mirror
/
oragono
şunun yansıması https://github.com/oragono/oragono
İzle 1
Yıldızla 0
Çatalla 0
Kod Sorunlar 0 Sürümler 67 Wiki Aktivite
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3902 İşlemeler
19 Dallar
Ağaç: 82be9a8423
Dallar Biçim İmleri
${ item.name }
Branş ${ searchTerm } oluştur
'82be9a8423'den
${ noResults }
oragono/irc/migrations/passwords_test.go

passwords_test.go 7.5KB
Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214 
  1. // Copyright (c) 2020 Shivaram Lingamneni <slingamn@cs.stanford.edu>

  2. // released under the MIT license

  3. 

  4. package migrations

  5. 

  6. import (

  7. 	"encoding/base64"

  8. 	"testing"

  9. )

  10. 

  11. func TestAthemePassphrases(t *testing.T) {

  12. 	var err error

  13. 

  14. 	// modules/crypto/crypt3-md5:

  15. 	err = CheckAthemePassphrase([]byte("$1$hcspif$nCm4r3S14Me9ifsOPGuJT."), []byte("shivarampassphrase"))

  16. 	if err != nil {

  17. 		t.Errorf("failed to check passphrase: %v", err)

  18. 	}

  19. 

  20. 	err = CheckAthemePassphrase([]byte("$1$hcspif$nCm4r3S14Me9ifsOPGuJT."), []byte("sh1varampassphrase"))

  21. 	if err == nil {

  22. 		t.Errorf("accepted invalid passphrase")

  23. 	}

  24. 

  25. 	err = CheckAthemePassphrase([]byte("$1$diwesm$9MjapdOyhyC.2FdHzKMzK."), []byte("1Ss1GN4q-3e8SgIJblfQxw"))

  26. 	if err != nil {

  27. 		t.Errorf("failed to check passphrase: %v", err)

  28. 	}

  29. 	err = CheckAthemePassphrase([]byte("$1$hcspif$nCm4r3S14Me9ifsOPGuJT."), []byte("sh1varampassphrase"))

  30. 	if err == nil {

  31. 		t.Errorf("accepted invalid passphrase")

  32. 	}

  33. 

  34. 	// modules/crypto/pbkdf2:

  35. 	err = CheckAthemePassphrase([]byte("khMlbBBIFya2ihyN42abc3e768663e2c4fd0e0020e46292bf9fdf44e9a51d2a2e69509cb73b4b1bf9c1b6355a1fc9ea663fcd6da902287159494f15b905e5e651d6a60f2ec834598"), []byte("password"))

  36. 	if err != nil {

  37. 		t.Errorf("failed to check passphrase: %v", err)

  38. 	}

  39. 

  40. 	err = CheckAthemePassphrase([]byte("khMlbBBIFya2ihyN42abc3e768663e2c4fd0e0020e46292bf9fdf44e9a51d2a2e69509cb73b4b1bf9c1b6355a1fc9ea663fcd6da902287159494f15b905e5e651d6a60f2ec834598"), []byte("passw0rd"))

  41. 	if err == nil {

  42. 		t.Errorf("accepted invalid passphrase")

  43. 	}

  44. 

  45. 	// modules/crypto/pbkdf2v2:

  46. 	err = CheckAthemePassphrase([]byte("$z$65$64000$1kz1I9YJPJ2gkJALbrpL2DoxRDhYPBOg60KNJMK/6do=$Cnfg6pYhBNrVXiaXYH46byrC+3HKet/XvYwvI1BvZbs=$m0hrT33gcF90n2TU3lm8tdm9V9XC4xEV13KsjuT38iY="), []byte("password"))

  47. 	if err != nil {

  48. 		t.Errorf("failed to check passphrase: %v", err)

  49. 	}

  50. 

  51. 	err = CheckAthemePassphrase([]byte("$z$65$64000$1kz1I9YJPJ2gkJALbrpL2DoxRDhYPBOg60KNJMK/6do=$Cnfg6pYhBNrVXiaXYH46byrC+3HKet/XvYwvI1BvZbs=$m0hrT33gcF90n2TU3lm8tdm9V9XC4xEV13KsjuT38iY="), []byte("passw0rd"))

  52. 	if err == nil {

  53. 		t.Errorf("accepted invalid passphrase")

  54. 	}

  55. 

