2015-03-05 21:27:35 +00:00
|
|
|
package vault
|
|
|
|
|
|
|
|
import (
|
2015-03-05 22:03:00 +00:00
|
|
|
"bytes"
|
2015-03-05 21:27:35 +00:00
|
|
|
"testing"
|
|
|
|
|
|
|
|
"github.com/hashicorp/vault/physical"
|
|
|
|
)
|
|
|
|
|
2015-03-05 22:34:05 +00:00
|
|
|
// mockBarrier returns a physical backend, security barrier, and master key
|
|
|
|
func mockBarrier(t *testing.T) (physical.Backend, SecurityBarrier, []byte) {
|
|
|
|
inm := physical.NewInmem()
|
|
|
|
b, err := NewAESGCMBarrier(inm)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Initialize and unseal
|
|
|
|
key, _ := b.GenerateKey()
|
|
|
|
b.Initialize(key)
|
|
|
|
b.Unseal(key)
|
|
|
|
return inm, b, key
|
|
|
|
}
|
|
|
|
|
2015-03-05 21:27:35 +00:00
|
|
|
func TestAESGCMBarrier_Basic(t *testing.T) {
|
|
|
|
inm := physical.NewInmem()
|
|
|
|
b, err := NewAESGCMBarrier(inm)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
testBarrier(t, b)
|
|
|
|
}
|
|
|
|
|
2015-03-05 22:03:00 +00:00
|
|
|
// Verify data sent through is encrypted
|
2015-03-05 21:27:35 +00:00
|
|
|
func TestAESGCMBarrier_Confidential(t *testing.T) {
|
2015-03-05 22:03:00 +00:00
|
|
|
inm := physical.NewInmem()
|
|
|
|
b, err := NewAESGCMBarrier(inm)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Initialize and unseal
|
|
|
|
key, _ := b.GenerateKey()
|
|
|
|
b.Initialize(key)
|
|
|
|
b.Unseal(key)
|
|
|
|
|
|
|
|
// Put a logical entry
|
|
|
|
entry := &Entry{Key: "test", Value: []byte("test")}
|
|
|
|
err = b.Put(entry)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Check the physcial entry
|
|
|
|
pe, err := inm.Get("test")
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
if pe == nil {
|
|
|
|
t.Fatalf("missing physical entry")
|
|
|
|
}
|
|
|
|
|
|
|
|
if pe.Key != "test" {
|
|
|
|
t.Fatalf("bad: %#v", pe)
|
|
|
|
}
|
|
|
|
if bytes.Equal(pe.Value, entry.Value) {
|
|
|
|
t.Fatalf("bad: %#v", pe)
|
|
|
|
}
|
2015-03-05 21:27:35 +00:00
|
|
|
}
|
|
|
|
|
2015-03-05 22:03:00 +00:00
|
|
|
// Verify data sent through is cannot be tampered
|
2015-03-05 21:27:35 +00:00
|
|
|
func TestAESGCMBarrier_Integrity(t *testing.T) {
|
2015-03-05 22:03:00 +00:00
|
|
|
inm := physical.NewInmem()
|
|
|
|
b, err := NewAESGCMBarrier(inm)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Initialize and unseal
|
|
|
|
key, _ := b.GenerateKey()
|
|
|
|
b.Initialize(key)
|
|
|
|
b.Unseal(key)
|
|
|
|
|
|
|
|
// Put a logical entry
|
|
|
|
entry := &Entry{Key: "test", Value: []byte("test")}
|
|
|
|
err = b.Put(entry)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Change a byte in the underlying physical entry
|
|
|
|
pe, _ := inm.Get("test")
|
|
|
|
pe.Value[15]++
|
|
|
|
err = inm.Put(pe)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Read from the barrier
|
|
|
|
_, err = b.Get("test")
|
|
|
|
if err == nil {
|
|
|
|
t.Fatalf("should fail!")
|
|
|
|
}
|
2015-03-05 21:27:35 +00:00
|
|
|
}
|
2015-04-30 17:15:41 +00:00
|
|
|
|
|
|
|
func TestEncrypt_Unique(t *testing.T) {
|
|
|
|
inm := physical.NewInmem()
|
|
|
|
b, err := NewAESGCMBarrier(inm)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
key, _ := b.GenerateKey()
|
|
|
|
b.Initialize(key)
|
|
|
|
b.Unseal(key)
|
|
|
|
|
|
|
|
entry := &Entry{Key: "test", Value: []byte("test")}
|
|
|
|
primary := b.primary
|
|
|
|
|
|
|
|
if primary == nil {
|
2015-04-30 17:37:47 +00:00
|
|
|
t.Fatalf("barrier is sealed")
|
2015-04-30 17:15:41 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
first := b.encrypt(primary, entry.Value)
|
|
|
|
second := b.encrypt(primary, entry.Value)
|
|
|
|
|
2015-04-30 17:37:47 +00:00
|
|
|
if bytes.Equal(first, second) == true {
|
|
|
|
t.Fatalf("improper random seeding detected")
|
2015-04-30 17:15:41 +00:00
|
|
|
}
|
|
|
|
}
|
2015-04-30 18:12:47 +00:00
|
|
|
|
|
|
|
func TestInitialize_KeyLength(t *testing.T) {
|
|
|
|
inm := physical.NewInmem()
|
|
|
|
b, err := NewAESGCMBarrier(inm)
|
|
|
|
if err != nil {
|
|
|
|
t.Fatalf("err: %v", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
long := []byte("ThisKeyDoesNotHaveTheRightLength!")
|
|
|
|
middle := []byte("ThisIsASecretKeyAndMore")
|
|
|
|
short := []byte("Key")
|
|
|
|
|
|
|
|
err = b.Initialize(long)
|
|
|
|
|
|
|
|
if err == nil {
|
2015-04-30 18:27:32 +00:00
|
|
|
t.Fatalf("key length protection failed")
|
2015-04-30 18:12:47 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
err = b.Initialize(middle)
|
|
|
|
|
|
|
|
if err == nil {
|
2015-04-30 18:27:32 +00:00
|
|
|
t.Fatalf("key length protection failed")
|
2015-04-30 18:12:47 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
err = b.Initialize(short)
|
|
|
|
|
|
|
|
if err == nil {
|
2015-04-30 18:27:32 +00:00
|
|
|
t.Fatalf("key length protection failed")
|
2015-04-30 18:12:47 +00:00
|
|
|
}
|
|
|
|
}
|