1
// Copyright 2011 The Go Authors. All rights reserved.
2
// Use of this source code is governed by a BSD-style
3
// license that can be found in the LICENSE file.
15
func TestDefaultCiphersExist(t *testing.T) {
16
for _, cipherAlgo := range supportedCiphers {
17
if _, ok := cipherModes[cipherAlgo]; !ok {
18
t.Errorf("default cipher %q is unknown", cipherAlgo)
23
func TestPacketCiphers(t *testing.T) {
24
// Still test aes128cbc cipher althought it's commented out.
25
cipherModes[aes128cbcID] = &streamCipherMode{16, aes.BlockSize, 0, nil}
26
defer delete(cipherModes, aes128cbcID)
28
for cipher := range cipherModes {
29
kr := &kexResult{Hash: crypto.SHA1}
30
algs := directionAlgorithms{
35
client, err := newPacketCipher(clientKeys, algs, kr)
37
t.Errorf("newPacketCipher(client, %q): %v", cipher, err)
40
server, err := newPacketCipher(clientKeys, algs, kr)
42
t.Errorf("newPacketCipher(client, %q): %v", cipher, err)
48
buf := &bytes.Buffer{}
49
if err := client.writePacket(0, buf, rand.Reader, input); err != nil {
50
t.Errorf("writePacket(%q): %v", cipher, err)
54
packet, err := server.readPacket(0, buf)
56
t.Errorf("readPacket(%q): %v", cipher, err)
60
if string(packet) != want {
61
t.Errorf("roundtrip(%q): got %q, want %q", cipher, packet, want)
66
func TestCBCOracleCounterMeasure(t *testing.T) {
67
cipherModes[aes128cbcID] = &streamCipherMode{16, aes.BlockSize, 0, nil}
68
defer delete(cipherModes, aes128cbcID)
70
kr := &kexResult{Hash: crypto.SHA1}
71
algs := directionAlgorithms{
76
client, err := newPacketCipher(clientKeys, algs, kr)
78
t.Fatalf("newPacketCipher(client): %v", err)
83
buf := &bytes.Buffer{}
84
if err := client.writePacket(0, buf, rand.Reader, input); err != nil {
85
t.Errorf("writePacket: %v", err)
88
packetSize := buf.Len()
89
buf.Write(make([]byte, 2*maxPacket))
91
// We corrupt each byte, but this usually will only test the
92
// 'packet too large' or 'MAC failure' cases.
94
for i := 0; i < packetSize; i++ {
95
server, err := newPacketCipher(clientKeys, algs, kr)
97
t.Fatalf("newPacketCipher(client): %v", err)
100
fresh := &bytes.Buffer{}
101
fresh.Write(buf.Bytes())
102
fresh.Bytes()[i] ^= 0x01
104
before := fresh.Len()
105
_, err = server.readPacket(0, fresh)
107
t.Errorf("corrupt byte %d: readPacket succeeded ", i)
110
if _, ok := err.(cbcError); !ok {
111
t.Errorf("corrupt byte %d: got %v (%T), want cbcError", i, err, err)
116
bytesRead := before - after
117
if bytesRead < maxPacket {
118
t.Errorf("corrupt byte %d: read %d bytes, want more than %d", i, bytesRead, maxPacket)
122
if i > 0 && bytesRead != lastRead {
123
t.Errorf("corrupt byte %d: read %d bytes, want %d bytes read", i, bytesRead, lastRead)