[yt-dlp.git] / test / test_aes.py

#!/usr/bin/env python3

# Allow direct execution
import os
import sys
import unittest

sys.path.insert(0, os.path.dirname(os.path.dirname(os.path.abspath(__file__))))


import base64

from yt_dlp.aes import (
    BLOCK_SIZE_BYTES,
    aes_cbc_decrypt,
    aes_cbc_decrypt_bytes,
    aes_cbc_encrypt,
    aes_ctr_decrypt,
    aes_ctr_encrypt,
    aes_decrypt,
    aes_decrypt_text,
    aes_ecb_decrypt,
    aes_ecb_encrypt,
    aes_encrypt,
    aes_gcm_decrypt_and_verify,
    aes_gcm_decrypt_and_verify_bytes,
)
from yt_dlp.dependencies import Cryptodome_AES
from yt_dlp.utils import bytes_to_intlist, intlist_to_bytes

# the encrypted data can be generate with 'devscripts/generate_aes_testdata.py'


class TestAES(unittest.TestCase):
    def setUp(self):
        self.key = self.iv = [0x20, 0x15] + 14 * [0]
        self.secret_msg = b'Secret message goes here'

    def test_encrypt(self):
        msg = b'message'
        key = list(range(16))
        encrypted = aes_encrypt(bytes_to_intlist(msg), key)
        decrypted = intlist_to_bytes(aes_decrypt(encrypted, key))
        self.assertEqual(decrypted, msg)

    def test_cbc_decrypt(self):
        data = b'\x97\x92+\xe5\x0b\xc3\x18\x91ky9m&\xb3\xb5@\xe6\x27\xc2\x96.\xc8u\x88\xab9-[\x9e|\xf1\xcd'
        decrypted = intlist_to_bytes(aes_cbc_decrypt(bytes_to_intlist(data), self.key, self.iv))
        self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)
        if Cryptodome_AES:
            decrypted = aes_cbc_decrypt_bytes(data, intlist_to_bytes(self.key), intlist_to_bytes(self.iv))
            self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)

    def test_cbc_encrypt(self):
        data = bytes_to_intlist(self.secret_msg)
        encrypted = intlist_to_bytes(aes_cbc_encrypt(data, self.key, self.iv))
        self.assertEqual(
            encrypted,
            b'\x97\x92+\xe5\x0b\xc3\x18\x91ky9m&\xb3\xb5@\xe6\'\xc2\x96.\xc8u\x88\xab9-[\x9e|\xf1\xcd')

    def test_ctr_decrypt(self):
        data = bytes_to_intlist(b'\x03\xc7\xdd\xd4\x8e\xb3\xbc\x1a*O\xdc1\x12+8Aio\xd1z\xb5#\xaf\x08')
        decrypted = intlist_to_bytes(aes_ctr_decrypt(data, self.key, self.iv))
        self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)

    def test_ctr_encrypt(self):
        data = bytes_to_intlist(self.secret_msg)
        encrypted = intlist_to_bytes(aes_ctr_encrypt(data, self.key, self.iv))
        self.assertEqual(
            encrypted,
            b'\x03\xc7\xdd\xd4\x8e\xb3\xbc\x1a*O\xdc1\x12+8Aio\xd1z\xb5#\xaf\x08')

    def test_gcm_decrypt(self):
        data = b'\x159Y\xcf5eud\x90\x9c\x85&]\x14\x1d\x0f.\x08\xb4T\xe4/\x17\xbd'
        authentication_tag = b'\xe8&I\x80rI\x07\x9d}YWuU@:e'

        decrypted = intlist_to_bytes(aes_gcm_decrypt_and_verify(
            bytes_to_intlist(data), self.key, bytes_to_intlist(authentication_tag), self.iv[:12]))
        self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)
        if Cryptodome_AES:
            decrypted = aes_gcm_decrypt_and_verify_bytes(
                data, intlist_to_bytes(self.key), authentication_tag, intlist_to_bytes(self.iv[:12]))
            self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)

    def test_decrypt_text(self):
        password = intlist_to_bytes(self.key).decode()
        encrypted = base64.b64encode(
            intlist_to_bytes(self.iv[:8])
            + b'\x17\x15\x93\xab\x8d\x80V\xcdV\xe0\t\xcdo\xc2\xa5\xd8ksM\r\xe27N\xae'
        ).decode()
        decrypted = (aes_decrypt_text(encrypted, password, 16))
        self.assertEqual(decrypted, self.secret_msg)

