// // CipherAESTests.swift // CryptoSwift // // Created by Marcin Krzyzanowski on 27/12/14. // Copyright (c) 2014 Marcin Krzyzanowski. All rights reserved. // import XCTest import Foundation @testable import CryptoSwift final class AESTests: XCTestCase { // 128 bit key let aesKey: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f] func testAESEncrypt() { let input: Array = [0x00, 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77, 0x88, 0x99, 0xaa, 0xbb, 0xcc, 0xdd, 0xee, 0xff] let expected: Array = [0x69, 0xc4, 0xe0, 0xd8, 0x6a, 0x7b, 0x4, 0x30, 0xd8, 0xcd, 0xb7, 0x80, 0x70, 0xb4, 0xc5, 0x5a] let aes = try! AES(key: aesKey, blockMode: .ECB, padding: NoPadding()) let encrypted = try! aes.encrypt(input) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, input, "decryption failed") } func testAESEncrypt2() { let key: Array = [0x36, 0x37, 0x39, 0x66, 0x62, 0x31, 0x64, 0x64, 0x66, 0x37, 0x64, 0x38, 0x31, 0x62, 0x65, 0x65] let iv: Array = [0x6b, 0x64, 0x66, 0x36, 0x37, 0x33, 0x39, 0x38, 0x44, 0x46, 0x37, 0x33, 0x38, 0x33, 0x66, 0x64] let input: Array = [0x62, 0x72, 0x61, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00] let expected: Array = [0xae, 0x8c, 0x59, 0x95, 0xb2, 0x6f, 0x8e, 0x3d, 0xb0, 0x6f, 0x0a, 0xa5, 0xfe, 0xc4, 0xf0, 0xc2] let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: NoPadding()) let encrypted = try! aes.encrypt(input) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, input, "decryption failed") } func testAESEncrypt3() { let key = "679fb1ddf7d81bee" let iv = "kdf67398DF7383fd" let input: Array = [0x62, 0x72, 0x61, 0x64, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00] let expected: Array = [0xae, 0x8c, 0x59, 0x95, 0xb2, 0x6f, 0x8e, 0x3d, 0xb0, 0x6f, 0x0a, 0xa5, 0xfe, 0xc4, 0xf0, 0xc2] let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: NoPadding()) let encrypted = try! aes.encrypt(input) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, input, "decryption failed") } func testAESEncryptCBCNoPadding() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a] let expected: Array = [0x76, 0x49, 0xab, 0xac, 0x81, 0x19, 0xb2, 0x46, 0xce, 0xe9, 0x8e, 0x9b, 0x12, 0xe9, 0x19, 0x7d] let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: NoPadding()) let encrypted = try! aes.encrypt(plaintext) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, plaintext, "decryption failed") } func testAESEncryptCBCWithPadding() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a] let expected: Array = [0x76, 0x49, 0xab, 0xac, 0x81, 0x19, 0xb2, 0x46, 0xce, 0xe9, 0x8e, 0x9b, 0x12, 0xe9, 0x19, 0x7d, 0x89, 0x64, 0xe0, 0xb1, 0x49, 0xc1, 0x0b, 0x7b, 0x68, 0x2e, 0x6e, 0x39, 0xaa, 0xeb, 0x73, 0x1c] let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: PKCS7()) let encrypted = try! aes.encrypt(plaintext) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, plaintext, "decryption failed") } func testAESEncryptCBCWithPaddingPartial() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a, 0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a] let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: PKCS7()) var ciphertext = Array() var encryptor = aes.makeEncryptor() ciphertext += try! encryptor.update(withBytes: plaintext[0 ..< 8]) ciphertext += try! encryptor.update(withBytes: plaintext[8 ..< 16]) ciphertext += try! encryptor.update(withBytes: plaintext[16 ..