| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 1 | #!/usr/bin/env python3 | 
|  | 2 |  | 
|  | 3 | """Analyze the test outcomes from a full CI run. | 
|  | 4 |  | 
|  | 5 | This script can also run on outcomes from a partial run, but the results are | 
|  | 6 | less likely to be useful. | 
|  | 7 | """ | 
|  | 8 |  | 
|  | 9 | import argparse | 
|  | 10 | import sys | 
|  | 11 | import traceback | 
| Przemek Stekiel | 85c54ea | 2022-11-17 11:50:23 +0100 | [diff] [blame] | 12 | import re | 
| Valerio Setti | a266332 | 2023-03-24 08:20:18 +0100 | [diff] [blame] | 13 | import subprocess | 
|  | 14 | import os | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 15 |  | 
| Gilles Peskine | 8d3c70a | 2020-06-25 18:37:43 +0200 | [diff] [blame] | 16 | import check_test_cases | 
|  | 17 |  | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 18 | class Results: | 
|  | 19 | """Process analysis results.""" | 
|  | 20 |  | 
|  | 21 | def __init__(self): | 
|  | 22 | self.error_count = 0 | 
|  | 23 | self.warning_count = 0 | 
|  | 24 |  | 
|  | 25 | @staticmethod | 
|  | 26 | def log(fmt, *args, **kwargs): | 
|  | 27 | sys.stderr.write((fmt + '\n').format(*args, **kwargs)) | 
|  | 28 |  | 
|  | 29 | def error(self, fmt, *args, **kwargs): | 
|  | 30 | self.log('Error: ' + fmt, *args, **kwargs) | 
|  | 31 | self.error_count += 1 | 
|  | 32 |  | 
|  | 33 | def warning(self, fmt, *args, **kwargs): | 
|  | 34 | self.log('Warning: ' + fmt, *args, **kwargs) | 
|  | 35 | self.warning_count += 1 | 
|  | 36 |  | 
|  | 37 | class TestCaseOutcomes: | 
|  | 38 | """The outcomes of one test case across many configurations.""" | 
|  | 39 | # pylint: disable=too-few-public-methods | 
|  | 40 |  | 
|  | 41 | def __init__(self): | 
| Gilles Peskine | 3d863f2 | 2020-06-26 13:02:30 +0200 | [diff] [blame] | 42 | # Collect a list of witnesses of the test case succeeding or failing. | 
|  | 43 | # Currently we don't do anything with witnesses except count them. | 
|  | 44 | # The format of a witness is determined by the read_outcome_file | 
|  | 45 | # function; it's the platform and configuration joined by ';'. | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 46 | self.successes = [] | 
|  | 47 | self.failures = [] | 
|  | 48 |  | 
|  | 49 | def hits(self): | 
|  | 50 | """Return the number of times a test case has been run. | 
|  | 51 |  | 
|  | 52 | This includes passes and failures, but not skips. | 
|  | 53 | """ | 
|  | 54 | return len(self.successes) + len(self.failures) | 
|  | 55 |  | 
| Valerio Setti | a266332 | 2023-03-24 08:20:18 +0100 | [diff] [blame] | 56 | def execute_reference_driver_tests(ref_component, driver_component, outcome_file): | 
| Valerio Setti | 22992a0 | 2023-03-29 11:15:28 +0200 | [diff] [blame] | 57 | """Run the tests specified in ref_component and driver_component. Results | 
|  | 58 | are stored in the output_file and they will be used for the following | 
| Valerio Setti | a266332 | 2023-03-24 08:20:18 +0100 | [diff] [blame] | 59 | coverage analysis""" | 
|  | 60 | # If the outcome file already exists, we assume that the user wants to | 
|  | 61 | # perform the comparison analysis again without repeating the tests. | 
|  | 62 | if os.path.exists(outcome_file): | 
|  | 63 | Results.log("Outcome file (" + outcome_file + ") already exists. " + \ | 
|  | 64 | "Tests will be skipped.") | 
|  | 65 | return | 
|  | 66 |  | 
|  | 67 | shell_command = "tests/scripts/all.sh --outcome-file " + outcome_file + \ | 
|  | 68 | " " + ref_component + " " + driver_component | 
| Valerio Setti | f109c66 | 2023-03-29 11:15:44 +0200 | [diff] [blame] | 69 | Results.log("Running: " + shell_command) | 
| Valerio Setti | a266332 | 2023-03-24 08:20:18 +0100 | [diff] [blame] | 70 | ret_val = subprocess.run(shell_command.split(), check=False).returncode | 
|  | 71 |  | 
|  | 72 | if ret_val != 0: | 
|  | 73 | Results.log("Error: failed to run reference/driver components") | 
|  | 74 | sys.exit(ret_val) | 
|  | 75 |  | 
| Tomás González | b401e11 | 2023-08-11 15:22:04 +0100 | [diff] [blame] | 76 | def analyze_coverage(results, outcomes, allow_list, full_coverage): | 
| Gilles Peskine | 8d3c70a | 2020-06-25 18:37:43 +0200 | [diff] [blame] | 77 | """Check that all available test cases are executed at least once.""" | 
| Gilles Peskine | 686c292 | 2022-01-07 15:58:38 +0100 | [diff] [blame] | 78 | available = check_test_cases.collect_available_test_cases() | 
| Gilles Peskine | 8d3c70a | 2020-06-25 18:37:43 +0200 | [diff] [blame] | 79 | for key in available: | 
|  | 80 | hits = outcomes[key].hits() if key in outcomes else 0 | 
| Tomás González | 07bdcc2 | 2023-08-11 14:59:03 +0100 | [diff] [blame] | 81 | if hits == 0 and key not in allow_list: | 
| Tomás González | b401e11 | 2023-08-11 15:22:04 +0100 | [diff] [blame] | 82 | if full_coverage: | 
|  | 83 | results.error('Test case not executed: {}', key) | 
|  | 84 | else: | 
|  | 85 | results.warning('Test case not executed: {}', key) | 
| Tomás González | 07bdcc2 | 2023-08-11 14:59:03 +0100 | [diff] [blame] | 86 | elif hits != 0 and key in allow_list: | 
|  | 87 | # Test Case should be removed from the allow list. | 
| Tomás González | 7ebb18f | 2023-08-22 09:40:23 +0100 | [diff] [blame] | 88 | if full_coverage: | 
| Tomás González | a063144 | 2023-08-22 12:17:57 +0100 | [diff] [blame] | 89 | results.error('Allow listed test case was executed: {}', key) | 
| Tomás González | 7ebb18f | 2023-08-22 09:40:23 +0100 | [diff] [blame] | 90 | else: | 
|  | 91 | results.warning('Allow listed test case was executed: {}', key) | 
| Gilles Peskine | 8d3c70a | 2020-06-25 18:37:43 +0200 | [diff] [blame] | 92 |  | 
