[github/fretlink/hmacaroons.git] / test / Sanity.hs

{-#LANGUAGE OverloadedStrings#-}
module Sanity where

import           Crypto.Hash
import Data.ByteString (ByteString)
import qualified Data.ByteString as B
import Data.Hex
import Data.Byteable

import Test.Tasty
import Test.Tasty.HUnit

import qualified Crypto.Macaroon.Tests
import qualified Crypto.Macaroon.Serializer.Base64.Tests

tests :: TestTree
tests = testGroup "Python HMAC Sanity check" [ checkKey
    , checkMac1
    , checkMac2
    , checkMac3
    , checkMac4
    ]


secret :: ByteString
secret = "this is our super secret key; only we should know it"

public :: ByteString
public = "we used our secret key"

key :: ByteString
key = B.take 32 secret

mac1 :: ByteString
mac1 = toBytes (hmac key public :: HMAC SHA256)

mac2 :: ByteString
mac2 = toBytes (hmac mac1 "account = 3735928559" :: HMAC SHA256)

mac3 :: ByteString
mac3 = toBytes (hmac mac2 "time < 2015-01-01T00:00" :: HMAC SHA256)

mac4 :: ByteString
mac4 = toBytes (hmac mac3 "email = alice@example.org" :: HMAC SHA256)


checkKey = testCase "Truncated key" $ 
    key @?= "this is our super secret key; on"

checkMac1 = testCase "HMAC key" $ 
    "C60B4B3540BB1B2F2EF28D1C895691CC4A5E07A38A9D3B1C3379FB485293372F" @=? hex mac1

checkMac2 = testCase "HMAC key account" $ 
    "5C933DC9A7D036DFCD1740B4F26D737397A1FF635EAC900F3226973503CAAAA5" @=? hex mac2

checkMac3 = testCase "HMAC key account time" $ 
    "7A559B20C8B607009EBCE138C200585E9D0DECA6D23B3EAD6C5E0BA6861D3858" @=? hex mac3

checkMac4 = testCase "HMAC key account time email" $ 
    "E42BBB02A9A5A303483CB6295C497AE51AD1D5CB10003CBE548D907E7E62F5E4" @=? hex mac4
Commit	Line	Data
f6781456	1	{-#LANGUAGE OverloadedStrings#-}
46af385c	2	module Sanity where
f6781456 JT	3
	4	import Crypto.Hash
	5	import Data.ByteString (ByteString)
	6	import qualified Data.ByteString as B
	7	import Data.Hex
	8	import Data.Byteable
	9
	10	import Test.Tasty
	11	import Test.Tasty.HUnit
	12
	13	import qualified Crypto.Macaroon.Tests
b1f77d7e	14	import qualified Crypto.Macaroon.Serializer.Base64.Tests
f6781456	15
f6781456	16	tests :: TestTree
46af385c	17	tests = testGroup "Python HMAC Sanity check" [ checkKey
f6781456 JT	18	, checkMac1
	19	, checkMac2
	20	, checkMac3
	21	, checkMac4
	22	]
	23
	24
	25	secret :: ByteString
	26	secret = "this is our super secret key; only we should know it"
	27
	28	public :: ByteString
	29	public = "we used our secret key"
	30
	31	key :: ByteString
	32	key = B.take 32 secret
	33
	34	mac1 :: ByteString
46af385c	35	mac1 = toBytes (hmac key public :: HMAC SHA256)
f6781456 JT	36
f6781456 JT	37	mac2 :: ByteString
46af385c	38	mac2 = toBytes (hmac mac1 "account = 3735928559" :: HMAC SHA256)
f6781456 JT	39
f6781456 JT	40	mac3 :: ByteString
46af385c	41	mac3 = toBytes (hmac mac2 "time < 2015-01-01T00:00" :: HMAC SHA256)
f6781456 JT	42
f6781456 JT	43	mac4 :: ByteString
46af385c	44	mac4 = toBytes (hmac mac3 "email = alice@example.org" :: HMAC SHA256)
f6781456 JT	45
	46
	47	checkKey = testCase "Truncated key" $
	48	key @?= "this is our super secret key; on"
	49
	50	checkMac1 = testCase "HMAC key" $
	51	"C60B4B3540BB1B2F2EF28D1C895691CC4A5E07A38A9D3B1C3379FB485293372F" @=? hex mac1
	52
	53	checkMac2 = testCase "HMAC key account" $
	54	"5C933DC9A7D036DFCD1740B4F26D737397A1FF635EAC900F3226973503CAAAA5" @=? hex mac2
	55
	56	checkMac3 = testCase "HMAC key account time" $
	57	"7A559B20C8B607009EBCE138C200585E9D0DECA6D23B3EAD6C5E0BA6861D3858" @=? hex mac3
	58
	59	checkMac4 = testCase "HMAC key account time email" $
	60	"E42BBB02A9A5A303483CB6295C497AE51AD1D5CB10003CBE548D907E7E62F5E4" @=? hex mac4
	61