Home Explore Help
Register Sign In
lqb
/
nginx-ui
mirror of https://github.com/0xJacky/nginx-ui.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: e2c43be24a
Branches Tags
nginx-ui
/
internal
/
crypto
/
aes_test.go

aes_test.go 2.3 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. package crypto
    2. 

  2. 

  3. import (
    4. 

  4. 	"github.com/0xJacky/Nginx-UI/settings"
    5. 

  5. 	"testing"
    6. 

  6. 

  7. 	"github.com/stretchr/testify/assert"
    8. 

  8. 	"github.com/stretchr/testify/require"
    9. 

  9. )
    10. 

  10. 

  11. func EncryptDecryptRoundTrip(text string) bool {
    12. 

  12. 	encrypted, err := AesEncrypt([]byte(text))
    13. 

  13. 	if err != nil {
    14. 

  14. 		return false
    15. 

  15. 	}
    16. 

  16. 

  17. 	decrypted, err := AesDecrypt(encrypted)
    18. 

  18. 	if err != nil {
    19. 

  19. 		return false
    20. 

  20. 	}
    21. 

  21. 

  22. 	return text == string(decrypted)
    23. 

  23. }
    24. 

  24. 

  25. func EncryptsNonEmptyStringWithoutError(text string) bool {
    26. 

  26. 	_, err := AesEncrypt([]byte(text))
    27. 

  27. 	return err == nil
    28. 

  28. }
    29. 

  29. 

  30. func DecryptsToOriginalTextAfterEncryption(text string) bool {
    31. 

  31. 	encrypted, _ := AesEncrypt([]byte(text))
    32. 

  32. 	decrypted, err := AesDecrypt(encrypted)
    33. 

  33. 	if err != nil {
    34. 

  34. 		return false
    35. 

  35. 	}
    36. 

  36. 

  37. 	return text == string(decrypted)
    38. 

  38. }
    39. 

  39. 

  40. func FailsToDecryptWithModifiedCiphertext(text string) bool {
    41. 

  41. 	encrypted, _ := AesEncrypt([]byte(text))
    42. 

  42. 	// Modify the ciphertext
    43. 

  43. 	encrypted[0] ^= 0xff
    44. 

  44. 	_, err := AesDecrypt(encrypted)
    45. 

  45. 	return err != nil
    46. 

  46. }
    47. 

  47. 

  48. func FailsToDecryptShortCiphertext() bool {
    49. 

  49. 	_, err := AesDecrypt([]byte("short"))
    50. 

  50. 	return err != nil
    51. 

  51. }
    52. 

  52. 

  53. func TestAesEncryptionDecryption(t *testing.T) {
    54. 

  54. 	settings.CryptoSettings.Secret = "test"
    55. 

  55. 	assert.True(t, EncryptDecryptRoundTrip("Hello, world!"), "should encrypt and decrypt to the original text")
    56. 

  56. 	assert.True(t, EncryptsNonEmptyStringWithoutError("Test String"), "should encrypt a non-empty string without error")
    57. 

  57. 	assert.True(t, DecryptsToOriginalTextAfterEncryption("Another Test String"), "should decrypt to the original text after encryption")
    58. 

  58. 	assert.True(t, FailsToDecryptWithModifiedCiphertext("Sensitive Data"), "should fail to decrypt with modified ciphertext")
    59. 

  59. 	assert.True(t, FailsToDecryptShortCiphertext(), "should fail to decrypt short ciphertext")
    60. 

  60. }
    61. 

  61. 

  62. func TestAesEncrypt_WithEmptyString_ReturnsError(t *testing.T) {
    63. 

  63. 	settings.CryptoSettings.Secret = "test"
    64. 

  64. 	_, err := AesEncrypt([]byte(""))
    65. 

  65. 	require.Error(t, err, "encrypting an empty string should return an error")
    66. 

  66. }
    67. 

  67. 

  68. func TestAesDecrypt_WithInvalidBase64_ReturnsError(t *testing.T) {
    69. 

  69. 	settings.CryptoSettings.Secret = "test"
    70. 

  70. 	// Assuming the function is modified to handle this case explicitly
    71. 

  71. 	encrypted, _ := AesEncrypt([]byte("valid text"))
    72. 

  72. 	// Invalidate the base64 encoding
    73. 

  73. 	encrypted[len(encrypted)-1] = '!'
    74. 

  74. 	_, err := AesDecrypt(encrypted)
    75. 

  75. 	require.Error(t, err, "decrypting an invalid base64 string should return an error")
    76. 

  76. }
    77.