| Valerio Setti | 3002c99 | 2023-01-18 17:28:36 +0100 | [diff] [blame] | 93 | def analyze_driver_vs_reference(outcomes, component_ref, component_driver, | 
|  | 94 | ignored_suites, ignored_test=None): | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 95 | """Check that all tests executed in the reference component are also | 
|  | 96 | executed in the corresponding driver component. | 
| Valerio Setti | 3002c99 | 2023-01-18 17:28:36 +0100 | [diff] [blame] | 97 | Skip: | 
|  | 98 | - full test suites provided in ignored_suites list | 
|  | 99 | - only some specific test inside a test suite, for which the corresponding | 
|  | 100 | output string is provided | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 101 | """ | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 102 | available = check_test_cases.collect_available_test_cases() | 
|  | 103 | result = True | 
|  | 104 |  | 
|  | 105 | for key in available: | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 106 | # Continue if test was not executed by any component | 
|  | 107 | hits = outcomes[key].hits() if key in outcomes else 0 | 
| Przemek Stekiel | c86dedf | 2022-10-24 09:16:04 +0200 | [diff] [blame] | 108 | if hits == 0: | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 109 | continue | 
| Valerio Setti | 00c1ccb | 2023-02-02 11:33:31 +0100 | [diff] [blame] | 110 | # Skip ignored test suites | 
|  | 111 | full_test_suite = key.split(';')[0] # retrieve full test suite name | 
|  | 112 | test_string = key.split(';')[1] # retrieve the text string of this test | 
|  | 113 | test_suite = full_test_suite.split('.')[0] # retrieve main part of test suite name | 
| Manuel Pégourié-Gonnard | 7d381f5 | 2023-03-17 15:13:08 +0100 | [diff] [blame] | 114 | if test_suite in ignored_suites or full_test_suite in ignored_suites: | 
| Valerio Setti | 00c1ccb | 2023-02-02 11:33:31 +0100 | [diff] [blame] | 115 | continue | 
| Valerio Setti | 3002c99 | 2023-01-18 17:28:36 +0100 | [diff] [blame] | 116 | if ((full_test_suite in ignored_test) and | 
|  | 117 | (test_string in ignored_test[full_test_suite])): | 
|  | 118 | continue | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 119 | # Search for tests that run in reference component and not in driver component | 
|  | 120 | driver_test_passed = False | 
|  | 121 | reference_test_passed = False | 
|  | 122 | for entry in outcomes[key].successes: | 
| Przemek Stekiel | 51f30ff | 2022-11-09 12:07:29 +0100 | [diff] [blame] | 123 | if component_driver in entry: | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 124 | driver_test_passed = True | 
| Przemek Stekiel | 51f30ff | 2022-11-09 12:07:29 +0100 | [diff] [blame] | 125 | if component_ref in entry: | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 126 | reference_test_passed = True | 
| Manuel Pégourié-Gonnard | c6967d2 | 2022-12-30 13:40:34 +0100 | [diff] [blame] | 127 | if(reference_test_passed and not driver_test_passed): | 
| Valerio Setti | 3951d1b | 2023-03-13 18:37:34 +0100 | [diff] [blame] | 128 | Results.log(key) | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 129 | result = False | 
|  | 130 | return result | 
|  | 131 |  | 
| Tomás González | b401e11 | 2023-08-11 15:22:04 +0100 | [diff] [blame] | 132 | def analyze_outcomes(outcomes, args): | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 133 | """Run all analyses on the given outcome collection.""" | 
|  | 134 | results = Results() | 
| Tomás González | b401e11 | 2023-08-11 15:22:04 +0100 | [diff] [blame] | 135 | analyze_coverage(results, outcomes, args['allow_list'], | 
|  | 136 | args['full_coverage']) | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 137 | return results | 
|  | 138 |  | 
|  | 139 | def read_outcome_file(outcome_file): | 
|  | 140 | """Parse an outcome file and return an outcome collection. | 
|  | 141 |  | 
|  | 142 | An outcome collection is a dictionary mapping keys to TestCaseOutcomes objects. | 
|  | 143 | The keys are the test suite name and the test case description, separated | 
|  | 144 | by a semicolon. | 
|  | 145 | """ | 
|  | 146 | outcomes = {} | 
|  | 147 | with open(outcome_file, 'r', encoding='utf-8') as input_file: | 
|  | 148 | for line in input_file: | 
|  | 149 | (platform, config, suite, case, result, _cause) = line.split(';') | 
|  | 150 | key = ';'.join([suite, case]) | 
|  | 151 | setup = ';'.join([platform, config]) | 
|  | 152 | if key not in outcomes: | 
|  | 153 | outcomes[key] = TestCaseOutcomes() | 
|  | 154 | if result == 'PASS': | 
|  | 155 | outcomes[key].successes.append(setup) | 
|  | 156 | elif result == 'FAIL': | 
|  | 157 | outcomes[key].failures.append(setup) | 
|  | 158 | return outcomes | 
|  | 159 |  | 
| Przemek Stekiel | 4d13c83 | 2022-10-26 16:11:26 +0200 | [diff] [blame] | 160 | def do_analyze_coverage(outcome_file, args): | 
| Przemek Stekiel | 6856f4c | 2022-11-09 10:50:29 +0100 | [diff] [blame] | 161 | """Perform coverage analysis.""" | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 162 | outcomes = read_outcome_file(outcome_file) | 
| Valerio Setti | 3951d1b | 2023-03-13 18:37:34 +0100 | [diff] [blame] | 163 | Results.log("\n*** Analyze coverage ***\n") | 
| Tomás González | b401e11 | 2023-08-11 15:22:04 +0100 | [diff] [blame] | 164 | results = analyze_outcomes(outcomes, args) | 
| Przemek Stekiel | c86dedf | 2022-10-24 09:16:04 +0200 | [diff] [blame] | 165 | return results.error_count == 0 | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 166 |  | 
| Przemek Stekiel | 4d13c83 | 2022-10-26 16:11:26 +0200 | [diff] [blame] | 167 | def do_analyze_driver_vs_reference(outcome_file, args): | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 168 | """Perform driver vs reference analyze.""" | 
