3 #ifdef POLARSSL_CIPHER_C
7 #if defined(POLARSSL_GCM_C)
13 #if defined(POLARSSL_MEMORY_BUFFER_ALLOC_C)
17 #if defined(WANT_NOT_RND_MPI)
18 #if defined(POLARSSL_BIGNUM_C)
21 #error "not_rnd_mpi() need bignum.c"
27 typedef UINT32 uint32_t;
40 #define GET_UINT32_BE(n,b,i) \
42 (n) = ( (uint32_t) (b)[(i) ] << 24 ) \
43 | ( (uint32_t) (b)[(i) + 1] << 16 ) \
44 | ( (uint32_t) (b)[(i) + 2] << 8 ) \
45 | ( (uint32_t) (b)[(i) + 3] ); \
50 #define PUT_UINT32_BE(n,b,i) \
52 (b)[(i) ] = (unsigned char) ( (n) >> 24 ); \
53 (b)[(i) + 1] = (unsigned char) ( (n) >> 16 ); \
54 (b)[(i) + 2] = (unsigned char) ( (n) >> 8 ); \
55 (b)[(i) + 3] = (unsigned char) ( (n) ); \
59 static int unhexify(
unsigned char *obuf,
const char *ibuf)
62 int len = strlen(ibuf) / 2;
63 assert(!(strlen(ibuf) %1));
68 if( c >=
'0' && c <=
'9' )
70 else if( c >=
'a' && c <=
'f' )
72 else if( c >=
'A' && c <=
'F' )
78 if( c2 >=
'0' && c2 <=
'9' )
80 else if( c2 >=
'a' && c2 <=
'f' )
82 else if( c2 >=
'A' && c2 <=
'F' )
87 *obuf++ = ( c << 4 ) | c2;
93 static void hexify(
unsigned char *obuf,
const unsigned char *ibuf,
int len)
105 *obuf++ =
'a' + h - 10;
110 *obuf++ =
'a' + l - 10;
126 static int rnd_std_rand(
void *rng_state,
unsigned char *output,
size_t len )
130 if( rng_state != NULL )
133 for( i = 0; i < len; ++i )
144 static int rnd_zero_rand(
void *rng_state,
unsigned char *output,
size_t len )
146 if( rng_state != NULL )
149 memset( output, 0, len );
176 if( rng_state == NULL )
185 memcpy( output, info->
buf, use_len );
186 info->
buf += use_len;
190 if( len - use_len > 0 )
191 return(
rnd_std_rand( NULL, output + use_len, len - use_len ) );
220 uint32_t i, *k, sum, delta=0x9E3779B9;
221 unsigned char result[4];
223 if( rng_state == NULL )
230 size_t use_len = ( len > 4 ) ? 4 : len;
233 for( i = 0; i < 32; i++ )
235 info->
v0 += (((info->
v1 << 4) ^ (info->
v1 >> 5)) + info->
v1) ^ (sum + k[sum & 3]);
237 info->
v1 += (((info->
v0 << 4) ^ (info->
v0 >> 5)) + info->
v0) ^ (sum + k[(sum>>11) & 3]);
241 memcpy( output, result, use_len );
248 #if defined(WANT_NOT_RND_MPI)
257 #define ciL (sizeof(t_uint))
258 #define CHARS_TO_LIMBS(i) (((i) + ciL - 1) / ciL)
259 static int not_rnd_mpi(
void *in,
unsigned char *out,
size_t len )
261 char *str = (
char *) in;
