Home Explore Help
Sign In
Red_Acid_Bunny
/
kitty
mirror of https://github.com/kovidgoyal/kitty.git
Watch 1
Star 0
Fork 0
Files Issues 0 Wiki
Branch: master
Branches Tags
kitty
/
kitty_tests
/
crypto.py

crypto.py 2.3 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. #!/usr/bin/env python
    2. 

  2. # License: GPLv3 Copyright: 2022, Kovid Goyal <kovid at kovidgoyal.net>
    3. 

  3. 

  4. 

  5. import os
    6. 

  6. 

  7. from . import BaseTest
    8. 

  8. 

  9. 

  10. def is_rlimit_memlock_too_low() -> bool:
    11. 

  11.     ''' On supported systems, return true if the MEMLOCK limit is too low to
    12. 

  12.     run the crypto test. '''
    13. 

  13.     try:
    14. 

  14.         import resource
    15. 

  15.     except ModuleNotFoundError:
    16. 

  16.         return False
    17. 

  17. 

  18.     memlock_limit, _ = resource.getrlimit(resource.RLIMIT_MEMLOCK)
    19. 

  19.     pagesize = resource.getpagesize()
    20. 

  20.     return memlock_limit <= pagesize
    21. 

  21. 

  22. 

  23. class TestCrypto(BaseTest):
    24. 

  24. 

  25.     def test_elliptic_curve_data_exchange(self):
    26. 

  26.         if is_rlimit_memlock_too_low():
    27. 

  27.             self.skipTest('RLIMIT_MEMLOCK is too low')
    28. 

  28.         from kitty.fast_data_types import AES256GCMDecrypt, AES256GCMEncrypt, CryptoError, EllipticCurveKey
    29. 

  29.         alice = EllipticCurveKey()
    30. 

  30.         bob = EllipticCurveKey()
    31. 

  31.         alice_secret = alice.derive_secret(bob.public)
    32. 

  32.         bob_secret = bob.derive_secret(alice.public)
    33. 

  33.         self.assertEqual(len(alice_secret), 32)
    34. 

  34.         self.assertEqual(len(bob_secret), 32)
    35. 

  35.         self.assertEqual(alice_secret, bob_secret)
    36. 

  36. 

  37.         auth_data = os.urandom(213)
    38. 

  38.         plaintext = os.urandom(1011)
    39. 

  39.         e = AES256GCMEncrypt(alice_secret)
    40. 

  40.         e.add_authenticated_but_unencrypted_data(auth_data)
    41. 

  41.         ciphertext = e.add_data_to_be_encrypted(plaintext, True)
    42. 

  42. 

  43.         d = AES256GCMDecrypt(bob_secret, e.iv, e.tag)
    44. 

  44.         d.add_data_to_be_authenticated_but_not_decrypted(auth_data)
    45. 

  45.         q = d.add_data_to_be_decrypted(ciphertext, True)
    46. 

  46.         self.ae(q, plaintext)
    47. 

  47. 

  48.         def corrupt_data(data):
    49. 

  49.             b = bytearray(data)
    50. 

  50.             b[0] = (b[0] + 13) % 256
    51. 

  51.             return bytes(b)
    52. 

  52. 

  53.         d = AES256GCMDecrypt(bob_secret, e.iv, corrupt_data(e.tag))
    54. 

  54.         d.add_data_to_be_authenticated_but_not_decrypted(auth_data)
    55. 

  55.         self.assertRaises(CryptoError, d.add_data_to_be_decrypted, ciphertext, True)
    56. 

  56. 

  57.         d = AES256GCMDecrypt(bob_secret, e.iv, e.tag)
    58. 

  58.         d.add_data_to_be_authenticated_but_not_decrypted(corrupt_data(auth_data))
    59. 

  59.         self.assertRaises(CryptoError, d.add_data_to_be_decrypted, ciphertext, True)
    60. 

  60. 

  61.         d = AES256GCMDecrypt(bob_secret, e.iv, e.tag)
    62. 

  62.         d.add_data_to_be_authenticated_but_not_decrypted(auth_data)
    63. 

  63.         self.assertRaises(CryptoError, d.add_data_to_be_decrypted, corrupt_data(ciphertext), True)
    64. 

  64.