components/test/data/webcrypto/aes_cbc.json

[
  // F.2.1 (CBC-AES128.Encrypt)
  // http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf
  {
    "key_format": "raw",
    "key": "2b7e151628aed2a6abf7158809cf4f3c",
    "iv": "000102030405060708090a0b0c0d0e0f",
    "plain_text": "6bc1bee22e409f96e93d7e117393172aae2d8a571e03ac9c9eb76fac45af8e5130c81c46a35ce411e5fbc1191a0a52eff69f2445df4f9b17ad2b417be66c3710",
    // Added a padding block: encryption of {0x10, 0x10, ... 0x10}) (not given by the
    // NIST test vector)
    "cipher_text": "7649abac8119b246cee98e9b12e9197d5086cb9b507219ee95db113a917678b273bed6b8e3c1743b7116e69e222295163ff1caa1681fac09120eca307586e1a78cb82807230e1321d3fae00d18cc2012"
  },

  // F.2.6 CBC-AES256.Decrypt [*]
  // http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf
  //
  // [*] Truncated 3 bytes off the plain text, so block 4 differs from the
  // NIST vector.
  {
    "key_format": "raw",
    "key": "603deb1015ca71be2b73aef0857d77811f352c073b6108d72d9810a30914dff4",
    "iv": "000102030405060708090a0b0c0d0e0f",
    // Truncated the last block to make it more interesting.
    "plain_text": "6bc1bee22e409f96e93d7e117393172aae2d8a571e03ac9c9eb76fac45af8e5130c81c46a35ce411e5fbc1191a0a52eff69f2445df4f9b17ad2b417be6",
    // Last block differs from source vector (due to truncation)
    "cipher_text": "f58c4c04d6e5f1ba779eabfb5f7bfbd69cfc4e967edb808d679f777bc6702c7d39f23369a9d9bacfa530e26304231461c9aaf02a6a54e9e242ccbf48c59daca6"
  },

  // Taken from encryptor_unittest.cc (EncryptorTest.EmptyEncrypt())
  {
    "key_format": "raw",
    "key": "3132383d5369787465656e4279746573",
    "iv": "5377656574205369787465656e204956",
    "plain_text": "",
    "cipher_text": "8518b8878d34e7185e300d0fcc426396"
  },

  // Fail encrypting because the IV is too small.
  {
    "key_format": "raw",
    "key": "3132383d5369787465656e4279746573",
    "iv": "5300",
    "plain_text": "0000",
    "encrypt_error": "OperationError: The \"iv\" has an unexpected length -- must be 16 bytes"
  },

  // Fail decrypting because the IV is too small.
  {
    "key_format": "raw",
    "key": "3132383d5369787465656e4279746573",
    "iv": "5300",
    "cipher_text": "8518b8878d34e7185e300d0fcc426396",
    "decrypt_error": "OperationError: The \"iv\" has an unexpected length -- must be 16 bytes"
  },

  // Fail encrypting because the IV is too large.
  {
    "key_format": "raw",
    "key": "3132383d5369787465656e4279746573",
    "iv": "5377656574205369787465656e2049560000000000000000",
    "plain_text": "0000",
    "encrypt_error": "OperationError: The \"iv\" has an unexpected length -- must be 16 bytes"
  },

  // Fail decrypting because the IV is too large.
  {
    "key_format": "raw",
    "key": "3132383d5369787465656e4279746573",
    "iv": "5377656574205369787465656e2049560000000000000000",
    "cipher_text": "8518b8878d34e7185e300d0fcc426396",
    "decrypt_error": "OperationError: The \"iv\" has an unexpected length -- must be 16 bytes"
  },

  // Fail importing the key because not enough bytes were specified.
  {
    "key_format": "raw",
    "key": "31",
    "import_error": "DataError: AES key data must be 128 or 256 bits"
  },

  // Fail importing because the wrong format was specified
  {
    "key_format": "spki",
    "key": "3132383d5369787465656e4279746573",
    "import_error": "NotSupported: Unsupported import key format for algorithm"
  },

  // Fail importing because the wrong format was specified
  {
    "key_format": "pkcs8",
    "key": "3132383d5369787465656e4279746573",
    "import_error": "NotSupported: Unsupported import key format for algorithm"
  },

  // Fail decrypting an empty cipher text
  {
    "key_format": "raw",
    "key": "603deb1015ca71be2b73aef0857d77811f352c073b6108d72d9810a30914dff4",
    "iv": "000102030405060708090a0b0c0d0e0f",
    "cipher_text": "",
    "decrypt_error": "OperationError"
  },

  // Decrypt a truncated cipher text (removed an entire block).
  {
    "key_format": "raw",
    "key": "603deb1015ca71be2b73aef0857d77811f352c073b6108d72d9810a30914dff4",
    "iv": "000102030405060708090a0b0c0d0e0f",
    "cipher_text": "f58c4c04d6e5f1ba779eabfb5f7bfbd69cfc4e967edb808d679f777bc6702c7d39f23369a9d9bacfa530e26304231461",
    "decrypt_error": "OperationError"
  },

