2014-05-02 15:17:29 +02:00
|
|
|
/* BEGIN_HEADER */
|
2015-03-09 18:05:11 +01:00
|
|
|
#include "mbedtls/ccm.h"
|
2014-05-02 15:17:29 +02:00
|
|
|
/* END_HEADER */
|
|
|
|
|
|
|
|
/* BEGIN_DEPENDENCIES
|
2015-04-08 12:49:31 +02:00
|
|
|
* depends_on:MBEDTLS_CCM_C
|
2014-05-02 15:17:29 +02:00
|
|
|
* END_DEPENDENCIES
|
|
|
|
*/
|
|
|
|
|
2015-04-08 12:49:31 +02:00
|
|
|
/* BEGIN_CASE depends_on:MBEDTLS_SELF_TEST:MBEDTLS_AES_C */
|
2017-05-30 15:23:15 +02:00
|
|
|
void mbedtls_ccm_self_test( )
|
2014-05-02 15:17:29 +02:00
|
|
|
{
|
2016-09-09 10:10:28 +02:00
|
|
|
TEST_ASSERT( mbedtls_ccm_self_test( 1 ) == 0 );
|
2014-05-02 15:17:29 +02:00
|
|
|
}
|
|
|
|
/* END_CASE */
|
2014-05-06 12:12:45 +02:00
|
|
|
|
|
|
|
/* BEGIN_CASE */
|
2015-04-28 18:02:54 +02:00
|
|
|
void mbedtls_ccm_setkey( int cipher_id, int key_size, int result )
|
2014-05-06 12:12:45 +02:00
|
|
|
{
|
2015-04-08 12:49:31 +02:00
|
|
|
mbedtls_ccm_context ctx;
|
2014-05-06 12:12:45 +02:00
|
|
|
unsigned char key[32];
|
|
|
|
int ret;
|
|
|
|
|
2015-04-28 18:02:54 +02:00
|
|
|
mbedtls_ccm_init( &ctx );
|
|
|
|
|
2014-05-06 12:12:45 +02:00
|
|
|
memset( key, 0x2A, sizeof( key ) );
|
|
|
|
TEST_ASSERT( (unsigned) key_size <= 8 * sizeof( key ) );
|
|
|
|
|
2015-04-28 18:02:54 +02:00
|
|
|
ret = mbedtls_ccm_setkey( &ctx, cipher_id, key, key_size );
|
2014-05-06 12:12:45 +02:00
|
|
|
TEST_ASSERT( ret == result );
|
|
|
|
|
2014-07-10 15:26:12 +02:00
|
|
|
exit:
|
2015-04-08 12:49:31 +02:00
|
|
|
mbedtls_ccm_free( &ctx );
|
2014-05-06 12:12:45 +02:00
|
|
|
}
|
|
|
|
/* END_CASE */
|
2014-05-06 12:13:09 +02:00
|
|
|
|
2015-04-08 12:49:31 +02:00
|
|
|
/* BEGIN_CASE depends_on:MBEDTLS_AES_C */
|
2014-05-06 18:07:24 +02:00
|
|
|
void ccm_lengths( int msg_len, int iv_len, int add_len, int tag_len, int res )
|
|
|
|
{
|
2015-04-08 12:49:31 +02:00
|
|
|
mbedtls_ccm_context ctx;
|
2014-05-06 18:07:24 +02:00
|
|
|
unsigned char key[16];
|
|
|
|
unsigned char msg[10];
|
|
|
|
unsigned char iv[14];
|
|
|
|
unsigned char add[10];
|
|
|
|
unsigned char out[10];
|
|
|
|
unsigned char tag[18];
|
|
|
|
int decrypt_ret;
|
|
|
|
|
2015-04-28 18:02:54 +02:00
|
|
|
mbedtls_ccm_init( &ctx );
|
|
|
|
|
2014-05-06 18:07:24 +02:00
|
|
|
memset( key, 0, sizeof( key ) );
|
|
|
|
memset( msg, 0, sizeof( msg ) );
|
|
|
|
memset( iv, 0, sizeof( iv ) );
|
|
|
|
memset( add, 0, sizeof( add ) );
|
|
|
|
memset( out, 0, sizeof( out ) );
|
|
|
|
memset( tag, 0, sizeof( tag ) );
|
|
|
|
|
2015-04-28 18:02:54 +02:00
|
|
|
TEST_ASSERT( mbedtls_ccm_setkey( &ctx, MBEDTLS_CIPHER_ID_AES,
|
2014-05-06 18:07:24 +02:00
|
|
|
key, 8 * sizeof( key ) ) == 0 );
|
|
|
|
|
2015-04-08 12:49:31 +02:00
|
|
|
TEST_ASSERT( mbedtls_ccm_encrypt_and_tag( &ctx, msg_len, iv, iv_len, add, add_len,
|
2014-05-06 18:07:24 +02:00