  56. 	weirdHash := []byte("$z$6$64000$rWfIGzPY9qiIt7m5$VdFroDOlTQSLlFUJtpvlbp2i7sH3ZUndqwdnOvoDvt6b2AzLjaAK/lhSO/QaR2nA3Wm4ObHdl3WMW32NdtSMdw==")

  57. 	err = CheckAthemePassphrase(weirdHash, []byte("pHQpwje5CjS3_Lx0RaeS7w"))

  58. 	if err != nil {

  59. 		t.Errorf("failed to check passphrase: %v", err)

  60. 	}

  61. 	err = CheckAthemePassphrase(weirdHash, []byte("pHQpwje5CjS3-Lx0RaeS7w"))

  62. 	if err == nil {

  63. 		t.Errorf("accepted invalid passphrase")

  64. 	}

  65. }

  66. 

  67. func TestAthemeRawSha1(t *testing.T) {

  68. 	var err error

  69. 

  70. 	shivaramHash := []byte("$rawsha1$49fffa5543f21dd6effe88a79633e4073e36a828")

  71. 	err = CheckAthemePassphrase(shivaramHash, []byte("shivarampassphrase"))

  72. 	if err != nil {

  73. 		t.Errorf("failed to check passphrase: %v", err)

  74. 	}

  75. 	err = CheckAthemePassphrase(shivaramHash, []byte("edpassphrase"))

  76. 	if err == nil {

  77. 		t.Errorf("accepted invalid passphrase")

  78. 	}

  79. }

  80. 

  81. func TestOragonoLegacyPassphrase(t *testing.T) {

  82. 	shivaramHash, err := base64.StdEncoding.DecodeString("ZPLKvCGipalUo9AlDIlMzAuY/ACWvM3yr1kh7k0/wa7lLlCwaPpe2ht9LNZZlZ9FPUWggUi7D4jyg2WnJDJhJDE0JDRsN0gwVmYvNHlyNjR1U212U2Q0YU9EVmRvWngwcXNGLkkyYVc4eUZISGxYaGE4SWVrRzRt")

  83. 	if err != nil {

  84. 		panic(err)

  85. 	}

  86. 	edHash, err := base64.StdEncoding.DecodeString("ZPLKvCGipalUo9AlDIlMzAuY/ACWvM3yr1kh7k0/+42q72mFnpDZWgjmqp1Zd77rEUO8ItYe4aGwWelUJDJhJDE0JHFqSGJ5NWVJbnJTdXBRT29pUmNUUWV5U2xmWjZETlRNcXlSMExUb2RmY3l1Skw2c3BTb3lh")

  87. 	if err != nil {

  88. 		panic(err)

  89. 	}

  90. 

  91. 	err = CheckOragonoPassphraseV0(shivaramHash, []byte("shivarampassphrase"))

  92. 	if err != nil {

  93. 		t.Errorf("failed to check passphrase: %v", err)

  94. 	}

  95. 	err = CheckOragonoPassphraseV0(shivaramHash, []byte("edpassphrase"))

  96. 	if err == nil {

  97. 		t.Errorf("accepted invalid passphrase")

  98. 	}

  99. 

  100. 	err = CheckOragonoPassphraseV0(edHash, []byte("edpassphrase"))

  101. 	if err != nil {

  102. 		t.Errorf("failed to check passphrase: %v", err)

  103. 	}

  104. 	err = CheckOragonoPassphraseV0(edHash, []byte("shivarampassphrase"))

  105. 	if err == nil {

  106. 		t.Errorf("accepted invalid passphrase")

  107. 	}

  108. }

  109. 

  110. func TestAnopePassphraseRawSha1(t *testing.T) {

  111. 	var err error

  112. 	shivaramHash := []byte("sha1:49fffa5543f21dd6effe88a79633e4073e36a828")

  113. 	err = CheckAnopePassphrase(shivaramHash, []byte("shivarampassphrase"))

  114. 	if err != nil {

  115. 		t.Errorf("failed to check passphrase: %v", err)

  116. 	}

  117. 	err = CheckAnopePassphrase(shivaramHash, []byte("edpassphrase"))

  118. 	if err == nil {

  119. 		t.Errorf("accepted invalid passphrase")

  120. 	}

  121. 

  122. 	edHash := []byte("sha1:ea44e256819de972c25fef0aa277396067d6024f")

  123. 	err = CheckAnopePassphrase(edHash, []byte("edpassphrase"))

  124. 	if err != nil {

  125. 		t.Errorf("failed to check passphrase: %v", err)

  126. 	}

  127. 	err = CheckAnopePassphrase(edHash, []byte("shivarampassphrase"))

  128. 	if err == nil {

  129. 		t.Errorf("accepted invalid passphrase")

  130. 	}

  131. }

  132. 

