yuzu-emu/mbedtls
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
mbedtls/tests/suites/test_suite_psa_crypto.function

9792 lines
363 KiB
C
Raw Normal View History

Add PSA crypto module New module psa_crypto.c (MBEDTLS_PSA_CRYPTO_C): Platform Security Architecture compatibility layer on top of libmedcrypto. Implement psa_crypto_init function which sets up a RNG. Add a mbedtls_psa_crypto_free function which deinitializes the library. Define a first batch of error codes.
2018-01-27 23:32:46 +01:00
/* BEGIN_HEADER */
On target testing tests adaptation Updated all psa crypto tests to use the new test format
2018-06-12 16:06:52 +02:00
#include <stdint.h>
Modifications for psa-crypto in order to integrate with SPM Add required includes in tests and psa_crypto.c file in order to be able to compilef for the SPM solution. Some functions needed to be deprecated from psa_crypto.c since they already implemented in the SPM.
2018-07-03 12:16:15 +02:00
Improve and augment export sanity checks Implement sanity checks of exported public keys, using ASN.1 parsing. Rewrite the sanity checks of key pairs using ASN.1 parsing, so as to check more things with simpler code.
2018-08-11 01:22:42 +02:00
#include "mbedtls/asn1.h"
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
#include "mbedtls/asn1write.h"
Improve and augment export sanity checks Implement sanity checks of exported public keys, using ASN.1 parsing. Rewrite the sanity checks of key pairs using ASN.1 parsing, so as to check more things with simpler code.
2018-08-11 01:22:42 +02:00
#include "mbedtls/oid.h"
Fix NULL+0 undefined behavior in ECB encryption and decryption psa_cipher_encrypt() and psa_cipher_decrypt() sometimes add a zero offset to a null pointer when the cipher does not use an IV. This is undefined behavior, although it works as naively expected on most platforms. This can cause a crash with modern Clang+ASan (depending on compiler optimizations). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-11-23 14:15:57 +01:00
#include "common.h"
Improve and augment export sanity checks Implement sanity checks of exported public keys, using ASN.1 parsing. Rewrite the sanity checks of key pairs using ASN.1 parsing, so as to check more things with simpler code.
2018-08-11 01:22:42 +02:00
Add tests to generate more random than MBEDTLS_CTR_DRBG_MAX_REQUEST Add tests that call psa_generate_random() (possibly via psa_generate_key()) with a size that's larger than MBEDTLS_CTR_DRBG_MAX_REQUEST. This causes psa_generate_random() to fail because it calls mbedtls_ctr_drbg_random() without taking the maximum request size of CTR_DRBG into account. Non-regression test for #206
2019-08-07 12:08:04 +02:00
/* For MBEDTLS_CTR_DRBG_MAX_REQUEST, knowing that psa_generate_random()
* uses mbedtls_ctr_drbg internally. */
#include "mbedtls/ctr_drbg.h"
#include "psa/crypto.h"
tests: Fix checks of volatile key identifier Volatile keys have now a volatile non-null key identifier. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-09-17 15:28:26 +02:00
#include "psa_crypto_slot_management.h"
Add tests to generate more random than MBEDTLS_CTR_DRBG_MAX_REQUEST Add tests that call psa_generate_random() (possibly via psa_generate_key()) with a size that's larger than MBEDTLS_CTR_DRBG_MAX_REQUEST. This causes psa_generate_random() to fail because it calls mbedtls_ctr_drbg_random() without taking the maximum request size of CTR_DRBG into account. Non-regression test for #206
2019-08-07 12:08:04 +02:00
Move asn1_skip_integer to the asn1_helpers module Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2021-02-13 00:25:53 +01:00
#include "test/asn1_helpers.h"
tests: psa: Add macros to skip a test case Add macros to skip a test case when hitting a common alternative implementation limitation. Add a macro for AES-192 and GCM with a nonce length different from 12 bytes. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-02-09 20:35:42 +01:00
#include "test/psa_crypto_helpers.h"
Move exercise_key and related functions to their own module Move mbedtls_test_psa_exercise_key() (formerly exercise_key()) and related functions to its own module. Export the few auxiliary functions that are also called directly. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2021-02-13 00:41:11 +01:00
#include "test/psa_exercise_key.h"
Add test driver support for opaque key import -Add test driver support to import/export while wrapping keys meant to be stored in the PSA core as opaque( emulating an SE without storage ). -Export validate_unstructured_key_bit_size as psa_validate_unstructured_key_bit_size, thereby changing its scope. -Improve the import/export test cases in test_suite_psa_crypto to also cover opaque keys, thereby avoiding duplication. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-06 23:20:22 +02:00
#if defined(PSA_CRYPTO_DRIVER_TEST)
#include "test/drivers/test_driver.h"
Add opaque test driver support for copy key A minimal test driver extension is added to support copy of opaque keys within the same location. Test vector support is extended to cover opaque keys. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-04 22:48:48 +02:00
#define TEST_DRIVER_LOCATION PSA_CRYPTO_TEST_DRIVER_LOCATION
#else
#define TEST_DRIVER_LOCATION 0x7fffff
Add test driver support for opaque key import -Add test driver support to import/export while wrapping keys meant to be stored in the PSA core as opaque( emulating an SE without storage ). -Export validate_unstructured_key_bit_size as psa_validate_unstructured_key_bit_size, thereby changing its scope. -Improve the import/export test cases in test_suite_psa_crypto to also cover opaque keys, thereby avoiding duplication. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-06 23:20:22 +02:00
#endif
test_suite_psa_crypto: adapt dependenies and guards so the test can run in the driver-only build Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-10-19 12:17:19 +02:00
#include "mbedtls/legacy_or_psa.h"
tests: psa: Add macros to skip a test case Add macros to skip a test case when hitting a common alternative implementation limitation. Add a macro for AES-192 and GCM with a nonce length different from 12 bytes. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-02-09 20:35:42 +01:00
Add bad-workflow key derivation tests Add HKDF tests where the sequence of inputs differs from the nominal case: missing step, duplicate step, step out of order, or invalid step. There were already similar tests for TLS 1.2 PRF. Add one with a key agreement which has slightly different code. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2021-05-27 13:21:20 +02:00
/* If this comes up, it's a bug in the test code or in the test data. */
#define UNUSED 0xdeadbeef
Add negative tests for psa_abort in cipher and mac functions Various functions for PSA cipher and mac operations call abort on failure; test that this is done. The PSA spec does not require this behaviour, but it makes our implementation more robust in case the user does not abort the operation as required by the PSA spec. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-06-23 13:49:59 +02:00
/* Assert that an operation is (not) active.
* This serves as a proxy for checking if the operation is aborted. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
#define ASSERT_OPERATION_IS_ACTIVE(operation) TEST_ASSERT(operation.id != 0)
#define ASSERT_OPERATION_IS_INACTIVE(operation) TEST_ASSERT(operation.id == 0)
tests: psa: Add macros to skip a test case Add macros to skip a test case when hitting a common alternative implementation limitation. Add a macro for AES-192 and GCM with a nonce length different from 12 bytes. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-02-09 20:35:42 +01:00
Adapt ec-jpake_setup test Now when operation holds pointer to dynamically allocated buffer for password key we can't do copy of the operation object in test instead we need to re-initialize operation object after error. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-11-15 22:26:12 +01:00
#if defined(PSA_WANT_ALG_JPAKE)
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
int ecjpake_operation_setup(psa_pake_operation_t *operation,
psa_pake_cipher_suite_t *cipher_suite,
psa_pake_role_t role,
mbedtls_svc_key_id_t key,
size_t key_available)
Adapt ec-jpake_setup test Now when operation holds pointer to dynamically allocated buffer for password key we can't do copy of the operation object in test instead we need to re-initialize operation object after error. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-11-15 22:26:12 +01:00
{
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_abort(operation));
Adapt ec-jpake_setup test Now when operation holds pointer to dynamically allocated buffer for password key we can't do copy of the operation object in test instead we need to re-initialize operation object after error. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-11-15 22:26:12 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_setup(operation, cipher_suite));
Adapt ec-jpake_setup test Now when operation holds pointer to dynamically allocated buffer for password key we can't do copy of the operation object in test instead we need to re-initialize operation object after error. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-11-15 22:26:12 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_set_role(operation, role));
Adapt ec-jpake_setup test Now when operation holds pointer to dynamically allocated buffer for password key we can't do copy of the operation object in test instead we need to re-initialize operation object after error. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-11-15 22:26:12 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (key_available) {
PSA_ASSERT(psa_pake_set_password_key(operation, key));
}
Optimize pake test code Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-11-21 15:10:32 +01:00
return 0;
Adapt ec-jpake_setup test Now when operation holds pointer to dynamically allocated buffer for password key we can't do copy of the operation object in test instead we need to re-initialize operation object after error. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-11-15 22:26:12 +01:00
exit:
Optimize pake test code Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-11-21 15:10:32 +01:00
return 1;
Adapt ec-jpake_setup test Now when operation holds pointer to dynamically allocated buffer for password key we can't do copy of the operation object in test instead we need to re-initialize operation object after error. Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-11-15 22:26:12 +01:00
}
#endif
psa_export_key: Always set a valid data length Make psa_export_key() always set a valid data_length when exporting, even when there are errors. This makes the API easier to use for buggy programs (like our test code). Our test code previously used exported_length uninitialized when checking to see that the buffer returned was all zero in import_export() in the case where an error was returned from psa_export_key(). Initialize exported_length to an invalid length, and check that it gets set properly by psa_export_key(), to avoid this using export_length uninitialized. Note that the mem_is_zero() check is still valid when psa_export_key() returns an error, e.g. where exported_length is 0, as we want to check that nothing was written to the buffer on error. Out test code also previous passed NULL for the data_length parameter of psa_export_key() when it expected a failure (in key_policy_fail()). However, data_length is not allowed to be NULL, especially now that we write to data_length from psa_export_key() even when there are errors. Update the test code to not pass in a NULL data_length.
2018-06-27 18:20:43 +02:00
/** An invalid export length that will never be set by psa_export_key(). */
static const size_t INVALID_EXPORT_LENGTH = ~0U;
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
/** Test if a buffer contains a constant byte value.
*
* `mem_is_char(buffer, c, size)` is true after `memset(buffer, c, size)`.
psa_export_key: zero out potential garbage in the output buffer In psa_export_key, ensure that each byte of the output buffer either contains its original value, is zero, or is part of the actual output. Specifically, don't risk having partial output on error, and don't leave extra data at the end of the buffer when exporting an asymmetric key. Test that exporting to a previously zeroed buffer leaves the buffer zeroed outside the actual output if any.
2018-06-20 00:11:45 +02:00
*
* \param buffer Pointer to the beginning of the buffer.
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
* \param c Expected value of every byte.
psa_export_key: zero out potential garbage in the output buffer In psa_export_key, ensure that each byte of the output buffer either contains its original value, is zero, or is part of the actual output. Specifically, don't risk having partial output on error, and don't leave extra data at the end of the buffer when exporting an asymmetric key. Test that exporting to a previously zeroed buffer leaves the buffer zeroed outside the actual output if any.
2018-06-20 00:11:45 +02:00
* \param size Size of the buffer in bytes.
*
Simplify mem_is_nonzero to mem_is_zero This also fixes a bug that the value that mem_is_nonzero tried to return could overflow int.
2018-06-21 09:21:51 +02:00
* \return 1 if the buffer is all-bits-zero.
* \return 0 if there is at least one nonzero byte.
psa_export_key: zero out potential garbage in the output buffer In psa_export_key, ensure that each byte of the output buffer either contains its original value, is zero, or is part of the actual output. Specifically, don't risk having partial output on error, and don't leave extra data at the end of the buffer when exporting an asymmetric key. Test that exporting to a previously zeroed buffer leaves the buffer zeroed outside the actual output if any.
2018-06-20 00:11:45 +02:00
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
static int mem_is_char(void *buffer, unsigned char c, size_t size)
psa_export_key: zero out potential garbage in the output buffer In psa_export_key, ensure that each byte of the output buffer either contains its original value, is zero, or is part of the actual output. Specifically, don't risk having partial output on error, and don't leave extra data at the end of the buffer when exporting an asymmetric key. Test that exporting to a previously zeroed buffer leaves the buffer zeroed outside the actual output if any.
2018-06-20 00:11:45 +02:00
{
size_t i;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (i = 0; i < size; i++) {
if (((unsigned char *) buffer)[i] != c) {
return 0;
}
psa_export_key: zero out potential garbage in the output buffer In psa_export_key, ensure that each byte of the output buffer either contains its original value, is zero, or is part of the actual output. Specifically, don't risk having partial output on error, and don't leave extra data at the end of the buffer when exporting an asymmetric key. Test that exporting to a previously zeroed buffer leaves the buffer zeroed outside the actual output if any.
2018-06-20 00:11:45 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
return 1;
psa_export_key: zero out potential garbage in the output buffer In psa_export_key, ensure that each byte of the output buffer either contains its original value, is zero, or is part of the actual output. Specifically, don't risk having partial output on error, and don't leave extra data at the end of the buffer when exporting an asymmetric key. Test that exporting to a previously zeroed buffer leaves the buffer zeroed outside the actual output if any.
2018-06-20 00:11:45 +02:00
}
Add missing MBEDTLS_ASN1_WRITE_C dependency in test_suite_psa_crypto Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-01-17 15:29:38 +01:00
#if defined(MBEDTLS_ASN1_WRITE_C)
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
/* Write the ASN.1 INTEGER with the value 2^(bits-1)+x backwards from *p. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
static int asn1_write_10x(unsigned char **p,
unsigned char *start,
size_t bits,
unsigned char x)
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
{
int ret;
int len = bits / 8 + 1;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (bits == 0) {
return MBEDTLS_ERR_ASN1_INVALID_DATA;
}
if (bits <= 8 && x >= 1 << (bits - 1)) {
return MBEDTLS_ERR_ASN1_INVALID_DATA;
}
if (*p < start || *p - start < (ptrdiff_t) len) {
return MBEDTLS_ERR_ASN1_BUF_TOO_SMALL;
}
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
*p -= len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
(*p)[len-1] = x;
if (bits % 8 == 0) {
(*p)[1] |= 1;
} else {
(*p)[0] |= 1 << (bits % 8);
}
MBEDTLS_ASN1_CHK_ADD(len, mbedtls_asn1_write_len(p, start, len));
MBEDTLS_ASN1_CHK_ADD(len, mbedtls_asn1_write_tag(p, start,
MBEDTLS_ASN1_INTEGER));
return len;
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
static int construct_fake_rsa_key(unsigned char *buffer,
size_t buffer_size,
unsigned char **p,
size_t bits,
int keypair)
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
{
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t half_bits = (bits + 1) / 2;
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
int ret;
int len = 0;
/* Construct something that looks like a DER encoding of
* as defined by PKCS#1 v2.2 (RFC 8017) section A.1.2:
* RSAPrivateKey ::= SEQUENCE {
* version Version,
* modulus INTEGER, -- n
* publicExponent INTEGER, -- e
* privateExponent INTEGER, -- d
* prime1 INTEGER, -- p
* prime2 INTEGER, -- q
* exponent1 INTEGER, -- d mod (p-1)
* exponent2 INTEGER, -- d mod (q-1)
* coefficient INTEGER, -- (inverse of q) mod p
* otherPrimeInfos OtherPrimeInfos OPTIONAL
* }
* Or, for a public key, the same structure with only
* version, modulus and publicExponent.
*/
*p = buffer + buffer_size;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (keypair) {
MBEDTLS_ASN1_CHK_ADD(len, /* pq */
asn1_write_10x(p, buffer, half_bits, 1));
MBEDTLS_ASN1_CHK_ADD(len, /* dq */
asn1_write_10x(p, buffer, half_bits, 1));
MBEDTLS_ASN1_CHK_ADD(len, /* dp */
asn1_write_10x(p, buffer, half_bits, 1));
MBEDTLS_ASN1_CHK_ADD(len, /* q */
asn1_write_10x(p, buffer, half_bits, 1));
MBEDTLS_ASN1_CHK_ADD(len, /* p != q to pass mbedtls sanity checks */
asn1_write_10x(p, buffer, half_bits, 3));
MBEDTLS_ASN1_CHK_ADD(len, /* d */
asn1_write_10x(p, buffer, bits, 1));
}
MBEDTLS_ASN1_CHK_ADD(len, /* e = 65537 */
asn1_write_10x(p, buffer, 17, 1));
MBEDTLS_ASN1_CHK_ADD(len, /* n */
asn1_write_10x(p, buffer, bits, 1));
if (keypair) {
MBEDTLS_ASN1_CHK_ADD(len, /* version = 0 */
mbedtls_asn1_write_int(p, buffer, 0));
}
MBEDTLS_ASN1_CHK_ADD(len, mbedtls_asn1_write_len(p, buffer, len));
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
{
const unsigned char tag =
MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
MBEDTLS_ASN1_CHK_ADD(len, mbedtls_asn1_write_tag(p, buffer, tag));
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
return len;
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
}
Add missing MBEDTLS_ASN1_WRITE_C dependency in test_suite_psa_crypto Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-01-17 15:29:38 +01:00
#endif /* MBEDTLS_ASN1_WRITE_C */
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
int exercise_mac_setup(psa_key_type_t key_type,
const unsigned char *key_bytes,
size_t key_length,
psa_algorithm_t alg,
psa_mac_operation_t *operation,
psa_status_t *status)
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_bytes, key_length, &key));
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
*status = psa_mac_sign_setup(operation, key, alg);
Test abort after failed setup Commit "Smoke-test operation contexts after setup+abort" replaced {failed-setup; abort} sequences by {failed-setup; successful-setup}. We want to test that, but we also want to test {failed-setup; abort}. So test {failed-setup; abort; failed-setup; successful-setup}.
2019-02-25 22:11:18 +01:00
/* Whether setup succeeded or failed, abort must succeed. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_abort(operation));
Test abort after failed setup Commit "Smoke-test operation contexts after setup+abort" replaced {failed-setup; abort} sequences by {failed-setup; successful-setup}. We want to test that, but we also want to test {failed-setup; abort}. So test {failed-setup; abort; failed-setup; successful-setup}.
2019-02-25 22:11:18 +01:00
/* If setup failed, reproduce the failure, so that the caller can
* test the resulting state of the operation object. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (*status != PSA_SUCCESS) {
TEST_EQUAL(psa_mac_sign_setup(operation, key, alg), *status);
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
return 1;
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
return 0;
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
int exercise_cipher_setup(psa_key_type_t key_type,
const unsigned char *key_bytes,
size_t key_length,
psa_algorithm_t alg,
psa_cipher_operation_t *operation,
psa_status_t *status)
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_bytes, key_length, &key));
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
*status = psa_cipher_encrypt_setup(operation, key, alg);
Test abort after failed setup Commit "Smoke-test operation contexts after setup+abort" replaced {failed-setup; abort} sequences by {failed-setup; successful-setup}. We want to test that, but we also want to test {failed-setup; abort}. So test {failed-setup; abort; failed-setup; successful-setup}.
2019-02-25 22:11:18 +01:00
/* Whether setup succeeded or failed, abort must succeed. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_abort(operation));
Test abort after failed setup Commit "Smoke-test operation contexts after setup+abort" replaced {failed-setup; abort} sequences by {failed-setup; successful-setup}. We want to test that, but we also want to test {failed-setup; abort}. So test {failed-setup; abort; failed-setup; successful-setup}.
2019-02-25 22:11:18 +01:00
/* If setup failed, reproduce the failure, so that the caller can
* test the resulting state of the operation object. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (*status != PSA_SUCCESS) {
TEST_EQUAL(psa_cipher_encrypt_setup(operation, key, alg),
*status);
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
return 1;
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
return 0;
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
static int test_operations_on_invalid_key(mbedtls_svc_key_id_t key)
Simplify and expand invalid-handle tests Simplify invalid-handle tests and make them test more things. Call these tests in several test functions after destroying a key.
2019-04-18 22:28:52 +02:00
{
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_svc_key_id_t key_id = mbedtls_svc_key_id_make(1, 0x6964);
Simplify and expand invalid-handle tests Simplify invalid-handle tests and make them test more things. Call these tests in several test functions after destroying a key.
2019-04-18 22:28:52 +02:00
uint8_t buffer[1];
size_t length;
int ok = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_id(&attributes, key_id);
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, PSA_ALG_CTR);
psa_set_key_type(&attributes, PSA_KEY_TYPE_AES);
TEST_EQUAL(psa_get_key_attributes(key, &attributes),
PSA_ERROR_INVALID_HANDLE);
Fix PSA code and unit tests Fix PSA code and unit tests for the unit tests to pass with key identifiers encoding owner identifiers. The changes in PSA code just make the enablement of key identifiers encoding owner identifiers platform independent. Previous to this commit, such key identifiers were used only in the case of PSA SPM platforms. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-07-23 17:13:42 +02:00
TEST_EQUAL(
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
MBEDTLS_SVC_KEY_ID_GET_KEY_ID(psa_get_key_id(&attributes)), 0);
Fix PSA code and unit tests Fix PSA code and unit tests for the unit tests to pass with key identifiers encoding owner identifiers. The changes in PSA code just make the enablement of key identifiers encoding owner identifiers platform independent. Previous to this commit, such key identifiers were used only in the case of PSA SPM platforms. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-07-23 17:13:42 +02:00
TEST_EQUAL(
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
MBEDTLS_SVC_KEY_ID_GET_OWNER_ID(psa_get_key_id(&attributes)), 0);
TEST_EQUAL(psa_get_key_lifetime(&attributes), 0);
TEST_EQUAL(psa_get_key_usage_flags(&attributes), 0);
TEST_EQUAL(psa_get_key_algorithm(&attributes), 0);
TEST_EQUAL(psa_get_key_type(&attributes), 0);
TEST_EQUAL(psa_get_key_bits(&attributes), 0);
TEST_EQUAL(psa_export_key(key, buffer, sizeof(buffer), &length),
PSA_ERROR_INVALID_HANDLE);
TEST_EQUAL(psa_export_public_key(key,
buffer, sizeof(buffer), &length),
PSA_ERROR_INVALID_HANDLE);
Simplify and expand invalid-handle tests Simplify invalid-handle tests and make them test more things. Call these tests in several test functions after destroying a key.
2019-04-18 22:28:52 +02:00
ok = 1;
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
return ok;
Simplify and expand invalid-handle tests Simplify invalid-handle tests and make them test more things. Call these tests in several test functions after destroying a key.
2019-04-18 22:28:52 +02:00
}
Test slot_number attribute Test the behavior of the getter/setter functions. Test that psa_get_key_slot_number() reports a slot number for a key in a secure element, and doesn't report a slot number for a key that is not in a secure element. Test that psa_get_key_slot_number() reports the correct slot number for a key in a secure element.
2019-08-02 20:30:01 +02:00
/* Assert that a key isn't reported as having a slot number. */
#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
#define ASSERT_NO_SLOT_NUMBER(attributes) \
Test slot_number attribute Test the behavior of the getter/setter functions. Test that psa_get_key_slot_number() reports a slot number for a key in a secure element, and doesn't report a slot number for a key that is not in a secure element. Test that psa_get_key_slot_number() reports the correct slot number for a key in a secure element.
2019-08-02 20:30:01 +02:00
do \
{ \
psa_key_slot_number_t ASSERT_NO_SLOT_NUMBER_slot_number; \
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_get_key_slot_number( \
attributes, \
&ASSERT_NO_SLOT_NUMBER_slot_number), \
PSA_ERROR_INVALID_ARGUMENT); \
Test slot_number attribute Test the behavior of the getter/setter functions. Test that psa_get_key_slot_number() reports a slot number for a key in a secure element, and doesn't report a slot number for a key that is not in a secure element. Test that psa_get_key_slot_number() reports the correct slot number for a key in a secure element.
2019-08-02 20:30:01 +02:00
} \
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
while (0)
Test slot_number attribute Test the behavior of the getter/setter functions. Test that psa_get_key_slot_number() reports a slot number for a key in a secure element, and doesn't report a slot number for a key that is not in a secure element. Test that psa_get_key_slot_number() reports the correct slot number for a key in a secure element.
2019-08-02 20:30:01 +02:00
#else /* MBEDTLS_PSA_CRYPTO_SE_C */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
#define ASSERT_NO_SLOT_NUMBER(attributes) \
((void) 0)
Test slot_number attribute Test the behavior of the getter/setter functions. Test that psa_get_key_slot_number() reports a slot number for a key in a secure element, and doesn't report a slot number for a key that is not in a secure element. Test that psa_get_key_slot_number() reports the correct slot number for a key in a secure element.
2019-08-02 20:30:01 +02:00
#endif /* MBEDTLS_PSA_CRYPTO_SE_C */
Convert the PSA crypto cryptography tests to the new handle API Switch from the direct use of slot numbers to handles allocated by psa_allocate_key. This commit does not affect persistent key tests except for the one test function in test_suite_psa_crypto that uses persistent keys (persistent_key_load_key_from_storage). The general principle for each function is: * Change `psa_key_slot_t slot` to `psa_key_handle_t handle`. * Call psa_allocate_key() before setting the policy of the slot, or before creating key material in functions that don't set a policy. * Some PSA_ERROR_EMPTY_SLOT errors become PSA_ERROR_INVALID_HANDLE because there is now a distinction between not having a valid handle, and having a valid handle to a slot that doesn't contain key material. * In tests that use symmetric keys, calculate the max_bits parameters of psa_allocate_key() from the key data size. In tests where the key may be asymmetric, call an auxiliary macro KEY_BITS_FROM_DATA which returns an overapproximation. There's no good way to find a good value for max_bits with the API, I think the API should be tweaked.
2018-12-03 15:36:32 +01:00
/* An overapproximation of the amount of storage needed for a key of the
* given type and with the given content. The API doesn't make it easy
* to find a good value for the size. The current implementation doesn't
* care about the value anyway. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
#define KEY_BITS_FROM_DATA(type, data) \
(data)->len
Convert the PSA crypto cryptography tests to the new handle API Switch from the direct use of slot numbers to handles allocated by psa_allocate_key. This commit does not affect persistent key tests except for the one test function in test_suite_psa_crypto that uses persistent keys (persistent_key_load_key_from_storage). The general principle for each function is: * Change `psa_key_slot_t slot` to `psa_key_handle_t handle`. * Call psa_allocate_key() before setting the policy of the slot, or before creating key material in functions that don't set a policy. * Some PSA_ERROR_EMPTY_SLOT errors become PSA_ERROR_INVALID_HANDLE because there is now a distinction between not having a valid handle, and having a valid handle to a slot that doesn't contain key material. * In tests that use symmetric keys, calculate the max_bits parameters of psa_allocate_key() from the key data size. In tests where the key may be asymmetric, call an auxiliary macro KEY_BITS_FROM_DATA which returns an overapproximation. There's no good way to find a good value for max_bits with the API, I think the API should be tweaked.
2018-12-03 15:36:32 +01:00
psa: Extend psa_generate_key to support persistent lifetimes
2018-11-07 17:05:30 +01:00
typedef enum {
IMPORT_KEY = 0,
GENERATE_KEY = 1,
DERIVE_KEY = 2
} generate_method;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
typedef enum {
Convert set lengths options over to enum Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:40:40 +02:00
DO_NOT_SET_LENGTHS = 0,
SET_LENGTHS_BEFORE_NONCE = 1,
SET_LENGTHS_AFTER_NONCE = 2
Rename enum types Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 13:54:42 +02:00
} set_lengths_method_t;
Convert set lengths options over to enum Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:40:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
typedef enum {
Add extra verify edge test cases Add ability to pass NULL tag buffer (with length zero) Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 14:11:50 +02:00
USE_NULL_TAG = 0,
USE_GIVEN_TAG = 1,
Rename enum types Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 13:54:42 +02:00
} tag_usage_method_t;
Add extra verify edge test cases Add ability to pass NULL tag buffer (with length zero) Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 14:11:50 +02:00
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
/*!
* \brief Internal Function for AEAD multipart tests.
* \param key_type_arg Type of key passed in
* \param key_data The encryption / decryption key data
* \param alg_arg The type of algorithm used
* \param nonce Nonce data
* \param additional_data Additional data
Fix missed documentation header Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 23:38:27 +02:00
* \param ad_part_len_arg If not -1, the length of chunks to
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
* feed additional data in to be encrypted /
* decrypted. If -1, no chunking.
* \param input_data Data to encrypt / decrypt
Fix missed documentation header Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 23:38:27 +02:00
* \param data_part_len_arg If not -1, the length of chunks to feed
* the data in to be encrypted / decrypted. If
* -1, no chunking
Rename enum types Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 13:54:42 +02:00
* \param set_lengths_method A member of the set_lengths_method_t enum is
Fix missed documentation header Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 23:38:27 +02:00
* expected here, this controls whether or not
* to set lengths, and in what order with
* respect to set nonce.
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
* \param expected_output Expected output
* \param is_encrypt If non-zero this is an encryption operation.
Fix incorrect function documentation Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-22 22:52:01 +02:00
* \param do_zero_parts If non-zero, interleave zero length chunks
Fix missed documentation header Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 23:38:27 +02:00
* with normal length chunks.
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
* \return int Zero on failure, non-zero on success.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
static int aead_multipart_internal_func(int key_type_arg, data_t *key_data,
int alg_arg,
data_t *nonce,
data_t *additional_data,
int ad_part_len_arg,
data_t *input_data,
int data_part_len_arg,
set_lengths_method_t set_lengths_method,
data_t *expected_output,
int is_encrypt,
int do_zero_parts)
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_type_t key_type = key_type_arg;
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
psa_algorithm_t alg = alg_arg;
Replace AEAD operation init func with macro Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 17:44:21 +02:00
psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
unsigned char *output_data = NULL;
unsigned char *part_data = NULL;
unsigned char *final_data = NULL;
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
size_t data_true_size = 0;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t part_data_size = 0;
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
size_t output_size = 0;
size_t final_output_size = 0;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t output_length = 0;
size_t key_bits = 0;
size_t tag_length = 0;
Convert all uint32_t lengths over to size_t Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 15:15:55 +02:00
size_t part_offset = 0;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t part_length = 0;
size_t output_part_length = 0;
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
size_t tag_size = 0;
Convert all uint32_t lengths over to size_t Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 15:15:55 +02:00
size_t ad_part_len = 0;
size_t data_part_len = 0;
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
uint8_t tag_buffer[PSA_AEAD_TAG_MAX_SIZE];
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
int test_ok = 0;
Convert all uint32_t lengths over to size_t Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 15:15:55 +02:00
size_t part_count = 0;
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_encrypt) {
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
} else {
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DECRYPT);
}
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
tag_length = PSA_AEAD_TAG_LENGTH(key_type, key_bits, alg);
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_encrypt) {
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
/* Tag gets written at end of buffer. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg,
(input_data->len +
tag_length));
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
data_true_size = input_data->len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
output_size = PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg,
(input_data->len -
tag_length));
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
/* Do not want to attempt to decrypt tag. */
data_true_size = input_data->len - tag_length;
}
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output_data, output_size);
Add key management functions Define psa_key_type_t and a first stab at a few values. New functions psa_import_key, psa_export_key, psa_destroy_key, psa_get_key_information. Implement them for raw data and RSA. Under the hood, create an in-memory, fixed-size keystore with room for MBEDTLS_PSA_KEY_SLOT_COUNT - 1 keys.
2018-01-28 13:16:24 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_encrypt) {
final_output_size = PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg);
TEST_LE_U(final_output_size, PSA_AEAD_FINISH_OUTPUT_MAX_SIZE);
} else {
final_output_size = PSA_AEAD_VERIFY_OUTPUT_SIZE(key_type, alg);
TEST_LE_U(final_output_size, PSA_AEAD_VERIFY_OUTPUT_MAX_SIZE);
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
}
Add test function for import with a bad policy
2019-07-31 15:53:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(final_data, final_output_size);
Implement psa_get_key_attributes Implement attribute querying. Test attribute getters and setters. Use psa_get_key_attributes instead of the deprecated functions psa_get_key_policy or psa_get_key_information in most tests.
2019-04-18 21:44:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_encrypt) {
status = psa_aead_encrypt_setup(&operation, key, alg);
} else {
status = psa_aead_decrypt_setup(&operation, key, alg);
}
Add key management functions Define psa_key_type_t and a first stab at a few values. New functions psa_import_key, psa_export_key, psa_destroy_key, psa_get_key_information. Implement them for raw data and RSA. Under the hood, create an in-memory, fixed-size keystore with room for MBEDTLS_PSA_KEY_SLOT_COUNT - 1 keys.
2018-01-28 13:16:24 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* If the operation is not supported, just skip and not fail in case the
* encryption involves a common limitation of cryptography hardwares and
* an alternative implementation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_ERROR_NOT_SUPPORTED) {
MBEDTLS_TEST_PSA_SKIP_IF_ALT_AES_192(key_type, key_data->len * 8);
MBEDTLS_TEST_PSA_SKIP_IF_ALT_GCM_NOT_12BYTES_NONCE(alg, nonce->len);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(status);
Add key management functions Define psa_key_type_t and a first stab at a few values. New functions psa_import_key, psa_export_key, psa_destroy_key, psa_get_key_information. Implement them for raw data and RSA. Under the hood, create an in-memory, fixed-size keystore with room for MBEDTLS_PSA_KEY_SLOT_COUNT - 1 keys.
2018-01-28 13:16:24 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (set_lengths_method == DO_NOT_SET_LENGTHS) {
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
} else if (set_lengths_method == SET_LENGTHS_BEFORE_NONCE) {
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
data_true_size));
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
} else if (set_lengths_method == SET_LENGTHS_AFTER_NONCE) {
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Move set nonce / set length tests to positive test Previous test in state test was not actually making sure that the operatioon could be completed using set lengths / set nonce in either order, thus changed the 'normal' encrypt / decrypt tests to run in alternating order. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-22 18:54:42 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
data_true_size));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (ad_part_len_arg != -1) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Pass additional data in parts */
Convert all uint32_t lengths over to size_t Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 15:15:55 +02:00
ad_part_len = (size_t) ad_part_len_arg;
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (part_offset = 0, part_count = 0;
Move hidden logic into loop 'for' statement Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:50:01 +02:00
part_offset < additional_data->len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
part_offset += part_length, part_count++) {
if (do_zero_parts && (part_count & 0x01)) {
Add 0 length part tests Add tests to do zero length part, n length part until done, to exercise the zero length edge case. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-22 18:10:45 +02:00
part_length = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else if (additional_data->len - part_offset < ad_part_len) {
Remove unneccesary nesting Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:52:11 +02:00
part_length = additional_data->len - part_offset;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
Remove unneccesary nesting Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:52:11 +02:00
part_length = ad_part_len;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update_ad(&operation,
additional_data->x + part_offset,
part_length));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Pass additional data in one go. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (data_part_len_arg != -1) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Pass data in parts */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
data_part_len = (size_t) data_part_len_arg;
part_data_size = PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg,
(size_t) data_part_len);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(part_data, part_data_size);
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (part_offset = 0, part_count = 0;
Move hidden logic into loop 'for' statement Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:50:01 +02:00
part_offset < data_true_size;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
part_offset += part_length, part_count++) {
if (do_zero_parts && (part_count & 0x01)) {
Add 0 length part tests Add tests to do zero length part, n length part until done, to exercise the zero length edge case. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-22 18:10:45 +02:00
part_length = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else if ((data_true_size - part_offset) < data_part_len) {
part_length = (data_true_size - part_offset);
} else {
Remove unneccesary nesting Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:52:11 +02:00
part_length = data_part_len;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update(&operation,
(input_data->x + part_offset),
part_length, part_data,
part_data_size,
&output_part_length));
Test that creating RSA keys larger than the maximum fails Test keypair import, public key import and key generation.
2018-06-28 00:16:11 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (output_data && output_part_length) {
memcpy((output_data + output_length), part_data,
output_part_length);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Add key management functions Define psa_key_type_t and a first stab at a few values. New functions psa_import_key, psa_export_key, psa_destroy_key, psa_get_key_information. Implement them for raw data and RSA. Under the hood, create an in-memory, fixed-size keystore with room for MBEDTLS_PSA_KEY_SLOT_COUNT - 1 keys.
2018-01-28 13:16:24 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output_length += output_part_length;
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
/* Pass all data in one go. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update(&operation, input_data->x,
data_true_size, output_data,
output_size, &output_length));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_encrypt) {
PSA_ASSERT(psa_aead_finish(&operation, final_data,
final_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size));
} else {
PSA_ASSERT(psa_aead_verify(&operation, final_data,
final_output_size,
&output_part_length,
(input_data->x + data_true_size),
tag_length));
}
if (output_data && output_part_length) {
memcpy((output_data + output_length), final_data,
output_part_length);
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
output_length += output_part_length;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
/* For all currently defined algorithms, PSA_AEAD_xxx_OUTPUT_SIZE
* should be exact.*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_encrypt) {
TEST_EQUAL(tag_length, tag_size);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (output_data && tag_length) {
memcpy((output_data + output_length), tag_buffer,
tag_length);
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
output_length += tag_length;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(output_length,
PSA_AEAD_ENCRYPT_OUTPUT_SIZE(key_type, alg,
input_data->len));
TEST_LE_U(output_length,
PSA_AEAD_ENCRYPT_OUTPUT_MAX_SIZE(input_data->len));
} else {
TEST_EQUAL(output_length,
PSA_AEAD_DECRYPT_OUTPUT_SIZE(key_type, alg,
input_data->len));
TEST_LE_U(output_length,
PSA_AEAD_DECRYPT_OUTPUT_MAX_SIZE(input_data->len));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(expected_output->x, expected_output->len,
output_data, output_length);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Convert over to using a single internal test func Make all encrypt/decrypt tests use the same function. Cleanup arguments that were poorly named and document internal function. Removed one test as I didn't want to write another test purely for it, when its already tested in one shot. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 19:46:06 +02:00
test_ok = 1;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
psa_aead_abort(&operation);
mbedtls_free(output_data);
mbedtls_free(part_data);
mbedtls_free(final_data);
PSA_DONE();
return test_ok;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
/*!
* \brief Internal Function for MAC multipart tests.
* \param key_type_arg Type of key passed in
* \param key_data The encryption / decryption key data
* \param alg_arg The type of algorithm used
* \param input_data Data to encrypt / decrypt
* \param data_part_len_arg If not -1, the length of chunks to feed
* the data in to be encrypted / decrypted. If
* -1, no chunking
* \param expected_output Expected output
Fix typos prior to release Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>
2022-12-04 18:19:59 +01:00
* \param is_verify If non-zero this is a verify operation.
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
* \param do_zero_parts If non-zero, interleave zero length chunks
* with normal length chunks.
* \return int Zero on failure, non-zero on success.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
static int mac_multipart_internal_func(int key_type_arg, data_t *key_data,
int alg_arg,
data_t *input_data,
int data_part_len_arg,
data_t *expected_output,
int is_verify,
int do_zero_parts)
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
psa_mac_operation_t operation = PSA_MAC_OPERATION_INIT;
unsigned char mac[PSA_MAC_MAX_SIZE];
size_t part_offset = 0;
size_t part_length = 0;
size_t data_part_len = 0;
size_t mac_len = 0;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
int test_ok = 0;
size_t part_count = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_INIT();
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_verify) {
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_VERIFY_HASH);
} else {
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH);
}
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_verify) {
status = psa_mac_verify_setup(&operation, key, alg);
} else {
status = psa_mac_sign_setup(&operation, key, alg);
}
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(status);
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (data_part_len_arg != -1) {
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
/* Pass data in parts */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
data_part_len = (size_t) data_part_len_arg;
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (part_offset = 0, part_count = 0;
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
part_offset < input_data->len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
part_offset += part_length, part_count++) {
if (do_zero_parts && (part_count & 0x01)) {
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
part_length = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else if ((input_data->len - part_offset) < data_part_len) {
part_length = (input_data->len - part_offset);
} else {
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
part_length = data_part_len;
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_update(&operation,
(input_data->x + part_offset),
part_length));
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
/* Pass all data in one go. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_update(&operation, input_data->x,
input_data->len));
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_verify) {
PSA_ASSERT(psa_mac_verify_finish(&operation, expected_output->x,
expected_output->len));
} else {
PSA_ASSERT(psa_mac_sign_finish(&operation, mac,
PSA_MAC_MAX_SIZE, &mac_len));
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(expected_output->x, expected_output->len,
mac, mac_len);
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
}
test_ok = 1;
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
psa_mac_abort(&operation);
PSA_DONE();
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
return test_ok;
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
}
Only build ecjpake_do_round() is PSA_WANT_ALG_JPAKE is defined Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 17:39:01 +02:00
#if defined(PSA_WANT_ALG_JPAKE)
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
static void ecjpake_do_round(psa_algorithm_t alg, unsigned int primitive,
psa_pake_operation_t *server,
psa_pake_operation_t *client,
int client_input_first,
int round, int inject_error)
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
{
unsigned char *buffer0 = NULL, *buffer1 = NULL;
size_t buffer_length = (
PSA_PAKE_OUTPUT_SIZE(alg, primitive, PSA_PAKE_STEP_KEY_SHARE) +
PSA_PAKE_OUTPUT_SIZE(alg, primitive, PSA_PAKE_STEP_ZK_PUBLIC) +
PSA_PAKE_OUTPUT_SIZE(alg, primitive, PSA_PAKE_STEP_ZK_PROOF)) * 2;
Fix I/O format of PSA EC J-PAKE for compliance The format used by the mbedtls_ecjpake_xxx() APIs and that defined by the PSA Crypto PAKE extension are quite different; the former is tailored to the needs of TLS while the later is quite generic and plain. Previously we only addressed some part of this impedance mismatch: the different number of I/O rounds, but failed to address the part where the legacy API adds some extras (length bytes, ECParameters) that shouldn't be present in the PSA Crypto version. See comments in the code. Add some length testing as well; would have caught the issue. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-05 12:17:34 +02:00
/* The output should be exactly this size according to the spec */
const size_t expected_size_key_share =
PSA_PAKE_OUTPUT_SIZE(alg, primitive, PSA_PAKE_STEP_KEY_SHARE);
/* The output should be exactly this size according to the spec */
const size_t expected_size_zk_public =
PSA_PAKE_OUTPUT_SIZE(alg, primitive, PSA_PAKE_STEP_ZK_PUBLIC);
/* The output can be smaller: the spec allows stripping leading zeroes */
const size_t max_expected_size_zk_proof =
PSA_PAKE_OUTPUT_SIZE(alg, primitive, PSA_PAKE_STEP_ZK_PROOF);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
size_t buffer0_off = 0;
size_t buffer1_off = 0;
size_t s_g1_len, s_g2_len, s_a_len;
size_t s_g1_off, s_g2_off, s_a_off;
size_t s_x1_pk_len, s_x2_pk_len, s_x2s_pk_len;
size_t s_x1_pk_off, s_x2_pk_off, s_x2s_pk_off;
size_t s_x1_pr_len, s_x2_pr_len, s_x2s_pr_len;
size_t s_x1_pr_off, s_x2_pr_off, s_x2s_pr_off;
size_t c_g1_len, c_g2_len, c_a_len;
size_t c_g1_off, c_g2_off, c_a_off;
size_t c_x1_pk_len, c_x2_pk_len, c_x2s_pk_len;
size_t c_x1_pk_off, c_x2_pk_off, c_x2s_pk_off;
size_t c_x1_pr_len, c_x2_pr_len, c_x2s_pr_len;
size_t c_x1_pr_off, c_x2_pr_off, c_x2s_pr_off;
psa_status_t expected_status = PSA_SUCCESS;
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
psa_status_t status;
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(buffer0, buffer_length);
ASSERT_ALLOC(buffer1, buffer_length);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
switch (round) {
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
case 1:
/* Server first round Output */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(server, PSA_PAKE_STEP_KEY_SHARE,
buffer0 + buffer0_off,
512 - buffer0_off, &s_g1_len));
TEST_EQUAL(s_g1_len, expected_size_key_share);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
s_g1_off = buffer0_off;
buffer0_off += s_g1_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(server, PSA_PAKE_STEP_ZK_PUBLIC,
buffer0 + buffer0_off,
512 - buffer0_off, &s_x1_pk_len));
TEST_EQUAL(s_x1_pk_len, expected_size_zk_public);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
s_x1_pk_off = buffer0_off;
buffer0_off += s_x1_pk_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(server, PSA_PAKE_STEP_ZK_PROOF,
buffer0 + buffer0_off,
512 - buffer0_off, &s_x1_pr_len));
TEST_LE_U(s_x1_pr_len, max_expected_size_zk_proof);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
s_x1_pr_off = buffer0_off;
buffer0_off += s_x1_pr_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(server, PSA_PAKE_STEP_KEY_SHARE,
buffer0 + buffer0_off,
512 - buffer0_off, &s_g2_len));
TEST_EQUAL(s_g2_len, expected_size_key_share);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
s_g2_off = buffer0_off;
buffer0_off += s_g2_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(server, PSA_PAKE_STEP_ZK_PUBLIC,
buffer0 + buffer0_off,
512 - buffer0_off, &s_x2_pk_len));
TEST_EQUAL(s_x2_pk_len, expected_size_zk_public);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
s_x2_pk_off = buffer0_off;
buffer0_off += s_x2_pk_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(server, PSA_PAKE_STEP_ZK_PROOF,
buffer0 + buffer0_off,
512 - buffer0_off, &s_x2_pr_len));
TEST_LE_U(s_x2_pr_len, max_expected_size_zk_proof);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
s_x2_pr_off = buffer0_off;
buffer0_off += s_x2_pr_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 1) {
Improve error injection in EC J-PAKE tests Instead of corrupting the public key part of the message, corrupt the proof part. A proof is conceptually similar to a signature, and changing anything in it should make it invalid with a high probability. Also, instead of shifting data, perform a bitflip. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-11-08 14:12:56 +01:00
buffer0[s_x1_pr_off + 8] ^= 1;
buffer0[s_x2_pr_off + 7] ^= 1;
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
expected_status = PSA_ERROR_DATA_INVALID;
}
Add comment in ecjpake_do_round() explaining input errors can be detected any time in the input sequence Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-09-05 17:59:54 +02:00
/*
* When injecting errors in inputs, the implementation is
* free to detect it right away of with a delay.