|
|
|
msg, out, tag, tag_len ) == res );
|
|
|
|
|
2015-04-08 12:49:31 +02:00
|
|
|
decrypt_ret = mbedtls_ccm_auth_decrypt( &ctx, msg_len, iv, iv_len, add, add_len,
|
2014-05-06 18:07:24 +02:00
|
|
|
msg, out, tag, tag_len );
|
|
|
|
|
|
|
|
if( res == 0 )
|
2015-04-08 12:49:31 +02:00
|
|
|
TEST_ASSERT( decrypt_ret == MBEDTLS_ERR_CCM_AUTH_FAILED );
|
2014-05-06 18:07:24 +02:00
|
|
|
else
|
|
|
|
TEST_ASSERT( decrypt_ret == res );
|
|
|
|
|
2014-07-10 15:26:12 +02:00
|
|
|
exit:
|
2015-04-08 12:49:31 +02:00
|
|
|
mbedtls_ccm_free( &ctx );
|
2014-05-06 18:07:24 +02:00
|
|
|
}
|
|
|
|
/* END_CASE */
|
|
|
|
|
2018-05-14 15:32:41 +02:00
|
|
|
/* BEGIN_CASE depends_on:MBEDTLS_AES_C */
|
|
|
|
void ccm_star_lengths( int msg_len, int iv_len, int add_len, int tag_len,
|
|
|
|
int res )
|
|
|
|
{
|
|
|
|
mbedtls_ccm_context ctx;
|
|
|
|
unsigned char key[16];
|
|
|
|
unsigned char msg[10];
|
|
|
|
unsigned char iv[14];
|
|
|
|
unsigned char add[10];
|
|
|
|
unsigned char out[10];
|
|
|
|
unsigned char tag[18];
|
|
|
|
int decrypt_ret;
|
|
|
|
|
|
|
|
mbedtls_ccm_init( &ctx );
|
|
|
|
|
|
|
|
memset( key, 0, sizeof( key ) );
|
|
|
|
memset( msg, 0, sizeof( msg ) );
|
|
|
|
memset( iv, 0, sizeof( iv ) );
|
|
|
|
memset( add, 0, sizeof( add ) );
|
|
|
|
memset( out, 0, sizeof( out ) );
|
|
|
|
memset( tag, 0, sizeof( tag ) );
|
|
|
|
|
|
|
|
TEST_ASSERT( mbedtls_ccm_setkey( &ctx, MBEDTLS_CIPHER_ID_AES,
|
|
|
|
key, 8 * sizeof( key ) ) == 0 );
|
|
|
|
|
|
|
|
TEST_ASSERT( mbedtls_ccm_star_encrypt_and_tag( &ctx, msg_len, iv, iv_len,
|
|
|
|
add, add_len, msg, out, tag, tag_len ) == res );
|
|
|
|
|
|
|
|
decrypt_ret = mbedtls_ccm_star_auth_decrypt( &ctx, msg_len, iv, iv_len, add,
|
|
|
|
add_len, msg, out, tag, tag_len );
|
|
|
|
|
|
|
|
if( res == 0 && tag_len != 0 )
|
|
|
|
TEST_ASSERT( decrypt_ret == MBEDTLS_ERR_CCM_AUTH_FAILED );
|
|
|
|
else
|
|
|
|
TEST_ASSERT( decrypt_ret == res );
|
|
|
|
|
|
|
|
exit:
|
|
|
|
mbedtls_ccm_free( &ctx );
|
|
|
|
}
|
|
|
|
/* END_CASE */
|
|
|
|
|
2014-05-06 12:13:09 +02:00
|
|
|
/* BEGIN_CASE */
|
2017-06-09 05:32:58 +02:00
|
|
|
void mbedtls_ccm_encrypt_and_tag( int cipher_id, HexParam_t * key,
|
|
|
|
HexParam_t * msg, HexParam_t * iv,
|
|
|
|
HexParam_t * add, HexParam_t * result )
|
2014-05-06 12:13:09 +02:00
|
|
|
{
|
2015-04-08 12:49:31 +02:00
|
|
|
mbedtls_ccm_context ctx;
|
2017-05-30 15:23:15 +02:00
|
|
|
size_t tag_len;
|
2017-06-09 05:32:58 +02:00
|
|
|
uint8_t * msg_n_tag = (uint8_t *)malloc( result->len + 2 );
|
2014-05-06 12:13:09 +02:00
|
|
|
|
2015-04-28 18:02:54 +02:00
|
|
|
mbedtls_ccm_init( &ctx );
|
|
|
|
|
2017-06-09 05:32:58 +02:00
|
|
|
memset( msg_n_tag, 0, result->len + 2 );
|
|
|
|
memcpy( msg_n_tag, msg->x, msg->len );
|
2017-05-30 15:23:15 +02:00
|
|
|
|