  // Decrypt truncated cipher text (stripped 3 byte).
  {
    "key_format": "raw",
    "key": "2b7e151628aed2a6abf7158809cf4f3c",
    "iv": "000102030405060708090a0b0c0d0e0f",
    "cipher_text": "7649abac8119b246cee98e9b12e9197d5086cb9b507219ee95db113a917678b273bed6b8e3c1743b7116e69e222295163ff1caa1681fac09120eca307586e1a78cb82807230e1321d3fae00d18",
    "decrypt_error": "OperationError"
  },

  // JWK: key_ops has duplicates
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "k": "GADWrMRHwQfoNaXU5fZvTg",
      "key_ops": [ "encrypt", "decrypt", "encrypt" ]
    },
    "import_error": "DataError: The \"key_ops\" member of the JWK dictionary contains duplicate usages."
  },

  // JWK: key_ops has (unrecognized duplicates)
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "k": "GADWrMRHwQfoNaXU5fZvTg",
      "key_ops": [ "foopy", "decrypt", "foopy" ]
    },
    "import_error": "DataError: The \"key_ops\" member of the JWK dictionary contains duplicate usages."
  },

  // JWK: alg present but incorrect (expecting A128CBC).
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "alg": "A127CBC",
      "k": "GADWrMRHwQfoNaXU5fZvTg"
    },
    "import_error": "DataError: The JWK \"alg\" member was inconsistent with that specified by the Web Crypto call"
  },

  // JWK: Invalid kty
  {
    "key_format": "jwk",
    "key": {
      "kty": "foo",
      "k": "GADWrMRHwQfoNaXU5fZvTg"
    },
    "import_error": "DataError: The JWK \"kty\" member was not \"oct\""
  },

  // JWK: Missing kty.
  {
    "key_format": "jwk",
    "key": {
      "k": "GADWrMRHwQfoNaXU5fZvTg"
    },
    "import_error": "DataError: The required JWK member \"kty\" was missing"
  },

  // JWK: kty is wrong type
  {
    "key_format": "jwk",
    "key": {
      "kty": 0.1,
      "k": "GADWrMRHwQfoNaXU5fZvTg"
    },
    "import_error": "DataError: The JWK member \"kty\" must be a string"
  },

  // JWK: Invalid use
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "use": "foo",
      "k": "GADWrMRHwQfoNaXU5fZvTg"
    },
    "import_error": "DataError: The JWK \"use\" member could not be parsed"
  },

  // JWK: Invalid use (wrong type)
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "use": true,
      "k": "GADWrMRHwQfoNaXU5fZvTg"
    },
    "import_error": "DataError: The JWK member \"use\" must be a string"
  },

  // JWK: Invalid ext (wrong type)
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "k": "GADWrMRHwQfoNaXU5fZvTg",
      "ext": 0
    },
    "import_error": "DataError: The JWK member \"ext\" must be a boolean"
  },

  // JWK: Invalid key_ops (wrong type)
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "k": "GADWrMRHwQfoNaXU5fZvTg",
      "key_ops": true
    },
    "import_error": "DataError: The JWK member \"key_ops\" must be a list"
  },

  // JWK: unrecognized values in "key_ops". This is OK.
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "k": "GADWrMRHwQfoNaXU5fZvTg",
      "key_ops": ["foo", "bar", "encrypt", "decrypt"]
    }
  },

  // JWK: non-string entry in key_ops
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "k": "GADWrMRHwQfoNaXU5fZvTg",
      "key_ops": ["encrypt", 3]
    },
    "import_error": "DataError: The JWK member \"key_ops[1]\" must be a string"
  },

  // JWK: missing k
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct"
    },
    "import_error": "DataError: The required JWK member \"k\" was missing"
  },

  // JWK: Bad Base64 encoding for k
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "k": "Qk3f0DsytU8lfza2au #$% Htaw2xpop9GYyTuH0p5GghxTI="
    },
    "import_error": "DataError: The JWK member \"k\" could not be base64url decoded or contained padding"
  },

  // JWK: empty k
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "k": ""
    },
    "import_error": "DataError: AES key data must be 128 or 256 bits"
  },

  // JWK: empty k (with alg specified)
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "alg": "A128CBC",
      "k": ""
    },
    "import_error": "DataError: The JWK \"k\" member did not include the right length of key data for the given algorithm."
  },

  // JWK: k actual length (120 bits) inconsistent with alg (128 bits)
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "alg": "A128CBC",
      "k": "AVj42h0Y5aqGtE3yluKL"
    },
    "import_error": "DataError: The JWK \"k\" member did not include the right length of key data for the given algorithm."
  },

  // JWK: k actual length (192 bits) inconsistent with alg (128 bits)
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "alg": "A128CBC",
      "k": "dGhpcyAgaXMgIDI0ICBieXRlcyBsb25n"
    },
    "import_error": "DataError: The JWK \"k\" member did not include the right length of key data for the given algorithm."
  },

  // AES 192-bit is not allowed: http://crbug.com/381829
  {
    "key_format": "raw",
    "key": "5377656574205369787465656e2049560000000000000000",
    "import_error": "OperationError: 192-bit AES keys are not supported"
  },

  // JWK: AES 192-bit is not allowed: http://crbug.com/381829
  {
    "key_format": "jwk",
    "key": {
      "kty": "oct",
      "alg": "A192CBC",
      "k": "YWFhYWFhYWFhYWFhYWFhYWFhYWFhYWFh"
    },
    "import_error": "OperationError: 192-bit AES keys are not supported"
  }
]