* This permits delaying the error until the end of the input
* sequence, if no error appears then, this will be treated
* as an error.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (client_input_first == 1) {
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
/* Client first round Input */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_KEY_SHARE,
buffer0 + s_g1_off, s_g1_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PUBLIC,
buffer0 + s_x1_pk_off,
s_x1_pk_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
}
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PROOF,
buffer0 + s_x1_pr_off,
s_x1_pr_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_KEY_SHARE,
buffer0 + s_g2_off,
s_g2_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PUBLIC,
buffer0 + s_x2_pk_off,
s_x2_pk_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PROOF,
buffer0 + s_x2_pr_off,
s_x2_pr_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Make ecjpake_do_round() return void and use TEST_ASSERT with a descriptive text instead of returning a value Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-09-05 18:08:13 +02:00
/* Error didn't trigger, make test fail */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 1) {
TEST_ASSERT(
!"One of the last psa_pake_input() calls should have returned the expected error.");
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
}
/* Client first round Output */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(client, PSA_PAKE_STEP_KEY_SHARE,
buffer1 + buffer1_off,
512 - buffer1_off, &c_g1_len));
TEST_EQUAL(c_g1_len, expected_size_key_share);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
c_g1_off = buffer1_off;
buffer1_off += c_g1_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(client, PSA_PAKE_STEP_ZK_PUBLIC,
buffer1 + buffer1_off,
512 - buffer1_off, &c_x1_pk_len));
TEST_EQUAL(c_x1_pk_len, expected_size_zk_public);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
c_x1_pk_off = buffer1_off;
buffer1_off += c_x1_pk_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(client, PSA_PAKE_STEP_ZK_PROOF,
buffer1 + buffer1_off,
512 - buffer1_off, &c_x1_pr_len));
TEST_LE_U(c_x1_pr_len, max_expected_size_zk_proof);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
c_x1_pr_off = buffer1_off;
buffer1_off += c_x1_pr_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(client, PSA_PAKE_STEP_KEY_SHARE,
buffer1 + buffer1_off,
512 - buffer1_off, &c_g2_len));
TEST_EQUAL(c_g2_len, expected_size_key_share);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
c_g2_off = buffer1_off;
buffer1_off += c_g2_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(client, PSA_PAKE_STEP_ZK_PUBLIC,
buffer1 + buffer1_off,
512 - buffer1_off, &c_x2_pk_len));
TEST_EQUAL(c_x2_pk_len, expected_size_zk_public);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
c_x2_pk_off = buffer1_off;
buffer1_off += c_x2_pk_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(client, PSA_PAKE_STEP_ZK_PROOF,
buffer1 + buffer1_off,
512 - buffer1_off, &c_x2_pr_len));
TEST_LE_U(c_x2_pr_len, max_expected_size_zk_proof);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
c_x2_pr_off = buffer1_off;
buffer1_off += c_x2_pr_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (client_input_first == 0) {
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
/* Client first round Input */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_KEY_SHARE,
buffer0 + s_g1_off, s_g1_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PUBLIC,
buffer0 + s_x1_pk_off,
s_x1_pk_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PROOF,
buffer0 + s_x1_pr_off,
s_x1_pr_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_KEY_SHARE,
buffer0 + s_g2_off,
s_g2_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PUBLIC,
buffer0 + s_x2_pk_off,
s_x2_pk_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PROOF,
buffer0 + s_x2_pr_off,
s_x2_pr_len);
if (inject_error == 1 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Make ecjpake_do_round() return void and use TEST_ASSERT with a descriptive text instead of returning a value Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-09-05 18:08:13 +02:00
/* Error didn't trigger, make test fail */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 1) {
TEST_ASSERT(
!"One of the last psa_pake_input() calls should have returned the expected error.");
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 2) {
Improve error injection in EC J-PAKE tests Instead of corrupting the public key part of the message, corrupt the proof part. A proof is conceptually similar to a signature, and changing anything in it should make it invalid with a high probability. Also, instead of shifting data, perform a bitflip. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-11-08 14:12:56 +01:00
buffer1[c_x1_pr_off + 12] ^= 1;
buffer1[c_x2_pr_off + 7] ^= 1;
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
expected_status = PSA_ERROR_DATA_INVALID;
}
/* Server first round Input */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(server, PSA_PAKE_STEP_KEY_SHARE,
buffer1 + c_g1_off, c_g1_len);
if (inject_error == 2 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(server, PSA_PAKE_STEP_ZK_PUBLIC,
buffer1 + c_x1_pk_off, c_x1_pk_len);
if (inject_error == 2 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(server, PSA_PAKE_STEP_ZK_PROOF,
buffer1 + c_x1_pr_off, c_x1_pr_len);
if (inject_error == 2 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(server, PSA_PAKE_STEP_KEY_SHARE,
buffer1 + c_g2_off, c_g2_len);
if (inject_error == 2 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(server, PSA_PAKE_STEP_ZK_PUBLIC,
buffer1 + c_x2_pk_off, c_x2_pk_len);
if (inject_error == 2 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(server, PSA_PAKE_STEP_ZK_PROOF,
buffer1 + c_x2_pr_off, c_x2_pr_len);
if (inject_error == 2 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Make ecjpake_do_round() return void and use TEST_ASSERT with a descriptive text instead of returning a value Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-09-05 18:08:13 +02:00
/* Error didn't trigger, make test fail */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 2) {
TEST_ASSERT(
!"One of the last psa_pake_input() calls should have returned the expected error.");
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
break;
case 2:
/* Server second round Output */
buffer0_off = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(server, PSA_PAKE_STEP_KEY_SHARE,
buffer0 + buffer0_off,
512 - buffer0_off, &s_a_len));
TEST_EQUAL(s_a_len, expected_size_key_share);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
s_a_off = buffer0_off;
buffer0_off += s_a_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(server, PSA_PAKE_STEP_ZK_PUBLIC,
buffer0 + buffer0_off,
512 - buffer0_off, &s_x2s_pk_len));
TEST_EQUAL(s_x2s_pk_len, expected_size_zk_public);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
s_x2s_pk_off = buffer0_off;
buffer0_off += s_x2s_pk_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(server, PSA_PAKE_STEP_ZK_PROOF,
buffer0 + buffer0_off,
512 - buffer0_off, &s_x2s_pr_len));
TEST_LE_U(s_x2s_pr_len, max_expected_size_zk_proof);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
s_x2s_pr_off = buffer0_off;
buffer0_off += s_x2s_pr_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 3) {
Change to more efficient error injection in ecjpake_do_round() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-21 13:37:06 +02:00
buffer0[s_x2s_pk_off + 12] += 0x33;
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
expected_status = PSA_ERROR_DATA_INVALID;
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (client_input_first == 1) {
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
/* Client second round Input */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_KEY_SHARE,
buffer0 + s_a_off, s_a_len);
if (inject_error == 3 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PUBLIC,
buffer0 + s_x2s_pk_off,
s_x2s_pk_len);
if (inject_error == 3 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PROOF,
buffer0 + s_x2s_pr_off,
s_x2s_pr_len);
if (inject_error == 3 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Make ecjpake_do_round() return void and use TEST_ASSERT with a descriptive text instead of returning a value Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-09-05 18:08:13 +02:00
/* Error didn't trigger, make test fail */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 3) {
TEST_ASSERT(
!"One of the last psa_pake_input() calls should have returned the expected error.");
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
}
/* Client second round Output */
buffer1_off = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(client, PSA_PAKE_STEP_KEY_SHARE,
buffer1 + buffer1_off,
512 - buffer1_off, &c_a_len));
TEST_EQUAL(c_a_len, expected_size_key_share);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
c_a_off = buffer1_off;
buffer1_off += c_a_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(client, PSA_PAKE_STEP_ZK_PUBLIC,
buffer1 + buffer1_off,
512 - buffer1_off, &c_x2s_pk_len));
TEST_EQUAL(c_x2s_pk_len, expected_size_zk_public);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
c_x2s_pk_off = buffer1_off;
buffer1_off += c_x2s_pk_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_output(client, PSA_PAKE_STEP_ZK_PROOF,
buffer1 + buffer1_off,
512 - buffer1_off, &c_x2s_pr_len));
TEST_LE_U(c_x2s_pr_len, max_expected_size_zk_proof);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
c_x2s_pr_off = buffer1_off;
buffer1_off += c_x2s_pr_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (client_input_first == 0) {
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
/* Client second round Input */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_KEY_SHARE,
buffer0 + s_a_off, s_a_len);
if (inject_error == 3 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PUBLIC,
buffer0 + s_x2s_pk_off,
s_x2s_pk_len);
if (inject_error == 3 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(client, PSA_PAKE_STEP_ZK_PROOF,
buffer0 + s_x2s_pr_off,
s_x2s_pr_len);
if (inject_error == 3 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Make ecjpake_do_round() return void and use TEST_ASSERT with a descriptive text instead of returning a value Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-09-05 18:08:13 +02:00
/* Error didn't trigger, make test fail */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 3) {
TEST_ASSERT(
!"One of the last psa_pake_input() calls should have returned the expected error.");
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 4) {
Change to more efficient error injection in ecjpake_do_round() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-21 13:37:06 +02:00
buffer1[c_x2s_pk_off + 7] += 0x28;
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
expected_status = PSA_ERROR_DATA_INVALID;
}
/* Server second round Input */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(server, PSA_PAKE_STEP_KEY_SHARE,
buffer1 + c_a_off, c_a_len);
if (inject_error == 4 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(server, PSA_PAKE_STEP_ZK_PUBLIC,
buffer1 + c_x2s_pk_off, c_x2s_pk_len);
if (inject_error == 4 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(server, PSA_PAKE_STEP_ZK_PROOF,
buffer1 + c_x2s_pr_off, c_x2s_pr_len);
if (inject_error == 4 && status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, PSA_SUCCESS);
Permit any psa_pake_input() step to fail when error injected in input Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-20 14:56:50 +02:00
}
Make ecjpake_do_round() return void and use TEST_ASSERT with a descriptive text instead of returning a value Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-09-05 18:08:13 +02:00
/* Error didn't trigger, make test fail */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 4) {
TEST_ASSERT(
!"One of the last psa_pake_input() calls should have returned the expected error.");
}
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
break;
}
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(buffer0);
mbedtls_free(buffer1);
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
}
Only build ecjpake_do_round() is PSA_WANT_ALG_JPAKE is defined Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 17:39:01 +02:00
#endif /* PSA_WANT_ALG_JPAKE */
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
typedef enum {
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
INJECT_ERR_NONE = 0,
INJECT_ERR_UNINITIALIZED_ACCESS,
INJECT_ERR_DUPLICATE_SETUP,
INJECT_ERR_INVALID_USER,
INJECT_ERR_INVALID_PEER,
INJECT_ERR_SET_USER,
INJECT_ERR_SET_PEER,
INJECT_EMPTY_IO_BUFFER,
INJECT_UNKNOWN_STEP,
INJECT_INVALID_FIRST_STEP,
INJECT_WRONG_BUFFER_SIZE,
INJECT_VALID_OPERATION_AFTER_FAILURE,
INJECT_ANTICIPATE_KEY_DERIVATION_1,
INJECT_ANTICIPATE_KEY_DERIVATION_2,
} ecjpake_injected_failure_t;
Move {min|max}_complete choice logic into function Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 19:41:05 +01:00
static void interruptible_signverify_get_minmax_completes(uint32_t max_ops,
psa_status_t expected_status,
size_t *min_completes,
size_t *max_completes)
{
/* This is slightly contrived, but we only really know that with a minimum
value of max_ops that a successful operation should take more than one op
to complete, and likewise that with a max_ops of
PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED, it should complete in one go. */
if (max_ops == 0 || max_ops == 1) {
/* Failure test cases will fail on the first op. */
if (expected_status == PSA_SUCCESS) {
*min_completes = 2;
} else {
*min_completes = 1;
}
*max_completes = PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED;
} else {
*min_completes = 1;
*max_completes = 1;
}
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* END_HEADER */
/* BEGIN_DEPENDENCIES
* depends_on:MBEDTLS_PSA_CRYPTO_C
* END_DEPENDENCIES
*/
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void static_checks()
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
size_t max_truncated_mac_size =
PSA_ALG_MAC_TRUNCATION_MASK >> PSA_MAC_TRUNCATION_OFFSET;
/* Check that the length for a truncated MAC always fits in the algorithm
* encoding. The shifted mask is the maximum truncated value. The
* untruncated algorithm may be one byte larger. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(PSA_MAC_MAX_SIZE, 1 + max_truncated_mac_size);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Add import-and-exercise tests for some signature algorithms
2018-06-26 16:12:43 +02:00
/* END_CASE */
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void import_with_policy(int type_arg,
int usage_arg, int alg_arg,
int expected_status_arg)
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t got_attributes = PSA_KEY_ATTRIBUTES_INIT;
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_type_t type = type_arg;
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
psa_key_usage_t usage = usage_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_algorithm_t alg = alg_arg;
psa_status_t expected_status = expected_status_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
const uint8_t key_material[16] = { 0 };
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t status;
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_type(&attributes, type);
psa_set_key_usage_flags(&attributes, usage);
psa_set_key_algorithm(&attributes, alg);
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_import_key(&attributes,
key_material, sizeof(key_material),
&key);
TEST_EQUAL(status, expected_status);
if (status != PSA_SUCCESS) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &got_attributes));
TEST_EQUAL(psa_get_key_type(&got_attributes), type);
TEST_EQUAL(psa_get_key_usage_flags(&got_attributes),
mbedtls_test_update_key_usage_flags(usage));
TEST_EQUAL(psa_get_key_algorithm(&got_attributes), alg);
ASSERT_NO_SLOT_NUMBER(&got_attributes);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_destroy_key(key));
test_operations_on_invalid_key(key);
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&got_attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
PSA_DONE();
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
}
/* END_CASE */
Add test function for effective key attributes We're going to create some edge cases where the attributes of a key are not bitwise identical to the attributes passed during creation. Have a test function ready for that.
2019-11-26 18:07:46 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void import_with_data(data_t *data, int type_arg,
int attr_bits_arg,
int expected_status_arg)
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
{
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_attributes_t got_attributes = PSA_KEY_ATTRIBUTES_INIT;
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t type = type_arg;
size_t attr_bits = attr_bits_arg;
Add support for minimum-tag-length AEAD and MAC policies Includes tests. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com> # Conflicts: # include/psa/crypto_values.h # tests/suites/test_suite_psa_crypto.function
2021-02-18 12:03:50 +01:00
psa_status_t expected_status = expected_status_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t status;
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_type(&attributes, type);
psa_set_key_bits(&attributes, attr_bits);
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_import_key(&attributes, data->x, data->len, &key);
TEST_EQUAL(status, expected_status);
if (status != PSA_SUCCESS) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add support for minimum-tag-length AEAD and MAC policies Includes tests. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com> # Conflicts: # include/psa/crypto_values.h # tests/suites/test_suite_psa_crypto.function
2021-02-18 12:03:50 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &got_attributes));
TEST_EQUAL(psa_get_key_type(&got_attributes), type);
if (attr_bits != 0) {
TEST_EQUAL(attr_bits, psa_get_key_bits(&got_attributes));
}
ASSERT_NO_SLOT_NUMBER(&got_attributes);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_destroy_key(key));
test_operations_on_invalid_key(key);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
exit:
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&got_attributes);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
PSA_DONE();
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Allow comments in prototypes of unit test functions Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-11-11 16:37:16 +01:00
/* Construct and attempt to import a large unstructured key. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void import_large_key(int type_arg, int byte_size_arg,
int expected_status_arg)
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_type_t type = type_arg;
size_t byte_size = byte_size_arg;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t expected_status = expected_status_arg;
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
psa_status_t status;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
uint8_t *buffer = NULL;
size_t buffer_size = byte_size + 1;
size_t n;
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Skip the test case if the target running the test cannot
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-12-21 06:14:10 +01:00
* accommodate large keys due to heap size constraints */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC_WEAK(buffer, buffer_size);
memset(buffer, 'K', byte_size);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Try importing the key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_EXPORT);
psa_set_key_type(&attributes, type);
status = psa_import_key(&attributes, buffer, byte_size, &key);
TEST_ASSUME(status != PSA_ERROR_INSUFFICIENT_MEMORY);
TEST_EQUAL(status, expected_status);
if (status == PSA_SUCCESS) {
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
TEST_EQUAL(psa_get_key_type(&attributes), type);
TEST_EQUAL(psa_get_key_bits(&attributes),
PSA_BYTES_TO_BITS(byte_size));
ASSERT_NO_SLOT_NUMBER(&attributes);
memset(buffer, 0, byte_size + 1);
PSA_ASSERT(psa_export_key(key, buffer, byte_size, &n));
for (n = 0; n < byte_size; n++) {
TEST_EQUAL(buffer[n], 'K');
}
for (n = byte_size; n < buffer_size; n++) {
TEST_EQUAL(buffer[n], 0);
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
exit:
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
PSA_DONE();
mbedtls_free(buffer);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
}
/* END_CASE */
Add missing MBEDTLS_ASN1_WRITE_C dependency in test_suite_psa_crypto Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-01-17 15:29:38 +01:00
/* BEGIN_CASE depends_on:MBEDTLS_ASN1_WRITE_C */
Allow comments in prototypes of unit test functions Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-11-11 16:37:16 +01:00
/* Import an RSA key with a valid structure (but not valid numbers
* inside, beyond having sensible size and parity). This is expected to
* fail for large keys. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void import_rsa_made_up(int bits_arg, int keypair, int expected_status_arg)
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t bits = bits_arg;
Add support for minimum-tag-length AEAD and MAC policies Includes tests. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com> # Conflicts: # include/psa/crypto_values.h # tests/suites/test_suite_psa_crypto.function
2021-02-18 12:03:50 +01:00
psa_status_t expected_status = expected_status_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t status;
psa_key_type_t type =
keypair ? PSA_KEY_TYPE_RSA_KEY_PAIR : PSA_KEY_TYPE_RSA_PUBLIC_KEY;
size_t buffer_size = /* Slight overapproximations */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
keypair ? bits * 9 / 16 + 80 : bits / 8 + 20;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
unsigned char *buffer = NULL;
unsigned char *p;
int ret;
size_t length;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
ASSERT_ALLOC(buffer, buffer_size);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT((ret = construct_fake_rsa_key(buffer, buffer_size, &p,
bits, keypair)) >= 0);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
length = ret;
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Try importing the key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_type(&attributes, type);
status = psa_import_key(&attributes, p, length, &key);
TEST_EQUAL(status, expected_status);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_SUCCESS) {
PSA_ASSERT(psa_destroy_key(key));
}
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(buffer);
PSA_DONE();
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void import_export(data_t *data,
int type_arg,
int usage_arg, int alg_arg,
int lifetime_arg,
int expected_bits,
int export_size_delta,
int expected_export_status_arg,
/*whether reexport must give the original input exactly*/
int canonical_input)
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_type_t type = type_arg;
psa_algorithm_t alg = alg_arg;
psa_status_t expected_export_status = expected_export_status_arg;
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
psa_status_t status;
Add test driver support for opaque key import -Add test driver support to import/export while wrapping keys meant to be stored in the PSA core as opaque( emulating an SE without storage ). -Export validate_unstructured_key_bit_size as psa_validate_unstructured_key_bit_size, thereby changing its scope. -Improve the import/export test cases in test_suite_psa_crypto to also cover opaque keys, thereby avoiding duplication. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-06 23:20:22 +02:00
psa_key_lifetime_t lifetime = lifetime_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
unsigned char *exported = NULL;
unsigned char *reexported = NULL;
size_t export_size;
size_t exported_length = INVALID_EXPORT_LENGTH;
size_t reexported_length;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t got_attributes = PSA_KEY_ATTRIBUTES_INIT;
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
export_size = (ptrdiff_t) data->len + export_size_delta;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(exported, export_size);
if (!canonical_input) {
ASSERT_ALLOC(reexported, export_size);
}
PSA_ASSERT(psa_crypto_init());
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_lifetime(&attributes, lifetime);
psa_set_key_usage_flags(&attributes, usage_arg);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, type);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Import the key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, data->x, data->len, &key));
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Test the key information */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &got_attributes));
TEST_EQUAL(psa_get_key_type(&got_attributes), type);
TEST_EQUAL(psa_get_key_bits(&got_attributes), (size_t) expected_bits);
ASSERT_NO_SLOT_NUMBER(&got_attributes);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Export the key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_export_key(key, exported, export_size, &exported_length);
TEST_EQUAL(status, expected_export_status);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* The exported length must be set by psa_export_key() to a value between 0
* and export_size. On errors, the exported length must be 0. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(exported_length != INVALID_EXPORT_LENGTH);
TEST_ASSERT(status == PSA_SUCCESS || exported_length == 0);
TEST_LE_U(exported_length, export_size);
TEST_ASSERT(mem_is_char(exported + exported_length, 0,
export_size - exported_length));
if (status != PSA_SUCCESS) {
TEST_EQUAL(exported_length, 0);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto destroy;
}
/* Run sanity checks on the exported key. For non-canonical inputs,
* this validates the canonical representations. For canonical inputs,
* this doesn't directly validate the implementation, but it still helps
* by cross-validating the test data with the sanity check code. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!psa_key_lifetime_is_external(lifetime)) {
if (!mbedtls_test_psa_exercise_key(key, usage_arg, 0)) {
Add test driver support for opaque key import -Add test driver support to import/export while wrapping keys meant to be stored in the PSA core as opaque( emulating an SE without storage ). -Export validate_unstructured_key_bit_size as psa_validate_unstructured_key_bit_size, thereby changing its scope. -Improve the import/export test cases in test_suite_psa_crypto to also cover opaque keys, thereby avoiding duplication. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-06 23:20:22 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add test driver support for opaque key import -Add test driver support to import/export while wrapping keys meant to be stored in the PSA core as opaque( emulating an SE without storage ). -Export validate_unstructured_key_bit_size as psa_validate_unstructured_key_bit_size, thereby changing its scope. -Improve the import/export test cases in test_suite_psa_crypto to also cover opaque keys, thereby avoiding duplication. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-06 23:20:22 +02:00
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (canonical_input) {
ASSERT_COMPARE(data->x, data->len, exported, exported_length);
} else {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
mbedtls_svc_key_id_t key2 = MBEDTLS_SVC_KEY_ID_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, exported, exported_length,
&key2));
PSA_ASSERT(psa_export_key(key2,
reexported,
export_size,
&reexported_length));
ASSERT_COMPARE(exported, exported_length,
reexported, reexported_length);
PSA_ASSERT(psa_destroy_key(key2));
}
TEST_LE_U(exported_length,
PSA_EXPORT_KEY_OUTPUT_SIZE(type,
psa_get_key_bits(&got_attributes)));
TEST_LE_U(exported_length, PSA_EXPORT_KEY_PAIR_MAX_SIZE);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
destroy:
/* Destroy the key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_destroy_key(key));
test_operations_on_invalid_key(key);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&got_attributes);
psa_destroy_key(key);
mbedtls_free(exported);
mbedtls_free(reexported);
PSA_DONE();
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void import_export_public_key(data_t *data,
int type_arg, // key pair or public key
int alg_arg,
int lifetime_arg,
int export_size_delta,
int expected_export_status_arg,
data_t *expected_public_key)
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_type_t type = type_arg;
psa_algorithm_t alg = alg_arg;
psa_status_t expected_export_status = expected_export_status_arg;
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
psa_status_t status;
Add test driver support for opaque key import -Add test driver support to import/export while wrapping keys meant to be stored in the PSA core as opaque( emulating an SE without storage ). -Export validate_unstructured_key_bit_size as psa_validate_unstructured_key_bit_size, thereby changing its scope. -Improve the import/export test cases in test_suite_psa_crypto to also cover opaque keys, thereby avoiding duplication. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-06 23:20:22 +02:00
psa_key_lifetime_t lifetime = lifetime_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
unsigned char *exported = NULL;
size_t export_size = expected_public_key->len + export_size_delta;
size_t exported_length = INVALID_EXPORT_LENGTH;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_lifetime(&attributes, lifetime);
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_EXPORT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, type);
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Import the key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, data->x, data->len, &key));
Tests: cover policy checks for all operations Add tests of key policy checks for MAC, cipher, AEAD, asymmetric encryption and asymmetric signature. For each category, test with/without the requisite usage flag in each direction, and test algorithm mismatch.
2018-07-06 16:53:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Export the public key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(exported, export_size);
status = psa_export_public_key(key,
exported, export_size,
&exported_length);
TEST_EQUAL(status, expected_export_status);
if (status == PSA_SUCCESS) {
psa_key_type_t public_type = PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t bits;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
bits = psa_get_key_bits(&attributes);
TEST_LE_U(expected_public_key->len,
PSA_EXPORT_KEY_OUTPUT_SIZE(public_type, bits));
TEST_LE_U(expected_public_key->len,
PSA_EXPORT_PUBLIC_KEY_OUTPUT_SIZE(public_type, bits));
TEST_LE_U(expected_public_key->len,
PSA_EXPORT_PUBLIC_KEY_MAX_SIZE);
ASSERT_COMPARE(expected_public_key->x, expected_public_key->len,
exported, exported_length);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
exit:
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(exported);
psa_destroy_key(key);
PSA_DONE();
Reorder PSA test cases to group them by topic * init-deinit * import-export * policies * lifetime * hash * MAC * cipher * AEAD * asymmetric sign * asymmetric verify * asymmetric encrypt-decrypt This commit only moves test functions and test cases around. It does not modify, add or remove tests.
2018-06-18 22:20:03 +02:00
}
/* END_CASE */
Adapt derive_key_policy test to the new API
2019-06-11 15:50:16 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void import_and_exercise_key(data_t *data,
int type_arg,
int bits_arg,
int alg_arg)
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_type_t type = type_arg;
size_t bits = bits_arg;
psa_algorithm_t alg = alg_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_usage_t usage = mbedtls_test_psa_usage_to_exercise(type, alg);
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_attributes_t got_attributes = PSA_KEY_ATTRIBUTES_INIT;
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, usage);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, type);
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Import the key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, data->x, data->len, &key));
Adapt derive_key_policy test to the new API
2019-06-11 15:50:16 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Test the key information */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &got_attributes));
TEST_EQUAL(psa_get_key_type(&got_attributes), type);
TEST_EQUAL(psa_get_key_bits(&got_attributes), bits);
Adapt derive_key_policy test to the new API
2019-06-11 15:50:16 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Do something with the key according to its type and permitted usage. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_exercise_key(key, usage, alg)) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Adapt derive_key_policy test to the new API
2019-06-11 15:50:16 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_destroy_key(key));
test_operations_on_invalid_key(key);
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
exit:
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&got_attributes);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
PSA_DONE();
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
}
/* END_CASE */
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void effective_key_attributes(int type_arg, int expected_type_arg,
int bits_arg, int expected_bits_arg,
int usage_arg, int expected_usage_arg,
int alg_arg, int expected_alg_arg)
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_type_t key_type = type_arg;
psa_key_type_t expected_key_type = expected_type_arg;
size_t bits = bits_arg;
size_t expected_bits = expected_bits_arg;
psa_algorithm_t alg = alg_arg;
psa_algorithm_t expected_alg = expected_alg_arg;
psa_key_usage_t usage = usage_arg;
psa_key_usage_t expected_usage = expected_usage_arg;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, usage);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
psa_set_key_bits(&attributes, bits);
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_generate_key(&attributes, &key));
psa_reset_key_attributes(&attributes);
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
TEST_EQUAL(psa_get_key_type(&attributes), expected_key_type);
TEST_EQUAL(psa_get_key_bits(&attributes), expected_bits);
TEST_EQUAL(psa_get_key_usage_flags(&attributes), expected_usage);
TEST_EQUAL(psa_get_key_algorithm(&attributes), expected_alg);
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
exit:
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
PSA_DONE();
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
}
/* END_CASE */
Keys may allow a second algorithm Add a second permitted algorithm to key policies. This commit includes smoke tests that do not cover psa_copy_key.
2019-05-10 19:33:38 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void check_key_policy(int type_arg, int bits_arg,
int usage_arg, int alg_arg)
Keys may allow a second algorithm Add a second permitted algorithm to key policies. This commit includes smoke tests that do not cover psa_copy_key.
2019-05-10 19:33:38 +02:00
{
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
test_effective_key_attributes(type_arg, type_arg, bits_arg, bits_arg,
usage_arg,
mbedtls_test_update_key_usage_flags(usage_arg),
alg_arg, alg_arg);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
}
/* END_CASE */
Keys may allow a second algorithm Add a second permitted algorithm to key policies. This commit includes smoke tests that do not cover psa_copy_key.
2019-05-10 19:33:38 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void key_attributes_init()
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
/* Test each valid way of initializing the object, except for `= {0}`, as
* Clang 5 complains when `-Wmissing-field-initializers` is used, even
* though it's OK by the C standard. We could test for this, but we'd need
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-12-21 06:14:10 +01:00
* to suppress the Clang warning for the test. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_attributes_t func = psa_key_attributes_init();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_attributes_t init = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t zero;
Keys may allow a second algorithm Add a second permitted algorithm to key policies. This commit includes smoke tests that do not cover psa_copy_key.
2019-05-10 19:33:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
memset(&zero, 0, sizeof(zero));
Keys may allow a second algorithm Add a second permitted algorithm to key policies. This commit includes smoke tests that do not cover psa_copy_key.
2019-05-10 19:33:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_get_key_lifetime(&func), PSA_KEY_LIFETIME_VOLATILE);
TEST_EQUAL(psa_get_key_lifetime(&init), PSA_KEY_LIFETIME_VOLATILE);
TEST_EQUAL(psa_get_key_lifetime(&zero), PSA_KEY_LIFETIME_VOLATILE);
Keys may allow a second algorithm Add a second permitted algorithm to key policies. This commit includes smoke tests that do not cover psa_copy_key.
2019-05-10 19:33:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_get_key_type(&func), 0);
TEST_EQUAL(psa_get_key_type(&init), 0);
TEST_EQUAL(psa_get_key_type(&zero), 0);
Keys may allow a second algorithm Add a second permitted algorithm to key policies. This commit includes smoke tests that do not cover psa_copy_key.
2019-05-10 19:33:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_get_key_bits(&func), 0);
TEST_EQUAL(psa_get_key_bits(&init), 0);
TEST_EQUAL(psa_get_key_bits(&zero), 0);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_get_key_usage_flags(&func), 0);
TEST_EQUAL(psa_get_key_usage_flags(&init), 0);
TEST_EQUAL(psa_get_key_usage_flags(&zero), 0);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_get_key_algorithm(&func), 0);
TEST_EQUAL(psa_get_key_algorithm(&init), 0);
TEST_EQUAL(psa_get_key_algorithm(&zero), 0);
Keys may allow a second algorithm Add a second permitted algorithm to key policies. This commit includes smoke tests that do not cover psa_copy_key.
2019-05-10 19:33:38 +02:00
}
/* END_CASE */
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void mac_key_policy(int policy_usage_arg,
int policy_alg_arg,
int key_type_arg,
data_t *key_data,
int exercise_alg_arg,
int expected_status_sign_arg,
int expected_status_verify_arg)
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_mac_operation_t operation = PSA_MAC_OPERATION_INIT;
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t policy_alg = policy_alg_arg;
psa_algorithm_t exercise_alg = exercise_alg_arg;
psa_key_usage_t policy_usage = policy_usage_arg;
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
psa_status_t status;
Use separate expected results for MAC sign and verify key policy. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-08-24 11:01:23 +02:00
psa_status_t expected_status_sign = expected_status_sign_arg;
psa_status_t expected_status_verify = expected_status_verify_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
unsigned char mac[PSA_MAC_MAX_SIZE];
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, policy_usage);
psa_set_key_algorithm(&attributes, policy_alg);
psa_set_key_type(&attributes, key_type);
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_get_key_usage_flags(&attributes),
mbedtls_test_update_key_usage_flags(policy_usage));
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_mac_sign_setup(&operation, key, exercise_alg);
TEST_EQUAL(status, expected_status_sign);
Add support for minimum-tag-length AEAD and MAC policies Includes tests. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com> # Conflicts: # include/psa/crypto_values.h # tests/suites/test_suite_psa_crypto.function
2021-02-18 12:03:50 +01:00
Extend mac_key_policy test. Add checks for psa_mac_compute and psa_mac_verify. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-08-30 17:09:03 +02:00
/* Calculate the MAC, one-shot case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
uint8_t input[128] = { 0 };
Extend mac_key_policy test. Add checks for psa_mac_compute and psa_mac_verify. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-08-30 17:09:03 +02:00
size_t mac_len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_mac_compute(key, exercise_alg,
input, 128,
mac, PSA_MAC_MAX_SIZE, &mac_len),
expected_status_sign);
Extend mac_key_policy test. Add checks for psa_mac_compute and psa_mac_verify. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-08-30 17:09:03 +02:00
Add Multipart Message authentication Compute & Verify cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 12:20:21 +01:00
/* Calculate the MAC, multi-part case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_abort(&operation));
status = psa_mac_sign_setup(&operation, key, exercise_alg);
if (status == PSA_SUCCESS) {
status = psa_mac_update(&operation, input, 128);
if (status == PSA_SUCCESS) {
TEST_EQUAL(psa_mac_sign_finish(&operation, mac, PSA_MAC_MAX_SIZE,
&mac_len),
expected_status_sign);
} else {
TEST_EQUAL(status, expected_status_sign);
}
} else {
TEST_EQUAL(status, expected_status_sign);
Add Multipart Message authentication Compute & Verify cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 12:20:21 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_abort(&operation));
Add Multipart Message authentication Compute & Verify cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 12:20:21 +01:00
Extend mac_key_policy test. Add checks for psa_mac_compute and psa_mac_verify. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-08-30 17:09:03 +02:00
/* Verify correct MAC, one-shot case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_mac_verify(key, exercise_alg, input, 128,
mac, mac_len);
Extend mac_key_policy test. Add checks for psa_mac_compute and psa_mac_verify. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-08-30 17:09:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (expected_status_sign != PSA_SUCCESS && expected_status_verify == PSA_SUCCESS) {
TEST_EQUAL(status, PSA_ERROR_INVALID_SIGNATURE);
} else {
TEST_EQUAL(status, expected_status_verify);
}
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
Add Multipart Message authentication Compute & Verify cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 12:20:21 +01:00
/* Verify correct MAC, multi-part case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_mac_verify_setup(&operation, key, exercise_alg);
if (status == PSA_SUCCESS) {
status = psa_mac_update(&operation, input, 128);
if (status == PSA_SUCCESS) {
status = psa_mac_verify_finish(&operation, mac, mac_len);
if (expected_status_sign != PSA_SUCCESS && expected_status_verify == PSA_SUCCESS) {
TEST_EQUAL(status, PSA_ERROR_INVALID_SIGNATURE);
} else {
TEST_EQUAL(status, expected_status_verify);
}
} else {
TEST_EQUAL(status, expected_status_verify);
Add Multipart Message authentication Compute & Verify cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 12:20:21 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, expected_status_verify);
Add Multipart Message authentication Compute & Verify cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 12:20:21 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_mac_abort(&operation);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
memset(mac, 0, sizeof(mac));
status = psa_mac_verify_setup(&operation, key, exercise_alg);
TEST_EQUAL(status, expected_status_verify);
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_mac_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
Update key agreement policy tests for the new derivation API Separate test functions for raw key agreement and key agreement with KDF.
2019-04-11 21:25:46 +02:00
}
/* END_CASE */
Test psa_copy_key Split the testing into tests that exercise policies in test_suite_psa_crypto and tests that exercise slot content (slot states, key material) in test_suite_psa_crypto_slot_management. Test various cases of source and target policies with and without wildcards. Missing: testing of the policy constraint on psa_copy_key itself. Test several key types (raw data, AES, RSA). Test with the source or target being persistent. Add failure tests (incompatible policies, source slot empty, target slot occupied).
2019-01-28 13:03:09 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_key_policy(int policy_usage_arg,
int policy_alg,
int key_type,
data_t *key_data,
int exercise_alg)
Test psa_copy_key Split the testing into tests that exercise policies in test_suite_psa_crypto and tests that exercise slot content (slot states, key material) in test_suite_psa_crypto_slot_management. Test various cases of source and target policies with and without wildcards. Missing: testing of the policy constraint on psa_copy_key itself. Test several key types (raw data, AES, RSA). Test with the source or target being persistent. Add failure tests (incompatible policies, source slot empty, target slot occupied).
2019-01-28 13:03:09 +01:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
psa_key_usage_t policy_usage = policy_usage_arg;
Add Cipher Key Policy check one-shot cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:50:35 +01:00
size_t output_buffer_size = 0;
size_t input_buffer_size = 0;
size_t output_length = 0;
uint8_t *output = NULL;
uint8_t *input = NULL;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t status;
Test psa_copy_key Split the testing into tests that exercise policies in test_suite_psa_crypto and tests that exercise slot content (slot states, key material) in test_suite_psa_crypto_slot_management. Test various cases of source and target policies with and without wildcards. Missing: testing of the policy constraint on psa_copy_key itself. Test several key types (raw data, AES, RSA). Test with the source or target being persistent. Add failure tests (incompatible policies, source slot empty, target slot occupied).
2019-01-28 13:03:09 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
input_buffer_size = PSA_BLOCK_CIPHER_BLOCK_LENGTH(exercise_alg);
output_buffer_size = PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, exercise_alg,
input_buffer_size);
Add Cipher Key Policy check one-shot cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:50:35 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(input, input_buffer_size);
ASSERT_ALLOC(output, output_buffer_size);
Add Cipher Key Policy check one-shot cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:50:35 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Test psa_copy_key Split the testing into tests that exercise policies in test_suite_psa_crypto and tests that exercise slot content (slot states, key material) in test_suite_psa_crypto_slot_management. Test various cases of source and target policies with and without wildcards. Missing: testing of the policy constraint on psa_copy_key itself. Test several key types (raw data, AES, RSA). Test with the source or target being persistent. Add failure tests (incompatible policies, source slot empty, target slot occupied).
2019-01-28 13:03:09 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, policy_usage);
psa_set_key_algorithm(&attributes, policy_alg);
psa_set_key_type(&attributes, key_type);
Test psa_copy_key Split the testing into tests that exercise policies in test_suite_psa_crypto and tests that exercise slot content (slot states, key material) in test_suite_psa_crypto_slot_management. Test various cases of source and target policies with and without wildcards. Missing: testing of the policy constraint on psa_copy_key itself. Test several key types (raw data, AES, RSA). Test with the source or target being persistent. Add failure tests (incompatible policies, source slot empty, target slot occupied).
2019-01-28 13:03:09 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add support for minimum-tag-length AEAD and MAC policies Includes tests. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com> # Conflicts: # include/psa/crypto_values.h # tests/suites/test_suite_psa_crypto.function
2021-02-18 12:03:50 +01:00
Rename function to conform to the library Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-28 14:05:00 +02:00
/* Check if no key usage flag implication is done */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(policy_usage,
mbedtls_test_update_key_usage_flags(policy_usage));
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
Add Cipher Key Policy check one-shot cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:50:35 +01:00
/* Encrypt check, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_encrypt(key, exercise_alg, input, input_buffer_size,
output, output_buffer_size,
&output_length);
if (policy_alg == exercise_alg &&
(policy_usage & PSA_KEY_USAGE_ENCRYPT) != 0) {
PSA_ASSERT(status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
Add Cipher Key Policy check one-shot cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:50:35 +01:00
/* Encrypt check, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_encrypt_setup(&operation, key, exercise_alg);
if (policy_alg == exercise_alg &&
(policy_usage & PSA_KEY_USAGE_ENCRYPT) != 0) {
PSA_ASSERT(status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
psa_cipher_abort(&operation);
Test psa_copy_key Split the testing into tests that exercise policies in test_suite_psa_crypto and tests that exercise slot content (slot states, key material) in test_suite_psa_crypto_slot_management. Test various cases of source and target policies with and without wildcards. Missing: testing of the policy constraint on psa_copy_key itself. Test several key types (raw data, AES, RSA). Test with the source or target being persistent. Add failure tests (incompatible policies, source slot empty, target slot occupied).
2019-01-28 13:03:09 +01:00
Add Cipher Key Policy check one-shot cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:50:35 +01:00
/* Decrypt check, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_decrypt(key, exercise_alg, output, output_buffer_size,
input, input_buffer_size,
&output_length);
if (policy_alg == exercise_alg &&
(policy_usage & PSA_KEY_USAGE_DECRYPT) != 0) {
PSA_ASSERT(status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
Add Cipher Key Policy check one-shot cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:50:35 +01:00
/* Decrypt check, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_decrypt_setup(&operation, key, exercise_alg);
if (policy_alg == exercise_alg &&
(policy_usage & PSA_KEY_USAGE_DECRYPT) != 0) {
PSA_ASSERT(status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
Test psa_copy_key Split the testing into tests that exercise policies in test_suite_psa_crypto and tests that exercise slot content (slot states, key material) in test_suite_psa_crypto_slot_management. Test various cases of source and target policies with and without wildcards. Missing: testing of the policy constraint on psa_copy_key itself. Test several key types (raw data, AES, RSA). Test with the source or target being persistent. Add failure tests (incompatible policies, source slot empty, target slot occupied).
2019-01-28 13:03:09 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
mbedtls_free(input);
mbedtls_free(output);
psa_destroy_key(key);
PSA_DONE();
Test psa_copy_key Split the testing into tests that exercise policies in test_suite_psa_crypto and tests that exercise slot content (slot states, key material) in test_suite_psa_crypto_slot_management. Test various cases of source and target policies with and without wildcards. Missing: testing of the policy constraint on psa_copy_key itself. Test several key types (raw data, AES, RSA). Test with the source or target being persistent. Add failure tests (incompatible policies, source slot empty, target slot occupied).
2019-01-28 13:03:09 +01:00
}
/* END_CASE */
Test psa_copy_key with wrong type or size in attributes Split the test function copy_key into two: one for success and one for failure. Add failure tests where the attributes specify an incorrect type or size.
2019-05-03 17:14:08 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_key_policy(int policy_usage_arg,
int policy_alg,
int key_type,
data_t *key_data,
int nonce_length_arg,
int tag_length_arg,
int exercise_alg,
int expected_status_arg)
Test psa_copy_key with wrong type or size in attributes Split the test function copy_key into two: one for success and one for failure. Add failure tests where the attributes specify an incorrect type or size.
2019-05-03 17:14:08 +02:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add AEAD Key Policy check multi-part cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:51:11 +01:00
psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
psa_key_usage_t policy_usage = policy_usage_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t status;
psa_status_t expected_status = expected_status_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
unsigned char nonce[16] = { 0 };
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t nonce_length = nonce_length_arg;
unsigned char tag[16];
size_t tag_length = tag_length_arg;
size_t output_length;
Test psa_copy_key with wrong type or size in attributes Split the test function copy_key into two: one for success and one for failure. Add failure tests where the attributes specify an incorrect type or size.
2019-05-03 17:14:08 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(nonce_length, sizeof(nonce));
TEST_LE_U(tag_length, sizeof(tag));
Close or destroy keys explicitly in tests
2019-05-28 14:08:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Close or destroy keys explicitly in tests
2019-05-28 14:08:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, policy_usage);
psa_set_key_algorithm(&attributes, policy_alg);
psa_set_key_type(&attributes, key_type);
Test psa_copy_key with wrong type or size in attributes Split the test function copy_key into two: one for success and one for failure. Add failure tests where the attributes specify an incorrect type or size.
2019-05-03 17:14:08 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
psa: Add initializers for hash operation objects Add new initializers for hash operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:47:44 +01:00
Rename function to conform to the library Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-28 14:05:00 +02:00
/* Check if no key usage implication is done */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(policy_usage,
mbedtls_test_update_key_usage_flags(policy_usage));
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
Add AEAD Key Policy check multi-part cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:51:11 +01:00
/* Encrypt check, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_encrypt(key, exercise_alg,
nonce, nonce_length,
NULL, 0,
NULL, 0,
tag, tag_length,
&output_length);
if ((policy_usage & PSA_KEY_USAGE_ENCRYPT) != 0) {
TEST_EQUAL(status, expected_status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
psa: Add initializers for hash operation objects Add new initializers for hash operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:47:44 +01:00
Add AEAD Key Policy check multi-part cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:51:11 +01:00
/* Encrypt check, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_encrypt_setup(&operation, key, exercise_alg);
if ((policy_usage & PSA_KEY_USAGE_ENCRYPT) != 0) {
TEST_EQUAL(status, expected_status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
Add AEAD Key Policy check multi-part cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:51:11 +01:00
/* Decrypt check, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
memset(tag, 0, sizeof(tag));
status = psa_aead_decrypt(key, exercise_alg,
nonce, nonce_length,
NULL, 0,
tag, tag_length,
NULL, 0,
&output_length);
if ((policy_usage & PSA_KEY_USAGE_DECRYPT) == 0) {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
} else if (expected_status == PSA_SUCCESS) {
TEST_EQUAL(status, PSA_ERROR_INVALID_SIGNATURE);
} else {
TEST_EQUAL(status, expected_status);
}
psa: Disallow use of invalid hash contexts If a hash context has not been set up, fail with PSA_ERROR_BAD_STATE as documented in crypto.h and the PSA Crypto specification.
2019-02-15 14:52:25 +01:00
Add AEAD Key Policy check multi-part cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:51:11 +01:00
/* Decrypt check, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_abort(&operation));
status = psa_aead_decrypt_setup(&operation, key, exercise_alg);
if ((policy_usage & PSA_KEY_USAGE_DECRYPT) == 0) {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
} else {
TEST_EQUAL(status, expected_status);
}
Add AEAD Key Policy check multi-part cases Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:51:11 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_abort(&operation));
psa_destroy_key(key);
PSA_DONE();
psa: Add initializers for hash operation objects Add new initializers for hash operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:47:44 +01:00
}
/* END_CASE */
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void asymmetric_encryption_key_policy(int policy_usage_arg,
int policy_alg,
int key_type,
data_t *key_data,
int exercise_alg)
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
psa_key_usage_t policy_usage = policy_usage_arg;
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
psa_status_t status;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t key_bits;
size_t buffer_length;
unsigned char *buffer = NULL;
size_t output_length;
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, policy_usage);
psa_set_key_algorithm(&attributes, policy_alg);
psa_set_key_type(&attributes, key_type);
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Test abort after failed setup Commit "Smoke-test operation contexts after setup+abort" replaced {failed-setup; abort} sequences by {failed-setup; successful-setup}. We want to test that, but we also want to test {failed-setup; abort}. So test {failed-setup; abort; failed-setup; successful-setup}.
2019-02-25 22:11:18 +01:00
Rename function to conform to the library Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-28 14:05:00 +02:00
/* Check if no key usage implication is done */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(policy_usage,
mbedtls_test_update_key_usage_flags(policy_usage));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
buffer_length = PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(key_type, key_bits,
exercise_alg);
ASSERT_ALLOC(buffer, buffer_length);
status = psa_asymmetric_encrypt(key, exercise_alg,
NULL, 0,
NULL, 0,
buffer, buffer_length,
&output_length);
if (policy_alg == exercise_alg &&
(policy_usage & PSA_KEY_USAGE_ENCRYPT) != 0) {
PSA_ASSERT(status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
if (buffer_length != 0) {
memset(buffer, 0, buffer_length);
}
status = psa_asymmetric_decrypt(key, exercise_alg,
buffer, buffer_length,
NULL, 0,
buffer, buffer_length,
&output_length);
if (policy_alg == exercise_alg &&
(policy_usage & PSA_KEY_USAGE_DECRYPT) != 0) {
TEST_EQUAL(status, PSA_ERROR_INVALID_PADDING);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
exit:
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
PSA_DONE();
mbedtls_free(buffer);
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
}
/* END_CASE */
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void asymmetric_signature_key_policy(int policy_usage_arg,
int policy_alg,
int key_type,
data_t *key_data,
int exercise_alg,
int payload_length_arg,
int expected_usage_arg)
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
psa_key_usage_t policy_usage = policy_usage_arg;
psa_key_usage_t expected_usage = expected_usage_arg;
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
psa_status_t status;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
unsigned char payload[PSA_HASH_MAX_SIZE] = { 1 };
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* If `payload_length_arg > 0`, `exercise_alg` is supposed to be
* compatible with the policy and `payload_length_arg` is supposed to be
* a valid input length to sign. If `payload_length_arg <= 0`,
* `exercise_alg` is supposed to be forbidden by the policy. */
int compatible_alg = payload_length_arg > 0;
size_t payload_length = compatible_alg ? payload_length_arg : 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
unsigned char signature[PSA_SIGNATURE_MAX_SIZE] = { 0 };
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t signature_length;
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
Rename function to conform to the library Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-28 14:05:00 +02:00
/* Check if all implicit usage flags are deployed
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
in the expected usage flags. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(expected_usage,
mbedtls_test_update_key_usage_flags(policy_usage));
PSA_ASSERT(psa_crypto_init());
psa_set_key_usage_flags(&attributes, policy_usage);
psa_set_key_algorithm(&attributes, policy_alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
TEST_EQUAL(psa_get_key_usage_flags(&attributes), expected_usage);
status = psa_sign_hash(key, exercise_alg,
payload, payload_length,
signature, sizeof(signature),
&signature_length);
if (compatible_alg && (expected_usage & PSA_KEY_USAGE_SIGN_HASH) != 0) {
PSA_ASSERT(status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
memset(signature, 0, sizeof(signature));
status = psa_verify_hash(key, exercise_alg,
payload, payload_length,
signature, sizeof(signature));
if (compatible_alg && (expected_usage & PSA_KEY_USAGE_VERIFY_HASH) != 0) {
TEST_EQUAL(status, PSA_ERROR_INVALID_SIGNATURE);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
if (PSA_ALG_IS_SIGN_HASH(exercise_alg) &&
PSA_ALG_IS_HASH(PSA_ALG_SIGN_GET_HASH(exercise_alg))) {
status = psa_sign_message(key, exercise_alg,
payload, payload_length,
signature, sizeof(signature),
&signature_length);
if (compatible_alg && (expected_usage & PSA_KEY_USAGE_SIGN_MESSAGE) != 0) {
PSA_ASSERT(status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
memset(signature, 0, sizeof(signature));
status = psa_verify_message(key, exercise_alg,
payload, payload_length,
signature, sizeof(signature));
if (compatible_alg && (expected_usage & PSA_KEY_USAGE_VERIFY_MESSAGE) != 0) {
TEST_EQUAL(status, PSA_ERROR_INVALID_SIGNATURE);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
Add test for extended key usage policies Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-05-13 16:17:16 +02:00
}
Add dedicated test cases for psa_hash_compare psa_hash_compare is tested for good cases and invalid-signature cases in hash_compute_compare. Also test invalid-argument cases. Also run a few autonomous test cases with valid arguments.
