// Copyright 2012 The Go Authors. All rights reserved. // Use of this source code is governed by a BSD-style // license that can be found in the LICENSE file. package box import ( "bytes" "crypto/rand" "encoding/hex" "testing" "golang.org/x/crypto/curve25519" ) func TestSealOpen(t *testing.T) { publicKey1, privateKey1, _ := GenerateKey(rand.Reader) publicKey2, privateKey2, _ := GenerateKey(rand.Reader) if *privateKey1 == *privateKey2 { t.Fatalf("private keys are equal!") } if *publicKey1 == *publicKey2 { t.Fatalf("public keys are equal!") } message := []byte("test message") var nonce [24]byte box := Seal(nil, message, &nonce, publicKey1, privateKey2) opened, ok := Open(nil, box, &nonce, publicKey2, privateKey1) if !ok { t.Fatalf("failed to open box") } if !bytes.Equal(opened, message) { t.Fatalf("got %x, want %x", opened, message) } for i := range box { box[i] ^= 0x40 _, ok := Open(nil, box, &nonce, publicKey2, privateKey1) if ok { t.Fatalf("opened box with byte %d corrupted", i) } box[i] ^= 0x40 } } func TestBox(t *testing.T) { var privateKey1, privateKey2 [32]byte for i := range privateKey1[:] { privateKey1[i] = 1 } for i := range privateKey2[:] { privateKey2[i] = 2 } var publicKey1 [32]byte curve25519.ScalarBaseMult(&publicKey1, &privateKey1) var message [64]byte for i := range message[:] { message[i] = 3 } var nonce [24]byte for i := range nonce[:] { nonce[i] = 4 } box := Seal(nil, message[:], &nonce, &publicKey1, &privateKey2) // expected was generated using the C implementation of NaCl. expected, _ := hex.DecodeString("78ea30b19d2341ebbdba54180f821eec265cf86312549bea8a37652a8bb94f07b78a73ed1708085e6ddd0e943bbdeb8755079a37eb31d86163ce241164a47629c0539f330b4914cd135b3855bc2a2dfc") if !bytes.Equal(box, expected) { t.Fatalf("box didn't match, got\n%x\n, expected\n%x", box, expected) } } func TestSealOpenAnonymous(t *testing.T) { publicKey, privateKey, _ := GenerateKey(rand.Reader) message := []byte("test message") box, err := SealAnonymous(nil, message, publicKey, nil) if err != nil { t.Fatalf("Unexpected error sealing %v", err) } opened, ok := OpenAnonymous(nil, box, publicKey, privateKey) if !ok { t.Fatalf("failed to open box") } if !bytes.Equal(opened, message) { t.Fatalf("got %x, want %x", opened, message) } for i := range box { box[i] ^= 0x40 _, ok := OpenAnonymous(nil, box, publicKey, privateKey) if ok { t.Fatalf("opened box with byte %d corrupted", i) } box[i] ^= 0x40 } // allocates new slice if out isn't long enough out := []byte("hello") orig := append([]byte(nil), out...) box, err = SealAnonymous(out, message, publicKey, nil) if err != nil { t.Fatalf("Unexpected error sealing %v", err) } if !bytes.Equal(out, orig) { t.Fatal("expected out to be unchanged") } if !bytes.HasPrefix(box, orig) { t.Fatal("expected out to be coppied to returned slice") } _, ok = OpenAnonymous(nil, box[len(out):], publicKey, privateKey) if !ok { t.Fatalf("failed to open box") } // uses provided slice if it's long enough out = append(make([]byte, 0, 1000), []byte("hello")...) orig = append([]byte(nil), out...) box, err = SealAnonymous(out, message, publicKey, nil) if err != nil { t.Fatalf("Unexpected error sealing %v", err) } if !bytes.Equal(out, orig) { t.Fatal("expected out to be unchanged") } if &out[0] != &box[0] { t.Fatal("expected box to point to out") } _, ok = OpenAnonymous(nil, box[len(out):], publicKey, privateKey) if !ok { t.Fatalf("failed to open box") } } func TestSealedBox(t *testing.T) { var privateKey [32]byte for i := range privateKey[:] { privateKey[i] = 1 } var publicKey [32]byte curve25519.ScalarBaseMult(&publicKey, &privateKey) var message [64]byte for i := range message[:] { message[i] = 3 } fakeRand := bytes.NewReader([]byte{5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5, 5}) box, err := SealAnonymous(nil, message[:], &publicKey, fakeRand) if err != nil { t.Fatalf("Unexpected error sealing %v", err) } // expected was generated using the C implementation of libsodium with a // random implementation that always returns 5. // https://gist.github.com/mastahyeti/942ec3f175448d68fed25018adbce5a7 expected, _ := hex.DecodeString("50a61409b1ddd0325e9b16b700e719e9772c07000b1bd7786e907c653d20495d2af1697137a53b1b1dfc9befc49b6eeb38f86be720e155eb2be61976d2efb34d67ecd44a6ad634625eb9c288bfc883431a84ab0f5557dfe673aa6f74c19f033e648a947358cfcc606397fa1747d5219a") if !bytes.Equal(box, expected) { t.Fatalf("box didn't match, got\n%x\n, expected\n%x", box, expected) } // box was generated using the C implementation of libsodium. // https://gist.github.com/mastahyeti/942ec3f175448d68fed25018adbce5a7 box, _ = hex.DecodeString("3462e0640728247a6f581e3812850d6edc3dcad1ea5d8184c072f62fb65cb357e27ffa8b76f41656bc66a0882c4d359568410665746d27462a700f01e314f382edd7aae9064879b0f8ba7b88866f88f5e4fbd7649c850541877f9f33ebd25d46d9cbcce09b69a9ba07f0eb1d105d4264") result, ok := OpenAnonymous(nil, box, &publicKey, &privateKey) if !ok { t.Fatalf("failed to open box") } if !bytes.Equal(result, message[:]) { t.Fatalf("message didn't match, got\n%x\n, expected\n%x", result, message[:]) } }