move CTR-specific test cases to specialized test class

Author: overheadhunter

CryptomatorCryptoLib.xcodeproj/project.pbxproj

@@ -34,6 +34,7 @@
 		9E9BB81624558DFF00F9FF51 /* MasterkeyTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = 9E9BB81524558DFF00F9FF51 /* MasterkeyTests.swift */; };
 		9EB822C1248AF82200879838 /* AesCtr.swift in Sources */ = {isa = PBXBuildFile; fileRef = 9EB822C0248AF82200879838 /* AesCtr.swift */; };
 		9EB822C3248AF9C500879838 /* AesCtrTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = 9EB822C2248AF9C500879838 /* AesCtrTests.swift */; };
+		9EBEC947283782E6002210DE /* CtrCryptorTests.swift in Sources */ = {isa = PBXBuildFile; fileRef = 9EBEC946283782E6002210DE /* CtrCryptorTests.swift */; };
 /* End PBXBuildFile section */
 
 /* Begin PBXContainerItemProxy section */
@@ -97,6 +98,7 @@
 		9E9BB81524558DFF00F9FF51 /* MasterkeyTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = MasterkeyTests.swift; sourceTree = "<group>"; };
 		9EB822C0248AF82200879838 /* AesCtr.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = AesCtr.swift; sourceTree = "<group>"; };
 		9EB822C2248AF9C500879838 /* AesCtrTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = AesCtrTests.swift; sourceTree = "<group>"; };
+		9EBEC946283782E6002210DE /* CtrCryptorTests.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = CtrCryptorTests.swift; sourceTree = "<group>"; };
 /* End PBXFileReference section */
 
 /* Begin PBXFrameworksBuildPhase section */
@@ -171,6 +173,7 @@
 				9EB822C2248AF9C500879838 /* AesCtrTests.swift */,
 				9E44EEA724599C7800A37B01 /* AesSivTests.swift */,
 				9E35C4EA24576A3D0006E50C /* CryptorTests.swift */,
+				9EBEC946283782E6002210DE /* CtrCryptorTests.swift */,
 				74A5B57D25A86A69002D10F7 /* CryptoSupportMock.swift */,
 				74A5B57525A869DD002D10F7 /* MasterkeyFileTests.swift */,
 				9E9BB81524558DFF00F9FF51 /* MasterkeyTests.swift */,
@@ -443,6 +446,7 @@
 			files = (
 				74A5B57E25A86A69002D10F7 /* CryptoSupportMock.swift in Sources */,
 				9E44EEA92459AB1500A37B01 /* AesSivTests.swift in Sources */,
+				9EBEC947283782E6002210DE /* CtrCryptorTests.swift in Sources */,
 				9EB822C3248AF9C500879838 /* AesCtrTests.swift in Sources */,
 				74A5B57625A869DD002D10F7 /* MasterkeyFileTests.swift in Sources */,
 				9E9BB81624558DFF00F9FF51 /* MasterkeyTests.swift in Sources */,

Sources/CryptomatorCryptoLib/Cryptor.swift

@@ -66,8 +66,8 @@ public class Cryptor {
 		return contentCryptor.nonceLen + fileHeaderPayloadSize + contentCryptor.tagLen
 	}
 
-	private let cleartextChunkSize = 32 * 1024
-	private var ciphertextChunkSize: Int {
+	public let cleartextChunkSize = 32 * 1024
+	public var ciphertextChunkSize: Int {
 		return contentCryptor.nonceLen + cleartextChunkSize + contentCryptor.tagLen
 	}
 

Tests/CryptomatorCryptoLibTests/CryptorTests.swift

@@ -10,17 +10,19 @@ import XCTest
 @testable import CryptomatorCryptoLib
 
 class CryptorTests: XCTestCase {
+	var contentCryptor: ContentCryptor!
 	var cryptor: Cryptor!
 	var tmpDirURL: URL!
 