2020-01-28 20:43:00 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
PSA_DONE();
Add dedicated test cases for psa_hash_compare psa_hash_compare is tested for good cases and invalid-signature cases in hash_compute_compare. Also test invalid-argument cases. Also run a few autonomous test cases with valid arguments.
2020-01-28 20:43:00 +01:00
}
/* END_CASE */
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_key_policy(int policy_usage,
int policy_alg,
int key_type,
data_t *key_data,
int exercise_alg)
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
psa_status_t status;
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, policy_usage);
psa_set_key_algorithm(&attributes, policy_alg);
psa_set_key_type(&attributes, key_type);
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_setup(&operation, exercise_alg));
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (PSA_ALG_IS_TLS12_PRF(exercise_alg) ||
PSA_ALG_IS_TLS12_PSK_TO_MS(exercise_alg)) {
PSA_ASSERT(psa_key_derivation_input_bytes(
&operation,
PSA_KEY_DERIVATION_INPUT_SEED,
(const uint8_t *) "", 0));
Implement and test psa_hash_compute, psa_hash_compare
2019-11-28 19:33:58 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_key_derivation_input_key(&operation,
PSA_KEY_DERIVATION_INPUT_SECRET,
key);
Add test hash_bad_order 1. New test for testing bad order of hash function calls. 2. Removed test hash_update_bad_paths since it's test scenario was moved to the new test. 3. Moved some scenarios from test hash_verify_bad_paths to the new test.
2018-11-01 09:44:32 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (policy_alg == exercise_alg &&
(policy_usage & PSA_KEY_USAGE_DERIVE) != 0) {
PSA_ASSERT(status);
} else {
TEST_EQUAL(status, PSA_ERROR_NOT_PERMITTED);
}
Add test hash_bad_order 1. New test for testing bad order of hash function calls. 2. Removed test hash_update_bad_paths since it's test scenario was moved to the new test. 3. Moved some scenarios from test hash_verify_bad_paths to the new test.
2018-11-01 09:44:32 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
psa: Extend hash bad order test Extend hash bad order test in line with the new bad order tests for MAC and cipher, covering more cases and making comments and test layout consistent. Ensure that when doing hash operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-19 12:44:55 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void agreement_key_policy(int policy_usage,
int policy_alg,
int key_type_arg,
data_t *key_data,
int exercise_alg,
int expected_status_arg)
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_type_t key_type = key_type_arg;
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
psa_status_t status;
psa_status_t expected_status = expected_status_arg;
psa: Extend hash bad order test Extend hash bad order test in line with the new bad order tests for MAC and cipher, covering more cases and making comments and test layout consistent. Ensure that when doing hash operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-19 12:44:55 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
psa: Extend hash bad order test Extend hash bad order test in line with the new bad order tests for MAC and cipher, covering more cases and making comments and test layout consistent. Ensure that when doing hash operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-19 12:44:55 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, policy_usage);
psa_set_key_algorithm(&attributes, policy_alg);
psa_set_key_type(&attributes, key_type);
psa: Extend hash bad order test Extend hash bad order test in line with the new bad order tests for MAC and cipher, covering more cases and making comments and test layout consistent. Ensure that when doing hash operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-19 12:44:55 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add test hash_bad_order 1. New test for testing bad order of hash function calls. 2. Removed test hash_update_bad_paths since it's test scenario was moved to the new test. 3. Moved some scenarios from test hash_verify_bad_paths to the new test.
2018-11-01 09:44:32 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_setup(&operation, exercise_alg));
status = mbedtls_test_psa_key_agreement_with_self(&operation, key);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Add test hash_bad_order 1. New test for testing bad order of hash function calls. 2. Removed test hash_update_bad_paths since it's test scenario was moved to the new test. 3. Moved some scenarios from test hash_verify_bad_paths to the new test.
2018-11-01 09:44:32 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
Add test hash_bad_order 1. New test for testing bad order of hash function calls. 2. Removed test hash_update_bad_paths since it's test scenario was moved to the new test. 3. Moved some scenarios from test hash_verify_bad_paths to the new test.
2018-11-01 09:44:32 +01:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void key_policy_alg2(int key_type_arg, data_t *key_data,
int usage_arg, int alg_arg, int alg2_arg)
Add hash bad paths test Increase code coverage
2018-10-18 17:01:10 +02:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t got_attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_usage_t usage = usage_arg;
psa_algorithm_t alg = alg_arg;
psa_algorithm_t alg2 = alg2_arg;
Add hash bad paths test Increase code coverage
2018-10-18 17:01:10 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add hash bad paths test Increase code coverage
2018-10-18 17:01:10 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, usage);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_enrollment_algorithm(&attributes, alg2);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add hash bad paths test Increase code coverage
2018-10-18 17:01:10 +02:00
Rename function to conform to the library Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-28 14:05:00 +02:00
/* Update the usage flags to obtain implicit usage flags */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
usage = mbedtls_test_update_key_usage_flags(usage);
PSA_ASSERT(psa_get_key_attributes(key, &got_attributes));
TEST_EQUAL(psa_get_key_usage_flags(&got_attributes), usage);
TEST_EQUAL(psa_get_key_algorithm(&got_attributes), alg);
TEST_EQUAL(psa_get_key_enrollment_algorithm(&got_attributes), alg2);
Add hash bad paths test Increase code coverage
2018-10-18 17:01:10 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_exercise_key(key, usage, alg)) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
if (!mbedtls_test_psa_exercise_key(key, usage, alg2)) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add scenario to test case hash_bad_paths Tests where the verification hash digest is prefixed with the expected digest but also has extra bytes appended at the end of it.
2018-10-24 17:16:19 +02:00
Add hash bad paths test Increase code coverage
2018-10-18 17:01:10 +02:00
exit:
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&got_attributes);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
PSA_DONE();
Add hash bad paths test Increase code coverage
2018-10-18 17:01:10 +02:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void raw_agreement_key_policy(int policy_usage,
int policy_alg,
int key_type_arg,
data_t *key_data,
int exercise_alg,
int expected_status_arg)
Split test hash_bad_paths into 3 different tests 1. Rename hash_bad_paths to hash_verify_bad_paths 2. Add test hash_update_bad_paths 3. Add test hash_finish_bad_paths The different scenarios tested as part of hash_bad_paths are moved to the relevant test.
2018-10-25 09:22:01 +02:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_type_t key_type = key_type_arg;
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
psa_status_t status;
psa_status_t expected_status = expected_status_arg;
Split test hash_bad_paths into 3 different tests 1. Rename hash_bad_paths to hash_verify_bad_paths 2. Add test hash_update_bad_paths 3. Add test hash_finish_bad_paths The different scenarios tested as part of hash_bad_paths are moved to the relevant test.
2018-10-25 09:22:01 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Split test hash_bad_paths into 3 different tests 1. Rename hash_bad_paths to hash_verify_bad_paths 2. Add test hash_update_bad_paths 3. Add test hash_finish_bad_paths The different scenarios tested as part of hash_bad_paths are moved to the relevant test.
2018-10-25 09:22:01 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, policy_usage);
psa_set_key_algorithm(&attributes, policy_alg);
psa_set_key_type(&attributes, key_type);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = mbedtls_test_psa_raw_key_agreement_with_self(exercise_alg, key);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Split test hash_bad_paths into 3 different tests 1. Rename hash_bad_paths to hash_verify_bad_paths 2. Add test hash_update_bad_paths 3. Add test hash_finish_bad_paths The different scenarios tested as part of hash_bad_paths are moved to the relevant test.
2018-10-25 09:22:01 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
Split test hash_bad_paths into 3 different tests 1. Rename hash_bad_paths to hash_verify_bad_paths 2. Add test hash_update_bad_paths 3. Add test hash_finish_bad_paths The different scenarios tested as part of hash_bad_paths are moved to the relevant test.
2018-10-25 09:22:01 +02:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void copy_success(int source_usage_arg,
int source_alg_arg, int source_alg2_arg,
unsigned int source_lifetime_arg,
int type_arg, data_t *material,
int copy_attributes,
int target_usage_arg,
int target_alg_arg, int target_alg2_arg,
unsigned int target_lifetime_arg,
int expected_usage_arg,
int expected_alg_arg, int expected_alg2_arg)
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_attributes_t source_attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t target_attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_usage_t expected_usage = expected_usage_arg;
psa_algorithm_t expected_alg = expected_alg_arg;
psa_algorithm_t expected_alg2 = expected_alg2_arg;
Add opaque test driver support for copy key A minimal test driver extension is added to support copy of opaque keys within the same location. Test vector support is extended to cover opaque keys. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-04 22:48:48 +02:00
psa_key_lifetime_t source_lifetime = source_lifetime_arg;
psa_key_lifetime_t target_lifetime = target_lifetime_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
mbedtls_svc_key_id_t source_key = MBEDTLS_SVC_KEY_ID_INIT;
mbedtls_svc_key_id_t target_key = MBEDTLS_SVC_KEY_ID_INIT;
uint8_t *export_buffer = NULL;
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Prepare the source key. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&source_attributes, source_usage_arg);
psa_set_key_algorithm(&source_attributes, source_alg_arg);
psa_set_key_enrollment_algorithm(&source_attributes, source_alg2_arg);
psa_set_key_type(&source_attributes, type_arg);
psa_set_key_lifetime(&source_attributes, source_lifetime);
PSA_ASSERT(psa_import_key(&source_attributes,
material->x, material->len,
&source_key));
PSA_ASSERT(psa_get_key_attributes(source_key, &source_attributes));
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Prepare the target attributes. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (copy_attributes) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
target_attributes = source_attributes;
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_lifetime(&target_attributes, target_lifetime);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (target_usage_arg != -1) {
psa_set_key_usage_flags(&target_attributes, target_usage_arg);
}
if (target_alg_arg != -1) {
psa_set_key_algorithm(&target_attributes, target_alg_arg);
}
if (target_alg2_arg != -1) {
psa_set_key_enrollment_algorithm(&target_attributes, target_alg2_arg);
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Add opaque test driver support for copy key A minimal test driver extension is added to support copy of opaque keys within the same location. Test vector support is extended to cover opaque keys. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-04 22:48:48 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Copy the key. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_copy_key(source_key,
&target_attributes, &target_key));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Destroy the source to ensure that this doesn't affect the target. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_destroy_key(source_key));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Test that the target slot has the expected content and policy. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(target_key, &target_attributes));
TEST_EQUAL(psa_get_key_type(&source_attributes),
psa_get_key_type(&target_attributes));
TEST_EQUAL(psa_get_key_bits(&source_attributes),
psa_get_key_bits(&target_attributes));
TEST_EQUAL(expected_usage, psa_get_key_usage_flags(&target_attributes));
TEST_EQUAL(expected_alg, psa_get_key_algorithm(&target_attributes));
TEST_EQUAL(expected_alg2,
psa_get_key_enrollment_algorithm(&target_attributes));
if (expected_usage & PSA_KEY_USAGE_EXPORT) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(export_buffer, material->len);
PSA_ASSERT(psa_export_key(target_key, export_buffer,
material->len, &length));
ASSERT_COMPARE(material->x, material->len,
export_buffer, length);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!psa_key_lifetime_is_external(target_lifetime)) {
if (!mbedtls_test_psa_exercise_key(target_key, expected_usage, expected_alg)) {
Add opaque test driver support for copy key A minimal test driver extension is added to support copy of opaque keys within the same location. Test vector support is extended to cover opaque keys. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-04 22:48:48 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
if (!mbedtls_test_psa_exercise_key(target_key, expected_usage, expected_alg2)) {
Add opaque test driver support for copy key A minimal test driver extension is added to support copy of opaque keys within the same location. Test vector support is extended to cover opaque keys. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-04 22:48:48 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add opaque test driver support for copy key A minimal test driver extension is added to support copy of opaque keys within the same location. Test vector support is extended to cover opaque keys. Signed-off-by: Archana <archana.madhavan@silabs.com>
2021-07-04 22:48:48 +02:00
}
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_destroy_key(target_key));
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
exit:
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/*
* Source and target key attributes may have been returned by
* psa_get_key_attributes() thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&source_attributes);
psa_reset_key_attributes(&target_attributes);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_DONE();
mbedtls_free(export_buffer);
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void copy_fail(int source_usage_arg,
int source_alg_arg, int source_alg2_arg,
int source_lifetime_arg,
int type_arg, data_t *material,
int target_type_arg, int target_bits_arg,
int target_usage_arg,
int target_alg_arg, int target_alg2_arg,
int target_id_arg, int target_lifetime_arg,
int expected_status_arg)
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_attributes_t source_attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t target_attributes = PSA_KEY_ATTRIBUTES_INIT;
mbedtls_svc_key_id_t source_key = MBEDTLS_SVC_KEY_ID_INIT;
mbedtls_svc_key_id_t target_key = MBEDTLS_SVC_KEY_ID_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_svc_key_id_t key_id = mbedtls_svc_key_id_make(1, target_id_arg);
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Prepare the source key. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&source_attributes, source_usage_arg);
psa_set_key_algorithm(&source_attributes, source_alg_arg);
psa_set_key_enrollment_algorithm(&source_attributes, source_alg2_arg);
psa_set_key_type(&source_attributes, type_arg);
psa_set_key_lifetime(&source_attributes, source_lifetime_arg);
PSA_ASSERT(psa_import_key(&source_attributes,
material->x, material->len,
&source_key));
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Prepare the target attributes. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_id(&target_attributes, key_id);
psa_set_key_lifetime(&target_attributes, target_lifetime_arg);
psa_set_key_type(&target_attributes, target_type_arg);
psa_set_key_bits(&target_attributes, target_bits_arg);
psa_set_key_usage_flags(&target_attributes, target_usage_arg);
psa_set_key_algorithm(&target_attributes, target_alg_arg);
psa_set_key_enrollment_algorithm(&target_attributes, target_alg2_arg);
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Try to copy the key. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_copy_key(source_key,
&target_attributes, &target_key),
expected_status_arg);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_destroy_key(source_key));
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&source_attributes);
psa_reset_key_attributes(&target_attributes);
PSA_DONE();
New function psa_hash_clone Clone a hash operation. Test good cases as part as multipart tests. Add new test functions for the state machine.
2019-01-19 12:03:41 +01:00
}
/* END_CASE */
psa: Add initializers for MAC operation objects Add new initializers for MAC operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:03 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_operation_init()
psa: Add initializers for MAC operation objects Add new initializers for MAC operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:03 +01:00
{
psa: Disallow use of invalid MAC contexts Ensure that when doing MAC operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:05:35 +01:00
const uint8_t input[1] = { 0 };
psa: Add initializers for MAC operation objects Add new initializers for MAC operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:03 +01:00
/* Test each valid way of initializing the object, except for `= {0}`, as
* Clang 5 complains when `-Wmissing-field-initializers` is used, even
* though it's OK by the C standard. We could test for this, but we'd need
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-12-21 06:14:10 +01:00
* to suppress the Clang warning for the test. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_hash_operation_t func = psa_hash_operation_init();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_hash_operation_t init = PSA_HASH_OPERATION_INIT;
psa_hash_operation_t zero;
psa: Add initializers for MAC operation objects Add new initializers for MAC operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:03 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
memset(&zero, 0, sizeof(zero));
psa: Add initializers for MAC operation objects Add new initializers for MAC operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:03 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* A freshly-initialized hash operation should not be usable. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_hash_update(&func, input, sizeof(input)),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_hash_update(&init, input, sizeof(input)),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_hash_update(&zero, input, sizeof(input)),
PSA_ERROR_BAD_STATE);
psa: Disallow use of invalid MAC contexts Ensure that when doing MAC operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:05:35 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* A default hash operation should be abortable without error. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_abort(&func));
PSA_ASSERT(psa_hash_abort(&init));
PSA_ASSERT(psa_hash_abort(&zero));
psa: Add initializers for MAC operation objects Add new initializers for MAC operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:03 +01:00
}
/* END_CASE */
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_setup(int alg_arg,
int expected_status_arg)
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
{
psa_algorithm_t alg = alg_arg;
Add One-Shot Hash setup test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:47:44 +01:00
uint8_t *output = NULL;
size_t output_size = 0;
size_t output_length = 0;
Get rid of some casts in test_suite_psa_crypto Use more auxiliary variables to unmarshall int values.
2018-06-21 09:25:10 +02:00
psa_status_t expected_status = expected_status_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_hash_operation_t operation = PSA_HASH_OPERATION_INIT;
psa_status_t status;
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
Add One-Shot Hash setup test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:47:44 +01:00
/* Hash Setup, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = PSA_HASH_LENGTH(alg);
ASSERT_ALLOC(output, output_size);
Add One-Shot Hash setup test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:47:44 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_hash_compute(alg, NULL, 0,
output, output_size, &output_length);
TEST_EQUAL(status, expected_status);
Add One-Shot Hash setup test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:47:44 +01:00
/* Hash Setup, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_hash_setup(&operation, alg);
TEST_EQUAL(status, expected_status);
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Whether setup succeeded or failed, abort must succeed. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* If setup failed, reproduce the failure, so as to
* test the resulting state of the operation object. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status != PSA_SUCCESS) {
TEST_EQUAL(psa_hash_setup(&operation, alg), status);
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Now the operation object should be reusable. */
#if defined(KNOWN_SUPPORTED_HASH_ALG)
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, KNOWN_SUPPORTED_HASH_ALG));
PSA_ASSERT(psa_hash_abort(&operation));
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
#endif
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(output);
PSA_DONE();
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_compute_fail(int alg_arg, data_t *input,
int output_size_arg, int expected_status_arg)
psa: Disallow use of invalid MAC contexts Ensure that when doing MAC operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:05:35 +01:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_algorithm_t alg = alg_arg;
uint8_t *output = NULL;
size_t output_size = output_size_arg;
size_t output_length = INVALID_EXPORT_LENGTH;
Add Multipart Hash Compute fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:18:45 +01:00
psa_hash_operation_t operation = PSA_HASH_OPERATION_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t expected_status = expected_status_arg;
psa_status_t status;
psa: Disallow use of invalid MAC contexts Ensure that when doing MAC operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:05:35 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output, output_size);
psa: Disallow use of invalid MAC contexts Ensure that when doing MAC operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:05:35 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
Add Multipart Hash Compute fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:18:45 +01:00
/* Hash Compute, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_hash_compute(alg, input->x, input->len,
output, output_size, &output_length);
TEST_EQUAL(status, expected_status);
TEST_LE_U(output_length, output_size);
Close or destroy keys explicitly in tests
2019-05-28 14:08:50 +02:00
Add Multipart Hash Compute fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:18:45 +01:00
/* Hash Compute, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_hash_setup(&operation, alg);
if (status == PSA_SUCCESS) {
status = psa_hash_update(&operation, input->x, input->len);
if (status == PSA_SUCCESS) {
status = psa_hash_finish(&operation, output, output_size,
&output_length);
if (status == PSA_SUCCESS) {
TEST_LE_U(output_length, output_size);
} else {
TEST_EQUAL(status, expected_status);
}
} else {
TEST_EQUAL(status, expected_status);
Add Multipart Hash Compute fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:18:45 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, expected_status);
Add Multipart Hash Compute fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:18:45 +01:00
}
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_abort(&operation));
mbedtls_free(output);
PSA_DONE();
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_compare_fail(int alg_arg, data_t *input,
data_t *reference_hash,
int expected_status_arg)
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
{
psa_algorithm_t alg = alg_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t expected_status = expected_status_arg;
Add Multipart Hash Compare fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:23:20 +01:00
psa_hash_operation_t operation = PSA_HASH_OPERATION_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t status;
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Add Multipart Hash Compare fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:23:20 +01:00
/* Hash Compare, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_hash_compare(alg, input->x, input->len,
reference_hash->x, reference_hash->len);
TEST_EQUAL(status, expected_status);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Add Multipart Hash Compare fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:23:20 +01:00
/* Hash Compare, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_hash_setup(&operation, alg);
if (status == PSA_SUCCESS) {
status = psa_hash_update(&operation, input->x, input->len);
if (status == PSA_SUCCESS) {
status = psa_hash_verify(&operation, reference_hash->x,
reference_hash->len);
TEST_EQUAL(status, expected_status);
} else {
TEST_EQUAL(status, expected_status);
Add Multipart Hash Compare fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:23:20 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, expected_status);
Add Multipart Hash Compare fail tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:23:20 +01:00
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_abort(&operation));
PSA_DONE();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_compute_compare(int alg_arg, data_t *input,
data_t *expected_output)
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
psa_algorithm_t alg = alg_arg;
uint8_t output[PSA_HASH_MAX_SIZE + 1];
size_t output_length = INVALID_EXPORT_LENGTH;
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
psa_hash_operation_t operation = PSA_HASH_OPERATION_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t i;
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compute with tight buffer, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_compute(alg, input->x, input->len,
output, PSA_HASH_LENGTH(alg),
&output_length));
TEST_EQUAL(output_length, PSA_HASH_LENGTH(alg));
ASSERT_COMPARE(output, output_length,
expected_output->x, expected_output->len);
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compute with tight buffer, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_update(&operation, input->x, input->len));
PSA_ASSERT(psa_hash_finish(&operation, output,
PSA_HASH_LENGTH(alg),
&output_length));
TEST_EQUAL(output_length, PSA_HASH_LENGTH(alg));
ASSERT_COMPARE(output, output_length,
expected_output->x, expected_output->len);
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compute with larger buffer, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_compute(alg, input->x, input->len,
output, sizeof(output),
&output_length));
TEST_EQUAL(output_length, PSA_HASH_LENGTH(alg));
ASSERT_COMPARE(output, output_length,
expected_output->x, expected_output->len);
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compute with larger buffer, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_update(&operation, input->x, input->len));
PSA_ASSERT(psa_hash_finish(&operation, output,
sizeof(output), &output_length));
TEST_EQUAL(output_length, PSA_HASH_LENGTH(alg));
ASSERT_COMPARE(output, output_length,
expected_output->x, expected_output->len);
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compare with correct hash, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_compare(alg, input->x, input->len,
output, output_length));
Simplify output bounds check in mac_sign test Rely on Asan to detect a potential buffer overflow, instead of doing a manual check. This makes the code simpler and Asan can detect underflows as well as overflows. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2020-08-25 23:38:39 +02:00
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compare with correct hash, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_update(&operation, input->x, input->len));
PSA_ASSERT(psa_hash_verify(&operation, output,
output_length));
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compare with trailing garbage, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_hash_compare(alg, input->x, input->len,
output, output_length + 1),
PSA_ERROR_INVALID_SIGNATURE);
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compare with trailing garbage, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_update(&operation, input->x, input->len));
TEST_EQUAL(psa_hash_verify(&operation, output, output_length + 1),
PSA_ERROR_INVALID_SIGNATURE);
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compare with truncated hash, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_hash_compare(alg, input->x, input->len,
output, output_length - 1),
PSA_ERROR_INVALID_SIGNATURE);
Test other output sizes for psa_mac_sign_finish Test psa_mac_sign_finish with a smaller or larger buffer. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2020-08-25 23:44:59 +02:00
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Compare with truncated hash, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_update(&operation, input->x, input->len));
TEST_EQUAL(psa_hash_verify(&operation, output, output_length - 1),
PSA_ERROR_INVALID_SIGNATURE);
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Compare with corrupted value */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (i = 0; i < output_length; i++) {
mbedtls_test_set_step(i);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output[i] ^= 1;
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* One-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_hash_compare(alg, input->x, input->len,
output, output_length),
PSA_ERROR_INVALID_SIGNATURE);
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
/* Multi-Part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_update(&operation, input->x, input->len));
TEST_EQUAL(psa_hash_verify(&operation, output, output_length),
PSA_ERROR_INVALID_SIGNATURE);
Add Multipart Hash Compute & Compare tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 11:40:23 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output[i] ^= 1;
Test other output sizes for psa_mac_sign_finish Test psa_mac_sign_finish with a smaller or larger buffer. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2020-08-25 23:44:59 +02:00
}
Add tests for mac_sign
2018-08-14 15:17:54 +02:00
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_abort(&operation));
PSA_DONE();
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_ALG_SHA_256 */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_bad_order()
PSA: Implement MAC functions Implement psa_mac_start, psa_mac_update and psa_mac_final. Implement HMAC anc CMAC. Smoke tests.
2018-02-08 10:02:12 +01:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_algorithm_t alg = PSA_ALG_SHA_256;
unsigned char input[] = "";
/* SHA-256 hash of an empty string */
const unsigned char valid_hash[] = {
0xe3, 0xb0, 0xc4, 0x42, 0x98, 0xfc, 0x1c, 0x14, 0x9a, 0xfb, 0xf4, 0xc8,
0x99, 0x6f, 0xb9, 0x24, 0x27, 0xae, 0x41, 0xe4, 0x64, 0x9b, 0x93, 0x4c,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
0xa4, 0x95, 0x99, 0x1b, 0x78, 0x52, 0xb8, 0x55
};
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
unsigned char hash[sizeof(valid_hash)] = { 0 };
size_t hash_len;
psa_hash_operation_t operation = PSA_HASH_OPERATION_INIT;
Use PSA_xxx_MAX_SIZE for hash/MAC/signature size in tests In tests that had a hard-coded buffer size, use PSA_MAC_MAX_SIZE or PSA_ASYMMETRIC_SIGNATURE_MAX_SIZE as appropriate. Test that PSA_xxx_MAX_SIZE is larger than the size used in tests that expect a specific output.
2018-06-28 00:07:19 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
PSA: Implement MAC functions Implement psa_mac_start, psa_mac_update and psa_mac_final. Implement HMAC anc CMAC. Smoke tests.
2018-02-08 10:02:12 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call setup twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_hash_setup(&operation, alg),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_hash_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
Add static internal MAC finish function add new psa_mac_finish_internal() to be called by psa_mac_finish() and psa_mac_verify() in order to be able to check key usage separatly.
2018-04-02 17:34:15 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call update without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_hash_update(&operation, input, sizeof(input)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_hash_abort(&operation));
mac_verify: remove unused IV argument We aren't going to have MAC with IV in the API any time soon, if at all, so remove the embryonic support for it in the tests.
2018-06-18 17:03:37 +02:00
Add negative tests for psa_abort in hash functions Various functions for PSA hash operations call abort on failure; test that this is done. The PSA spec does not require this behaviour, but it makes our implementation more robust in case the user does not abort the operation as required by the PSA spec. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-06-24 12:36:14 +02:00
/* Check that update calls abort on error. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
Improve psa_hash_update negative test Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-06-24 19:14:52 +02:00
operation.id = UINT_MAX;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_hash_update(&operation, input, sizeof(input)),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_hash_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
Add negative tests for psa_abort in hash functions Various functions for PSA hash operations call abort on failure; test that this is done. The PSA spec does not require this behaviour, but it makes our implementation more robust in case the user does not abort the operation as required by the PSA spec. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-06-24 12:36:14 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call update after finish. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_finish(&operation,
hash, sizeof(hash), &hash_len));
TEST_EQUAL(psa_hash_update(&operation, input, sizeof(input)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_hash_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call verify without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_hash_verify(&operation,
valid_hash, sizeof(valid_hash)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_hash_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call verify after finish. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_finish(&operation,
hash, sizeof(hash), &hash_len));
TEST_EQUAL(psa_hash_verify(&operation,
valid_hash, sizeof(valid_hash)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_hash_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call verify twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
ASSERT_OPERATION_IS_ACTIVE(operation);
PSA_ASSERT(psa_hash_verify(&operation,
valid_hash, sizeof(valid_hash)));
ASSERT_OPERATION_IS_INACTIVE(operation);
TEST_EQUAL(psa_hash_verify(&operation,
valid_hash, sizeof(valid_hash)),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_hash_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call finish without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_hash_finish(&operation,
hash, sizeof(hash), &hash_len),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_hash_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call finish twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_finish(&operation,
hash, sizeof(hash), &hash_len));
TEST_EQUAL(psa_hash_finish(&operation,
hash, sizeof(hash), &hash_len),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_hash_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call finish after calling verify. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
PSA_ASSERT(psa_hash_verify(&operation,
valid_hash, sizeof(valid_hash)));
TEST_EQUAL(psa_hash_finish(&operation,
hash, sizeof(hash), &hash_len),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_hash_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_DONE();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
/* BEGIN_CASE depends_on:PSA_WANT_ALG_SHA_256 */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_verify_bad_args()
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
psa_algorithm_t alg = PSA_ALG_SHA_256;
/* SHA-256 hash of an empty string with 2 extra bytes (0xaa and 0xbb)
* appended to it */
unsigned char hash[] = {
0xe3, 0xb0, 0xc4, 0x42, 0x98, 0xfc, 0x1c, 0x14, 0x9a, 0xfb, 0xf4, 0xc8,
0x99, 0x6f, 0xb9, 0x24, 0x27, 0xae, 0x41, 0xe4, 0x64, 0x9b, 0x93, 0x4c,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
0xa4, 0x95, 0x99, 0x1b, 0x78, 0x52, 0xb8, 0x55, 0xaa, 0xbb
};
size_t expected_size = PSA_HASH_LENGTH(alg);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_hash_operation_t operation = PSA_HASH_OPERATION_INIT;
PSA: Implement MAC functions Implement psa_mac_start, psa_mac_update and psa_mac_final. Implement HMAC anc CMAC. Smoke tests.
2018-02-08 10:02:12 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* psa_hash_verify with a smaller hash than expected */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_hash_verify(&operation, hash, expected_size - 1),
PSA_ERROR_INVALID_SIGNATURE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_hash_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
Add negative tests for MAC verification Add negative tests for psa_mac_verify_finish: too large, too small, or a changed byte. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2020-08-26 00:01:39 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* psa_hash_verify with a non-matching hash */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
TEST_EQUAL(psa_hash_verify(&operation, hash + 1, expected_size),
PSA_ERROR_INVALID_SIGNATURE);
Add negative tests for MAC verification Add negative tests for psa_mac_verify_finish: too large, too small, or a changed byte. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2020-08-26 00:01:39 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* psa_hash_verify with a hash longer than expected */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
TEST_EQUAL(psa_hash_verify(&operation, hash, sizeof(hash)),
PSA_ERROR_INVALID_SIGNATURE);
Add negative tests for MAC verification Add negative tests for psa_mac_verify_finish: too large, too small, or a changed byte. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2020-08-26 00:01:39 +02:00
PSA: Implement MAC functions Implement psa_mac_start, psa_mac_update and psa_mac_final. Implement HMAC anc CMAC. Smoke tests.
2018-02-08 10:02:12 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_DONE();
PSA: Implement MAC functions Implement psa_mac_start, psa_mac_update and psa_mac_final. Implement HMAC anc CMAC. Smoke tests.
2018-02-08 10:02:12 +01:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_ALG_SHA_256 */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_finish_bad_args()
psa: Add initializers for cipher operation objects Add new initializers for cipher operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:27 +01:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_algorithm_t alg = PSA_ALG_SHA_256;
unsigned char hash[PSA_HASH_MAX_SIZE];
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t expected_size = PSA_HASH_LENGTH(alg);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_hash_operation_t operation = PSA_HASH_OPERATION_INIT;
size_t hash_len;
psa: Add initializers for cipher operation objects Add new initializers for cipher operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:27 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
psa: Add initializers for cipher operation objects Add new initializers for cipher operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:27 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* psa_hash_finish with a smaller hash buffer than expected */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&operation, alg));
TEST_EQUAL(psa_hash_finish(&operation,
hash, expected_size - 1, &hash_len),
PSA_ERROR_BUFFER_TOO_SMALL);
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_DONE();
psa: Add initializers for cipher operation objects Add new initializers for cipher operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:27 +01:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_ALG_SHA_256 */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_clone_source_state()
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_algorithm_t alg = PSA_ALG_SHA_256;
unsigned char hash[PSA_HASH_MAX_SIZE];
psa_hash_operation_t op_source = PSA_HASH_OPERATION_INIT;
psa_hash_operation_t op_init = PSA_HASH_OPERATION_INIT;
psa_hash_operation_t op_setup = PSA_HASH_OPERATION_INIT;
psa_hash_operation_t op_finished = PSA_HASH_OPERATION_INIT;
psa_hash_operation_t op_aborted = PSA_HASH_OPERATION_INIT;
size_t hash_len;
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
PSA_ASSERT(psa_hash_setup(&op_source, alg));
PSA_ASSERT(psa_hash_setup(&op_setup, alg));
PSA_ASSERT(psa_hash_setup(&op_finished, alg));
PSA_ASSERT(psa_hash_finish(&op_finished,
hash, sizeof(hash), &hash_len));
PSA_ASSERT(psa_hash_setup(&op_aborted, alg));
PSA_ASSERT(psa_hash_abort(&op_aborted));
TEST_EQUAL(psa_hash_clone(&op_source, &op_setup),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_hash_clone(&op_source, &op_init));
PSA_ASSERT(psa_hash_finish(&op_init,
hash, sizeof(hash), &hash_len));
PSA_ASSERT(psa_hash_clone(&op_source, &op_finished));
PSA_ASSERT(psa_hash_finish(&op_finished,
hash, sizeof(hash), &hash_len));
PSA_ASSERT(psa_hash_clone(&op_source, &op_aborted));
PSA_ASSERT(psa_hash_finish(&op_aborted,
hash, sizeof(hash), &hash_len));
Smoke-test operation contexts after setup+abort After a successful setup followed by abort, or after a failed setup from an inactive state, a context must be usable. Test this for hash, MAC and cipher contexts.
2019-02-25 17:42:03 +01:00
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_hash_abort(&op_source);
psa_hash_abort(&op_init);
psa_hash_abort(&op_setup);
psa_hash_abort(&op_finished);
psa_hash_abort(&op_aborted);
PSA_DONE();
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_ALG_SHA_256 */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void hash_clone_target_state()
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
{
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_algorithm_t alg = PSA_ALG_SHA_256;
unsigned char hash[PSA_HASH_MAX_SIZE];
psa_hash_operation_t op_init = PSA_HASH_OPERATION_INIT;
psa_hash_operation_t op_setup = PSA_HASH_OPERATION_INIT;
psa_hash_operation_t op_finished = PSA_HASH_OPERATION_INIT;
psa_hash_operation_t op_aborted = PSA_HASH_OPERATION_INIT;
psa_hash_operation_t op_target = PSA_HASH_OPERATION_INIT;
size_t hash_len;
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_setup(&op_setup, alg));
PSA_ASSERT(psa_hash_setup(&op_finished, alg));
PSA_ASSERT(psa_hash_finish(&op_finished,
hash, sizeof(hash), &hash_len));
PSA_ASSERT(psa_hash_setup(&op_aborted, alg));
PSA_ASSERT(psa_hash_abort(&op_aborted));
psa: Disallow repeated setup Calling psa_*_setup() twice on a MAC, cipher, or hash context should result in a PSA_ERROR_BAD_STATE error because the operation has already been set up. Fixes #10
2019-02-19 10:25:10 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_hash_clone(&op_setup, &op_target));
PSA_ASSERT(psa_hash_finish(&op_target,
hash, sizeof(hash), &hash_len));
psa: Disallow repeated setup Calling psa_*_setup() twice on a MAC, cipher, or hash context should result in a PSA_ERROR_BAD_STATE error because the operation has already been set up. Fixes #10
2019-02-19 10:25:10 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_hash_clone(&op_init, &op_target), PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_hash_clone(&op_finished, &op_target),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_hash_clone(&op_aborted, &op_target),
PSA_ERROR_BAD_STATE);
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_hash_abort(&op_target);
psa_hash_abort(&op_init);
psa_hash_abort(&op_setup);
psa_hash_abort(&op_finished);
psa_hash_abort(&op_aborted);
PSA_DONE();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void mac_operation_init()
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
const uint8_t input[1] = { 0 };
/* Test each valid way of initializing the object, except for `= {0}`, as
* Clang 5 complains when `-Wmissing-field-initializers` is used, even
* though it's OK by the C standard. We could test for this, but we'd need
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-12-21 06:14:10 +01:00
* to suppress the Clang warning for the test. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_mac_operation_t func = psa_mac_operation_init();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_mac_operation_t init = PSA_MAC_OPERATION_INIT;
psa_mac_operation_t zero;
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
memset(&zero, 0, sizeof(zero));
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* A freshly-initialized MAC operation should not be usable. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_mac_update(&func,
input, sizeof(input)),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_mac_update(&init,
input, sizeof(input)),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_mac_update(&zero,
input, sizeof(input)),
PSA_ERROR_BAD_STATE);
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* A default MAC operation should be abortable without error. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_abort(&func));
PSA_ASSERT(psa_mac_abort(&init));
PSA_ASSERT(psa_mac_abort(&zero));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void mac_setup(int key_type_arg,
data_t *key,
int alg_arg,
int expected_status_arg)
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
psa_status_t expected_status = expected_status_arg;
psa_mac_operation_t operation = PSA_MAC_OPERATION_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
#if defined(KNOWN_SUPPORTED_MAC_ALG)
const uint8_t smoke_test_key_data[16] = "kkkkkkkkkkkkkkkk";
#endif
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
psa: Disallow use of invalid cipher contexts Ensure that when doing cipher operations out of order, PSA_ERROR_BAD_STATE is returned as documented in crypto.h and the PSA Crypto specification.
2019-02-15 15:12:05 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!exercise_mac_setup(key_type, key->x, key->len, alg,
&operation, &status)) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
TEST_EQUAL(status, expected_status);
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* The operation object should be reusable. */
#if defined(KNOWN_SUPPORTED_MAC_ALG)
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!exercise_mac_setup(KNOWN_SUPPORTED_MAC_KEY_TYPE,
smoke_test_key_data,
sizeof(smoke_test_key_data),
KNOWN_SUPPORTED_MAC_ALG,
&operation, &status)) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
TEST_EQUAL(status, PSA_SUCCESS);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
#endif
Close or destroy keys explicitly in tests
2019-05-28 14:08:50 +02:00
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_DONE();
Fix potential memory corruption on MAC/cipher setup failure When psa_mac_start(), psa_encrypt_setup() or psa_cipher_setup() failed, depending on when the failure happened, it was possible that psa_mac_abort() or psa_cipher_abort() would crash because it would try to call a free() function uninitialized data in the operation structure. Refactor the functions so that they initialize the operation structure before doing anything else. Add non-regression tests and a few more positive and negative unit tests for psa_mac_start() and psa_cipher_setup() (the latter via psa_encrypt_setip()).
2018-06-20 16:05:20 +02:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_KEY_TYPE_HMAC:PSA_WANT_ALG_HMAC:PSA_WANT_ALG_SHA_256 */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void mac_bad_order()
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_type_t key_type = PSA_KEY_TYPE_HMAC;
psa_algorithm_t alg = PSA_ALG_HMAC(PSA_ALG_SHA_256);
const uint8_t key_data[] = {
0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa,
0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa
};
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_mac_operation_t operation = PSA_MAC_OPERATION_INIT;
uint8_t sign_mac[PSA_MAC_MAX_SIZE + 10] = { 0 };
size_t sign_mac_length = 0;
const uint8_t input[] = { 0xbb, 0xbb, 0xbb, 0xbb };
const uint8_t verify_mac[] = {
0x74, 0x65, 0x93, 0x8c, 0xeb, 0x1d, 0xb3, 0x76, 0x5a, 0x38, 0xe7, 0xdd,
0x85, 0xc5, 0xad, 0x4f, 0x07, 0xe7, 0xd5, 0xb2, 0x64, 0xf0, 0x1a, 0x1a,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
0x2c, 0xf9, 0x18, 0xca, 0x59, 0x7e, 0x5d, 0xf6
};
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Fix tests in test_suite_psa_crypto to set policy usage
2018-07-05 14:22:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data, sizeof(key_data),
&key));
Add calls for set policy in export/sign tests Add calls for set policy in export/sign tests
2018-03-28 12:46:26 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call update without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_mac_update(&operation, input, sizeof(input)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_mac_abort(&operation));
Add calls for set policy in export/sign tests Add calls for set policy in export/sign tests
2018-03-28 12:46:26 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call sign finish without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_mac_sign_finish(&operation, sign_mac, sizeof(sign_mac),
&sign_mac_length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_mac_abort(&operation));
Added support for AES-ECB to the PSA Crypto implementation PSA_ALG_ECB_NO_PADDING came in to the PSA Crypto API spec v1.0.0, but was not implemented yet in the mbed TLS implementation. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2020-07-06 14:08:59 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call verify finish without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_mac_verify_finish(&operation,
verify_mac, sizeof(verify_mac)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_mac_abort(&operation));
PSA crypto: PSA_ASYMMETRIC_SIGN_OUTPUT_SIZE macro Test it for RSA.
2018-02-03 23:57:22 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call setup twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_sign_setup(&operation, key, alg));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_mac_sign_setup(&operation, key, alg),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_mac_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call update after sign finish. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_sign_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation, input, sizeof(input)));
PSA_ASSERT(psa_mac_sign_finish(&operation,
sign_mac, sizeof(sign_mac),
&sign_mac_length));
TEST_EQUAL(psa_mac_update(&operation, input, sizeof(input)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_mac_abort(&operation));
Cipher tests: calculate and verify the actual output size
2018-06-08 14:40:59 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call update after verify finish. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_verify_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation, input, sizeof(input)));
PSA_ASSERT(psa_mac_verify_finish(&operation,
verify_mac, sizeof(verify_mac)));
TEST_EQUAL(psa_mac_update(&operation, input, sizeof(input)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_mac_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call sign finish twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_sign_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation, input, sizeof(input)));
PSA_ASSERT(psa_mac_sign_finish(&operation,
sign_mac, sizeof(sign_mac),
&sign_mac_length));
TEST_EQUAL(psa_mac_sign_finish(&operation,
sign_mac, sizeof(sign_mac),
&sign_mac_length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_mac_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call verify finish twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_verify_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation, input, sizeof(input)));
PSA_ASSERT(psa_mac_verify_finish(&operation,
verify_mac, sizeof(verify_mac)));
TEST_EQUAL(psa_mac_verify_finish(&operation,
verify_mac, sizeof(verify_mac)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_mac_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Setup sign but try verify. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_sign_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation, input, sizeof(input)));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_mac_verify_finish(&operation,
verify_mac, sizeof(verify_mac)),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_mac_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Setup verify but try sign. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_verify_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation, input, sizeof(input)));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_mac_sign_finish(&operation,
sign_mac, sizeof(sign_mac),
&sign_mac_length),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_mac_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_destroy_key(key));
Cipher tests: calculate and verify the actual output size
2018-06-08 14:40:59 +02:00
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_DONE();
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
}
/* END_CASE */
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void mac_sign_verify_multi(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input,
int is_verify,
data_t *expected_mac)
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
{
size_t data_part_len = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (data_part_len = 1; data_part_len <= input->len; data_part_len++) {
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
/* Split data into length(data_part_len) parts. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(2000 + data_part_len);
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (mac_multipart_internal_func(key_type_arg, key_data,
alg_arg,
input, data_part_len,
expected_mac,
is_verify, 0) == 0) {
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
/* length(0) part, length(data_part_len) part, length(0) part... */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(3000 + data_part_len);
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (mac_multipart_internal_func(key_type_arg, key_data,
alg_arg,
input, data_part_len,
expected_mac,
is_verify, 1) == 0) {
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add multi-part mac sign/verify test The test is based on the AEAD multi-part test, re-using the design on aead_multipart_internal_func() to test differnet sequence of psa_mac_update() for MAC update or verify. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-28 16:23:59 +01:00
}
/* Goto is required to silence warnings about unused labels, as we
* don't actually do any test assertions in this function. */
goto exit;
}
/* END_CASE */
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void mac_sign(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input,
data_t *expected_mac)
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_mac_operation_t operation = PSA_MAC_OPERATION_INIT;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
uint8_t *actual_mac = NULL;
size_t mac_buffer_size =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_MAC_LENGTH(key_type, PSA_BYTES_TO_BITS(key_data->len), alg);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t mac_length = 0;
const size_t output_sizes_to_test[] = {
0,
1,
expected_mac->len - 1,
expected_mac->len,
expected_mac->len + 1,
};
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(mac_buffer_size, PSA_MAC_MAX_SIZE);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* We expect PSA_MAC_LENGTH to be exact. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(expected_mac->len == mac_buffer_size);
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Fix tests in test_suite_psa_crypto to set policy usage
2018-07-05 14:22:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (size_t i = 0; i < ARRAY_LENGTH(output_sizes_to_test); i++) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
const size_t output_size = output_sizes_to_test[i];
psa_status_t expected_status =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
(output_size >= expected_mac->len ? PSA_SUCCESS :
PSA_ERROR_BUFFER_TOO_SMALL);
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(output_size);
ASSERT_ALLOC(actual_mac, output_size);
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
/* Calculate the MAC, one-shot case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_mac_compute(key, alg,
input->x, input->len,
actual_mac, output_size, &mac_length),
expected_status);
if (expected_status == PSA_SUCCESS) {
ASSERT_COMPARE(expected_mac->x, expected_mac->len,
actual_mac, mac_length);
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (output_size > 0) {
memset(actual_mac, 0, output_size);
}
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
/* Calculate the MAC, multi-part case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_sign_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation,
input->x, input->len));
TEST_EQUAL(psa_mac_sign_finish(&operation,
actual_mac, output_size,
&mac_length),
expected_status);
PSA_ASSERT(psa_mac_abort(&operation));
if (expected_status == PSA_SUCCESS) {
ASSERT_COMPARE(expected_mac->x, expected_mac->len,
actual_mac, mac_length);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(actual_mac);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
actual_mac = NULL;
}
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_mac_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
mbedtls_free(actual_mac);
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void mac_verify(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input,
data_t *expected_mac)
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_mac_operation_t operation = PSA_MAC_OPERATION_INIT;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
uint8_t *perturbed_mac = NULL;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(expected_mac->len, PSA_MAC_MAX_SIZE);
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_VERIFY_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Fix tests in test_suite_psa_crypto to set policy usage
2018-07-05 14:22:45 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add calls for set policy in export/sign tests Add calls for set policy in export/sign tests
2018-03-28 12:46:26 +02:00
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
/* Verify correct MAC, one-shot case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_verify(key, alg, input->x, input->len,
expected_mac->x, expected_mac->len));
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
/* Verify correct MAC, multi-part case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_verify_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation,
input->x, input->len));
PSA_ASSERT(psa_mac_verify_finish(&operation,
expected_mac->x,
expected_mac->len));
Add calls for set policy in export/sign tests Add calls for set policy in export/sign tests
2018-03-28 12:46:26 +02:00
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
/* Test a MAC that's too short, one-shot case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_mac_verify(key, alg,
input->x, input->len,
expected_mac->x,
expected_mac->len - 1),
PSA_ERROR_INVALID_SIGNATURE);
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
/* Test a MAC that's too short, multi-part case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_verify_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation,
input->x, input->len));
TEST_EQUAL(psa_mac_verify_finish(&operation,
expected_mac->x,
expected_mac->len - 1),
PSA_ERROR_INVALID_SIGNATURE);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
/* Test a MAC that's too long, one-shot case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(perturbed_mac, expected_mac->len + 1);
memcpy(perturbed_mac, expected_mac->x, expected_mac->len);
TEST_EQUAL(psa_mac_verify(key, alg,
input->x, input->len,
perturbed_mac, expected_mac->len + 1),
PSA_ERROR_INVALID_SIGNATURE);
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
/* Test a MAC that's too long, multi-part case. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_mac_verify_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation,
input->x, input->len));
TEST_EQUAL(psa_mac_verify_finish(&operation,
perturbed_mac,
expected_mac->len + 1),
PSA_ERROR_INVALID_SIGNATURE);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Test changing one byte. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (size_t i = 0; i < expected_mac->len; i++) {
mbedtls_test_set_step(i);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
perturbed_mac[i] ^= 1;
Add test for one-shot MAC functions Tests for psa_mac_compute and psa_mac_verify functions. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com> Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-01 15:35:48 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_mac_verify(key, alg,
input->x, input->len,
perturbed_mac, expected_mac->len),
PSA_ERROR_INVALID_SIGNATURE);
PSA_ASSERT(psa_mac_verify_setup(&operation, key, alg));
PSA_ASSERT(psa_mac_update(&operation,
input->x, input->len));
TEST_EQUAL(psa_mac_verify_finish(&operation,
perturbed_mac,
expected_mac->len),
PSA_ERROR_INVALID_SIGNATURE);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
perturbed_mac[i] ^= 1;
Added support for AES-ECB to the PSA Crypto implementation PSA_ALG_ECB_NO_PADDING came in to the PSA Crypto API spec v1.0.0, but was not implemented yet in the mbed TLS implementation. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2020-07-06 14:08:59 +02:00
}
Add calls for set policy in export/sign tests Add calls for set policy in export/sign tests
2018-03-28 12:46:26 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_mac_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
mbedtls_free(perturbed_mac);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_operation_init()
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
const uint8_t input[1] = { 0 };
unsigned char output[1] = { 0 };
size_t output_length;
/* Test each valid way of initializing the object, except for `= {0}`, as
* Clang 5 complains when `-Wmissing-field-initializers` is used, even
* though it's OK by the C standard. We could test for this, but we'd need
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-12-21 06:14:10 +01:00
* to suppress the Clang warning for the test. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_operation_t func = psa_cipher_operation_init();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_cipher_operation_t init = PSA_CIPHER_OPERATION_INIT;
psa_cipher_operation_t zero;
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
memset(&zero, 0, sizeof(zero));
Reordered cipher tests to be just after MAC tests
2018-06-06 15:19:24 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* A freshly-initialized cipher operation should not be usable. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_cipher_update(&func,
input, sizeof(input),
output, sizeof(output),
&output_length),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_cipher_update(&init,
input, sizeof(input),
output, sizeof(output),
&output_length),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_cipher_update(&zero,
input, sizeof(input),
output, sizeof(output),
&output_length),
PSA_ERROR_BAD_STATE);
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* A default cipher operation should be abortable without error. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_abort(&func));
PSA_ASSERT(psa_cipher_abort(&init));
PSA_ASSERT(psa_cipher_abort(&zero));
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
}
/* END_CASE */
Key Policy APIs implementation
2018-03-28 00:21:33 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_setup(int key_type_arg,
data_t *key,
int alg_arg,
int expected_status_arg)
Key Policy APIs implementation
2018-03-28 00:21:33 +02:00
{
Reordered cipher tests to be just after MAC tests
2018-06-06 15:19:24 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Get rid of some casts in test_suite_psa_crypto Use more auxiliary variables to unmarshall int values.
