mirror of
https://gitlab.winehq.org/wine/wine-gecko.git
synced 2024-09-13 09:24:08 -07:00
160 lines
5.4 KiB
JavaScript
160 lines
5.4 KiB
JavaScript
var btoa;
|
|
|
|
Cu.import("resource://services-sync/base_records/crypto.js");
|
|
Cu.import("resource://services-sync/constants.js");
|
|
btoa = Cu.import("resource://services-sync/util.js").btoa;
|
|
|
|
function test_keymanager() {
|
|
let testKey = "ababcdefabcdefabcdefabcdef";
|
|
|
|
let username = "john@example.com";
|
|
|
|
// Decode the key here to mirror what generateEntry will do,
|
|
// but pass it encoded into the KeyBundle call below.
|
|
|
|
let sha256inputE = Utils.makeHMACKey("" + HMAC_INPUT + username + "\x01");
|
|
let encryptKey = Utils.sha256HMACBytes(Utils.decodeKeyBase32(testKey), sha256inputE);
|
|
|
|
let sha256inputH = Utils.makeHMACKey(encryptKey + HMAC_INPUT + username + "\x02");
|
|
let hmacKey = Utils.sha256HMACBytes(Utils.decodeKeyBase32(testKey), sha256inputH);
|
|
|
|
// Encryption key is stored in base64 for WeaveCrypto convenience.
|
|
do_check_eq(btoa(encryptKey), new SyncKeyBundle(null, username, testKey).encryptionKey);
|
|
do_check_eq(hmacKey, new SyncKeyBundle(null, username, testKey).hmacKey);
|
|
|
|
// Test with the same KeyBundle for both.
|
|
let obj = new SyncKeyBundle(null, username, testKey);
|
|
do_check_eq(hmacKey, obj.hmacKey);
|
|
do_check_eq(btoa(encryptKey), obj.encryptionKey);
|
|
}
|
|
|
|
function do_check_keypair_eq(a, b) {
|
|
do_check_eq(2, a.length);
|
|
do_check_eq(2, b.length);
|
|
do_check_eq(a[0], b[0]);
|
|
do_check_eq(a[1], b[1]);
|
|
}
|
|
|
|
function test_collections_manager() {
|
|
let log = Log4Moz.repository.getLogger("Test");
|
|
Log4Moz.repository.rootLogger.addAppender(new Log4Moz.DumpAppender());
|
|
|
|
let keyBundle = ID.set("WeaveCryptoID",
|
|
new SyncKeyBundle(PWDMGR_PASSPHRASE_REALM, "john@example.com", "a-bbbbb-ccccc-ddddd-eeeee-fffff"));
|
|
|
|
/*
|
|
* Build a test version of storage/crypto/keys.
|
|
* Encrypt it with the sync key.
|
|
* Pass it into the CollectionKeyManager.
|
|
*/
|
|
|
|
log.info("Building storage keys...");
|
|
let storage_keys = new CryptoWrapper("crypto", "keys");
|
|
let default_key64 = Svc.Crypto.generateRandomKey();
|
|
let default_hmac64 = Svc.Crypto.generateRandomKey();
|
|
let bookmarks_key64 = Svc.Crypto.generateRandomKey();
|
|
let bookmarks_hmac64 = Svc.Crypto.generateRandomKey();
|
|
|
|
storage_keys.cleartext = {
|
|
"default": [default_key64, default_hmac64],
|
|
"collections": {"bookmarks": [bookmarks_key64, bookmarks_hmac64]},
|
|
};
|
|
storage_keys.modified = Date.now()/1000;
|
|
storage_keys.id = "keys";
|
|
|
|
log.info("Encrypting storage keys...");
|
|
|
|
// Use passphrase (sync key) itself to encrypt the key bundle.
|
|
storage_keys.encrypt(keyBundle);
|
|
|
|
// Sanity checking.