| Valerio Setti | a266332 | 2023-03-24 08:20:18 +0100 | [diff] [blame] | 169 | execute_reference_driver_tests(args['component_ref'], \ | 
|  | 170 | args['component_driver'], outcome_file) | 
|  | 171 |  | 
| Valerio Setti | 3002c99 | 2023-01-18 17:28:36 +0100 | [diff] [blame] | 172 | ignored_suites = ['test_suite_' + x for x in args['ignored_suites']] | 
| Przemek Stekiel | 51f30ff | 2022-11-09 12:07:29 +0100 | [diff] [blame] | 173 |  | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 174 | outcomes = read_outcome_file(outcome_file) | 
| Valerio Setti | 3951d1b | 2023-03-13 18:37:34 +0100 | [diff] [blame] | 175 | Results.log("\n*** Analyze driver {} vs reference {} ***\n".format( | 
| Manuel Pégourié-Gonnard | c6967d2 | 2022-12-30 13:40:34 +0100 | [diff] [blame] | 176 | args['component_driver'], args['component_ref'])) | 
| Przemek Stekiel | 51f30ff | 2022-11-09 12:07:29 +0100 | [diff] [blame] | 177 | return analyze_driver_vs_reference(outcomes, args['component_ref'], | 
| Valerio Setti | 3002c99 | 2023-01-18 17:28:36 +0100 | [diff] [blame] | 178 | args['component_driver'], ignored_suites, | 
|  | 179 | args['ignored_tests']) | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 180 |  | 
| Przemek Stekiel | 6856f4c | 2022-11-09 10:50:29 +0100 | [diff] [blame] | 181 | # List of tasks with a function that can handle this task and additional arguments if required | 
| Przemek Stekiel | 4d13c83 | 2022-10-26 16:11:26 +0200 | [diff] [blame] | 182 | TASKS = { | 
|  | 183 | 'analyze_coverage':                 { | 
|  | 184 | 'test_function': do_analyze_coverage, | 
| Tomás González | 07bdcc2 | 2023-08-11 14:59:03 +0100 | [diff] [blame] | 185 | 'args': { | 
| Tomás González | 358c6c6 | 2023-08-14 15:43:46 +0100 | [diff] [blame] | 186 | 'allow_list': [ | 
| Tomás González | 5022311 | 2023-08-22 09:52:06 +0100 | [diff] [blame] | 187 | # Algorithm not supported yet | 
|  | 188 | 'test_suite_psa_crypto_metadata;Asymmetric signature: pure EdDSA', | 
|  | 189 | # Algorithm not supported yet | 
|  | 190 | 'test_suite_psa_crypto_metadata;Cipher: XTS', | 
| Tomás González | d43cab3 | 2023-08-24 09:12:40 +0100 | [diff] [blame] | 191 | ], | 
| Tomás González | b401e11 | 2023-08-11 15:22:04 +0100 | [diff] [blame] | 192 | 'full_coverage': False, | 
| Tomás González | 07bdcc2 | 2023-08-11 14:59:03 +0100 | [diff] [blame] | 193 | } | 
| Tomás González | d43cab3 | 2023-08-24 09:12:40 +0100 | [diff] [blame] | 194 | }, | 
| Valerio Setti | a266332 | 2023-03-24 08:20:18 +0100 | [diff] [blame] | 195 | # There are 2 options to use analyze_driver_vs_reference_xxx locally: | 
|  | 196 | # 1. Run tests and then analysis: | 
|  | 197 | #   - tests/scripts/all.sh --outcome-file "$PWD/out.csv" <component_ref> <component_driver> | 
|  | 198 | #   - tests/scripts/analyze_outcomes.py out.csv analyze_driver_vs_reference_xxx | 
|  | 199 | # 2. Let this script run both automatically: | 
|  | 200 | #   - tests/scripts/analyze_outcomes.py out.csv analyze_driver_vs_reference_xxx | 
| Przemek Stekiel | 4d13c83 | 2022-10-26 16:11:26 +0200 | [diff] [blame] | 201 | 'analyze_driver_vs_reference_hash': { | 
|  | 202 | 'test_function': do_analyze_driver_vs_reference, | 
|  | 203 | 'args': { | 
| Przemek Stekiel | 51f30ff | 2022-11-09 12:07:29 +0100 | [diff] [blame] | 204 | 'component_ref': 'test_psa_crypto_config_reference_hash_use_psa', | 
|  | 205 | 'component_driver': 'test_psa_crypto_config_accel_hash_use_psa', | 
| Manuel Pégourié-Gonnard | 10e3963 | 2022-12-29 12:29:09 +0100 | [diff] [blame] | 206 | 'ignored_suites': [ | 
|  | 207 | 'shax', 'mdx', # the software implementations that are being excluded | 
| Manuel Pégourié-Gonnard | 7d381f5 | 2023-03-17 15:13:08 +0100 | [diff] [blame] | 208 | 'md.psa',  # purposefully depends on whether drivers are present | 
| Valerio Setti | 3002c99 | 2023-01-18 17:28:36 +0100 | [diff] [blame] | 209 | ], | 
|  | 210 | 'ignored_tests': { | 
|  | 211 | } | 
|  | 212 | } | 
|  | 213 | }, | 
| Valerio Setti | 4d25a8d | 2023-06-14 10:33:10 +0200 | [diff] [blame] | 214 | 'analyze_driver_vs_reference_ecp_light_only': { | 
| Valerio Setti | 42d5f19 | 2023-03-20 13:54:41 +0100 | [diff] [blame] | 215 | 'test_function': do_analyze_driver_vs_reference, | 
|  | 216 | 'args': { | 
| Valerio Setti | 4d25a8d | 2023-06-14 10:33:10 +0200 | [diff] [blame] | 217 | 'component_ref': 'test_psa_crypto_config_reference_ecc_ecp_light_only', | 
|  | 218 | 'component_driver': 'test_psa_crypto_config_accel_ecc_ecp_light_only', | 
| Valerio Setti | 42d5f19 | 2023-03-20 13:54:41 +0100 | [diff] [blame] | 219 | 'ignored_suites': [ | 
|  | 220 | 'ecdsa', | 
|  | 221 | 'ecdh', | 
|  | 222 | 'ecjpake', | 
|  | 223 | ], | 
|  | 224 | 'ignored_tests': { | 
|  | 225 | 'test_suite_random': [ | 
|  | 226 | 'PSA classic wrapper: ECDSA signature (SECP256R1)', | 
|  | 227 | ], | 
| Valerio Setti | 0c477d3 | 2023-04-07 15:54:20 +0200 | [diff] [blame] | 228 | # In the accelerated test ECP_C is not set (only ECP_LIGHT is) | 
|  | 229 | # so we must ignore disparities in the tests for which ECP_C | 
|  | 230 | # is required. | 
|  | 231 | 'test_suite_ecp': [ | 
|  | 232 | 'ECP check public-private #1 (OK)', | 
|  | 233 | 'ECP check public-private #2 (group none)', | 
|  | 234 | 'ECP check public-private #3 (group mismatch)', | 
|  | 235 | 'ECP check public-private #4 (Qx mismatch)', | 
|  | 236 | 'ECP check public-private #5 (Qy mismatch)', | 
|  | 237 | 'ECP check public-private #6 (wrong Qx)', | 
|  | 238 | 'ECP check public-private #7 (wrong Qy)', | 
|  | 239 | 'ECP gen keypair [#1]', | 
|  | 240 | 'ECP gen keypair [#2]', | 
|  | 241 | 'ECP gen keypair [#3]', | 
|  | 242 | 'ECP gen keypair wrapper', | 
|  | 243 | 'ECP point muladd secp256r1 #1', | 
|  | 244 | 'ECP point muladd secp256r1 #2', | 
