TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / f3df5b85529919f1f93181517d5434ce99b45c6e^! / .
commitf3df5b85529919f1f93181517d5434ce99b45c6e[log] [tgz]
authorJaeden Amero <jaeden.amero@arm.com>Fri Apr 05 14:17:08 2019 +0100
committerJaeden Amero <jaeden.amero@arm.com>Fri Apr 05 14:17:08 2019 +0100
tree196705d000f1ccea327ed221255befdf9a600033
parent99b679f3640aa93e83025f29cfff6e51c3933726 [diff]
parentb17537558a3e3338c9286705f73a00b979a5ed86 [diff]
Merge remote-tracking branch 'origin/pr/2519' into mbedtls-2.7

* origin/pr/2519:
  Fix errors in AEAD test function

diff --git a/ChangeLog b/ChangeLog
index 9d963c0..29f5673 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -25,6 +25,9 @@
      Junhwan Park, #2106.
    * Fix 1-byte buffer overflow in mbedtls_mpi_write_string() when
      used with negative inputs. Found by Guido Vranken in #2404.
+   * Fix bugs in the AEAD test suite which would be exposed by ciphers which
+     either used both encrypt and decrypt key schedules, or which perform padding.
+     GCM and CCM were not affected. Fixed by Jack Lloyd.
 
 Changes
    * Return from various debugging routines immediately if the

diff --git a/tests/suites/test_suite_cipher.function b/tests/suites/test_suite_cipher.function
index 343dd78..2518ba5 100644
--- a/tests/suites/test_suite_cipher.function
+++ b/tests/suites/test_suite_cipher.function

@@ -627,6 +627,9 @@
     TEST_ASSERT( memcmp( output, clear, clear_len ) == 0 );
 
     /* then encrypt the clear and make sure we get the same ciphertext and tag */
+    TEST_ASSERT( 0 == mbedtls_cipher_setkey( &ctx, key, 8 * key_len,
+                                             MBEDTLS_ENCRYPT ) );
+
     memset( output, 0xFF, sizeof( output ) );
     outlen = 0;
 
@@ -635,8 +638,8 @@
                                my_tag, tag_len );
     TEST_ASSERT( ret == 0 );
 
-    TEST_ASSERT( outlen == clear_len );
-    TEST_ASSERT( memcmp( output, cipher, clear_len ) == 0 );
+    TEST_ASSERT( outlen == cipher_len );
+    TEST_ASSERT( memcmp( output, cipher, cipher_len ) == 0 );
     TEST_ASSERT( memcmp( my_tag, tag, tag_len ) == 0 );
 
     /* make sure we didn't overwrite */