// Copyright 2014 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include <stddef.h> #include <stdint.h> #include "base/ranges/algorithm.h" #include "components/webcrypto/algorithm_dispatch.h" #include "components/webcrypto/algorithms/ec.h" #include "components/webcrypto/algorithms/test_helpers.h" #include "components/webcrypto/jwk.h" #include "components/webcrypto/status.h" #include "third_party/blink/public/platform/web_crypto_algorithm_params.h" #include "third_party/blink/public/platform/web_crypto_key_algorithm.h" namespace webcrypto { namespace { // TODO(eroman): Test passing an RSA public key instead of ECDH key. // TODO(eroman): Test passing an ECDSA public key blink::WebCryptoAlgorithm CreateEcdhImportAlgorithm( blink::WebCryptoNamedCurve named_curve) { … } blink::WebCryptoAlgorithm CreateEcdhDeriveParams( const blink::WebCryptoKey& public_key) { … } blink::WebCryptoAlgorithm CreateAesGcmDerivedKeyParams(uint16_t length_bits) { … } struct KeyPair { … }; // Helper that loads a "public_key" and "private_key" from the test data. KeyPair ImportKeysFromTest(const base::Value::Dict& test) { … } class WebCryptoEcdhTest : public WebCryptoTestBase { … }; TEST_F(WebCryptoEcdhTest, DeriveBitsKnownAnswer) { … } // Loads up a test ECDH public and private key for P-521. The keys // come from different key pairs, and can be used for key derivation of up to // 528 bits. KeyPair LoadTestKeys() { … } // Try deriving an AES key of length 129 bits. TEST_F(WebCryptoEcdhTest, DeriveKeyBadAesLength) { … } // Try deriving an AES key of length 192 bits. TEST_F(WebCryptoEcdhTest, DeriveKeyUnsupportedAesLength) { … } // Try deriving an HMAC key of length 0 bits. TEST_F(WebCryptoEcdhTest, DeriveKeyZeroLengthHmac) { … } // Derive an HMAC key of length 19 bits. TEST_F(WebCryptoEcdhTest, DeriveKeyHmac19Bits) { … } // Derive an HMAC key with no specified length (just the hash of SHA-256). TEST_F(WebCryptoEcdhTest, DeriveKeyHmacSha256NoLength) { … } // Derive an HMAC key with no specified length (just the hash of SHA-512). // // This fails, because ECDH using P-521 can only generate 528 bits, however HMAC // SHA-512 requires 1024 bits. // // In practice, authors won't be directly generating keys from key agreement // schemes, as that is frequently insecure, and instead be using KDFs to expand // and generate keys. For simplicity of testing, however, test using an HMAC // key. TEST_F(WebCryptoEcdhTest, DeriveKeyHmacSha512NoLength) { … } // Try deriving an AES key of length 128 bits. TEST_F(WebCryptoEcdhTest, DeriveKeyAes128) { … } TEST_F(WebCryptoEcdhTest, ImportKeyEmptyUsage) { … } } // namespace } // namespace webcrypto
Codebase Browser
chromium