|  | 245 | 'ECP point multiplication Curve25519 (element of order 2: origin) #3', | 
|  | 246 | 'ECP point multiplication Curve25519 (element of order 4: 1) #4', | 
|  | 247 | 'ECP point multiplication Curve25519 (element of order 8) #5', | 
|  | 248 | 'ECP point multiplication Curve25519 (normalized) #1', | 
|  | 249 | 'ECP point multiplication Curve25519 (not normalized) #2', | 
|  | 250 | 'ECP point multiplication rng fail Curve25519', | 
|  | 251 | 'ECP point multiplication rng fail secp256r1', | 
|  | 252 | 'ECP test vectors Curve25519', | 
|  | 253 | 'ECP test vectors Curve448 (RFC 7748 6.2, after decodeUCoordinate)', | 
|  | 254 | 'ECP test vectors brainpoolP256r1 rfc 7027', | 
|  | 255 | 'ECP test vectors brainpoolP384r1 rfc 7027', | 
|  | 256 | 'ECP test vectors brainpoolP512r1 rfc 7027', | 
|  | 257 | 'ECP test vectors secp192k1', | 
|  | 258 | 'ECP test vectors secp192r1 rfc 5114', | 
|  | 259 | 'ECP test vectors secp224k1', | 
|  | 260 | 'ECP test vectors secp224r1 rfc 5114', | 
|  | 261 | 'ECP test vectors secp256k1', | 
|  | 262 | 'ECP test vectors secp256r1 rfc 5114', | 
|  | 263 | 'ECP test vectors secp384r1 rfc 5114', | 
|  | 264 | 'ECP test vectors secp521r1 rfc 5114', | 
| Valerio Setti | e50a75f | 2023-05-19 17:43:06 +0200 | [diff] [blame] | 265 | ], | 
| Valerio Setti | 482a0b9 | 2023-08-18 15:55:10 +0200 | [diff] [blame] | 266 | 'test_suite_psa_crypto': [ | 
|  | 267 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1', | 
|  | 268 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1 (1 redraw)', | 
|  | 269 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1, exercise ECDSA', | 
|  | 270 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp384r1', | 
|  | 271 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp521r1 #0', | 
|  | 272 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp521r1 #1', | 
|  | 273 | ], | 
| Manuel Pégourié-Gonnard | f07ce3b | 2023-09-22 11:53:41 +0200 | [diff] [blame] | 274 | 'test_suite_ssl': [ | 
|  | 275 | 'Test configuration of groups for DHE through mbedtls_ssl_conf_curves()', | 
|  | 276 | ], | 
| Valerio Setti | 5f54020 | 2023-06-30 17:20:49 +0200 | [diff] [blame] | 277 | } | 
| Valerio Setti | 42d5f19 | 2023-03-20 13:54:41 +0100 | [diff] [blame] | 278 | } | 
|  | 279 | }, | 
| Valerio Setti | 4d25a8d | 2023-06-14 10:33:10 +0200 | [diff] [blame] | 280 | 'analyze_driver_vs_reference_no_ecp_at_all': { | 
| Valerio Setti | e618cb0 | 2023-04-12 14:59:16 +0200 | [diff] [blame] | 281 | 'test_function': do_analyze_driver_vs_reference, | 
|  | 282 | 'args': { | 
| Valerio Setti | 4d25a8d | 2023-06-14 10:33:10 +0200 | [diff] [blame] | 283 | 'component_ref': 'test_psa_crypto_config_reference_ecc_no_ecp_at_all', | 
|  | 284 | 'component_driver': 'test_psa_crypto_config_accel_ecc_no_ecp_at_all', | 
| Valerio Setti | e618cb0 | 2023-04-12 14:59:16 +0200 | [diff] [blame] | 285 | 'ignored_suites': [ | 
|  | 286 | # Ignore test suites for the modules that are disabled in the | 
|  | 287 | # accelerated test case. | 
|  | 288 | 'ecp', | 
|  | 289 | 'ecdsa', | 
|  | 290 | 'ecdh', | 
|  | 291 | 'ecjpake', | 
|  | 292 | ], | 
|  | 293 | 'ignored_tests': { | 
|  | 294 | 'test_suite_random': [ | 
|  | 295 | 'PSA classic wrapper: ECDSA signature (SECP256R1)', | 
|  | 296 | ], | 
|  | 297 | 'test_suite_psa_crypto': [ | 
|  | 298 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1', | 
|  | 299 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1 (1 redraw)', | 
|  | 300 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1, exercise ECDSA', | 
|  | 301 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp384r1', | 
|  | 302 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp521r1 #0', | 
|  | 303 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp521r1 #1', | 
|  | 304 | 'PSA key derivation: bits=7 invalid for ECC BRAINPOOL_P_R1 (ECC enabled)', | 
|  | 305 | 'PSA key derivation: bits=7 invalid for ECC SECP_K1 (ECC enabled)', | 
|  | 306 | 'PSA key derivation: bits=7 invalid for ECC SECP_R1 (ECC enabled)', | 
|  | 307 | 'PSA key derivation: bits=7 invalid for ECC SECP_R2 (ECC enabled)', | 
|  | 308 | 'PSA key derivation: bits=7 invalid for ECC SECT_K1 (ECC enabled)', | 
|  | 309 | 'PSA key derivation: bits=7 invalid for ECC SECT_R1 (ECC enabled)', | 
|  | 310 | 'PSA key derivation: bits=7 invalid for ECC SECT_R2 (ECC enabled)', | 
| Valerio Setti | addeee4 | 2023-06-14 10:46:55 +0200 | [diff] [blame] | 311 | ], | 
|  | 312 | 'test_suite_pkparse': [ | 
| Valerio Setti | 5bd2523 | 2023-06-19 19:32:14 +0200 | [diff] [blame] | 313 | # When PK_PARSE_C and ECP_C are defined then PK_PARSE_EC_COMPRESSED | 
|  | 314 | # is automatically enabled in build_info.h (backward compatibility) | 
|  | 315 | # even if it is disabled in config_psa_crypto_no_ecp_at_all(). As a | 
|  | 316 | # consequence compressed points are supported in the reference | 
|  | 317 | # component but not in the accelerated one, so they should be skipped | 
|  | 318 | # while checking driver's coverage. | 
|  | 319 | 'Parse EC Key #10a (SEC1 PEM, secp384r1, compressed)', | 
|  | 320 | 'Parse EC Key #11a (SEC1 PEM, secp521r1, compressed)', | 
|  | 321 | 'Parse EC Key #12a (SEC1 PEM, bp256r1, compressed)', | 
|  | 322 | 'Parse EC Key #13a (SEC1 PEM, bp384r1, compressed)', | 
|  | 323 | 'Parse EC Key #14a (SEC1 PEM, bp512r1, compressed)', | 
|  | 324 | 'Parse EC Key #2a (SEC1 PEM, secp192r1, compressed)', | 
|  | 325 | 'Parse EC Key #8a (SEC1 PEM, secp224r1, compressed)', | 
|  | 326 | 'Parse EC Key #9a (SEC1 PEM, secp256r1, compressed)', | 
|  | 327 | 'Parse Public EC Key #2a (RFC 5480, PEM, secp192r1, compressed)', | 
|  | 328 | 'Parse Public EC Key #3a (RFC 5480, secp224r1, compressed)', | 
