@brix-crypto/crypto-js 0.0.1-security → 4.2.1

package/test/test1.html

@@ -0,0 +1,63 @@
+<!doctype html>
+<html>
+<head>
+    <meta charset="utf-8">
+    <title>CryptoJS Test Suite</title>
+
+    <!-- CryptoJS -->
+    <script src="../src/core.js"></script>
+    <script src="../src/lib-typedarrays.js"></script>
+    <script src="../src/x64-core.js"></script>
+    <script src="../src/enc-utf16.js"></script>
+    <script src="../src/enc-base64.js"></script>
+    <script src="../src/enc-base64url.js"></script>
+    <script src="../src/md5.js"></script>
+    <script src="../src/sha1.js"></script>
+    <script src="../src/sha256.js"></script>
+    <script src="../src/sha224.js"></script>
+    <script src="../src/sha512.js"></script>
+    <script src="../src/sha384.js"></script>
+    <script src="../src/sha3.js"></script>
+    <script src="../src/ripemd160.js"></script>
+    <script src="../src/hmac.js"></script>
+    <script src="../src/pbkdf2.js"></script>
+    <script src="../src/evpkdf.js"></script>
+    <script src="../src/cipher-core.js"></script>
+    <script src="../src/mode-cfb.js"></script>
+    <script src="../src/mode-ctr.js"></script>
+    <script src="../src/mode-ofb.js"></script>
+    <script src="../src/mode-ecb.js"></script>
+    <script src="../src/pad-ansix923.js"></script>
+    <script src="../src/pad-iso10126.js"></script>
+    <script src="../src/pad-zeropadding.js"></script>
+    <script src="../src/pad-iso97971.js"></script>
+    <script src="../src/pad-nopadding.js"></script>
+    <script src="../src/rc4.js"></script>
+    <script src="../src/rabbit.js"></script>
+    <script src="../src/rabbit-legacy.js"></script>
+    <script src="../src/aes.js"></script>
+    <script src="../src/tripledes.js"></script>
+
+
+    <!-- Test runner -->
+    <script>
+      var message = "152999073894506063@http://localhost:3000/protected/index@89effb07-588e-4bf4-ba16-c10b2a136ae9@1553508995647";
+      var key = "u-rXsMB_aegAnzC_CJt27plLGNqOfR2EHI5o2ro1NO";
+      var baseKey = CryptoJS.enc.Base64url.parse(key);
+      console.log("key："+baseKey.toString());
+      var hash = CryptoJS.HmacSHA256(message, baseKey);
+      var hashInBase64 = CryptoJS.enc.Base64url.stringify(hash);
+      document.write(hashInBase64);
+      document.write("\n");
+      var shashInBase64 = CryptoJS.enc.Base64url.stringify(hash);
+      console.log("result："+hash.toString())
+      document.write(shashInBase64);
+      console.log("done："+shashInBase64);
+      var url = 'http://www.ctyun.cn/serviceValidate?service=http://localhost:3000/protected/index&ticket=89effb07-588e-4bf4-ba16-c10b2a136ae9&timestamp=1553508995647&appId=152999073894506063&signature=evvc3Ix87nk-KkuIaQJrLP7Vu76dTsh-BwnC6AHXFfU'
+    </script>
+
+
+</head>
+<body>
+</body>
+</html>

package/test/tripledes-profile.js

@@ -0,0 +1,31 @@
+YUI.add('algo-tripledes-profile', function (Y) {
+    var C = CryptoJS;
+
+    Y.Profiler.add({
+        name: 'TripleDES',
+
+        setUp: function () {
+            this.data = {
+                key: C.enc.Hex.parse('0001020304050607'),
+                iv: C.enc.Hex.parse('08090a0b0c0d0e0f')
+            };
+        },
+
+        profileSinglePartMessage: function () {
+            var singlePartMessage = '';
+            for (var i = 0; i < 100; i++) {
+                singlePartMessage += '12345678901234567890123456789012345678901234567890';
+            }
+
+            C.algo.TripleDES.createEncryptor(this.data.key, { iv: this.data.iv }).finalize(singlePartMessage) + '';
+        },
+
+        profileMultiPartMessage: function () {
+            var des = C.algo.TripleDES.createEncryptor(this.data.key, { iv: this.data.iv });
+            for (var i = 0; i < 100; i++) {
+                des.process('12345678901234567890123456789012345678901234567890') + '';
+            }
+            des.finalize() + '';
+        }
+    });
+}, '$Rev$');