270 X.
n = CHARS_TO_LIMBS( len );
276 assert( strlen( str ) / 2 == len );
288 #ifdef POLARSSL_CIPHER_C
290 #define TEST_SUITE_ACTIVE
298 if( test_errors == 1 )
299 printf(
"FAILED\n" );
300 printf(
" %s\n", test );
305 #define TEST_ASSERT( TEST ) \
306 do { test_assert( (TEST) ? 1 : 0, #TEST ); \
307 if( test_errors) return; \
312 if( (*str)[0] !=
'"' ||
313 (*str)[strlen( *str ) - 1] !=
'"' )
315 printf(
"Expected string (with \"\") for parameter and got: %s\n", *str );
320 (*str)[strlen( *str ) - 1] =
'\0';
332 for( i = 0; i < strlen( str ); i++ )
334 if( i == 0 && str[i] ==
'-' )
340 if( ( ( minus && i == 2 ) || ( !minus && i == 1 ) ) &&
341 str[i - 1] ==
'0' && str[i] ==
'x' )
347 if( str[i] <
'0' || str[i] >
'9' )
357 *value = strtol( str, NULL, 16 );
359 *value = strtol( str, NULL, 10 );
364 if( strcmp( str,
"-1" ) == 0 )
369 if( strcmp( str,
"POLARSSL_CIPHER_NULL" ) == 0 )
376 printf(
"Expected integer for parameter and got: %s\n", str );
380 void test_suite_enc_dec_buf(
int cipher_id,
char *cipher_string,
int key_len,
381 int length_val,
int pad_mode )
383 size_t length = length_val, outlen, total_len, i;
384 unsigned char key[32];
385 unsigned char iv[16];
386 unsigned char ad[13];
387 unsigned char tag[16];
388 unsigned char inbuf[64];
389 unsigned char encbuf[64];
390 unsigned char decbuf[64];
399 memset( &ctx_dec, 0,
sizeof( ctx_dec ) );
400 memset( &ctx_enc, 0,
sizeof( ctx_enc ) );
402 memset( key, 0x2a,
sizeof( key ) );
416 #if defined(POLARSSL_CIPHER_MODE_WITH_PADDING)
429 for( i = 0; i < 3; i++ )
431 memset( iv , 0x00 + i,
sizeof( iv ) );
432 memset( ad, 0x10 + i,
sizeof( ad ) );
433 memset( inbuf, 0x20 + i,
sizeof( inbuf ) );
435 memset( encbuf, 0,
sizeof( encbuf ) );
436 memset( decbuf, 0,
sizeof( decbuf ) );
437 memset( tag, 0,
sizeof( tag ) );
445 #if defined(POLARSSL_CIPHER_MODE_AEAD)
456 total_len < length &&
462 #if defined(POLARSSL_CIPHER_MODE_AEAD)
468 total_len > length &&
477 total_len < length &&
483 #if defined(POLARSSL_CIPHER_MODE_AEAD)
499 void test_suite_enc_fail(
int cipher_id,
int pad_mode,
int key_len,
500 int length_val,
int ret )
502 size_t length = length_val;
503 unsigned char key[32];
504 unsigned char iv[16];
509 unsigned char inbuf[64];
510 unsigned char encbuf[64];
514 memset( key, 0, 32 );
515 memset( iv , 0, 16 );
517 memset( &ctx, 0,
sizeof( ctx ) );
519 memset( inbuf, 5, 64 );
520 memset( encbuf, 0, 64 );
529 #if defined(POLARSSL_CIPHER_MODE_WITH_PADDING)
536 #if defined(POLARSSL_CIPHER_MODE_AEAD)
548 void test_suite_dec_empty_buf()
550 unsigned char key[32];
551 unsigned char iv[16];
556 unsigned char encbuf[64];
557 unsigned char decbuf[64];
561 memset( key, 0, 32 );
562 memset( iv , 0, 16 );
564 memset( &ctx_dec, 0,
sizeof( ctx_dec ) );
566 memset( encbuf, 0, 64 );
567 memset( decbuf, 0, 64 );
581 #if defined(POLARSSL_CIPHER_MODE_AEAD)
589 &ctx_dec, decbuf + outlen, &outlen ) );
595 void test_suite_enc_dec_buf_multipart(
int cipher_id,
int key_len,
int first_length_val,
596 int second_length_val )
598 size_t first_length = first_length_val;