|  | 329 | 'Parse Public EC Key #4a (RFC 5480, secp256r1, compressed)', | 
|  | 330 | 'Parse Public EC Key #5a (RFC 5480, secp384r1, compressed)', | 
|  | 331 | 'Parse Public EC Key #6a (RFC 5480, secp521r1, compressed)', | 
|  | 332 | 'Parse Public EC Key #7a (RFC 5480, brainpoolP256r1, compressed)', | 
|  | 333 | 'Parse Public EC Key #8a (RFC 5480, brainpoolP384r1, compressed)', | 
|  | 334 | 'Parse Public EC Key #9a (RFC 5480, brainpoolP512r1, compressed)', | 
| Valerio Setti | addeee4 | 2023-06-14 10:46:55 +0200 | [diff] [blame] | 335 | ], | 
| Manuel Pégourié-Gonnard | f07ce3b | 2023-09-22 11:53:41 +0200 | [diff] [blame] | 336 | 'test_suite_ssl': [ | 
|  | 337 | 'Test configuration of groups for DHE through mbedtls_ssl_conf_curves()', | 
|  | 338 | ], | 
| Valerio Setti | e618cb0 | 2023-04-12 14:59:16 +0200 | [diff] [blame] | 339 | } | 
|  | 340 | } | 
|  | 341 | }, | 
| Valerio Setti | 307810b | 2023-08-15 10:12:25 +0200 | [diff] [blame] | 342 | 'analyze_driver_vs_reference_ecc_no_bignum': { | 
| Manuel Pégourié-Gonnard | abd00d0 | 2023-06-12 17:51:33 +0200 | [diff] [blame] | 343 | 'test_function': do_analyze_driver_vs_reference, | 
|  | 344 | 'args': { | 
|  | 345 | 'component_ref': 'test_psa_crypto_config_reference_ecc_no_bignum', | 
|  | 346 | 'component_driver': 'test_psa_crypto_config_accel_ecc_no_bignum', | 
|  | 347 | 'ignored_suites': [ | 
|  | 348 | # Ignore test suites for the modules that are disabled in the | 
|  | 349 | # accelerated test case. | 
|  | 350 | 'ecp', | 
|  | 351 | 'ecdsa', | 
|  | 352 | 'ecdh', | 
|  | 353 | 'ecjpake', | 
| Valerio Setti | 9b3dbcc | 2023-07-26 18:00:31 +0200 | [diff] [blame] | 354 | 'bignum_core', | 
|  | 355 | 'bignum_random', | 
|  | 356 | 'bignum_mod', | 
|  | 357 | 'bignum_mod_raw', | 
|  | 358 | 'bignum.generated', | 
|  | 359 | 'bignum.misc', | 
| Manuel Pégourié-Gonnard | abd00d0 | 2023-06-12 17:51:33 +0200 | [diff] [blame] | 360 | ], | 
|  | 361 | 'ignored_tests': { | 
|  | 362 | 'test_suite_random': [ | 
|  | 363 | 'PSA classic wrapper: ECDSA signature (SECP256R1)', | 
|  | 364 | ], | 
|  | 365 | 'test_suite_psa_crypto': [ | 
|  | 366 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1', | 
|  | 367 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1 (1 redraw)', | 
|  | 368 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1, exercise ECDSA', | 
|  | 369 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp384r1', | 
|  | 370 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp521r1 #0', | 
|  | 371 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp521r1 #1', | 
|  | 372 | 'PSA key derivation: bits=7 invalid for ECC BRAINPOOL_P_R1 (ECC enabled)', | 
|  | 373 | 'PSA key derivation: bits=7 invalid for ECC SECP_K1 (ECC enabled)', | 
|  | 374 | 'PSA key derivation: bits=7 invalid for ECC SECP_R1 (ECC enabled)', | 
|  | 375 | 'PSA key derivation: bits=7 invalid for ECC SECP_R2 (ECC enabled)', | 
|  | 376 | 'PSA key derivation: bits=7 invalid for ECC SECT_K1 (ECC enabled)', | 
|  | 377 | 'PSA key derivation: bits=7 invalid for ECC SECT_R1 (ECC enabled)', | 
|  | 378 | 'PSA key derivation: bits=7 invalid for ECC SECT_R2 (ECC enabled)', | 
|  | 379 | ], | 
|  | 380 | 'test_suite_pkparse': [ | 
|  | 381 | # See the description provided above in the | 
|  | 382 | # analyze_driver_vs_reference_no_ecp_at_all component. | 
|  | 383 | 'Parse EC Key #10a (SEC1 PEM, secp384r1, compressed)', | 
|  | 384 | 'Parse EC Key #11a (SEC1 PEM, secp521r1, compressed)', | 
|  | 385 | 'Parse EC Key #12a (SEC1 PEM, bp256r1, compressed)', | 
|  | 386 | 'Parse EC Key #13a (SEC1 PEM, bp384r1, compressed)', | 
|  | 387 | 'Parse EC Key #14a (SEC1 PEM, bp512r1, compressed)', | 
|  | 388 | 'Parse EC Key #2a (SEC1 PEM, secp192r1, compressed)', | 
|  | 389 | 'Parse EC Key #8a (SEC1 PEM, secp224r1, compressed)', | 
|  | 390 | 'Parse EC Key #9a (SEC1 PEM, secp256r1, compressed)', | 
|  | 391 | 'Parse Public EC Key #2a (RFC 5480, PEM, secp192r1, compressed)', | 
|  | 392 | 'Parse Public EC Key #3a (RFC 5480, secp224r1, compressed)', | 
|  | 393 | 'Parse Public EC Key #4a (RFC 5480, secp256r1, compressed)', | 
|  | 394 | 'Parse Public EC Key #5a (RFC 5480, secp384r1, compressed)', | 
|  | 395 | 'Parse Public EC Key #6a (RFC 5480, secp521r1, compressed)', | 
|  | 396 | 'Parse Public EC Key #7a (RFC 5480, brainpoolP256r1, compressed)', | 
|  | 397 | 'Parse Public EC Key #8a (RFC 5480, brainpoolP384r1, compressed)', | 
|  | 398 | 'Parse Public EC Key #9a (RFC 5480, brainpoolP512r1, compressed)', | 
|  | 399 | ], | 
| Valerio Setti | 9b3dbcc | 2023-07-26 18:00:31 +0200 | [diff] [blame] | 400 | 'test_suite_asn1parse': [ | 
|  | 401 | # This test depends on BIGNUM_C | 
|  | 402 | 'INTEGER too large for mpi', | 
|  | 403 | ], | 
|  | 404 | 'test_suite_asn1write': [ | 
|  | 405 | # Following tests depends on BIGNUM_C | 
|  | 406 | 'ASN.1 Write mpi 0 (1 limb)', | 
|  | 407 | 'ASN.1 Write mpi 0 (null)', | 
|  | 408 | 'ASN.1 Write mpi 0x100', | 
|  | 409 | 'ASN.1 Write mpi 0x7f', | 
|  | 410 | 'ASN.1 Write mpi 0x7f with leading 0 limb', | 
|  | 411 | 'ASN.1 Write mpi 0x80', | 
|  | 412 | 'ASN.1 Write mpi 0x80 with leading 0 limb', | 
|  | 413 | 'ASN.1 Write mpi 0xff', | 
|  | 414 | 'ASN.1 Write mpi 1', | 
|  | 415 | 'ASN.1 Write mpi, 127*8 bits', | 
|  | 416 | 'ASN.1 Write mpi, 127*8+1 bits', | 
|  | 417 | 'ASN.1 Write mpi, 127*8-1 bits', | 
|  | 418 | 'ASN.1 Write mpi, 255*8 bits', | 
|  | 419 | 'ASN.1 Write mpi, 255*8-1 bits', | 
|  | 420 | 'ASN.1 Write mpi, 256*8-1 bits', | 
|  | 421 | ], | 
| Valerio Setti | e0be95e | 2023-08-01 09:07:43 +0200 | [diff] [blame] | 422 | 'test_suite_debug': [ | 
|  | 423 | # Following tests depends on BIGNUM_C | 
