jquery-webcryptoapi-tests.js

/test/jquery-webcryptoapi-tests.js

https://github.com/hakanson/todomvc-jquery-webcryptoapi
JavaScript | 265 lines | 161 code | 63 blank | 41 comment | 2 complexity | cd7b3aad631aa54f1835f3d8606ceae8 MD5 | raw file

(function () {
	'use strict';

	// comment out next line to force use of browser native window.crypto object
	var crypto = $.WebCryptoAPI;

	var testVector = {
		data: 'The quick brown fox jumps over the lazy dog',
		sha1Hash : '2fd4e1c67a2d28fced849ee1bb76e7391b93eb12',
		sha256Hash : 'd7a8fbb307d7809469ca9abcb0082e4f8d5651e46d3cdb762d02d0bf37c9e592',

		key: 'key',
		sha1HMAC : 'de7c9b85b8b78aa6bc8a7a36f70a90701c9db4d9',
		sha256HMAC : 'f7bc83f430538424b13298e6aa6fb143ef4d59a14946175997479dbc2d1a3cd8'
	};

	var hmacSha1 = { name: 'hmac', hash: { name: 'sha-1' } };
	var hmacSha256 = { name: 'hmac', hash: { name: 'sha-256' } };

	var encoder = new TextEncoder();
	var decoder = new TextDecoder();

	var dataBuf = encoder.encode( testVector.data );
	var keyBuf = encoder.encode( testVector.key );

	QUnit.extend( QUnit.assert, {
		promise: function ( promise ) {
			var assert = this;
			QUnit.stop();

			promise.catch( function ( err ) {
				assert.ok( false, err.message );

			}).then( function ( ) {
				QUnit.start();
			});
		}
	});

	QUnit.module( 'Web Cryptography API' );

	QUnit.test( 'SubtleCrypto interface' , function ( assert ) {
		assert.ok(window.crypto, 'window.crypto');
		assert.ok(window.crypto && window.crypto.subtle, 'window.crypto.subtle');

		assert.ok(window.msCrypto, 'window.msCrypto');
		assert.ok(window.msrCrypto, 'window.msrCrypto');

		assert.ok(window.crypto && window.crypto.webkitSubtle, 'window.crypto.webkitSubtle');
	});
/*
	QUnit.test( 'SHA-1', function ( assert ) {
		// OpenSSL command line
		// echo -n "The quick brown fox jumps over the lazy dog" | openssl dgst -sha1
		// (stdin)= 2fd4e1c67a2d28fced849ee1bb76e7391b93eb12

		QUnit.stop();

		crypto.subtle.digest( { name: 'sha-1' }, dataBuf ).then( function ( result ) {
			var hash = $.Uint8Util.toHexString( new Uint8Array( result ) );
			assert.equal( hash, testVector.sha1Hash );

		}).catch( function ( e ) {
			assert.ok( false, e.message );

		}).then( function ( ) {
			QUnit.start();
		});
	});
*/
	QUnit.test( 'SHA-1', function ( assert ) {
		// OpenSSL command line
		// echo -n "The quick brown fox jumps over the lazy dog" | openssl dgst -sha1
		// (stdin)= 2fd4e1c67a2d28fced849ee1bb76e7391b93eb12

		assert.promise( crypto.subtle.digest( { name: 'sha-1' }, dataBuf ).then( function ( result ) {
			var hash = $.Uint8Util.toHexString( new Uint8Array( result ) );

			assert.equal( hash, testVector.sha1Hash );
		}));
	});



	QUnit.test( 'HMAC using SHA-1', function ( assert ) {
		// OpenSSL command line
		// echo -n "The quick brown fox jumps over the lazy dog" | openssl dgst -sha1 -hmac "key"
		// (stdin)= de7c9b85b8b78aa6bc8a7a36f70a90701c9db4d9

		assert.promise( crypto.subtle.importKey( 'raw', keyBuf, hmacSha1, true, ['sign', 'verify'] ).then( function ( keyResult ) {

			return crypto.subtle.sign( hmacSha1, keyResult, dataBuf ).then( function ( signResult ) {
				var hash = $.Uint8Util.toHexString( new Uint8Array( signResult ) );

				assert.equal( hash, testVector.sha1HMAC );
			})
		}));
	});