599 size_t second_length = second_length_val;
600 size_t length = first_length + second_length;
601 unsigned char key[32];
602 unsigned char iv[16];
608 unsigned char inbuf[64];
609 unsigned char encbuf[64];
610 unsigned char decbuf[64];
613 size_t totaloutlen = 0;
615 memset( key, 0, 32 );
616 memset( iv , 0, 16 );
618 memset( &ctx_dec, 0,
sizeof( ctx_dec ) );
619 memset( &ctx_enc, 0,
sizeof( ctx_enc ) );
621 memset( inbuf, 5, 64 );
622 memset( encbuf, 0, 64 );
623 memset( decbuf, 0, 64 );
641 #if defined(POLARSSL_CIPHER_MODE_AEAD)
648 totaloutlen = outlen;
650 totaloutlen += outlen;
653 totaloutlen < length &&
657 totaloutlen += outlen;
660 totaloutlen > length &&
665 totaloutlen = outlen;
669 totaloutlen < length &&
673 totaloutlen += outlen;
683 void test_suite_decrypt_test_vec(
int cipher_id,
int pad_mode,
684 char *hex_key,
char *hex_iv,
685 char *hex_cipher,
char *hex_clear,
686 char *hex_ad,
char *hex_tag,
687 int finish_result,
int tag_result )
689 unsigned char key[50];
690 unsigned char iv[50];
691 unsigned char cipher[200];
692 unsigned char clear[200];
693 unsigned char ad[200];
694 unsigned char tag[20];
695 size_t key_len, iv_len, cipher_len, clear_len;
696 #if defined(POLARSSL_CIPHER_MODE_AEAD)
697 size_t ad_len, tag_len;
700 unsigned char output[200];
701 size_t outlen, total_len;
703 memset( key, 0x00,
sizeof( key ) );
704 memset( iv, 0x00,
sizeof( iv ) );
705 memset( cipher, 0x00,
sizeof( cipher ) );
706 memset( clear, 0x00,
sizeof( clear ) );
707 memset( ad, 0x00,
sizeof( ad ) );
708 memset( tag, 0x00,
sizeof( tag ) );
709 memset( output, 0x00,
sizeof( output ) );
713 cipher_len =
unhexify( cipher, hex_cipher );
714 clear_len =
unhexify( clear, hex_clear );
715 #if defined(POLARSSL_CIPHER_MODE_AEAD)
727 #if defined(POLARSSL_CIPHER_MODE_WITH_PADDING)
735 #if defined(POLARSSL_CIPHER_MODE_AEAD)
746 #if defined(POLARSSL_CIPHER_MODE_AEAD)
751 if( 0 == finish_result && 0 == tag_result )
754 TEST_ASSERT( 0 == memcmp( output, clear, clear_len ) );
760 void test_suite_test_vec_ecb(
int cipher_id,
int operation,
char *hex_key,
761 char *hex_input,
char *hex_result,
764 unsigned char key[50];
765 unsigned char input[16];
766 unsigned char result[16];
769 unsigned char output[32];
772 memset( key, 0x00,
sizeof( key ) );
773 memset( input, 0x00,
sizeof( input ) );
774 memset( result, 0x00,
sizeof( result ) );
775 memset( output, 0x00,
sizeof( output ) );
798 if( 0 == finish_result )
805 #ifdef POLARSSL_CIPHER_MODE_WITH_PADDING
806 void test_suite_set_padding(
int cipher_id,
int pad_mode,
int ret )
821 #ifdef POLARSSL_CIPHER_MODE_CBC
822 void test_suite_check_padding(
int pad_mode,
char *input_str,
int ret,
int dlen_check )
826 unsigned char input[16];
830 memset( &ctx, 0,
sizeof( ctx ) );
836 ilen =
unhexify( input, input_str );
844 #ifdef POLARSSL_SELF_TEST
845 void test_suite_cipher_selftest()
860 if( strcmp( str,
"POLARSSL_CIPHER_NULL_CIPHER" ) == 0 )
862 #if defined(POLARSSL_CIPHER_NULL_CIPHER)
879 #if defined(TEST_SUITE_ACTIVE)
880 if( strcmp( params[0],
"enc_dec_buf" ) == 0 )
884 char *param2 = params[2];
