nagai/fune
3
0
Fork 0
forked from mirrors/gecko-dev
Code Pull requests Activity
fune/services/fxaccounts/tests/xpcshell/test_keys.js
Cristian Tuns b3bf09cc0d Backed out 6 changesets (bug 1816934, bug 1817182, bug 1817179, bug 1817183) for causing dt failures in browser_jsterm_autocomplete_null.js CLOSED TREE 
Backed out changeset 17d4c013ed92 (bug 1817183)
Backed out changeset cfed8d9c23f3 (bug 1817183)
Backed out changeset 62fe2f589efe (bug 1817182)
Backed out changeset 557bd773fb85 (bug 1817179)
Backed out changeset 7f8a7865868b (bug 1816934)
Backed out changeset d6c1d4c0d2a0 (bug 1816934)
2023-02-17 10:51:33 -05:00

184 lines
5.6 KiB
JavaScript
Raw Blame History

/* Any copyright is dedicated to the Public Domain.
* http://creativecommons.org/publicdomain/zero/1.0/ */
"use strict";
const { FxAccountsKeys } = ChromeUtils.import(
"resource://gre/modules/FxAccountsKeys.jsm"
);
// Ref https://github.com/mozilla/fxa-crypto-relier/ for the details
// of these test vectors.
add_task(async function test_derive_scoped_key_test_vector() {
const keys = new FxAccountsKeys(null);
const uid = "aeaa1725c7a24ff983c6295725d5fc9b";
const kB = "8b2e1303e21eee06a945683b8d495b9bf079ca30baa37eb8392d9ffa4767be45";
const scopedKeyMetadata = {
identifier: "app_key:https%3A//example.com",
keyRotationTimestamp: 1510726317000,
keyRotationSecret:
"517d478cb4f994aa69930416648a416fdaa1762c5abf401a2acf11a0f185e98d",
};
const scopedKey = await keys._deriveScopedKey(
uid,
CommonUtils.hexToBytes(kB),
"app_key",
scopedKeyMetadata
);
Assert.deepEqual(scopedKey, {
kty: "oct",
kid: "1510726317-Voc-Eb9IpoTINuo9ll7bjA",
k: "Kkbk1_Q0oCcTmggeDH6880bQrxin2RLu5D00NcJazdQ",
});
});
add_task(async function test_derive_legacy_sync_key_test_vector() {
const keys = new FxAccountsKeys(null);
const uid = "aeaa1725c7a24ff983c6295725d5fc9b";
const kB = "eaf9570b7219a4187d3d6bf3cec2770c2e0719b7cc0dfbb38243d6f1881675e9";
const scopedKeyMetadata = {
identifier: "https://identity.mozilla.com/apps/oldsync",
keyRotationTimestamp: 1510726317123,
keyRotationSecret:
"0000000000000000000000000000000000000000000000000000000000000000",
};
const scopedKey = await keys._deriveLegacyScopedKey(
uid,
CommonUtils.hexToBytes(kB),
"https://identity.mozilla.com/apps/oldsync",
scopedKeyMetadata
);
Assert.deepEqual(scopedKey, {
kty: "oct",
kid: "1510726317123-IqQv4onc7VcVE1kTQkyyOw",
k:
"DW_ll5GwX6SJ5GPqJVAuMUP2t6kDqhUulc2cbt26xbTcaKGQl-9l29FHAQ7kUiJETma4s9fIpEHrt909zgFang",
});
});
add_task(async function test_derive_multiple_keys_at_once() {
const keys = new FxAccountsKeys(null);
const uid = "aeaa1725c7a24ff983c6295725d5fc9b";
const kB = "eaf9570b7219a4187d3d6bf3cec2770c2e0719b7cc0dfbb38243d6f1881675e9";
const scopedKeysMetadata = {
app_key: {
identifier: "app_key:https%3A//example.com",
keyRotationTimestamp: 1510726317000,
keyRotationSecret:
"517d478cb4f994aa69930416648a416fdaa1762c5abf401a2acf11a0f185e98d",
},