	QUnit.test( 'SHA-256', function ( assert ) {
		// OpenSSL command line
		// $ echo -n "The quick brown fox jumps over the lazy dog" | openssl dgst -sha256
		// (stdin)= d7a8fbb307d7809469ca9abcb0082e4f8d5651e46d3cdb762d02d0bf37c9e592

		assert.promise( crypto.subtle.digest( { name: 'sha-256' }, dataBuf ).then( function ( result ) {
			var hash = $.Uint8Util.toHexString( new Uint8Array( result ) );

			assert.equal( hash, testVector.sha256Hash );
		}));
	});

	QUnit.test( 'HMAC using SHA-256', function ( assert ) {
		// Wikipedia article
		// HMAC_SHA256("key", "The quick brown fox jumps over the lazy dog") = 0xf7bc83f430538424b13298e6aa6fb143ef4d59a14946175997479dbc2d1a3cd8

		// OpenSSL command line
		// echo -n "The quick brown fox jumps over the lazy dog" | openssl dgst -sha256 -hmac "key"
		// (stdin)= f7bc83f430538424b13298e6aa6fb143ef4d59a14946175997479dbc2d1a3cd8

		// $ echo -n "The quick brown fox jumps over the lazy dog" | openssl dgst -sha256 -mac HMAC -macopt hexkey:6b6579
		// (stdin)= f7bc83f430538424b13298e6aa6fb143ef4d59a14946175997479dbc2d1a3cd8

		assert.promise( crypto.subtle.importKey( 'raw', keyBuf, hmacSha256, true, ['sign', 'verify'] ).then( function ( keyResult ) {

			return crypto.subtle.sign( hmacSha256, keyResult, dataBuf ).then( function ( signResult ) {
				var hash = $.Uint8Util.toHexString( new Uint8Array( signResult ) );

				assert.equal( hash, testVector.sha256HMAC );
			});
		}));
	});

	QUnit.test( 'AES-CBC (nested Promises)', function ( assert ) {
		// $ echo -n "Message" | openssl enc -aes256 -K 0CD1D07EB67E19EF56EA0F3A9A8F8A7C957A2CB208327E0E536608FF83256C96 -iv 6C4C31BDAB7BAFD35B23691EC521E28D | xxd -p
		// 23e5ebe72d99cf302c99183c05cf050a

		var testVector = {
			plaintext: 'Message',
			iv: '6C4C31BDAB7BAFD35B23691EC521E28D',
			key: '0CD1D07EB67E19EF56EA0F3A9A8F8A7C957A2CB208327E0E536608FF83256C96',
			ciphertext: '23e5ebe72d99cf302c99183c05cf050a'
		};

		var buf = encoder.encode( testVector.plaintext );
		var keyBuf = $.Uint8Util.fromHexString( testVector.key );
		var ivBuf = $.Uint8Util.fromHexString( testVector.iv );

		assert.promise( crypto.subtle.importKey( 'raw', keyBuf, { name: 'AES-CBC' }, true, ['encrypt', 'decrypt'] ).then( function ( encryptionKey ) {
			var aesCbc = { name: 'AES-CBC', iv: ivBuf };
			return crypto.subtle.encrypt( aesCbc, encryptionKey, buf ).then( function ( encryptResult ) {
				var encryptBuf = new Uint8Array( encryptResult );
				var ciphertext = $.Uint8Util.toHexString( encryptBuf );

				assert.equal( ciphertext, testVector.ciphertext );

				return crypto.subtle.decrypt( aesCbc, encryptionKey, encryptBuf ).then( function ( decryptResult ) {
					var plaintext = decoder.decode( new Uint8Array( decryptResult ) );

					assert.equal( plaintext, testVector.plaintext );
				});
			});
		}));
	});
	