|  | 424 | 'Debug print mbedtls_mpi #2: 3 bits', | 
|  | 425 | 'Debug print mbedtls_mpi: 0 (empty representation)', | 
|  | 426 | 'Debug print mbedtls_mpi: 0 (non-empty representation)', | 
|  | 427 | 'Debug print mbedtls_mpi: 49 bits', | 
|  | 428 | 'Debug print mbedtls_mpi: 759 bits', | 
|  | 429 | 'Debug print mbedtls_mpi: 764 bits #1', | 
|  | 430 | 'Debug print mbedtls_mpi: 764 bits #2', | 
|  | 431 | ], | 
| Manuel Pégourié-Gonnard | f07ce3b | 2023-09-22 11:53:41 +0200 | [diff] [blame] | 432 | 'test_suite_ssl': [ | 
|  | 433 | 'Test configuration of groups for DHE through mbedtls_ssl_conf_curves()', | 
|  | 434 | ], | 
| Manuel Pégourié-Gonnard | abd00d0 | 2023-06-12 17:51:33 +0200 | [diff] [blame] | 435 | } | 
|  | 436 | } | 
|  | 437 | }, | 
| Valerio Setti | 307810b | 2023-08-15 10:12:25 +0200 | [diff] [blame] | 438 | 'analyze_driver_vs_reference_ecc_ffdh_no_bignum': { | 
|  | 439 | 'test_function': do_analyze_driver_vs_reference, | 
|  | 440 | 'args': { | 
|  | 441 | 'component_ref': 'test_psa_crypto_config_reference_ecc_ffdh_no_bignum', | 
|  | 442 | 'component_driver': 'test_psa_crypto_config_accel_ecc_ffdh_no_bignum', | 
|  | 443 | 'ignored_suites': [ | 
|  | 444 | # Ignore test suites for the modules that are disabled in the | 
|  | 445 | # accelerated test case. | 
|  | 446 | 'ecp', | 
|  | 447 | 'ecdsa', | 
|  | 448 | 'ecdh', | 
|  | 449 | 'ecjpake', | 
|  | 450 | 'bignum_core', | 
|  | 451 | 'bignum_random', | 
|  | 452 | 'bignum_mod', | 
|  | 453 | 'bignum_mod_raw', | 
|  | 454 | 'bignum.generated', | 
|  | 455 | 'bignum.misc', | 
|  | 456 | 'dhm', | 
|  | 457 | ], | 
|  | 458 | 'ignored_tests': { | 
|  | 459 | 'test_suite_random': [ | 
|  | 460 | 'PSA classic wrapper: ECDSA signature (SECP256R1)', | 
|  | 461 | ], | 
|  | 462 | 'test_suite_psa_crypto': [ | 
|  | 463 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1', | 
|  | 464 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1 (1 redraw)', | 
|  | 465 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1, exercise ECDSA', | 
|  | 466 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp384r1', | 
|  | 467 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp521r1 #0', | 
|  | 468 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp521r1 #1', | 
|  | 469 | 'PSA key derivation: bits=7 invalid for ECC BRAINPOOL_P_R1 (ECC enabled)', | 
|  | 470 | 'PSA key derivation: bits=7 invalid for ECC SECP_K1 (ECC enabled)', | 
|  | 471 | 'PSA key derivation: bits=7 invalid for ECC SECP_R1 (ECC enabled)', | 
|  | 472 | 'PSA key derivation: bits=7 invalid for ECC SECP_R2 (ECC enabled)', | 
|  | 473 | 'PSA key derivation: bits=7 invalid for ECC SECT_K1 (ECC enabled)', | 
|  | 474 | 'PSA key derivation: bits=7 invalid for ECC SECT_R1 (ECC enabled)', | 
|  | 475 | 'PSA key derivation: bits=7 invalid for ECC SECT_R2 (ECC enabled)', | 
|  | 476 | ], | 
|  | 477 | 'test_suite_pkparse': [ | 
|  | 478 | # See the description provided above in the | 
|  | 479 | # analyze_driver_vs_reference_no_ecp_at_all component. | 
|  | 480 | 'Parse EC Key #10a (SEC1 PEM, secp384r1, compressed)', | 
|  | 481 | 'Parse EC Key #11a (SEC1 PEM, secp521r1, compressed)', | 
|  | 482 | 'Parse EC Key #12a (SEC1 PEM, bp256r1, compressed)', | 
|  | 483 | 'Parse EC Key #13a (SEC1 PEM, bp384r1, compressed)', | 
|  | 484 | 'Parse EC Key #14a (SEC1 PEM, bp512r1, compressed)', | 
|  | 485 | 'Parse EC Key #2a (SEC1 PEM, secp192r1, compressed)', | 
|  | 486 | 'Parse EC Key #8a (SEC1 PEM, secp224r1, compressed)', | 
|  | 487 | 'Parse EC Key #9a (SEC1 PEM, secp256r1, compressed)', | 
|  | 488 | 'Parse Public EC Key #2a (RFC 5480, PEM, secp192r1, compressed)', | 
|  | 489 | 'Parse Public EC Key #3a (RFC 5480, secp224r1, compressed)', | 
|  | 490 | 'Parse Public EC Key #4a (RFC 5480, secp256r1, compressed)', | 
|  | 491 | 'Parse Public EC Key #5a (RFC 5480, secp384r1, compressed)', | 
|  | 492 | 'Parse Public EC Key #6a (RFC 5480, secp521r1, compressed)', | 
|  | 493 | 'Parse Public EC Key #7a (RFC 5480, brainpoolP256r1, compressed)', | 
|  | 494 | 'Parse Public EC Key #8a (RFC 5480, brainpoolP384r1, compressed)', | 
|  | 495 | 'Parse Public EC Key #9a (RFC 5480, brainpoolP512r1, compressed)', | 
|  | 496 | ], | 
|  | 497 | 'test_suite_asn1parse': [ | 
|  | 498 | # This test depends on BIGNUM_C | 
|  | 499 | 'INTEGER too large for mpi', | 
|  | 500 | ], | 
|  | 501 | 'test_suite_asn1write': [ | 
|  | 502 | # Following tests depends on BIGNUM_C | 
|  | 503 | 'ASN.1 Write mpi 0 (1 limb)', | 
|  | 504 | 'ASN.1 Write mpi 0 (null)', | 
|  | 505 | 'ASN.1 Write mpi 0x100', | 
|  | 506 | 'ASN.1 Write mpi 0x7f', | 
|  | 507 | 'ASN.1 Write mpi 0x7f with leading 0 limb', | 
|  | 508 | 'ASN.1 Write mpi 0x80', | 
|  | 509 | 'ASN.1 Write mpi 0x80 with leading 0 limb', | 
|  | 510 | 'ASN.1 Write mpi 0xff', | 
|  | 511 | 'ASN.1 Write mpi 1', | 
|  | 512 | 'ASN.1 Write mpi, 127*8 bits', | 
|  | 513 | 'ASN.1 Write mpi, 127*8+1 bits', | 
|  | 514 | 'ASN.1 Write mpi, 127*8-1 bits', | 
|  | 515 | 'ASN.1 Write mpi, 255*8 bits', | 
|  | 516 | 'ASN.1 Write mpi, 255*8-1 bits', | 
|  | 517 | 'ASN.1 Write mpi, 256*8-1 bits', | 
|  | 518 | ], | 
|  | 519 | 'test_suite_debug': [ | 
|  | 520 | # Following tests depends on BIGNUM_C | 
|  | 521 | 'Debug print mbedtls_mpi #2: 3 bits', | 
|  | 522 | 'Debug print mbedtls_mpi: 0 (empty representation)', | 
|  | 523 | 'Debug print mbedtls_mpi: 0 (non-empty representation)', | 
|  | 524 | 'Debug print mbedtls_mpi: 49 bits', | 
|  | 525 | 'Debug print mbedtls_mpi: 759 bits', | 
|  | 526 | 'Debug print mbedtls_mpi: 764 bits #1', | 
|  | 527 | 'Debug print mbedtls_mpi: 764 bits #2', | 
|  | 528 | ], | 
| Manuel Pégourié-Gonnard | f07ce3b | 2023-09-22 11:53:41 +0200 | [diff] [blame] | 529 | 'test_suite_ssl': [ | 
