shaka-packager/packager/media/base/rsa_key_unittest.cc

// Copyright 2014 Google Inc. All rights reserved.
//
// Use of this source code is governed by a BSD-style
// license that can be found in the LICENSE file or at
// https://developers.google.com/open-source/licenses/bsd
//
// Unit test for rsa_key RSA encryption and signing.

#include <gtest/gtest.h>

#include "packager/base/memory/scoped_ptr.h"
#include "packager/media/base/rsa_key.h"
#include "packager/media/base/test/fake_prng.h"
#include "packager/media/base/test/rsa_test_data.h"

namespace {
// BoringSSL does not support RAND_set_rand_method yet, so we cannot use fake
// prng with boringssl.
const bool kIsFakePrngSupported = false;
}  // namespace

namespace shaka {
namespace media {

class RsaKeyTest : public ::testing::TestWithParam<RsaTestSet> {
 public:
  RsaKeyTest() : test_set_(GetParam()) {}

  void SetUp() override {
    if (kIsFakePrngSupported) {
      // Make OpenSSL RSA deterministic.
      ASSERT_TRUE(fake_prng::StartFakePrng());
    }

    private_key_.reset(RsaPrivateKey::Create(test_set_.private_key));
    ASSERT_TRUE(private_key_ != NULL);
    public_key_.reset(RsaPublicKey::Create(test_set_.public_key));
    ASSERT_TRUE(public_key_ != NULL);
  }
  void TearDown() override {
    if (kIsFakePrngSupported)
      fake_prng::StopFakePrng();
  }

 protected:
  const RsaTestSet& test_set_;
  scoped_ptr<RsaPrivateKey> private_key_;
  scoped_ptr<RsaPublicKey> public_key_;
};

TEST_P(RsaKeyTest, BadPublicKey) {
  scoped_ptr<RsaPublicKey> public_key(RsaPublicKey::Create("bad_public_key"));
  EXPECT_TRUE(public_key == NULL);
}

TEST_P(RsaKeyTest, BadPrivateKey) {
  scoped_ptr<RsaPrivateKey> private_key(
      RsaPrivateKey::Create("bad_private_key"));
  EXPECT_TRUE(private_key == NULL);
}

TEST_P(RsaKeyTest, LoadPublicKey) {
  scoped_ptr<RsaPublicKey> public_key(
      RsaPublicKey::Create(test_set_.public_key));
  EXPECT_TRUE(public_key != NULL);
}

TEST_P(RsaKeyTest, LoadPrivateKey) {
  scoped_ptr<RsaPrivateKey> private_key(
      RsaPrivateKey::Create(test_set_.private_key));
  EXPECT_TRUE(private_key != NULL);
}

TEST_P(RsaKeyTest, LoadPublicKeyInPrivateKey) {
  scoped_ptr<RsaPrivateKey> private_key(
      RsaPrivateKey::Create(test_set_.public_key));
  EXPECT_TRUE(private_key == NULL);
}

TEST_P(RsaKeyTest, LoadPrivateKeyInPublicKey) {
  scoped_ptr<RsaPublicKey> public_key(
      RsaPublicKey::Create(test_set_.private_key));
  EXPECT_TRUE(public_key == NULL);
}

TEST_P(RsaKeyTest, EncryptAndDecrypt) {
  std::string encrypted_message;
  EXPECT_TRUE(public_key_->Encrypt(test_set_.test_message, &encrypted_message));
  if (kIsFakePrngSupported)
    EXPECT_EQ(test_set_.encrypted_message, encrypted_message);

  std::string decrypted_message;
  EXPECT_TRUE(private_key_->Decrypt(encrypted_message, &decrypted_message));
  EXPECT_EQ(test_set_.test_message, decrypted_message);
}

TEST_P(RsaKeyTest, BadEncMessage1) {
  // Add a byte to the encrypted message.
  std::string bad_enc_message = test_set_.encrypted_message + '\0';

  std::string decrypted_message;
  EXPECT_FALSE(private_key_->Decrypt(bad_enc_message, &decrypted_message));
}

TEST_P(RsaKeyTest, BadEncMessage2) {
  // Remove a byte from the encrypted message.
  std::string bad_enc_message = test_set_.encrypted_message;
  bad_enc_message.erase(bad_enc_message.end() - 1);

  std::string decrypted_message;
  EXPECT_FALSE(private_key_->Decrypt(bad_enc_message, &decrypted_message));
}