< 32]) ciphertext += try! encryptor.finish() XCTAssertEqual(try! aes.encrypt(plaintext), ciphertext, "encryption failed") } func testAESEncryptIncremental() { do { var ciphertext = Array() let plaintext = "Today Apple launched the open source Swift community, as well as amazing new tools and resources." let aes = try AES(key: Array("passwordpassword".utf8), iv: Array("drowssapdrowssap".utf8)) var encryptor = aes.makeEncryptor() ciphertext += try encryptor.update(withBytes: Array(plaintext.utf8)) ciphertext += try encryptor.finish() XCTAssertEqual(try aes.encrypt(Array(plaintext.utf8)), ciphertext, "encryption failed") } catch { XCTAssert(false, "\(error)") } } func testAESDecryptCBCWithPaddingPartial() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let ciphertext: Array = [118, 73, 171, 172, 129, 25, 178, 70, 206, 233, 142, 155, 18, 233, 25, 125, 76, 187, 200, 88, 117, 107, 53, 129, 37, 82, 158, 150, 152, 163, 143, 68, 169, 105, 137, 234, 93, 98, 239, 215, 41, 45, 51, 254, 138, 92, 251, 17] let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: PKCS7()) var plaintext = Array() var decryptor = aes.makeDecryptor() plaintext += try! decryptor.update(withBytes: ciphertext[0 ..< 8]) plaintext += try! decryptor.update(withBytes: ciphertext[8 ..< 16]) plaintext += try! decryptor.update(withBytes: ciphertext[16 ..< 32]) plaintext += try! decryptor.finish() XCTAssertEqual(try! aes.decrypt(ciphertext), plaintext, "encryption failed") } func testAESEncryptCFB() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a] let expected: Array = [0x3b, 0x3f, 0xd9, 0x2e, 0xb7, 0x2d, 0xad, 0x20, 0x33, 0x34, 0x49, 0xf8, 0xe8, 0x3c, 0xfb, 0x4a] let aes = try! AES(key: key, iv: iv, blockMode: .CFB, padding: NoPadding()) let encrypted = try! aes.encrypt(plaintext) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, plaintext, "decryption failed") } // https://github.com/krzyzanowskim/CryptoSwift/issues/142 func testAESEncryptCFBLong() { let key: Array = [56, 118, 37, 51, 125, 78, 103, 107, 119, 40, 74, 88, 117, 112, 123, 75, 122, 89, 72, 36, 46, 91, 106, 60, 54, 110, 34, 126, 69, 126, 61, 87] let iv: Array = [69, 122, 99, 87, 83, 112, 110, 65, 54, 109, 107, 89, 73, 122, 74, 49] let plaintext: Array = [123, 10, 32, 32, 34, 67, 111, 110, 102, 105, 114, 109, 34, 32, 58, 32, 34, 116, 101, 115, 116, 105, 110, 103, 34, 44, 10, 32, 32, 34, 70, 105, 114, 115, 116, 78, 97, 109, 101, 34, 32, 58, 32, 34, 84, 101, 115, 116, 34, 44, 10, 32, 32, 34, 69, 109, 97, 105, 108, 34, 32, 58, 32, 34, 116, 101, 115, 116, 64, 116, 101, 115, 116, 46, 99, 111, 109, 34, 44, 10, 32, 32, 34, 76, 97, 115, 116, 78, 97, 109, 101, 34, 32, 58, 32, 34, 84, 101, 115, 116, 101, 114, 34, 44, 10, 32, 32, 34, 80, 97, 115, 115, 119, 111, 114, 100, 34, 32, 58, 32, 34, 116, 101, 115, 116, 105, 110, 103, 34, 44, 10, 32, 32, 34, 85, 115, 101, 114, 110, 97, 109, 101, 34, 32, 58, 32, 34, 84, 101, 115, 116, 34, 10, 125] let encrypted: Array = try! AES(key: key, iv: iv, blockMode: .CFB).encrypt(plaintext) let decrypted: Array = try! AES(key: key, iv: iv, blockMode: .CFB).decrypt(encrypted) XCTAssert(decrypted == plaintext, "decryption failed") } func testAESEncryptOFB128() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a] let expected: Array = [0x3b, 0x3f, 0xd9, 0x2e, 0xb7, 0x2d, 0xad, 0x20, 0x33, 0x34, 0x49, 0xf8, 0xe8, 0x3c, 0xfb, 0x4a] let aes = try! AES(key: key, iv: iv, blockMode: .OFB, padding: NoPadding()) let encrypted = try! aes.encrypt(plaintext) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, plaintext, "decryption failed") } func testAESEncryptOFB256() { let key: Array = [0x60, 0x3d, 0xeb, 0x10, 0x15, 0xca, 0x71, 0xbe, 0x2b, 0x73, 0xae, 0xf0, 0x85, 0x7d, 0x77, 0x81, 0x1f, 0x35, 0x2c, 0x07, 0x3b, 0x61, 0x08, 0xd7, 0x2d, 0x98, 0x10, 0xa3, 0x09, 0x14, 0xdf, 0xf4] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a] let expected: Array = [0xdc, 