-	override func setUpWithError() throws {
-		let aesKey = [UInt8](repeating: 0x55, count: 32)
-		let macKey = [UInt8](repeating: 0x77, count: 32)
-		let masterkey = Masterkey.createFromRaw(aesMasterKey: aesKey, macMasterKey: macKey)
-		let cryptoSupport = CryptoSupportMock()
-		let contentCryptor = CtrThenHmacContentCryptor(macKey: macKey, cryptoSupport: cryptoSupport)
-		cryptor = Cryptor(masterkey: masterkey, cryptoSupport: cryptoSupport, contentCryptor: contentCryptor)
+	override class var defaultTestSuite: XCTestSuite {
+		// Return empty `XCTestSuite` so that no tests from this "abstract" `XCTestCase` is run.
+		// Make sure to override this in subclasses so that the implemented test case can run.
+		return XCTestSuite(name: "InterfaceTests Excluded")
+	}
 
+	func setUpWithError(masterkey: Masterkey, cryptoSupport: CryptoSupport, contentCryptor: ContentCryptor) throws {
+		self.contentCryptor = contentCryptor
+		cryptor = Cryptor(masterkey: masterkey, cryptoSupport: cryptoSupport, contentCryptor: contentCryptor)
 		tmpDirURL = URL(fileURLWithPath: NSTemporaryDirectory(), isDirectory: true).appendingPathComponent(UUID().uuidString, isDirectory: true)
 		try FileManager.default.createDirectory(at: tmpDirURL, withIntermediateDirectories: true)
 	}
@@ -59,50 +61,6 @@ class CryptorTests: XCTestCase {
 		}
 	}
 
-	func testCreateHeader() throws {
-		let header = try cryptor.createHeader()
-		XCTAssertEqual([UInt8](repeating: 0xF0, count: 16), header.nonce)
-		XCTAssertEqual([UInt8](repeating: 0xF0, count: 32), header.contentKey)
-	}
-
-	func testEncryptHeader() throws {
-		let header = try cryptor.createHeader()
-		let encrypted = try cryptor.encryptHeader(header)
-		let expected: [UInt8] = [
-			0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0,
-			0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0,
-			0x0D, 0x91, 0xF2, 0x9C, 0xC6, 0x35, 0xD7, 0x5E,
-			0x1E, 0x42, 0x23, 0x1E, 0xC7, 0x90, 0x57, 0xE3,
-			0x8D, 0x98, 0xF3, 0x58, 0x07, 0x2C, 0x9F, 0x03,
-			0xBC, 0xEA, 0x5A, 0x98, 0x3B, 0x68, 0x62, 0x89,
-			0x3E, 0xBC, 0x5E, 0x5E, 0x27, 0x39, 0xCB, 0x8E,
-			0xD4, 0x27, 0x61, 0x06, 0x8E, 0x7F, 0x3A, 0x4E,
-			0xC7, 0x9F, 0x4D, 0x3E, 0x20, 0x57, 0xDC, 0xE4,
-			0x65, 0xA5, 0xFF, 0x93, 0xC2, 0x7B, 0xD2, 0xB8,
-			0x3F, 0xE3, 0xD0, 0x8C, 0xB3, 0x92, 0xED, 0x96
-		]
-		XCTAssertEqual(expected, encrypted)
-	}
-
-	func testDecryptHeader() throws {
-		let ciphertext: [UInt8] = [
-			0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0,
-			0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0,
-			0x0D, 0x91, 0xF2, 0x9C, 0xC6, 0x35, 0xD7, 0x5E,
-			0x1E, 0x42, 0x23, 0x1E, 0xC7, 0x90, 0x57, 0xE3,
-			0x8D, 0x98, 0xF3, 0x58, 0x07, 0x2C, 0x9F, 0x03,
-			0xBC, 0xEA, 0x5A, 0x98, 0x3B, 0x68, 0x62, 0x89,
-			0x3E, 0xBC, 0x5E, 0x5E, 0x27, 0x39, 0xCB, 0x8E,
-			0xD4, 0x27, 0x61, 0x06, 0x8E, 0x7F, 0x3A, 0x4E,
-			0xC7, 0x9F, 0x4D, 0x3E, 0x20, 0x57, 0xDC, 0xE4,
-			0x65, 0xA5, 0xFF, 0x93, 0xC2, 0x7B, 0xD2, 0xB8,
-			0x3F, 0xE3, 0xD0, 0x8C, 0xB3, 0x92, 0xED, 0x96
-		]
-		let decrypted = try cryptor.decryptHeader(ciphertext)
-		XCTAssertEqual([UInt8](repeating: 0xF0, count: 16), decrypted.nonce)
-		XCTAssertEqual([UInt8](repeating: 0xF0, count: 32), decrypted.contentKey)
-	}
-
 	func testEncryptAndDecryptContent() throws {
 		let originalData = Data(repeating: 0x0F, count: 65 * 1024)
 		let originalURL = tmpDirURL.appendingPathComponent(UUID().uuidString, isDirectory: false)
@@ -128,7 +86,7 @@ class CryptorTests: XCTestCase {
 	}
 
