mono/linux-packaging-mono
0
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
linux-packaging-mono/mcs/class/corlib/Test/System.Security.Cryptography/Rfc2898DeriveBytesTest.cs
Jo Shields a575963da9 Imported Upstream version 3.6.0 
Former-commit-id: da6be194a6b1221998fc28233f2503bd61dd9d14
2014-08-13 10:39:27 +01:00

372 lines
12 KiB
C#
Raw Blame History

//
// Rfc2898DeriveBytesTest.cs - NUnit Test Cases for Rfc2898DeriveBytes
//
// Author:
// Sebastien Pouliot <spouliot@ximian.com>
//
// (C) 2003 Motus Technologies Inc. (http://www.motus.com)
// Copyright (C) 2004,2008 Novell, Inc (http://www.novell.com)
//
// Permission is hereby granted, free of charge, to any person obtaining
// a copy of this software and associated documentation files (the
// "Software"), to deal in the Software without restriction, including
// without limitation the rights to use, copy, modify, merge, publish,
// distribute, sublicense, and/or sell copies of the Software, and to
// permit persons to whom the Software is furnished to do so, subject to
// the following conditions:
//
// The above copyright notice and this permission notice shall be
// included in all copies or substantial portions of the Software.
//
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
// EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
// NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
// LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
// OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
//
#if NET_2_0
using NUnit.Framework;
using System;
using System.Security.Cryptography;
namespace MonoTests.System.Security.Cryptography {
// References:
// a. PKCS#5: Password-Based Cryptography Standard
// http://www.rsasecurity.com/rsalabs/pkcs/pkcs-5/index.html
// b. RFC 3211 - Password-based Encryption for CMS
// http://www.faqs.org/rfcs/rfc3211.html
[TestFixture]
public class Rfc2898DeriveBytesTest {
static private byte[] salt = { 0x12, 0x34, 0x56, 0x78, 0x78, 0x56, 0x34, 0x12 };
[Test]
public void ConstructorPasswordSalt ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt);
Assert.AreEqual (1000, pkcs5.IterationCount, "IterationCount");
Assert.AreEqual (salt, pkcs5.Salt, "Salt");
}
[Test]
[ExpectedException (typeof (ArgumentNullException))]
public void ConstructorPasswordNullSalt ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes (null, salt);
}
[Test]
[ExpectedException (typeof (ArgumentNullException))]
public void ConstructorPasswordSaltNull ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", null);
}
[Test]
public void ConstructorPasswordSaltIterations ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt, 5);
Assert.AreEqual (5, pkcs5.IterationCount, "IterationCount");
Assert.AreEqual (salt, pkcs5.Salt, "Salt");
}
[Test]
[ExpectedException (typeof (ArgumentNullException))]
public void ConstructorPasswordNullSaltIterations ()
{
string password = null;
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes (password, salt, 5);
}
[Test]
[ExpectedException (typeof (ArgumentNullException))]
public void ConstructorPasswordSaltNullIterations ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", null, 5);
}
[Test]
[ExpectedException (typeof (ArgumentOutOfRangeException))]
public void ConstructorPasswordSaltIterationsZero ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt, 0);
}
[Test]
[ExpectedException (typeof (ArgumentOutOfRangeException))]
public void ConstructorPasswordSaltIterationsNegative ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt, Int32.MinValue);
}
[Test]
public void ConstructorPasswordSaltLength ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", 8);
Assert.AreEqual (1000, pkcs5.IterationCount, "IterationCount");
Assert.AreEqual (8, pkcs5.Salt.Length, "Salt");
}
[Test]
[ExpectedException (typeof (ArgumentNullException))]
public void ConstructorPasswordNullSaltLength ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes (null, 8);
