1ddb351dbec246cf1fab5ec20d2d5520909041de1Kristian Monsen// Copyright (c) 2011 The Chromium Authors. All rights reserved. 2c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch// Use of this source code is governed by a BSD-style license that can be 3c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch// found in the LICENSE file. 4c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 5c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch#include "chrome/browser/sync/util/cryptographer.h" 6c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 7c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch#include <string> 8c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 9ddb351dbec246cf1fab5ec20d2d5520909041de1Kristian Monsen#include "base/memory/scoped_ptr.h" 10c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch#include "base/string_util.h" 113345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#include "chrome/browser/password_manager/encryptor.h" 12c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch#include "chrome/browser/sync/protocol/password_specifics.pb.h" 13c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch#include "testing/gtest/include/gtest/gtest.h" 14c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 15c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdochnamespace browser_sync { 16c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 17c407dc5cd9bdc5668497f21b26b09d988ab439deBen MurdochTEST(CryptographerTest, EmptyCantDecrypt) { 18c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch Cryptographer cryptographer; 19c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_FALSE(cryptographer.is_ready()); 20c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 21c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::EncryptedData encrypted; 22c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch encrypted.set_key_name("foo"); 23c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch encrypted.set_blob("bar"); 24c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 25c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_FALSE(cryptographer.CanDecrypt(encrypted)); 26c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch} 27c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 28c407dc5cd9bdc5668497f21b26b09d988ab439deBen MurdochTEST(CryptographerTest, MissingCantDecrypt) { 29c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch Cryptographer cryptographer; 30c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 31c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch KeyParams params = {"localhost", "dummy", "dummy"}; 32c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch cryptographer.AddKey(params); 33c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.is_ready()); 34c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 35c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::EncryptedData encrypted; 36c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch encrypted.set_key_name("foo"); 37c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch encrypted.set_blob("bar"); 38c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 39c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_FALSE(cryptographer.CanDecrypt(encrypted)); 40c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch} 41c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 42c407dc5cd9bdc5668497f21b26b09d988ab439deBen MurdochTEST(CryptographerTest, CanEncryptAndDecrypt) { 43c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch Cryptographer cryptographer; 44c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 45c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch KeyParams params = {"localhost", "dummy", "dummy"}; 46c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.AddKey(params)); 47c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.is_ready()); 48c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 49c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::PasswordSpecificsData original; 50c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch original.set_origin("http://example.com"); 51c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch original.set_username_value("azure"); 52c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch original.set_password_value("hunter2"); 53c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 54c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::EncryptedData encrypted; 55c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.Encrypt(original, &encrypted)); 56c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 57c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::PasswordSpecificsData decrypted; 58c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.Decrypt(encrypted, &decrypted)); 59c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 60c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_EQ(original.SerializeAsString(), decrypted.SerializeAsString()); 61c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch} 62c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 63c407dc5cd9bdc5668497f21b26b09d988ab439deBen MurdochTEST(CryptographerTest, AddKeySetsDefault) { 64c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch Cryptographer cryptographer; 65c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 66c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch KeyParams params1 = {"localhost", "dummy", "dummy1"}; 67c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.AddKey(params1)); 68c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.is_ready()); 69c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 70c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::PasswordSpecificsData original; 71c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch original.set_origin("http://example.com"); 72c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch original.set_username_value("azure"); 73c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch original.set_password_value("hunter2"); 74c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 75c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::EncryptedData encrypted1; 76c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.Encrypt(original, &encrypted1)); 77c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::EncryptedData encrypted2; 78c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.Encrypt(original, &encrypted2)); 79c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 80c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch KeyParams params2 = {"localhost", "dummy", "dummy2"}; 81c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.AddKey(params2)); 82c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.is_ready()); 83c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 84c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::EncryptedData encrypted3; 85c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.Encrypt(original, &encrypted3)); 86c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::EncryptedData encrypted4; 87c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.Encrypt(original, &encrypted4)); 88c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 89c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_EQ(encrypted1.key_name(), encrypted2.key_name()); 90c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_NE(encrypted1.key_name(), encrypted3.key_name()); 91c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_EQ(encrypted3.key_name(), encrypted4.key_name()); 92c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch} 93c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 943345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick// Crashes, Bug 55178. 