 	func testEncryptAndDecryptSingleChunk() throws {
-		let nonce = [UInt8](repeating: 0x00, count: 16)
+		let nonce = [UInt8](repeating: 0x00, count: contentCryptor.nonceLen)
 		let filekey = [UInt8](repeating: 0x00, count: 32)
 		let cleartext = [UInt8]("hello world".data(using: .ascii)!)
 
@@ -139,47 +97,57 @@ class CryptorTests: XCTestCase {
 	}
 
 	func testCalculateCiphertextSize() {
+		let overheadPerChunk = contentCryptor.nonceLen + contentCryptor.tagLen
+
 		XCTAssertEqual(0, cryptor.calculateCiphertextSize(0))
 
-		XCTAssertEqual(1 + 48, cryptor.calculateCiphertextSize(1))
-		XCTAssertEqual(32 * 1024 - 1 + 48, cryptor.calculateCiphertextSize(32 * 1024 - 1))
-		XCTAssertEqual(32 * 1024 + 48, cryptor.calculateCiphertextSize(32 * 1024))
+		XCTAssertEqual(1 + overheadPerChunk, cryptor.calculateCiphertextSize(1))
+		XCTAssertEqual(32 * 1024 - 1 + overheadPerChunk, cryptor.calculateCiphertextSize(32 * 1024 - 1))
+		XCTAssertEqual(32 * 1024 + overheadPerChunk, cryptor.calculateCiphertextSize(32 * 1024))
 
-		XCTAssertEqual(32 * 1024 + 1 + 48 * 2, cryptor.calculateCiphertextSize(32 * 1024 + 1))
-		XCTAssertEqual(32 * 1024 + 2 + 48 * 2, cryptor.calculateCiphertextSize(32 * 1024 + 2))
-		XCTAssertEqual(64 * 1024 - 1 + 48 * 2, cryptor.calculateCiphertextSize(64 * 1024 - 1))
-		XCTAssertEqual(64 * 1024 + 48 * 2, cryptor.calculateCiphertextSize(64 * 1024))
+		XCTAssertEqual(32 * 1024 + 1 + overheadPerChunk * 2, cryptor.calculateCiphertextSize(32 * 1024 + 1))
+		XCTAssertEqual(32 * 1024 + 2 + overheadPerChunk * 2, cryptor.calculateCiphertextSize(32 * 1024 + 2))
+		XCTAssertEqual(64 * 1024 - 1 + overheadPerChunk * 2, cryptor.calculateCiphertextSize(64 * 1024 - 1))
+		XCTAssertEqual(64 * 1024 + overheadPerChunk * 2, cryptor.calculateCiphertextSize(64 * 1024))
 
-		XCTAssertEqual(64 * 1024 + 1 + 48 * 3, cryptor.calculateCiphertextSize(64 * 1024 + 1))
+		XCTAssertEqual(64 * 1024 + 1 + overheadPerChunk * 3, cryptor.calculateCiphertextSize(64 * 1024 + 1))
 	}
 
 	func testCalculateCleartextSize() throws {
+		let overheadPerChunk = contentCryptor.nonceLen + contentCryptor.tagLen
+
 		XCTAssertEqual(0, try cryptor.calculateCleartextSize(0))
 
-		XCTAssertEqual(1, try cryptor.calculateCleartextSize(1 + 48))
-		XCTAssertEqual(32 * 1024 - 1, try cryptor.calculateCleartextSize(32 * 1024 - 1 + 48))
-		XCTAssertEqual(32 * 1024, try cryptor.calculateCleartextSize(32 * 1024 + 48))
+		XCTAssertEqual(1, try cryptor.calculateCleartextSize(1 + overheadPerChunk))
+		XCTAssertEqual(32 * 1024 - 1, try cryptor.calculateCleartextSize(32 * 1024 - 1 + overheadPerChunk))
+		XCTAssertEqual(32 * 1024, try cryptor.calculateCleartextSize(32 * 1024 + overheadPerChunk))
 