2017-06-09 05:32:58 +02:00
|
|
|
tag_len = result->len - msg->len;
|
2014-05-06 12:13:09 +02:00
|
|
|
|
2017-06-09 05:32:58 +02:00
|
|
|
TEST_ASSERT( mbedtls_ccm_setkey( &ctx, cipher_id, key->x, key->len * 8 ) == 0 );
|
2014-05-06 12:13:09 +02:00
|
|
|
|
2014-05-07 14:43:46 +02:00
|
|
|
/* Test with input == output */
|
2017-06-09 05:32:58 +02:00
|
|
|
TEST_ASSERT( mbedtls_ccm_encrypt_and_tag( &ctx, msg->len, iv->x, iv->len, add->x, add->len,
|
|
|
|
msg_n_tag, msg_n_tag, msg_n_tag + msg->len, tag_len ) == 0 );
|
2014-05-06 12:13:09 +02:00
|
|
|
|
2017-06-09 05:32:58 +02:00
|
|
|
TEST_ASSERT( memcmp( msg_n_tag, result->x, result->len ) == 0 );
|
2014-05-06 12:13:09 +02:00
|
|
|
|
|
|
|
/* Check we didn't write past the end */
|
2017-06-09 05:32:58 +02:00
|
|
|
TEST_ASSERT( msg_n_tag[result->len] == 0 && msg_n_tag[result->len + 1] == 0 );
|
2014-05-06 12:13:09 +02:00
|
|
|
|
2014-07-10 15:26:12 +02:00
|
|
|
exit:
|
2015-04-08 12:49:31 +02:00
|
|
|
mbedtls_ccm_free( &ctx );
|
2017-05-31 21:46:35 +02:00
|
|
|
free( msg_n_tag );
|
2014-05-06 12:13:09 +02:00
|
|
|
}
|
|
|
|
/* END_CASE */
|
2014-05-06 18:06:52 +02:00
|
|
|
|
|
|
|
/* BEGIN_CASE */
|
2017-06-09 05:32:58 +02:00
|
|
|
void mbedtls_ccm_auth_decrypt( int cipher_id, HexParam_t * key,
|
|
|
|
HexParam_t * msg, HexParam_t * iv,
|
2018-06-26 19:15:18 +02:00
|
|
|
HexParam_t * add, int tag_len, int result,
|
2017-06-09 05:32:58 +02:00
|
|
|
HexParam_t * hex_msg )
|
2014-05-06 18:06:52 +02:00
|
|
|
{
|
2014-05-07 14:43:46 +02:00
|
|
|
unsigned char tag[16];
|
2015-04-08 12:49:31 +02:00
|
|
|
mbedtls_ccm_context ctx;
|
2014-05-06 18:06:52 +02:00
|
|
|
|
2015-04-28 18:02:54 +02:00
|
|
|
mbedtls_ccm_init( &ctx );
|
|
|
|
|
2014-05-07 14:43:46 +02:00
|
|
|
memset( tag, 0x00, sizeof( tag ) );
|
2014-05-06 18:06:52 +02:00
|
|
|
|
2017-06-09 05:32:58 +02:00
|
|
|
msg->len -= tag_len;
|
|
|
|
memcpy( tag, msg->x + msg->len, tag_len );
|
2014-05-06 18:06:52 +02:00
|
|
|
|
2017-06-09 05:32:58 +02:00
|
|
|
TEST_ASSERT( mbedtls_ccm_setkey( &ctx, cipher_id, key->x, key->len * 8 ) == 0 );
|
2014-05-06 18:06:52 +02:00
|
|
|
|
2014-05-07 14:43:46 +02:00
|
|
|
/* Test with input == output */
|
2017-06-09 05:32:58 +02:00
|
|
|
TEST_ASSERT( mbedtls_ccm_auth_decrypt( &ctx, msg->len, iv->x, iv->len, add->x, add->len,
|
2018-06-26 19:15:18 +02:00
|
|
|
msg->x, msg->x, msg->x + msg->len, tag_len ) == result );
|
2014-05-06 18:06:52 +02:00
|
|
|
|
2018-06-26 19:15:18 +02:00
|
|
|
if( result == 0 )
|
2014-05-06 18:06:52 +02:00
|
|
|
{
|
2017-06-09 05:32:58 +02:00
|
|
|
TEST_ASSERT( memcmp( msg->x, hex_msg->x, hex_msg->len ) == 0 );
|
2014-05-06 18:06:52 +02:00
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
size_t i;
|
|
|
|
|
2017-06-09 05:32:58 +02:00
|
|
|
for( i = 0; i < msg->len; i++ )
|
|
|
|
