git Service of IN-Ulm e.V. Explore Help
Sign In
cbiedl
/
jose
1
0
Fork 0
Files
Tree: 26d0044aa8
Branches Tags
jose
/
tests
/
jose-jwe-enc

jose-jwe-enc 2.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. #!/bin/bash -ex
    2. 

  2. 

  3. WRAP=`jose alg -k wrap`
    4. 

  4. ENCR=`jose alg -k encr`
    5. 

  5. 

  6. tmpdir=`mktemp -d 2>/dev/null || mktemp -d -t jose`
    7. 

  7. 

  8. function onexit() {
    9. 

  9.     rm -rf $tmpdir
    10. 

  10. }
    11. 

  11. 

  12. trap exit ERR
    13. 

  13. trap onexit EXIT
    14. 

  14. 

  15. jwk=$tmpdir/jwk
    16. 

  16. jwe=$tmpdir/jwe
    17. 

  17. 

  18. function jqopt() {
    19. 

  19.     if ! which jq >/dev/null 2>&1; then
    20. 

  20.         echo "$3"
    21. 

  21.     else
    22. 

  22.         jq -r "if $2 | type | . == \"string\" then $2 else error(\"\") end" < $1
    23. 

  23.     fi
    24. 

  24. }
    25. 

  25. 

  26. function jqbopt() {
    27. 

  27.     if ! which jq >/dev/null 2>&1; then
    28. 

  28.         echo "$4"
    29. 

  29.     else
    30. 

  30.         jq -r "if $2 | type | . == \"string\" then $2 else error(\"\") end" < $1 \
    31. 

  31.             | jose b64 dec -i- \
    32. 

  32.             | jq -r "if $3 | type | . == \"string\" then $3 else error(\"\") end"
    33. 

  33.     fi
    34. 

  34. }
    35. 

  35. 

  36. for msg in "hi" "this is a longer message that is more than one block"; do
    37. 

  37.     for w in $WRAP; do
    38. 

  38.         [ $w == "dir" ] && continue
    39. 

  39. 

  40.         jose jwk gen -i "{\"alg\":\"$w\"}" -o $jwk
    41. 

  41. 

  42.         echo -n "$msg" | jose jwe enc -I- -k $jwk -o $jwe
    43. 

  43.         [ "`jqopt $jwe .header.alg $w`" == "$w" ]
    44. 

  44.         [ "`jose jwe dec -i $jwe -k $jwk -O-`" == "$msg" ]
    45. 

  45. 

  46.         for e in $ENCR; do
    47. 

  47.             echo -n "$msg" | jose jwe enc \
    48. 

  48.                 -i "{\"protected\":{\"enc\":\"$e\"}}" -I- \
    49. 

  49.                 -k $jwk -o $jwe
    50. 

  50.             [ "`jqopt $jwe .header.alg $w`" == "$w" ]
    51. 

  51.             [ "`jqbopt $jwe .protected .enc $e`" == "$e" ]
    52. 

  52.             [ "`jose jwe dec -i $jwe -k $jwk -O-`" == "$msg" ]
    53. 

  53.         done
    54. 

  54.     done
    55. 

  55. 

  56.     for e in $ENCR; do
    57. 

  57.         jose jwk gen -i "{\"alg\":\"$e\"}" -o $jwk
    58. 

  58. 

  59.         echo -n "$msg" | jose jwe enc \
    60. 

  60.             -i "{\"protected\":{\"alg\":\"dir\"}}" -I- \
    61. 

  61.             -k $jwk -o $jwe
    62. 

  62.         [ "`jqbopt $jwe .protected .alg dir`" == "dir" ]
    63. 

  63.         [ "`jqbopt $jwe .protected .enc $e`" == "$e" ]
    64. 

  64.         [ "`jose jwe dec -i $jwe -k $jwk -O-`" == "$msg" ]
    65. 

  65. 

  66.         echo -n "$msg" | jose jwe enc -I- -k $jwk -o $jwe
    67. 

  67.         [ "`jqopt $jwe .header.alg dir`" == "dir" ]
    68. 

  68.         [ "`jqbopt $jwe .protected .enc $e`" == "$e" ]
    69. 

  69.         [ "`jose jwe dec -i $jwe -k $jwk -O-`" == "$msg" ]
    70. 

  70.     done
    71. 

  71. 

  72.     for tmpl in '{"kty":"oct","bytes":32}' '{"kty":"RSA","bits":2048}' '{"kty":"EC","crv":"P-256"}'; do
    73. 

  73.         jose jwk gen -i "$tmpl" -o $jwk
    74. 

  74. 

  75.         echo -n "$msg" | jose jwe enc -I- -k $jwk -o $jwe
    76. 

  76.         [ "`jose jwe dec -i $jwe -k $jwk -O-`" == "$msg" ]
    77. 

  77.     done
    78. 

  78. done
    79.