1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
|
require "../spec_helper"
require "openssl/cipher"
describe OpenSSL::Cipher do
it "encrypts/decrypts" do
cipher = "aes-128-cbc"
c1 = OpenSSL::Cipher.new(cipher)
c2 = OpenSSL::Cipher.new(cipher)
key = "\0" * 16
iv = "\0" * 16
data = "DATA" * 5
ciphertext = File.read(datapath("cipher_spec.ciphertext"))
c1.name.should eq(c2.name)
c1.encrypt
c2.encrypt
c1.key = c2.key = key
c1.iv = c2.iv = iv
s1 = IO::Memory.new
s2 = IO::Memory.new
s1.write(c1.update("DATA"))
s1.write(c1.update("DATA" * 4))
s1.write(c1.final)
s2.write(c2.update(data))
s2.write(c2.final)
s1.to_slice.should eq(ciphertext.to_slice)
s1.to_slice.should eq(s2.to_slice)
c1.decrypt
c2.decrypt
c1.key = c2.key = key
c1.iv = c2.iv = iv
s3 = IO::Memory.new
s4 = IO::Memory.new
s3.write(c1.update(s1.to_slice))
s3.write(c1.final)
s4.write(c2.update(s2.to_slice))
s4.write(c2.final)
s3.to_s.should eq(data)
s3.to_slice.should eq(s4.to_slice)
end
it "authenticated?" do
begin
cipher = OpenSSL::Cipher.new("aes-128-gcm")
cipher.authenticated?.should eq(true)
rescue ArgumentError
# This system doesn't support GCM ciphers
# Silently skip, as this method will never return true
# Remove when macOS platforms target >= v10.13
end
cipher = OpenSSL::Cipher.new("aes-128-cbc")
cipher.authenticated?.should eq(false)
end
end
|