891 fprintf( stderr,
"\nIncorrect argument count (%d != %d)\n", cnt, 6 );
895 if(
verify_int( params[1], ¶m1 ) != 0 )
return( 2 );
897 if(
verify_int( params[3], ¶m3 ) != 0 )
return( 2 );
898 if(
verify_int( params[4], ¶m4 ) != 0 )
return( 2 );
899 if(
verify_int( params[5], ¶m5 ) != 0 )
return( 2 );
901 test_suite_enc_dec_buf( param1, param2, param3, param4, param5 );
907 if( strcmp( params[0],
"enc_fail" ) == 0 )
918 fprintf( stderr,
"\nIncorrect argument count (%d != %d)\n", cnt, 6 );
922 if(
verify_int( params[1], ¶m1 ) != 0 )
return( 2 );
923 if(
verify_int( params[2], ¶m2 ) != 0 )
return( 2 );
924 if(
verify_int( params[3], ¶m3 ) != 0 )
return( 2 );
925 if(
verify_int( params[4], ¶m4 ) != 0 )
return( 2 );
926 if(
verify_int( params[5], ¶m5 ) != 0 )
return( 2 );
928 test_suite_enc_fail( param1, param2, param3, param4, param5 );
934 if( strcmp( params[0],
"dec_empty_buf" ) == 0 )
940 fprintf( stderr,
"\nIncorrect argument count (%d != %d)\n", cnt, 1 );
945 test_suite_dec_empty_buf( );
951 if( strcmp( params[0],
"enc_dec_buf_multipart" ) == 0 )
961 fprintf( stderr,
"\nIncorrect argument count (%d != %d)\n", cnt, 5 );
965 if(
verify_int( params[1], ¶m1 ) != 0 )
return( 2 );
966 if(
verify_int( params[2], ¶m2 ) != 0 )
return( 2 );
967 if(
verify_int( params[3], ¶m3 ) != 0 )
return( 2 );
968 if(
verify_int( params[4], ¶m4 ) != 0 )
return( 2 );
970 test_suite_enc_dec_buf_multipart( param1, param2, param3, param4 );
976 if( strcmp( params[0],
"decrypt_test_vec" ) == 0 )
981 char *param3 = params[3];
982 char *param4 = params[4];
983 char *param5 = params[5];
984 char *param6 = params[6];
985 char *param7 = params[7];
986 char *param8 = params[8];
992 fprintf( stderr,
"\nIncorrect argument count (%d != %d)\n", cnt, 11 );
996 if(
verify_int( params[1], ¶m1 ) != 0 )
return( 2 );
997 if(
verify_int( params[2], ¶m2 ) != 0 )
return( 2 );
1004 if(
verify_int( params[9], ¶m9 ) != 0 )
return( 2 );
1005 if(
verify_int( params[10], ¶m10 ) != 0 )
return( 2 );
1007 test_suite_decrypt_test_vec( param1, param2, param3, param4, param5, param6, param7, param8, param9, param10 );
1013 if( strcmp( params[0],
"test_vec_ecb" ) == 0 )
1018 char *param3 = params[3];
1019 char *param4 = params[4];
1020 char *param5 = params[5];
1025 fprintf( stderr,
"\nIncorrect argument count (%d != %d)\n", cnt, 7 );
1029 if(
verify_int( params[1], ¶m1 ) != 0 )
return( 2 );
1030 if(
verify_int( params[2], ¶m2 ) != 0 )
return( 2 );
1034 if(
verify_int( params[6], ¶m6 ) != 0 )
return( 2 );
1036 test_suite_test_vec_ecb( param1, param2, param3, param4, param5, param6 );
1042 if( strcmp( params[0],
"set_padding" ) == 0 )
1044 #ifdef POLARSSL_CIPHER_MODE_WITH_PADDING
1052 fprintf( stderr,
"\nIncorrect argument count (%d != %d)\n", cnt, 4 );
1056 if(
verify_int( params[1], ¶m1 ) != 0 )
return( 2 );
1057 if(
verify_int( params[2], ¶m2 ) != 0 )
return( 2 );
1058 if(
verify_int( params[3], ¶m3 ) != 0 )
return( 2 );
1060 test_suite_set_padding( param1, param2, param3 );
1067 if( strcmp( params[0],
"check_padding" ) == 0 )
1069 #ifdef POLARSSL_CIPHER_MODE_CBC