TEST_P(RsaKeyTest, BadEncMessage3) {
  // Change a byte in the encrypted message.
  std::string bad_enc_message = test_set_.encrypted_message;
  bad_enc_message[bad_enc_message.size() / 2] ^= 0x55;

  std::string decrypted_message;
  EXPECT_FALSE(private_key_->Decrypt(bad_enc_message, &decrypted_message));
}

TEST_P(RsaKeyTest, SignAndVerify) {
  std::string signature;
  EXPECT_TRUE(
      private_key_->GenerateSignature(test_set_.test_message, &signature));
  if (kIsFakePrngSupported)
    EXPECT_EQ(test_set_.signature, signature);
  EXPECT_TRUE(public_key_->VerifySignature(test_set_.test_message, signature));
}

TEST_P(RsaKeyTest, BadSignature1) {
  // Add a byte to the signature.
  std::string bad_signature = test_set_.signature + '\0';
  EXPECT_FALSE(
      public_key_->VerifySignature(test_set_.test_message, bad_signature));
}

TEST_P(RsaKeyTest, BadSignature2) {
  // Remove a byte from the signature.
  std::string bad_signature = test_set_.signature;
  bad_signature.erase(bad_signature.end() - 1);

  EXPECT_FALSE(
      public_key_->VerifySignature(test_set_.test_message, bad_signature));
}

TEST_P(RsaKeyTest, BadSignature3) {
  // Change a byte in the signature.
  std::string bad_signature = test_set_.signature;
  bad_signature[bad_signature.size() / 2] ^= 0x55;

  EXPECT_FALSE(
      public_key_->VerifySignature(test_set_.test_message, bad_signature));
}

INSTANTIATE_TEST_CASE_P(RsaTestKeys,
                        RsaKeyTest,
                        ::testing::Values(RsaTestData().test_set_3072_bits(),
                                          RsaTestData().test_set_2048_bits()));

}  // namespace media
}  // namespace shaka
Add copyright information. The information is generated by Edwin's copyright.py script with some minor manual modifications. Chromium's original copyright notice is not replaced. Also add LICENSE file taken from https://sites.google.com/a/google.com/ospo/releasing#TOC-BSD-License Change-Id: I231f09af96a0a611b1ca81e95cab82e12d7f529b 2014-02-14 23:21:05 +00:00			`// Copyright 2014 Google Inc. All rights reserved.`
			`//`
			`// Use of this source code is governed by a BSD-style`
			`// license that can be found in the LICENSE file or at`
			`// https://developers.google.com/open-source/licenses/bsd`
Rsa Key unittest. Change-Id: I761db06762e594884f339aee66fec171c92b8108 2014-01-07 18:32:23 +00:00			`//`
			`// Unit test for rsa_key RSA encryption and signing.`

Remove "testing" from gtest/gmock include header This is to remove dependency on Chromium directory layouts, to make it easier for integration. Change-Id: If23512c9e4a70462d70ff965e59339a33541746c 2014-08-21 22:40:44 +00:00			`#include <gtest/gtest.h>`
Rsa Key unittest. Change-Id: I761db06762e594884f339aee66fec171c92b8108 2014-01-07 18:32:23 +00:00
Modify include headers to have "packager" in the path This is a follow up to previous CL. Generated using command: find {media,app,mpd} -type f -exec sed -r -i 's/#include "(.*)"/#include "packager\/\1"/' {} \; common.gypi and mpd.gyp are also modified to take the path change into consideration. Change-Id: I1fb102b4eb73ae5fde5f4ab303a12cec09b05c33 2014-10-01 22:10:21 +00:00			`#include "packager/base/memory/scoped_ptr.h"`
			`#include "packager/media/base/rsa_key.h"`
Move test files in media/base to test directory Also rename mpd/base/bandwidth_estimator_test.cc to bandwidth_estimator_unittest.cc for consistency. And remove mpd/base/simple_vod_mpd_notifier.* as they are not used anywhere. Change-Id: Iaeb096aef9259837a4eb356c18d5ca15f08d2376 2014-10-09 23:33:56 +00:00			`#include "packager/media/base/test/fake_prng.h"`
			`#include "packager/media/base/test/rsa_test_data.h"`
Rsa Key unittest. Change-Id: I761db06762e594884f339aee66fec171c92b8108 2014-01-07 18:32:23 +00:00
Switch to boringssl. Also update curl accordingly. Boringssl and yasm gyp and patches will follow in a separate cl. Bug: 22463853 Change-Id: I87b91ac089866db58ac433def006fe9ac4744bd6 2015-07-24 18:44:52 +00:00			`namespace {`
			`// BoringSSL does not support RAND_set_rand_method yet, so we cannot use fake`
			`// prng with boringssl.`
			`const bool kIsFakePrngSupported = false;`
			`} // namespace`