2018-06-21 09:25:10 +02:00
psa_status_t expected_status = expected_status_arg;
psa: Add initializers for cipher operation objects Add new initializers for cipher operation objects and use them in our tests and library code. Prefer using the macro initializers due to their straightforwardness.
2019-01-04 12:48:27 +01:00
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t status;
#if defined(KNOWN_SUPPORTED_CIPHER_ALG)
const uint8_t smoke_test_key_data[16] = "kkkkkkkkkkkkkkkk";
#endif
Merge remote-tracking branch 'psa/pr/13' into feature-psa Conflicts: library/psa_crypto.c tests/suites/test_suite_psa_crypto.data tests/suites/test_suite_psa_crypto.function All the conflicts are concurrent additions where the order doesn't matter. I put the code from feature-psa (key policy) before the code from PR #13 (key lifetime).
2018-04-30 17:06:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Key Policy APIs implementation
2018-03-28 00:21:33 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!exercise_cipher_setup(key_type, key->x, key->len, alg,
&operation, &status)) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
TEST_EQUAL(status, expected_status);
Reordered cipher tests to be just after MAC tests
2018-06-06 15:19:24 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* The operation object should be reusable. */
#if defined(KNOWN_SUPPORTED_CIPHER_ALG)
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!exercise_cipher_setup(KNOWN_SUPPORTED_CIPHER_KEY_TYPE,
smoke_test_key_data,
sizeof(smoke_test_key_data),
KNOWN_SUPPORTED_CIPHER_ALG,
&operation, &status)) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
TEST_EQUAL(status, PSA_SUCCESS);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
#endif
Merge remote-tracking branch 'psa/pr/13' into feature-psa Conflicts: library/psa_crypto.c tests/suites/test_suite_psa_crypto.data tests/suites/test_suite_psa_crypto.function All the conflicts are concurrent additions where the order doesn't matter. I put the code from feature-psa (key policy) before the code from PR #13 (key lifetime).
2018-04-30 17:06:50 +02:00
Key Policy APIs implementation
2018-03-28 00:21:33 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
PSA_DONE();
Key Policy APIs implementation
2018-03-28 00:21:33 +02:00
}
/* END_CASE */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_KEY_TYPE_AES:PSA_WANT_ALG_CBC_PKCS7 */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_bad_order()
add new test scenarios
2018-03-28 14:14:59 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_key_type_t key_type = PSA_KEY_TYPE_AES;
psa_algorithm_t alg = PSA_ALG_CBC_PKCS7;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
unsigned char iv[PSA_BLOCK_CIPHER_BLOCK_LENGTH(PSA_KEY_TYPE_AES)] = { 0 };
const uint8_t key_data[] = {
0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa, 0xaa,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
0xaa, 0xaa, 0xaa, 0xaa
};
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
const uint8_t text[] = {
0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0xbb,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
0xbb, 0xbb, 0xbb, 0xbb
};
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
uint8_t buffer[PSA_BLOCK_CIPHER_BLOCK_LENGTH(PSA_KEY_TYPE_AES)] = { 0 };
size_t length = 0;
add new test scenarios
2018-03-28 14:14:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data, sizeof(key_data),
&key));
Reordered cipher tests to be just after MAC tests
2018-06-06 15:19:24 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call encrypt setup twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_cipher_encrypt_setup(&operation, key, alg),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_cipher_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
Reordered cipher tests to be just after MAC tests
2018-06-06 15:19:24 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call decrypt setup twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_decrypt_setup(&operation, key, alg));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_cipher_decrypt_setup(&operation, key, alg),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_cipher_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Generate an IV without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_cipher_generate_iv(&operation,
buffer, sizeof(buffer),
&length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_abort(&operation));
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Generate an IV twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
PSA_ASSERT(psa_cipher_generate_iv(&operation,
buffer, sizeof(buffer),
&length));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_cipher_generate_iv(&operation,
buffer, sizeof(buffer),
&length),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_cipher_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
Fix whitespace issues Only whitespace changes. * Remove tabs. * Remove trailing whitespace. * Correct some misindented lines. * Normalize whitespace around some punctuation. * Split some lines to avoid going over 80 columns.
2018-06-06 18:44:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Generate an IV after it's already set. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
PSA_ASSERT(psa_cipher_set_iv(&operation,
iv, sizeof(iv)));
TEST_EQUAL(psa_cipher_generate_iv(&operation,
buffer, sizeof(buffer),
&length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_abort(&operation));
Reordered cipher tests to be just after MAC tests
2018-06-06 15:19:24 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Set an IV without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_cipher_set_iv(&operation,
iv, sizeof(iv)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_abort(&operation));
Reordered cipher tests to be just after MAC tests
2018-06-06 15:19:24 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Set an IV after it's already set. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
PSA_ASSERT(psa_cipher_set_iv(&operation,
iv, sizeof(iv)));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_cipher_set_iv(&operation,
iv, sizeof(iv)),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_cipher_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
Reordered cipher tests to be just after MAC tests
2018-06-06 15:19:24 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Set an IV after it's already generated. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
PSA_ASSERT(psa_cipher_generate_iv(&operation,
buffer, sizeof(buffer),
&length));
TEST_EQUAL(psa_cipher_set_iv(&operation,
iv, sizeof(iv)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_abort(&operation));
Added support for AES-ECB to the PSA Crypto implementation PSA_ALG_ECB_NO_PADDING came in to the PSA Crypto API spec v1.0.0, but was not implemented yet in the mbed TLS implementation. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2020-07-06 14:08:59 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call update without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_cipher_update(&operation,
text, sizeof(text),
buffer, sizeof(buffer),
&length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_abort(&operation));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call update without an IV where an IV is required. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_cipher_update(&operation,
text, sizeof(text),
buffer, sizeof(buffer),
&length),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_cipher_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call update after finish. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
PSA_ASSERT(psa_cipher_set_iv(&operation,
iv, sizeof(iv)));
PSA_ASSERT(psa_cipher_finish(&operation,
buffer, sizeof(buffer), &length));
TEST_EQUAL(psa_cipher_update(&operation,
text, sizeof(text),
buffer, sizeof(buffer),
&length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_abort(&operation));
Reordered cipher tests to be just after MAC tests
2018-06-06 15:19:24 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call finish without calling setup beforehand. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_cipher_finish(&operation,
buffer, sizeof(buffer), &length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_abort(&operation));
Fix whitespace issues Only whitespace changes. * Remove tabs. * Remove trailing whitespace. * Correct some misindented lines. * Normalize whitespace around some punctuation. * Split some lines to avoid going over 80 columns.
2018-06-06 18:44:09 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call finish without an IV where an IV is required. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Not calling update means we are encrypting an empty buffer, which is OK
* for cipher modes with padding. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_OPERATION_IS_ACTIVE(operation);
TEST_EQUAL(psa_cipher_finish(&operation,
buffer, sizeof(buffer), &length),
PSA_ERROR_BAD_STATE);
ASSERT_OPERATION_IS_INACTIVE(operation);
PSA_ASSERT(psa_cipher_abort(&operation));
ASSERT_OPERATION_IS_INACTIVE(operation);
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* Call finish twice in a row. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
PSA_ASSERT(psa_cipher_set_iv(&operation,
iv, sizeof(iv)));
PSA_ASSERT(psa_cipher_finish(&operation,
buffer, sizeof(buffer), &length));
TEST_EQUAL(psa_cipher_finish(&operation,
buffer, sizeof(buffer), &length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_abort(&operation));
PSA_ASSERT(psa_destroy_key(key));
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
PSA_DONE();
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_encrypt_fail(int alg_arg,
int key_type_arg,
data_t *key_data,
data_t *input,
int expected_status_arg)
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t status;
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t expected_status = expected_status_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
unsigned char iv[PSA_CIPHER_IV_MAX_SIZE] = { 0 };
Add Cipher Encrypt Fail multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:19:29 +01:00
size_t iv_size = PSA_CIPHER_IV_MAX_SIZE;
size_t iv_length = 0;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
unsigned char *output = NULL;
size_t output_buffer_size = 0;
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
size_t output_length = 0;
Add Cipher Encrypt Fail multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:19:29 +01:00
size_t function_output_length;
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (PSA_ERROR_BAD_STATE != expected_status) {
PSA_ASSERT(psa_crypto_init());
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_buffer_size = PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg,
input->len);
ASSERT_ALLOC(output, output_buffer_size);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
}
Add Cipher Encrypt Fail multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:19:29 +01:00
/* Encrypt, one-shot */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_encrypt(key, alg, input->x, input->len, output,
output_buffer_size, &output_length);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Add Cipher Encrypt Fail multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:19:29 +01:00
/* Encrypt, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_encrypt_setup(&operation, key, alg);
if (status == PSA_SUCCESS) {
if (alg != PSA_ALG_ECB_NO_PADDING) {
PSA_ASSERT(psa_cipher_generate_iv(&operation,
iv, iv_size,
&iv_length));
Add Cipher Encrypt Fail multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:19:29 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_update(&operation, input->x, input->len,
output, output_buffer_size,
&function_output_length);
if (status == PSA_SUCCESS) {
Add Cipher Encrypt Fail multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:19:29 +01:00
output_length += function_output_length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_finish(&operation, output + output_length,
output_buffer_size - output_length,
&function_output_length);
Add Cipher Encrypt Fail multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:19:29 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
} else {
TEST_EQUAL(status, expected_status);
Add Cipher Encrypt Fail multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:19:29 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, expected_status);
Add Cipher Encrypt Fail multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:19:29 +01:00
}
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
mbedtls_free(output);
psa_destroy_key(key);
PSA_DONE();
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
}
/* END_CASE */
Add tests for CCM*-no-tag. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-10-21 10:04:57 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_encrypt_validate_iv_length(int alg, int key_type, data_t *key_data,
data_t *input, int iv_length,
int expected_result)
Add tests for CCM*-no-tag. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-10-21 10:04:57 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
size_t output_buffer_size = 0;
unsigned char *output = NULL;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_buffer_size = PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input->len);
ASSERT_ALLOC(output, output_buffer_size);
Add tests for CCM*-no-tag. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-10-21 10:04:57 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for CCM*-no-tag. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-10-21 10:04:57 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for CCM*-no-tag. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-10-21 10:04:57 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
TEST_EQUAL(expected_result, psa_cipher_set_iv(&operation, output,
iv_length));
Add tests for CCM*-no-tag. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-10-21 10:04:57 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
mbedtls_free(output);
psa_destroy_key(key);
PSA_DONE();
Add tests for CCM*-no-tag. Signed-off-by: Mateusz Starzyk <mateusz.starzyk@mobica.com>
2021-10-21 10:04:57 +02:00
}
/* END_CASE */
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_alg_without_iv(int alg_arg, int key_type_arg, data_t *key_data,
data_t *plaintext, data_t *ciphertext)
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
test: psa cipher: Add unexpected IV setting/generation negative tests Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-07-15 09:38:11 +02:00
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
uint8_t iv[1] = { 0x5a };
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
unsigned char *output = NULL;
size_t output_buffer_size = 0;
cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:09:38 +02:00
size_t output_length, length;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
cipher_encrypt_alg_without_iv: validate size macros independently Validate the size macros directly from the output length in the test data, rather than using the value returned by the library. This is equivalent since the value returned by the library is checked to be identical. Enforce that SIZE() <= MAX_SIZE(), in addition to length <= SIZE(). This is stronger than the previous code which merely enforced length <= SIZE() and length <= MAX_SIZE(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 16:55:03 +02:00
/* Validate size macros */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(ciphertext->len,
PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, plaintext->len));
TEST_LE_U(PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, plaintext->len),
PSA_CIPHER_ENCRYPT_OUTPUT_MAX_SIZE(plaintext->len));
TEST_LE_U(plaintext->len,
PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, ciphertext->len));
TEST_LE_U(PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, ciphertext->len),
PSA_CIPHER_DECRYPT_OUTPUT_MAX_SIZE(ciphertext->len));
Fix tests in test_suite_psa_crypto to set policy usage
2018-07-05 14:22:45 +02:00
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
cipher_encrypt_alg_without_iv: validate size macros independently Validate the size macros directly from the output length in the test data, rather than using the value returned by the library. This is equivalent since the value returned by the library is checked to be identical. Enforce that SIZE() <= MAX_SIZE(), in addition to length <= SIZE(). This is stronger than the previous code which merely enforced length <= SIZE() and length <= MAX_SIZE(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 16:55:03 +02:00
/* Set up key and output buffer */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes,
PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
output_buffer_size = PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg,
plaintext->len);
ASSERT_ALLOC(output, output_buffer_size);
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
cipher_encrypt_alg_without_iv: validate size macros independently Validate the size macros directly from the output length in the test data, rather than using the value returned by the library. This is equivalent since the value returned by the library is checked to be identical. Enforce that SIZE() <= MAX_SIZE(), in addition to length <= SIZE(). This is stronger than the previous code which merely enforced length <= SIZE() and length <= MAX_SIZE(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 16:55:03 +02:00
/* set_iv() is not allowed */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
TEST_EQUAL(psa_cipher_set_iv(&operation, iv, sizeof(iv)),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_decrypt_setup(&operation, key, alg));
TEST_EQUAL(psa_cipher_set_iv(&operation, iv, sizeof(iv)),
PSA_ERROR_BAD_STATE);
cipher_encrypt_alg_without_iv: validate size macros independently Validate the size macros directly from the output length in the test data, rather than using the value returned by the library. This is equivalent since the value returned by the library is checked to be identical. Enforce that SIZE() <= MAX_SIZE(), in addition to length <= SIZE(). This is stronger than the previous code which merely enforced length <= SIZE() and length <= MAX_SIZE(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 16:55:03 +02:00
/* generate_iv() is not allowed */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
TEST_EQUAL(psa_cipher_generate_iv(&operation, iv, sizeof(iv),
&length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_cipher_decrypt_setup(&operation, key, alg));
TEST_EQUAL(psa_cipher_generate_iv(&operation, iv, sizeof(iv),
&length),
PSA_ERROR_BAD_STATE);
test: psa cipher: Add unexpected IV setting/generation negative tests Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-07-15 09:38:11 +02:00
cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:09:38 +02:00
/* Multipart encryption */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:09:38 +02:00
output_length = 0;
length = ~0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_update(&operation,
plaintext->x, plaintext->len,
output, output_buffer_size,
&length));
TEST_LE_U(length, output_buffer_size);
cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:09:38 +02:00
output_length += length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_finish(&operation,
mbedtls_buffer_offset(output, output_length),
output_buffer_size - output_length,
&length));
cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:09:38 +02:00
output_length += length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(ciphertext->x, ciphertext->len,
output, output_length);
Add Cipher Encrypt multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:51:37 +01:00
cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:09:38 +02:00
/* Multipart encryption */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_decrypt_setup(&operation, key, alg));
cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:09:38 +02:00
output_length = 0;
length = ~0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_update(&operation,
ciphertext->x, ciphertext->len,
output, output_buffer_size,
&length));
TEST_LE_U(length, output_buffer_size);
cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:09:38 +02:00
output_length += length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_finish(&operation,
mbedtls_buffer_offset(output, output_length),
output_buffer_size - output_length,
&length));
cipher_alg_without_iv: also test multipart decryption For multipart encrpytion, call psa_cipher_finish(). This is not actually necessary for non-pathological implementations of ECB (the only currently supported IV-less cipher algorithm) because it requires the input to be a whole number of blocks and non-pathological implementations emit the output block from update() as soon as an input block is available. But in principle a driver could delay output and thus require a call to finish(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:09:38 +02:00
output_length += length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(plaintext->x, plaintext->len,
output, output_length);
Add Cipher Encrypt multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:51:37 +01:00
cipher_encrypt_alg_without_iv: validate size macros independently Validate the size macros directly from the output length in the test data, rather than using the value returned by the library. This is equivalent since the value returned by the library is checked to be identical. Enforce that SIZE() <= MAX_SIZE(), in addition to length <= SIZE(). This is stronger than the previous code which merely enforced length <= SIZE() and length <= MAX_SIZE(). Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 16:55:03 +02:00
/* One-shot encryption */
cipher_alg_without_iv: generalized to also do decryption Test set_iv/generate_iv after decrypt_setup. Test successful decryption. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:07:52 +02:00
output_length = ~0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt(key, alg, plaintext->x, plaintext->len,
output, output_buffer_size,
&output_length));
ASSERT_COMPARE(ciphertext->x, ciphertext->len,
output, output_length);
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
cipher_alg_without_iv: generalized to also do decryption Test set_iv/generate_iv after decrypt_setup. Test successful decryption. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-20 17:07:52 +02:00
/* One-shot decryption */
output_length = ~0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_decrypt(key, alg, ciphertext->x, ciphertext->len,
output, output_buffer_size,
&output_length));
ASSERT_COMPARE(plaintext->x, plaintext->len,
output, output_length);
Add Cipher Encrypt multi-part case Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 14:51:37 +01:00
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_abort(&operation));
mbedtls_free(output);
psa_cipher_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
}
/* END_CASE */
Added support for AES-ECB to the PSA Crypto implementation PSA_ALG_ECB_NO_PADDING came in to the PSA Crypto API spec v1.0.0, but was not implemented yet in the mbed TLS implementation. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2020-07-06 14:08:59 +02:00
Add non regression test for cipher output size Call the output size macros specifically with asymmetric keys, which would cause a crash (and thus test fail) should this fix get regressed. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-14 13:31:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_bad_key(int alg_arg, int key_type_arg, data_t *key_data)
Add non regression test for cipher output size Call the output size macros specifically with asymmetric keys, which would cause a crash (and thus test fail) should this fix get regressed. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-14 13:31:21 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_algorithm_t alg = alg_arg;
psa_key_type_t key_type = key_type_arg;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
psa_status_t status;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add non regression test for cipher output size Call the output size macros specifically with asymmetric keys, which would cause a crash (and thus test fail) should this fix get regressed. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-14 13:31:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add non regression test for cipher output size Call the output size macros specifically with asymmetric keys, which would cause a crash (and thus test fail) should this fix get regressed. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-14 13:31:21 +02:00
/* Usage of either of these two size macros would cause divide by zero
* with incorrect key types previously. Input length should be irrelevant
* here. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, 16),
0);
TEST_EQUAL(PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, 16), 0);
Add non regression test for cipher output size Call the output size macros specifically with asymmetric keys, which would cause a crash (and thus test fail) should this fix get regressed. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-14 13:31:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add non regression test for cipher output size Call the output size macros specifically with asymmetric keys, which would cause a crash (and thus test fail) should this fix get regressed. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-14 13:31:21 +02:00
/* Should fail due to invalid alg type (to support invalid key type).
* Encrypt or decrypt will end up in the same place. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_encrypt_setup(&operation, key, alg);
Add non regression test for cipher output size Call the output size macros specifically with asymmetric keys, which would cause a crash (and thus test fail) should this fix get regressed. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-14 13:31:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, PSA_ERROR_INVALID_ARGUMENT);
Add non regression test for cipher output size Call the output size macros specifically with asymmetric keys, which would cause a crash (and thus test fail) should this fix get regressed. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-14 13:31:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
Add non regression test for cipher output size Call the output size macros specifically with asymmetric keys, which would cause a crash (and thus test fail) should this fix get regressed. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-14 13:31:21 +02:00
}
/* END_CASE */
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_encrypt_validation(int alg_arg,
int key_type_arg,
data_t *key_data,
data_t *input)
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t iv_size = PSA_CIPHER_IV_LENGTH(key_type, alg);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
unsigned char *output1 = NULL;
size_t output1_buffer_size = 0;
size_t output1_length = 0;
unsigned char *output2 = NULL;
size_t output2_buffer_size = 0;
size_t output2_length = 0;
size_t function_output_length = 0;
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output1_buffer_size = PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input->len);
output2_buffer_size = PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, input->len) +
PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg);
ASSERT_ALLOC(output1, output1_buffer_size);
ASSERT_ALLOC(output2, output2_buffer_size);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Remove duplicated tests Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-25 15:47:50 +02:00
/* The one-shot cipher encryption uses generated iv so validating
the output is not possible. Validating with multipart encryption. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt(key, alg, input->x, input->len, output1,
output1_buffer_size, &output1_length));
TEST_LE_U(output1_length,
PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input->len));
TEST_LE_U(output1_length,
PSA_CIPHER_ENCRYPT_OUTPUT_MAX_SIZE(input->len));
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
PSA_ASSERT(psa_cipher_set_iv(&operation, output1, iv_size));
PSA_ASSERT(psa_cipher_update(&operation,
input->x, input->len,
output2, output2_buffer_size,
&function_output_length));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, input->len));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(input->len));
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
output2_length += function_output_length;
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_finish(&operation,
output2 + output2_length,
output2_buffer_size - output2_length,
&function_output_length));
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg));
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
output2_length += function_output_length;
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_abort(&operation));
ASSERT_COMPARE(output1 + iv_size, output1_length - iv_size,
output2, output2_length);
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
add new test scenarios
2018-03-28 14:14:59 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
mbedtls_free(output1);
mbedtls_free(output2);
psa_destroy_key(key);
PSA_DONE();
add new test scenarios
2018-03-28 14:14:59 +02:00
}
/* END_CASE */
Merge remote-tracking branch 'psa/pr/13' into feature-psa Conflicts: library/psa_crypto.c tests/suites/test_suite_psa_crypto.data tests/suites/test_suite_psa_crypto.function All the conflicts are concurrent additions where the order doesn't matter. I put the code from feature-psa (key policy) before the code from PR #13 (key lifetime).
2018-04-30 17:06:50 +02:00
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_encrypt_multipart(int alg_arg, int key_type_arg,
data_t *key_data, data_t *iv,
data_t *input,
int first_part_size_arg,
int output1_length_arg, int output2_length_arg,
data_t *expected_output,
int expected_status_arg)
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Unify multipart cipher operation tester functions Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-25 18:21:33 +02:00
psa_status_t status;
psa_status_t expected_status = expected_status_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t first_part_size = first_part_size_arg;
size_t output1_length = output1_length_arg;
size_t output2_length = output2_length_arg;
unsigned char *output = NULL;
size_t output_buffer_size = 0;
size_t function_output_length = 0;
size_t total_output_length = 0;
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add missing test skip for ALT-implemented GCM Bypass was applied to aead_encrypt and aead_decrypt cases, but not aead_encrypt_decrypt. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-02-15 15:19:25 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add missing test skip for ALT-implemented GCM Bypass was applied to aead_encrypt and aead_decrypt cases, but not aead_encrypt_decrypt. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-02-15 15:19:25 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation, key, alg));
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (iv->len > 0) {
PSA_ASSERT(psa_cipher_set_iv(&operation, iv->x, iv->len));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_buffer_size = PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, input->len) +
PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg);
ASSERT_ALLOC(output, output_buffer_size);
Use PSA_AEAD_{ENCRYPT,DECRYPT}_OUTPUT_SIZE in tests
2019-05-14 16:09:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(first_part_size, input->len);
PSA_ASSERT(psa_cipher_update(&operation, input->x, first_part_size,
output, output_buffer_size,
&function_output_length));
TEST_ASSERT(function_output_length == output1_length);
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, first_part_size));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(first_part_size));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
total_output_length += function_output_length;
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (first_part_size < input->len) {
PSA_ASSERT(psa_cipher_update(&operation,
input->x + first_part_size,
input->len - first_part_size,
(output_buffer_size == 0 ? NULL :
output + total_output_length),
output_buffer_size - total_output_length,
&function_output_length));
TEST_ASSERT(function_output_length == output2_length);
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type,
alg,
input->len - first_part_size));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(input->len));
Unify multipart cipher operation tester functions Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-25 18:21:33 +02:00
total_output_length += function_output_length;
}
Normalize whitespace Normalize whitespace to Mbed TLS standards. There are only whitespace changes in this commit.
2018-06-18 15:41:12 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_finish(&operation,
(output_buffer_size == 0 ? NULL :
output + total_output_length),
output_buffer_size - total_output_length,
&function_output_length);
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg));
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
total_output_length += function_output_length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (expected_status == PSA_SUCCESS) {
PSA_ASSERT(psa_cipher_abort(&operation));
Unify multipart cipher operation tester functions Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-25 18:21:33 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(expected_output->x, expected_output->len,
output, total_output_length);
Unify multipart cipher operation tester functions Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-25 18:21:33 +02:00
}
Normalize whitespace Normalize whitespace to Mbed TLS standards. There are only whitespace changes in this commit.
2018-06-18 15:41:12 +02:00
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
mbedtls_free(output);
psa_destroy_key(key);
PSA_DONE();
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_decrypt_multipart(int alg_arg, int key_type_arg,
data_t *key_data, data_t *iv,
data_t *input,
int first_part_size_arg,
int output1_length_arg, int output2_length_arg,
data_t *expected_output,
int expected_status_arg)
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Unify multipart cipher operation tester functions Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-25 18:21:33 +02:00
psa_status_t status;
psa_status_t expected_status = expected_status_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t first_part_size = first_part_size_arg;
size_t output1_length = output1_length_arg;
size_t output2_length = output2_length_arg;
unsigned char *output = NULL;
size_t output_buffer_size = 0;
size_t function_output_length = 0;
size_t total_output_length = 0;
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_decrypt_setup(&operation, key, alg));
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (iv->len > 0) {
PSA_ASSERT(psa_cipher_set_iv(&operation, iv->x, iv->len));
Allow skipping vectors w/ non-12-byte IV AES-GCM on ALT Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-01-11 20:33:20 +01:00
}
Allow skipping AES-192 for alternative implementations in PSA test suite Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-01-11 19:36:04 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_buffer_size = PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, input->len) +
PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg);
ASSERT_ALLOC(output, output_buffer_size);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(first_part_size, input->len);
PSA_ASSERT(psa_cipher_update(&operation,
input->x, first_part_size,
output, output_buffer_size,
&function_output_length));
TEST_ASSERT(function_output_length == output1_length);
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, first_part_size));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(first_part_size));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
total_output_length += function_output_length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (first_part_size < input->len) {
PSA_ASSERT(psa_cipher_update(&operation,
input->x + first_part_size,
input->len - first_part_size,
(output_buffer_size == 0 ? NULL :
output + total_output_length),
output_buffer_size - total_output_length,
&function_output_length));
TEST_ASSERT(function_output_length == output2_length);
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type,
alg,
input->len - first_part_size));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(input->len));
Unify multipart cipher operation tester functions Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-25 18:21:33 +02:00
total_output_length += function_output_length;
Added support for AES-ECB to the PSA Crypto implementation PSA_ALG_ECB_NO_PADDING came in to the PSA Crypto API spec v1.0.0, but was not implemented yet in the mbed TLS implementation. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2020-07-06 14:08:59 +02:00
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_finish(&operation,
(output_buffer_size == 0 ? NULL :
output + total_output_length),
output_buffer_size - total_output_length,
&function_output_length);
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg));
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
total_output_length += function_output_length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (expected_status == PSA_SUCCESS) {
PSA_ASSERT(psa_cipher_abort(&operation));
Unify multipart cipher operation tester functions Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-06-25 18:21:33 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(expected_output->x, expected_output->len,
output, total_output_length);
fix and add tests case + fix for padding mode
2018-06-06 15:36:50 +02:00
}
Normalize whitespace Normalize whitespace to Mbed TLS standards. There are only whitespace changes in this commit.
2018-06-18 15:41:12 +02:00
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
mbedtls_free(output);
psa_destroy_key(key);
PSA_DONE();
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_decrypt_fail(int alg_arg,
int key_type_arg,
data_t *key_data,
data_t *iv,
data_t *input_arg,
int expected_status_arg)
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t status;
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
psa_status_t expected_status = expected_status_arg;
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
unsigned char *input = NULL;
size_t input_buffer_size = 0;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
unsigned char *output = NULL;
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
unsigned char *output_multi = NULL;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t output_buffer_size = 0;
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
size_t output_length = 0;
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
size_t function_output_length;
psa_cipher_operation_t operation = PSA_CIPHER_OPERATION_INIT;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (PSA_ERROR_BAD_STATE != expected_status) {
PSA_ASSERT(psa_crypto_init());
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
/* Allocate input buffer and copy the iv and the plaintext */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
input_buffer_size = ((size_t) input_arg->len + (size_t) iv->len);
if (input_buffer_size > 0) {
ASSERT_ALLOC(input, input_buffer_size);
memcpy(input, iv->x, iv->len);
memcpy(input + iv->len, input_arg->x, input_arg->len);
Update all uses of old AEAD output size macros Signed-off-by: Bence Szépkúti <bence.szepkuti@arm.com>
2021-03-19 18:46:15 +01:00
}
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_buffer_size = PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, input_buffer_size);
ASSERT_ALLOC(output, output_buffer_size);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
/* Decrypt, one-short */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_decrypt(key, alg, input, input_buffer_size, output,
output_buffer_size, &output_length);
TEST_EQUAL(status, expected_status);
Allow skipping AES-192 for alternative implementations in PSA test suite Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-01-11 19:36:04 +01:00
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
/* Decrypt, multi-part */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_decrypt_setup(&operation, key, alg);
if (status == PSA_SUCCESS) {
output_buffer_size = PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg,
input_arg->len) +
PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg);
ASSERT_ALLOC(output_multi, output_buffer_size);
if (iv->len > 0) {
status = psa_cipher_set_iv(&operation, iv->x, iv->len);
if (status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_status);
}
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_SUCCESS) {
status = psa_cipher_update(&operation,
input_arg->x, input_arg->len,
output_multi, output_buffer_size,
&function_output_length);
if (status == PSA_SUCCESS) {
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
output_length = function_output_length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_cipher_finish(&operation,
output_multi + output_length,
output_buffer_size - output_length,
&function_output_length);
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
} else {
TEST_EQUAL(status, expected_status);
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, expected_status);
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(status, expected_status);
Add Cipher Decrypt Fail multi-part case Make `PSA symetric decrypt: CCM*-no-tag, input too short (15 bytes)` depend on MBEDTLS_CCM_C otherwise the multi-part test fails on the missing CCM* instead on the input length validity for CCM*. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-02-07 15:41:19 +01:00
}
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation);
mbedtls_free(input);
mbedtls_free(output);
mbedtls_free(output_multi);
psa_destroy_key(key);
PSA_DONE();
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_decrypt(int alg_arg,
int key_type_arg,
data_t *key_data,
data_t *iv,
data_t *input_arg,
data_t *expected_output)
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
unsigned char *input = NULL;
size_t input_buffer_size = 0;
unsigned char *output = NULL;
size_t output_buffer_size = 0;
size_t output_length = 0;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
/* Allocate input buffer and copy the iv and the plaintext */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
input_buffer_size = ((size_t) input_arg->len + (size_t) iv->len);
if (input_buffer_size > 0) {
ASSERT_ALLOC(input, input_buffer_size);
memcpy(input, iv->x, iv->len);
memcpy(input + iv->len, input_arg->x, input_arg->len);
Allow skipping vectors w/ non-12-byte IV AES-GCM on ALT Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-01-11 20:33:20 +01:00
}
Allow skipping AES-192 for alternative implementations in PSA test suite Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-01-11 19:36:04 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_buffer_size = PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, input_buffer_size);
ASSERT_ALLOC(output, output_buffer_size);
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_decrypt(key, alg, input, input_buffer_size, output,
output_buffer_size, &output_length));
TEST_LE_U(output_length,
PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, input_buffer_size));
TEST_LE_U(output_length,
PSA_CIPHER_DECRYPT_OUTPUT_MAX_SIZE(input_buffer_size));
Add tests for one-shot hash cipher functions Tests for psa_cipher_encrypt and psa_cipher_decrypt functions. The psa_cipher_encrypt function takes no parameter for IV and always generates it therefore there will be a randomness in the calculation and cannot be validated by comparing the actual output with the expected output. The function is tested by: - doing a prtially randomized test with an encryption then a decryption and validating the input with output of the decryption - validating against the multipart encryption The combination of this two methods provides enough coverage like a known answer test. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-03-01 15:11:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(expected_output->x, expected_output->len,
output, output_length);
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(input);
mbedtls_free(output);
psa_destroy_key(key);
PSA_DONE();
Move AEAD tests just after cipher Always adding things at the end tends to create merge conflicts. Adding in the middle in this way makes the order more logical in addition to avoiding conflicts.