package/test/tripledes-test.js

@@ -0,0 +1,121 @@
+YUI.add('algo-tripledes-test', function (Y) {
+    var C = CryptoJS;
+
+    Y.Test.Runner.add(new Y.Test.Case({
+        name: 'TripleDES',
+
+        testEncrypt1: function () {
+            Y.Assert.areEqual('95a8d72813daa94d', C.TripleDES.encrypt(C.enc.Hex.parse('0000000000000000'), C.enc.Hex.parse('800101010101010180010101010101018001010101010101'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).ciphertext.toString());
+        },
+
+        testEncrypt2: function () {
+            Y.Assert.areEqual('869efd7f9f265a09', C.TripleDES.encrypt(C.enc.Hex.parse('0000000000000000'), C.enc.Hex.parse('010101010101010201010101010101020101010101010102'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).ciphertext.toString());
+        },
+
+        testEncrypt3: function () {
+            Y.Assert.areEqual('95f8a5e5dd31d900', C.TripleDES.encrypt(C.enc.Hex.parse('8000000000000000'), C.enc.Hex.parse('010101010101010101010101010101010101010101010101'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).ciphertext.toString());
+        },
+
+        testEncrypt4: function () {
+            Y.Assert.areEqual('166b40b44aba4bd6', C.TripleDES.encrypt(C.enc.Hex.parse('0000000000000001'), C.enc.Hex.parse('010101010101010101010101010101010101010101010101'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).ciphertext.toString());
+        },
+
+        testDecrypt1: function () {
+            Y.Assert.areEqual('0000000000000000', C.TripleDES.decrypt(C.lib.CipherParams.create({ ciphertext: C.enc.Hex.parse('95a8d72813daa94d') }), C.enc.Hex.parse('800101010101010180010101010101018001010101010101'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).toString());
+        },
+
+        testDecrypt2: function () {
+            Y.Assert.areEqual('0000000000000000', C.TripleDES.decrypt(C.lib.CipherParams.create({ ciphertext: C.enc.Hex.parse('869efd7f9f265a09') }), C.enc.Hex.parse('010101010101010201010101010101020101010101010102'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).toString());
+        },
+
+        testDecrypt3: function () {
+            Y.Assert.areEqual('8000000000000000', C.TripleDES.decrypt(C.lib.CipherParams.create({ ciphertext: C.enc.Hex.parse('95f8a5e5dd31d900') }), C.enc.Hex.parse('010101010101010101010101010101010101010101010101'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).toString());
+        },
+
+        testDecrypt4: function () {
+            Y.Assert.areEqual('0000000000000001', C.TripleDES.decrypt(C.lib.CipherParams.create({ ciphertext: C.enc.Hex.parse('166b40b44aba4bd6') }), C.enc.Hex.parse('010101010101010101010101010101010101010101010101'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).toString());
+        },
+
+        testMultiPart: function () {
+            var des = C.algo.TripleDES.createEncryptor(C.enc.Hex.parse('000102030405060708090a0b0c0d0e0f1011121314151617'), { mode: C.mode.ECB, padding: C.pad.NoPadding });
+            var ciphertext1 = des.process(C.enc.Hex.parse('001122334455'));
+            var ciphertext2 = des.process(C.enc.Hex.parse('66778899aa'));
+            var ciphertext3 = des.process(C.enc.Hex.parse('bbccddeeff'));
+            var ciphertext4 = des.finalize();
+
+            Y.Assert.areEqual(C.TripleDES.encrypt(C.enc.Hex.parse('00112233445566778899aabbccddeeff'), C.enc.Hex.parse('000102030405060708090a0b0c0d0e0f1011121314151617'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).ciphertext.toString(), ciphertext1.concat(ciphertext2).concat(ciphertext3).concat(ciphertext4).toString());
+        },
+
+        testInputIntegrity: function () {
+            var message = C.enc.Hex.parse('00112233445566778899aabbccddeeff');
