repository: test verification of blobs/unpacked data

2024-02-03 18:13:34 +01:00 · 2024-02-03 18:13:34 +01:00 · 193140525c
commit 193140525c
parent 2dbb18128c
1 changed files with 98 additions and 0 deletions
--- a/internal/repository/repository_internal_test.go
+++ b/internal/repository/repository_internal_test.go
@ -351,3 +351,101 @@ func testStreamPack(t *testing.T, version uint) {
 		}
 	})
 }
 func TestBlobVerification(t *testing.T) {
 	repo := TestRepository(t).(*Repository)
 	type DamageType string
 	const (
 		damageData       DamageType = "data"
 		damageCompressed DamageType = "compressed"
 		damageCiphertext DamageType = "ciphertext"
 	)
 	for _, test := range []struct {
 		damage DamageType
 		msg    string
 	}{
 		{"", ""},
 		{damageData, "hash mismatch"},
 		{damageCompressed, "decompression failed"},
 		{damageCiphertext, "ciphertext verification failed"},
 	} {
 		plaintext := rtest.Random(800, 1234)
 		id := restic.Hash(plaintext)
 		if test.damage == damageData {
 			plaintext[42] ^= 0x42
 		}
 		uncompressedLength := uint(len(plaintext))
 		plaintext = repo.getZstdEncoder().EncodeAll(plaintext, nil)
 		if test.damage == damageCompressed {
 			plaintext = plaintext[:len(plaintext)-8]
 		}
 		nonce := crypto.NewRandomNonce()
 		ciphertext := append([]byte{}, nonce...)
 		ciphertext = repo.Key().Seal(ciphertext, nonce, plaintext, nil)
 		if test.damage == damageCiphertext {
 			ciphertext[42] ^= 0x42
 		}
 		err := repo.verifyCiphertext(ciphertext, int(uncompressedLength), id)
 		if test.msg == "" {
 			rtest.Assert(t, err == nil, "expected no error, got %v", err)
 		} else {
 			rtest.Assert(t, strings.Contains(err.Error(), test.msg), "expected error to contain %q, got %q", test.msg, err)
 		}
 	}
 }
 func TestUnpackedVerification(t *testing.T) {
 	repo := TestRepository(t).(*Repository)
 	type DamageType string
 	const (
 		damageData       DamageType = "data"
 		damageCompressed DamageType = "compressed"
 		damageCiphertext DamageType = "ciphertext"
 	)
 	for _, test := range []struct {
 		damage DamageType
 		msg    string
 	}{
 		{"", ""},
 		{damageData, "data mismatch"},
 		{damageCompressed, "decompression failed"},
 		{damageCiphertext, "ciphertext verification failed"},
 	} {
 		plaintext := rtest.Random(800, 1234)
 		orig := append([]byte{}, plaintext...)
 		if test.damage == damageData {
 			plaintext[42] ^= 0x42
 		}
 		compressed := []byte{2}
 		compressed = repo.getZstdEncoder().EncodeAll(plaintext, compressed)
 		if test.damage == damageCompressed {
 			compressed = compressed[:len(compressed)-8]
 		}
 		nonce := crypto.NewRandomNonce()
 		ciphertext := append([]byte{}, nonce...)
 		ciphertext = repo.Key().Seal(ciphertext, nonce, compressed, nil)
 		if test.damage == damageCiphertext {
 			ciphertext[42] ^= 0x42
 		}
 		err := repo.verifyUnpacked(ciphertext, restic.IndexFile, orig)
 		if test.msg == "" {
 			rtest.Assert(t, err == nil, "expected no error, got %v", err)
 		} else {
 			rtest.Assert(t, strings.Contains(err.Error(), test.msg), "expected error to contain %q, got %q", test.msg, err)
 		}
 	}
 }