0x7e, 0x84, 0xbf, 0xda, 0x79, 0x16, 0x4b, 0x7e, 0xcd, 0x84, 0x86, 0x98, 0x5d, 0x38, 0x60] let aes = try! AES(key: key, iv: iv, blockMode: .OFB, padding: NoPadding()) let encrypted = try! aes.encrypt(plaintext) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, plaintext, "decryption failed") } func testAESEncryptPCBC256() { let key: Array = [0x60, 0x3d, 0xeb, 0x10, 0x15, 0xca, 0x71, 0xbe, 0x2b, 0x73, 0xae, 0xf0, 0x85, 0x7d, 0x77, 0x81, 0x1f, 0x35, 0x2c, 0x07, 0x3b, 0x61, 0x08, 0xd7, 0x2d, 0x98, 0x10, 0xa3, 0x09, 0x14, 0xdf, 0xf4] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a] let expected: Array = [0xf5, 0x8c, 0x4c, 0x04, 0xd6, 0xe5, 0xf1, 0xba, 0x77, 0x9e, 0xab, 0xfb, 0x5f, 0x7b, 0xfb, 0xd6] let aes = try! AES(key: key, iv: iv, blockMode: .PCBC, padding: NoPadding()) let encrypted = try! aes.encrypt(plaintext) print(encrypted.toHexString()) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, plaintext, "decryption failed") } func testAESEncryptCTR() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0xf0, 0xf1, 0xf2, 0xf3, 0xf4, 0xf5, 0xf6, 0xf7, 0xf8, 0xf9, 0xfa, 0xfb, 0xfc, 0xfd, 0xfe, 0xff] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a] let expected: Array = [0x87, 0x4d, 0x61, 0x91, 0xb6, 0x20, 0xe3, 0x26, 0x1b, 0xef, 0x68, 0x64, 0x99, 0x0d, 0xb6, 0xce] let aes = try! AES(key: key, iv: iv, blockMode: .CTR, padding: NoPadding()) let encrypted = try! aes.encrypt(plaintext) XCTAssertEqual(encrypted.count, plaintext.count); XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted.count, plaintext.count); XCTAssertEqual(decrypted, plaintext, "decryption failed") } // https://github.com/krzyzanowskim/CryptoSwift/issues/424 func testAESEncryptCTRZeroPadding() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0xf0, 0xf1, 0xf2, 0xf3, 0xf4, 0xf5, 0xf6, 0xf7, 0xf8, 0xf9, 0xfa, 0xfb, 0xfc, 0xfd, 0xfe, 0xff] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a, 0xfd] let aes = try! AES(key: key, iv: iv, blockMode: .CTR, padding: ZeroPadding()) let encrypted = try! aes.encrypt(plaintext) XCTAssertEqual(plaintext.count, 17) XCTAssertEqual(encrypted.count, 32, "padding failed") } func testAESEncryptCTRIrregularLength() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0xf0, 0xf1, 0xf2, 0xf3, 0xf4, 0xf5, 0xf6, 0xf7, 0xf8, 0xf9, 0xfa, 0xfb, 0xfc, 0xfd, 0xfe, 0xff] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a, 0x01] let expected: Array = [0x87, 0x4d, 0x61, 0x91, 0xb6, 0x20, 0xe3, 0x26, 0x1b, 0xef, 0x68, 0x64, 0x99, 0x0d, 0xb6, 0xce, 0x37] let aes = try! AES(key: key, iv: iv, blockMode: .CTR, padding: NoPadding()) let encrypted = try! aes.encrypt(plaintext) XCTAssertEqual(encrypted, expected, "encryption failed") let decrypted = try! aes.decrypt(encrypted) XCTAssertEqual(decrypted, plaintext, "decryption failed") } // https://github.com/krzyzanowskim/CryptoSwift/pull/290 func testAESDecryptCTRSeek() { let key: Array = [0x52, 0x72, 0xb5, 0x9c, 0xab, 0x07, 0xc5, 0x01, 0x11, 0x7a, 0x39, 0xb6, 0x10, 0x35, 0x87, 0x02] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x00, 0x01, 0x02, 0x03, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01] var plaintext: Array = Array(repeating: 0, count: 6000) for i in 0 ..< plaintext.count / 6 { let s = Array(String(format: "%05d", i).utf8) plaintext[i * 6 + 0] = s[0] plaintext[i * 6 + 1] = s[1] plaintext[i * 6 + 2] = s[2] plaintext[i * 6 + 3] = s[3] plaintext[i * 6 + 4] = s[4] plaintext[i * 6 + 5] = "|".utf8.first! } let aes = try! AES(key: key, iv: iv, blockMode: .CTR, padding: NoPadding()) let encrypted = try! aes.encrypt(plaintext) var decryptor = aes.makeDecryptor() decryptor.seek(to: 2) var part1 = try! decryptor.update(withBytes: Array(encrypted[2 ..