From 227df68ebe9bc83a530cfe9f6f017f79ff5edc57 Mon Sep 17 00:00:00 2001
From: Richard Kettlewell <Richard.Kettlewell@thalesesecurity.com>
Date: Thu, 2 Aug 2018 16:19:28 +0100
Subject: [PATCH] Exercise GCM in tests

re #6
---
 symmetric_test.go | 33 ++++++++++++++++++++++++++++++++-
 1 file changed, 32 insertions(+), 1 deletion(-)

diff --git a/symmetric_test.go b/symmetric_test.go
index 2a1a9de..3e91cd7 100644
--- a/symmetric_test.go
+++ b/symmetric_test.go
@@ -86,10 +86,19 @@ func testHardSymmetric(t *testing.T, keytype int, bits int) {
 		enc.Close()
 		dec.Close()
 	})
+	if bits == 128 {
+		t.Run("GCM", func(t *testing.T) {
+			aead, err := cipher.NewGCM(key2)
+			if err != nil {
+				t.Errorf("cipher.NewGCM: %v", err)
+				return
+			}
+			testAEADMode(t, aead)
+		})
+	}
 	// TODO CFB
 	// TODO OFB
 	// TODO CTR
-	// TODO GCM
 }
 
 func testSymmetricBlock(t *testing.T, encryptKey cipher.Block, decryptKey cipher.Block) {
@@ -179,6 +188,28 @@ func testSymmetricMode(t *testing.T, encrypt cipher.BlockMode, decrypt cipher.Bl
 	}
 }
 
+func testAEADMode(t *testing.T, aead cipher.AEAD) {
+	nonce := make([]byte, aead.NonceSize())
+	plaintext := make([]byte, 127)
+	for i := 0; i < len(plaintext); i++ {
+		plaintext[i] = byte(i)
+	}
+	additionalData := make([]byte, 129)
+	for i := 0; i < len(additionalData); i++ {
+		additionalData[i] = byte(i + 16)
+	}
+	ciphertext := aead.Seal([]byte{}, nonce, plaintext, additionalData)
+	decrypted, err := aead.Open([]byte{}, nonce, ciphertext, additionalData)
+	if err != nil {
+		t.Errorf("aead.Open: %s", err)
+		return
+	}
+	if bytes.Compare(plaintext, decrypted) != 0 {
+		t.Errorf("aead.Open: mismatch")
+		return
+	}
+}
+
 func BenchmarkCBC(b *testing.B) {
 	ConfigureFromFile("config")
 	var err error