1072 char *param2 = params[2];
1078 fprintf( stderr,
"\nIncorrect argument count (%d != %d)\n", cnt, 5 );
1082 if(
verify_int( params[1], ¶m1 ) != 0 )
return( 2 );
1084 if(
verify_int( params[3], ¶m3 ) != 0 )
return( 2 );
1085 if(
verify_int( params[4], ¶m4 ) != 0 )
return( 2 );
1087 test_suite_check_padding( param1, param2, param3, param4 );
1094 if( strcmp( params[0],
"cipher_selftest" ) == 0 )
1096 #ifdef POLARSSL_SELF_TEST
1101 fprintf( stderr,
"\nIncorrect argument count (%d != %d)\n", cnt, 1 );
1106 test_suite_cipher_selftest( );
1115 fprintf( stdout,
"FAILED\nSkipping unknown test function '%s'\n", params[0] );
1129 ret = fgets( buf, len, f );
1133 if( strlen( buf ) && buf[strlen(buf) - 1] ==
'\n' )
1134 buf[strlen(buf) - 1] =
'\0';
1135 if( strlen( buf ) && buf[strlen(buf) - 1] ==
'\r' )
1136 buf[strlen(buf) - 1] =
'\0';
1147 params[cnt++] = cur;
1149 while( *p !=
'\0' && p < buf + len )
1159 if( p + 1 < buf + len )
1162 params[cnt++] = cur;
1171 for( i = 0; i < cnt; i++ )
1178 if( *p ==
'\\' && *(p + 1) ==
'n' )
1183 else if( *p ==
'\\' && *(p + 1) ==
':' )
1188 else if( *p ==
'\\' && *(p + 1) ==
'?' )
1204 int ret, i, cnt, total_errors = 0, total_tests = 0, total_skipped = 0;
1205 const char *filename =
"/tmp/B.6b9404fc-5e27-486e-9bbd-77463d7343ee/BUILD/polarssl-1.3.2/tests/suites/test_suite_cipher.null.data";
1210 #if defined(POLARSSL_MEMORY_BUFFER_ALLOC_C)
1211 unsigned char alloc_buf[1000000];
1212 memory_buffer_alloc_init( alloc_buf,
sizeof(alloc_buf) );
1215 file = fopen( filename,
"r" );
1218 fprintf( stderr,
"Failed to open\n" );
1222 while( !feof( file ) )
1226 if( ( ret =
get_line( file, buf,
sizeof(buf) ) ) != 0 )
1228 fprintf( stdout,
"%s%.66s", test_errors ?
"\n" :
"", buf );
1229 fprintf( stdout,
" " );
1230 for( i = strlen( buf ) + 1; i < 67; i++ )
1231 fprintf( stdout,
"." );
1232 fprintf( stdout,
" " );
1237 if( ( ret =
get_line( file, buf,
sizeof(buf) ) ) != 0 )
1241 if( strcmp( params[0],
"depends_on" ) == 0 )
1243 for( i = 1; i < cnt; i++ )
1247 if( ( ret =
get_line( file, buf,
sizeof(buf) ) ) != 0 )
1258 if( skip == 1 || ret == 3 )
1261 fprintf( stdout,
"----\n" );
1264 else if( ret == 0 && test_errors == 0 )
1266 fprintf( stdout,
"PASS\n" );
1271 fprintf( stderr,
"FAILED: FATAL PARSE ERROR\n" );
1278 if( ( ret =
get_line( file, buf,
sizeof(buf) ) ) != 0 )
1280 if( strlen(buf) != 0 )
1282 fprintf( stderr,
"Should be empty %d\n", (
int) strlen(buf) );
1288 fprintf( stdout,
"\n----------------------------------------------------------------------------\n\n");
1289 if( total_errors == 0 )
1290 fprintf( stdout,
"PASSED" );
1292 fprintf( stdout,
"FAILED" );
1294 fprintf( stdout,
" (%d / %d tests (%d skipped))\n",
1295 total_tests - total_errors, total_tests, total_skipped );
1297 #if defined(POLARSSL_MEMORY_BUFFER_ALLOC_C)
1298 #if defined(POLARSSL_MEMORY_DEBUG)
1299 memory_buffer_alloc_status();
1301 memory_buffer_alloc_free();
1304 return( total_errors != 0 );
int cipher_finish(cipher_context_t *ctx, unsigned char *output, size_t *olen)
Generic cipher finalisation function.
