test(rtc,e2ee): add frontend.common.crypt-test

2026-05-21 03:12:38 +00:00 · 2025-11-10 23:57:15 +08:00
parent 232d647ca3
commit e95dbe1096
1 changed files with 49 additions and 0 deletions
--- a/src/test/frontend/common/crypt_test.cljs
+++ b/src/test/frontend/common/crypt_test.cljs
@@ -0,0 +1,49 @@
+(ns frontend.common.crypt-test
+  (:require [cljs.test :as t :refer [is testing]]
+            [frontend.common.crypt :as crypt]
+            [frontend.test.helper :as test-helper :include-macros true :refer [deftest-async]]
+            [promesa.core :as p]))
+
+(defn- uint8array=? [arr1 arr2]
+  (assert (and (instance? js/Uint8Array arr1)
+               (instance? js/Uint8Array arr2)))
+  (= (vec arr1) (vec arr2)))
+
+(deftest-async user-rsa-key-pair+graph-aes-key+password-test
+  (p/let [password "test-password"
+          rsa-key-pair (crypt/<generate-rsa-key-pair)
+          aes-key (crypt/<generate-aes-key)
+          encrypted-private-key (crypt/<encrypt-private-key password (:privateKey rsa-key-pair))
+          encrypted-aes-key (crypt/<encrypt-aes-key (:publicKey rsa-key-pair) aes-key)]
+    (testing "
+1. generate rsa key pair
+2. generate aes key
+3. use password to encrypt private-key
+4. use public-key to encrypt aes-key"
+      (is (vector? encrypted-private-key))
+      (is (instance? js/Uint8Array (last encrypted-private-key)))
+      (is (instance? js/Uint8Array encrypted-aes-key)))
+
+    (p/let [decrypted-private-key (crypt/<decrypt-private-key password encrypted-private-key)
+            decrypted-aes-key (crypt/<decrypt-aes-key decrypted-private-key encrypted-aes-key)
+            exported-original-private-key (crypt/<export-private-key (:privateKey rsa-key-pair))
+            exported-decrypted-private-key (crypt/<export-private-key decrypted-private-key)
+            exported-original-aes-key (crypt/<export-aes-key aes-key)
+            exported-decrypted-aes-key (crypt/<export-aes-key decrypted-aes-key)]
+      (testing "
+1. use password to decrypt encrypted-private-key above
+2. use private-key to decrypt encrypted-aes-key above"
+        (is (instance? js/CryptoKey decrypted-private-key))
+        (is (instance? js/CryptoKey decrypted-aes-key))
+        (is (uint8array=? exported-original-private-key exported-decrypted-private-key))
+        (is (uint8array=? exported-original-aes-key exported-decrypted-aes-key))))
+
+    (testing "
+1. use wrong password to decrypt encrypted-private-key above
+2. use wrong private-key to decrypt encrypted-aes-key above"
+      (p/do!
+       (-> (p/do! (crypt/<decrypt-private-key "wrong-password" encrypted-private-key))
+           (p/catch (fn [e] (is (= "decrypt-private-key" (ex-message e))))))
+       (-> (p/let [another-rsa-key-pair (crypt/<generate-rsa-key-pair)]
+             (crypt/<decrypt-aes-key (:privateKey another-rsa-key-pair) encrypted-aes-key))
+           (p/catch (fn [e] (is (= "decrypt-aes-key" (ex-message e))))))))))