Encrypt certificate reports before uploading to HTTP URLs

crypto/aead_openssl_unittest.cc

Index: crypto/aead_openssl_unittest.cc
diff --git a/crypto/aead_openssl_unittest.cc b/crypto/aead_openssl_unittest.cc
new file mode 100644
index 0000000000000000000000000000000000000000..af6081c0f8aacda4b9b98229266d4b305a1df45a
--- /dev/null
+++ b/crypto/aead_openssl_unittest.cc
@@ -0,0 +1,49 @@
+// Copyright 2015 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#include "crypto/aead_openssl.h"
+
+#include <string>
+
+#include "testing/gtest/include/gtest/gtest.h"
+
+namespace {
+
+#if defined(USE_OPENSSL)
+
+TEST(AeadTest, SealOpen) {
+  std::string key(crypto::Aead::KeyLength(), 0);
+  crypto::Aead aead(&key);
+  std::string nonce(crypto::Aead::NonceLength(), 0);
+  std::string plaintext("this is the plaintext");
+  std::string ciphertext;
+  EXPECT_TRUE(aead.Seal(plaintext, nonce, &ciphertext));
+  EXPECT_LT(0U, ciphertext.size());
+
+  std::string decrypted;
+  EXPECT_TRUE(aead.Open(ciphertext, nonce, &decrypted));
+
+  EXPECT_EQ(plaintext, decrypted);
+}
+
+TEST(AeadTest, SealOpenWrongKey) {
+  std::string key(crypto::Aead::KeyLength(), 0);
+  std::string wrong_key(crypto::Aead::KeyLength(), 1);
+  crypto::Aead aead(&key);
+  crypto::Aead aead_wrong_key(&wrong_key);
+
+  std::string nonce(crypto::Aead::NonceLength(), 0);
+  std::string plaintext("this is the plaintext");
+  std::string ciphertext;
+  EXPECT_TRUE(aead.Seal(plaintext, nonce, &ciphertext));
+  EXPECT_LT(0U, ciphertext.size());
+
+  std::string decrypted;
+  EXPECT_FALSE(aead_wrong_key.Open(ciphertext, nonce, &decrypted));
+  EXPECT_EQ(0U, decrypted.size());
+}
+
+#endif
+
+}  // namespace