	QUnit.test( 'AES-CBC (chained Promises)', function ( assert ) {
		// $ echo -n "Message" | openssl enc -aes256 -K 0CD1D07EB67E19EF56EA0F3A9A8F8A7C957A2CB208327E0E536608FF83256C96 -iv 6C4C31BDAB7BAFD35B23691EC521E28D | xxd -p
		// 23e5ebe72d99cf302c99183c05cf050a

		var testVector = {
			plaintext: 'Message',
			iv: '6C4C31BDAB7BAFD35B23691EC521E28D',
			key: '0CD1D07EB67E19EF56EA0F3A9A8F8A7C957A2CB208327E0E536608FF83256C96',
			ciphertext: '23e5ebe72d99cf302c99183c05cf050a'
		};

		var buf = encoder.encode( testVector.plaintext );
		var keyBuf = $.Uint8Util.fromHexString( testVector.key );
		var ivBuf = $.Uint8Util.fromHexString( testVector.iv );

		var aesCbc = { name: 'AES-CBC', iv: ivBuf };
		var encryptionKey;

		function importKey () {
			return crypto.subtle.importKey( 'raw', keyBuf, { name: 'AES-CBC' }, true, ['encrypt', 'decrypt'] )
		}
		
		function encrypt ( importedKey ) {
			encryptionKey = importedKey;
			return crypto.subtle.encrypt( aesCbc, encryptionKey, buf );
		}
				
		function decrypt ( encryptResult ) {
			var encryptBuf = new Uint8Array( encryptResult );
			var ciphertext = $.Uint8Util.toHexString( encryptBuf );

			assert.equal( ciphertext, testVector.ciphertext );

			return crypto.subtle.decrypt( aesCbc, encryptionKey, encryptBuf );
		}

		function compare ( decryptResult ) {
			var plaintext = decoder.decode( new Uint8Array( decryptResult ) );

			assert.equal( plaintext, testVector.plaintext );
		}

		assert.promise( importKey()
			.then( encrypt )
			.then( decrypt )
			.then( compare )
		);
	});

	QUnit.test( 'PBKDF2', function ( assert ) {

		var testVector = {
			password : 'password',
			salt: 'cf7488cd1e48e84990f51b3f121e161318ba2098aa6c993ded1012c955d5a3e8',
			iterations: 100,
			key: 'c12b2e03a08f3f0d23f3c4429c248c275a728814053a093835e803bc8e695b4e'
		};

		var alg = {
			name: 'PBKDF2',
			hash: 'SHA-1',
			salt: $.Uint8Util.fromHexString( testVector.salt ),
			iterations: testVector.iterations
		};

		var passwordBuf = encoder.encode( testVector.password );
		assert.promise( crypto.subtle.importKey('raw', passwordBuf, 'PBKDF2', false, ['deriveKey']).then(function ( keyResult ) {

			return crypto.subtle.deriveBits( alg, keyResult, 256 ).then(function ( deriveResult ) {
				var deriveBuf = new Uint8Array( deriveResult );
				var key = $.Uint8Util.toHexString( deriveBuf );

				assert.equal( key, testVector.key );
			});
		}));
	});

	QUnit.module( 'Invalid Algorithm' );

	QUnit.test( 'KJH-256', function ( assert ) {
		assert.promise( crypto.subtle.digest( { name: 'kjh-256' }, dataBuf ).then( function ( result ) {
			var hash = $.Uint8Util.toHexString( new Uint8Array( result ) );

			assert.equal( hash, 'kjh' );
		}));
	});

	QUnit.test( 'HMAC using KJH-256', function ( assert ) {
		var hmacKjh256 = { name: 'hmac', hash: { name: 'kjh-256' } };

		assert.promise( crypto.subtle.importKey( 'raw', keyBuf, hmacKjh256, true, ['sign', 'verify'] ).then( function ( keyResult ) {

			return crypto.subtle.sign( hmacKjh256, keyResult, dataBuf ).then( function ( signResult ) {
				var hash = $.Uint8Util.toHexString( new Uint8Array( signResult ) );

				assert.equal( hash, 'kjh' );
			})
		}));
	});

})();