  133. func TestAnopePassphraseRawMd5(t *testing.T) {

  134. 	var err error

  135. 	shivaramHash := []byte("md5:ce4bd864f37ffaa1b871aef22eea82ff")

  136. 	err = CheckAnopePassphrase(shivaramHash, []byte("shivarampassphrase"))

  137. 	if err != nil {

  138. 		t.Errorf("failed to check passphrase: %v", err)

  139. 	}

  140. 	err = CheckAnopePassphrase(shivaramHash, []byte("edpassphrase"))

  141. 	if err == nil {

  142. 		t.Errorf("accepted invalid passphrase")

  143. 	}

  144. 

  145. 	edHash := []byte("md5:dbf8be80e8dccdd33915b482e4390426")

  146. 	err = CheckAnopePassphrase(edHash, []byte("edpassphrase"))

  147. 	if err != nil {

  148. 		t.Errorf("failed to check passphrase: %v", err)

  149. 	}

  150. 	err = CheckAnopePassphrase(edHash, []byte("shivarampassphrase"))

  151. 	if err == nil {

  152. 		t.Errorf("accepted invalid passphrase")

  153. 	}

  154. }

  155. 

  156. func TestAnopePassphrasePlain(t *testing.T) {

  157. 	var err error

  158. 	// not actually a hash

  159. 	weirdHash := []byte("plain:YVxzMC1fMmZ+ZjM0OEAhN2FzZGYxNDJAIyFhZmE=")

  160. 	err = CheckAnopePassphrase(weirdHash, []byte("a\\s0-_2f~f348@!7asdf142@#!afa"))

  161. 	if err != nil {

  162. 		t.Errorf("failed to check passphrase: %v", err)

  163. 	}

  164. 	err = CheckAnopePassphrase(weirdHash, []byte("edpassphrase"))

  165. 	if err == nil {

  166. 		t.Errorf("accepted invalid passphrase")

  167. 	}

  168. }

  169. 

  170. func TestAnopePassphraseBcrypt(t *testing.T) {

  171. 	var err error

  172. 	shivaramHash := []byte("bcrypt:$2a$10$UyNgHyniPukGf/3A6vzBx.VMNfej0h4WzATg4ahKW2H86a0QLcVIK")

  173. 	err = CheckAnopePassphrase(shivaramHash, []byte("shivarampassphrase"))

  174. 	if err != nil {

  175. 		t.Errorf("failed to check passphrase: %v", err)

  176. 	}

  177. 	err = CheckAnopePassphrase(shivaramHash, []byte("edpassphrase"))

  178. 	if err == nil {

  179. 		t.Errorf("accepted invalid passphrase")

  180. 	}

  181. }

  182. 

  183. func TestAnopePassphraseEncSha256(t *testing.T) {

  184. 	var err error

  185. 	shivaramHash := []byte("sha256:ff337943c8c4219cd330a3075a699492e0f8b1a823bb76af0129f1f117ba0630:60250c3053f7b34e35576fc5063b8b396fe7b9ab416842117991a8e027aa72f6")

  186. 	err = CheckAnopePassphrase(shivaramHash, []byte("shivarampassphrase"))

  187. 	if err != nil {

  188. 		t.Errorf("failed to check passphrase: %v", err)

  189. 	}

  190. 	err = CheckAnopePassphrase(shivaramHash, []byte("edpassphrase"))

  191. 	if err == nil {

  192. 		t.Errorf("accepted invalid passphrase")

  193. 	}

  194. 

  195. 	edHash := []byte("sha256:93a430c8c3c6917dc6e9a32ac1aba90bc5768265278a45b86eacd636fc723d8f:10ea72683a499c155d72cd3571cb80e5050280620f789a44492c0e0c7956942f")

  196. 	err = CheckAnopePassphrase(edHash, []byte("edpassphrase"))

  197. 	if err != nil {

  198. 		t.Errorf("failed to check passphrase: %v", err)

  199. 	}

  200. 	err = CheckAnopePassphrase(edHash, []byte("shivarampassphrase"))

  201. 	if err == nil {

  202. 		t.Errorf("accepted invalid passphrase")

  203. 	}

  204. 

  205. 	weirdHash := []byte("sha256:06d11a06025354e37a7ddf48913a1c9831ffab47d04e4c22a89fd7835abcb6cc:3137788c2749da0419bc9df320991d2d72495c7065da4f39004fd21710601409")

  206. 	err = CheckAnopePassphrase(weirdHash, []byte("1Ss1GN4q-3e8SgIJblfQxw"))

  207. 	if err != nil {

  208. 		t.Errorf("failed to check passphrase: %v", err)

  209. 	}

  210. 	err = CheckAnopePassphrase(weirdHash, []byte("shivarampassphrase"))

  211. 	if err == nil {

  212. 		t.Errorf("accepted invalid passphrase")

  213. 	}

  214. }