2018-06-11 19:33:02 +02:00
}
/* END_CASE */
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_verify_output(int alg_arg,
int key_type_arg,
data_t *key_data,
data_t *input)
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
unsigned char *output1 = NULL;
size_t output1_size = 0;
size_t output1_length = 0;
unsigned char *output2 = NULL;
size_t output2_size = 0;
size_t output2_length = 0;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
output1_size = PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input->len);
ASSERT_ALLOC(output1, output1_size);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt(key, alg, input->x, input->len,
output1, output1_size,
&output1_length));
TEST_LE_U(output1_length,
PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input->len));
TEST_LE_U(output1_length,
PSA_CIPHER_ENCRYPT_OUTPUT_MAX_SIZE(input->len));
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output2_size = output1_length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output2, output2_size);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_decrypt(key, alg, output1, output1_length,
output2, output2_size,
&output2_length));
TEST_LE_U(output2_length,
PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, output1_length));
TEST_LE_U(output2_length,
PSA_CIPHER_DECRYPT_OUTPUT_MAX_SIZE(output1_length));
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(input->x, input->len, output2, output2_length);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(output1);
mbedtls_free(output2);
psa_destroy_key(key);
PSA_DONE();
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void cipher_verify_output_multipart(int alg_arg,
int key_type_arg,
data_t *key_data,
data_t *input,
int first_part_size_arg)
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t first_part_size = first_part_size_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
unsigned char iv[16] = { 0 };
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t iv_size = 16;
size_t iv_length = 0;
unsigned char *output1 = NULL;
size_t output1_buffer_size = 0;
size_t output1_length = 0;
unsigned char *output2 = NULL;
size_t output2_buffer_size = 0;
size_t output2_length = 0;
size_t function_output_length;
psa_cipher_operation_t operation1 = PSA_CIPHER_OPERATION_INIT;
psa_cipher_operation_t operation2 = PSA_CIPHER_OPERATION_INIT;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_encrypt_setup(&operation1, key, alg));
PSA_ASSERT(psa_cipher_decrypt_setup(&operation2, key, alg));
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (alg != PSA_ALG_ECB_NO_PADDING) {
PSA_ASSERT(psa_cipher_generate_iv(&operation1,
iv, iv_size,
&iv_length));
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output1_buffer_size = PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input->len);
TEST_LE_U(output1_buffer_size,
PSA_CIPHER_ENCRYPT_OUTPUT_MAX_SIZE(input->len));
ASSERT_ALLOC(output1, output1_buffer_size);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(first_part_size, input->len);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_update(&operation1, input->x, first_part_size,
output1, output1_buffer_size,
&function_output_length));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, first_part_size));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(first_part_size));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output1_length += function_output_length;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_update(&operation1,
input->x + first_part_size,
input->len - first_part_size,
output1, output1_buffer_size,
&function_output_length));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type,
alg,
input->len - first_part_size));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(input->len - first_part_size));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output1_length += function_output_length;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_finish(&operation1,
output1 + output1_length,
output1_buffer_size - output1_length,
&function_output_length));
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg));
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output1_length += function_output_length;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_abort(&operation1));
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output2_buffer_size = output1_length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(output2_buffer_size,
PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, output1_length));
TEST_LE_U(output2_buffer_size,
PSA_CIPHER_DECRYPT_OUTPUT_MAX_SIZE(output1_length));
ASSERT_ALLOC(output2, output2_buffer_size);
if (iv_length > 0) {
PSA_ASSERT(psa_cipher_set_iv(&operation2,
iv, iv_length));
}
PSA_ASSERT(psa_cipher_update(&operation2, output1, first_part_size,
output2, output2_buffer_size,
&function_output_length));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, first_part_size));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(first_part_size));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output2_length += function_output_length;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_update(&operation2,
output1 + first_part_size,
output1_length - first_part_size,
output2, output2_buffer_size,
&function_output_length));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type,
alg,
output1_length - first_part_size));
TEST_LE_U(function_output_length,
PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(output1_length - first_part_size));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output2_length += function_output_length;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_finish(&operation2,
output2 + output2_length,
output2_buffer_size - output2_length,
&function_output_length));
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg));
TEST_LE_U(function_output_length,
PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
output2_length += function_output_length;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_cipher_abort(&operation2));
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(input->x, input->len, output2, output2_length);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_cipher_abort(&operation1);
psa_cipher_abort(&operation2);
mbedtls_free(output1);
mbedtls_free(output2);
psa_destroy_key(key);
PSA_DONE();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_encrypt_decrypt(int key_type_arg, data_t *key_data,
int alg_arg,
data_t *nonce,
data_t *additional_data,
data_t *input_data,
int expected_result_arg)
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t key_bits;
unsigned char *output_data = NULL;
size_t output_size = 0;
size_t output_length = 0;
unsigned char *output_data2 = NULL;
size_t output_length2 = 0;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
psa_status_t expected_result = expected_result_arg;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = input_data->len + PSA_AEAD_TAG_LENGTH(key_type, key_bits,
alg);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* For all currently defined algorithms, PSA_AEAD_ENCRYPT_OUTPUT_SIZE
* should be exact. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (expected_result != PSA_ERROR_INVALID_ARGUMENT &&
expected_result != PSA_ERROR_NOT_SUPPORTED) {
TEST_EQUAL(output_size,
PSA_AEAD_ENCRYPT_OUTPUT_SIZE(key_type, alg, input_data->len));
TEST_LE_U(output_size,
PSA_AEAD_ENCRYPT_OUTPUT_MAX_SIZE(input_data->len));
}
ASSERT_ALLOC(output_data, output_size);
status = psa_aead_encrypt(key, alg,
nonce->x, nonce->len,
additional_data->x,
additional_data->len,
input_data->x, input_data->len,
output_data, output_size,
&output_length);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* If the operation is not supported, just skip and not fail in case the
* encryption involves a common limitation of cryptography hardwares and
* an alternative implementation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_ERROR_NOT_SUPPORTED) {
MBEDTLS_TEST_PSA_SKIP_IF_ALT_AES_192(key_type, key_data->len * 8);
MBEDTLS_TEST_PSA_SKIP_IF_ALT_GCM_NOT_12BYTES_NONCE(alg, nonce->len);
Prevent unsafe memcpy Some tests cause a zero length input or output, which can mean the allocated test output buffers can be zero length. Protect against calling memcpy blindly in these situations. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 20:10:18 +02:00
}
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_result);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (PSA_SUCCESS == expected_result) {
ASSERT_ALLOC(output_data2, output_length);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
/* For all currently defined algorithms, PSA_AEAD_DECRYPT_OUTPUT_SIZE
* should be exact. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(input_data->len,
PSA_AEAD_DECRYPT_OUTPUT_SIZE(key_type, alg, output_length));
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(input_data->len,
PSA_AEAD_DECRYPT_OUTPUT_MAX_SIZE(output_length));
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_decrypt(key, alg,
nonce->x, nonce->len,
additional_data->x,
additional_data->len,
output_data, output_length,
output_data2, output_length,
&output_length2),
expected_result);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(input_data->x, input_data->len,
output_data2, output_length2);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(output_data);
mbedtls_free(output_data2);
PSA_DONE();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_encrypt(int key_type_arg, data_t *key_data,
int alg_arg,
data_t *nonce,
data_t *additional_data,
data_t *input_data,
data_t *expected_result)
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t key_bits;
unsigned char *output_data = NULL;
size_t output_size = 0;
size_t output_length = 0;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = input_data->len + PSA_AEAD_TAG_LENGTH(key_type, key_bits,
alg);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* For all currently defined algorithms, PSA_AEAD_ENCRYPT_OUTPUT_SIZE
* should be exact. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(output_size,
PSA_AEAD_ENCRYPT_OUTPUT_SIZE(key_type, alg, input_data->len));
TEST_LE_U(output_size,
PSA_AEAD_ENCRYPT_OUTPUT_MAX_SIZE(input_data->len));
ASSERT_ALLOC(output_data, output_size);
status = psa_aead_encrypt(key, alg,
nonce->x, nonce->len,
additional_data->x, additional_data->len,
input_data->x, input_data->len,
output_data, output_size,
&output_length);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* If the operation is not supported, just skip and not fail in case the
* encryption involves a common limitation of cryptography hardwares and
* an alternative implementation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_ERROR_NOT_SUPPORTED) {
MBEDTLS_TEST_PSA_SKIP_IF_ALT_AES_192(key_type, key_data->len * 8);
MBEDTLS_TEST_PSA_SKIP_IF_ALT_GCM_NOT_12BYTES_NONCE(alg, nonce->len);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(status);
ASSERT_COMPARE(expected_result->x, expected_result->len,
output_data, output_length);
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(output_data);
PSA_DONE();
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_decrypt(int key_type_arg, data_t *key_data,
int alg_arg,
data_t *nonce,
data_t *additional_data,
data_t *input_data,
data_t *expected_data,
int expected_result_arg)
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
size_t key_bits;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
unsigned char *output_data = NULL;
size_t output_size = 0;
size_t output_length = 0;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t expected_result = expected_result_arg;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = input_data->len - PSA_AEAD_TAG_LENGTH(key_type, key_bits,
alg);
if (expected_result != PSA_ERROR_INVALID_ARGUMENT &&
expected_result != PSA_ERROR_NOT_SUPPORTED) {
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* For all currently defined algorithms, PSA_AEAD_DECRYPT_OUTPUT_SIZE
* should be exact. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(output_size,
PSA_AEAD_DECRYPT_OUTPUT_SIZE(key_type, alg, input_data->len));
TEST_LE_U(output_size,
PSA_AEAD_DECRYPT_OUTPUT_MAX_SIZE(input_data->len));
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output_data, output_size);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_decrypt(key, alg,
nonce->x, nonce->len,
additional_data->x,
additional_data->len,
input_data->x, input_data->len,
output_data, output_size,
&output_length);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
/* If the operation is not supported, just skip and not fail in case the
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
* decryption involves a common limitation of cryptography hardwares and
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
* an alternative implementation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_ERROR_NOT_SUPPORTED) {
MBEDTLS_TEST_PSA_SKIP_IF_ALT_AES_192(key_type, key_data->len * 8);
MBEDTLS_TEST_PSA_SKIP_IF_ALT_GCM_NOT_12BYTES_NONCE(alg, nonce->len);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_result);
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (expected_result == PSA_SUCCESS) {
ASSERT_COMPARE(expected_data->x, expected_data->len,
output_data, output_length);
}
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(output_data);
PSA_DONE();
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_multipart_encrypt(int key_type_arg, data_t *key_data,
int alg_arg,
data_t *nonce,
data_t *additional_data,
data_t *input_data,
int do_set_lengths,
data_t *expected_output)
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
size_t ad_part_len = 0;
size_t data_part_len = 0;
Rename enum types Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 13:54:42 +02:00
set_lengths_method_t set_lengths_method = DO_NOT_SET_LENGTHS;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (ad_part_len = 1; ad_part_len <= additional_data->len; ad_part_len++) {
mbedtls_test_set_step(ad_part_len);
Convert set lengths options over to enum Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:40:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (do_set_lengths) {
if (ad_part_len & 0x01) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
set_lengths_method = SET_LENGTHS_AFTER_NONCE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
set_lengths_method = SET_LENGTHS_BEFORE_NONCE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
/* Split ad into length(ad_part_len) parts. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!aead_multipart_internal_func(key_type_arg, key_data,
alg_arg, nonce,
additional_data,
ad_part_len,
input_data, -1,
set_lengths_method,
expected_output,
1, 0)) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
/* length(0) part, length(ad_part_len) part, length(0) part... */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(1000 + ad_part_len);
if (!aead_multipart_internal_func(key_type_arg, key_data,
alg_arg, nonce,
additional_data,
ad_part_len,
input_data, -1,
set_lengths_method,
expected_output,
1, 1)) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (data_part_len = 1; data_part_len <= input_data->len; data_part_len++) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
/* Split data into length(data_part_len) parts. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(2000 + data_part_len);
Convert set lengths options over to enum Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:40:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (do_set_lengths) {
if (data_part_len & 0x01) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
set_lengths_method = SET_LENGTHS_AFTER_NONCE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
set_lengths_method = SET_LENGTHS_BEFORE_NONCE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!aead_multipart_internal_func(key_type_arg, key_data,
alg_arg, nonce,
additional_data, -1,
input_data, data_part_len,
set_lengths_method,
expected_output,
1, 0)) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
/* length(0) part, length(data_part_len) part, length(0) part... */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(3000 + data_part_len);
if (!aead_multipart_internal_func(key_type_arg, key_data,
alg_arg, nonce,
additional_data, -1,
input_data, data_part_len,
set_lengths_method,
expected_output,
1, 1)) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
}
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Fix compiler errors on many platforms. Also added comment to explain why I added a seemingly pointless goto Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 17:06:01 +02:00
/* Goto is required to silence warnings about unused labels, as we
* don't actually do any test assertions in this function. */
goto exit;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
/* END_CASE */
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_multipart_decrypt(int key_type_arg, data_t *key_data,
int alg_arg,
data_t *nonce,
data_t *additional_data,
data_t *input_data,
int do_set_lengths,
data_t *expected_output)
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
{
size_t ad_part_len = 0;
size_t data_part_len = 0;
Rename enum types Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 13:54:42 +02:00
set_lengths_method_t set_lengths_method = DO_NOT_SET_LENGTHS;
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (ad_part_len = 1; ad_part_len <= additional_data->len; ad_part_len++) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
/* Split ad into length(ad_part_len) parts. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(ad_part_len);
Convert set lengths options over to enum Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:40:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (do_set_lengths) {
if (ad_part_len & 0x01) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
set_lengths_method = SET_LENGTHS_AFTER_NONCE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
set_lengths_method = SET_LENGTHS_BEFORE_NONCE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!aead_multipart_internal_func(key_type_arg, key_data,
alg_arg, nonce,
additional_data,
ad_part_len,
input_data, -1,
set_lengths_method,
expected_output,
0, 0)) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
/* length(0) part, length(ad_part_len) part, length(0) part... */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(1000 + ad_part_len);
if (!aead_multipart_internal_func(key_type_arg, key_data,
alg_arg, nonce,
additional_data,
ad_part_len,
input_data, -1,
set_lengths_method,
expected_output,
0, 1)) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Prevent unsafe memcpy Some tests cause a zero length input or output, which can mean the allocated test output buffers can be zero length. Protect against calling memcpy blindly in these situations. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 20:10:18 +02:00
}
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (data_part_len = 1; data_part_len <= input_data->len; data_part_len++) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
/* Split data into length(data_part_len) parts. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(2000 + data_part_len);
Convert set lengths options over to enum Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-15 17:40:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (do_set_lengths) {
if (data_part_len & 0x01) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
set_lengths_method = SET_LENGTHS_AFTER_NONCE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
set_lengths_method = SET_LENGTHS_BEFORE_NONCE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
}
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!aead_multipart_internal_func(key_type_arg, key_data,
alg_arg, nonce,
additional_data, -1,
input_data, data_part_len,
set_lengths_method,
expected_output,
0, 0)) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
/* length(0) part, length(data_part_len) part, length(0) part... */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_test_set_step(3000 + data_part_len);
if (!aead_multipart_internal_func(key_type_arg, key_data,
alg_arg, nonce,
additional_data, -1,
input_data, data_part_len,
set_lengths_method,
expected_output,
0, 1)) {
Remove ability to turn off chunked ad/data tests This is no longer required, as both PolyChaCha and GCM now support both chunked body data and additional data. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-23 19:24:36 +02:00
break;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
Fix compiler errors on many platforms. Also added comment to explain why I added a seemingly pointless goto Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 17:06:01 +02:00
/* Goto is required to silence warnings about unused labels, as we
* don't actually do any test assertions in this function. */
Add multipart tests Test range of multipart sizes for all tests, rather than having to define specific tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-16 17:52:21 +02:00
goto exit;
Add tests for multipart AEAD Just clone of one shot tests for now - all additional data and body data is passed in in one go. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-04-27 11:06:22 +02:00
}
/* END_CASE */
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_multipart_generate_nonce(int key_type_arg, data_t *key_data,
int alg_arg,
int nonce_length,
int expected_nonce_length_arg,
data_t *additional_data,
data_t *input_data,
int expected_status_arg)
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Replace AEAD operation init func with macro Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 17:44:21 +02:00
psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
uint8_t nonce_buffer[PSA_AEAD_NONCE_MAX_SIZE];
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
Fix _arg argument not being cast to correct type Also change to TEST_EQUAL, as this is now possible. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:40:41 +02:00
psa_status_t expected_status = expected_status_arg;
Align generate nonce variables with psa convention Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-08-24 19:11:37 +02:00
size_t actual_nonce_length = 0;
size_t expected_nonce_length = expected_nonce_length_arg;
unsigned char *output = NULL;
unsigned char *ciphertext = NULL;
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
size_t output_size = 0;
Align generate nonce variables with psa convention Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-08-24 19:11:37 +02:00
size_t ciphertext_size = 0;
size_t ciphertext_length = 0;
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
size_t tag_length = 0;
uint8_t tag_buffer[PSA_AEAD_TAG_MAX_SIZE];
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg, input_data->len);
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output, output_size);
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ciphertext_size = PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg);
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(ciphertext_size, PSA_AEAD_FINISH_OUTPUT_MAX_SIZE);
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(ciphertext, ciphertext_size);
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_encrypt_setup(&operation, key, alg);
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
/* If the operation is not supported, just skip and not fail in case the
* encryption involves a common limitation of cryptography hardwares and
* an alternative implementation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_ERROR_NOT_SUPPORTED) {
MBEDTLS_TEST_PSA_SKIP_IF_ALT_AES_192(key_type, key_data->len * 8);
MBEDTLS_TEST_PSA_SKIP_IF_ALT_GCM_NOT_12BYTES_NONCE(alg, nonce_length);
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(status);
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_generate_nonce(&operation, nonce_buffer,
nonce_length,
&actual_nonce_length);
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(actual_nonce_length, expected_nonce_length);
Add expected size to nonce generation test Also add unneeded copy-paste in the test descriptions. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 19:20:16 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (expected_status == PSA_SUCCESS) {
TEST_EQUAL(actual_nonce_length, PSA_AEAD_NONCE_LENGTH(key_type,
alg));
}
Test generated nonce test generates expected sizes (But only in the positive test cases) Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 18:23:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(actual_nonce_length, PSA_AEAD_NONCE_MAX_SIZE);
Add 'too big' tests for nonce generation Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 19:52:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (expected_status == PSA_SUCCESS) {
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
/* Ensure we can still complete operation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update(&operation, input_data->x, input_data->len,
output, output_size,
&ciphertext_length));
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_finish(&operation, ciphertext, ciphertext_size,
&ciphertext_length, tag_buffer,
PSA_AEAD_TAG_MAX_SIZE, &tag_length));
Improve generate nonce test Make sure the generated nonce works to encrypt test data if the generated nonce is valid. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 18:14:40 +02:00
}
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(output);
mbedtls_free(ciphertext);
psa_aead_abort(&operation);
PSA_DONE();
Add generate nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-04 17:42:21 +02:00
}
/* END_CASE */
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_multipart_set_nonce(int key_type_arg, data_t *key_data,
int alg_arg,
int nonce_length_arg,
int set_lengths_method_arg,
data_t *additional_data,
data_t *input_data,
int expected_status_arg)
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Replace AEAD operation init func with macro Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 17:44:21 +02:00
psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
uint8_t *nonce_buffer = NULL;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
psa_status_t expected_status = expected_status_arg;
Align set nonce variables with psa convention Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-08-25 13:57:18 +02:00
unsigned char *output = NULL;
unsigned char *ciphertext = NULL;
Re-add option of NULL buffer for nonce tests NULL/zero length or valid buffer/zero length both now tested Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-10 17:21:22 +02:00
size_t nonce_length;
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
size_t output_size = 0;
Align set nonce variables with psa convention Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-08-25 13:57:18 +02:00
size_t ciphertext_size = 0;
size_t ciphertext_length = 0;
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
size_t tag_length = 0;
uint8_t tag_buffer[PSA_AEAD_TAG_MAX_SIZE];
Re-add option of NULL buffer for nonce tests NULL/zero length or valid buffer/zero length both now tested Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-10 17:21:22 +02:00
size_t index = 0;
Test calling psa_aead_set_lengths and set_nonce in various order Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 17:21:47 +01:00
set_lengths_method_t set_lengths_method = set_lengths_method_arg;
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg, input_data->len);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output, output_size);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ciphertext_size = PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(ciphertext_size, PSA_AEAD_FINISH_OUTPUT_MAX_SIZE);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(ciphertext, ciphertext_size);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_encrypt_setup(&operation, key, alg);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
/* If the operation is not supported, just skip and not fail in case the
* encryption involves a common limitation of cryptography hardwares and
* an alternative implementation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_ERROR_NOT_SUPPORTED) {
MBEDTLS_TEST_PSA_SKIP_IF_ALT_AES_192(key_type, key_data->len * 8);
MBEDTLS_TEST_PSA_SKIP_IF_ALT_GCM_NOT_12BYTES_NONCE(alg, nonce_length_arg);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(status);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Re-add option of NULL buffer for nonce tests NULL/zero length or valid buffer/zero length both now tested Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-10 17:21:22 +02:00
/* -1 == zero length and valid buffer, 0 = zero length and NULL buffer. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (nonce_length_arg == -1) {
/* Arbitrary size buffer, to test zero length valid buffer. */
ASSERT_ALLOC(nonce_buffer, 4);
nonce_length = 0;
} else {
Re-add option of NULL buffer for nonce tests NULL/zero length or valid buffer/zero length both now tested Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-10 17:21:22 +02:00
/* If length is zero, then this will return NULL. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
nonce_length = (size_t) nonce_length_arg;
ASSERT_ALLOC(nonce_buffer, nonce_length);
Improve nonce length checks Add the missing nonce length checks (this function is being used by oneshot functions as well as multipart, and thus all cipher suites are being used) and cover the case where a NULL buffer gets passed in. Extended the set nonce test to cover this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-08-16 19:42:41 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (nonce_buffer) {
for (index = 0; index < nonce_length - 1; ++index) {
Re-add option of NULL buffer for nonce tests NULL/zero length or valid buffer/zero length both now tested Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-10 17:21:22 +02:00
nonce_buffer[index] = 'a' + index;
}
Improve nonce length checks Add the missing nonce length checks (this function is being used by oneshot functions as well as multipart, and thus all cipher suites are being used) and cover the case where a NULL buffer gets passed in. Extended the set nonce test to cover this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-08-16 19:42:41 +02:00
}
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (set_lengths_method == SET_LENGTHS_BEFORE_NONCE) {
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Test calling psa_aead_set_lengths and set_nonce in various order Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 17:21:47 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_set_nonce(&operation, nonce_buffer, nonce_length);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (expected_status == PSA_SUCCESS) {
if (set_lengths_method == SET_LENGTHS_AFTER_NONCE) {
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Test calling psa_aead_set_lengths and set_nonce in various order Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 17:21:47 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_CCM && set_lengths_method == DO_NOT_SET_LENGTHS) {
Test calling psa_aead_set_lengths and set_nonce in various order Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 17:21:47 +01:00
expected_status = PSA_ERROR_BAD_STATE;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Test calling psa_aead_set_lengths and set_nonce in various order Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 17:21:47 +01:00
/* Ensure we can still complete operation, unless it's CCM and we didn't set lengths. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len),
expected_status);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update(&operation, input_data->x, input_data->len,
output, output_size,
&ciphertext_length),
expected_status);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_finish(&operation, ciphertext, ciphertext_size,
&ciphertext_length, tag_buffer,
PSA_AEAD_TAG_MAX_SIZE, &tag_length),
expected_status);
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
}
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(output);
mbedtls_free(ciphertext);
mbedtls_free(nonce_buffer);
psa_aead_abort(&operation);
PSA_DONE();
Add multipart set nonce test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 18:28:31 +02:00
}
/* END_CASE */
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_multipart_update_buffer_test(int key_type_arg, data_t *key_data,
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
int alg_arg,
Aligh update buffer test variables with psa naming Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 13:04:23 +02:00
int output_size_arg,
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
data_t *nonce,
data_t *additional_data,
data_t *input_data,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
int expected_status_arg)
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Replace AEAD operation init func with macro Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 17:44:21 +02:00
psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
psa_status_t expected_status = expected_status_arg;
Aligh update buffer test variables with psa naming Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 13:04:23 +02:00
unsigned char *output = NULL;
unsigned char *ciphertext = NULL;
size_t output_size = output_size_arg;
size_t ciphertext_size = 0;
size_t ciphertext_length = 0;
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
size_t tag_length = 0;
uint8_t tag_buffer[PSA_AEAD_TAG_MAX_SIZE];
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output, output_size);
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ciphertext_size = PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg);
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(ciphertext, ciphertext_size);
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_encrypt_setup(&operation, key, alg);
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
/* If the operation is not supported, just skip and not fail in case the
* encryption involves a common limitation of cryptography hardwares and
* an alternative implementation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_ERROR_NOT_SUPPORTED) {
MBEDTLS_TEST_PSA_SKIP_IF_ALT_AES_192(key_type, key_data->len * 8);
MBEDTLS_TEST_PSA_SKIP_IF_ALT_GCM_NOT_12BYTES_NONCE(alg, nonce->len);
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(status);
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Add Multipart AEAD CCM update buffer tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-10-07 16:04:57 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_update(&operation, input_data->x, input_data->len,
output, output_size, &ciphertext_length);
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (expected_status == PSA_SUCCESS) {
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
/* Ensure we can still complete operation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_finish(&operation, ciphertext, ciphertext_size,
&ciphertext_length, tag_buffer,
PSA_AEAD_TAG_MAX_SIZE, &tag_length));
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
}
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(output);
mbedtls_free(ciphertext);
psa_aead_abort(&operation);
PSA_DONE();
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
}
/* END_CASE */
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_multipart_finish_buffer_test(int key_type_arg, data_t *key_data,
int alg_arg,
int finish_ciphertext_size_arg,
int tag_size_arg,
data_t *nonce,
data_t *additional_data,
data_t *input_data,
int expected_status_arg)
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Replace AEAD operation init func with macro Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 17:44:21 +02:00
psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
psa_status_t expected_status = expected_status_arg;
Aligh finish_buffer_test vars with PSA standard Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-10 19:36:00 +02:00
unsigned char *ciphertext = NULL;
unsigned char *finish_ciphertext = NULL;
Add tag buffer size tests to finish buffer tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-13 19:27:22 +02:00
unsigned char *tag_buffer = NULL;
Aligh finish_buffer_test vars with PSA standard Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-10 19:36:00 +02:00
size_t ciphertext_size = 0;
size_t ciphertext_length = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t finish_ciphertext_size = (size_t) finish_ciphertext_size_arg;
size_t tag_size = (size_t) tag_size_arg;
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
size_t tag_length = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ciphertext_size = PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg, input_data->len);
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(ciphertext, ciphertext_size);
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(finish_ciphertext, finish_ciphertext_size);
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(tag_buffer, tag_size);
Add tag buffer size tests to finish buffer tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-13 19:27:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_encrypt_setup(&operation, key, alg);
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
/* If the operation is not supported, just skip and not fail in case the
* encryption involves a common limitation of cryptography hardwares and
* an alternative implementation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_ERROR_NOT_SUPPORTED) {
MBEDTLS_TEST_PSA_SKIP_IF_ALT_AES_192(key_type, key_data->len * 8);
MBEDTLS_TEST_PSA_SKIP_IF_ALT_GCM_NOT_12BYTES_NONCE(alg, nonce->len);
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(status);
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Add Multipart AEAD CCM Finish buffer tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-10-07 18:07:23 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update(&operation, input_data->x, input_data->len,
ciphertext, ciphertext_size, &ciphertext_length));
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
/* Ensure we can still complete operation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_finish(&operation, finish_ciphertext,
finish_ciphertext_size,
&ciphertext_length, tag_buffer,
tag_size, &tag_length);
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(ciphertext);
mbedtls_free(finish_ciphertext);
mbedtls_free(tag_buffer);
psa_aead_abort(&operation);
PSA_DONE();
Add finish buffer size test Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:52:31 +02:00
}
/* END_CASE */
Add test for update buffer size Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-23 19:30:59 +02:00
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_multipart_verify(int key_type_arg, data_t *key_data,
int alg_arg,
data_t *nonce,
data_t *additional_data,
data_t *input_data,
data_t *tag,
int tag_usage_arg,
int expected_setup_status_arg,
int expected_status_arg)
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Replace AEAD operation init func with macro Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 17:44:21 +02:00
psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
psa_status_t expected_status = expected_status_arg;
Detect invalid tag lengths in psa_aead_setup Read tag lengths from the driver and validate against preset values. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-19 17:00:12 +01:00
psa_status_t expected_setup_status = expected_setup_status_arg;
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
unsigned char *plaintext = NULL;
unsigned char *finish_plaintext = NULL;
size_t plaintext_size = 0;
size_t plaintext_length = 0;
size_t verify_plaintext_size = 0;
Rename enum types Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 13:54:42 +02:00
tag_usage_method_t tag_usage = tag_usage_arg;
Add extra verify edge test cases Add ability to pass NULL tag buffer (with length zero) Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 14:11:50 +02:00
unsigned char *tag_buffer = NULL;
size_t tag_size = 0;
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
plaintext_size = PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg,
input_data->len);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(plaintext, plaintext_size);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
verify_plaintext_size = PSA_AEAD_VERIFY_OUTPUT_SIZE(key_type, alg);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(finish_plaintext, verify_plaintext_size);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_decrypt_setup(&operation, key, alg);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
/* If the operation is not supported, just skip and not fail in case the
* encryption involves a common limitation of cryptography hardwares and
* an alternative implementation. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status == PSA_ERROR_NOT_SUPPORTED) {
MBEDTLS_TEST_PSA_SKIP_IF_ALT_AES_192(key_type, key_data->len * 8);
MBEDTLS_TEST_PSA_SKIP_IF_ALT_GCM_NOT_12BYTES_NONCE(alg, nonce->len);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_setup_status);
Detect invalid tag lengths in psa_aead_setup Read tag lengths from the driver and validate against preset values. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-19 17:00:12 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (status != PSA_SUCCESS) {
Detect invalid tag lengths in psa_aead_setup Read tag lengths from the driver and validate against preset values. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-19 17:00:12 +01:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(status);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_set_lengths(&operation, additional_data->len,
input_data->len);
PSA_ASSERT(status);
Add Multipart AEAD CCM verify tests Known failures, concentrating on verify (bad signature etc.) Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-10-06 18:15:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update(&operation, input_data->x,
input_data->len,
plaintext, plaintext_size,
&plaintext_length));
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (tag_usage == USE_GIVEN_TAG) {
Add extra verify edge test cases Add ability to pass NULL tag buffer (with length zero) Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 14:11:50 +02:00
tag_buffer = tag->x;
tag_size = tag->len;
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_verify(&operation, finish_plaintext,
verify_plaintext_size,
&plaintext_length,
tag_buffer, tag_size);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(plaintext);
mbedtls_free(finish_plaintext);
psa_aead_abort(&operation);
PSA_DONE();
Remove negative tests from multipart_decrypt Multipart decrypt now always expects positive result (i.e. the plaintext that is passed in). Added new test that expects fail, and does no multipart versions and concentrates on aead_verify. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 20:19:02 +02:00
}
/* END_CASE */
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_multipart_setup(int key_type_arg, data_t *key_data,
int alg_arg, int expected_status_arg)
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Replace AEAD operation init func with macro Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 17:44:21 +02:00
psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_ERROR_GENERIC_ERROR;
psa_status_t expected_status = expected_status_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes,
PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_encrypt_setup(&operation, key, alg);
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_aead_decrypt_setup(&operation, key, alg);
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_status);
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
psa_aead_abort(&operation);
PSA_DONE();
Add aead setup tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 18:33:03 +02:00
}
/* END_CASE */
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void aead_multipart_state_test(int key_type_arg, data_t *key_data,
int alg_arg,
data_t *nonce,
data_t *additional_data,
data_t *input_data)
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Replace AEAD operation init func with macro Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 17:44:21 +02:00
psa_aead_operation_t operation = PSA_AEAD_OPERATION_INIT;
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
unsigned char *output_data = NULL;
unsigned char *final_data = NULL;
size_t output_size = 0;
size_t finish_output_size = 0;
size_t output_length = 0;
size_t key_bits = 0;
size_t tag_length = 0;
size_t tag_size = 0;
size_t nonce_length = 0;
uint8_t nonce_buffer[PSA_AEAD_NONCE_MAX_SIZE];
uint8_t tag_buffer[PSA_AEAD_TAG_MAX_SIZE];
size_t output_part_length = 0;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes,
PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
tag_length = PSA_AEAD_TAG_LENGTH(key_type, key_bits, alg);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(tag_length, PSA_AEAD_TAG_MAX_SIZE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg, input_data->len);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output_data, output_size);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
finish_output_size = PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(finish_output_size, PSA_AEAD_FINISH_OUTPUT_MAX_SIZE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(final_data, finish_output_size);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
/* Test all operations error without calling setup first. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_nonce(&operation, nonce->x, nonce->len),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Make state tests more readable Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:38:47 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Make state tests more readable Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:38:47 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Make state tests more readable Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:38:47 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Make state tests more readable Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:38:47 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_finish(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Make state tests more readable Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:38:47 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_verify(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer,
tag_length),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
/* Test for double setups. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_encrypt_setup(&operation, key, alg),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Make state tests more readable Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:38:47 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_decrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_decrypt_setup(&operation, key, alg),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_decrypt_setup(&operation, key, alg),
PSA_ERROR_BAD_STATE);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_decrypt_setup(&operation, key, alg));
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_encrypt_setup(&operation, key, alg),
PSA_ERROR_BAD_STATE);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
/* Test for not setting a nonce. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Add test for calling update when nonce not set Previously only testing calling update_ad in this state. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 13:08:29 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add test for calling update when nonce not set Previously only testing calling update_ad in this state. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 13:08:29 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length),
PSA_ERROR_BAD_STATE);
Add test for calling update when nonce not set Previously only testing calling update_ad in this state. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 13:08:29 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add test for calling update when nonce not set Previously only testing calling update_ad in this state. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 13:08:29 +02:00
Add missing not setting nonce tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-21 19:37:10 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add missing not setting nonce tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-21 19:37:10 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_finish(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size),
PSA_ERROR_BAD_STATE);
Add missing not setting nonce tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-21 19:37:10 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add missing not setting nonce tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-21 19:37:10 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_decrypt_setup(&operation, key, alg));
Add missing not setting nonce tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-21 19:37:10 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_verify(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer,
tag_length),
PSA_ERROR_BAD_STATE);
Add missing not setting nonce tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-21 19:37:10 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add missing not setting nonce tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-21 19:37:10 +02:00
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
/* Test for double setting nonce. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_nonce(&operation, nonce->x, nonce->len),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
/* Test for double generating nonce. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length));
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length),
PSA_ERROR_BAD_STATE);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
/* Test for generate nonce then set and vice versa */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length));
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_nonce(&operation, nonce->x, nonce->len),
PSA_ERROR_BAD_STATE);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
/* Test for generating nonce after calling set lengths */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Clarify test descriptions Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-01-19 18:44:49 +01:00
/* Test for generating nonce after calling set lengths with UINT32_MAX ad_data length */
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_CCM) {
TEST_EQUAL(psa_aead_set_lengths(&operation, UINT32_MAX,
input_data->len),
PSA_ERROR_INVALID_ARGUMENT);
TEST_EQUAL(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length),
PSA_ERROR_BAD_STATE);
} else {
PSA_ASSERT(psa_aead_set_lengths(&operation, UINT32_MAX,
input_data->len));
PSA_ASSERT(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Clarify test descriptions Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-01-19 18:44:49 +01:00
/* Test for generating nonce after calling set lengths with SIZE_MAX ad_data length */
Restore guards on a couple of tests These tests check for failures, but can only fail where SIZE_MAX exceeds some limit (UINT_MAX or UINT32_MAX) and do not fail in this way otherwise - so guards are needed. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-02-11 18:14:54 +01:00
#if SIZE_MAX > UINT32_MAX
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
if (operation.alg == PSA_ALG_CCM || operation.alg == PSA_ALG_GCM) {
TEST_EQUAL(psa_aead_set_lengths(&operation, SIZE_MAX,
input_data->len),
PSA_ERROR_INVALID_ARGUMENT);
TEST_EQUAL(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length),
PSA_ERROR_BAD_STATE);
} else {
PSA_ASSERT(psa_aead_set_lengths(&operation, SIZE_MAX,
input_data->len));
PSA_ASSERT(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Restore guards on a couple of tests These tests check for failures, but can only fail where SIZE_MAX exceeds some limit (UINT_MAX or UINT32_MAX) and do not fail in this way otherwise - so guards are needed. Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-02-11 18:14:54 +01:00
#endif
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Clarify test descriptions Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-01-19 18:44:49 +01:00
/* Test for calling set lengths with a UINT32_MAX ad_data length, after generating nonce */
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_CCM) {
TEST_EQUAL(psa_aead_set_lengths(&operation, UINT32_MAX,
input_data->len),
PSA_ERROR_INVALID_ARGUMENT);
} else {
PSA_ASSERT(psa_aead_set_lengths(&operation, UINT32_MAX,
input_data->len));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
PSA AEAD: test long plaintext lengths for psa_set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-26 01:00:20 +01:00
/* ------------------------------------------------------- */
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
/* Test for setting nonce after calling set lengths */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
PSA AEAD: test long plaintext lengths for psa_set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-26 01:00:20 +01:00
/* Test for setting nonce after calling set lengths with UINT32_MAX ad_data length */
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_CCM) {
TEST_EQUAL(psa_aead_set_lengths(&operation, UINT32_MAX,
input_data->len),
PSA_ERROR_INVALID_ARGUMENT);
TEST_EQUAL(psa_aead_set_nonce(&operation, nonce->x, nonce->len),
PSA_ERROR_BAD_STATE);
} else {
PSA_ASSERT(psa_aead_set_lengths(&operation, UINT32_MAX,
input_data->len));
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
PSA AEAD: test long plaintext lengths for psa_set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-26 01:00:20 +01:00
/* Test for setting nonce after calling set lengths with SIZE_MAX ad_data length */
Restore more test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-02-11 19:36:23 +01:00
#if SIZE_MAX > UINT32_MAX
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
if (operation.alg == PSA_ALG_CCM || operation.alg == PSA_ALG_GCM) {
TEST_EQUAL(psa_aead_set_lengths(&operation, SIZE_MAX,
input_data->len),
PSA_ERROR_INVALID_ARGUMENT);
TEST_EQUAL(psa_aead_set_nonce(&operation, nonce->x, nonce->len),
PSA_ERROR_BAD_STATE);
} else {
PSA_ASSERT(psa_aead_set_lengths(&operation, SIZE_MAX,
input_data->len));
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Restore more test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-02-11 19:36:23 +01:00
#endif
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
Clarify test descriptions Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-01-19 18:44:49 +01:00
/* Test for calling set lengths with an ad_data length of UINT32_MAX, after setting nonce */
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_CCM) {
TEST_EQUAL(psa_aead_set_lengths(&operation, UINT32_MAX,
input_data->len),
PSA_ERROR_INVALID_ARGUMENT);
} else {
PSA_ASSERT(psa_aead_set_lengths(&operation, UINT32_MAX,
input_data->len));
PSA AEAD: test more combinations of set_nonce and set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-25 23:50:53 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Clarify test descriptions Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-01-19 18:44:49 +01:00
/* Test for setting nonce after calling set lengths with plaintext length of SIZE_MAX */
Restore more test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-02-11 21:07:43 +01:00
#if SIZE_MAX > UINT32_MAX
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test long plaintext lengths for psa_set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-26 01:00:20 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_GCM) {
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
SIZE_MAX),
PSA_ERROR_INVALID_ARGUMENT);
TEST_EQUAL(psa_aead_set_nonce(&operation, nonce->x, nonce->len),
PSA_ERROR_BAD_STATE);
} else if (operation.alg != PSA_ALG_CCM) {
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
SIZE_MAX));
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
PSA AEAD: test long plaintext lengths for psa_set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-26 01:00:20 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Restore more test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-02-11 21:07:43 +01:00
#endif
PSA AEAD: test long plaintext lengths for psa_set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-26 01:00:20 +01:00
Fix typos prior to release Signed-off-by: Tom Cosgrove <tom.cosgrove@arm.com>
2022-12-04 18:19:59 +01:00
/* Test for calling set lengths with a plaintext length of SIZE_MAX, after setting nonce */
Restore test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-02-11 23:02:04 +01:00
#if SIZE_MAX > UINT32_MAX
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test long plaintext lengths for psa_set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-26 01:00:20 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
PSA AEAD: test long plaintext lengths for psa_set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-26 01:00:20 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_GCM) {
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
SIZE_MAX),
PSA_ERROR_INVALID_ARGUMENT);
} else if (operation.alg != PSA_ALG_CCM) {
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
SIZE_MAX));
PSA AEAD: test long plaintext lengths for psa_set_lengths Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-26 01:00:20 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Restore test guards Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-02-11 23:02:04 +01:00
#endif
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length),
PSA_ERROR_BAD_STATE);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add missing state test coverage Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-16 18:53:40 +02:00
Ensure generate nonce unavailable in decrypt Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 18:25:57 +02:00
/* Test for generating nonce in decrypt setup. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_decrypt_setup(&operation, key, alg));
Ensure generate nonce unavailable in decrypt Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 18:25:57 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length),
PSA_ERROR_BAD_STATE);
Ensure generate nonce unavailable in decrypt Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 18:25:57 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Ensure generate nonce unavailable in decrypt Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 18:25:57 +02:00
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
/* Test for setting lengths twice. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len),
PSA_ERROR_BAD_STATE);
Test all set lengths and set/generate nonce orders Test that the two are completely interchangeable in order. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 19:13:04 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Test all set lengths and set/generate nonce orders Test that the two are completely interchangeable in order. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-23 19:13:04 +02:00
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
/* Test for setting lengths after setting nonce + already starting data. */
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_CCM) {
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len),
PSA_ERROR_BAD_STATE);
} else {
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len),
PSA_ERROR_BAD_STATE);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_CCM) {
TEST_EQUAL(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length),
PSA_ERROR_BAD_STATE);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
PSA_ASSERT(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len),
PSA_ERROR_BAD_STATE);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg == PSA_ALG_CCM) {
PSA_ASSERT(psa_aead_finish(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size));
} else {
PSA_ASSERT(psa_aead_finish(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len),
PSA_ERROR_BAD_STATE);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
/* Test for setting lengths after generating nonce + already starting data. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length));
if (operation.alg == PSA_ALG_CCM) {
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len),
PSA_ERROR_BAD_STATE);
} else {
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len),
PSA_ERROR_BAD_STATE);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length));
if (operation.alg == PSA_ALG_CCM) {
TEST_EQUAL(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length),
PSA_ERROR_BAD_STATE);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
PSA_ASSERT(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len),
PSA_ERROR_BAD_STATE);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
/* ------------------------------------------------------- */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
PSA_ASSERT(psa_aead_generate_nonce(&operation, nonce_buffer,
PSA_AEAD_NONCE_MAX_SIZE,
&nonce_length));
if (operation.alg == PSA_ALG_CCM) {
PSA_ASSERT(psa_aead_finish(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size));
} else {
PSA_ASSERT(psa_aead_finish(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size));
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len),
PSA_ERROR_BAD_STATE);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Clarify comments on state test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 20:01:17 +02:00
/* Test for not sending any additional data or data after setting non zero
* lengths for them. (encrypt) */
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_finish(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size),
PSA_ERROR_INVALID_ARGUMENT);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Clarify comments on state test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 20:01:17 +02:00
/* Test for not sending any additional data or data after setting non-zero
* lengths for them. (decrypt) */
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_decrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_verify(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer,
tag_length),
PSA_ERROR_INVALID_ARGUMENT);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Clarify comments on state test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-07-21 20:01:17 +02:00
/* Test for not sending any additional data after setting a non-zero length
* for it. */
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length),
PSA_ERROR_INVALID_ARGUMENT);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
/* Test for not sending any data after setting a non-zero length for it.*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_finish(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size),
PSA_ERROR_INVALID_ARGUMENT);
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add missing aead state tests. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-19 19:15:59 +02:00
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
/* Test for sending too much additional data after setting lengths. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, 0, 0));
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len),
PSA_ERROR_INVALID_ARGUMENT);
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Remove double initialisation of AEAD operation Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 15:56:40 +02:00
/* ------------------------------------------------------- */
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update_ad(&operation, additional_data->x,
1),
PSA_ERROR_INVALID_ARGUMENT);
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
/* Test for sending too much data after setting lengths. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, 0, 0));
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length),
PSA_ERROR_INVALID_ARGUMENT);
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Tests for sending too much data after set lengths We previously had tests for not sending enough (additional) data, but were missing tests for sending too much. I have added these to the state tests, as I don't think this is complex enough to deserve a standalone test. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-01 16:06:26 +02:00
Remove double initialisation of AEAD operation Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-22 15:56:40 +02:00
/* ------------------------------------------------------- */
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_lengths(&operation, additional_data->len,
input_data->len));
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len));
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length));
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update(&operation, input_data->x,
1, output_data,
output_size, &output_length),
PSA_ERROR_INVALID_ARGUMENT);
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add tests to oversend data/ad when lengths set Previous tests only tested when the expected lengths were set to zero. New test sends all data/ad then goes over by one byte. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-09-17 19:03:52 +02:00
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
/* Test sending additional data after data. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (operation.alg != PSA_ALG_CCM) {
PSA_ASSERT(psa_aead_update(&operation, input_data->x,
input_data->len, output_data,
output_size, &output_length));
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_update_ad(&operation, additional_data->x,
additional_data->len),
PSA_ERROR_BAD_STATE);
PSA AEAD: test more combinations of generate_nonce and set_lengths Extend PSA AEAD testing by adding CCM and ChaChaPoly. Add more combinations of functions to test the API. Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2021-12-15 15:28:49 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
Finish / Verify state checks Ensure finish only called when encrypting and verify only called for decrypting, and add tests to ensure this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 20:15:20 +02:00
/* Test calling finish on decryption. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_decrypt_setup(&operation, key, alg));
Finish / Verify state checks Ensure finish only called when encrypting and verify only called for decrypting, and add tests to ensure this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 20:15:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Finish / Verify state checks Ensure finish only called when encrypting and verify only called for decrypting, and add tests to ensure this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 20:15:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_finish(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer, tag_length,
&tag_size),
PSA_ERROR_BAD_STATE);
Finish / Verify state checks Ensure finish only called when encrypting and verify only called for decrypting, and add tests to ensure this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 20:15:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Finish / Verify state checks Ensure finish only called when encrypting and verify only called for decrypting, and add tests to ensure this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 20:15:20 +02:00
/* Test calling verify on encryption. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_encrypt_setup(&operation, key, alg));
Finish / Verify state checks Ensure finish only called when encrypting and verify only called for decrypting, and add tests to ensure this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 20:15:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_aead_set_nonce(&operation, nonce->x, nonce->len));
Finish / Verify state checks Ensure finish only called when encrypting and verify only called for decrypting, and add tests to ensure this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 20:15:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_aead_verify(&operation, final_data,
finish_output_size,
&output_part_length,
tag_buffer,
tag_length),
PSA_ERROR_BAD_STATE);
Finish / Verify state checks Ensure finish only called when encrypting and verify only called for decrypting, and add tests to ensure this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 20:15:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_aead_abort(&operation);
Finish / Verify state checks Ensure finish only called when encrypting and verify only called for decrypting, and add tests to ensure this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-22 20:15:20 +02:00
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
psa_aead_abort(&operation);
mbedtls_free(output_data);
mbedtls_free(final_data);
PSA_DONE();
Add state checks for multipart AEAD Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2021-06-21 19:32:46 +02:00
}
/* END_CASE */
PSA crypto: PSA_ASYMMETRIC_SIGN_OUTPUT_SIZE macro Test it for RSA.
2018-02-03 23:57:22 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void signature_size(int type_arg,
int bits,
int alg_arg,
int expected_size_arg)
PSA crypto: PSA_ASYMMETRIC_SIGN_OUTPUT_SIZE macro Test it for RSA.
2018-02-03 23:57:22 +01:00
{
psa_key_type_t type = type_arg;
psa_algorithm_t alg = alg_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t actual_size = PSA_SIGN_OUTPUT_SIZE(type, bits, alg);
Add tests of deprecated PSA macros When MBEDTLS_TEST_DEPRECATED is defined, run some additional tests to validate deprecated PSA macros. We don't need to test deprecated features extensively, but we should at least ensure that they don't break the build. Add some code to component_build_deprecated in all.sh to run these tests with MBEDTLS_DEPRECATED_WARNING enabled. The tests are also executed when MBEDTLS_DEPRECATED_WARNING and MBEDTLS_DEPRECATED_REMOVED are both disabled.
2019-11-26 17:37:37 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(actual_size, (size_t) expected_size_arg);
Add tests of deprecated PSA macros When MBEDTLS_TEST_DEPRECATED is defined, run some additional tests to validate deprecated PSA macros. We don't need to test deprecated features extensively, but we should at least ensure that they don't break the build. Add some code to component_build_deprecated in all.sh to run these tests with MBEDTLS_DEPRECATED_WARNING enabled. The tests are also executed when MBEDTLS_DEPRECATED_WARNING and MBEDTLS_DEPRECATED_REMOVED are both disabled.
2019-11-26 17:37:37 +01:00
PSA crypto: PSA_ASYMMETRIC_SIGN_OUTPUT_SIZE macro Test it for RSA.
2018-02-03 23:57:22 +01:00
exit:
;
}
/* END_CASE */
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void sign_hash_deterministic(int key_type_arg, data_t *key_data,
int alg_arg, data_t *input_data,
data_t *output_data)
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
PSA crypto: PSA_ASYMMETRIC_SIGN_OUTPUT_SIZE macro Test it for RSA.
2018-02-03 23:57:22 +01:00
size_t key_bits;
unsigned char *signature = NULL;
size_t signature_size;
PSA asymmetric signature: set *signature_length = 0 on failure
2018-02-03 23:58:03 +01:00
size_t signature_length = 0xdeadbeef;
Implement psa_get_key_attributes Implement attribute querying. Test attribute getters and setters. Use psa_get_key_attributes instead of the deprecated functions psa_get_key_policy or psa_get_key_information in most tests.
2019-04-18 21:44:46 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add calls for set policy in export/sign tests Add calls for set policy in export/sign tests
2018-03-28 12:46:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
PSA crypto: PSA_ASYMMETRIC_SIGN_OUTPUT_SIZE macro Test it for RSA.
2018-02-03 23:57:22 +01:00
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-12-21 06:14:10 +01:00
/* Allocate a buffer which has the size advertised by the
Document what the signature tests are doing a bit better Add a check that the purported output length is less than the buffer size in sign_fail.
2018-06-28 12:23:00 +02:00
* library. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
signature_size = PSA_SIGN_OUTPUT_SIZE(key_type,
key_bits, alg);
TEST_ASSERT(signature_size != 0);
TEST_LE_U(signature_size, PSA_SIGNATURE_MAX_SIZE);
ASSERT_ALLOC(signature, signature_size);
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Document what the signature tests are doing a bit better Add a check that the purported output length is less than the buffer size in sign_fail.
2018-06-28 12:23:00 +02:00
/* Perform the signature. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_sign_hash(key, alg,
input_data->x, input_data->len,
signature, signature_size,
&signature_length));
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
/* Verify that the signature is what is expected. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(output_data->x, output_data->len,
signature, signature_length);
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
}
/* END_CASE */
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
/* BEGIN_CASE depends_on:MBEDTLS_ECP_RESTARTABLE */
void sign_hash_interruptible(int key_type_arg, data_t *key_data,
int alg_arg, data_t *input_data,
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
data_t *output_data, int max_ops_arg)
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t key_bits;
unsigned char *signature = NULL;
size_t signature_size;
size_t signature_length = 0xdeadbeef;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_OPERATION_INCOMPLETE;
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
uint32_t num_ops = 0;
uint32_t max_ops = max_ops_arg;
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
size_t num_ops_prior = 0;
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
size_t num_completes = 0;
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
size_t min_completes = 0;
size_t max_completes = 0;
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
psa_sign_hash_interruptible_operation_t operation =
psa_sign_hash_interruptible_operation_init();
PSA_ASSERT(psa_crypto_init());
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
/* Allocate a buffer which has the size advertised by the
* library. */
signature_size = PSA_SIGN_OUTPUT_SIZE(key_type,
key_bits, alg);
TEST_ASSERT(signature_size != 0);
TEST_LE_U(signature_size, PSA_SIGNATURE_MAX_SIZE);
ASSERT_ALLOC(signature, signature_size);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
psa_interruptible_set_max_ops(max_ops);
Move {min|max}_complete choice logic into function Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 19:41:05 +01:00
interruptible_signverify_get_minmax_completes(max_ops, PSA_SUCCESS,
&min_completes, &max_completes);
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
num_ops_prior = psa_sign_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops_prior == 0);
/* Start performing the signature. */
PSA_ASSERT(psa_sign_hash_start(&operation, key, alg,
input_data->x, input_data->len));
num_ops_prior = psa_sign_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops_prior == 0);
/* Continue performing the signature until complete. */
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
do {
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
status = psa_sign_hash_complete(&operation, signature, signature_size,
&signature_length);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
num_completes++;
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
if (status == PSA_SUCCESS || status == PSA_OPERATION_INCOMPLETE) {
num_ops = psa_sign_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops > num_ops_prior);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
num_ops_prior = num_ops;
}
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
} while (status == PSA_OPERATION_INCOMPLETE);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
TEST_ASSERT(status == PSA_SUCCESS);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
TEST_LE_U(min_completes, num_completes);
TEST_LE_U(num_completes, max_completes);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
/* Verify that the signature is what is expected. */
ASSERT_COMPARE(output_data->x, output_data->len,
signature, signature_length);
PSA_ASSERT(psa_sign_hash_abort(&operation));
Add {sign/verify}_hash_abort_internal Ensure that num_ops is cleared when manual abort is called, but obviously not when an operation just completes, and test this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-18 16:09:02 +01:00
num_ops = psa_sign_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops == 0);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
exit:
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
}
/* END_CASE */
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void sign_hash_fail(int key_type_arg, data_t *key_data,
int alg_arg, data_t *input_data,
int signature_size_arg, int expected_status_arg)
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Document what the signature tests are doing a bit better Add a check that the purported output length is less than the buffer size in sign_fail.
2018-06-28 12:23:00 +02:00
size_t signature_size = signature_size_arg;
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
psa_status_t actual_status;
psa_status_t expected_status = expected_status_arg;
Use unhexify_alloc where applicable
2018-03-07 16:43:36 +01:00
unsigned char *signature = NULL;
PSA asymmetric signature: set *signature_length = 0 on failure
2018-02-03 23:58:03 +01:00
size_t signature_length = 0xdeadbeef;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(signature, signature_size);
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add calls for set policy in export/sign tests Add calls for set policy in export/sign tests
2018-03-28 12:46:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
actual_status = psa_sign_hash(key, alg,
input_data->x, input_data->len,
signature, signature_size,
&signature_length);
TEST_EQUAL(actual_status, expected_status);
Document what the signature tests are doing a bit better Add a check that the purported output length is less than the buffer size in sign_fail.
2018-06-28 12:23:00 +02:00
/* The value of *signature_length is unspecified on error, but
* whatever it is, it should be less than signature_size, so that
* if the caller tries to read *signature_length bytes without
* checking the error code then they don't overflow a buffer. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(signature_length, signature_size);
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
}
/* END_CASE */
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
/* BEGIN_CASE depends_on:MBEDTLS_ECP_RESTARTABLE */
void sign_hash_fail_interruptible(int key_type_arg, data_t *key_data,
int alg_arg, data_t *input_data,
int signature_size_arg,
int expected_start_status_arg,
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
int expected_complete_status_arg,
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
int max_ops_arg)
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t signature_size = signature_size_arg;
psa_status_t actual_status;
psa_status_t expected_start_status = expected_start_status_arg;
psa_status_t expected_complete_status = expected_complete_status_arg;
unsigned char *signature = NULL;
size_t signature_length = 0xdeadbeef;
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
uint32_t num_ops = 0;
uint32_t max_ops = max_ops_arg;
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
size_t num_ops_prior = 0;
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
size_t num_completes = 0;
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
size_t min_completes = 0;
size_t max_completes = 0;
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_sign_hash_interruptible_operation_t operation =
psa_sign_hash_interruptible_operation_init();
ASSERT_ALLOC(signature, signature_size);
PSA_ASSERT(psa_crypto_init());
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
psa_interruptible_set_max_ops(max_ops);
Move {min|max}_complete choice logic into function Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 19:41:05 +01:00
interruptible_signverify_get_minmax_completes(max_ops,
expected_complete_status,
&min_completes,
&max_completes);
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
num_ops_prior = psa_sign_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops_prior == 0);
/* Start performing the signature. */
actual_status = psa_sign_hash_start(&operation, key, alg,
input_data->x, input_data->len);
TEST_EQUAL(actual_status, expected_start_status);
Ensure that operation is put into error state if error occurs If an error occurs, calling any function on the same operation should return PSA_ERROR_BAD_STATE, and we were not honouring that for all errors. Add extra failure tests to try and ratify this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 16:14:07 +01:00
if (expected_start_status != PSA_SUCCESS) {
actual_status = psa_sign_hash_start(&operation, key, alg,
input_data->x, input_data->len);
TEST_EQUAL(actual_status, PSA_ERROR_BAD_STATE);
}
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
num_ops_prior = psa_sign_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops_prior == 0);
/* Continue performing the signature until complete. */
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
do {
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
actual_status = psa_sign_hash_complete(&operation, signature,
signature_size,
&signature_length);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
num_completes++;
Ensure ops are tested on successful 'fail' tests Make sure the number of ops is tested in the interruptible failure tests, should they get through the interruptible loop part. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:29:41 +01:00
if (actual_status == PSA_SUCCESS ||
actual_status == PSA_OPERATION_INCOMPLETE) {
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
num_ops = psa_sign_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops > num_ops_prior);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
num_ops_prior = num_ops;
}
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
} while (actual_status == PSA_OPERATION_INCOMPLETE);
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
Ensure that operation is put into error state if error occurs If an error occurs, calling any function on the same operation should return PSA_ERROR_BAD_STATE, and we were not honouring that for all errors. Add extra failure tests to try and ratify this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 16:14:07 +01:00
TEST_EQUAL(actual_status, expected_complete_status);
if (expected_complete_status != PSA_SUCCESS) {
actual_status = psa_sign_hash_complete(&operation, signature,
signature_size,
&signature_length);
Ensure ops are tested on successful 'fail' tests Make sure the number of ops is tested in the interruptible failure tests, should they get through the interruptible loop part. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:29:41 +01:00
TEST_EQUAL(actual_status, PSA_ERROR_BAD_STATE);
}
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
PSA_ASSERT(psa_sign_hash_abort(&operation));
Add {sign/verify}_hash_abort_internal Ensure that num_ops is cleared when manual abort is called, but obviously not when an operation just completes, and test this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-18 16:09:02 +01:00
num_ops = psa_sign_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops == 0);
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
/* The value of *signature_length is unspecified on error, but
* whatever it is, it should be less than signature_size, so that
* if the caller tries to read *signature_length bytes without
* checking the error code then they don't overflow a buffer. */
TEST_LE_U(signature_length, signature_size);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
TEST_LE_U(min_completes, num_completes);
TEST_LE_U(num_completes, max_completes);
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
exit:
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
}
/* END_CASE */
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void sign_verify_hash(int key_type_arg, data_t *key_data,
int alg_arg, data_t *input_data)
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t key_bits;
unsigned char *signature = NULL;
size_t signature_size;
size_t signature_length = 0xdeadbeef;
Implement psa_get_key_attributes Implement attribute querying. Test attribute getters and setters. Use psa_get_key_attributes instead of the deprecated functions psa_get_key_policy or psa_get_key_information in most tests.