}
[Test]
[ExpectedException (typeof (ArgumentException))]
public void ConstructorPasswordSaltLengthZero ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", 0);
}
[Test]
[ExpectedException (typeof (ArgumentOutOfRangeException))]
public void ConstructorPasswordSaltLengthNegative ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", Int32.MinValue);
}
[Test]
public void ConstructorPasswordSaltLengthIterations ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", 8, 5);
Assert.AreEqual (5, pkcs5.IterationCount, "IterationCount");
Assert.AreEqual (8, pkcs5.Salt.Length, "Salt");
}
[Test]
[ExpectedException (typeof (ArgumentNullException))]
public void ConstructorPasswordNullSaltLengthIterations ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes (null, 8, 5);
}
[Test]
[ExpectedException (typeof (ArgumentException))]
public void ConstructorPasswordSaltLengthZeroIterations ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", 0, 5);
}
[Test]
[ExpectedException (typeof (ArgumentOutOfRangeException))]
public void ConstructorPasswordSaltLengthNegativeIterations ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", Int32.MinValue, 5);
}
[Test]
[ExpectedException (typeof (ArgumentOutOfRangeException))]
public void ConstructorPasswordSaltLengthIterationsZero ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", 8, 0);
}
[Test]
[ExpectedException (typeof (ArgumentOutOfRangeException))]
public void ConstructorPasswordSaltLengthIterationsNegative ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", 8, Int32.MinValue);
}
[Test]
public void IterationCount ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt, 5);
Assert.AreEqual (5, pkcs5.IterationCount, "IterationCount");
pkcs5.IterationCount = Int32.MaxValue;
Assert.AreEqual (Int32.MaxValue, pkcs5.IterationCount, "IterationCount");
}
[Test]
public void SaltNew ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt);
Assert.AreEqual (salt, pkcs5.Salt, "Salt");
byte[] newSalt = (byte[]) salt.Clone ();
newSalt [0] = 0xFF;
pkcs5.Salt = newSalt;
Assert.AreEqual (newSalt, pkcs5.Salt, "Salt(new)");
}
[Test]
public void SaltCantModifyInternal ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt);
Assert.AreEqual (salt, pkcs5.Salt, "Salt");
byte[] modSalt = (byte[]) salt.Clone ();
modSalt [0] = 0xFF;
Assert.IsFalse ((BitConverter.ToString (pkcs5.Salt) == BitConverter.ToString (modSalt)), "Can't modify internal salt");
}
[Test]
[ExpectedException (typeof (ArgumentNullException))]
public void SaltNull ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt);
pkcs5.Salt = null;
}
[Test]
[ExpectedException (typeof (ArgumentException))]
public void SaltTooSmall ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt);
byte[] smallSalt = { 0x01, 0x02, 0x03, 0x04, 0x05 };
pkcs5.Salt = smallSalt;
}
[Test]
[ExpectedException (typeof (ArgumentOutOfRangeException))]
public void GetBytesZero ()
{
byte[] expected = { 0xd1, 0xda, 0xa7, 0x86, 0x15, 0xf2, 0x87, 0xe6 };
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt, 5);
byte[] key = pkcs5.GetBytes (0);
Assert.AreEqual (0, key.Length, "GetBytesZero");
}
[Test]
[ExpectedException (typeof (ArgumentOutOfRangeException))]
public void GetBytesNegative ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt, 5);
byte[] key = pkcs5.GetBytes (Int32.MinValue);
}
[Test]
public void GetBytes_Endian ()
{
string expected = "0B-40-39-04-B9-2B-F1-B9-C0-A0-64-E6-03-0A-5E-42-4B-88-1E-5E-94-8F-77-87-16-A6-C4-9E-E6-C7-6D-38";
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt, 5);
// this will overflow F on multiple bytes (where endianess comes to play)
byte[] key = pkcs5.GetBytes (32768);
// just check the last 32 bytes
string actual = BitConverter.ToString (key, key.Length - 32);
Assert.AreEqual (expected, actual, "Endian");
}
[Test]
public void RFC3211_TC1 ()
{
byte[] expected = { 0xd1, 0xda, 0xa7, 0x86, 0x15, 0xf2, 0x87, 0xe6 };
