# Allow examples to be run in-place without requiring a gem install $LOAD_PATH.unshift File.dirname(__FILE__) + '/../lib' require 'rubygems' require 'test/unit' require 'shoulda' require 'symmetric_encryption' # Load Symmetric Encryption keys SymmetricEncryption.load!(File.join(File.dirname(__FILE__), 'config', 'symmetric-encryption.yml'), 'test') # Unit Test for SymmetricEncryption::Cipher # class CipherTest < Test::Unit::TestCase context 'standalone' do should "allow setting the cipher_name" do cipher = SymmetricEncryption::Cipher.new( :cipher_name => 'aes-128-cbc', :key => '1234567890ABCDEF1234567890ABCDEF', :iv => '1234567890ABCDEF', :encoding => :none ) assert_equal 'aes-128-cbc', cipher.cipher_name end should "not require an iv" do cipher = SymmetricEncryption::Cipher.new( :key => '1234567890ABCDEF1234567890ABCDEF', :encoding => :none ) result = "\302<\351\227oj\372\3331\310\260V\001\v'\346" # Note: This test fails on JRuby 1.7 RC1 since it's OpenSSL # behaves differently when no IV is supplied. # It instead encrypts to the following value: # result = "0h\x92\x88\xA1\xFE\x8D\xF5\xF3v\x82\xAF(P\x83Y" result.force_encoding('binary') if defined?(Encoding) assert_equal result, cipher.encrypt('Hello World') end should "throw an exception on bad data" do cipher = SymmetricEncryption::Cipher.new( :cipher_name => 'aes-128-cbc', :key => '1234567890ABCDEF1234567890ABCDEF', :iv => '1234567890ABCDEF', :encoding => :none ) assert_raise OpenSSL::Cipher::CipherError do cipher.decrypt('bad data') end end end context 'with configuration' do setup do @cipher = SymmetricEncryption::Cipher.new( :key => '1234567890ABCDEF1234567890ABCDEF', :iv => '1234567890ABCDEF', :encoding => :none ) @social_security_number = "987654321" @social_security_number_encrypted = "A\335*\314\336\250V\340\023%\000S\177\305\372\266" @social_security_number_encrypted.force_encoding('binary') if defined?(Encoding) @sample_data = [ { :text => '555052345', :encrypted => ''} ] end should "default to 'aes-256-cbc'" do assert_equal 'aes-256-cbc', @cipher.cipher_name end should "encrypt simple string" do assert_equal @social_security_number_encrypted, @cipher.encrypt(@social_security_number) end should "decrypt string" do assert_equal @social_security_number, @cipher.decrypt(@social_security_number_encrypted) end if defined?(Encoding) context "on Ruby 1.9" do should "encode encrypted data as binary" do assert_equal Encoding.find('binary'), @cipher.encrypt(@social_security_number).encoding end should "decode encrypted data as utf-8" do assert_equal Encoding.find('utf-8'), @cipher.decrypt(@cipher.encrypt(@social_security_number)).encoding end end end context "with header" do setup do @social_security_number = "987654321" end should "build and parse header" do assert random_key_pair = SymmetricEncryption::Cipher.random_key_pair('aes-128-cbc') assert binary_header = SymmetricEncryption::Cipher.build_header(SymmetricEncryption.cipher.version, compressed=true, random_key_pair[:iv], random_key_pair[:key], random_key_pair[:cipher_name], binary=true) header = SymmetricEncryption::Cipher.parse_header!(binary_header) assert_equal true, header.compressed assert random_cipher = SymmetricEncryption::Cipher.new(random_key_pair) assert_equal random_cipher.cipher_name, header.cipher_name, "Ciphers differ" assert_equal random_cipher.send(:key), header.key, "Keys differ" assert_equal random_cipher.send(:iv), header.iv, "IVs differ" string = "Hello World" cipher = SymmetricEncryption::Cipher.new(:key => header.key, :iv => header.iv, :cipher_name => header.cipher_name) # Test Encryption assert_equal random_cipher.encrypt(string, false, false), cipher.encrypt(string, false, false), "Encrypted values differ" end should "encrypt and then decrypt without a header" do assert encrypted = @cipher.binary_encrypt(@social_security_number,false,false,false) assert_equal @social_security_number, @cipher.decrypt(encrypted) end should "encrypt and then decrypt using random iv" do assert encrypted = @cipher.encrypt(@social_security_number, random_iv=true) assert_equal @social_security_number, @cipher.decrypt(encrypted) end should "encrypt and then decrypt using random iv with compression" do assert encrypted = @cipher.encrypt(@social_security_number, random_iv=true, compress=true) assert_equal @social_security_number, @cipher.decrypt(encrypted) end end end end