#!/bin/bash
-set -e
+test_data=$0
+# Verify hash mismatch is caught
d=$(mktemp -d)
-test_data=$0
+./overonion-make-key --make_INSECURE_key "$d/key"
+cp "$d/key" "$d/key2"
+./overonion e "$d/key" < "$test_data" > "$d/encrypted"
+{ cat "$test_data"; echo tamper; } | ./overonion e "$d/key2" > "$d/encrypted2"
+if ./overonion d "$d/key" < "$d/encrypted2" > /dev/null;then
+ echo "Failed to detect tampering" >&2
+ exit 1
+fi
+rm -r "$d"
+
+
+# Verify normal operation
+set -e
+d=$(mktemp -d)
./overonion-make-key --make_INSECURE_key "$d/key"
./overonion e "$d/key" < "$test_data" > "$d/encrypted"
./overonion d "$d/key" < "$d/encrypted" > "$d/roundtripped"
cmp --verbose "$d/roundtripped" "$test_data"
rm -r "$d"
+
echo PASS