2019-04-18 21:44:46 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-12-21 06:14:10 +01:00
/* Allocate a buffer which has the size advertised by the
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
* library. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
signature_size = PSA_SIGN_OUTPUT_SIZE(key_type,
key_bits, alg);
TEST_ASSERT(signature_size != 0);
TEST_LE_U(signature_size, PSA_SIGNATURE_MAX_SIZE);
ASSERT_ALLOC(signature, signature_size);
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
/* Perform the signature. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_sign_hash(key, alg,
input_data->x, input_data->len,
signature, signature_size,
&signature_length));
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
/* Check that the signature length looks sensible. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(signature_length, signature_size);
TEST_ASSERT(signature_length > 0);
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
/* Use the library to verify that the signature is correct. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_verify_hash(key, alg,
input_data->x, input_data->len,
signature, signature_length));
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (input_data->len != 0) {
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
/* Flip a bit in the input and verify that the signature is now
* detected as invalid. Flip a bit at the beginning, not at the end,
* because ECDSA may ignore the last few bits of the input. */
input_data->x[0] ^= 1;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_verify_hash(key, alg,
input_data->x, input_data->len,
signature, signature_length),
PSA_ERROR_INVALID_SIGNATURE);
Add sign_verify test and use it to smoke-test PSS
2018-06-29 17:30:48 +02:00
}
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
PSA crypto: asymmetric signature (RSA PKCS#1v1.5 only) Define hash algorithms and RSA signature algorithms. New function psa_asymmetric_sign. Implement psa_asymmetric_sign for RSA PKCS#1 v1.5.
2018-02-03 22:44:14 +01:00
}
/* END_CASE */
Key Policy APIs implementation
2018-03-28 00:21:33 +02:00
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
/* BEGIN_CASE depends_on:MBEDTLS_ECP_RESTARTABLE */
void sign_verify_hash_interruptible(int key_type_arg, data_t *key_data,
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
int alg_arg, data_t *input_data,
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
int max_ops_arg)
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t key_bits;
unsigned char *signature = NULL;
size_t signature_size;
size_t signature_length = 0xdeadbeef;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_OPERATION_INCOMPLETE;
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
uint32_t max_ops = max_ops_arg;
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
size_t num_completes = 0;
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
size_t min_completes = 0;
size_t max_completes = 0;
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
psa_sign_hash_interruptible_operation_t sign_operation =
psa_sign_hash_interruptible_operation_init();
psa_verify_hash_interruptible_operation_t verify_operation =
psa_verify_hash_interruptible_operation_init();
PSA_ASSERT(psa_crypto_init());
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH |
PSA_KEY_USAGE_VERIFY_HASH);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
/* Allocate a buffer which has the size advertised by the
* library. */
signature_size = PSA_SIGN_OUTPUT_SIZE(key_type,
key_bits, alg);
TEST_ASSERT(signature_size != 0);
TEST_LE_U(signature_size, PSA_SIGNATURE_MAX_SIZE);
ASSERT_ALLOC(signature, signature_size);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
psa_interruptible_set_max_ops(max_ops);
Move {min|max}_complete choice logic into function Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 19:41:05 +01:00
interruptible_signverify_get_minmax_completes(max_ops, PSA_SUCCESS,
&min_completes, &max_completes);
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
/* Start performing the signature. */
PSA_ASSERT(psa_sign_hash_start(&sign_operation, key, alg,
input_data->x, input_data->len));
/* Continue performing the signature until complete. */
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
do {
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
status = psa_sign_hash_complete(&sign_operation, signature,
signature_size,
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
&signature_length);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
num_completes++;
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
} while (status == PSA_OPERATION_INCOMPLETE);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
TEST_ASSERT(status == PSA_SUCCESS);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
TEST_LE_U(min_completes, num_completes);
TEST_LE_U(num_completes, max_completes);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
PSA_ASSERT(psa_sign_hash_abort(&sign_operation));
/* Check that the signature length looks sensible. */
TEST_LE_U(signature_length, signature_size);
TEST_ASSERT(signature_length > 0);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
num_completes = 0;
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
/* Start verification. */
PSA_ASSERT(psa_verify_hash_start(&verify_operation, key, alg,
input_data->x, input_data->len,
signature, signature_length));
/* Continue performing the signature until complete. */
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
do {
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
status = psa_verify_hash_complete(&verify_operation);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
num_completes++;
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
} while (status == PSA_OPERATION_INCOMPLETE);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
TEST_ASSERT(status == PSA_SUCCESS);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
TEST_LE_U(min_completes, num_completes);
TEST_LE_U(num_completes, max_completes);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
verify_operation = psa_verify_hash_interruptible_operation_init();
if (input_data->len != 0) {
/* Flip a bit in the input and verify that the signature is now
* detected as invalid. Flip a bit at the beginning, not at the end,
* because ECDSA may ignore the last few bits of the input. */
input_data->x[0] ^= 1;
/* Start verification. */
PSA_ASSERT(psa_verify_hash_start(&verify_operation, key, alg,
input_data->x, input_data->len,
signature, signature_length));
/* Continue performing the signature until complete. */
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
do {
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
status = psa_verify_hash_complete(&verify_operation);
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
} while (status == PSA_OPERATION_INCOMPLETE);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
TEST_ASSERT(status == PSA_ERROR_INVALID_SIGNATURE);
}
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
exit:
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
}
/* END_CASE */
ECDSA sign and verify implementation and tests ECDSA sign and verify implementation and tests
2018-05-08 10:18:38 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void verify_hash(int key_type_arg, data_t *key_data,
int alg_arg, data_t *hash_data,
data_t *signature_data)
ECDSA sign and verify implementation and tests ECDSA sign and verify implementation and tests
2018-05-08 10:18:38 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
ECDSA sign and verify implementation and tests ECDSA sign and verify implementation and tests
2018-05-08 10:18:38 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
ECDSA sign and verify implementation and tests ECDSA sign and verify implementation and tests
2018-05-08 10:18:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(signature_data->len, PSA_SIGNATURE_MAX_SIZE);
Use PSA_xxx_MAX_SIZE for hash/MAC/signature size in tests In tests that had a hard-coded buffer size, use PSA_MAC_MAX_SIZE or PSA_ASYMMETRIC_SIGNATURE_MAX_SIZE as appropriate. Test that PSA_xxx_MAX_SIZE is larger than the size used in tests that expect a specific output.
2018-06-28 00:07:19 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
ECDSA sign and verify implementation and tests ECDSA sign and verify implementation and tests
2018-05-08 10:18:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_VERIFY_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
ECDSA sign and verify implementation and tests ECDSA sign and verify implementation and tests
2018-05-08 10:18:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
ECDSA sign and verify implementation and tests ECDSA sign and verify implementation and tests
2018-05-08 10:18:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_verify_hash(key, alg,
hash_data->x, hash_data->len,
signature_data->x, signature_data->len));
Add tests of deprecated PSA functions Test psa_asymmetric_sign and psa_asymmetric_verify.
2019-11-26 19:12:16 +01:00
ECDSA sign and verify implementation and tests ECDSA sign and verify implementation and tests
2018-05-08 10:18:38 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
PSA_DONE();
ECDSA sign and verify implementation and tests ECDSA sign and verify implementation and tests
2018-05-08 10:18:38 +02:00
}
/* END_CASE */
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
/* BEGIN_CASE depends_on:MBEDTLS_ECP_RESTARTABLE */
void verify_hash_interruptible(int key_type_arg, data_t *key_data,
int alg_arg, data_t *hash_data,
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
data_t *signature_data, int max_ops_arg)
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_status_t status = PSA_OPERATION_INCOMPLETE;
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
uint32_t num_ops = 0;
uint32_t max_ops = max_ops_arg;
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
size_t num_ops_prior = 0;
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
size_t num_completes = 0;
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
size_t min_completes = 0;
size_t max_completes = 0;
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
psa_verify_hash_interruptible_operation_t operation =
psa_verify_hash_interruptible_operation_init();
TEST_LE_U(signature_data->len, PSA_SIGNATURE_MAX_SIZE);
PSA_ASSERT(psa_crypto_init());
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_VERIFY_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
psa_interruptible_set_max_ops(max_ops);
Move {min|max}_complete choice logic into function Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 19:41:05 +01:00
interruptible_signverify_get_minmax_completes(max_ops, PSA_SUCCESS,
&min_completes, &max_completes);
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
num_ops_prior = psa_verify_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops_prior == 0);
/* Start verification. */
PSA_ASSERT(psa_verify_hash_start(&operation, key, alg,
hash_data->x, hash_data->len,
signature_data->x, signature_data->len)
);
num_ops_prior = psa_verify_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops_prior == 0);
/* Continue performing the signature until complete. */
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
do {
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
status = psa_verify_hash_complete(&operation);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
num_completes++;
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
if (status == PSA_SUCCESS || status == PSA_OPERATION_INCOMPLETE) {
num_ops = psa_verify_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops > num_ops_prior);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
num_ops_prior = num_ops;
}
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
} while (status == PSA_OPERATION_INCOMPLETE);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
TEST_ASSERT(status == PSA_SUCCESS);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
TEST_LE_U(min_completes, num_completes);
TEST_LE_U(num_completes, max_completes);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
PSA_ASSERT(psa_verify_hash_abort(&operation));
Add {sign/verify}_hash_abort_internal Ensure that num_ops is cleared when manual abort is called, but obviously not when an operation just completes, and test this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-18 16:09:02 +01:00
num_ops = psa_verify_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops == 0);
Basic tests Sign Hash, Verify Hash and Sign and Verify Hash. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-07 15:03:10 +01:00
exit:
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
PSA_DONE();
}
/* END_CASE */
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void verify_hash_fail(int key_type_arg, data_t *key_data,
int alg_arg, data_t *hash_data,
data_t *signature_data,
int expected_status_arg)
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
psa_status_t actual_status;
psa_status_t expected_status = expected_status_arg;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_VERIFY_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
add key policy enforcement implementation add checks that keys have been set for the correct usage for asymmetric functions.
2018-06-04 15:45:27 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
actual_status = psa_verify_hash(key, alg,
hash_data->x, hash_data->len,
signature_data->x, signature_data->len);
TEST_EQUAL(actual_status, expected_status);
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
exit:
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
PSA_DONE();
}
/* END_CASE */
/* BEGIN_CASE depends_on:MBEDTLS_ECP_RESTARTABLE */
void verify_hash_fail_interruptible(int key_type_arg, data_t *key_data,
int alg_arg, data_t *hash_data,
data_t *signature_data,
int expected_start_status_arg,
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
int expected_complete_status_arg,
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
int max_ops_arg)
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
psa_status_t actual_status;
psa_status_t expected_start_status = expected_start_status_arg;
psa_status_t expected_complete_status = expected_complete_status_arg;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Change incorrect define for MAX_OPS_UNLIMITED Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-03 16:49:42 +01:00
uint32_t num_ops = 0;
uint32_t max_ops = max_ops_arg;
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
size_t num_ops_prior = 0;
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
size_t num_completes = 0;
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
size_t min_completes = 0;
size_t max_completes = 0;
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
psa_verify_hash_interruptible_operation_t operation =
psa_verify_hash_interruptible_operation_init();
PSA_ASSERT(psa_crypto_init());
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_VERIFY_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
psa_interruptible_set_max_ops(max_ops);
Move {min|max}_complete choice logic into function Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 19:41:05 +01:00
interruptible_signverify_get_minmax_completes(max_ops,
expected_complete_status,
&min_completes,
&max_completes);
Calculate min/max completes rather than passing in to test Only 2 options were really possible anyway - complete in 1 op, or somewhere between 2 and max ops. Anything else we cannot test due to implementation specifics. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-23 19:09:06 +01:00
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
num_ops_prior = psa_verify_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops_prior == 0);
/* Start verification. */
actual_status = psa_verify_hash_start(&operation, key, alg,
hash_data->x, hash_data->len,
signature_data->x,
signature_data->len);
TEST_EQUAL(actual_status, expected_start_status);
Ensure that operation is put into error state if error occurs If an error occurs, calling any function on the same operation should return PSA_ERROR_BAD_STATE, and we were not honouring that for all errors. Add extra failure tests to try and ratify this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 16:14:07 +01:00
if (expected_start_status != PSA_SUCCESS) {
actual_status = psa_verify_hash_start(&operation, key, alg,
hash_data->x, hash_data->len,
signature_data->x,
signature_data->len);
TEST_EQUAL(actual_status, PSA_ERROR_BAD_STATE);
}
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
num_ops_prior = psa_verify_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops_prior == 0);
/* Continue performing the signature until complete. */
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
do {
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
actual_status = psa_verify_hash_complete(&operation);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
num_completes++;
Ensure ops are tested on successful 'fail' tests Make sure the number of ops is tested in the interruptible failure tests, should they get through the interruptible loop part. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:29:41 +01:00
if (actual_status == PSA_SUCCESS ||
actual_status == PSA_OPERATION_INCOMPLETE) {
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
num_ops = psa_verify_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops > num_ops_prior);
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
num_ops_prior = num_ops;
}
Change test loops over to do...while Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:13:10 +01:00
} while (actual_status == PSA_OPERATION_INCOMPLETE);
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
Ensure that operation is put into error state if error occurs If an error occurs, calling any function on the same operation should return PSA_ERROR_BAD_STATE, and we were not honouring that for all errors. Add extra failure tests to try and ratify this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 16:14:07 +01:00
TEST_EQUAL(actual_status, expected_complete_status);
if (expected_complete_status != PSA_SUCCESS) {
actual_status = psa_verify_hash_complete(&operation);
Ensure ops are tested on successful 'fail' tests Make sure the number of ops is tested in the interruptible failure tests, should they get through the interruptible loop part. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-01-20 18:29:41 +01:00
TEST_EQUAL(actual_status, PSA_ERROR_BAD_STATE);
}
Convert tests to configurable max_ops Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 20:16:56 +01:00
TEST_LE_U(min_completes, num_completes);
TEST_LE_U(num_completes, max_completes);
Negative tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-16 13:21:24 +01:00
PSA_ASSERT(psa_verify_hash_abort(&operation));
Add {sign/verify}_hash_abort_internal Ensure that num_ops is cleared when manual abort is called, but obviously not when an operation just completes, and test this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-18 16:09:02 +01:00
num_ops = psa_verify_hash_get_num_ops(&operation);
TEST_ASSERT(num_ops == 0);
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
PSA_DONE();
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
}
/* END_CASE */
Add State tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-18 14:21:25 +01:00
/* BEGIN_CASE depends_on:MBEDTLS_ECP_RESTARTABLE */
void hash_interruptible_state_test(int key_type_arg, data_t *key_data,
int alg_arg, data_t *input_data)
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t key_bits;
unsigned char *signature = NULL;
size_t signature_size;
size_t signature_length = 0xdeadbeef;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Store the hash, rather than the pointer For sign and verify, the pointer passed in to the hash is not guaranteed to remain valid inbetween calls, thus we need to store the hash in the operation. Added a test to ensure this is the case. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-05 19:06:38 +01:00
uint8_t *input_buffer = NULL;
Add State tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-18 14:21:25 +01:00
psa_sign_hash_interruptible_operation_t sign_operation =
psa_sign_hash_interruptible_operation_init();
psa_verify_hash_interruptible_operation_t verify_operation =
psa_verify_hash_interruptible_operation_init();
PSA_ASSERT(psa_crypto_init());
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_HASH |
PSA_KEY_USAGE_VERIFY_HASH);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
/* Allocate a buffer which has the size advertised by the
* library. */
signature_size = PSA_SIGN_OUTPUT_SIZE(key_type,
key_bits, alg);
TEST_ASSERT(signature_size != 0);
TEST_LE_U(signature_size, PSA_SIGNATURE_MAX_SIZE);
ASSERT_ALLOC(signature, signature_size);
psa_interruptible_set_max_ops(PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED);
/* --- Attempt completes prior to starts --- */
TEST_EQUAL(psa_sign_hash_complete(&sign_operation, signature,
signature_size,
&signature_length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_sign_hash_abort(&sign_operation));
TEST_EQUAL(psa_verify_hash_complete(&verify_operation),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
/* --- Aborts in all other places. --- */
psa_sign_hash_abort(&sign_operation);
PSA_ASSERT(psa_sign_hash_start(&sign_operation, key, alg,
input_data->x, input_data->len));
PSA_ASSERT(psa_sign_hash_abort(&sign_operation));
psa_interruptible_set_max_ops(1);
PSA_ASSERT(psa_sign_hash_start(&sign_operation, key, alg,
input_data->x, input_data->len));
TEST_EQUAL(psa_sign_hash_complete(&sign_operation, signature,
signature_size,
&signature_length),
PSA_OPERATION_INCOMPLETE);
PSA_ASSERT(psa_sign_hash_abort(&sign_operation));
psa_interruptible_set_max_ops(PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED);
PSA_ASSERT(psa_sign_hash_start(&sign_operation, key, alg,
input_data->x, input_data->len));
PSA_ASSERT(psa_sign_hash_complete(&sign_operation, signature,
signature_size,
&signature_length));
PSA_ASSERT(psa_sign_hash_abort(&sign_operation));
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
PSA_ASSERT(psa_verify_hash_start(&verify_operation, key, alg,
input_data->x, input_data->len,
signature, signature_length));
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
psa_interruptible_set_max_ops(1);
PSA_ASSERT(psa_verify_hash_start(&verify_operation, key, alg,
input_data->x, input_data->len,
signature, signature_length));
TEST_EQUAL(psa_verify_hash_complete(&verify_operation),
PSA_OPERATION_INCOMPLETE);
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
psa_interruptible_set_max_ops(PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED);
PSA_ASSERT(psa_verify_hash_start(&verify_operation, key, alg,
input_data->x, input_data->len,
signature, signature_length));
PSA_ASSERT(psa_verify_hash_complete(&verify_operation));
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
/* --- Attempt double starts. --- */
PSA_ASSERT(psa_sign_hash_start(&sign_operation, key, alg,
input_data->x, input_data->len));
TEST_EQUAL(psa_sign_hash_start(&sign_operation, key, alg,
input_data->x, input_data->len),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_sign_hash_abort(&sign_operation));
PSA_ASSERT(psa_verify_hash_start(&verify_operation, key, alg,
input_data->x, input_data->len,
signature, signature_length));
TEST_EQUAL(psa_verify_hash_start(&verify_operation, key, alg,
input_data->x, input_data->len,
signature, signature_length),
PSA_ERROR_BAD_STATE);
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
/* --- Ensure changing the max ops mid operation works (operation should
* complete successfully after setting max ops to unlimited --- */
psa_interruptible_set_max_ops(1);
PSA_ASSERT(psa_sign_hash_start(&sign_operation, key, alg,
input_data->x, input_data->len));
TEST_EQUAL(psa_sign_hash_complete(&sign_operation, signature,
signature_size,
&signature_length),
PSA_OPERATION_INCOMPLETE);
psa_interruptible_set_max_ops(PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED);
PSA_ASSERT(psa_sign_hash_complete(&sign_operation, signature,
signature_size,
&signature_length));
PSA_ASSERT(psa_sign_hash_abort(&sign_operation));
psa_interruptible_set_max_ops(1);
PSA_ASSERT(psa_verify_hash_start(&verify_operation, key, alg,
input_data->x, input_data->len,
signature, signature_length));
TEST_EQUAL(psa_verify_hash_complete(&verify_operation),
PSA_OPERATION_INCOMPLETE);
psa_interruptible_set_max_ops(PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED);
PSA_ASSERT(psa_verify_hash_complete(&verify_operation));
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
/* --- Change function inputs mid run, to cause an error (sign only,
* verify passes all inputs to start. --- */
psa_interruptible_set_max_ops(1);
PSA_ASSERT(psa_sign_hash_start(&sign_operation, key, alg,
input_data->x, input_data->len));
TEST_EQUAL(psa_sign_hash_complete(&sign_operation, signature,
signature_size,
&signature_length),
PSA_OPERATION_INCOMPLETE);
TEST_EQUAL(psa_sign_hash_complete(&sign_operation, signature,
0,
&signature_length),
PSA_ERROR_BUFFER_TOO_SMALL);
Ensure that operation is put into error state if error occurs If an error occurs, calling any function on the same operation should return PSA_ERROR_BAD_STATE, and we were not honouring that for all errors. Add extra failure tests to try and ratify this. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-06 16:14:07 +01:00
/* And test that this invalidates the operation. */
TEST_EQUAL(psa_sign_hash_complete(&sign_operation, signature,
0,
&signature_length),
PSA_ERROR_BAD_STATE);
Add State tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-18 14:21:25 +01:00
PSA_ASSERT(psa_sign_hash_abort(&sign_operation));
Store the hash, rather than the pointer For sign and verify, the pointer passed in to the hash is not guaranteed to remain valid inbetween calls, thus we need to store the hash in the operation. Added a test to ensure this is the case. Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2023-02-05 19:06:38 +01:00
/* Trash the hash buffer in between start and complete, to ensure
* no reliance on external buffers. */
psa_interruptible_set_max_ops(PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED);
input_buffer = mbedtls_calloc(1, input_data->len);
TEST_ASSERT(input_buffer != NULL);
memcpy(input_buffer, input_data->x, input_data->len);
PSA_ASSERT(psa_sign_hash_start(&sign_operation, key, alg,
input_buffer, input_data->len));
memset(input_buffer, '!', input_data->len);
mbedtls_free(input_buffer);
input_buffer = NULL;
PSA_ASSERT(psa_sign_hash_complete(&sign_operation, signature,
signature_size,
&signature_length));
PSA_ASSERT(psa_sign_hash_abort(&sign_operation));
input_buffer = mbedtls_calloc(1, input_data->len);
TEST_ASSERT(input_buffer != NULL);
memcpy(input_buffer, input_data->x, input_data->len);
PSA_ASSERT(psa_verify_hash_start(&verify_operation, key, alg,
input_buffer, input_data->len,
signature, signature_length));
memset(input_buffer, '!', input_data->len);
mbedtls_free(input_buffer);
input_buffer = NULL;
PSA_ASSERT(psa_verify_hash_complete(&verify_operation));
PSA_ASSERT(psa_verify_hash_abort(&verify_operation));
Add State tests Signed-off-by: Paul Elliott <paul.elliott@arm.com>
2022-12-18 14:21:25 +01:00
exit:
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
}
/* END_CASE */
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void sign_message_deterministic(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input_data,
data_t *output_data)
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t key_bits;
unsigned char *signature = NULL;
size_t signature_size;
size_t signature_length = 0xdeadbeef;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_MESSAGE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
signature_size = PSA_SIGN_OUTPUT_SIZE(key_type, key_bits, alg);
TEST_ASSERT(signature_size != 0);
TEST_LE_U(signature_size, PSA_SIGNATURE_MAX_SIZE);
ASSERT_ALLOC(signature, signature_size);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_sign_message(key, alg,
input_data->x, input_data->len,
signature, signature_size,
&signature_length));
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(output_data->x, output_data->len,
signature, signature_length);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void sign_message_fail(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input_data,
int signature_size_arg,
int expected_status_arg)
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t signature_size = signature_size_arg;
psa_status_t actual_status;
psa_status_t expected_status = expected_status_arg;
unsigned char *signature = NULL;
size_t signature_length = 0xdeadbeef;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(signature, signature_size);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_MESSAGE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
actual_status = psa_sign_message(key, alg,
input_data->x, input_data->len,
signature, signature_size,
&signature_length);
TEST_EQUAL(actual_status, expected_status);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
/* The value of *signature_length is unspecified on error, but
* whatever it is, it should be less than signature_size, so that
* if the caller tries to read *signature_length bytes without
* checking the error code then they don't overflow a buffer. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(signature_length, signature_size);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void sign_verify_message(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input_data)
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t key_bits;
unsigned char *signature = NULL;
size_t signature_size;
size_t signature_length = 0xdeadbeef;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_SIGN_MESSAGE |
PSA_KEY_USAGE_VERIFY_MESSAGE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
signature_size = PSA_SIGN_OUTPUT_SIZE(key_type, key_bits, alg);
TEST_ASSERT(signature_size != 0);
TEST_LE_U(signature_size, PSA_SIGNATURE_MAX_SIZE);
ASSERT_ALLOC(signature, signature_size);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_sign_message(key, alg,
input_data->x, input_data->len,
signature, signature_size,
&signature_length));
TEST_LE_U(signature_length, signature_size);
TEST_ASSERT(signature_length > 0);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_verify_message(key, alg,
input_data->x, input_data->len,
signature, signature_length));
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (input_data->len != 0) {
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
/* Flip a bit in the input and verify that the signature is now
* detected as invalid. Flip a bit at the beginning, not at the end,
* because ECDSA may ignore the last few bits of the input. */
input_data->x[0] ^= 1;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_verify_message(key, alg,
input_data->x, input_data->len,
signature, signature_length),
PSA_ERROR_INVALID_SIGNATURE);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
}
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(signature);
PSA_DONE();
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void verify_message(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input_data,
data_t *signature_data)
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(signature_data->len, PSA_SIGNATURE_MAX_SIZE);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_VERIFY_MESSAGE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_verify_message(key, alg,
input_data->x, input_data->len,
signature_data->x, signature_data->len));
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
PSA_DONE();
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void verify_message_fail(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *hash_data,
data_t *signature_data,
int expected_status_arg)
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
{
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
psa_status_t actual_status;
psa_status_t expected_status = expected_status_arg;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_VERIFY_MESSAGE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
actual_status = psa_verify_message(key, alg,
hash_data->x, hash_data->len,
signature_data->x,
signature_data->len);
TEST_EQUAL(actual_status, expected_status);
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
PSA_DONE();
Add tests for psa_sign_message and psa_verify_message The reference output data was created with cryptodome for RSA algorithms and python-ecdsa for ECDSA algorithms. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-04-15 18:19:50 +02:00
}
/* END_CASE */
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void asymmetric_encrypt(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input_data,
data_t *label,
int expected_output_length_arg,
int expected_status_arg)
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
size_t expected_output_length = expected_output_length_arg;
size_t key_bits;
unsigned char *output = NULL;
size_t output_size;
size_t output_length = ~0;
psa_status_t actual_status;
psa_status_t expected_status = expected_status_arg;
Implement psa_get_key_attributes Implement attribute querying. Test attribute getters and setters. Use psa_get_key_attributes instead of the deprecated functions psa_get_key_policy or psa_get_key_information in most tests.
2019-04-18 21:44:46 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Convert the PSA crypto cryptography tests to the new handle API Switch from the direct use of slot numbers to handles allocated by psa_allocate_key. This commit does not affect persistent key tests except for the one test function in test_suite_psa_crypto that uses persistent keys (persistent_key_load_key_from_storage). The general principle for each function is: * Change `psa_key_slot_t slot` to `psa_key_handle_t handle`. * Call psa_allocate_key() before setting the policy of the slot, or before creating key material in functions that don't set a policy. * Some PSA_ERROR_EMPTY_SLOT errors become PSA_ERROR_INVALID_HANDLE because there is now a distinction between not having a valid handle, and having a valid handle to a slot that doesn't contain key material. * In tests that use symmetric keys, calculate the max_bits parameters of psa_allocate_key() from the key data size. In tests where the key may be asymmetric, call an auxiliary macro KEY_BITS_FROM_DATA which returns an overapproximation. There's no good way to find a good value for max_bits with the API, I think the API should be tweaked.
2018-12-03 15:36:32 +01:00
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
/* Import the key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
/* Determine the maximum output length */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(key_type, key_bits, alg);
TEST_LE_U(output_size, PSA_ASYMMETRIC_ENCRYPT_OUTPUT_MAX_SIZE);
ASSERT_ALLOC(output, output_size);
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
/* Encrypt the input */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
actual_status = psa_asymmetric_encrypt(key, alg,
input_data->x, input_data->len,
label->x, label->len,
output, output_size,
&output_length);
TEST_EQUAL(actual_status, expected_status);
TEST_EQUAL(output_length, expected_output_length);
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
Asymmetric encryption tests: allow label argument Add a label argument to all asymmetric encryption test functions (currently empty in all tests, but that will change soon). In asymmetric_encrypt and asymmetric_decrypt, with an empty label, test with both a null pointer and a non-null pointer.
2018-06-30 18:42:41 +02:00
/* If the label is empty, the test framework puts a non-null pointer
* in label->x. Test that a null pointer works as well. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (label->len == 0) {
Asymmetric encryption tests: allow label argument Add a label argument to all asymmetric encryption test functions (currently empty in all tests, but that will change soon). In asymmetric_encrypt and asymmetric_decrypt, with an empty label, test with both a null pointer and a non-null pointer.
2018-06-30 18:42:41 +02:00
output_length = ~0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (output_size != 0) {
memset(output, 0, output_size);
}
actual_status = psa_asymmetric_encrypt(key, alg,
input_data->x, input_data->len,
NULL, label->len,
output, output_size,
&output_length);
TEST_EQUAL(actual_status, expected_status);
TEST_EQUAL(output_length, expected_output_length);
Asymmetric encryption tests: allow label argument Add a label argument to all asymmetric encryption test functions (currently empty in all tests, but that will change soon). In asymmetric_encrypt and asymmetric_decrypt, with an empty label, test with both a null pointer and a non-null pointer.
2018-06-30 18:42:41 +02:00
}
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(output);
PSA_DONE();
Add positive asymmetric encryption tests Revise the test function asymmetric_encrypt_fail into asymmetric_encrypt and use it for positive tests as well. Get the expected output length from PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE. Check the actual output length against test data. Add positive test cases for encryption: one with an RSA public key (this is the only test for encryption with a public key rather than a key pair) and one with a key pair.
2018-06-29 19:12:28 +02:00
}
/* END_CASE */
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void asymmetric_encrypt_decrypt(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input_data,
data_t *label)
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Asymmetric encrypt/decrypt tests: check output length In asymmetric_encrypt_decrypt, use the buffer size advertized by the library for the ciphertext, and the length of the plaintext for the re-decrypted output. Test the output length if known. Require it to be 0 on error for encrypt/decrypt functions. If the output length is unknown, test at least that it's within the buffer limits.
2018-06-30 18:54:48 +02:00
size_t key_bits;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
unsigned char *output = NULL;
Asymmetric encrypt/decrypt tests: check output length In asymmetric_encrypt_decrypt, use the buffer size advertized by the library for the ciphertext, and the length of the plaintext for the re-decrypted output. Test the output length if known. Require it to be 0 on error for encrypt/decrypt functions. If the output length is unknown, test at least that it's within the buffer limits.
2018-06-30 18:54:48 +02:00
size_t output_size;
size_t output_length = ~0;
change RSA encryption tests compensate for random component in encryption.
2018-05-02 22:56:12 +02:00
unsigned char *output2 = NULL;
Asymmetric encrypt/decrypt tests: check output length In asymmetric_encrypt_decrypt, use the buffer size advertized by the library for the ciphertext, and the length of the plaintext for the re-decrypted output. Test the output length if known. Require it to be 0 on error for encrypt/decrypt functions. If the output length is unknown, test at least that it's within the buffer limits.
2018-06-30 18:54:48 +02:00
size_t output2_size;
size_t output2_length = ~0;
Implement psa_get_key_attributes Implement attribute querying. Test attribute getters and setters. Use psa_get_key_attributes instead of the deprecated functions psa_get_key_policy or psa_get_key_information in most tests.
2019-04-18 21:44:46 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Asymmetric encrypt/decrypt tests: check output length In asymmetric_encrypt_decrypt, use the buffer size advertized by the library for the ciphertext, and the length of the plaintext for the re-decrypted output. Test the output length if known. Require it to be 0 on error for encrypt/decrypt functions. If the output length is unknown, test at least that it's within the buffer limits.
2018-06-30 18:54:48 +02:00
/* Determine the maximum ciphertext length */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(key_type, key_bits, alg);
TEST_LE_U(output_size, PSA_ASYMMETRIC_ENCRYPT_OUTPUT_MAX_SIZE);
ASSERT_ALLOC(output, output_size);
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Asymmetric encrypt/decrypt tests: check output length In asymmetric_encrypt_decrypt, use the buffer size advertized by the library for the ciphertext, and the length of the plaintext for the re-decrypted output. Test the output length if known. Require it to be 0 on error for encrypt/decrypt functions. If the output length is unknown, test at least that it's within the buffer limits.
2018-06-30 18:54:48 +02:00
output2_size = input_data->len;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(output2_size,
PSA_ASYMMETRIC_DECRYPT_OUTPUT_SIZE(key_type, key_bits, alg));
TEST_LE_U(output2_size, PSA_ASYMMETRIC_DECRYPT_OUTPUT_MAX_SIZE);
ASSERT_ALLOC(output2, output2_size);
Asymmetric encrypt/decrypt tests: check output length In asymmetric_encrypt_decrypt, use the buffer size advertized by the library for the ciphertext, and the length of the plaintext for the re-decrypted output. Test the output length if known. Require it to be 0 on error for encrypt/decrypt functions. If the output length is unknown, test at least that it's within the buffer limits.
2018-06-30 18:54:48 +02:00
Rename asymmetric_encrypt to clarify what it does Renamed to asymmetric_encrypt_decrypt
2018-06-08 18:11:54 +02:00
/* We test encryption by checking that encrypt-then-decrypt gives back
* the original plaintext because of the non-optional random
* part of encryption process which prevents using fixed vectors. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_asymmetric_encrypt(key, alg,
input_data->x, input_data->len,
label->x, label->len,
output, output_size,
&output_length));
Asymmetric encrypt/decrypt tests: check output length In asymmetric_encrypt_decrypt, use the buffer size advertized by the library for the ciphertext, and the length of the plaintext for the re-decrypted output. Test the output length if known. Require it to be 0 on error for encrypt/decrypt functions. If the output length is unknown, test at least that it's within the buffer limits.
2018-06-30 18:54:48 +02:00
/* We don't know what ciphertext length to expect, but check that
* it looks sensible. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(output_length, output_size);
Normalize whitespace Normalize whitespace to Mbed TLS standards. There are only whitespace changes in this commit.
2018-06-18 15:41:12 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_asymmetric_decrypt(key, alg,
output, output_length,
label->x, label->len,
output2, output2_size,
&output2_length));
ASSERT_COMPARE(input_data->x, input_data->len,
output2, output2_length);
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
mbedtls_free(output);
mbedtls_free(output2);
PSA_DONE();
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void asymmetric_decrypt(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input_data,
data_t *label,
data_t *expected_data)
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
size_t key_bits;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
unsigned char *output = NULL;
Fix test output size 1. set output size to safe value 2. set output size correctly 3. check correct length of actual output
2018-06-04 15:31:13 +02:00
size_t output_size = 0;
Asymmetric encrypt/decrypt tests: check output length In asymmetric_encrypt_decrypt, use the buffer size advertized by the library for the ciphertext, and the length of the plaintext for the re-decrypted output. Test the output length if known. Require it to be 0 on error for encrypt/decrypt functions. If the output length is unknown, test at least that it's within the buffer limits.
2018-06-30 18:54:48 +02:00
size_t output_length = ~0;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
Use PSA_ASSERT(a) in preference to TEST_ASSERT(a==PSA_SUCCESS) This commit is the result of the following command, followed by reindenting (but not wrapping lines): perl -00 -i -pe 's/^( *)TEST_ASSERT\(([^;=]*)(?: |\n *)==\s*PSA_SUCCESS\s*\);$/${1}PSA_ASSERT($2 );/gm' tests/suites/test_suite_psa_*.function
2018-12-18 00:18:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Use PSA_ASSERT(a) in preference to TEST_ASSERT(a==PSA_SUCCESS) This commit is the result of the following command, followed by reindenting (but not wrapping lines): perl -00 -i -pe 's/^( *)TEST_ASSERT\(([^;=]*)(?: |\n *)==\s*PSA_SUCCESS\s*\);$/${1}PSA_ASSERT($2 );/gm' tests/suites/test_suite_psa_*.function
2018-12-18 00:18:46 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
/* Determine the maximum ciphertext length */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
output_size = PSA_ASYMMETRIC_DECRYPT_OUTPUT_SIZE(key_type, key_bits, alg);
TEST_LE_U(output_size, PSA_ASYMMETRIC_DECRYPT_OUTPUT_MAX_SIZE);
ASSERT_ALLOC(output, output_size);
PSA_ASSERT(psa_asymmetric_decrypt(key, alg,
input_data->x, input_data->len,
label->x, label->len,
output,
output_size,
&output_length));
ASSERT_COMPARE(expected_data->x, expected_data->len,
output, output_length);
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Asymmetric encryption tests: allow label argument Add a label argument to all asymmetric encryption test functions (currently empty in all tests, but that will change soon). In asymmetric_encrypt and asymmetric_decrypt, with an empty label, test with both a null pointer and a non-null pointer.
2018-06-30 18:42:41 +02:00
/* If the label is empty, the test framework puts a non-null pointer
* in label->x. Test that a null pointer works as well. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (label->len == 0) {
Asymmetric encryption tests: allow label argument Add a label argument to all asymmetric encryption test functions (currently empty in all tests, but that will change soon). In asymmetric_encrypt and asymmetric_decrypt, with an empty label, test with both a null pointer and a non-null pointer.
2018-06-30 18:42:41 +02:00
output_length = ~0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (output_size != 0) {
memset(output, 0, output_size);
}
PSA_ASSERT(psa_asymmetric_decrypt(key, alg,
input_data->x, input_data->len,
NULL, label->len,
output,
output_size,
&output_length));
ASSERT_COMPARE(expected_data->x, expected_data->len,
output, output_length);
Asymmetric encryption tests: allow label argument Add a label argument to all asymmetric encryption test functions (currently empty in all tests, but that will change soon). In asymmetric_encrypt and asymmetric_decrypt, with an empty label, test with both a null pointer and a non-null pointer.
2018-06-30 18:42:41 +02:00
}
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
mbedtls_free(output);
PSA_DONE();
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void asymmetric_decrypt_fail(int key_type_arg,
data_t *key_data,
int alg_arg,
data_t *input_data,
data_t *label,
int output_size_arg,
int expected_status_arg)
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
psa_key_type_t key_type = key_type_arg;
psa_algorithm_t alg = alg_arg;
unsigned char *output = NULL;
psa: Enable testing RSA decryption with output sizes For must-fail asymmetric decryption tests, add an output size parameter so that tests can directly control what output buffer size they allocate and use independently from the key size used. This enables better testing of behavior with various output buffer sizes.
2019-02-06 13:57:46 +01:00
size_t output_size = output_size_arg;
Asymmetric encrypt/decrypt tests: check output length In asymmetric_encrypt_decrypt, use the buffer size advertized by the library for the ciphertext, and the length of the plaintext for the re-decrypted output. Test the output length if known. Require it to be 0 on error for encrypt/decrypt functions. If the output length is unknown, test at least that it's within the buffer limits.
2018-06-30 18:54:48 +02:00
size_t output_length = ~0;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
psa_status_t actual_status;
psa_status_t expected_status = expected_status_arg;
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output, output_size);
Remove trailing whitespace Only horizontal whitespace changes in this commit.
2018-05-31 13:25:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DECRYPT);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
add key policy enforcement implementation add checks that keys have been set for the correct usage for asymmetric functions.
2018-06-04 15:45:27 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
Normalize whitespace Normalize whitespace to Mbed TLS standards. There are only whitespace changes in this commit.
2018-06-18 15:41:12 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
actual_status = psa_asymmetric_decrypt(key, alg,
input_data->x, input_data->len,
label->x, label->len,
output, output_size,
&output_length);
TEST_EQUAL(actual_status, expected_status);
TEST_LE_U(output_length, output_size);
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
Asymmetric encryption tests: allow label argument Add a label argument to all asymmetric encryption test functions (currently empty in all tests, but that will change soon). In asymmetric_encrypt and asymmetric_decrypt, with an empty label, test with both a null pointer and a non-null pointer.
2018-06-30 18:42:41 +02:00
/* If the label is empty, the test framework puts a non-null pointer
* in label->x. Test that a null pointer works as well. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (label->len == 0) {
Asymmetric encryption tests: allow label argument Add a label argument to all asymmetric encryption test functions (currently empty in all tests, but that will change soon). In asymmetric_encrypt and asymmetric_decrypt, with an empty label, test with both a null pointer and a non-null pointer.
2018-06-30 18:42:41 +02:00
output_length = ~0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (output_size != 0) {
memset(output, 0, output_size);
}
actual_status = psa_asymmetric_decrypt(key, alg,
input_data->x, input_data->len,
NULL, label->len,
output, output_size,
&output_length);
TEST_EQUAL(actual_status, expected_status);
TEST_LE_U(output_length, output_size);
Asymmetric encryption tests: allow label argument Add a label argument to all asymmetric encryption test functions (currently empty in all tests, but that will change soon). In asymmetric_encrypt and asymmetric_decrypt, with an empty label, test with both a null pointer and a non-null pointer.
2018-06-30 18:42:41 +02:00
}
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa_destroy_key(key);
mbedtls_free(output);
PSA_DONE();
added support for PKCSv1.5 signature verification and encryption/decryption and very basic tests.
2018-05-02 22:16:26 +02:00
}
Remove trailing whitespace Only horizontal whitespace changes in this commit.
2018-05-31 13:25:48 +02:00
/* END_CASE */
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
psa: Test that generator initializers work
2019-01-04 15:11:48 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void key_derivation_init()
psa: Test that generator initializers work
2019-01-04 15:11:48 +01:00
{
/* Test each valid way of initializing the object, except for `= {0}`, as
* Clang 5 complains when `-Wmissing-field-initializers` is used, even
* though it's OK by the C standard. We could test for this, but we'd need
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-12-21 06:14:10 +01:00
* to suppress the Clang warning for the test. */
psa: Test fresh contexts have default behavior Test that freshly-initialized contexts exhibit default behavior through the API. Do this without depending on the internal representation of the contexts. This provides better portability of our tests on compilers like MSVC.
2019-02-07 17:33:37 +01:00
size_t capacity;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_operation_t func = psa_key_derivation_operation_init();
Rename generator functions to psa_key_derivation_xxx Generators are mostly about key derivation (currently: only about key derivation). "Generator" is not a commonly used term in cryptography. So favor "derivation" as terminology. Call a generator a key derivation operation structure, since it behaves like other multipart operation structures. Furthermore, the function names are not fully consistent. In this commit, I rename the functions to consistently have the prefix "psa_key_derivation_". I used the following command: perl -i -pe '%t = ( psa_crypto_generator_t => "psa_key_derivation_operation_t", psa_crypto_generator_init => "psa_key_derivation_init", psa_key_derivation_setup => "psa_key_derivation_setup", psa_key_derivation_input_key => "psa_key_derivation_input_key", psa_key_derivation_input_bytes => "psa_key_derivation_input_bytes", psa_key_agreement => "psa_key_derivation_key_agreement", psa_set_generator_capacity => "psa_key_derivation_set_capacity", psa_get_generator_capacity => "psa_key_derivation_get_capacity", psa_generator_read => "psa_key_derivation_output_bytes", psa_generate_derived_key => "psa_key_derivation_output_key", psa_generator_abort => "psa_key_derivation_abort", PSA_CRYPTO_GENERATOR_INIT => "PSA_KEY_DERIVATION_OPERATION_INIT", PSA_GENERATOR_UNBRIDLED_CAPACITY => "PSA_KEY_DERIVATION_UNLIMITED_CAPACITY", ); s/\b(@{[join("|", keys %t)]})\b/$t{$1}/ge' $(git ls-files)
2019-05-16 15:28:51 +02:00
psa_key_derivation_operation_t init = PSA_KEY_DERIVATION_OPERATION_INIT;
psa_key_derivation_operation_t zero;
psa: Test that generator initializers work
2019-01-04 15:11:48 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
memset(&zero, 0, sizeof(zero));
psa: Test that generator initializers work
2019-01-04 15:11:48 +01:00
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
/* A default operation should not be able to report its capacity. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_get_capacity(&func, &capacity),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_key_derivation_get_capacity(&init, &capacity),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_key_derivation_get_capacity(&zero, &capacity),
PSA_ERROR_BAD_STATE);
psa: Test fresh contexts have default behavior Test that freshly-initialized contexts exhibit default behavior through the API. Do this without depending on the internal representation of the contexts. This provides better portability of our tests on compilers like MSVC.
2019-02-07 17:33:37 +01:00
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
/* A default operation should be abortable without error. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_abort(&func));
PSA_ASSERT(psa_key_derivation_abort(&init));
PSA_ASSERT(psa_key_derivation_abort(&zero));
psa: Test that generator initializers work
2019-01-04 15:11:48 +01:00
}
/* END_CASE */
Adapt the derive_setup tests to the new API Part of the tests are adapted in this commit, another part is already covered by the derive_input tests and some of them are not applicable to the new API (the new API does not request capacity at the setup stage). The test coverage temporarily drops with this commit, the two test cases conserning capacity will be re-added in a later commit.
2019-06-13 17:32:24 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_setup(int alg_arg, int expected_status_arg)
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
{
psa_algorithm_t alg = alg_arg;
psa_status_t expected_status = expected_status_arg;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_setup(&operation, alg),
expected_status);
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
PSA_DONE();
Add framework for simple key derivation New key type PSA_KEY_TYPE_DERIVE. New usage flag PSA_KEY_USAGE_DERIVE. New function psa_key_derivation. No key derivation algorithm is implemented yet. The code may not compile with -Wunused. Write some unit test code for psa_key_derivation. Most of it cannot be used yet due to the lack of a key derivation algorithm.
2018-07-12 17:17:20 +02:00
}
/* END_CASE */
Add test for psa_key_derivation_set_capacity This commit restores the test coverage to the level before adapting the derive_setup tests.
2019-06-14 10:59:36 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_set_capacity(int alg_arg, int capacity_arg,
int expected_status_arg)
Add test for psa_key_derivation_set_capacity This commit restores the test coverage to the level before adapting the derive_setup tests.
2019-06-14 10:59:36 +02:00
{
psa_algorithm_t alg = alg_arg;
size_t capacity = capacity_arg;
psa_status_t expected_status = expected_status_arg;
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add test for psa_key_derivation_set_capacity This commit restores the test coverage to the level before adapting the derive_setup tests.
2019-06-14 10:59:36 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_setup(&operation, alg));
Add test for psa_key_derivation_set_capacity This commit restores the test coverage to the level before adapting the derive_setup tests.
2019-06-14 10:59:36 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_set_capacity(&operation, capacity),
expected_status);
Add test for psa_key_derivation_set_capacity This commit restores the test coverage to the level before adapting the derive_setup tests.
2019-06-14 10:59:36 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
PSA_DONE();
Add test for psa_key_derivation_set_capacity This commit restores the test coverage to the level before adapting the derive_setup tests.