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("password", salt, 5);
byte[] key = pkcs5.GetBytes (8);
Assert.AreEqual (expected, key, "RFC3211_TC1");
}
[Test]
public void RFC3211_TC2 ()
{
byte[] expected = { 0x6A, 0x89, 0x70, 0xBF, 0x68, 0xC9, 0x2C, 0xAE, 0xA8, 0x4A, 0x8D, 0xF2, 0x85, 0x10, 0x85, 0x86 };
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("All n-entities must communicate with other n-entities via n-1 entiteeheehees", salt, 500);
byte[] key = pkcs5.GetBytes (16);
Assert.AreEqual (expected, key, "RFC3211_TC2");
}
[Test]
public void RFC3211_TC2_TwoBlocks ()
{
byte[] expected = { 0x6A, 0x89, 0x70, 0xBF, 0x68, 0xC9, 0x2C, 0xAE, 0xA8, 0x4A, 0x8D, 0xF2, 0x85, 0x10, 0x85, 0x86, 0x07, 0x12, 0x63, 0x80, 0xcc, 0x47, 0xab, 0x2d, 0xa6, 0xcc, 0xda, 0xfb, 0x26, 0x83, 0xdf, 0xe8 };
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("All n-entities must communicate with other n-entities via n-1 entiteeheehees", salt, 500);
byte[] key = pkcs5.GetBytes (32);
Assert.AreEqual (expected, key, "RFC3211_TC2_TwoBlocks");
}
[Test]
public void RFC3211_TC2_Splitted_OneBlock ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("All n-entities must communicate with other n-entities via n-1 entiteeheehees", salt, 500);
byte[] key1 = pkcs5.GetBytes (8);
byte[] expected_part1 = { 0x6A, 0x89, 0x70, 0xBF, 0x68, 0xC9, 0x2C, 0xAE };
Assert.AreEqual (expected_part1, key1, "RFC3211_TC2_Splitted_OneBlock-1");
byte[] expected_part2 = { 0xA8, 0x4A, 0x8D, 0xF2, 0x85, 0x10, 0x85, 0x86 };
byte[] key2 = pkcs5.GetBytes (8);
Assert.AreEqual (expected_part2, key2, "RFC3211_TC2_Splitted_OneBlock-2");
}
[Test]
public void RFC3211_TC2_Splitted_TwoBlocks ()
{
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("All n-entities must communicate with other n-entities via n-1 entiteeheehees", salt, 500);
byte[] key1 = pkcs5.GetBytes (16);
byte[] expected_part1 = { 0x6A, 0x89, 0x70, 0xBF, 0x68, 0xC9, 0x2C, 0xAE, 0xA8, 0x4A, 0x8D, 0xF2, 0x85, 0x10, 0x85, 0x86 };
Assert.AreEqual (expected_part1, key1, "RFC3211_TC2_Splitted_TwoBlocks-1");
byte[] expected_part2 = { 0x07, 0x12, 0x63, 0x80, 0xcc, 0x47, 0xab, 0x2d, 0xa6, 0xcc, 0xda, 0xfb, 0x26, 0x83, 0xdf, 0xe8 };
byte[] key2 = pkcs5.GetBytes (16);
Assert.AreEqual (expected_part2, key2, "RFC3211_TC2_Splitted_TwoBlocks-2");
}
[Test]
public void RFC3211_TC2_Reset ()
{
byte[] expected = { 0x6A, 0x89, 0x70, 0xBF, 0x68, 0xC9, 0x2C, 0xAE };
Rfc2898DeriveBytes pkcs5 = new Rfc2898DeriveBytes ("All n-entities must communicate with other n-entities via n-1 entiteeheehees", salt, 500);
byte[] key1 = pkcs5.GetBytes (8);
Assert.AreEqual (expected, key1, "RFC3211_TC2_part1");
pkcs5.Reset ();
byte[] key2 = pkcs5.GetBytes (8);
Assert.AreEqual (expected, key2, "RFC3211_TC2_part2");
}
private void CompareBuffers (byte [] big, byte [] a, byte [] b)
{
int n = 0;
for (int i = 0; i < a.Length; i++) {
Assert.AreEqual (big [n], a [i], n.ToString ());
n++;
}
for (int i = 0; i < b.Length; i++) {
Assert.AreEqual (big [n], b [i], n.ToString ());
n++;
}
}
[Test]
public void SplitCalls_Reset ()
{
Rfc2898DeriveBytes keygen = new Rfc2898DeriveBytes ("password", salt, 12345);
byte [] big = keygen.GetBytes (48);
keygen.Reset ();
byte [] a = keygen.GetBytes (16);
byte [] b = keygen.GetBytes (32);
CompareBuffers (big, a, b);
}
[Test]
public void SplitCalls_TwoInstances ()
{
Rfc2898DeriveBytes keygen1 = new Rfc2898DeriveBytes ("password", salt, 12345);
byte [] big = keygen1.GetBytes (48);
Rfc2898DeriveBytes keygen2 = new Rfc2898DeriveBytes ("password", salt, 12345);
byte [] a = keygen2.GetBytes (16);
byte [] b = keygen2.GetBytes (32);
CompareBuffers (big, a, b);
}
[Test]
public void MultipleCalls_DoesntOverrunBuffer ()
{
Rfc2898DeriveBytes keygen = new Rfc2898DeriveBytes("Password", new byte[] { 1, 2, 3, 4, 5, 6, 7, 8 });
keygen.GetBytes(32);
keygen.GetBytes(64);
}
}
}
#endif
Reference in New Issue View Git Blame Copy Permalink