Info structure for the pseudo random function.
int cipher_write_tag(cipher_context_t *ctx, unsigned char *tag, size_t tag_len)
Write tag for AEAD ciphers.
const cipher_info_t * cipher_info_from_type(const cipher_type_t cipher_type)
Returns the cipher information structure associated with the given cipher type.
static unsigned int cipher_get_block_size(const cipher_context_t *ctx)
Returns the block size of the given cipher.
const cipher_info_t * cipher_info_from_string(const char *cipher_name)
Returns the cipher information structure associated with the given cipher name.
static int rnd_std_rand(void *rng_state, unsigned char *output, size_t len)
This function just returns data from rand().
int(* get_padding)(unsigned char *input, size_t ilen, size_t *data_len)
static int rnd_pseudo_rand(void *rng_state, unsigned char *output, size_t len)
This function returns random based on a pseudo random function.
Configuration options (set of defines)
static int test_assert(int correct, char *test)
#define PUT_UINT32_BE(n, b, i)
int main(int argc, char *argv[])
Multi-precision integer library.
const cipher_info_t * cipher_info
Information about the associated cipher.
#define TEST_ASSERT(TEST)
int cipher_free_ctx(cipher_context_t *ctx)
Free the cipher-specific context of ctx.
int cipher_update_ad(cipher_context_t *ctx, const unsigned char *ad, size_t ad_len)
Add additional data (for AEAD ciphers).
int cipher_set_iv(cipher_context_t *ctx, const unsigned char *iv, size_t iv_len)
Set the initialization vector (IV) or nonce.
int cipher_update(cipher_context_t *ctx, const unsigned char *input, size_t ilen, unsigned char *output, size_t *olen)
Generic cipher update function.
#define POLARSSL_ERR_CIPHER_FULL_BLOCK_EXPECTED
Decryption of block requires a full block.
static void hexify(unsigned char *obuf, const unsigned char *ibuf, int len)
int parse_arguments(char *buf, size_t len, char *params[50])
int cipher_reset(cipher_context_t *ctx)
Finish preparation of the given context.
int cipher_set_padding_mode(cipher_context_t *ctx, cipher_padding_t mode)
Set padding mode, for cipher modes that use padding.
cipher_mode_t mode
Cipher mode (e.g.
int mpi_read_string(mpi *X, int radix, const char *s)
Import from an ASCII string.
int cipher_init_ctx(cipher_context_t *ctx, const cipher_info_t *cipher_info)
Initialises and fills the cipher context structure with the appropriate values.
int cipher_setkey(cipher_context_t *ctx, const unsigned char *key, int key_length, const operation_t operation)
Set the key to use with the given context.
int verify_string(char **str)
static int rnd_buffer_rand(void *rng_state, unsigned char *output, size_t len)
This function returns random based on a buffer it receives.
int dispatch_test(int cnt, char *params[50])
Galois/Counter mode for 128-bit block ciphers.
static int rnd_zero_rand(void *rng_state, unsigned char *output, size_t len)
This function only returns zeros.
static int unhexify(unsigned char *obuf, const char *ibuf)
int verify_int(char *str, int *value)
int cipher_self_test(int verbose)
Checkup routine.
int cipher_check_tag(cipher_context_t *ctx, const unsigned char *tag, size_t tag_len)
Check tag for AEAD ciphers.
int get_line(FILE *f, char *buf, size_t len)