2 * Copyright (c) 2015 Samsung Electronics Co., Ltd All Rights Reserved
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License
17 * @file test_encryption-scheme.cpp
18 * @author Krzysztof Jackiewicz (k.jackiewicz@samsung.com)
22 #include <boost/test/unit_test.hpp>
23 #include <boost/test/results_reporter.hpp>
25 #include <scheme-test.h>
30 // this is done to limit the amount of code included in binary
31 const int OLD_ENC_SCHEME = 0;
32 const int NEW_ENC_SCHEME = 1;
33 } // namespace anonymous
36 BOOST_AUTO_TEST_SUITE(ENCRYPTION_SCHEME_TEST)
38 // Test database should have the old scheme
39 BOOST_AUTO_TEST_CASE(T010_Check_old_scheme)
45 test.CheckSchemeVersion(filter, OLD_ENC_SCHEME);
48 // Newly written data should use the new scheme
49 BOOST_AUTO_TEST_CASE(T020_Check_new_scheme)
52 test.RemoveUserData();
56 test.CheckSchemeVersion(filter, NEW_ENC_SCHEME);
59 BOOST_AUTO_TEST_CASE(T030_Remove_old_scheme)
65 size_t aliases = test.CountObjects();
66 BOOST_REQUIRE_MESSAGE(aliases == 0, "All aliases should be removed");
69 BOOST_AUTO_TEST_CASE(T040_Remove_new_scheme)
72 test.RemoveUserData();
76 size_t aliases = test.CountObjects();
77 BOOST_REQUIRE_MESSAGE(aliases == 0, "All aliases should be removed");
80 // Reading old db should reencrypt objects with new scheme
81 BOOST_AUTO_TEST_CASE(T100_Read)
88 filter.exportableOnly = true;
89 test.CheckSchemeVersion(filter, NEW_ENC_SCHEME);
92 BOOST_AUTO_TEST_CASE(T110_Count_objects_after_read)
96 size_t orig = test.CountObjects();
97 BOOST_REQUIRE_MESSAGE(orig > 0, "No objects in db");
101 size_t current = test.CountObjects();
102 BOOST_REQUIRE_MESSAGE(current == orig,
103 "Original number of objects: " << orig << " Current: " << current);
106 // Reading old db with incorrect passwords should leave the scheme unchanged
107 BOOST_AUTO_TEST_CASE(T120_Read_wrong_pass)
114 test.CheckSchemeVersion(filter, OLD_ENC_SCHEME);
117 // Signing/verification should reencrypt objects with new scheme
118 BOOST_AUTO_TEST_CASE(T200_SignVerify)
124 ItemFilter filter(DataType::KEY_RSA_PUBLIC, DataType::KEY_RSA_PRIVATE);
125 test.CheckSchemeVersion(filter, NEW_ENC_SCHEME);
128 // Encryption/decryption should reencrypt objects with new scheme
129 BOOST_AUTO_TEST_CASE(T210_EncryptDecrypt)
133 test.EncryptDecrypt();
135 ItemFilter filter1(DataType::KEY_RSA_PUBLIC, DataType::KEY_RSA_PRIVATE);
136 test.CheckSchemeVersion(filter1, NEW_ENC_SCHEME);
138 ItemFilter filter2(DataType::KEY_AES);
139 test.CheckSchemeVersion(filter2, NEW_ENC_SCHEME);
142 // Chain creation should reencrypt objects with new scheme
143 BOOST_AUTO_TEST_CASE(T220_CreateChain)
149 // non exportable certificates and certificates protected with passwords can't be used for chain
151 ItemFilter filter1(DataType::CERTIFICATE);
152 filter1.exportableOnly = true;
153 filter1.noPassword = true;
154 test.CheckSchemeVersion(filter1, NEW_ENC_SCHEME);
156 ItemFilter filter2(DataType::CHAIN_CERT_0, DataType::CHAIN_CERT_15);
157 filter2.exportableOnly = true;
158 filter2.noPassword = true;
159 test.CheckSchemeVersion(filter2, NEW_ENC_SCHEME);
162 BOOST_AUTO_TEST_SUITE_END()