|  | 530 | 'Test configuration of groups for DHE through mbedtls_ssl_conf_curves()', | 
|  | 531 | ], | 
| Valerio Setti | 307810b | 2023-08-15 10:12:25 +0200 | [diff] [blame] | 532 | } | 
|  | 533 | } | 
|  | 534 | }, | 
| Przemek Stekiel | 85b6442 | 2023-05-26 09:55:23 +0200 | [diff] [blame] | 535 | 'analyze_driver_vs_reference_ffdh_alg': { | 
|  | 536 | 'test_function': do_analyze_driver_vs_reference, | 
|  | 537 | 'args': { | 
|  | 538 | 'component_ref': 'test_psa_crypto_config_reference_ffdh', | 
|  | 539 | 'component_driver': 'test_psa_crypto_config_accel_ffdh', | 
| Przemek Stekiel | 84f4ff1 | 2023-07-04 12:35:31 +0200 | [diff] [blame] | 540 | 'ignored_suites': ['dhm'], | 
| Przemek Stekiel | 565353e | 2023-07-05 11:07:07 +0200 | [diff] [blame] | 541 | 'ignored_tests': {} | 
| Przemek Stekiel | 85b6442 | 2023-05-26 09:55:23 +0200 | [diff] [blame] | 542 | } | 
|  | 543 | }, | 
| Valerio Setti | f01d648 | 2023-08-04 13:51:18 +0200 | [diff] [blame] | 544 | 'analyze_driver_vs_reference_tfm_config': { | 
|  | 545 | 'test_function':  do_analyze_driver_vs_reference, | 
|  | 546 | 'args': { | 
|  | 547 | 'component_ref': 'test_tfm_config', | 
|  | 548 | 'component_driver': 'test_tfm_config_p256m_driver_accel_ec', | 
| Manuel Pégourié-Gonnard | e9d9797 | 2023-08-08 18:34:47 +0200 | [diff] [blame] | 549 | 'ignored_suites': [ | 
|  | 550 | # Ignore test suites for the modules that are disabled in the | 
|  | 551 | # accelerated test case. | 
|  | 552 | 'ecp', | 
|  | 553 | 'ecdsa', | 
|  | 554 | 'ecdh', | 
|  | 555 | 'ecjpake', | 
|  | 556 | 'bignum_core', | 
|  | 557 | 'bignum_random', | 
|  | 558 | 'bignum_mod', | 
|  | 559 | 'bignum_mod_raw', | 
|  | 560 | 'bignum.generated', | 
|  | 561 | 'bignum.misc', | 
|  | 562 | ], | 
| Valerio Setti | f01d648 | 2023-08-04 13:51:18 +0200 | [diff] [blame] | 563 | 'ignored_tests': { | 
|  | 564 | # Ignore all tests that require DERIVE support which is disabled | 
|  | 565 | # in the driver version | 
|  | 566 | 'test_suite_psa_crypto': [ | 
|  | 567 | 'PSA key agreement setup: ECDH + HKDF-SHA-256: good', | 
|  | 568 | ('PSA key agreement setup: ECDH + HKDF-SHA-256: good, key algorithm broader ' | 
|  | 569 | 'than required'), | 
|  | 570 | 'PSA key agreement setup: ECDH + HKDF-SHA-256: public key not on curve', | 
|  | 571 | 'PSA key agreement setup: KDF instead of a key agreement algorithm', | 
|  | 572 | 'PSA key agreement setup: bad key agreement algorithm', | 
|  | 573 | 'PSA key agreement: ECDH SECP256R1 (RFC 5903) + HKDF-SHA-256: capacity=8160', | 
|  | 574 | 'PSA key agreement: ECDH SECP256R1 (RFC 5903) + HKDF-SHA-256: read 0+32', | 
|  | 575 | 'PSA key agreement: ECDH SECP256R1 (RFC 5903) + HKDF-SHA-256: read 1+31', | 
|  | 576 | 'PSA key agreement: ECDH SECP256R1 (RFC 5903) + HKDF-SHA-256: read 31+1', | 
|  | 577 | 'PSA key agreement: ECDH SECP256R1 (RFC 5903) + HKDF-SHA-256: read 32+0', | 
|  | 578 | 'PSA key agreement: ECDH SECP256R1 (RFC 5903) + HKDF-SHA-256: read 32+32', | 
|  | 579 | 'PSA key agreement: ECDH SECP256R1 (RFC 5903) + HKDF-SHA-256: read 64+0', | 
|  | 580 | 'PSA key derivation: ECDH on P256 with HKDF-SHA256, info first', | 
|  | 581 | 'PSA key derivation: ECDH on P256 with HKDF-SHA256, key output', | 
|  | 582 | 'PSA key derivation: ECDH on P256 with HKDF-SHA256, missing info', | 
|  | 583 | 'PSA key derivation: ECDH on P256 with HKDF-SHA256, omitted salt', | 
|  | 584 | 'PSA key derivation: ECDH on P256 with HKDF-SHA256, raw output', | 
|  | 585 | 'PSA key derivation: ECDH on P256 with HKDF-SHA256, salt after secret', | 
|  | 586 | 'PSA key derivation: ECDH with TLS 1.2 PRF SHA-256, good case', | 
|  | 587 | 'PSA key derivation: ECDH with TLS 1.2 PRF SHA-256, missing label', | 
|  | 588 | 'PSA key derivation: ECDH with TLS 1.2 PRF SHA-256, missing label and secret', | 
|  | 589 | 'PSA key derivation: ECDH with TLS 1.2 PRF SHA-256, no inputs', | 
|  | 590 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1', | 
|  | 591 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1 (1 redraw)', | 
|  | 592 | 'PSA key derivation: HKDF-SHA-256 -> ECC secp256r1, exercise ECDSA', | 
|  | 593 | 'PSA key derivation: TLS 1.2 Mix-PSK-to-MS, SHA-256, 0+48, ka', | 
|  | 594 | 'PSA key derivation: TLS 1.2 Mix-PSK-to-MS, SHA-256, 24+24, ka', | 
|  | 595 | 'PSA key derivation: TLS 1.2 Mix-PSK-to-MS, SHA-256, 48+0, ka', | 
|  | 596 | 'PSA key derivation: TLS 1.2 Mix-PSK-to-MS, bad state #1, ka', | 
|  | 597 | 'PSA key derivation: TLS 1.2 Mix-PSK-to-MS, bad state #3, ka', | 
|  | 598 | 'PSA key derivation: TLS 1.2 Mix-PSK-to-MS, bad state #4, ka', | 
|  | 599 | 'PSA key derivation: bits=7 invalid for ECC BRAINPOOL_P_R1 (ECC enabled)', | 
|  | 600 | 'PSA key derivation: bits=7 invalid for ECC MONTGOMERY (ECC enabled)', | 
|  | 601 | 'PSA key derivation: bits=7 invalid for ECC SECP_K1 (ECC enabled)', | 
|  | 602 | 'PSA key derivation: bits=7 invalid for ECC SECP_R1 (ECC enabled)', | 
|  | 603 | 'PSA key derivation: bits=7 invalid for ECC SECP_R2 (ECC enabled)', | 
|  | 604 | 'PSA key derivation: bits=7 invalid for ECC SECT_K1 (ECC enabled)', | 
|  | 605 | 'PSA key derivation: bits=7 invalid for ECC SECT_R1 (ECC enabled)', | 
|  | 606 | 'PSA key derivation: bits=7 invalid for ECC SECT_R2 (ECC enabled)', | 
|  | 607 | 'PSA raw key agreement: ECDH SECP256R1 (RFC 5903)', | 
|  | 608 | ], | 
| Manuel Pégourié-Gonnard | e9d9797 | 2023-08-08 18:34:47 +0200 | [diff] [blame] | 609 | 'test_suite_random': [ | 
|  | 610 | 'PSA classic wrapper: ECDSA signature (SECP256R1)', | 
|  | 611 | ], | 
| Valerio Setti | f01d648 | 2023-08-04 13:51:18 +0200 | [diff] [blame] | 612 | 'test_suite_psa_crypto_pake': [ | 