Rename top level namespace to shaka Issue #103 Change-Id: I67945c8ec6d2c178494d3b5400e5ec0170e9d115 2016-05-20 21:19:33 +00:00			`namespace shaka {`
Rsa Key unittest. Change-Id: I761db06762e594884f339aee66fec171c92b8108 2014-01-07 18:32:23 +00:00			`namespace media {`

			`class RsaKeyTest : public ::testing::TestWithParam<RsaTestSet> {`
			`public:`
			`RsaKeyTest() : test_set_(GetParam()) {}`

Update code to resolve problems due to base updates. Notably deprecate of OVERRIDE, to be replaced with C++11 override. Bug: 22463130 Bug: 22664127 Change-Id: I12c82e092e9e8eb0870da4363307c3563a3531b7 2015-07-22 23:40:45 +00:00			`void SetUp() override {`
Switch to boringssl. Also update curl accordingly. Boringssl and yasm gyp and patches will follow in a separate cl. Bug: 22463853 Change-Id: I87b91ac089866db58ac433def006fe9ac4744bd6 2015-07-24 18:44:52 +00:00			`if (kIsFakePrngSupported) {`
			`// Make OpenSSL RSA deterministic.`
			`ASSERT_TRUE(fake_prng::StartFakePrng());`
			`}`
Rsa Key unittest. Change-Id: I761db06762e594884f339aee66fec171c92b8108 2014-01-07 18:32:23 +00:00
			`private_key_.reset(RsaPrivateKey::Create(test_set_.private_key));`
			`ASSERT_TRUE(private_key_ != NULL);`
			`public_key_.reset(RsaPublicKey::Create(test_set_.public_key));`
			`ASSERT_TRUE(public_key_ != NULL);`
			`}`
Switch to boringssl. Also update curl accordingly. Boringssl and yasm gyp and patches will follow in a separate cl. Bug: 22463853 Change-Id: I87b91ac089866db58ac433def006fe9ac4744bd6 2015-07-24 18:44:52 +00:00			`void TearDown() override {`
			`if (kIsFakePrngSupported)`
			`fake_prng::StopFakePrng();`
			`}`
Rsa Key unittest. Change-Id: I761db06762e594884f339aee66fec171c92b8108 2014-01-07 18:32:23 +00:00
			`protected:`
			`const RsaTestSet& test_set_;`
			`scoped_ptr<RsaPrivateKey> private_key_;`
			`scoped_ptr<RsaPublicKey> public_key_;`
			`};`

			`TEST_P(RsaKeyTest, BadPublicKey) {`
			`scoped_ptr<RsaPublicKey> public_key(RsaPublicKey::Create("bad_public_key"));`
			`EXPECT_TRUE(public_key == NULL);`
			`}`

			`TEST_P(RsaKeyTest, BadPrivateKey) {`
			`scoped_ptr<RsaPrivateKey> private_key(`
			`RsaPrivateKey::Create("bad_private_key"));`
			`EXPECT_TRUE(private_key == NULL);`
			`}`

			`TEST_P(RsaKeyTest, LoadPublicKey) {`
			`scoped_ptr<RsaPublicKey> public_key(`
			`RsaPublicKey::Create(test_set_.public_key));`
			`EXPECT_TRUE(public_key != NULL);`
			`}`

			`TEST_P(RsaKeyTest, LoadPrivateKey) {`
			`scoped_ptr<RsaPrivateKey> private_key(`
			`RsaPrivateKey::Create(test_set_.private_key));`
			`EXPECT_TRUE(private_key != NULL);`
			`}`

			`TEST_P(RsaKeyTest, LoadPublicKeyInPrivateKey) {`
			`scoped_ptr<RsaPrivateKey> private_key(`
			`RsaPrivateKey::Create(test_set_.public_key));`
			`EXPECT_TRUE(private_key == NULL);`
			`}`

			`TEST_P(RsaKeyTest, LoadPrivateKeyInPublicKey) {`
			`scoped_ptr<RsaPublicKey> public_key(`
			`RsaPublicKey::Create(test_set_.private_key));`
			`EXPECT_TRUE(public_key == NULL);`
			`}`

