def test_encryption_algs(self):
"""Unit test encryption algorithms"""
for alg in get_encryption_algs():
with self.subTest(alg=alg):
keysize, ivsize, blocksize, mode = get_encryption_params(alg)
key = os.urandom(keysize)
iv = os.urandom(ivsize)
data = os.urandom(32 * blocksize)
enc_cipher = get_cipher(alg, key, iv)
dec_cipher = get_cipher(alg, key, iv)
badkey = bytearray(key)
badkey[-1] ^= 0xff
bad_cipher = get_cipher(alg, bytes(badkey), iv)
hdr = os.urandom(4)
if mode == 'chacha':
nonce = os.urandom(8)
enchdr = enc_cipher.crypt_len(hdr, nonce)
encdata, mac = enc_cipher.encrypt_and_sign(
hdr, data, nonce)
dechdr = dec_cipher.crypt_len(enchdr, nonce)
decdata = dec_cipher.verify_and_decrypt(
dechdr, encdata, nonce, mac)
badhdr = bad_cipher.crypt_len(enchdr, nonce)
baddata = bad_cipher.verify_and_decrypt(
badhdr, encdata, nonce, mac)
self.assertIsNone(baddata)
elif mode == 'gcm':
dechdr = hdr
encdata, mac = enc_cipher.encrypt_and_sign(hdr, data)
decdata = dec_cipher.verify_and_decrypt(hdr, encdata, mac)
baddata = bad_cipher.verify_and_decrypt(hdr, encdata, mac)
self.assertIsNone(baddata)
else:
dechdr = hdr
encdata1 = enc_cipher.encrypt(data[:len(data) // 2])
encdata2 = enc_cipher.encrypt(data[len(data) // 2:])
decdata = dec_cipher.decrypt(encdata1)
decdata += dec_cipher.decrypt(encdata2)
baddata = bad_cipher.decrypt(encdata1)
baddata += bad_cipher.decrypt(encdata2)
self.assertNotEqual(data, baddata)
self.assertEqual(hdr, dechdr)
self.assertEqual(data, decdata)
def test_encryption_algs(self):
"""Unit test encryption algorithms"""
for alg in get_encryption_algs():
with self.subTest(alg=alg):
keysize, ivsize, blocksize, mode = get_encryption_params(alg)
key = os.urandom(keysize)
iv = os.urandom(ivsize)
data = os.urandom(32*blocksize)
enc_cipher = get_cipher(alg, key, iv)
dec_cipher = get_cipher(alg, key, iv)
badkey = bytearray(key)
badkey[-1] ^= 0xff
bad_cipher = get_cipher(alg, bytes(badkey), iv)
hdr = os.urandom(4)
if mode == 'chacha':
nonce = os.urandom(8)
enchdr = enc_cipher.crypt_len(hdr, nonce)
encdata, mac = enc_cipher.encrypt_and_sign(hdr, data,
nonce)
dechdr = dec_cipher.crypt_len(enchdr, nonce)
decdata = dec_cipher.verify_and_decrypt(dechdr, encdata,
nonce, mac)
badhdr = bad_cipher.crypt_len(enchdr, nonce)
baddata = bad_cipher.verify_and_decrypt(badhdr, encdata,
nonce, mac)
self.assertIsNone(baddata)
elif mode == 'gcm':
dechdr = hdr
encdata, mac = enc_cipher.encrypt_and_sign(hdr, data)
decdata = dec_cipher.verify_and_decrypt(hdr, encdata, mac)
baddata = bad_cipher.verify_and_decrypt(hdr, encdata, mac)
self.assertIsNone(baddata)
else:
dechdr = hdr
encdata1 = enc_cipher.encrypt(data[:len(data)//2])
encdata2 = enc_cipher.encrypt(data[len(data)//2:])
decdata = dec_cipher.decrypt(encdata1)
decdata += dec_cipher.decrypt(encdata2)
baddata = bad_cipher.decrypt(encdata1)
baddata += bad_cipher.decrypt(encdata2)
self.assertNotEqual(data, baddata)
self.assertEqual(hdr, dechdr)
self.assertEqual(data, decdata)
def test_encryption_algs(self):
"""Test connecting with different encryption algorithms"""
for enc in get_encryption_algs():
enc = enc.decode('ascii')
with self.subTest(encryption_alg=enc):
with (yield from self.connect(encryption_algs=[enc])) as conn:
pass
yield from conn.wait_closed()
def test_encryption_algs(self):
"""Test connecting with different encryption algorithms"""
for enc in get_encryption_algs():
enc = enc.decode('ascii')
with self.subTest(encryption_alg=enc):
with (yield from self.connect(encryption_algs=[enc])) as conn:
pass
yield from conn.wait_closed()