+            var key = C.enc.Hex.parse('000102030405060708090a0b0c0d0e0f1011121314151617');
+            var iv = C.enc.Hex.parse('08090a0b0c0d0e0f');
+
+            var expectedMessage = message.toString();
+            var expectedKey = key.toString();
+            var expectedIv = iv.toString();
+
+            C.TripleDES.encrypt(message, key, { iv: iv });
+
+            Y.Assert.areEqual(expectedMessage, message.toString());
+            Y.Assert.areEqual(expectedKey, key.toString());
+            Y.Assert.areEqual(expectedIv, iv.toString());
+        },
+
+        test64BitKey: function() {
+            var message = C.enc.Hex.parse('00112233445566778899aabbccddeeff');
+            var key = C.enc.Hex.parse('0011223344556677');
+            var extendedKey = C.enc.Hex.parse('001122334455667700112233445566770011223344556677')
+            
+            var output1 = C.TripleDES.encrypt(message, key, { mode: C.mode.ECB }).toString();
+            var output2 = C.TripleDES.encrypt(message, extendedKey, { mode: C.mode.ECB }).toString();
+
+            Y.Assert.areEqual(output1, output2);
+        },
+
+        test128BitKey: function() {
+            var message = C.enc.Hex.parse('00112233445566778899aabbccddeeff');
+            var key = C.enc.Hex.parse('00112233445566778899aabbccddeeff');
+            var extendedKey = C.enc.Hex.parse('00112233445566778899aabbccddeeff0011223344556677')
+            
+            var output1 = C.TripleDES.encrypt(message, key, { mode: C.mode.ECB }).toString();
+            var output2 = C.TripleDES.encrypt(message, extendedKey, { mode: C.mode.ECB }).toString();
+
+            Y.Assert.areEqual(output1, output2);
+        },
+
+        test256BitKey: function() {
+            var message = C.enc.Hex.parse('00112233445566778899aabbccddeeff');
+            var key = C.enc.Hex.parse('00112233445566778899aabbccddeeff0112233445566778899aabbccddeeff0');
+            var truncatedKey = C.enc.Hex.parse('00112233445566778899aabbccddeeff0112233445566778')
+            
+            var output1 = C.TripleDES.encrypt(message, key, { mode: C.mode.ECB }).toString();
+            var output2 = C.TripleDES.encrypt(message, truncatedKey, { mode: C.mode.ECB }).toString();
+
+            Y.Assert.areEqual(output1, output2);
+        },
+
+        testHelper: function () {
+            // Save original random method
+            var random = C.lib.WordArray.random;
+
+            // Replace random method with one that returns a predictable value
+            C.lib.WordArray.random = function (nBytes) {
+                var words = [];
+                for (var i = 0; i < nBytes; i += 4) {
+                    words.push([0x11223344]);
+                }
+
+                return C.lib.WordArray.create(words, nBytes);
+            };
+
+            // Test
+            Y.Assert.areEqual(C.algo.TripleDES.createEncryptor(C.SHA256('Jefe'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).finalize('Hi There').toString(), C.TripleDES.encrypt('Hi There', C.SHA256('Jefe'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).ciphertext.toString());
+            Y.Assert.areEqual(C.lib.SerializableCipher.encrypt(C.algo.TripleDES, 'Hi There', C.SHA256('Jefe'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).toString(), C.TripleDES.encrypt('Hi There', C.SHA256('Jefe'), { mode: C.mode.ECB, padding: C.pad.NoPadding }).toString());
+            Y.Assert.areEqual(C.lib.PasswordBasedCipher.encrypt(C.algo.TripleDES, 'Hi There', 'Jefe', { mode: C.mode.ECB, padding: C.pad.NoPadding }).toString(), C.TripleDES.encrypt('Hi There', 'Jefe', { mode: C.mode.ECB, padding: C.pad.NoPadding }).toString());
+
+            // Restore random method
+            C.lib.WordArray.random = random;
+        }
+    }));
+}, '$Rev$');