|  | 613 | 'PSA PAKE: ecjpake size macros', | 
| Manuel Pégourié-Gonnard | e9d9797 | 2023-08-08 18:34:47 +0200 | [diff] [blame] | 614 | ], | 
|  | 615 | 'test_suite_asn1parse': [ | 
|  | 616 | # This test depends on BIGNUM_C | 
|  | 617 | 'INTEGER too large for mpi', | 
|  | 618 | ], | 
|  | 619 | 'test_suite_asn1write': [ | 
|  | 620 | # Following tests depends on BIGNUM_C | 
|  | 621 | 'ASN.1 Write mpi 0 (1 limb)', | 
|  | 622 | 'ASN.1 Write mpi 0 (null)', | 
|  | 623 | 'ASN.1 Write mpi 0x100', | 
|  | 624 | 'ASN.1 Write mpi 0x7f', | 
|  | 625 | 'ASN.1 Write mpi 0x7f with leading 0 limb', | 
|  | 626 | 'ASN.1 Write mpi 0x80', | 
|  | 627 | 'ASN.1 Write mpi 0x80 with leading 0 limb', | 
|  | 628 | 'ASN.1 Write mpi 0xff', | 
|  | 629 | 'ASN.1 Write mpi 1', | 
|  | 630 | 'ASN.1 Write mpi, 127*8 bits', | 
|  | 631 | 'ASN.1 Write mpi, 127*8+1 bits', | 
|  | 632 | 'ASN.1 Write mpi, 127*8-1 bits', | 
|  | 633 | 'ASN.1 Write mpi, 255*8 bits', | 
|  | 634 | 'ASN.1 Write mpi, 255*8-1 bits', | 
|  | 635 | 'ASN.1 Write mpi, 256*8-1 bits', | 
|  | 636 | ], | 
| Valerio Setti | f01d648 | 2023-08-04 13:51:18 +0200 | [diff] [blame] | 637 | } | 
|  | 638 | } | 
|  | 639 | } | 
| Przemek Stekiel | 4d13c83 | 2022-10-26 16:11:26 +0200 | [diff] [blame] | 640 | } | 
| Przemek Stekiel | 4d13c83 | 2022-10-26 16:11:26 +0200 | [diff] [blame] | 641 |  | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 642 | def main(): | 
|  | 643 | try: | 
|  | 644 | parser = argparse.ArgumentParser(description=__doc__) | 
| Przemek Stekiel | 58bbc23 | 2022-10-24 08:10:10 +0200 | [diff] [blame] | 645 | parser.add_argument('outcomes', metavar='OUTCOMES.CSV', | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 646 | help='Outcome file to analyze') | 
| Przemek Stekiel | 542d932 | 2022-11-17 09:43:34 +0100 | [diff] [blame] | 647 | parser.add_argument('task', default='all', nargs='?', | 
| Przemek Stekiel | 992de3c | 2022-11-09 13:54:49 +0100 | [diff] [blame] | 648 | help='Analysis to be done. By default, run all tasks. ' | 
|  | 649 | 'With one or more TASK, run only those. ' | 
|  | 650 | 'TASK can be the name of a single task or ' | 
| Przemek Stekiel | 85c54ea | 2022-11-17 11:50:23 +0100 | [diff] [blame] | 651 | 'comma/space-separated list of tasks. ') | 
| Przemek Stekiel | 992de3c | 2022-11-09 13:54:49 +0100 | [diff] [blame] | 652 | parser.add_argument('--list', action='store_true', | 
|  | 653 | help='List all available tasks and exit.') | 
| Tomás González | b401e11 | 2023-08-11 15:22:04 +0100 | [diff] [blame] | 654 | parser.add_argument('--require-full-coverage', action='store_true', | 
|  | 655 | dest='full_coverage', help="Require all available " | 
|  | 656 | "test cases to be executed and issue an error " | 
|  | 657 | "otherwise. This flag is ignored if 'task' is " | 
|  | 658 | "neither 'all' nor 'analyze_coverage'") | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 659 | options = parser.parse_args() | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 660 |  | 
| Przemek Stekiel | 992de3c | 2022-11-09 13:54:49 +0100 | [diff] [blame] | 661 | if options.list: | 
|  | 662 | for task in TASKS: | 
| Valerio Setti | 3951d1b | 2023-03-13 18:37:34 +0100 | [diff] [blame] | 663 | Results.log(task) | 
| Przemek Stekiel | 992de3c | 2022-11-09 13:54:49 +0100 | [diff] [blame] | 664 | sys.exit(0) | 
|  | 665 |  | 
| Przemek Stekiel | 4d13c83 | 2022-10-26 16:11:26 +0200 | [diff] [blame] | 666 | result = True | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 667 |  | 
| Przemek Stekiel | 4d13c83 | 2022-10-26 16:11:26 +0200 | [diff] [blame] | 668 | if options.task == 'all': | 
| Przemek Stekiel | d3068af | 2022-11-14 16:15:19 +0100 | [diff] [blame] | 669 | tasks = TASKS.keys() | 
| Przemek Stekiel | 992de3c | 2022-11-09 13:54:49 +0100 | [diff] [blame] | 670 | else: | 
| Przemek Stekiel | 85c54ea | 2022-11-17 11:50:23 +0100 | [diff] [blame] | 671 | tasks = re.split(r'[, ]+', options.task) | 
| Przemek Stekiel | 992de3c | 2022-11-09 13:54:49 +0100 | [diff] [blame] | 672 |  | 
| Przemek Stekiel | d3068af | 2022-11-14 16:15:19 +0100 | [diff] [blame] | 673 | for task in tasks: | 
|  | 674 | if task not in TASKS: | 
| Valerio Setti | 3951d1b | 2023-03-13 18:37:34 +0100 | [diff] [blame] | 675 | Results.log('Error: invalid task: {}'.format(task)) | 
| Przemek Stekiel | d3068af | 2022-11-14 16:15:19 +0100 | [diff] [blame] | 676 | sys.exit(1) | 
| Przemek Stekiel | 992de3c | 2022-11-09 13:54:49 +0100 | [diff] [blame] | 677 |  | 
| Tomás González | b401e11 | 2023-08-11 15:22:04 +0100 | [diff] [blame] | 678 | TASKS['analyze_coverage']['args']['full_coverage'] = \ | 
|  | 679 | options.full_coverage | 
|  | 680 |  | 
| Przemek Stekiel | 992de3c | 2022-11-09 13:54:49 +0100 | [diff] [blame] | 681 | for task in TASKS: | 
|  | 682 | if task in tasks: | 
| Przemek Stekiel | 4d13c83 | 2022-10-26 16:11:26 +0200 | [diff] [blame] | 683 | if not TASKS[task]['test_function'](options.outcomes, TASKS[task]['args']): | 
|  | 684 | result = False | 
| Przemek Stekiel | 4e95590 | 2022-10-21 13:42:08 +0200 | [diff] [blame] | 685 |  | 
| Przemek Stekiel | c86dedf | 2022-10-24 09:16:04 +0200 | [diff] [blame] | 686 | if result is False: | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 687 | sys.exit(1) | 
| Valerio Setti | 3951d1b | 2023-03-13 18:37:34 +0100 | [diff] [blame] | 688 | Results.log("SUCCESS :-)") | 
| Gilles Peskine | 15c2cbf | 2020-06-25 18:36:28 +0200 | [diff] [blame] | 689 | except Exception: # pylint: disable=broad-except | 
|  | 690 | # Print the backtrace and exit explicitly with our chosen status. | 
|  | 691 | traceback.print_exc() | 
|  | 692 | sys.exit(120) | 
|  | 693 |  | 
|  | 694 | if __name__ == '__main__': | 
|  | 695 | main() |