< 5])) part1 += try! decryptor.finish() XCTAssertEqual(part1, Array(plaintext[2 ..< 5]), "seek decryption failed") decryptor.seek(to: 1000) var part2 = try! decryptor.update(withBytes: Array(encrypted[1000 ..< 1200])) part2 += try! decryptor.finish() XCTAssertEqual(part2, Array(plaintext[1000 ..< 1200]), "seek decryption failed") decryptor.seek(to: 5500) var part3 = try! decryptor.update(withBytes: Array(encrypted[5500 ..< 6000])) part3 += try! decryptor.finish() XCTAssertEqual(part3, Array(plaintext[5500 ..< 6000]), "seek decryption failed") decryptor.seek(to: 0) var part4 = try! decryptor.update(withBytes: Array(encrypted[0 ..< 80])) part4 += try! decryptor.finish() XCTAssertEqual(part4, Array(plaintext[0 ..< 80]), "seek decryption failed") } // https://github.com/krzyzanowskim/CryptoSwift/pull/289 func testAESEncryptCTRIrregularLengthIncrementalUpdate() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0xf0, 0xf1, 0xf2, 0xf3, 0xf4, 0xf5, 0xf6, 0xf7, 0xf8, 0xf9, 0xfa, 0xfb, 0xfc, 0xfd, 0xfe, 0xff] let plaintext: Array = [0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a, 0x01, 0x6b, 0xc1, 0xbe, 0xe2, 0x2e, 0x40, 0x9f, 0x96, 0xe9, 0x3d, 0x7e, 0x11, 0x73, 0x93, 0x17, 0x2a, 0x01] let expected: Array = [0x87, 0x4d, 0x61, 0x91, 0xb6, 0x20, 0xe3, 0x26, 0x1b, 0xef, 0x68, 0x64, 0x99, 0xd, 0xb6, 0xce, 0x37, 0x40, 0xbd, 0x82, 0x85, 0x5d, 0x11, 0xfc, 0x8e, 0x49, 0x4a, 0xa9, 0xed, 0x23, 0xe0, 0xb9, 0x40, 0x2d] let aes = try! AES(key: key, iv: iv, blockMode: .CTR, padding: NoPadding()) var encryptor = aes.makeEncryptor() var encrypted = Array() encrypted += try! encryptor.update(withBytes: plaintext[0 ..< 5]) encrypted += try! encryptor.update(withBytes: plaintext[5 ..< 15]) encrypted += try! encryptor.update(withBytes: plaintext[15 ..< plaintext.count]) encrypted += try! encryptor.finish() XCTAssertEqual(encrypted, expected, "encryption failed") var decryptor = aes.makeDecryptor() var decrypted = Array() decrypted += try! decryptor.update(withBytes: expected[0 ..< 5]) decrypted += try! decryptor.update(withBytes: expected[5 ..< 15]) decrypted += try! decryptor.update(withBytes: expected[15 ..< plaintext.count]) decrypted += try! decryptor.finish() XCTAssertEqual(decrypted, plaintext, "decryption failed") } func testAESWithWrongKey() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let key2: Array = [0x22, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x33] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let plaintext: Array = [49, 46, 50, 50, 50, 51, 51, 51, 51] let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: PKCS7()) let aes2 = try! AES(key: key2, iv: iv, blockMode: .CBC, padding: PKCS7()) let encrypted = try! aes.encrypt(plaintext) let decrypted = try? aes2.decrypt(encrypted) XCTAssertTrue(decrypted! != plaintext, "failed") } // https://github.com/krzyzanowskim/CryptoSwift/issues/298 func testIssue298() { let encryptedValue = "47595cfa90f7b0b0e0d9d7240a2e035f7f4acde27d7ca778a7d8b05add32a0a92d945c0a59f7f0e029d7f2fbb258b2f0" let expected: Array = [55, 52, 98, 54, 53, 51, 101, 51, 54, 52, 51, 48, 100, 55, 97, 57, 99, 100, 57, 49, 97, 50, 52, 100, 57, 57, 52, 52, 98, 48, 51, 50, 79, 114, 70, 101, 99, 107, 114, 87, 111, 0, 0, 0, 0, 0, 0, 0] let key = "0123456789abcdef" let iv = "fedcba9876543210" do { let aes = try AES(key: key, iv: iv, blockMode: .CBC, padding: NoPadding()) let ciphertext = try aes.decrypt(Array(hex: encryptedValue)) XCTAssertEqual(ciphertext, expected) } catch { XCTFail("failed") } } // https://github.com/krzyzanowskim/CryptoSwift/issues/394 func