        password = intlist_to_bytes(self.key).decode()
        encrypted = base64.b64encode(
            intlist_to_bytes(self.iv[:8])
            + b'\x0b\xe6\xa4\xd9z\x0e\xb8\xb9\xd0\xd4i_\x85\x1d\x99\x98_\xe5\x80\xe7.\xbf\xa5\x83'
        ).decode()
        decrypted = (aes_decrypt_text(encrypted, password, 32))
        self.assertEqual(decrypted, self.secret_msg)

    def test_ecb_encrypt(self):
        data = bytes_to_intlist(self.secret_msg)
        data += [0x08] * (BLOCK_SIZE_BYTES - len(data) % BLOCK_SIZE_BYTES)
        encrypted = intlist_to_bytes(aes_ecb_encrypt(data, self.key, self.iv))
        self.assertEqual(
            encrypted,
            b'\xaa\x86]\x81\x97>\x02\x92\x9d\x1bR[[L/u\xd3&\xd1(h\xde{\x81\x94\xba\x02\xae\xbd\xa6\xd0:')

    def test_ecb_decrypt(self):
        data = bytes_to_intlist(b'\xaa\x86]\x81\x97>\x02\x92\x9d\x1bR[[L/u\xd3&\xd1(h\xde{\x81\x94\xba\x02\xae\xbd\xa6\xd0:')
        decrypted = intlist_to_bytes(aes_ecb_decrypt(data, self.key, self.iv))
        self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)


