
|||
|
|
bool retVal = Crypto.VerifyHashedPassword(hashedPassword, "my-password");
|
|||
|
|
|
|||
|
|
// Assert
|
|||
|
|
Assert.True(retVal);
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void VerifyHashedPassword_IncorrectPassword_ReturnsFalse()
|
|||
|
|
{
|
|||
|
|
// Arrange
|
|||
|
|
string hashedPassword = "ALyuoraY/cIWD1hjo+K81/pf83qo6Q6T+UBYcXN9P3A9WHLvEY10f+lwW5qPG6h9xw=="; // this is for 'my-password'
|
|||
|
|
|
|||
|
|
// Act
|
|||
|
|
bool retVal = Crypto.VerifyHashedPassword(hashedPassword, "some-other-password");
|
|||
|
|
|
|||
|
|
// Assert
|
|||
|
|
Assert.False(retVal);
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void VerifyHashedPassword_InvalidPasswordHash_ReturnsFalse()
|
|||
|
|
{
|
|||
|
|
// Arrange
|
|||
|
|
string hashedPassword = "AAECAw=="; // this is an invalid password hash
|
|||
|
|
|
|||
|
|
// Act
|
|||
|
|
bool retVal = Crypto.VerifyHashedPassword(hashedPassword, "hello-world");
|
|||
|
|
|
|||
|
|
// Assert
|
|||
|
|
Assert.False(retVal);
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void MD5HashTest_ReturnsValidData()
|
|||
|
|
{
|
|||
|
|
string data = "foo bar";
|
|||
|
|
string expected = "327B6F07435811239BC47E1544353273";
|
|||
|
|
string actual;
|
|||
|
|
actual = Crypto.Hash(data, algorithm: "md5");
|
|||
|
|
Assert.Equal(expected, actual);
|
|||
|
|
|
|||
|
|
actual = Crypto.Hash(Encoding.UTF8.GetBytes(data), algorithm: "MD5");
|
|||
|
|
Assert.Equal(expected, actual);
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void SHA1HashTest_ReturnsValidData()
|
|||
|
|
{
|
|||
|
|
string data = "foo bar";
|
|||
|
|
string expected = "3773DEA65156909838FA6C22825CAFE090FF8030";
|
|||
|
|
string actual;
|
|||
|
|
actual = Crypto.SHA1(data);
|
|||
|
|
Assert.Equal(expected, actual);
|
|||
|
|
|
|||
|
|
actual = Crypto.Hash(Encoding.UTF8.GetBytes(data), algorithm: "sha1");
|
|||
|
|
Assert.Equal(expected, actual);
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void SHA1HashTest_WithNull_ThrowsException()
|
|||
|
|
{
|
|||
|
|
Assert.Throws<ArgumentNullException>(() => Crypto.SHA1((string)null));
|
|||
|
|
Assert.Throws<ArgumentNullException>(() => Crypto.Hash((byte[])null, algorithm: "SHa1"));
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void SHA256HashTest_WithNull_ThrowsException()
|
|||
|
|
{
|
|||
|
|
Assert.Throws<ArgumentNullException>(() => Crypto.SHA256((string)null));
|
|||
|
|
Assert.Throws<ArgumentNullException>(() => Crypto.Hash((byte[])null, algorithm: "sHa256"));
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void MD5HashTest_WithNull_ThrowsException()
|
|||
|
|
{
|
|||
|
|
Assert.Throws<ArgumentNullException>(() => Crypto.Hash((string)null, algorithm: "mD5"));
|
|||
|
|
Assert.Throws<ArgumentNullException>(() => Crypto.Hash((byte[])null, algorithm: "mD5"));
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
[Fact]
|
|||
|
|
public void HashWithUnknownAlg_ThrowsException()
|
|||
|
|
{
|
|||
|
|
Assert.Throws<InvalidOperationException>(() => Crypto.Hash("sdflksd", algorithm: "hao"), "The hash algorithm 'hao' is not supported, valid values are: sha256, sha1, md5");
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
}
|