testIssue394() { let plaintext = Array("Nullam quis risus eget urna mollis ornare vel eu leo.".utf8) let key = Array("passwordpassword".utf8).md5() // -md md5 let iv = Array("drowssapdrowssap".utf8) // -iv 64726f777373617064726f7773736170 let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: PKCS7()) // -aes-128-cbc let ciphertext = try! aes.encrypt(plaintext) // enc // $ echo -n "Nullam quis risus eget urna mollis ornare vel eu leo." | openssl enc -aes-128-cbc -md md5 -nosalt -iv 64726f777373617064726f7773736170 -pass pass:passwordpassword -base64 // cij+965z2Xqoj9tIHgtA72ZPfv5sxnt76vwkIt1CodYY313oa7mr0pSc5o++g0CX // YczxK2fGIa84xtwDtRMwBQ== XCTAssertEqual(ciphertext.toBase64(), "cij+965z2Xqoj9tIHgtA72ZPfv5sxnt76vwkIt1CodYY313oa7mr0pSc5o++g0CXYczxK2fGIa84xtwDtRMwBQ==") } // https://github.com/krzyzanowskim/CryptoSwift/issues/411 func testIssue411() { let ciphertext: Array = [0x2A,0x3A,0x80,0x05,0xAF,0x46,0x58,0x2D,0x66,0x52,0x10,0xAE,0x86,0xD3,0x8E,0x8F] // test let key = Array("passwordpassword".utf8).md5() // -md md5 let iv = Array("drowssapdrowssap".utf8) // -iv 64726f777373617064726f7773736170 let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: PKCS7()) // -aes-128-cbc let plaintext = try! ciphertext.decrypt(cipher: aes) XCTAssertEqual("74657374", plaintext.toHexString()) } } #if !CI extension AESTests { func testAESEncryptPerformance() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let message = Array(repeating: 7, count: 1024 * 1024) let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: PKCS7()) measureMetrics([XCTPerformanceMetric_WallClockTime], automaticallyStartMeasuring: true, for: { () -> Void in _ = try! aes.encrypt(message) }) } func testAESDecryptPerformance() { let key: Array = [0x2b, 0x7e, 0x15, 0x16, 0x28, 0xae, 0xd2, 0xa6, 0xab, 0xf7, 0x15, 0x88, 0x09, 0xcf, 0x4f, 0x3c] let iv: Array = [0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F] let message = Array(repeating: 7, count: 1024 * 1024) let aes = try! AES(key: key, iv: iv, blockMode: .CBC, padding: PKCS7()) measureMetrics([XCTPerformanceMetric_WallClockTime], automaticallyStartMeasuring: true, for: { () -> Void in _ = try! aes.decrypt(message) }) } } #endif extension AESTests { static func allTests() -> [(String, (AESTests) -> () -> Void)] { var tests = [ ("testAESEncrypt", testAESEncrypt), ("testAESEncrypt2", testAESEncrypt2), ("testAESEncrypt3", testAESEncrypt3), ("testAESEncryptCBCNoPadding", testAESEncryptCBCNoPadding), ("testAESEncryptCBCWithPadding", testAESEncryptCBCWithPadding), ("testAESEncryptCBCWithPaddingPartial", testAESEncryptCBCWithPaddingPartial), ("testAESEncryptIncremental", testAESEncryptIncremental), ("testAESDecryptCBCWithPaddingPartial", testAESDecryptCBCWithPaddingPartial), ("testAESEncryptCFB", testAESEncryptCFB), ("testAESEncryptCFBLong", testAESEncryptCFBLong), ("testAESEncryptOFB128", testAESEncryptOFB128), ("testAESEncryptOFB256", testAESEncryptOFB256), ("testAESEncryptPCBC256", testAESEncryptPCBC256), ("testAESEncryptCTR", testAESEncryptCTR), ("testAESEncryptCTRZeroPadding", testAESEncryptCTRZeroPadding), ("testAESEncryptCTRIrregularLength", testAESEncryptCTRIrregularLength), ("testAESDecryptCTRSeek", testAESDecryptCTRSeek), ("testAESEncryptCTRIrregularLengthIncrementalUpdate", testAESEncryptCTRIrregularLengthIncrementalUpdate), ("testIssue298", testIssue298), ("testIssue394", testIssue394), ("testIssue411", testIssue411), ("testAESWithWrongKey", testAESWithWrongKey), ] #if !CI tests += [ ("testAESEncryptPerformance", testAESEncryptPerformance), ("testAESDecryptPerformance", testAESDecryptPerformance), ] #endif return tests } }