package/test/x64-word-test.js

@@ -0,0 +1,99 @@
+YUI.add('x64-word-test', function (Y) {
+    var C = CryptoJS;
+
+    Y.Test.Runner.add(new Y.Test.Case({
+        name: 'X64Word',
+
+        testInit: function () {
+            var word = C.x64.Word.create(0x00010203, 0x04050607);
+
+            Y.Assert.areEqual(0x00010203, word.high, 'word.high');
+            Y.Assert.areEqual(0x04050607, word.low, 'word.low');
+        }
+
+        // testNot: function () {
+            // var word = C.x64.Word.create(0x00010203, 0x04050607).not();
+
+            // Y.Assert.areEqual(~0x00010203, word.high, 'word.high');
+            // Y.Assert.areEqual(~0x04050607, word.low, 'word.low');
+        // },
+
+        // testAnd: function () {
+            // var word1 = C.x64.Word.create(0x00010203, 0x04050607);
+            // var word2 = C.x64.Word.create(0x18191a1b, 0x1c1d1e1f);
+            // var anded = word1.and(word2);
+
+            // Y.Assert.areEqual(0x00010203 & 0x18191a1b, anded.high, 'word.high');
+            // Y.Assert.areEqual(0x04050607 & 0x1c1d1e1f, anded.low, 'word.low');
+        // },
+
+        // testOr: function () {
+            // var word1 = C.x64.Word.create(0x00010203, 0x04050607);
+            // var word2 = C.x64.Word.create(0x18191a1b, 0x1c1d1e1f);
+            // var ored = word1.or(word2);
+
+            // Y.Assert.areEqual(0x00010203 | 0x18191a1b, ored.high, 'word.high');
+            // Y.Assert.areEqual(0x04050607 | 0x1c1d1e1f, ored.low, 'word.low');
+        // },
+
+        // testXor: function () {
+            // var word1 = C.x64.Word.create(0x00010203, 0x04050607);
+            // var word2 = C.x64.Word.create(0x18191a1b, 0x1c1d1e1f);
+            // var xored = word1.xor(word2);
+
+            // Y.Assert.areEqual(0x00010203 ^ 0x18191a1b, xored.high, 'word.high');
+            // Y.Assert.areEqual(0x04050607 ^ 0x1c1d1e1f, xored.low, 'word.low');
+        // },
+
+        // testShiftL25: function () {
+            // var word = C.x64.Word.create(0x00010203, 0x04050607).shiftL(25);
+
+            // Y.Assert.areEqual(0x06080a0c, word.high, 'word.high');
+            // Y.Assert.areEqual(0x0e000000, word.low, 'word.low');
+        // },
+
+        // testShiftL32: function () {
+            // var word = C.x64.Word.create(0x00010203, 0x04050607).shiftL(32);
+
+            // Y.Assert.areEqual(0x04050607, word.high, 'word.high');
+            // Y.Assert.areEqual(0x00000000, word.low, 'word.low');
+        // },
+
+        // testShiftR7: function () {
+            // var word = C.x64.Word.create(0x00010203, 0x04050607).shiftR(7);
+
+            // Y.Assert.areEqual(0x00000204, word.high, 'word.high');
+            // Y.Assert.areEqual(0x06080A0C, word.low, 'word.low');
+        // },
+
+        // testShiftR32: function () {
+            // var word = C.x64.Word.create(0x00010203, 0x04050607).shiftR(32);
+
+            // Y.Assert.areEqual(0x00000000, word.high, 'word.high');
+            // Y.Assert.areEqual(0x00010203, word.low, 'word.low');
+        // },
+
+        // testRotL: function () {
+            // var word = C.x64.Word.create(0x00010203, 0x04050607).rotL(25);
+
+            // Y.Assert.areEqual(0x06080a0c, word.high, 'word.high');
+            // Y.Assert.areEqual(0x0e000204, word.low, 'word.low');
+        // },
+
+        // testRotR: function () {
+            // var word = C.x64.Word.create(0x00010203, 0x04050607).rotR(7);
+
+            // Y.Assert.areEqual(0x0e000204, word.high, 'word.high');
+            // Y.Assert.areEqual(0x06080a0c, word.low, 'word.low');
+        // },
+
+        // testAdd: function () {
+            // var word1 = C.x64.Word.create(0x00010203, 0x04050607);
+            // var word2 = C.x64.Word.create(0x18191a1b, 0x1c1d1e1f);
+            // var added = word1.add(word2);
+
+            // Y.Assert.areEqual(0x181a1c1e, added.high, 'word.high');
+            // Y.Assert.areEqual(0x20222426, added.low, 'word.low');
+        // }
+    }));
+}, '$Rev$');

package/test/x64-wordarray-test.js

@@ -0,0 +1,38 @@
+YUI.add('x64-wordarray-test', function (Y) {
+    var C = CryptoJS;
+
+    Y.Test.Runner.add(new Y.Test.Case({
+        name: 'X64WordArray',
+
+        testInit0: function () {
+            Y.Assert.areEqual('', C.x64.WordArray.create().toX32().toString());
+        },
+
+        testInit1: function () {
+            var wordArray = C.x64.WordArray.create([
+                C.x64.Word.create(0x00010203, 0x04050607),
+                C.x64.Word.create(0x18191a1b, 0x1c1d1e1f)
+            ]);
+
+            Y.Assert.areEqual('000102030405060718191a1b1c1d1e1f', wordArray.toX32().toString());
+        },
+
+        testInit2: function () {
+            var wordArray = C.x64.WordArray.create([
+                C.x64.Word.create(0x00010203, 0x04050607),
+                C.x64.Word.create(0x18191a1b, 0x1c1d1e1f)
+            ], 10);
+
+            Y.Assert.areEqual('00010203040506071819', wordArray.toX32().toString());
+        },
+
+        testToX32: function () {
+            var wordArray = C.x64.WordArray.create([
+                C.x64.Word.create(0x00010203, 0x04050607),
+                C.x64.Word.create(0x18191a1b, 0x1c1d1e1f)
+            ], 10);
+
+            Y.Assert.areEqual('00010203040506071819', wordArray.toX32().toString());
+        }
+    }));
+}, '$Rev$');