-		XCTAssertEqual(32 * 1024 + 1, try cryptor.calculateCleartextSize(32 * 1024 + 1 + 48 * 2))
-		XCTAssertEqual(32 * 1024 + 2, try cryptor.calculateCleartextSize(32 * 1024 + 2 + 48 * 2))
-		XCTAssertEqual(64 * 1024 - 1, try cryptor.calculateCleartextSize(64 * 1024 - 1 + 48 * 2))
-		XCTAssertEqual(64 * 1024, try cryptor.calculateCleartextSize(64 * 1024 + 48 * 2))
+		XCTAssertEqual(32 * 1024 + 1, try cryptor.calculateCleartextSize(32 * 1024 + 1 + overheadPerChunk * 2))
+		XCTAssertEqual(32 * 1024 + 2, try cryptor.calculateCleartextSize(32 * 1024 + 2 + overheadPerChunk * 2))
+		XCTAssertEqual(64 * 1024 - 1, try cryptor.calculateCleartextSize(64 * 1024 - 1 + overheadPerChunk * 2))
+		XCTAssertEqual(64 * 1024, try cryptor.calculateCleartextSize(64 * 1024 + overheadPerChunk * 2))
 
-		XCTAssertEqual(64 * 1024 + 1, try cryptor.calculateCleartextSize(64 * 1024 + 1 + 48 * 3))
+		XCTAssertEqual(64 * 1024 + 1, try cryptor.calculateCleartextSize(64 * 1024 + 1 + overheadPerChunk * 3))
 	}
 
 	func testCalculateCleartextSizeWithInvalidCiphertextSize() throws {
 		XCTAssertThrowsError(try cryptor.calculateCleartextSize(1), "invalid ciphertext size") { error in
 			XCTAssertEqual(.invalidParameter("Method not defined for input value 1"), error as? CryptoError)
 		}
-		XCTAssertThrowsError(try cryptor.calculateCleartextSize(48), "invalid ciphertext size") { error in
-			XCTAssertEqual(.invalidParameter("Method not defined for input value 48"), error as? CryptoError)
+
+		let emptyPayload = contentCryptor.nonceLen + contentCryptor.tagLen
+		XCTAssertThrowsError(try cryptor.calculateCleartextSize(emptyPayload), "invalid ciphertext size") { error in
+			XCTAssertEqual(.invalidParameter("Method not defined for input value \(emptyPayload)"), error as? CryptoError)
 		}
-		XCTAssertThrowsError(try cryptor.calculateCleartextSize(32 * 1024 + 1 + 48), "invalid ciphertext size") { error in
-			XCTAssertEqual(.invalidParameter("Method not defined for input value 32817"), error as? CryptoError)
+
+		let oneChunkPlusOneByte = cryptor.ciphertextChunkSize + 1
+		XCTAssertThrowsError(try cryptor.calculateCleartextSize(oneChunkPlusOneByte), "invalid ciphertext size") { error in
+			XCTAssertEqual(.invalidParameter("Method not defined for input value \(oneChunkPlusOneByte)"), error as? CryptoError)
 		}
-		XCTAssertThrowsError(try cryptor.calculateCleartextSize(32 * 1024 + 48 * 2), "invalid ciphertext size") { error in
-			XCTAssertEqual(.invalidParameter("Method not defined for input value 32864"), error as? CryptoError)
+
+		let oneChunkPlusEmptySecondChunk = cryptor.ciphertextChunkSize + contentCryptor.nonceLen + contentCryptor.tagLen
+		XCTAssertThrowsError(try cryptor.calculateCleartextSize(oneChunkPlusEmptySecondChunk), "invalid ciphertext size") { error in
+			XCTAssertEqual(.invalidParameter("Method not defined for input value \(oneChunkPlusEmptySecondChunk)"), error as? CryptoError)
 		}
 	}
 }