953345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#if defined(OS_WIN) 963345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#define MAYBE_EncryptExportDecrypt DISABLED_EncryptExportDecrypt 973345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#else 983345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#define MAYBE_EncryptExportDecrypt EncryptExportDecrypt 993345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#endif 1003345a6884c488ff3a535c2c9acdd33d74b37e311Iain MerrickTEST(CryptographerTest, MAYBE_EncryptExportDecrypt) { 101c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::EncryptedData nigori; 102c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::EncryptedData encrypted; 103c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 104c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::PasswordSpecificsData original; 105c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch original.set_origin("http://example.com"); 106c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch original.set_username_value("azure"); 107c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch original.set_password_value("hunter2"); 108c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 109c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch { 110c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch Cryptographer cryptographer; 111c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 112c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch KeyParams params = {"localhost", "dummy", "dummy"}; 113c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch cryptographer.AddKey(params); 114c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.is_ready()); 115c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 116c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.Encrypt(original, &encrypted)); 117c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.GetKeys(&nigori)); 118c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch } 119c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 120c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch { 121c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch Cryptographer cryptographer; 122c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_FALSE(cryptographer.CanDecrypt(nigori)); 123c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 124c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch cryptographer.SetPendingKeys(nigori); 125c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_FALSE(cryptographer.is_ready()); 126c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.has_pending_keys()); 127c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 128c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch KeyParams params = {"localhost", "dummy", "dummy"}; 129c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.DecryptPendingKeys(params)); 130c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.is_ready()); 131c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_FALSE(cryptographer.has_pending_keys()); 132c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 133c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch sync_pb::PasswordSpecificsData decrypted; 134c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_TRUE(cryptographer.Decrypt(encrypted, &decrypted)); 135c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch EXPECT_EQ(original.SerializeAsString(), decrypted.SerializeAsString()); 136c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch } 137c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch} 138c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch 1393345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick// Crashes, Bug 55178. 1403345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#if defined(OS_WIN) 1413345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#define MAYBE_PackUnpack DISABLED_PackUnpack 1423345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#else 1433345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#define MAYBE_PackUnpack PackUnpack 1443345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#endif 1453345a6884c488ff3a535c2c9acdd33d74b37e311Iain MerrickTEST(CryptographerTest, MAYBE_PackUnpack) { 1463345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#if defined(OS_MACOSX) 1473345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick Encryptor::UseMockKeychain(true); 1483345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick#endif 1493345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick 1503345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick Nigori nigori; 1513345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick ASSERT_TRUE(nigori.InitByDerivation("example.com", "username", "password")); 1523345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick std::string expected_user, expected_encryption, expected_mac; 1533345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick ASSERT_TRUE(nigori.ExportKeys(&expected_user, &expected_encryption, 1543345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick &expected_mac)); 1553345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick 1563345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick Cryptographer cryptographer; 1573345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick std::string token; 1583345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick EXPECT_TRUE(cryptographer.PackBootstrapToken(&nigori, &token)); 1593345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick EXPECT_TRUE(IsStringUTF8(token)); 1603345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick 1613345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick scoped_ptr<Nigori> unpacked(cryptographer.UnpackBootstrapToken(token)); 1623345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick EXPECT_NE(static_cast<Nigori*>(NULL), unpacked.get()); 1633345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick 1643345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick std::string user_key, encryption_key, mac_key; 1653345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick ASSERT_TRUE(unpacked->ExportKeys(&user_key, &encryption_key, &mac_key)); 1663345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick 1673345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick EXPECT_EQ(expected_user, user_key); 1683345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick EXPECT_EQ(expected_encryption, encryption_key); 1693345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick EXPECT_EQ(expected_mac, mac_key); 1703345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick} 1713345a6884c488ff3a535c2c9acdd33d74b37e311Iain Merrick 172c407dc5cd9bdc5668497f21b26b09d988ab439deBen Murdoch} // namespace browser_sync 173