2019-06-14 10:59:36 +02:00
}
/* END_CASE */
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_input(int alg_arg,
int step_arg1, int key_type_arg1, data_t *input1,
int expected_status_arg1,
int step_arg2, int key_type_arg2, data_t *input2,
int expected_status_arg2,
int step_arg3, int key_type_arg3, data_t *input3,
int expected_status_arg3,
int output_key_type_arg, int expected_output_status_arg)
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
{
psa_algorithm_t alg = alg_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_step_t steps[] = { step_arg1, step_arg2, step_arg3 };
psa_key_type_t key_types[] = { key_type_arg1, key_type_arg2, key_type_arg3 };
psa_status_t expected_statuses[] = { expected_status_arg1,
expected_status_arg2,
expected_status_arg3 };
data_t *inputs[] = { input1, input2, input3 };
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t keys[] = { MBEDTLS_SVC_KEY_ID_INIT,
MBEDTLS_SVC_KEY_ID_INIT,
MBEDTLS_SVC_KEY_ID_INIT };
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
size_t i;
derive_input test function: Try output afterwards After passing some inputs, try getting one byte of output, just to check that this succeeds (for a valid sequence of inputs) or fails with BAD_STATE (for an invalid sequence of inputs). Either output a 1-byte key or a 1-byte buffer depending on the test data. The test data was expanded as follows: * Output key type (or not a key): same as the SECRET input if success is expected, otherwise NONE. * Expected status: PSA_SUCCESS after valid inputs, BAD_STATE after any invalid input.
2019-09-24 17:45:07 +02:00
psa_key_type_t output_key_type = output_key_type_arg;
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t output_key = MBEDTLS_SVC_KEY_ID_INIT;
derive_input test function: Try output afterwards After passing some inputs, try getting one byte of output, just to check that this succeeds (for a valid sequence of inputs) or fails with BAD_STATE (for an invalid sequence of inputs). Either output a 1-byte key or a 1-byte buffer depending on the test data. The test data was expanded as follows: * Output key type (or not a key): same as the SECRET input if success is expected, otherwise NONE. * Expected status: PSA_SUCCESS after valid inputs, BAD_STATE after any invalid input.
2019-09-24 17:45:07 +02:00
psa_status_t expected_output_status = expected_output_status_arg;
psa_status_t actual_output_status;
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, alg);
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_setup(&operation, alg));
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (i = 0; i < ARRAY_LENGTH(steps); i++) {
mbedtls_test_set_step(i);
if (steps[i] == 0) {
Add bad-workflow key derivation tests Add HKDF tests where the sequence of inputs differs from the nominal case: missing step, duplicate step, step out of order, or invalid step. There were already similar tests for TLS 1.2 PRF. Add one with a key agreement which has slightly different code. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2021-05-27 13:21:20 +02:00
/* Skip this step */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else if (key_types[i] != PSA_KEY_TYPE_NONE) {
psa_set_key_type(&attributes, key_types[i]);
PSA_ASSERT(psa_import_key(&attributes,
inputs[i]->x, inputs[i]->len,
&keys[i]));
if (PSA_KEY_TYPE_IS_KEY_PAIR(key_types[i]) &&
steps[i] == PSA_KEY_DERIVATION_INPUT_SECRET) {
Fix PSA crypto inconsistencies in agreement+derivation * #3742 After input of a key as SECRET in the derivation, allow the derivation result to be used as key. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2020-10-05 16:03:42 +02:00
// When taking a private key as secret input, use key agreement
// to add the shared secret to the derivation
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(mbedtls_test_psa_key_agreement_with_self(
&operation, keys[i]),
expected_statuses[i]);
} else {
TEST_EQUAL(psa_key_derivation_input_key(&operation, steps[i],
keys[i]),
expected_statuses[i]);
Fix PSA crypto inconsistencies in agreement+derivation * #3742 After input of a key as SECRET in the derivation, allow the derivation result to be used as key. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2020-10-05 16:03:42 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else {
TEST_EQUAL(psa_key_derivation_input_bytes(
&operation, steps[i],
inputs[i]->x, inputs[i]->len),
expected_statuses[i]);
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
}
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (output_key_type != PSA_KEY_TYPE_NONE) {
psa_reset_key_attributes(&attributes);
psa_set_key_type(&attributes, output_key_type);
psa_set_key_bits(&attributes, 8);
derive_input test function: Try output afterwards After passing some inputs, try getting one byte of output, just to check that this succeeds (for a valid sequence of inputs) or fails with BAD_STATE (for an invalid sequence of inputs). Either output a 1-byte key or a 1-byte buffer depending on the test data. The test data was expanded as follows: * Output key type (or not a key): same as the SECRET input if success is expected, otherwise NONE. * Expected status: PSA_SUCCESS after valid inputs, BAD_STATE after any invalid input.
2019-09-24 17:45:07 +02:00
actual_output_status =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_output_key(&attributes, &operation,
&output_key);
} else {
derive_input test function: Try output afterwards After passing some inputs, try getting one byte of output, just to check that this succeeds (for a valid sequence of inputs) or fails with BAD_STATE (for an invalid sequence of inputs). Either output a 1-byte key or a 1-byte buffer depending on the test data. The test data was expanded as follows: * Output key type (or not a key): same as the SECRET input if success is expected, otherwise NONE. * Expected status: PSA_SUCCESS after valid inputs, BAD_STATE after any invalid input.
2019-09-24 17:45:07 +02:00
uint8_t buffer[1];
actual_output_status =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_output_bytes(&operation,
buffer, sizeof(buffer));
derive_input test function: Try output afterwards After passing some inputs, try getting one byte of output, just to check that this succeeds (for a valid sequence of inputs) or fails with BAD_STATE (for an invalid sequence of inputs). Either output a 1-byte key or a 1-byte buffer depending on the test data. The test data was expanded as follows: * Output key type (or not a key): same as the SECRET input if success is expected, otherwise NONE. * Expected status: PSA_SUCCESS after valid inputs, BAD_STATE after any invalid input.
2019-09-24 17:45:07 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(actual_output_status, expected_output_status);
derive_input test function: Try output afterwards After passing some inputs, try getting one byte of output, just to check that this succeeds (for a valid sequence of inputs) or fails with BAD_STATE (for an invalid sequence of inputs). Either output a 1-byte key or a 1-byte buffer depending on the test data. The test data was expanded as follows: * Output key type (or not a key): same as the SECRET input if success is expected, otherwise NONE. * Expected status: PSA_SUCCESS after valid inputs, BAD_STATE after any invalid input.
2019-09-24 17:45:07 +02:00
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
for (i = 0; i < ARRAY_LENGTH(keys); i++) {
psa_destroy_key(keys[i]);
}
psa_destroy_key(output_key);
PSA_DONE();
Add a test for psa_key_derivation_input
2019-06-12 13:34:34 +02:00
}
/* END_CASE */
Convert invalid_key_derivation_state to new API Convert the test_derive_invalid_key_derivation_state() test to the new KDF API.
2019-07-03 16:02:16 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_over_capacity(int alg_arg)
add tests that increase key derivation code coverage slightly added tests that increase code coverage for the key derivation functions slightly by reaching error cases not covered before.
2018-10-22 16:24:55 +02:00
{
Convert invalid_key_derivation_state to new API Convert the test_derive_invalid_key_derivation_state() test to the new KDF API.
2019-07-03 16:02:16 +02:00
psa_algorithm_t alg = alg_arg;
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
streamline test function API by removing parameter streamline the API for the test test_derive_invalid_generator_state by removing the key type paramter (it is assumed to always be PSA_KEY_TYPE_DERIVE)
2018-10-31 11:15:58 +01:00
size_t key_type = PSA_KEY_TYPE_DERIVE;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
Convert invalid_key_derivation_state to new API Convert the test_derive_invalid_key_derivation_state() test to the new KDF API.
2019-07-03 16:02:16 +02:00
unsigned char input1[] = "Input 1";
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t input1_length = sizeof(input1);
Convert invalid_key_derivation_state to new API Convert the test_derive_invalid_key_derivation_state() test to the new KDF API.
2019-07-03 16:02:16 +02:00
unsigned char input2[] = "Input 2";
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t input2_length = sizeof(input2);
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
uint8_t buffer[42];
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t capacity = sizeof(buffer);
Streamline test function API by removing parameter streamline the API for the test test_derive_invalid_generator_state: by removing the key_data parameter. This parameter is not important for test flow and can be hard-coded.
2018-11-01 11:24:23 +01:00
const uint8_t key_data[22] = { 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b };
Update remaining test cases to use key attributes Finish updating the tests to use psa_key_attributes_t and psa_import_key instead of psa_key_policy_t and psa_import_key_to_handle.
2019-04-19 19:58:20 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type);
add tests that increase key derivation code coverage slightly added tests that increase code coverage for the key derivation functions slightly by reaching error cases not covered before.
2018-10-22 16:24:55 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes,
key_data, sizeof(key_data),
&key));
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
/* valid key derivation */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_setup_key_derivation_wrap(&operation, key, alg,
input1, input1_length,
input2, input2_length,
capacity)) {
Convert invalid_key_derivation_state to new API Convert the test_derive_invalid_key_derivation_state() test to the new KDF API.
2019-07-03 16:02:16 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
/* state of operation shouldn't allow additional generation */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_setup(&operation, alg),
PSA_ERROR_BAD_STATE);
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_output_bytes(&operation, buffer, capacity));
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_output_bytes(&operation, buffer, capacity),
PSA_ERROR_INSUFFICIENT_DATA);
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_actions_without_setup()
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
{
uint8_t output_buffer[16];
size_t buffer_size = 16;
size_t capacity = 0;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(psa_key_derivation_output_bytes(&operation,
output_buffer, buffer_size)
== PSA_ERROR_BAD_STATE);
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(psa_key_derivation_get_capacity(&operation, &capacity)
== PSA_ERROR_BAD_STATE);
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_abort(&operation));
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(psa_key_derivation_output_bytes(&operation,
output_buffer, buffer_size)
== PSA_ERROR_BAD_STATE);
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(psa_key_derivation_get_capacity(&operation, &capacity)
== PSA_ERROR_BAD_STATE);
add additional generator tests and generalize key derivation test Key derivation test now uses an indirect way to test generator validity as the direct way previously used isn't compatible with the PSA IPC implementation. Additional bad path test for the generator added to check basic bad-path scenarios.
2018-10-25 13:46:09 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
add tests that increase key derivation code coverage slightly added tests that increase code coverage for the key derivation functions slightly by reaching error cases not covered before.
2018-10-22 16:24:55 +02:00
}
/* END_CASE */
HKDF: positive tests
2018-07-12 17:24:54 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_output(int alg_arg,
int step1_arg, data_t *input1, int expected_status_arg1,
int step2_arg, data_t *input2, int expected_status_arg2,
int step3_arg, data_t *input3, int expected_status_arg3,
int step4_arg, data_t *input4, int expected_status_arg4,
data_t *key_agreement_peer_key,
int requested_capacity_arg,
data_t *expected_output1,
data_t *expected_output2,
int other_key_input_type,
int key_input_type,
int derive_type)
HKDF: positive tests
2018-07-12 17:24:54 +02:00
{
psa_algorithm_t alg = alg_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_step_t steps[] = { step1_arg, step2_arg, step3_arg, step4_arg };
data_t *inputs[] = { input1, input2, input3, input4 };
mbedtls_svc_key_id_t keys[] = { MBEDTLS_SVC_KEY_ID_INIT,
MBEDTLS_SVC_KEY_ID_INIT,
MBEDTLS_SVC_KEY_ID_INIT,
MBEDTLS_SVC_KEY_ID_INIT };
psa_status_t statuses[] = { expected_status_arg1, expected_status_arg2,
expected_status_arg3, expected_status_arg4 };
HKDF: positive tests
2018-07-12 17:24:54 +02:00
size_t requested_capacity = requested_capacity_arg;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
HKDF: positive tests
2018-07-12 17:24:54 +02:00
uint8_t *expected_outputs[2] =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
{ expected_output1->x, expected_output2->x };
HKDF: positive tests
2018-07-12 17:24:54 +02:00
size_t output_sizes[2] =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
{ expected_output1->len, expected_output2->len };
HKDF: positive tests
2018-07-12 17:24:54 +02:00
size_t output_buffer_size = 0;
uint8_t *output_buffer = NULL;
size_t expected_capacity;
size_t current_capacity;
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
psa_key_attributes_t attributes1 = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t attributes2 = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t attributes3 = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t attributes4 = PSA_KEY_ATTRIBUTES_INIT;
derive_output mix-psk test: add more cases for derivation of output key Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-20 10:06:38 +02:00
mbedtls_svc_key_id_t derived_key = MBEDTLS_SVC_KEY_ID_INIT;
HKDF: positive tests
2018-07-12 17:24:54 +02:00
psa_status_t status;
Convert derive_output to the new KDF API
2019-05-29 17:35:49 +02:00
size_t i;
HKDF: positive tests
2018-07-12 17:24:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (i = 0; i < ARRAY_LENGTH(expected_outputs); i++) {
if (output_sizes[i] > output_buffer_size) {
HKDF: positive tests
2018-07-12 17:24:54 +02:00
output_buffer_size = output_sizes[i];
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
if (output_sizes[i] == 0) {
HKDF: positive tests
2018-07-12 17:24:54 +02:00
expected_outputs[i] = NULL;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
HKDF: positive tests
2018-07-12 17:24:54 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output_buffer, output_buffer_size);
PSA_ASSERT(psa_crypto_init());
HKDF: positive tests
2018-07-12 17:24:54 +02:00
/* Extraction phase. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_setup(&operation, alg));
PSA_ASSERT(psa_key_derivation_set_capacity(&operation,
requested_capacity));
for (i = 0; i < ARRAY_LENGTH(steps); i++) {
switch (steps[i]) {
Convert derive_output to the new KDF API
2019-05-29 17:35:49 +02:00
case 0:
break;
case PSA_KEY_DERIVATION_INPUT_SECRET:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
switch (key_input_type) {
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
case 0: // input bytes
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_input_bytes(
&operation, steps[i],
inputs[i]->x, inputs[i]->len),
statuses[i]);
derive_output tests: add invalid input secret test for HKDF-Expand Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-05-19 10:28:58 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (statuses[i] != PSA_SUCCESS) {
derive_output tests: add invalid input secret test for HKDF-Expand Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-05-19 10:28:58 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
break;
case 1: // input key
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes1, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes1, alg);
psa_set_key_type(&attributes1, PSA_KEY_TYPE_DERIVE);
PSA_ASSERT(psa_import_key(&attributes1,
inputs[i]->x, inputs[i]->len,
&keys[i]));
if (PSA_ALG_IS_TLS12_PSK_TO_MS(alg)) {
PSA_ASSERT(psa_get_key_attributes(keys[i], &attributes1));
TEST_LE_U(PSA_BITS_TO_BYTES(psa_get_key_bits(&attributes1)),
PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE);
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_input_key(&operation,
steps[i],
keys[i]));
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
break;
default:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(!"default case not supported");
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
break;
}
break;
case PSA_KEY_DERIVATION_INPUT_OTHER_SECRET:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
switch (other_key_input_type) {
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
case 0: // input bytes
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_input_bytes(&operation,
steps[i],
inputs[i]->x,
inputs[i]->len),
statuses[i]);
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
break;
derive_output test: add other key type value 11 to handle raw key type Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-20 09:14:51 +02:00
case 1: // input key, type DERIVE
case 11: // input key, type RAW
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes2, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes2, alg);
psa_set_key_type(&attributes2, PSA_KEY_TYPE_DERIVE);
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
// other secret of type RAW_DATA passed with input_key
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (other_key_input_type == 11) {
psa_set_key_type(&attributes2, PSA_KEY_TYPE_RAW_DATA);
}
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes2,
inputs[i]->x, inputs[i]->len,
&keys[i]));
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_input_key(&operation,
steps[i],
keys[i]),
statuses[i]);
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
break;
case 2: // key agreement
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes3, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes3, alg);
psa_set_key_type(&attributes3,
PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1));
PSA_ASSERT(psa_import_key(&attributes3,
inputs[i]->x, inputs[i]->len,
&keys[i]));
TEST_EQUAL(psa_key_derivation_key_agreement(
&operation,
PSA_KEY_DERIVATION_INPUT_OTHER_SECRET,
keys[i], key_agreement_peer_key->x,
key_agreement_peer_key->len), statuses[i]);
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
break;
default:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(!"default case not supported");
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
break;
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (statuses[i] != PSA_SUCCESS) {
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Convert derive_output to the new KDF API
2019-05-29 17:35:49 +02:00
break;
default:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_input_bytes(
&operation, steps[i],
inputs[i]->x, inputs[i]->len), statuses[i]);
derive_output test: Adapt for HKDF-Extract/Expand algs Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-05-11 12:22:57 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (statuses[i] != PSA_SUCCESS) {
derive_output test: Adapt for HKDF-Extract/Expand algs Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-05-11 12:22:57 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Convert derive_output to the new KDF API
2019-05-29 17:35:49 +02:00
break;
}
Key derivation by small input steps: proof-of-concept Document the new API. Keep the old one. Implement for HKDF. Use it in a few test cases. Key agreement is still unchanged.
2019-01-07 22:59:38 +01:00
}
Convert derive_output to the new KDF API
2019-05-29 17:35:49 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_get_capacity(&operation,
&current_capacity));
TEST_EQUAL(current_capacity, requested_capacity);
HKDF: positive tests
2018-07-12 17:24:54 +02:00
expected_capacity = requested_capacity;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (derive_type == 1) { // output key
derive_output mix-psk test: add more cases for derivation of output key Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-20 10:06:38 +02:00
psa_status_t expected_status = PSA_ERROR_NOT_PERMITTED;
/* For output key derivation secret must be provided using
input key, otherwise operation is not permitted. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (key_input_type == 1) {
derive_output mix-psk test: add more cases for derivation of output key Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-20 10:06:38 +02:00
expected_status = PSA_SUCCESS;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes4, PSA_KEY_USAGE_EXPORT);
psa_set_key_algorithm(&attributes4, alg);
psa_set_key_type(&attributes4, PSA_KEY_TYPE_DERIVE);
psa_set_key_bits(&attributes4, PSA_BYTES_TO_BITS(requested_capacity));
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_output_key(&attributes4, &operation,
&derived_key), expected_status);
} else { // output bytes
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
/* Expansion phase. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (i = 0; i < ARRAY_LENGTH(expected_outputs); i++) {
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
/* Read some bytes. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_key_derivation_output_bytes(&operation,
output_buffer, output_sizes[i]);
if (expected_capacity == 0 && output_sizes[i] == 0) {
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
/* Reading 0 bytes when 0 bytes are available can go either way. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(status == PSA_SUCCESS ||
status == PSA_ERROR_INSUFFICIENT_DATA);
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
continue;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
} else if (expected_capacity == 0 ||
output_sizes[i] > expected_capacity) {
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
/* Capacity exceeded. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, PSA_ERROR_INSUFFICIENT_DATA);
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
expected_capacity = 0;
continue;
}
/* Success. Check the read data. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(status);
if (output_sizes[i] != 0) {
ASSERT_COMPARE(output_buffer, output_sizes[i],
expected_outputs[i], output_sizes[i]);
}
test PSA key derivation: add positive and negative cases for mixed-psk Mix-PSK-to-MS test vectors are generated using python-tls library: https://github.com/python-tls/tls Steps to generate test vectors: 1. git clone git@github.com:python-tls/tls.git 2. cd tls 3. python3 setup.py build 4. sudo python3 setup.py install 5. Use the python script below to generate Master Secret (see description for details): """ Script to derive MS using mixed PSK to MS algorithm. Script can be used to generate expected result for mixed PSK to MS tests. Script uses python tls library: https://github.com/python-tls/tls Example usage: derive_ms.py <secret> <other_secret> <seed> <label> <hash> derive_ms.py 01020304 ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f 6d617374657220736563726574 SHA256 secret : 01020304 other_secret : ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7 pms : 0030ce2fa604b6a3e08fc42eda74ab647adace1168b199ed178dbaae12521d68271d7df56eb56c55878034cf01bd887ba4d7000401020304 seed : 5bc0b19b4a8b24b07afe7ec65c471e94a7d518fcef06c3574315255c52afe21b5bc0b19b872b9b26508458f03603744d575f463a11ae7f1b090c012606fd3e9f label : 6d617374657220736563726574 output : 168fecea35190f9df34c042f24ecaa5e7825337f2cd82719464df5462f16aae84cb38a65c0d612ca9273f998ad32c05b """ from cryptography.hazmat.primitives import hashes from tls._common.prf import prf import os import sys def build_pms(other_secret: bytes, secret: bytes) -> bytes: other_secret_size = len(other_secret).to_bytes(2, byteorder='big') secret_size = len(secret).to_bytes(2, byteorder='big') return(other_secret_size + other_secret + secret_size + secret) def derive_ms(secret: bytes, other_secret: bytes, seed: bytes, label: bytes, hash: hashes.HashAlgorithm) -> bytes: return prf(build_pms(other_secret, secret), label, seed, hash, 48) def main(): #check args if len(sys.argv) != 6: print("Invalid number of arguments. Expected: <secret> <other_secret> <seed> <label> <hash>" ) return if sys.argv[5] != 'SHA384' and sys.argv[5] != 'SHA256': print("Invalid hash algorithm. Expected: SHA256 or SHA384" ) return secret = bytes.fromhex(sys.argv[1]) other_secret = bytes.fromhex(sys.argv[2]) seed = bytes.fromhex(sys.argv[3]) label = bytes.fromhex(sys.argv[4]) hash_func = hashes.SHA384() if sys.argv[5] == 'SHA384' else hashes.SHA256() pms = build_pms(other_secret, secret) actual_output = derive_ms(secret, other_secret, seed, label, hash_func) print('secret : ' + secret.hex()) print('other_secret : ' + other_secret.hex()) print('pms : ' + pms.hex()) print('seed : ' + seed.hex()) print('label : ' + label.hex()) print('output : ' + actual_output.hex()) if __name__ == "__main__": main() Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-04-01 13:40:48 +02:00
/* Check the operation status. */
expected_capacity -= output_sizes[i];
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_get_capacity(&operation,
&current_capacity));
TEST_EQUAL(expected_capacity, current_capacity);
HKDF: positive tests
2018-07-12 17:24:54 +02:00
}
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_abort(&operation));
HKDF: positive tests
2018-07-12 17:24:54 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(output_buffer);
psa_key_derivation_abort(&operation);
for (i = 0; i < ARRAY_LENGTH(keys); i++) {
psa_destroy_key(keys[i]);
}
psa_destroy_key(derived_key);
PSA_DONE();
HKDF: positive tests
2018-07-12 17:24:54 +02:00
}
/* END_CASE */
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_full(int alg_arg,
data_t *key_data,
data_t *input1,
data_t *input2,
int requested_capacity_arg)
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
psa_algorithm_t alg = alg_arg;
size_t requested_capacity = requested_capacity_arg;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
unsigned char output_buffer[16];
size_t expected_capacity = requested_capacity;
size_t current_capacity;
Implement atomic-creation psa_{generate,generator_import}_key Implement the new, attribute-based psa_generate_key and psa_generator_import_key.
2019-04-18 12:53:30 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, PSA_KEY_TYPE_DERIVE);
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&key));
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_setup_key_derivation_wrap(&operation, key, alg,
input1->x, input1->len,
input2->x, input2->len,
requested_capacity)) {
Refactor key derivation setup in tests
2019-07-03 13:41:36 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Convert derive_full test to the new KDF API
2019-06-25 14:24:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_get_capacity(&operation,
&current_capacity));
TEST_EQUAL(current_capacity, expected_capacity);
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
/* Expansion phase. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
while (current_capacity > 0) {
size_t read_size = sizeof(output_buffer);
if (read_size > current_capacity) {
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
read_size = current_capacity;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
PSA_ASSERT(psa_key_derivation_output_bytes(&operation,
output_buffer,
read_size));
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
expected_capacity -= read_size;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_get_capacity(&operation,
&current_capacity));
TEST_EQUAL(current_capacity, expected_capacity);
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
}
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
/* Check that the operation refuses to go over capacity. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_output_bytes(&operation, output_buffer, 1),
PSA_ERROR_INSUFFICIENT_DATA);
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_abort(&operation));
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(key);
PSA_DONE();
HKDF: be more robust if we reach the maximum ouptut length In psa_generator_hkdf_read, return BAD_STATE if we're trying to construct more output than the algorithm allows. This can't happen through the API due to the capacity limit, but it could potentially happen in an internal call. Also add a test case that verifies that we can set up HKDF with its maximum capacity and read up to the maximum capacity.
2018-07-17 21:06:59 +02:00
}
/* END_CASE */
test_suite_psa_crypto: adapt dependenies and guards so the test can run in the driver-only build Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>
2022-10-19 12:17:19 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_ALG_SHA_256:MBEDTLS_PSA_BUILTIN_ALG_TLS12_PSK_TO_MS */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_ecjpake_to_pms(data_t *input, int expected_input_status_arg,
int derivation_step,
int capacity, int expected_capacity_status_arg,
data_t *expected_output,
int expected_output_status_arg)
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
{
psa_algorithm_t alg = PSA_ALG_TLS12_ECJPAKE_TO_PMS;
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
Add derivation step testing to EC J-PAKE to PMS tests Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-09-16 12:45:44 +02:00
psa_key_derivation_step_t step = (psa_key_derivation_step_t) derivation_step;
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
uint8_t *output_buffer = NULL;
psa_status_t status;
Improve readability in ecjpake tests Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-09-26 16:56:02 +02:00
psa_status_t expected_input_status = (psa_status_t) expected_input_status_arg;
psa_status_t expected_capacity_status = (psa_status_t) expected_capacity_status_arg;
psa_status_t expected_output_status = (psa_status_t) expected_output_status_arg;
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output_buffer, expected_output->len);
PSA_ASSERT(psa_crypto_init());
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_setup(&operation, alg));
TEST_EQUAL(psa_key_derivation_set_capacity(&operation, capacity),
expected_capacity_status);
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_key_derivation_input_bytes(&operation,
step, input->x, input->len),
expected_input_status);
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (((psa_status_t) expected_input_status) != PSA_SUCCESS) {
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_key_derivation_output_bytes(&operation, output_buffer,
expected_output->len);
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(status, expected_output_status);
if (expected_output->len != 0 && expected_output_status == PSA_SUCCESS) {
ASSERT_COMPARE(output_buffer, expected_output->len, expected_output->x,
expected_output->len);
}
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(output_buffer);
psa_key_derivation_abort(&operation);
Add tests for the newly created ad-hoc EC J-PAKE KDF Signed-off-by: Andrzej Kurek <andrzej.kurek@arm.com>
2022-07-29 16:02:05 +02:00
PSA_DONE();
}
/* END_CASE */
Convert derive_key_exercise to the new KDF API
2019-07-03 14:51:30 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_key_exercise(int alg_arg,
data_t *key_data,
data_t *input1,
data_t *input2,
int derived_type_arg,
int derived_bits_arg,
int derived_usage_arg,
int derived_alg_arg)
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t base_key = MBEDTLS_SVC_KEY_ID_INIT;
mbedtls_svc_key_id_t derived_key = MBEDTLS_SVC_KEY_ID_INIT;
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
psa_algorithm_t alg = alg_arg;
psa_key_type_t derived_type = derived_type_arg;
size_t derived_bits = derived_bits_arg;
psa_key_usage_t derived_usage = derived_usage_arg;
psa_algorithm_t derived_alg = derived_alg_arg;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t capacity = PSA_BITS_TO_BYTES(derived_bits);
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
Implement atomic-creation psa_{generate,generator_import}_key Implement the new, attribute-based psa_generate_key and psa_generator_import_key.
2019-04-18 12:53:30 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Implement psa_get_key_attributes Implement attribute querying. Test attribute getters and setters. Use psa_get_key_attributes instead of the deprecated functions psa_get_key_policy or psa_get_key_information in most tests.
2019-04-18 21:44:46 +02:00
psa_key_attributes_t got_attributes = PSA_KEY_ATTRIBUTES_INIT;
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, PSA_KEY_TYPE_DERIVE);
PSA_ASSERT(psa_import_key(&attributes, key_data->x, key_data->len,
&base_key));
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
/* Derive a key. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_setup_key_derivation_wrap(&operation, base_key, alg,
input1->x, input1->len,
input2->x, input2->len,
capacity)) {
Convert derive_key_exercise to the new KDF API
2019-07-03 14:51:30 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Convert derive_key_exercise to the new KDF API
2019-07-03 14:51:30 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, derived_usage);
psa_set_key_algorithm(&attributes, derived_alg);
psa_set_key_type(&attributes, derived_type);
psa_set_key_bits(&attributes, derived_bits);
PSA_ASSERT(psa_key_derivation_output_key(&attributes, &operation,
&derived_key));
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
/* Test the key information */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(derived_key, &got_attributes));
TEST_EQUAL(psa_get_key_type(&got_attributes), derived_type);
TEST_EQUAL(psa_get_key_bits(&got_attributes), derived_bits);
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
/* Exercise the derived key. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_exercise_key(derived_key, derived_usage, derived_alg)) {
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&got_attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(base_key);
psa_destroy_key(derived_key);
PSA_DONE();
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
}
/* END_CASE */
Convert derive_key_export to the new KDF API
2019-07-03 15:17:09 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_key_export(int alg_arg,
data_t *key_data,
data_t *input1,
data_t *input2,
int bytes1_arg,
int bytes2_arg)
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t base_key = MBEDTLS_SVC_KEY_ID_INIT;
mbedtls_svc_key_id_t derived_key = MBEDTLS_SVC_KEY_ID_INIT;
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
psa_algorithm_t alg = alg_arg;
size_t bytes1 = bytes1_arg;
size_t bytes2 = bytes2_arg;
size_t capacity = bytes1 + bytes2;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
Use ASSERT_ALLOC instead of mbedtls_calloc in PSA tests This commit resolves a bug whereby some test cases failed on systems where mbedtls_calloc returns NULL when the size of 0, because the test case asserted `pointer != NULL` regardless of the size.
2018-09-27 13:54:18 +02:00
uint8_t *output_buffer = NULL;
uint8_t *export_buffer = NULL;
Implement atomic-creation psa_{generate,generator_import}_key Implement the new, attribute-based psa_generate_key and psa_generator_import_key.
2019-04-18 12:53:30 +02:00
psa_key_attributes_t base_attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t derived_attributes = PSA_KEY_ATTRIBUTES_INIT;
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
size_t length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output_buffer, capacity);
ASSERT_ALLOC(export_buffer, capacity);
PSA_ASSERT(psa_crypto_init());
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&base_attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&base_attributes, alg);
psa_set_key_type(&base_attributes, PSA_KEY_TYPE_DERIVE);
PSA_ASSERT(psa_import_key(&base_attributes, key_data->x, key_data->len,
&base_key));
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
/* Derive some material and output it. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_setup_key_derivation_wrap(&operation, base_key, alg,
input1->x, input1->len,
input2->x, input2->len,
capacity)) {
Convert derive_key_export to the new KDF API
2019-07-03 15:17:09 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Convert derive_key_export to the new KDF API
2019-07-03 15:17:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_output_bytes(&operation,
output_buffer,
capacity));
PSA_ASSERT(psa_key_derivation_abort(&operation));
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
/* Derive the same output again, but this time store it in key objects. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_setup_key_derivation_wrap(&operation, base_key, alg,
input1->x, input1->len,
input2->x, input2->len,
capacity)) {
Convert derive_key_export to the new KDF API
2019-07-03 15:17:09 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Convert derive_key_export to the new KDF API
2019-07-03 15:17:09 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&derived_attributes, PSA_KEY_USAGE_EXPORT);
psa_set_key_algorithm(&derived_attributes, 0);
psa_set_key_type(&derived_attributes, PSA_KEY_TYPE_RAW_DATA);
psa_set_key_bits(&derived_attributes, PSA_BYTES_TO_BITS(bytes1));
PSA_ASSERT(psa_key_derivation_output_key(&derived_attributes, &operation,
&derived_key));
PSA_ASSERT(psa_export_key(derived_key,
export_buffer, bytes1,
&length));
TEST_EQUAL(length, bytes1);
PSA_ASSERT(psa_destroy_key(derived_key));
psa_set_key_bits(&derived_attributes, PSA_BYTES_TO_BITS(bytes2));
PSA_ASSERT(psa_key_derivation_output_key(&derived_attributes, &operation,
&derived_key));
PSA_ASSERT(psa_export_key(derived_key,
export_buffer + bytes1, bytes2,
&length));
TEST_EQUAL(length, bytes2);
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
/* Compare the outputs from the two runs. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_COMPARE(output_buffer, bytes1 + bytes2,
export_buffer, capacity);
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(output_buffer);
mbedtls_free(export_buffer);
psa_key_derivation_abort(&operation);
psa_destroy_key(base_key);
psa_destroy_key(derived_key);
PSA_DONE();
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
}
/* END_CASE */
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_key_type(int alg_arg,
data_t *key_data,
data_t *input1,
data_t *input2,
int key_type_arg, int bits_arg,
data_t *expected_export)
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
{
mbedtls_svc_key_id_t base_key = MBEDTLS_SVC_KEY_ID_INIT;
mbedtls_svc_key_id_t derived_key = MBEDTLS_SVC_KEY_ID_INIT;
const psa_algorithm_t alg = alg_arg;
const psa_key_type_t key_type = key_type_arg;
const size_t bits = bits_arg;
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
const size_t export_buffer_size =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_EXPORT_KEY_OUTPUT_SIZE(key_type, bits);
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
uint8_t *export_buffer = NULL;
psa_key_attributes_t base_attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t derived_attributes = PSA_KEY_ATTRIBUTES_INIT;
size_t export_length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(export_buffer, export_buffer_size);
PSA_ASSERT(psa_crypto_init());
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&base_attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&base_attributes, alg);
psa_set_key_type(&base_attributes, PSA_KEY_TYPE_DERIVE);
PSA_ASSERT(psa_import_key(&base_attributes, key_data->x, key_data->len,
&base_key));
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (mbedtls_test_psa_setup_key_derivation_wrap(
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
&operation, base_key, alg,
input1->x, input1->len,
input2->x, input2->len,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_KEY_DERIVATION_UNLIMITED_CAPACITY) == 0) {
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&derived_attributes, PSA_KEY_USAGE_EXPORT);
psa_set_key_algorithm(&derived_attributes, 0);
psa_set_key_type(&derived_attributes, key_type);
psa_set_key_bits(&derived_attributes, bits);
PSA_ASSERT(psa_key_derivation_output_key(&derived_attributes, &operation,
&derived_key));
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_export_key(derived_key,
export_buffer, export_buffer_size,
&export_length));
ASSERT_COMPARE(export_buffer, export_length,
expected_export->x, expected_export->len);
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(export_buffer);
psa_key_derivation_abort(&operation);
psa_destroy_key(base_key);
psa_destroy_key(derived_key);
PSA_DONE();
Add tests for ECC key derivation Test code and test vectors are taken from PR #5218 Signed-off-by: Przemyslaw Stekiel <przemyslaw.stekiel@mobica.com>
2021-11-24 16:29:10 +01:00
}
/* END_CASE */
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void derive_key(int alg_arg,
data_t *key_data, data_t *input1, data_t *input2,
int type_arg, int bits_arg,
int expected_status_arg,
int is_large_output)
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t base_key = MBEDTLS_SVC_KEY_ID_INIT;
mbedtls_svc_key_id_t derived_key = MBEDTLS_SVC_KEY_ID_INIT;
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
psa_algorithm_t alg = alg_arg;
Test key creation with an invalid type (0 and nonzero)
2019-07-31 15:14:44 +02:00
psa_key_type_t type = type_arg;
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
size_t bits = bits_arg;
psa_status_t expected_status = expected_status_arg;
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
psa_key_attributes_t base_attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_attributes_t derived_attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&base_attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&base_attributes, alg);
psa_set_key_type(&base_attributes, PSA_KEY_TYPE_DERIVE);
PSA_ASSERT(psa_import_key(&base_attributes, key_data->x, key_data->len,
&base_key));
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_setup_key_derivation_wrap(&operation, base_key, alg,
input1->x, input1->len,
input2->x, input2->len,
SIZE_MAX)) {
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&derived_attributes, PSA_KEY_USAGE_EXPORT);
psa_set_key_algorithm(&derived_attributes, 0);
psa_set_key_type(&derived_attributes, type);
psa_set_key_bits(&derived_attributes, bits);
Convert 'large key' testing to accept insufficient memory errors Since the tested service may run in a different context with a different heap. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-01-21 14:24:39 +01:00
psa_status_t status =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_output_key(&derived_attributes,
&operation,
&derived_key);
if (is_large_output > 0) {
TEST_ASSUME(status != PSA_ERROR_INSUFFICIENT_MEMORY);
}
TEST_EQUAL(status, expected_status);
Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.
2019-07-30 17:26:54 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(base_key);
psa_destroy_key(derived_key);
PSA_DONE();
Key derivation: test deriving a key from the KDF output
2018-07-12 17:29:22 +02:00
}
/* END_CASE */
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void key_agreement_setup(int alg_arg,
int our_key_type_arg, int our_key_alg_arg,
data_t *our_key_data, data_t *peer_key_data,
int expected_status_arg)
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t our_key = MBEDTLS_SVC_KEY_ID_INIT;
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
psa_algorithm_t alg = alg_arg;
Apply review feedback Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2020-10-15 17:07:12 +02:00
psa_algorithm_t our_key_alg = our_key_alg_arg;
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
psa_key_type_t our_key_type = our_key_type_arg;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
Implement atomic-creation psa_{generate,generator_import}_key Implement the new, attribute-based psa_generate_key and psa_generator_import_key.
2019-04-18 12:53:30 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Quick fix of key agreement setup tests for the new derivation API Allow either the key derivation step or the key agreement step to fail. These tests should be split into three groups: key derivation setup tests with an algorithm that includes a key agreement step, and multipart key agreement failure tests, and raw key agreement failure tests.
2019-04-11 21:27:06 +02:00
psa_status_t expected_status = expected_status_arg;
psa_status_t status;
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, our_key_alg);
psa_set_key_type(&attributes, our_key_type);
PSA_ASSERT(psa_import_key(&attributes,
our_key_data->x, our_key_data->len,
&our_key));
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
Quick fix of key agreement setup tests for the new derivation API Allow either the key derivation step or the key agreement step to fail. These tests should be split into three groups: key derivation setup tests with an algorithm that includes a key agreement step, and multipart key agreement failure tests, and raw key agreement failure tests.
2019-04-11 21:27:06 +02:00
/* The tests currently include inputs that should fail at either step.
* Test cases that fail at the setup step should be changed to call
* key_derivation_setup instead, and this function should be renamed
* to key_agreement_fail. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_key_derivation_setup(&operation, alg);
if (status == PSA_SUCCESS) {
TEST_EQUAL(psa_key_derivation_key_agreement(
&operation, PSA_KEY_DERIVATION_INPUT_SECRET,
our_key,
peer_key_data->x, peer_key_data->len),
expected_status);
} else {
TEST_ASSERT(status == expected_status);
Quick fix of key agreement setup tests for the new derivation API Allow either the key derivation step or the key agreement step to fail. These tests should be split into three groups: key derivation setup tests with an algorithm that includes a key agreement step, and multipart key agreement failure tests, and raw key agreement failure tests.
2019-04-11 21:27:06 +02:00
}
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(our_key);
PSA_DONE();
New API function: psa_key_agreement Set up a generator from a key agreement.
2018-09-18 12:01:02 +02:00
}
/* END_CASE */
New test function for raw agreement Change test cases with test data for raw agreement to this new test function.
2019-04-11 22:12:38 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void raw_key_agreement(int alg_arg,
int our_key_type_arg, data_t *our_key_data,
data_t *peer_key_data,
data_t *expected_output)
New test function for raw agreement Change test cases with test data for raw agreement to this new test function.
2019-04-11 22:12:38 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t our_key = MBEDTLS_SVC_KEY_ID_INIT;
New test function for raw agreement Change test cases with test data for raw agreement to this new test function.
2019-04-11 22:12:38 +02:00
psa_algorithm_t alg = alg_arg;
psa_key_type_t our_key_type = our_key_type_arg;
Implement atomic-creation psa_{generate,generator_import}_key Implement the new, attribute-based psa_generate_key and psa_generator_import_key.
2019-04-18 12:53:30 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
New test function for raw agreement Change test cases with test data for raw agreement to this new test function.
2019-04-11 22:12:38 +02:00
unsigned char *output = NULL;
size_t output_length = ~0;
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
size_t key_bits;
New test function for raw agreement Change test cases with test data for raw agreement to this new test function.
2019-04-11 22:12:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
New test function for raw agreement Change test cases with test data for raw agreement to this new test function.
2019-04-11 22:12:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, our_key_type);
PSA_ASSERT(psa_import_key(&attributes,
our_key_data->x, our_key_data->len,
&our_key));
New test function for raw agreement Change test cases with test data for raw agreement to this new test function.
2019-04-11 22:12:38 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(our_key, &attributes));
key_bits = psa_get_key_bits(&attributes);
Add test for ouput buffer size macros Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>
2021-01-21 12:26:17 +01:00
Test psa_raw_key_agreement with a larger/smaller buffer Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-13 23:25:52 +02:00
/* Validate size macros */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(expected_output->len,
PSA_RAW_KEY_AGREEMENT_OUTPUT_SIZE(our_key_type, key_bits));
TEST_LE_U(PSA_RAW_KEY_AGREEMENT_OUTPUT_SIZE(our_key_type, key_bits),
PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE);
Test psa_raw_key_agreement with a larger/smaller buffer Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-13 23:25:52 +02:00
/* Good case with exact output size */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output, expected_output->len);
PSA_ASSERT(psa_raw_key_agreement(alg, our_key,
peer_key_data->x, peer_key_data->len,
output, expected_output->len,
&output_length));
ASSERT_COMPARE(output, output_length,
expected_output->x, expected_output->len);
mbedtls_free(output);
Test psa_raw_key_agreement with a larger/smaller buffer Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-13 23:25:52 +02:00
output = NULL;
output_length = ~0;
/* Larger buffer */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output, expected_output->len + 1);
PSA_ASSERT(psa_raw_key_agreement(alg, our_key,
peer_key_data->x, peer_key_data->len,
output, expected_output->len + 1,
&output_length));
ASSERT_COMPARE(output, output_length,
expected_output->x, expected_output->len);
mbedtls_free(output);
Test psa_raw_key_agreement with a larger/smaller buffer Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-13 23:25:52 +02:00
output = NULL;
output_length = ~0;
/* Buffer too small */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output, expected_output->len - 1);
TEST_EQUAL(psa_raw_key_agreement(alg, our_key,
peer_key_data->x, peer_key_data->len,
output, expected_output->len - 1,
&output_length),
PSA_ERROR_BUFFER_TOO_SMALL);
Test psa_raw_key_agreement with a larger/smaller buffer Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-13 23:25:52 +02:00
/* Not required by the spec, but good robustness */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(output_length, expected_output->len - 1);
mbedtls_free(output);
Test psa_raw_key_agreement with a larger/smaller buffer Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2022-04-13 23:25:52 +02:00
output = NULL;
New test function for raw agreement Change test cases with test data for raw agreement to this new test function.
2019-04-11 22:12:38 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(output);
psa_destroy_key(our_key);
PSA_DONE();
New test function for raw agreement Change test cases with test data for raw agreement to this new test function.
2019-04-11 22:12:38 +02:00
}
/* END_CASE */
Key agreement test functions
2018-09-18 12:11:34 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void key_agreement_capacity(int alg_arg,
int our_key_type_arg, data_t *our_key_data,
data_t *peer_key_data,
int expected_capacity_arg)
Key agreement test functions
2018-09-18 12:11:34 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t our_key = MBEDTLS_SVC_KEY_ID_INIT;
Key agreement test functions
2018-09-18 12:11:34 +02:00
psa_algorithm_t alg = alg_arg;
psa_key_type_t our_key_type = our_key_type_arg;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
Implement atomic-creation psa_{generate,generator_import}_key Implement the new, attribute-based psa_generate_key and psa_generator_import_key.
2019-04-18 12:53:30 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Key agreement test functions
2018-09-18 12:11:34 +02:00
size_t actual_capacity;
key_agreement_capacity: test the actual capacity as well After testing that the advertized capacity is what the test data says, read that many bytes to test that this is also actual capacity.
2018-10-25 22:36:12 +02:00
unsigned char output[16];
Key agreement test functions
2018-09-18 12:11:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, our_key_type);
PSA_ASSERT(psa_import_key(&attributes,
our_key_data->x, our_key_data->len,
&our_key));
PSA_ASSERT(psa_key_derivation_setup(&operation, alg));
PSA_ASSERT(psa_key_derivation_key_agreement(
&operation,
PSA_KEY_DERIVATION_INPUT_SECRET, our_key,
peer_key_data->x, peer_key_data->len));
if (PSA_ALG_IS_HKDF(PSA_ALG_KEY_AGREEMENT_GET_KDF(alg))) {
Test multipart key agreement with ECDH+HKDF Basic coverage with one algorithm only and a restricted choice of output lengths.
2019-04-11 22:13:20 +02:00
/* The test data is for info="" */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_input_bytes(&operation,
PSA_KEY_DERIVATION_INPUT_INFO,
NULL, 0));
Test multipart key agreement with ECDH+HKDF Basic coverage with one algorithm only and a restricted choice of output lengths.
2019-04-11 22:13:20 +02:00
}
Key agreement test functions
2018-09-18 12:11:34 +02:00
Redo of PR#5345. Fixed spelling and typographical errors found by CodeSpell. Signed-off-by: Shaun Case <warmsocks@gmail.com> Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2021-12-21 06:14:10 +01:00
/* Test the advertised capacity. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_get_capacity(
&operation, &actual_capacity));
TEST_EQUAL(actual_capacity, (size_t) expected_capacity_arg);
Key agreement test functions
2018-09-18 12:11:34 +02:00
key_agreement_capacity: test the actual capacity as well After testing that the advertized capacity is what the test data says, read that many bytes to test that this is also actual capacity.
2018-10-25 22:36:12 +02:00
/* Test the actual capacity by reading the output. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
while (actual_capacity > sizeof(output)) {
PSA_ASSERT(psa_key_derivation_output_bytes(&operation,
output, sizeof(output)));
actual_capacity -= sizeof(output);
key_agreement_capacity: test the actual capacity as well After testing that the advertized capacity is what the test data says, read that many bytes to test that this is also actual capacity.
2018-10-25 22:36:12 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_output_bytes(&operation,
output, actual_capacity));
TEST_EQUAL(psa_key_derivation_output_bytes(&operation, output, 1),
PSA_ERROR_INSUFFICIENT_DATA);
key_agreement_capacity: test the actual capacity as well After testing that the advertized capacity is what the test data says, read that many bytes to test that this is also actual capacity.
2018-10-25 22:36:12 +02:00
Key agreement test functions
2018-09-18 12:11:34 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(our_key);
PSA_DONE();
Key agreement test functions
2018-09-18 12:11:34 +02:00
}
/* END_CASE */
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void key_agreement_output(int alg_arg,
int our_key_type_arg, data_t *our_key_data,
data_t *peer_key_data,
data_t *expected_output1, data_t *expected_output2)
Key agreement test functions
2018-09-18 12:11:34 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t our_key = MBEDTLS_SVC_KEY_ID_INIT;
Key agreement test functions
2018-09-18 12:11:34 +02:00
psa_algorithm_t alg = alg_arg;
psa_key_type_t our_key_type = our_key_type_arg;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
Implement atomic-creation psa_{generate,generator_import}_key Implement the new, attribute-based psa_generate_key and psa_generator_import_key.
2019-04-18 12:53:30 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Add multipart key agreement tests Add test cases that do key agreement with raw selection in pieces, to validate that selection works even when the application doesn't read everything in one chunk.
