Página inicial Explorar Ajuda
Registrar Entrar
upstreams
/
SSH.NET
mirror de https://github.com/sshnet/SSH.NET.git
2
0
Fork 0
Arquivos Issues 0 Wiki
Tree: cb1f26d21d
Branches Tags
SSH.NET
/
test
/
Renci.SshNet.Tests
/
Classes
/
Security
/
Cryptography
/
Ciphers
/
AesCipherTest.Gen.cs.txt

AesCipherTest.Gen.cs.txt 6.0 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163 
  1. // Used to generate tests in AesCipherTest.cs
    2. 

  2. 

  3. // The script works by running "openssl enc [...]" (via WSL) to generate the
    4. 

  4. // expected encrypted values, and also verifies those values against the .NET
    5. 

  5. // BCL implementation as an extra validation before generating the tests.
    6. 

  6. 

  7. Dictionary<string, (string, CipherMode?)> modes = new()
    8. 

  8. {
    9. 

  9.     ["ecb"] = ("iv: null, AesCipherMode.ECB", CipherMode.ECB),
    10. 

  10.     ["cbc"] = ("(byte[])iv.Clone(), AesCipherMode.CBC", CipherMode.CBC),
    11. 

  11.     ["cfb"] = ("(byte[])iv.Clone(), AesCipherMode.CFB", CipherMode.CFB),
    12. 

  12.     ["ctr"] = ("(byte[])iv.Clone(), AesCipherMode.CTR", null),
    13. 

  13.     ["ofb"] = ("(byte[])iv.Clone(), AesCipherMode.OFB", CipherMode.OFB),
    14. 

  14. };
    15. 

  15. 

  16. Random random = new(123);
    17. 

  17. 

  18. using IndentedTextWriter tw = new(Console.Out);
    19. 

  19. 

  20. foreach ((string mode, (string modeCode, CipherMode? bclMode)) in modes)
    21. 

  21. {
    22. 

  22.     foreach (int keySize in new int[] { 128, 192, 256 })
    23. 

  23.     {
    24. 

  24.         foreach (int inputLength in new int[] { 16, 35, 64 })
    25. 

  25.         {
    26. 

  26.             foreach (bool pad in new bool[] { false, true })
    27. 

  27.             {
    28. 

  28.                 // It is not allowed to use no padding on non-block lengths
    29. 

  29.                 // It makes sense in cfb, ctr and ofb modes
    30. 

  30.                 if (!pad && inputLength % 16 != 0 && mode is not ("cfb" or "ctr" or "ofb"))
    31. 

  31.                 {
    32. 

  32.                     continue;
    33. 

  33.                 }
    34. 

  34. 

  35.                 // It does not make sense to test padding for stream cipher modes
    36. 

  36.                 // (and the OpenSSL, BCL implementations differ)
    37. 

  37.                 if (pad && mode is "cfb" or "ctr" or "ofb")
    38. 

  38.                 {
    39. 

  39.                     continue;
    40. 

  40.                 }
    41. 

  41. 

  42.                 byte[] input = new byte[inputLength];
    43. 

  43.                 random.NextBytes(input);
    44. 

  44. 

  45.                 byte[] key = new byte[keySize / 8];
    46. 

  46.                 random.NextBytes(key);
    47. 

  47. 

  48.                 byte[] iv = new byte[16];
    49. 

  49.                 random.NextBytes(iv);
    50. 

  50. 

  51.                 StringBuilder openSslCmd = new();
    52. 

  52. 

  53.                 openSslCmd.Append($"echo -n -e '{string.Join("", input.Select(b => $"\\x{b:x2}"))}' |");
    54. 

  54.                 openSslCmd.Append($" openssl enc -e -aes-{keySize}-{mode}");
    55. 

  55.                 openSslCmd.Append($" -K {Convert.ToHexString(key)}");
    56. 

  56.                 if (mode != "ecb")
    57. 

  57.                 {
    58. 

  58.                     openSslCmd.Append($" -iv {Convert.ToHexString(iv)}");
    59. 

  59.                 }
    60. 

  60. 

  61.                 if (!pad)
    62. 

  62.                 {
    63. 

  63.                     openSslCmd.Append(" -nopad");
    64. 

  64.                 }
    65. 

  65. 

  66.                 ProcessStartInfo pi = new("wsl", openSslCmd.ToString())
    67. 

  67.                 {
    68. 

  68.                     RedirectStandardOutput = true,
    69. 

  69.                     RedirectStandardError = true,
    70. 

  70.                 };
    71. 

  71. 

  72.                 byte[] expected;
    73. 

  73.                 string error;
    74. 

  74. 

  75.                 using (MemoryStream ms = new())
    76. 

  76.                 {
    77. 

  77.                     var p = Process.Start(pi);
    78. 

  78.                     p.StandardOutput.BaseStream.CopyTo(ms);
    79. 

  79.                     error = p.StandardError.ReadToEnd();
    80. 

  80. 

