Changeset View
Changeset View
Standalone View
Standalone View
web/database/utils/worker-crypto-utlis.test.js
- This file was added.
| // @flow | |||||
| import initSqlJs, { type SqliteDatabase } from 'sql.js'; | |||||
| import { | |||||
| decryptDatabaseFile, | |||||
| encryptDatabaseFile, | |||||
| generateDatabaseCryptoKey, | |||||
| } from './worker-crypto-utils.js'; | |||||
| import { getSQLiteDBVersion } from '../queries/db-queries.js'; | |||||
| const TEST_DB_VERSION = 5; | |||||
| const TAG_LENGTH = 16; | |||||
| const IV_LENGTH = 12; | |||||
| // calling export on empty schema will return empty buffer | |||||
| function setUpMockDb(database: SqliteDatabase) { | |||||
| database.exec(` | |||||
| CREATE TABLE test_table ( | |||||
| key TEXT UNIQUE PRIMARY KEY NOT NULL, | |||||
| value TEXT NOT NULL | |||||
| ); | |||||
| `); | |||||
| database.exec(` | |||||
| INSERT INTO test_table VALUES ("key_1", "value 1"); | |||||
| `); | |||||
| database.exec(`PRAGMA user_version=${TEST_DB_VERSION};`); | |||||
| } | |||||
| describe('database encryption utils', () => { | |||||
| let database; | |||||
| let cryptoKey; | |||||
| beforeAll(async () => { | |||||
| const SQL = await initSqlJs(); | |||||
| database = new SQL.Database(); | |||||
| setUpMockDb(database); | |||||
| cryptoKey = await generateDatabaseCryptoKey(); | |||||
| }); | |||||
| it('should encrypt database content', async () => { | |||||
| const dbContent: Uint8Array = database.export(); | |||||
| const { ciphertext, iv } = await encryptDatabaseFile(dbContent, cryptoKey); | |||||
| expect(iv.byteLength).toBe(IV_LENGTH); | |||||
| expect(ciphertext.length).toBe(dbContent.length + TAG_LENGTH); | |||||
| }); | |||||
| it('is decryptable', async () => { | |||||
| const dbContent: Uint8Array = database.export(); | |||||
| const encryptedData = await encryptDatabaseFile(dbContent, cryptoKey); | |||||
| const decrypted = await decryptDatabaseFile(encryptedData, cryptoKey); | |||||
| expect(decrypted).toEqual(dbContent); | |||||
| }); | |||||
| it('should fail with wrong key', async () => { | |||||
| const dbContent: Uint8Array = database.export(); | |||||
| const encryptedData = await encryptDatabaseFile(dbContent, cryptoKey); | |||||
| const newCryptoKey = await generateDatabaseCryptoKey(); | |||||
| expect(decryptDatabaseFile(encryptedData, newCryptoKey)).rejects.toThrow(); | |||||
| }); | |||||
| it('should fail with wrong content', async () => { | |||||
| const dbContent: Uint8Array = database.export(); | |||||
| const encryptedData = await encryptDatabaseFile(dbContent, cryptoKey); | |||||
| const randomizedEncryptedData = { | |||||
| ...encryptedData, | |||||
| ciphertext: encryptedData.ciphertext.map(uint => uint ^ 1), | |||||
| }; | |||||
| expect( | |||||
| decryptDatabaseFile(randomizedEncryptedData, cryptoKey), | |||||
| ).rejects.toThrow(); | |||||
| }); | |||||
| it('should create database with decrypted content', async () => { | |||||
| const dbContent: Uint8Array = database.export(); | |||||
| const encryptedData = await encryptDatabaseFile(dbContent, cryptoKey); | |||||
| const decrypted = await decryptDatabaseFile(encryptedData, cryptoKey); | |||||
| const SQL = await initSqlJs(); | |||||
| const newDatabase = new SQL.Database(decrypted); | |||||
| expect(getSQLiteDBVersion(newDatabase)).toBe(TEST_DB_VERSION); | |||||
| }); | |||||
| }); | |||||