TEST_ASSERT( msg->x[i] == 0 );
|
2014-05-06 18:06:52 +02:00
|
|
|
}
|
|
|
|
|
2014-05-07 14:43:46 +02:00
|
|
|
/* Check we didn't write past the end (where the original tag is) */
|
2017-06-09 05:32:58 +02:00
|
|
|
TEST_ASSERT( memcmp( msg->x + msg->len, tag, tag_len ) == 0 );
|
2014-05-06 18:06:52 +02:00
|
|
|
|
2014-07-10 15:26:12 +02:00
|
|
|
exit:
|
2015-04-08 12:49:31 +02:00
|
|
|
mbedtls_ccm_free( &ctx );
|
2014-05-06 18:06:52 +02:00
|
|
|
}
|
|
|
|
/* END_CASE */
|
2018-05-29 15:12:26 +02:00
|
|
|
|
|
|
|
/* BEGIN_CASE */
|
|
|
|
void mbedtls_ccm_star_encrypt_and_tag( int cipher_id,
|
|
|
|
char *key_hex, char *msg_hex,
|
|
|
|
char *source_address_hex, char *frame_counter_hex,
|
|
|
|
int sec_level, char *add_hex,
|
|
|
|
char *result_hex, int output_ret )
|
|
|
|
{
|
|
|
|
unsigned char key[32];
|
|
|
|
unsigned char msg[50];
|
|
|
|
unsigned char iv[13];
|
|
|
|
unsigned char add[32];
|
|
|
|
unsigned char result[50];
|
|
|
|
unsigned char source_address[8];
|
|
|
|
unsigned char frame_counter[4];
|
|
|
|
mbedtls_ccm_context ctx;
|
|
|
|
size_t i, key_len, msg_len, iv_len, add_len, result_len, source_address_len, frame_counter_len, tag_len;
|
|
|
|
int ret;
|
|
|
|
|
|
|
|
mbedtls_ccm_init( &ctx );
|
|
|
|
|
|
|
|
memset( key, 0x00, sizeof( key ) );
|
|
|
|
memset( msg, 0x00, sizeof( msg ) );
|
|
|
|
memset( iv, 0x00, sizeof( iv ) );
|
|
|
|
memset( add, 0x00, sizeof( add ) );
|
|
|
|
memset( result, 0x00, sizeof( result ) );
|
|
|
|
memset( source_address, 0x00, sizeof( source_address ) );
|
|
|
|
memset( frame_counter, 0x00, sizeof( frame_counter ) );
|
|
|
|
|
|
|
|
key_len = unhexify( key, key_hex );
|
|
|
|
msg_len = unhexify( msg, msg_hex );
|
|
|
|
add_len = unhexify( add, add_hex );
|
|
|
|
result_len = unhexify( result, result_hex );
|
|
|
|
source_address_len = unhexify( source_address, source_address_hex );
|
|
|
|
frame_counter_len = unhexify( frame_counter, frame_counter_hex );
|
|
|
|
|
|
|
|
if( sec_level % 4 == 0)
|
|
|
|
tag_len = 0;
|
|
|
|
else
|
|
|
|
tag_len = 1 << ( sec_level % 4 + 1);
|
|
|
|
|
|
|
|
for( i = 0; i < source_address_len; i++ )
|
|
|
|
iv[i] = source_address[i];
|
|
|
|
|
|
|
|
for( i = 0; i < frame_counter_len; i++ )
|
|
|
|
iv[source_address_len + i] = frame_counter[i];
|
|
|
|
|
|
|
|
iv[source_address_len + frame_counter_len] = sec_level;
|
|
|
|
iv_len = sizeof( iv );
|
|
|
|
|
|
|
|
TEST_ASSERT( mbedtls_ccm_setkey( &ctx, cipher_id, key, key_len * 8 ) == 0 );
|
|
|
|
|
|
|
|
ret = mbedtls_ccm_star_encrypt_and_tag( &ctx, msg_len, iv, iv_len,
|
|
|
|
add, add_len, msg, msg, msg + msg_len, tag_len );
|
|
|
|
|
|
|
|
TEST_ASSERT( ret == output_ret );
|
|
|
|
|
|
|
|
TEST_ASSERT( memcmp( msg, result, result_len ) == 0 );
|
|
|
|
|
|
|
|
/* Check we didn't write past the end */