|
|
do_check_true(null == storage_keys.cleartext);
|
|
do_check_true(null != storage_keys.ciphertext);
|
|
|
|
log.info("Updating CollectionKeys.");
|
|
|
|
// updateContents decrypts the object, but it also returns the payload
|
|
// for us to use.
|
|
let payload = CollectionKeys.updateContents(keyBundle, storage_keys);
|
|
|
|
_("CK: " + JSON.stringify(CollectionKeys._collections));
|
|
|
|
// Test that the CollectionKeyManager returns a similar WBO.
|
|
let wbo = CollectionKeys.asWBO("crypto", "keys");
|
|
|
|
_("WBO: " + JSON.stringify(wbo));
|
|
|
|
// Check the individual contents.
|
|
do_check_eq(wbo.collection, "crypto");
|
|
do_check_eq(wbo.id, "keys");
|
|
do_check_eq(storage_keys.modified, wbo.modified);
|
|
do_check_true(!!wbo.cleartext.default);
|
|
do_check_keypair_eq(payload.default, wbo.cleartext.default);
|
|
do_check_keypair_eq(payload.collections.bookmarks, wbo.cleartext.collections.bookmarks);
|
|
|
|
do_check_true('bookmarks' in CollectionKeys._collections);
|
|
do_check_false('tabs' in CollectionKeys._collections);
|
|
|
|
/*
|
|
* Test that we get the right keys out when we ask for
|
|
* a collection's tokens.
|
|
*/
|
|
let b1 = new BulkKeyBundle(null, "bookmarks");
|
|
b1.keyPair = [bookmarks_key64, bookmarks_hmac64];
|
|
let b2 = CollectionKeys.keyForCollection("bookmarks");
|
|
do_check_keypair_eq(b1.keyPair, b2.keyPair);
|
|
|
|
b1 = new BulkKeyBundle(null, "[default]");
|
|
b1.keyPair = [default_key64, default_hmac64];
|
|
b2 = CollectionKeys.keyForCollection(null);
|
|
do_check_keypair_eq(b1.keyPair, b2.keyPair);
|
|
|
|
/*
|
|
* Checking for update times.
|
|
*/
|
|
let info_collections = {};
|
|
do_check_true(CollectionKeys.updateNeeded(info_collections));
|
|
info_collections["crypto"] = 5000;
|
|
do_check_false(CollectionKeys.updateNeeded(info_collections));
|
|
info_collections["crypto"] = 1 + (Date.now()/1000); // Add one in case computers are fast!
|
|
do_check_true(CollectionKeys.updateNeeded(info_collections));
|
|
|
|
CollectionKeys._lastModified = null;
|
|
do_check_true(CollectionKeys.updateNeeded({}));
|
|
}
|
|
|
|
// Make sure that KeyBundles work when persisted through Identity.
|
|
function test_key_persistence() {
|
|
_("Testing key persistence.");
|
|
|
|
// Create our sync key bundle and persist it.
|
|
let k = new SyncKeyBundle(null, null, "abcdeabcdeabcdeabcdeabcdea");
|
|
k.username = "john@example.com";
|
|
ID.set("WeaveCryptoID", k);
|
|
let id = ID.get("WeaveCryptoID");
|
|
do_check_eq(k, id);
|
|
id.persist();
|
|
|
|
// Now erase any memory of it.
|
|
ID.del("WeaveCryptoID");
|
|
k = id = null;
|
|
|
|
// Now recreate via the persisted value.
|
|
id = new SyncKeyBundle();
|
|
id.username = "john@example.com";
|
|
|
|
// The password should have been fetched from storage...
|
|
do_check_eq(id.password, "abcdeabcdeabcdeabcdeabcdea");
|
|
|
|
// ... and we should be able to grab these by derivation.
|
|
do_check_true(!!id.hmacKeyObject);
|
|
do_check_true(!!id.hmacKey);
|
|
do_check_true(!!id.encryptionKey);
|
|
}
|
|
|
|
function run_test() {
|
|
test_keymanager();
|
|
test_collections_manager();
|
|
test_key_persistence();
|
|
}
|