			`TEST_P(RsaKeyTest, EncryptAndDecrypt) {`
			`std::string encrypted_message;`
			`EXPECT_TRUE(public_key_->Encrypt(test_set_.test_message, &encrypted_message));`
Switch to boringssl. Also update curl accordingly. Boringssl and yasm gyp and patches will follow in a separate cl. Bug: 22463853 Change-Id: I87b91ac089866db58ac433def006fe9ac4744bd6 2015-07-24 18:44:52 +00:00			`if (kIsFakePrngSupported)`
			`EXPECT_EQ(test_set_.encrypted_message, encrypted_message);`
Rsa Key unittest. Change-Id: I761db06762e594884f339aee66fec171c92b8108 2014-01-07 18:32:23 +00:00
			`std::string decrypted_message;`
			`EXPECT_TRUE(private_key_->Decrypt(encrypted_message, &decrypted_message));`
			`EXPECT_EQ(test_set_.test_message, decrypted_message);`
			`}`

			`TEST_P(RsaKeyTest, BadEncMessage1) {`
			`// Add a byte to the encrypted message.`
			`std::string bad_enc_message = test_set_.encrypted_message + '\0';`

			`std::string decrypted_message;`
			`EXPECT_FALSE(private_key_->Decrypt(bad_enc_message, &decrypted_message));`
			`}`

			`TEST_P(RsaKeyTest, BadEncMessage2) {`
			`// Remove a byte from the encrypted message.`
			`std::string bad_enc_message = test_set_.encrypted_message;`
			`bad_enc_message.erase(bad_enc_message.end() - 1);`

			`std::string decrypted_message;`
			`EXPECT_FALSE(private_key_->Decrypt(bad_enc_message, &decrypted_message));`
			`}`

			`TEST_P(RsaKeyTest, BadEncMessage3) {`
			`// Change a byte in the encrypted message.`
			`std::string bad_enc_message = test_set_.encrypted_message;`
			`bad_enc_message[bad_enc_message.size() / 2] ^= 0x55;`

			`std::string decrypted_message;`
			`EXPECT_FALSE(private_key_->Decrypt(bad_enc_message, &decrypted_message));`
			`}`

			`TEST_P(RsaKeyTest, SignAndVerify) {`
			`std::string signature;`
			`EXPECT_TRUE(`
			`private_key_->GenerateSignature(test_set_.test_message, &signature));`
Switch to boringssl. Also update curl accordingly. Boringssl and yasm gyp and patches will follow in a separate cl. Bug: 22463853 Change-Id: I87b91ac089866db58ac433def006fe9ac4744bd6 2015-07-24 18:44:52 +00:00			`if (kIsFakePrngSupported)`
			`EXPECT_EQ(test_set_.signature, signature);`
Rsa Key unittest. Change-Id: I761db06762e594884f339aee66fec171c92b8108 2014-01-07 18:32:23 +00:00			`EXPECT_TRUE(public_key_->VerifySignature(test_set_.test_message, signature));`
			`}`

			`TEST_P(RsaKeyTest, BadSignature1) {`
			`// Add a byte to the signature.`
			`std::string bad_signature = test_set_.signature + '\0';`
			`EXPECT_FALSE(`
			`public_key_->VerifySignature(test_set_.test_message, bad_signature));`
			`}`

			`TEST_P(RsaKeyTest, BadSignature2) {`
			`// Remove a byte from the signature.`
			`std::string bad_signature = test_set_.signature;`
			`bad_signature.erase(bad_signature.end() - 1);`

			`EXPECT_FALSE(`
			`public_key_->VerifySignature(test_set_.test_message, bad_signature));`
			`}`

			`TEST_P(RsaKeyTest, BadSignature3) {`
			`// Change a byte in the signature.`
			`std::string bad_signature = test_set_.signature;`
			`bad_signature[bad_signature.size() / 2] ^= 0x55;`

			`EXPECT_FALSE(`
			`public_key_->VerifySignature(test_set_.test_message, bad_signature));`
			`}`

			`INSTANTIATE_TEST_CASE_P(RsaTestKeys,`
			`RsaKeyTest,`
			`::testing::Values(RsaTestData().test_set_3072_bits(),`
			`RsaTestData().test_set_2048_bits()));`

			`} // namespace media`
Rename top level namespace to shaka Issue #103 Change-Id: I67945c8ec6d2c178494d3b5400e5ec0170e9d115 2016-05-20 21:19:33 +00:00			`} // namespace shaka`