if __name__ == '__main__':
    unittest.main()
Commit	Line	Data
cc52de43	1	#!/usr/bin/env python3
54007a45	2
a7d9ded4 JMF	3	# Allow direct execution
	4	import os
	5	import sys
	6	import unittest
f8271158	7
a7d9ded4 JMF	8	sys.path.insert(0, os.path.dirname(os.path.dirname(os.path.abspath(__file__))))
a7d9ded4 JMF	9
54007a45	10
f8271158	11	import base64
f8271158	12
09906f55	13	from yt_dlp.aes import (
f8271158	14	BLOCK_SIZE_BYTES,
09906f55 ÁS	15	aes_cbc_decrypt,
	16	aes_cbc_decrypt_bytes,
	17	aes_cbc_encrypt,
	18	aes_ctr_decrypt,
	19	aes_ctr_encrypt,
f8271158	20	aes_decrypt,
	21	aes_decrypt_text,
	22	aes_ecb_decrypt,
	23	aes_ecb_encrypt,
	24	aes_encrypt,
09906f55 ÁS	25	aes_gcm_decrypt_and_verify,
09906f55 ÁS	26	aes_gcm_decrypt_and_verify_bytes,
09906f55	27	)
9b8ee23b	28	from yt_dlp.dependencies import Cryptodome_AES
7a5c1cfe	29	from yt_dlp.utils import bytes_to_intlist, intlist_to_bytes
a7d9ded4 JMF	30
	31	# the encrypted data can be generate with 'devscripts/generate_aes_testdata.py'
	32
	33
	34	class TestAES(unittest.TestCase):
	35	def setUp(self):
	36	self.key = self.iv = [0x20, 0x15] + 14 * [0]
	37	self.secret_msg = b'Secret message goes here'
	38
	39	def test_encrypt(self):
	40	msg = b'message'
	41	key = list(range(16))
	42	encrypted = aes_encrypt(bytes_to_intlist(msg), key)
	43	decrypted = intlist_to_bytes(aes_decrypt(encrypted, key))
	44	self.assertEqual(decrypted, msg)
	45
	46	def test_cbc_decrypt(self):
09906f55 ÁS	47	data = b'\x97\x92+\xe5\x0b\xc3\x18\x91ky9m&\xb3\xb5@\xe6\x27\xc2\x96.\xc8u\x88\xab9-[\x9e\|\xf1\xcd'
09906f55 ÁS	48	decrypted = intlist_to_bytes(aes_cbc_decrypt(bytes_to_intlist(data), self.key, self.iv))
a7d9ded4	49	self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)
9b8ee23b	50	if Cryptodome_AES:
09906f55 ÁS	51	decrypted = aes_cbc_decrypt_bytes(data, intlist_to_bytes(self.key), intlist_to_bytes(self.iv))
09906f55 ÁS	52	self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)
a7d9ded4	53
c9619f0a YCH	54	def test_cbc_encrypt(self):
	55	data = bytes_to_intlist(self.secret_msg)
	56	encrypted = intlist_to_bytes(aes_cbc_encrypt(data, self.key, self.iv))
	57	self.assertEqual(
	58	encrypted,
09906f55 ÁS	59	b'\x97\x92+\xe5\x0b\xc3\x18\x91ky9m&\xb3\xb5@\xe6\'\xc2\x96.\xc8u\x88\xab9-[\x9e\|\xf1\xcd')
	60
	61	def test_ctr_decrypt(self):
	62	data = bytes_to_intlist(b'\x03\xc7\xdd\xd4\x8e\xb3\xbc\x1a*O\xdc1\x12+8Aio\xd1z\xb5#\xaf\x08')
	63	decrypted = intlist_to_bytes(aes_ctr_decrypt(data, self.key, self.iv))
	64	self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)
	65
	66	def test_ctr_encrypt(self):
	67	data = bytes_to_intlist(self.secret_msg)
	68	encrypted = intlist_to_bytes(aes_ctr_encrypt(data, self.key, self.iv))
	69	self.assertEqual(
	70	encrypted,
	71	b'\x03\xc7\xdd\xd4\x8e\xb3\xbc\x1a*O\xdc1\x12+8Aio\xd1z\xb5#\xaf\x08')
	72
	73	def test_gcm_decrypt(self):
	74	data = b'\x159Y\xcf5eud\x90\x9c\x85&]\x14\x1d\x0f.\x08\xb4T\xe4/\x17\xbd'
	75	authentication_tag = b'\xe8&I\x80rI\x07\x9d}YWuU@:e'
	76
	77	decrypted = intlist_to_bytes(aes_gcm_decrypt_and_verify(
	78	bytes_to_intlist(data), self.key, bytes_to_intlist(authentication_tag), self.iv[:12]))
	79	self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)
9b8ee23b	80	if Cryptodome_AES:
09906f55 ÁS	81	decrypted = aes_gcm_decrypt_and_verify_bytes(
	82	data, intlist_to_bytes(self.key), authentication_tag, intlist_to_bytes(self.iv[:12]))
	83	self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)
c9619f0a	84
a7d9ded4	85	def test_decrypt_text(self):
0f06bcd7	86	password = intlist_to_bytes(self.key).decode()
a7d9ded4	87	encrypted = base64.b64encode(
3089bc74 S	88	intlist_to_bytes(self.iv[:8])
3089bc74 S	89	+ b'\x17\x15\x93\xab\x8d\x80V\xcdV\xe0\t\xcdo\xc2\xa5\xd8ksM\r\xe27N\xae'
0f06bcd7	90	).decode()
a7d9ded4 JMF	91	decrypted = (aes_decrypt_text(encrypted, password, 16))
	92	self.assertEqual(decrypted, self.secret_msg)
	93
0f06bcd7	94	password = intlist_to_bytes(self.key).decode()
f9544f6e	95	encrypted = base64.b64encode(
3089bc74 S	96	intlist_to_bytes(self.iv[:8])
3089bc74 S	97	+ b'\x0b\xe6\xa4\xd9z\x0e\xb8\xb9\xd0\xd4i_\x85\x1d\x99\x98_\xe5\x80\xe7.\xbf\xa5\x83'
0f06bcd7	98	).decode()
f9544f6e JMF	99	decrypted = (aes_decrypt_text(encrypted, password, 32))
	100	self.assertEqual(decrypted, self.secret_msg)
	101
a04e0055 THD	102	def test_ecb_encrypt(self):
	103	data = bytes_to_intlist(self.secret_msg)
	104	data += [0x08] * (BLOCK_SIZE_BYTES - len(data) % BLOCK_SIZE_BYTES)
	105	encrypted = intlist_to_bytes(aes_ecb_encrypt(data, self.key, self.iv))
	106	self.assertEqual(
	107	encrypted,
	108	b'\xaa\x86]\x81\x97>\x02\x92\x9d\x1bR[[L/u\xd3&\xd1(h\xde{\x81\x94\xba\x02\xae\xbd\xa6\xd0:')
	109
	110	def test_ecb_decrypt(self):
	111	data = bytes_to_intlist(b'\xaa\x86]\x81\x97>\x02\x92\x9d\x1bR[[L/u\xd3&\xd1(h\xde{\x81\x94\xba\x02\xae\xbd\xa6\xd0:')
	112	decrypted = intlist_to_bytes(aes_ecb_decrypt(data, self.key, self.iv))
	113	self.assertEqual(decrypted.rstrip(b'\x08'), self.secret_msg)
	114
582be358	115
a7d9ded4 JMF	116	if __name__ == '__main__':
a7d9ded4 JMF	117	unittest.main()