"https://identity.mozilla.com/apps/oldsync": {
identifier: "https://identity.mozilla.com/apps/oldsync",
keyRotationTimestamp: 1510726318123,
keyRotationSecret:
"0000000000000000000000000000000000000000000000000000000000000000",
},
};
const scopedKeys = await keys._deriveScopedKeys(
uid,
CommonUtils.hexToBytes(kB),
scopedKeysMetadata
);
Assert.deepEqual(scopedKeys, {
app_key: {
kty: "oct",
kid: "1510726317-tUkxiR1lTlFrTgkF0tJidA",
k: "TYK6Hmj86PfKiqsk9DZmX61nxk9VsExGrwo94HP-0wU",
},
"https://identity.mozilla.com/apps/oldsync": {
kty: "oct",
kid: "1510726318123-IqQv4onc7VcVE1kTQkyyOw",
k:
"DW_ll5GwX6SJ5GPqJVAuMUP2t6kDqhUulc2cbt26xbTcaKGQl-9l29FHAQ7kUiJETma4s9fIpEHrt909zgFang",
},
});
});
add_task(async function test_rejects_bad_scoped_key_data() {
const keys = new FxAccountsKeys(null);
const uid = "aeaa1725c7a24ff983c6295725d5fc9b";
const kB = "8b2e1303e21eee06a945683b8d495b9bf079ca30baa37eb8392d9ffa4767be45";
const scopedKeyMetadata = {
identifier: "app_key:https%3A//example.com",
keyRotationTimestamp: 1510726317000,
keyRotationSecret:
"517d478cb4f994aa69930416648a416fdaa1762c5abf401a2acf11a0f185e98d",
};
await Assert.rejects(
keys._deriveScopedKey(
uid.slice(0, -1),
CommonUtils.hexToBytes(kB),
"app_key",
scopedKeyMetadata
),
/uid must be a 32-character hex string/
);
await Assert.rejects(
keys._deriveScopedKey(
uid.slice(0, -1) + "Q",
CommonUtils.hexToBytes(kB),
"app_key",
scopedKeyMetadata
),
/uid must be a 32-character hex string/
);
await Assert.rejects(
keys._deriveScopedKey(
uid,
CommonUtils.hexToBytes(kB).slice(0, -1),
"app_key",
scopedKeyMetadata
),
/kBbytes must be exactly 32 bytes/
);
await Assert.rejects(
keys._deriveScopedKey(uid, CommonUtils.hexToBytes(kB), "app_key", {
...scopedKeyMetadata,
identifier: "foo",
}),
/identifier must be a string of length >= 10/
);
await Assert.rejects(
keys._deriveScopedKey(uid, CommonUtils.hexToBytes(kB), "app_key", {
...scopedKeyMetadata,
identifier: {},
}),
/identifier must be a string of length >= 10/
);
await Assert.rejects(
keys._deriveScopedKey(uid, CommonUtils.hexToBytes(kB), "app_key", {
...scopedKeyMetadata,
keyRotationTimestamp: "xyz",
}),
/keyRotationTimestamp must be a number/
);
await Assert.rejects(
keys._deriveScopedKey(uid, CommonUtils.hexToBytes(kB), "app_key", {
...scopedKeyMetadata,
keyRotationTimestamp: 12345,
}),
/keyRotationTimestamp must round to a 10-digit number/
);
await Assert.rejects(
keys._deriveScopedKey(uid, CommonUtils.hexToBytes(kB), "app_key", {
...scopedKeyMetadata,
keyRotationSecret: scopedKeyMetadata.keyRotationSecret.slice(0, -1),
}),
/keyRotationSecret must be a 64-character hex string/
);
await Assert.rejects(
keys._deriveScopedKey(uid, CommonUtils.hexToBytes(kB), "app_key", {
...scopedKeyMetadata,
keyRotationSecret: scopedKeyMetadata.keyRotationSecret.slice(0, -1) + "z",
}),
/keyRotationSecret must be a 64-character hex string/
);
});
View git blame Copy permalink