  81.                     p.WaitForExit();
    82. 

  82. 

  83.                     expected = ms.ToArray();
    84. 

  84.                 }
    85. 

  85. 

  86.                 tw.WriteLine("[TestMethod]");
    87. 

  87.                 tw.WriteLine($"public void AES_{mode.ToUpper()}_{keySize}_Length{inputLength}_{(pad ? "Pad" : "NoPad")}()");
    88. 

  88.                 tw.WriteLine("{");
    89. 

  89.                 tw.Indent++;
    90. 

  90. 

  91.                 WriteBytes(input);
    92. 

  92.                 WriteBytes(key);
    93. 

  93.                 if (mode != "ecb")
    94. 

  94.                 {
    95. 

  95.                     WriteBytes(iv);
    96. 

  96.                 }
    97. 

  97.                 tw.WriteLine();
    98. 

  98. 

  99.                 if (!string.IsNullOrWhiteSpace(error))
    100. 

  100.                 {
    101. 

  101.                     tw.WriteLine($"// {openSslCmd}");
    102. 

  102.                     tw.WriteLine($"Assert.Fail(@\"{error}\");");
    103. 

  103. 

  104.                     tw.Indent--;
    105. 

  105.                     tw.WriteLine("}");
    106. 

  106.                     tw.WriteLine();
    107. 

  107.                     continue;
    108. 

  108.                 }
    109. 

  109. 

  110.                 tw.WriteLine($"// {openSslCmd} | hd"); // pipe to hexdump
    111. 

  111.                 WriteBytes(expected);
    112. 

  112.                 tw.WriteLine();
    113. 

  113.                 tw.WriteLine($"var actual = new AesCipher(key, {modeCode}, pkcs7Padding: {(pad ? "true" : "false")}).Encrypt(input);");
    114. 

  114.                 tw.WriteLine();
    115. 

  115.                 tw.WriteLine($"CollectionAssert.AreEqual(expected, actual);");
    116. 

  116. 

  117.                 if (bclMode is not null and not CipherMode.OFB and not CipherMode.CFB)
    118. 

  118.                 {
    119. 

  119.                     // Verify the OpenSSL result is the same as the .NET BCL, just to be sure
    120. 

  120.                     Aes bcl = Aes.Create();
    121. 

  121.                     bcl.Key = key;
    122. 

  122.                     bcl.IV = iv;
    123. 

  123.                     bcl.Mode = bclMode.Value;
    124. 

  124.                     bcl.Padding = pad ? PaddingMode.PKCS7 : PaddingMode.None;
    125. 

  125.                     bcl.FeedbackSize = 128; // .NET is CFB8 by default, OpenSSL is CFB128
    126. 

  126.                     byte[] bclBytes = bcl.CreateEncryptor().TransformFinalBlock(input, 0, input.Length);
    127. 

  127. 

  128.                     if (!bclBytes.AsSpan().SequenceEqual(expected))
    129. 

  129.                     {
    130. 

  130.                         tw.WriteLine();
    131. 

  131.                         tw.WriteLine(@"Assert.Inconclusive(@""OpenSSL does not match the .NET BCL");
    132. 

  132.                         tw.Indent++;
    133. 

  133.                         tw.WriteLine($@"OpenSSL: {Convert.ToHexString(expected)}");
    134. 

  134.                         tw.WriteLine($@"BCL:     {Convert.ToHexString(bclBytes)}"");");
    135. 

  135.                         tw.Indent--;
    136. 

  136.                     }
    137. 

  137.                 }
    138. 

  138. 

  139.                 tw.WriteLine();
    140. 

  140.                 tw.WriteLine($"var decrypted = new AesCipher(key, {modeCode}, pkcs7Padding: {(pad ? "true" : "false")}).Decrypt(actual);");
    141. 

  141.                 tw.WriteLine();
    142. 

  142.                 tw.WriteLine($"CollectionAssert.AreEqual(input, decrypted);");
    143. 

  143. 

  144.                 tw.Indent--;
    145. 

  145.                 tw.WriteLine("}");
    146. 

  146.                 tw.WriteLine();
    147. 

  147.             }
    148. 

  148.         }
    149. 

  149.     }
    150. 

  150. }
    151. 

  151. 

  152. void WriteBytes(byte[] bytes, [CallerArgumentExpression(nameof(bytes))] string name = null)
    153. 

  153. {
    154. 

  154.     tw.WriteLine($"var {name} = new byte[]");
    155. 

  155.     tw.WriteLine("{");
    156. 

  156.     tw.Indent++;
    157. 

  157.     foreach (byte[] chunk in bytes.Chunk(16))
    158. 

  158.     {
    159. 

  159.         tw.WriteLine(string.Join(", ", chunk.Select(b => $"0x{b:x2}")) + ',');
    160. 

  160.     }
    161. 

  161.     tw.Indent--;
    162. 

  162.     tw.WriteLine("};");
    163. 

  163. }
    164.