TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / OP-TEE / optee_test / 1399f0d536f891e28aa82f024cb15b2e28ee7431^! / .
commit1399f0d536f891e28aa82f024cb15b2e28ee7431[log] [tgz]
authorEtienne Carriere <etienne.carriere@linaro.org>Tue Oct 05 14:08:15 2021 +0200
committerJérôme Forissier <jerome@forissier.org>Tue Oct 05 16:40:18 2021 +0200
tree25a8fee0ef415cdb8cb7ce1bb41890a94549f2c1
parentbcedd371382a0a1f8e3c07aee9c901b437feb714 [diff]
pkcs11 1010: Fix generic secret key test

Fix generic secret key test corrupted by commit [1] that changed
cktest_mac_cases[] first cell and made an AES_CMAC operation used by test
pcsk11_ to sign data with a generic secret key which is not allowed.
Let's define defining specific test data for pkcs11_1010 rather than
reuse cktest_mac_cases[] content which is dedicated to HMAC tests
(pkcs11_1008) and CMAC tests (pkcs11_1009).

Fixes: [1] da1e3aaa8e0f ("xtest: pkcs11: Add tests for AES CMAC mechanisms")
Signed-off-by: Etienne Carriere <etienne.carriere@linaro.org>
Acked-by: Jerome Forissier <jerome@forissier.org>
Tested-by: Jerome Forissier <jerome@forissier.org> (vexpress-qemu_armv8a)

diff --git a/host/xtest/pkcs11_1000.c b/host/xtest/pkcs11_1000.c
index 920e3d3..e6188e3 100644
--- a/host/xtest/pkcs11_1000.c
+++ b/host/xtest/pkcs11_1000.c

@@ -2207,7 +2207,10 @@
 	CK_SESSION_HANDLE session = CK_INVALID_HANDLE;
 	CK_FLAGS session_flags = CKF_SERIAL_SESSION | CKF_RW_SESSION;
 	CK_OBJECT_HANDLE key_handle = CK_INVALID_HANDLE;
-	struct mac_test const *test = &cktest_mac_cases[0];
+	struct mac_test test_sign = CKTEST_MAC_TEST(cktest_hmac_md5_key,
+						    &cktest_hmac_md5_mechanism,
+						    4, mac_data_md5_in1,
+						    mac_data_md5_out1, false);
 	uint8_t out[512] = { 0 };
 	CK_ULONG out_len = 512;
 
@@ -2295,12 +2298,12 @@
 	if (!ADBG_EXPECT_CK_OK(c, rv))
 		goto err;
 
-	rv = C_SignInit(session, test->mechanism, key_handle);
+	rv = C_SignInit(session, test_sign.mechanism, key_handle);
 	if (!ADBG_EXPECT_CK_OK(c, rv))
 		goto err_destr_obj;
 
-	rv = C_Sign(session, (void *)test->in, test->in_len,
-		      (void *)out, &out_len);
+	rv = C_Sign(session, (void *)test_sign.in, test_sign.in_len,
+		    (void *)out, &out_len);
 	if (!ADBG_EXPECT_CK_OK(c, rv))
 		goto err_destr_obj;