|
|
|
|
TEST_ASSERT( msg[result_len] == 0 && msg[result_len + 1] == 0 );
|
|
|
|
|
|
|
|
exit:
|
|
|
|
mbedtls_ccm_free( &ctx );
|
|
|
|
}
|
|
|
|
/* END_CASE */
|
|
|
|
|
|
|
|
/* BEGIN_CASE */
|
|
|
|
void mbedtls_ccm_star_auth_decrypt( int cipher_id,
|
|
|
|
char *key_hex, char *msg_hex,
|
|
|
|
char *source_address_hex, char *frame_counter_hex,
|
|
|
|
int sec_level, char *add_hex,
|
|
|
|
char *result_hex, int output_ret )
|
|
|
|
{
|
|
|
|
unsigned char key[32];
|
|
|
|
unsigned char msg[50];
|
|
|
|
unsigned char iv[13];
|
|
|
|
unsigned char add[32];
|
|
|
|
unsigned char tag[16];
|
|
|
|
unsigned char result[50];
|
|
|
|
unsigned char source_address[8];
|
|
|
|
unsigned char frame_counter[4];
|
|
|
|
mbedtls_ccm_context ctx;
|
|
|
|
size_t i, key_len, msg_len, iv_len, add_len, tag_len, result_len, source_address_len, frame_counter_len;
|
|
|
|
int ret;
|
|
|
|
|
|
|
|
mbedtls_ccm_init( &ctx );
|
|
|
|
|
|
|
|
memset( key, 0x00, sizeof( key ) );
|
|
|
|
memset( msg, 0x00, sizeof( msg ) );
|
|
|
|
memset( iv, 0x00, sizeof( iv ) );
|
|
|
|
memset( add, 0x00, sizeof( add ) );
|
|
|
|
memset( result, 0x00, sizeof( result ) );
|
|
|
|
memset( source_address, 0x00, sizeof( source_address ) );
|
|
|
|
memset( frame_counter, 0x00, sizeof( frame_counter ) );
|
|
|
|
memset( tag, 0x00, sizeof( tag ) );
|
|
|
|
|
|
|
|
key_len = unhexify( key, key_hex );
|
|
|
|
msg_len = unhexify( msg, msg_hex );
|
|
|
|
add_len = unhexify( add, add_hex );
|
|
|
|
result_len = unhexify( result, result_hex );
|
|
|
|
source_address_len = unhexify( source_address, source_address_hex );
|
|
|
|
frame_counter_len = unhexify( frame_counter, frame_counter_hex );
|
|
|
|
|
|
|
|
if( sec_level % 4 == 0)
|
|
|
|
tag_len = 0;
|
|
|
|
else
|
|
|
|
tag_len = 1 << ( sec_level % 4 + 1);
|
|
|
|
|
|
|
|
for( i = 0; i < source_address_len; i++ )
|
|
|
|
iv[i] = source_address[i];
|
|
|
|
|
|
|
|
for( i = 0; i < frame_counter_len; i++ )
|
|
|
|
iv[source_address_len + i] = frame_counter[i];
|
|
|
|
|
|
|
|
iv[source_address_len + frame_counter_len] = sec_level;
|
|
|
|
iv_len = sizeof( iv );
|
|
|
|
|
|
|
|
msg_len -= tag_len;
|
|
|
|
memcpy( tag, msg + msg_len, tag_len );
|
|
|
|
|
|
|
|
TEST_ASSERT( mbedtls_ccm_setkey( &ctx, cipher_id, key, key_len * 8 ) == 0 );
|
|
|
|
|
|
|
|
ret = mbedtls_ccm_star_auth_decrypt( &ctx, msg_len, iv, iv_len,
|
|
|
|
add, add_len, msg, msg, msg + msg_len, tag_len );
|
|
|
|
|
|
|
|
TEST_ASSERT( ret == output_ret );
|
|
|
|
|
|
|
|
TEST_ASSERT( memcmp( msg, result, result_len ) == 0 );
|
|
|
|
|
|
|
|
/* Check we didn't write past the end (where the original tag is) */
|
|
|
|
TEST_ASSERT( memcmp( msg + msg_len, tag, tag_len ) == 0 );
|
|
|
|
|
|
|
|
exit:
|
|
|
|
mbedtls_ccm_free( &ctx );
|
|
|
|
}
|
|
|
|
/* END_CASE */
|