Tests/CryptomatorCryptoLibTests/CtrCryptorTests.swift

@@ -0,0 +1,70 @@
+//
+//  CryptorTests.swift
+//  CryptomatorCryptoLibTests
+//
+//  Created by Sebastian Stenzel on 27.04.20.
+//  Copyright © 2020 Skymatic GmbH. All rights reserved.
+//
+
+import XCTest
+@testable import CryptomatorCryptoLib
+
+class CtrCryptorTest: CryptorTests {
+	override class var defaultTestSuite: XCTestSuite {
+		return XCTestSuite(forTestCaseClass: CtrCryptorTest.self)
+	}
+
+	override func setUpWithError() throws {
+		let aesKey = [UInt8](repeating: 0x55, count: 32)
+		let macKey = [UInt8](repeating: 0x77, count: 32)
+		let masterkey = Masterkey.createFromRaw(aesMasterKey: aesKey, macMasterKey: macKey)
+		let cryptoSupport = CryptoSupportMock()
+		let contentCryptor = CtrThenHmacContentCryptor(macKey: macKey, cryptoSupport: cryptoSupport)
+
+		try super.setUpWithError(masterkey: masterkey, cryptoSupport: cryptoSupport, contentCryptor: contentCryptor)
+	}
+
+	func testCreateHeader() throws {
+		let header = try cryptor.createHeader()
+		XCTAssertEqual([UInt8](repeating: 0xF0, count: 16), header.nonce)
+		XCTAssertEqual([UInt8](repeating: 0xF0, count: 32), header.contentKey)
+	}
+
+	func testEncryptHeader() throws {
+		let header = try cryptor.createHeader()
+		let encrypted = try cryptor.encryptHeader(header)
+		let expected: [UInt8] = [
+			0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0,
+			0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0,
+			0x0D, 0x91, 0xF2, 0x9C, 0xC6, 0x35, 0xD7, 0x5E,
+			0x1E, 0x42, 0x23, 0x1E, 0xC7, 0x90, 0x57, 0xE3,
+			0x8D, 0x98, 0xF3, 0x58, 0x07, 0x2C, 0x9F, 0x03,
+			0xBC, 0xEA, 0x5A, 0x98, 0x3B, 0x68, 0x62, 0x89,
+			0x3E, 0xBC, 0x5E, 0x5E, 0x27, 0x39, 0xCB, 0x8E,
+			0xD4, 0x27, 0x61, 0x06, 0x8E, 0x7F, 0x3A, 0x4E,
+			0xC7, 0x9F, 0x4D, 0x3E, 0x20, 0x57, 0xDC, 0xE4,
+			0x65, 0xA5, 0xFF, 0x93, 0xC2, 0x7B, 0xD2, 0xB8,
+			0x3F, 0xE3, 0xD0, 0x8C, 0xB3, 0x92, 0xED, 0x96
+		]
+		XCTAssertEqual(expected, encrypted)
+	}
+
+	func testDecryptHeader() throws {
+		let ciphertext: [UInt8] = [
+			0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0,
+			0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0, 0xF0,
+			0x0D, 0x91, 0xF2, 0x9C, 0xC6, 0x35, 0xD7, 0x5E,
+			0x1E, 0x42, 0x23, 0x1E, 0xC7, 0x90, 0x57, 0xE3,
+			0x8D, 0x98, 0xF3, 0x58, 0x07, 0x2C, 0x9F, 0x03,
+			0xBC, 0xEA, 0x5A, 0x98, 0x3B, 0x68, 0x62, 0x89,
+			0x3E, 0xBC, 0x5E, 0x5E, 0x27, 0x39, 0xCB, 0x8E,
+			0xD4, 0x27, 0x61, 0x06, 0x8E, 0x7F, 0x3A, 0x4E,
+			0xC7, 0x9F, 0x4D, 0x3E, 0x20, 0x57, 0xDC, 0xE4,
+			0x65, 0xA5, 0xFF, 0x93, 0xC2, 0x7B, 0xD2, 0xB8,
+			0x3F, 0xE3, 0xD0, 0x8C, 0xB3, 0x92, 0xED, 0x96
+		]
+		let decrypted = try cryptor.decryptHeader(ciphertext)
+		XCTAssertEqual([UInt8](repeating: 0xF0, count: 16), decrypted.nonce)
+		XCTAssertEqual([UInt8](repeating: 0xF0, count: 32), decrypted.contentKey)
+	}
+}