2018-10-25 22:37:15 +02:00
uint8_t *actual_output = NULL;
Key agreement test functions
2018-09-18 12:11:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(actual_output, MAX(expected_output1->len,
expected_output2->len));
Key agreement test functions
2018-09-18 12:11:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Key agreement test functions
2018-09-18 12:11:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, our_key_type);
PSA_ASSERT(psa_import_key(&attributes,
our_key_data->x, our_key_data->len,
&our_key));
Key agreement test functions
2018-09-18 12:11:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_setup(&operation, alg));
PSA_ASSERT(psa_key_derivation_key_agreement(
&operation,
PSA_KEY_DERIVATION_INPUT_SECRET, our_key,
peer_key_data->x, peer_key_data->len));
if (PSA_ALG_IS_HKDF(PSA_ALG_KEY_AGREEMENT_GET_KDF(alg))) {
Test multipart key agreement with ECDH+HKDF Basic coverage with one algorithm only and a restricted choice of output lengths.
2019-04-11 22:13:20 +02:00
/* The test data is for info="" */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_input_bytes(&operation,
PSA_KEY_DERIVATION_INPUT_INFO,
NULL, 0));
Test multipart key agreement with ECDH+HKDF Basic coverage with one algorithm only and a restricted choice of output lengths.
2019-04-11 22:13:20 +02:00
}
Key agreement test functions
2018-09-18 12:11:34 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_output_bytes(&operation,
actual_output,
expected_output1->len));
ASSERT_COMPARE(actual_output, expected_output1->len,
expected_output1->x, expected_output1->len);
if (expected_output2->len != 0) {
PSA_ASSERT(psa_key_derivation_output_bytes(&operation,
actual_output,
expected_output2->len));
ASSERT_COMPARE(actual_output, expected_output2->len,
expected_output2->x, expected_output2->len);
Add multipart key agreement tests Add test cases that do key agreement with raw selection in pieces, to validate that selection works even when the application doesn't read everything in one chunk.
2018-10-25 22:37:15 +02:00
}
Key agreement test functions
2018-09-18 12:11:34 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&operation);
psa_destroy_key(our_key);
PSA_DONE();
mbedtls_free(actual_output);
Key agreement test functions
2018-09-18 12:11:34 +02:00
}
/* END_CASE */
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void generate_random(int bytes_arg)
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
{
test of generate_random: focus on testing the output buffer size In the test generate_random, focus on testing that psa_generate_random is writing all the bytes of the output buffer and no more. Add a check that it is writing to each byte of the output buffer. Do not try to look for repeating output as the structure of a unit test isn't likely to catch that sort of problem anyway.
2018-06-21 10:22:13 +02:00
size_t bytes = bytes_arg;
Use ASSERT_ALLOC instead of mbedtls_calloc in PSA tests This commit resolves a bug whereby some test cases failed on systems where mbedtls_calloc returns NULL when the size of 0, because the test case asserted `pointer != NULL` regardless of the size.
2018-09-27 13:54:18 +02:00
unsigned char *output = NULL;
unsigned char *changed = NULL;
test of generate_random: focus on testing the output buffer size In the test generate_random, focus on testing that psa_generate_random is writing all the bytes of the output buffer and no more. Add a check that it is writing to each byte of the output buffer. Do not try to look for repeating output as the structure of a unit test isn't likely to catch that sort of problem anyway.
2018-06-21 10:22:13 +02:00
size_t i;
unsigned run;
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(bytes_arg >= 0);
Fix warning with gcc7/maximum allocation exceeded Adds an additional boundary check to the test parameter bytes_arg in generate_random() in test_suite_psa_crypto.function. This is to check against a possible underflow, and to avoid a warning, "argument ... exceeds maximum object size", (-Werror=alloc-size-larger-than) that GCC 7 generates. Signed-off-by: Simon Butcher <simon.butcher@arm.com>
2020-03-03 16:51:50 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(output, bytes);
ASSERT_ALLOC(changed, bytes);
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
test of generate_random: focus on testing the output buffer size In the test generate_random, focus on testing that psa_generate_random is writing all the bytes of the output buffer and no more. Add a check that it is writing to each byte of the output buffer. Do not try to look for repeating output as the structure of a unit test isn't likely to catch that sort of problem anyway.
2018-06-21 10:22:13 +02:00
/* Run several times, to ensure that every output byte will be
* nonzero at least once with overwhelming probability
* (2^(-8*number_of_runs)). */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (run = 0; run < 10; run++) {
if (bytes != 0) {
memset(output, 0, bytes);
}
PSA_ASSERT(psa_generate_random(output, bytes));
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (i = 0; i < bytes; i++) {
if (output[i] != 0) {
test of generate_random: focus on testing the output buffer size In the test generate_random, focus on testing that psa_generate_random is writing all the bytes of the output buffer and no more. Add a check that it is writing to each byte of the output buffer. Do not try to look for repeating output as the structure of a unit test isn't likely to catch that sort of problem anyway.
2018-06-21 10:22:13 +02:00
++changed[i];
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
test of generate_random: focus on testing the output buffer size In the test generate_random, focus on testing that psa_generate_random is writing all the bytes of the output buffer and no more. Add a check that it is writing to each byte of the output buffer. Do not try to look for repeating output as the structure of a unit test isn't likely to catch that sort of problem anyway.
2018-06-21 10:22:13 +02:00
}
}
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
test of generate_random: focus on testing the output buffer size In the test generate_random, focus on testing that psa_generate_random is writing all the bytes of the output buffer and no more. Add a check that it is writing to each byte of the output buffer. Do not try to look for repeating output as the structure of a unit test isn't likely to catch that sort of problem anyway.
2018-06-21 10:22:13 +02:00
/* Check that every byte was changed to nonzero at least once. This
* validates that psa_generate_random is overwriting every byte of
* the output buffer. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
for (i = 0; i < bytes; i++) {
TEST_ASSERT(changed[i] != 0);
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
}
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_DONE();
mbedtls_free(output);
mbedtls_free(changed);
Implement psa_generate_random
2018-06-19 22:00:52 +02:00
}
/* END_CASE */
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void generate_key(int type_arg,
int bits_arg,
int usage_arg,
int alg_arg,
int expected_status_arg,
int is_large_key)
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
psa_key_type_t type = type_arg;
psa_key_usage_t usage = usage_arg;
size_t bits = bits_arg;
psa_algorithm_t alg = alg_arg;
psa_status_t expected_status = expected_status_arg;
Implement atomic-creation psa_{generate,generator_import}_key Implement the new, attribute-based psa_generate_key and psa_generator_import_key.
2019-04-18 12:53:30 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Implement psa_get_key_attributes Implement attribute querying. Test attribute getters and setters. Use psa_get_key_attributes instead of the deprecated functions psa_get_key_policy or psa_get_key_information in most tests.
2019-04-18 21:44:46 +02:00
psa_key_attributes_t got_attributes = PSA_KEY_ATTRIBUTES_INIT;
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, usage);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, type);
psa_set_key_bits(&attributes, bits);
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
/* Generate a key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_status_t status = psa_generate_key(&attributes, &key);
Convert 'large key' testing to accept insufficient memory errors Since the tested service may run in a different context with a different heap. Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-01-21 14:24:39 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (is_large_key > 0) {
TEST_ASSUME(status != PSA_ERROR_INSUFFICIENT_MEMORY);
}
TEST_EQUAL(status, expected_status);
if (expected_status != PSA_SUCCESS) {
Implement atomic-creation psa_{generate,generator_import}_key Implement the new, attribute-based psa_generate_key and psa_generator_import_key.
2019-04-18 12:53:30 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
/* Test the key information */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &got_attributes));
TEST_EQUAL(psa_get_key_type(&got_attributes), type);
TEST_EQUAL(psa_get_key_bits(&got_attributes), bits);
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
generate_key tests: exercise the key After generating a key, perform a smoke test: run one operation with it and check that the operation has the expected status.
2018-06-20 18:16:48 +02:00
/* Do something with the key according to its type and permitted usage. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_exercise_key(key, usage, alg)) {
Factor duplicated code into exercise_key Also fail the test if the test code lacks a way to exercise the key.
2018-07-01 22:31:34 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&got_attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
PSA_DONE();
Implement psa_generate_key: AES, DES, RSA, ECP In the test cases, try exporting the generated key and perform sanity checks on it.
2018-06-20 00:20:32 +02:00
}
/* END_CASE */
Ensure the module is initialized in psa_generate_random
2018-09-06 15:24:41 +02:00
Update dependencies in PSA test code Replace MBEDTLS_* config options for which there is an associated PSA_WANT_* to the PSA_WANT_* one. That way the tests are also run when the dependency is provided by a driver. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2021-03-18 18:50:08 +01:00
/* BEGIN_CASE depends_on:PSA_WANT_KEY_TYPE_RSA_KEY_PAIR:PSA_WANT_ALG_RSA_PKCS1V15_CRYPT:PSA_WANT_ALG_RSA_PKCS1V15_SIGN:MBEDTLS_GENPRIME */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void generate_key_rsa(int bits_arg,
data_t *e_arg,
int expected_status_arg)
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
{
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
Rename *KEYPAIR* to *KEY_PAIR* Be consistent with PUBLIC_KEY. perl -i -pe 's/KEYPAIR/KEY_PAIR/g' $(git ls-files)
2019-05-16 19:39:54 +02:00
psa_key_type_t type = PSA_KEY_TYPE_RSA_KEY_PAIR;
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
size_t bits = bits_arg;
psa_key_usage_t usage = PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT;
psa_algorithm_t alg = PSA_ALG_RSA_PKCS1V15_SIGN_RAW;
psa_status_t expected_status = expected_status_arg;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
uint8_t *exported = NULL;
size_t exported_size =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_EXPORT_KEY_OUTPUT_SIZE(PSA_KEY_TYPE_RSA_PUBLIC_KEY, bits);
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
size_t exported_length = SIZE_MAX;
uint8_t *e_read_buffer = NULL;
int is_default_public_exponent = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t e_read_size = PSA_KEY_DOMAIN_PARAMETERS_SIZE(type, bits);
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
size_t e_read_length = SIZE_MAX;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (e_arg->len == 0 ||
(e_arg->len == 3 &&
e_arg->x[0] == 1 && e_arg->x[1] == 0 && e_arg->x[2] == 1)) {
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
is_default_public_exponent = 1;
e_read_size = 0;
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ASSERT_ALLOC(e_read_buffer, e_read_size);
ASSERT_ALLOC(exported, exported_size);
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, usage);
psa_set_key_algorithm(&attributes, alg);
PSA_ASSERT(psa_set_key_domain_parameters(&attributes, type,
e_arg->x, e_arg->len));
psa_set_key_bits(&attributes, bits);
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
/* Generate a key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_generate_key(&attributes, &key), expected_status);
if (expected_status != PSA_SUCCESS) {
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
/* Test the key information */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
TEST_EQUAL(psa_get_key_type(&attributes), type);
TEST_EQUAL(psa_get_key_bits(&attributes), bits);
PSA_ASSERT(psa_get_key_domain_parameters(&attributes,
e_read_buffer, e_read_size,
&e_read_length));
if (is_default_public_exponent) {
TEST_EQUAL(e_read_length, 0);
} else {
ASSERT_COMPARE(e_read_buffer, e_read_length, e_arg->x, e_arg->len);
}
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
/* Do something with the key according to its type and permitted usage. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_exercise_key(key, usage, alg)) {
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
/* Export the key and check the public exponent. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_export_public_key(key,
exported, exported_size,
&exported_length));
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
{
uint8_t *p = exported;
uint8_t *end = exported + exported_length;
size_t len;
/* RSAPublicKey ::= SEQUENCE {
* modulus INTEGER, -- n
* publicExponent INTEGER } -- e
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(0, mbedtls_asn1_get_tag(&p, end, &len,
MBEDTLS_ASN1_SEQUENCE |
MBEDTLS_ASN1_CONSTRUCTED));
TEST_ASSERT(mbedtls_test_asn1_skip_integer(&p, end, bits, bits, 1));
TEST_EQUAL(0, mbedtls_asn1_get_tag(&p, end, &len,
MBEDTLS_ASN1_INTEGER));
if (len >= 1 && p[0] == 0) {
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
++p;
--len;
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (e_arg->len == 0) {
TEST_EQUAL(len, 3);
TEST_EQUAL(p[0], 1);
TEST_EQUAL(p[1], 0);
TEST_EQUAL(p[2], 1);
} else {
ASSERT_COMPARE(p, len, e_arg->x, e_arg->len);
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
}
}
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes() or
* set by psa_set_key_domain_parameters() thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
PSA_DONE();
mbedtls_free(e_read_buffer);
mbedtls_free(exported);
Remove `extra` parameter from psa_generate_key Read extra data from the domain parameters in the attribute structure instead of taking an argument on the function call. Implement this for RSA key generation, where the public exponent can be set as a domain parameter. Add tests that generate RSA keys with various public exponents.
2019-04-26 17:34:02 +02:00
}
/* END_CASE */
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
/* BEGIN_CASE depends_on:MBEDTLS_PSA_CRYPTO_STORAGE_C */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void persistent_key_load_key_from_storage(data_t *data,
int type_arg, int bits_arg,
int usage_flags_arg, int alg_arg,
int generation_method)
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
{
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_svc_key_id_t key_id = mbedtls_svc_key_id_make(1, 1);
Update persistent_key_load_key_from_storage to use attributes Update persistent_key_load_key_from_storage to the new attribute-based key creation interface. I tweaked the code a little to make it simpler and more robust without changing the core logic.
2019-04-19 14:06:53 +02:00
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
tests: Adapt PSA tests to openless APIs psa_key_handle_equal() is removed as not used anymore. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-08-04 14:58:35 +02:00
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
mbedtls_svc_key_id_t base_key = MBEDTLS_SVC_KEY_ID_INIT;
Update persistent_key_load_key_from_storage to use attributes Update persistent_key_load_key_from_storage to the new attribute-based key creation interface. I tweaked the code a little to make it simpler and more robust without changing the core logic.
2019-04-19 14:06:53 +02:00
psa_key_type_t type = type_arg;
size_t bits = bits_arg;
psa_key_usage_t usage_flags = usage_flags_arg;
psa_algorithm_t alg = alg_arg;
Rename "generator" to "operation" Generators are now key derivation operations. Keep "random generator" intact.
2019-05-16 17:31:03 +02:00
psa_key_derivation_operation_t operation = PSA_KEY_DERIVATION_OPERATION_INIT;
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
unsigned char *first_export = NULL;
unsigned char *second_export = NULL;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
size_t export_size = PSA_EXPORT_KEY_OUTPUT_SIZE(type, bits);
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
size_t first_exported_length;
size_t second_exported_length;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (usage_flags & PSA_KEY_USAGE_EXPORT) {
ASSERT_ALLOC(first_export, export_size);
ASSERT_ALLOC(second_export, export_size);
Update persistent_key_load_key_from_storage to use attributes Update persistent_key_load_key_from_storage to the new attribute-based key creation interface. I tweaked the code a little to make it simpler and more robust without changing the core logic.
2019-04-19 14:06:53 +02:00
}
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_id(&attributes, key_id);
psa_set_key_usage_flags(&attributes, usage_flags);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, type);
psa_set_key_bits(&attributes, bits);
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
switch (generation_method) {
psa: Extend psa_generate_key to support persistent lifetimes
2018-11-07 17:05:30 +01:00
case IMPORT_KEY:
/* Import the key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_import_key(&attributes, data->x, data->len,
&key));
psa: Extend psa_generate_key to support persistent lifetimes
2018-11-07 17:05:30 +01:00
break;
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
psa: Extend psa_generate_key to support persistent lifetimes
2018-11-07 17:05:30 +01:00
case GENERATE_KEY:
/* Generate a key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_generate_key(&attributes, &key));
psa: Extend psa_generate_key to support persistent lifetimes
2018-11-07 17:05:30 +01:00
break;
case DERIVE_KEY:
Fix a malformed define guard Signed-off-by: Steven Cooreman <steven.cooreman@silabs.com>
2021-02-15 10:51:43 +01:00
#if defined(PSA_WANT_ALG_HKDF) && defined(PSA_WANT_ALG_SHA_256)
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
{
/* Create base key */
psa_algorithm_t derive_alg = PSA_ALG_HKDF(PSA_ALG_SHA_256);
psa_key_attributes_t base_attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_set_key_usage_flags(&base_attributes,
PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&base_attributes, derive_alg);
psa_set_key_type(&base_attributes, PSA_KEY_TYPE_DERIVE);
PSA_ASSERT(psa_import_key(&base_attributes,
data->x, data->len,
&base_key));
/* Derive a key. */
PSA_ASSERT(psa_key_derivation_setup(&operation, derive_alg));
PSA_ASSERT(psa_key_derivation_input_key(
&operation,
PSA_KEY_DERIVATION_INPUT_SECRET, base_key));
PSA_ASSERT(psa_key_derivation_input_bytes(
&operation, PSA_KEY_DERIVATION_INPUT_INFO,
NULL, 0));
PSA_ASSERT(psa_key_derivation_output_key(&attributes,
&operation,
&key));
PSA_ASSERT(psa_key_derivation_abort(&operation));
PSA_ASSERT(psa_destroy_key(base_key));
base_key = MBEDTLS_SVC_KEY_ID_INIT;
}
Declare a code dependency in the code instead of in the data When using the test function persistent_key_load_key_from_storage with DERIVE_KEY, there's a dependency on HKDF-SHA-256. Since this dependency is in the code, declare it there rather than with the data. If the depenency is not met, mark the test as skipped since it can't create the key to be tested. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2021-01-12 00:02:15 +01:00
#else
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSUME(!"KDF not supported in this configuration");
Declare a code dependency in the code instead of in the data When using the test function persistent_key_load_key_from_storage with DERIVE_KEY, there's a dependency on HKDF-SHA-256. Since this dependency is in the code, declare it there rather than with the data. If the depenency is not met, mark the test as skipped since it can't create the key to be tested. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2021-01-12 00:02:15 +01:00
#endif
break;
default:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(!"generation_method not implemented in test");
Declare a code dependency in the code instead of in the data When using the test function persistent_key_load_key_from_storage with DERIVE_KEY, there's a dependency on HKDF-SHA-256. Since this dependency is in the code, declare it there rather than with the data. If the depenency is not met, mark the test as skipped since it can't create the key to be tested. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2021-01-12 00:02:15 +01:00
break;
psa: Extend psa_generate_key to support persistent lifetimes
2018-11-07 17:05:30 +01:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
Update persistent_key_load_key_from_storage to use attributes Update persistent_key_load_key_from_storage to the new attribute-based key creation interface. I tweaked the code a little to make it simpler and more robust without changing the core logic.
2019-04-19 14:06:53 +02:00
/* Export the key if permitted by the key policy. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (usage_flags & PSA_KEY_USAGE_EXPORT) {
PSA_ASSERT(psa_export_key(key,
first_export, export_size,
&first_exported_length));
if (generation_method == IMPORT_KEY) {
ASSERT_COMPARE(data->x, data->len,
first_export, first_exported_length);
}
Update persistent_key_load_key_from_storage to use attributes Update persistent_key_load_key_from_storage to the new attribute-based key creation interface. I tweaked the code a little to make it simpler and more robust without changing the core logic.
2019-04-19 14:06:53 +02:00
}
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
/* Shutdown and restart */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_purge_key(key));
Replace all calls to mbedtls_psa_crypto_free by PSA_DONE Replace all calls to mbedtls_psa_crypto_free in tests by PSA_DONE. This is correct for most tests, because most tests close open keys. A few tests now fail; these tests need to be reviewed and switched back to mbedtls_psa_crypto_free if they genuinely expected to end with some slots still in use.
2019-05-28 15:10:21 +02:00
PSA_DONE();
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_crypto_init());
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
/* Check key slot still contains key data */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_get_key_attributes(key, &attributes));
TEST_ASSERT(mbedtls_svc_key_id_equal(
psa_get_key_id(&attributes), key_id));
TEST_EQUAL(psa_get_key_lifetime(&attributes),
PSA_KEY_LIFETIME_PERSISTENT);
TEST_EQUAL(psa_get_key_type(&attributes), type);
TEST_EQUAL(psa_get_key_bits(&attributes), bits);
TEST_EQUAL(psa_get_key_usage_flags(&attributes),
mbedtls_test_update_key_usage_flags(usage_flags));
TEST_EQUAL(psa_get_key_algorithm(&attributes), alg);
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
Update persistent_key_load_key_from_storage to use attributes Update persistent_key_load_key_from_storage to the new attribute-based key creation interface. I tweaked the code a little to make it simpler and more robust without changing the core logic.
2019-04-19 14:06:53 +02:00
/* Export the key again if permitted by the key policy. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (usage_flags & PSA_KEY_USAGE_EXPORT) {
PSA_ASSERT(psa_export_key(key,
second_export, export_size,
&second_exported_length));
ASSERT_COMPARE(first_export, first_exported_length,
second_export, second_exported_length);
psa: Extend psa_generate_key to support persistent lifetimes
2018-11-07 17:05:30 +01:00
}
/* Do something with the key according to its type and permitted usage. */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (!mbedtls_test_psa_exercise_key(key, usage_flags, alg)) {
psa: Extend psa_generate_key to support persistent lifetimes
2018-11-07 17:05:30 +01:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
exit:
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
/*
* Key attributes may have been returned by psa_get_key_attributes()
* thus reset them as required.
*/
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_reset_key_attributes(&attributes);
tests: psa: Reset key attributes where needed After a call to psa_get_key_attributes() to retrieve the attributes of a key into a psa_key_attributes_t structure, a call to psa_reset_key_attributes() is mandated to free the resources that may be referenced by the psa_key_attributes_t structure. Not calling psa_reset_key_attributes() may result in a memory leak. When a test function calls psa_get_key_parameters() the associated key attributes are systematically reset in the clean-up part of the function with a comment to emphasize the need for the reset and make it more visible. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
2020-11-19 17:55:23 +01:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
mbedtls_free(first_export);
mbedtls_free(second_export);
psa_key_derivation_abort(&operation);
psa_destroy_key(base_key);
psa_destroy_key(key);
Replace all calls to mbedtls_psa_crypto_free by PSA_DONE Replace all calls to mbedtls_psa_crypto_free in tests by PSA_DONE. This is correct for most tests, because most tests close open keys. A few tests now fail; these tests need to be reviewed and switched back to mbedtls_psa_crypto_free if they genuinely expected to end with some slots still in use.
2019-05-28 15:10:21 +02:00
PSA_DONE();
psa: Implement persistent keys Allow use of persistent keys, including configuring them, importing and exporting them, and destroying them. When getting a slot using psa_get_key_slot, there are 3 scenarios that can occur if the keys lifetime is persistent: 1. Key type is PSA_KEY_TYPE_NONE, no persistent storage entry: - The key slot is treated as a standard empty key slot 2. Key type is PSA_KEY_TYPE_NONE, persistent storage entry exists: - Attempt to load the key from persistent storage 3. Key type is not PSA_KEY_TYPE_NONE: - As checking persistent storage on every use of the key could be expensive, the persistent key is assumed to be saved in persistent storage, the in-memory key is continued to be used.
2018-06-18 18:27:26 +02:00
}
/* END_CASE */
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Fixing XXX_ALG_ECJPAKE to XXX_ALG_JPAKE to match specification Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-10 08:58:32 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_ALG_JPAKE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void ecjpake_setup(int alg_arg, int key_type_pw_arg, int key_usage_pw_arg,
int primitive_arg, int hash_arg, int role_arg,
int test_input, data_t *pw_data,
int inj_err_type_arg,
int expected_error_arg)
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
{
psa_pake_cipher_suite_t cipher_suite = psa_pake_cipher_suite_init();
psa_pake_operation_t operation = psa_pake_operation_init();
psa_algorithm_t alg = alg_arg;
Fix buffer sizes in ecjpake_setup test function Also, the error code changed from INSUFFICIENT_MEMORY to INVALID_DATA. Temporarily remove a test about aborting the operation on error. Auto-abort will be re-introduced in the next commit in a more systematic way. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-06 10:55:19 +02:00
psa_pake_primitive_t primitive = primitive_arg;
Fixup expected status handling in ecjpake_setup() and add more coverage for psa_pake_set_password_key() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-09-06 11:34:54 +02:00
psa_key_type_t key_type_pw = key_type_pw_arg;
psa_key_usage_t key_usage_pw = key_usage_pw_arg;
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
psa_algorithm_t hash_alg = hash_arg;
psa_pake_role_t role = role_arg;
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
ecjpake_injected_failure_t inj_err_type = inj_err_type_arg;
psa_status_t expected_error = expected_error_arg;
psa_status_t status;
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
unsigned char *output_buffer = NULL;
size_t output_len = 0;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_INIT();
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Fix buffer sizes in ecjpake_setup test function Also, the error code changed from INSUFFICIENT_MEMORY to INVALID_DATA. Temporarily remove a test about aborting the operation on error. Auto-abort will be re-introduced in the next commit in a more systematic way. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-06 10:55:19 +02:00
size_t buf_size = PSA_PAKE_OUTPUT_SIZE(alg, primitive_arg,
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_PAKE_STEP_KEY_SHARE);
ASSERT_ALLOC(output_buffer, buf_size);
if (pw_data->len > 0) {
psa_set_key_usage_flags(&attributes, key_usage_pw);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, key_type_pw);
PSA_ASSERT(psa_import_key(&attributes, pw_data->x, pw_data->len,
&key));
}
psa_pake_cs_set_algorithm(&cipher_suite, alg);
psa_pake_cs_set_primitive(&cipher_suite, primitive);
psa_pake_cs_set_hash(&cipher_suite, hash_alg);
PSA_ASSERT(psa_pake_abort(&operation));
if (inj_err_type == INJECT_ERR_UNINITIALIZED_ACCESS) {
TEST_EQUAL(psa_pake_set_user(&operation, NULL, 0),
expected_error);
PSA_ASSERT(psa_pake_abort(&operation));
TEST_EQUAL(psa_pake_set_peer(&operation, NULL, 0),
expected_error);
PSA_ASSERT(psa_pake_abort(&operation));
TEST_EQUAL(psa_pake_set_password_key(&operation, key),
expected_error);
PSA_ASSERT(psa_pake_abort(&operation));
TEST_EQUAL(psa_pake_set_role(&operation, role),
expected_error);
PSA_ASSERT(psa_pake_abort(&operation));
TEST_EQUAL(psa_pake_output(&operation, PSA_PAKE_STEP_KEY_SHARE,
NULL, 0, NULL),
expected_error);
PSA_ASSERT(psa_pake_abort(&operation));
TEST_EQUAL(psa_pake_input(&operation, PSA_PAKE_STEP_KEY_SHARE, NULL, 0),
expected_error);
PSA_ASSERT(psa_pake_abort(&operation));
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add checks for BAD_STATE before calling psa_pake_setup() in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:36:23 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_setup(&operation, &cipher_suite);
if (status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_error);
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
goto exit;
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
}
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_ERR_DUPLICATE_SETUP) {
TEST_EQUAL(psa_pake_setup(&operation, &cipher_suite),
expected_error);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add check calling psa_pake_setup() on an already initialized operation in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:46:24 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_set_role(&operation, role);
if (status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_error);
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
goto exit;
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
}
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (pw_data->len > 0) {
status = psa_pake_set_password_key(&operation, key);
if (status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_error);
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
goto exit;
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
}
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_ERR_INVALID_USER) {
TEST_EQUAL(psa_pake_set_user(&operation, NULL, 0),
PSA_ERROR_INVALID_ARGUMENT);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add checks for psa_pake_set_user/psa_pake_set_peer in test_suite_psa_crypto Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:31:49 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_ERR_INVALID_PEER) {
TEST_EQUAL(psa_pake_set_peer(&operation, NULL, 0),
PSA_ERROR_INVALID_ARGUMENT);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add checks for psa_pake_set_user/psa_pake_set_peer in test_suite_psa_crypto Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:31:49 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_ERR_SET_USER) {
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
const uint8_t unsupported_id[] = "abcd";
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_pake_set_user(&operation, unsupported_id, 4),
PSA_ERROR_NOT_SUPPORTED);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add checks for psa_pake_set_user/psa_pake_set_peer in test_suite_psa_crypto Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:31:49 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_ERR_SET_PEER) {
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
const uint8_t unsupported_id[] = "abcd";
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(psa_pake_set_peer(&operation, unsupported_id, 4),
PSA_ERROR_NOT_SUPPORTED);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add checks for psa_pake_set_user/psa_pake_set_peer in test_suite_psa_crypto Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:31:49 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
const size_t size_key_share = PSA_PAKE_INPUT_SIZE(alg, primitive,
PSA_PAKE_STEP_KEY_SHARE);
const size_t size_zk_public = PSA_PAKE_INPUT_SIZE(alg, primitive,
PSA_PAKE_STEP_ZK_PUBLIC);
const size_t size_zk_proof = PSA_PAKE_INPUT_SIZE(alg, primitive,
PSA_PAKE_STEP_ZK_PROOF);
Fix buffer sizes in ecjpake_setup test function Also, the error code changed from INSUFFICIENT_MEMORY to INVALID_DATA. Temporarily remove a test about aborting the operation on error. Auto-abort will be re-introduced in the next commit in a more systematic way. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-06 10:55:19 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (test_input) {
if (inj_err_type == INJECT_EMPTY_IO_BUFFER) {
TEST_EQUAL(psa_pake_input(&operation, PSA_PAKE_STEP_ZK_PROOF, NULL, 0),
PSA_ERROR_INVALID_ARGUMENT);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add advanced psa_pake_input/psa_pake_output test in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:59:07 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_UNKNOWN_STEP) {
TEST_EQUAL(psa_pake_input(&operation, PSA_PAKE_STEP_ZK_PROOF + 10,
output_buffer, size_zk_proof),
PSA_ERROR_INVALID_ARGUMENT);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add advanced psa_pake_input/psa_pake_output test in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:59:07 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_INVALID_FIRST_STEP) {
TEST_EQUAL(psa_pake_input(&operation, PSA_PAKE_STEP_ZK_PROOF,
output_buffer, size_zk_proof),
PSA_ERROR_BAD_STATE);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_input(&operation, PSA_PAKE_STEP_KEY_SHARE,
output_buffer, size_key_share);
if (status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_error);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add advanced psa_pake_input/psa_pake_output test in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:59:07 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_WRONG_BUFFER_SIZE) {
TEST_EQUAL(psa_pake_input(&operation, PSA_PAKE_STEP_ZK_PUBLIC,
output_buffer, size_zk_public + 1),
PSA_ERROR_INVALID_ARGUMENT);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add advanced psa_pake_input/psa_pake_output test in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:59:07 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_VALID_OPERATION_AFTER_FAILURE) {
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
// Just trigger any kind of error. We don't care about the result here
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_pake_input(&operation, PSA_PAKE_STEP_ZK_PUBLIC,
output_buffer, size_zk_public + 1);
TEST_EQUAL(psa_pake_input(&operation, PSA_PAKE_STEP_ZK_PUBLIC,
output_buffer, size_zk_public),
PSA_ERROR_BAD_STATE);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
} else {
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_EMPTY_IO_BUFFER) {
TEST_EQUAL(psa_pake_output(&operation, PSA_PAKE_STEP_ZK_PROOF,
NULL, 0, NULL),
PSA_ERROR_INVALID_ARGUMENT);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
Add advanced psa_pake_input/psa_pake_output test in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:59:07 +02:00
}
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_UNKNOWN_STEP) {
TEST_EQUAL(psa_pake_output(&operation, PSA_PAKE_STEP_ZK_PROOF + 10,
output_buffer, buf_size, &output_len),
PSA_ERROR_INVALID_ARGUMENT);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add checks for INVALID_ARGUMENT for psa_pake_output/psa_pake_input in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:43:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_INVALID_FIRST_STEP) {
TEST_EQUAL(psa_pake_output(&operation, PSA_PAKE_STEP_ZK_PROOF,
output_buffer, buf_size, &output_len),
PSA_ERROR_BAD_STATE);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add checks for INVALID_ARGUMENT for psa_pake_output/psa_pake_input in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:43:20 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
status = psa_pake_output(&operation, PSA_PAKE_STEP_KEY_SHARE,
output_buffer, buf_size, &output_len);
if (status != PSA_SUCCESS) {
TEST_EQUAL(status, expected_error);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add advanced psa_pake_input/psa_pake_output test in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:59:07 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_ASSERT(output_len > 0);
Add advanced psa_pake_input/psa_pake_output test in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:59:07 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_WRONG_BUFFER_SIZE) {
TEST_EQUAL(psa_pake_output(&operation, PSA_PAKE_STEP_ZK_PUBLIC,
output_buffer, size_zk_public - 1, &output_len),
PSA_ERROR_BUFFER_TOO_SMALL);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Add advanced psa_pake_input/psa_pake_output test in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:59:07 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_VALID_OPERATION_AFTER_FAILURE) {
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
// Just trigger any kind of error. We don't care about the result here
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_pake_output(&operation, PSA_PAKE_STEP_ZK_PUBLIC,
output_buffer, size_zk_public - 1, &output_len);
TEST_EQUAL(psa_pake_output(&operation, PSA_PAKE_STEP_ZK_PUBLIC,
output_buffer, buf_size, &output_len),
PSA_ERROR_BAD_STATE);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
Add advanced psa_pake_input/psa_pake_output test in ecjpake_setup() test Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-08 17:59:07 +02:00
}
}
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_destroy_key(key));
PSA_ASSERT(psa_pake_abort(&operation));
mbedtls_free(output_buffer);
PSA_DONE();
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
}
/* END_CASE */
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_ALG_JPAKE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void ecjpake_rounds_inject(int alg_arg, int primitive_arg, int hash_arg,
int client_input_first, int inject_error,
data_t *pw_data)
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
{
psa_pake_cipher_suite_t cipher_suite = psa_pake_cipher_suite_init();
psa_pake_operation_t server = psa_pake_operation_init();
psa_pake_operation_t client = psa_pake_operation_init();
psa_algorithm_t alg = alg_arg;
psa_algorithm_t hash_alg = hash_arg;
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_INIT();
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, PSA_KEY_TYPE_PASSWORD);
PSA_ASSERT(psa_import_key(&attributes, pw_data->x, pw_data->len,
&key));
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_pake_cs_set_algorithm(&cipher_suite, alg);
psa_pake_cs_set_primitive(&cipher_suite, primitive_arg);
psa_pake_cs_set_hash(&cipher_suite, hash_alg);
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_setup(&server, &cipher_suite));
PSA_ASSERT(psa_pake_setup(&client, &cipher_suite));
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_set_role(&server, PSA_PAKE_ROLE_SERVER));
PSA_ASSERT(psa_pake_set_role(&client, PSA_PAKE_ROLE_CLIENT));
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_set_password_key(&server, key));
PSA_ASSERT(psa_pake_set_password_key(&client, key));
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ecjpake_do_round(alg, primitive_arg, &server, &client,
client_input_first, 1, inject_error);
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inject_error == 1 || inject_error == 2) {
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
goto exit;
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
}
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ecjpake_do_round(alg, primitive_arg, &server, &client,
client_input_first, 2, inject_error);
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_destroy_key(key);
psa_pake_abort(&server);
psa_pake_abort(&client);
PSA_DONE();
Add ecjpake_rounds_inject tests to exercise error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:28:32 +02:00
}
/* END_CASE */
Fixing XXX_ALG_ECJPAKE to XXX_ALG_JPAKE to match specification Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-10 08:58:32 +02:00
/* BEGIN_CASE depends_on:PSA_WANT_ALG_JPAKE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void ecjpake_rounds(int alg_arg, int primitive_arg, int hash_arg,
int derive_alg_arg, data_t *pw_data,
int client_input_first, int inj_err_type_arg)
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
{
psa_pake_cipher_suite_t cipher_suite = psa_pake_cipher_suite_init();
psa_pake_operation_t server = psa_pake_operation_init();
psa_pake_operation_t client = psa_pake_operation_init();
psa_algorithm_t alg = alg_arg;
psa_algorithm_t hash_alg = hash_arg;
psa_algorithm_t derive_alg = derive_alg_arg;
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
psa_key_derivation_operation_t server_derive =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_KEY_DERIVATION_OPERATION_INIT;
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
psa_key_derivation_operation_t client_derive =
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_KEY_DERIVATION_OPERATION_INIT;
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
ecjpake_injected_failure_t inj_err_type = inj_err_type_arg;
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_INIT();
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
psa_set_key_algorithm(&attributes, alg);
psa_set_key_type(&attributes, PSA_KEY_TYPE_PASSWORD);
PSA_ASSERT(psa_import_key(&attributes, pw_data->x, pw_data->len,
&key));
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_pake_cs_set_algorithm(&cipher_suite, alg);
psa_pake_cs_set_primitive(&cipher_suite, primitive_arg);
psa_pake_cs_set_hash(&cipher_suite, hash_alg);
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Fix psa_pake_get_implicit_key() state & add corresponding tests in ecjpake_rounds() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 11:32:11 +02:00
/* Get shared key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_key_derivation_setup(&server_derive, derive_alg));
PSA_ASSERT(psa_key_derivation_setup(&client_derive, derive_alg));
Fix psa_pake_get_implicit_key() state & add corresponding tests in ecjpake_rounds() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 11:32:11 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (PSA_ALG_IS_TLS12_PRF(derive_alg) ||
PSA_ALG_IS_TLS12_PSK_TO_MS(derive_alg)) {
PSA_ASSERT(psa_key_derivation_input_bytes(&server_derive,
PSA_KEY_DERIVATION_INPUT_SEED,
(const uint8_t *) "", 0));
PSA_ASSERT(psa_key_derivation_input_bytes(&client_derive,
PSA_KEY_DERIVATION_INPUT_SEED,
(const uint8_t *) "", 0));
Fix psa_pake_get_implicit_key() state & add corresponding tests in ecjpake_rounds() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 11:32:11 +02:00
}
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_setup(&server, &cipher_suite));
PSA_ASSERT(psa_pake_setup(&client, &cipher_suite));
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_set_role(&server, PSA_PAKE_ROLE_SERVER));
PSA_ASSERT(psa_pake_set_role(&client, PSA_PAKE_ROLE_CLIENT));
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_set_password_key(&server, key));
PSA_ASSERT(psa_pake_set_password_key(&client, key));
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
if (inj_err_type == INJECT_ANTICIPATE_KEY_DERIVATION_1) {
TEST_EQUAL(psa_pake_get_implicit_key(&server, &server_derive),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_pake_get_implicit_key(&client, &client_derive),
PSA_ERROR_BAD_STATE);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Fix psa_pake_get_implicit_key() state & add corresponding tests in ecjpake_rounds() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 11:32:11 +02:00
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
/* First round */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ecjpake_do_round(alg, primitive_arg, &server, &client,
client_input_first, 1, 0);
if (inj_err_type == INJECT_ANTICIPATE_KEY_DERIVATION_2) {
TEST_EQUAL(psa_pake_get_implicit_key(&server, &server_derive),
PSA_ERROR_BAD_STATE);
TEST_EQUAL(psa_pake_get_implicit_key(&client, &client_derive),
PSA_ERROR_BAD_STATE);
test_suite_psa_crypto: do not re-use PAKE's contexts in case of errors As for ecjpake_setup(), now the test function can handle: - "external" errors, through parameters set by the data file - "internal" ones, through enums which inject ad-hoc failures Similarly also ecjpake_rounds() can handle both type of errors, but right now there's no erroneous case in the associated ".data" file. In both cases, after an error the current test is terminated. Signed-off-by: Valerio Setti <vsetti@baylibre.com>
2022-11-11 19:37:31 +01:00
goto exit;
}
Fix psa_pake_get_implicit_key() state & add corresponding tests in ecjpake_rounds() Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 11:32:11 +02:00
Move JPAKE rounds into a common function, add reordering and error injection Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-06-15 15:27:48 +02:00
/* Second round */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
ecjpake_do_round(alg, primitive_arg, &server, &client,
client_input_first, 2, 0);
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ASSERT(psa_pake_get_implicit_key(&server, &server_derive));
PSA_ASSERT(psa_pake_get_implicit_key(&client, &client_derive));
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
exit:
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
psa_key_derivation_abort(&server_derive);
psa_key_derivation_abort(&client_derive);
psa_destroy_key(key);
psa_pake_abort(&server);
psa_pake_abort(&client);
PSA_DONE();
Add PSA PAKE tests Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2022-05-25 11:28:39 +02:00
}
/* END_CASE */
Fix I/O format of PSA EC J-PAKE for compliance The format used by the mbedtls_ecjpake_xxx() APIs and that defined by the PSA Crypto PAKE extension are quite different; the former is tailored to the needs of TLS while the later is quite generic and plain. Previously we only addressed some part of this impedance mismatch: the different number of I/O rounds, but failed to address the part where the legacy API adds some extras (length bytes, ECParameters) that shouldn't be present in the PSA Crypto version. See comments in the code. Add some length testing as well; would have caught the issue. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-05 12:17:34 +02:00
/* BEGIN_CASE */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
void ecjpake_size_macros()
Fix I/O format of PSA EC J-PAKE for compliance The format used by the mbedtls_ecjpake_xxx() APIs and that defined by the PSA Crypto PAKE extension are quite different; the former is tailored to the needs of TLS while the later is quite generic and plain. Previously we only addressed some part of this impedance mismatch: the different number of I/O rounds, but failed to address the part where the legacy API adds some extras (length bytes, ECParameters) that shouldn't be present in the PSA Crypto version. See comments in the code. Add some length testing as well; would have caught the issue. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-05 12:17:34 +02:00
{
const psa_algorithm_t alg = PSA_ALG_JPAKE;
const size_t bits = 256;
const psa_pake_primitive_t prim = PSA_PAKE_PRIMITIVE(
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_PAKE_PRIMITIVE_TYPE_ECC, PSA_ECC_FAMILY_SECP_R1, bits);
Fix I/O format of PSA EC J-PAKE for compliance The format used by the mbedtls_ecjpake_xxx() APIs and that defined by the PSA Crypto PAKE extension are quite different; the former is tailored to the needs of TLS while the later is quite generic and plain. Previously we only addressed some part of this impedance mismatch: the different number of I/O rounds, but failed to address the part where the legacy API adds some extras (length bytes, ECParameters) that shouldn't be present in the PSA Crypto version. See comments in the code. Add some length testing as well; would have caught the issue. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-05 12:17:34 +02:00
const psa_key_type_t key_type = PSA_KEY_TYPE_ECC_KEY_PAIR(
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
PSA_ECC_FAMILY_SECP_R1);
Fix I/O format of PSA EC J-PAKE for compliance The format used by the mbedtls_ecjpake_xxx() APIs and that defined by the PSA Crypto PAKE extension are quite different; the former is tailored to the needs of TLS while the later is quite generic and plain. Previously we only addressed some part of this impedance mismatch: the different number of I/O rounds, but failed to address the part where the legacy API adds some extras (length bytes, ECParameters) that shouldn't be present in the PSA Crypto version. See comments in the code. Add some length testing as well; would have caught the issue. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-05 12:17:34 +02:00
// https://armmbed.github.io/mbed-crypto/1.1_PAKE_Extension.0-bet.0/html/pake.html#pake-step-types
/* The output for KEY_SHARE and ZK_PUBLIC is the same as a public key */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(PSA_PAKE_OUTPUT_SIZE(alg, prim, PSA_PAKE_STEP_KEY_SHARE),
PSA_EXPORT_PUBLIC_KEY_OUTPUT_SIZE(key_type, bits));
TEST_EQUAL(PSA_PAKE_OUTPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PUBLIC),
PSA_EXPORT_PUBLIC_KEY_OUTPUT_SIZE(key_type, bits));
Fix I/O format of PSA EC J-PAKE for compliance The format used by the mbedtls_ecjpake_xxx() APIs and that defined by the PSA Crypto PAKE extension are quite different; the former is tailored to the needs of TLS while the later is quite generic and plain. Previously we only addressed some part of this impedance mismatch: the different number of I/O rounds, but failed to address the part where the legacy API adds some extras (length bytes, ECParameters) that shouldn't be present in the PSA Crypto version. See comments in the code. Add some length testing as well; would have caught the issue. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-05 12:17:34 +02:00
/* The output for ZK_PROOF is the same bitsize as the curve */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(PSA_PAKE_OUTPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PROOF),
PSA_BITS_TO_BYTES(bits));
Fix I/O format of PSA EC J-PAKE for compliance The format used by the mbedtls_ecjpake_xxx() APIs and that defined by the PSA Crypto PAKE extension are quite different; the former is tailored to the needs of TLS while the later is quite generic and plain. Previously we only addressed some part of this impedance mismatch: the different number of I/O rounds, but failed to address the part where the legacy API adds some extras (length bytes, ECParameters) that shouldn't be present in the PSA Crypto version. See comments in the code. Add some length testing as well; would have caught the issue. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-05 12:17:34 +02:00
/* Input sizes are the same as output sizes */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_EQUAL(PSA_PAKE_OUTPUT_SIZE(alg, prim, PSA_PAKE_STEP_KEY_SHARE),
PSA_PAKE_INPUT_SIZE(alg, prim, PSA_PAKE_STEP_KEY_SHARE));
TEST_EQUAL(PSA_PAKE_OUTPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PUBLIC),
PSA_PAKE_INPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PUBLIC));
TEST_EQUAL(PSA_PAKE_OUTPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PROOF),
PSA_PAKE_INPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PROOF));
Fix I/O format of PSA EC J-PAKE for compliance The format used by the mbedtls_ecjpake_xxx() APIs and that defined by the PSA Crypto PAKE extension are quite different; the former is tailored to the needs of TLS while the later is quite generic and plain. Previously we only addressed some part of this impedance mismatch: the different number of I/O rounds, but failed to address the part where the legacy API adds some extras (length bytes, ECParameters) that shouldn't be present in the PSA Crypto version. See comments in the code. Add some length testing as well; would have caught the issue. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-05 12:17:34 +02:00
/* These inequalities will always hold even when other PAKEs are added */
Switch to the new code style Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-01-11 14:50:10 +01:00
TEST_LE_U(PSA_PAKE_OUTPUT_SIZE(alg, prim, PSA_PAKE_STEP_KEY_SHARE),
PSA_PAKE_OUTPUT_MAX_SIZE);
TEST_LE_U(PSA_PAKE_OUTPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PUBLIC),
PSA_PAKE_OUTPUT_MAX_SIZE);
TEST_LE_U(PSA_PAKE_OUTPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PROOF),
PSA_PAKE_OUTPUT_MAX_SIZE);
TEST_LE_U(PSA_PAKE_INPUT_SIZE(alg, prim, PSA_PAKE_STEP_KEY_SHARE),
PSA_PAKE_INPUT_MAX_SIZE);
TEST_LE_U(PSA_PAKE_INPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PUBLIC),
PSA_PAKE_INPUT_MAX_SIZE);
TEST_LE_U(PSA_PAKE_INPUT_SIZE(alg, prim, PSA_PAKE_STEP_ZK_PROOF),
PSA_PAKE_INPUT_MAX_SIZE);
Fix I/O format of PSA EC J-PAKE for compliance The format used by the mbedtls_ecjpake_xxx() APIs and that defined by the PSA Crypto PAKE extension are quite different; the former is tailored to the needs of TLS while the later is quite generic and plain. Previously we only addressed some part of this impedance mismatch: the different number of I/O rounds, but failed to address the part where the legacy API adds some extras (length bytes, ECParameters) that shouldn't be present in the PSA Crypto version. See comments in the code. Add some length testing as well; would have caught the issue. Signed-off-by: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>
2022-10-05 12:17:34 +02:00
}
/* END_CASE */
Reference in a new issue Copy permalink