TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 351e6885f55fd6354b57b51a5dbaadf3231aa7c8 / . / tests / suites / test_suite_chachapoly.function
blob: 2e1e7b2dcfa42b2044a6a957145b2f736ca91b3a [file] [log] [blame]
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]1/* BEGIN_HEADER */
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]2#include "mbedtls/chachapoly.h"
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]3/* END_HEADER */
4
5/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]6 * depends_on:MBEDTLS_CHACHAPOLY_C
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]7 * END_DEPENDENCIES
8 */
9
10/* BEGIN_CASE */
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]11void mbedtls_chachapoly_enc( data_t *key_str, data_t *nonce_str, data_t *aad_str, data_t *input_str, data_t *output_str, data_t *mac_str )
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]12{
Manuel Pégourié-Gonnard528524b2018-05-09 11:21:21 +0200[diff] [blame]13 unsigned char output[265];
Manuel Pégourié-Gonnard528524b2018-05-09 11:21:21 +0200[diff] [blame]14 unsigned char mac[16]; /* size set by the standard */
Manuel Pégourié-Gonnard346b8d52018-05-07 12:56:36 +0200[diff] [blame]15 mbedtls_chachapoly_context ctx;
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]16
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]17 TEST_ASSERT( key_str->len == 32 );
18 TEST_ASSERT( nonce_str->len == 12 );
19 TEST_ASSERT( mac_str->len == 16 );
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]20
Manuel Pégourié-Gonnard346b8d52018-05-07 12:56:36 +0200[diff] [blame]21 mbedtls_chachapoly_init( &ctx );
22
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]23 TEST_ASSERT( mbedtls_chachapoly_setkey( &ctx, key_str->x ) == 0 );
Manuel Pégourié-Gonnard346b8d52018-05-07 12:56:36 +0200[diff] [blame]24
Manuel Pégourié-Gonnard3dc62a02018-06-04 12:18:19 +0200[diff] [blame]25 TEST_ASSERT( mbedtls_chachapoly_encrypt_and_tag( &ctx,
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]26 input_str->len, nonce_str->x,
27 aad_str->x, aad_str->len,
28 input_str->x, output, mac ) == 0 );
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]29
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]30 TEST_ASSERT( memcmp( output_str->x, output, output_str->len ) == 0 );
31 TEST_ASSERT( memcmp( mac_str->x, mac, 16U ) == 0 );
Manuel Pégourié-Gonnard346b8d52018-05-07 12:56:36 +0200[diff] [blame]32
33exit:
34 mbedtls_chachapoly_free( &ctx );
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]35}
36/* END_CASE */
37
38/* BEGIN_CASE */
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]39void mbedtls_chachapoly_dec( data_t *key_str, data_t *nonce_str, data_t *aad_str, data_t *input_str, data_t *output_str, data_t *mac_str, int ret_exp )
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]40{
Manuel Pégourié-Gonnard528524b2018-05-09 11:21:21 +0200[diff] [blame]41 unsigned char output[265];
Manuel Pégourié-Gonnard346b8d52018-05-07 12:56:36 +0200[diff] [blame]42 int ret;
43 mbedtls_chachapoly_context ctx;
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]44
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]45 TEST_ASSERT( key_str->len == 32 );
46 TEST_ASSERT( nonce_str->len == 12 );
47 TEST_ASSERT( mac_str->len == 16 );
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]48
Manuel Pégourié-Gonnard346b8d52018-05-07 12:56:36 +0200[diff] [blame]49 mbedtls_chachapoly_init( &ctx );
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]50
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]51 TEST_ASSERT( mbedtls_chachapoly_setkey( &ctx, key_str->x ) == 0 );
Manuel Pégourié-Gonnard346b8d52018-05-07 12:56:36 +0200[diff] [blame]52
53 ret = mbedtls_chachapoly_auth_decrypt( &ctx,
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]54 input_str->len, nonce_str->x,
55 aad_str->x, aad_str->len,
56 mac_str->x, input_str->x, output );
Manuel Pégourié-Gonnard346b8d52018-05-07 12:56:36 +0200[diff] [blame]57
Manuel Pégourié-Gonnard72967712018-05-09 12:22:13 +0200[diff] [blame]58 TEST_ASSERT( ret == ret_exp );
59 if( ret_exp == 0 )
60 {
Ronald Cron9ed40732020-06-25 09:03:34 +0200[diff] [blame]61 TEST_ASSERT( memcmp( output_str->x, output, output_str->len ) == 0 );
Manuel Pégourié-Gonnard72967712018-05-09 12:22:13 +0200[diff] [blame]62 }
Manuel Pégourié-Gonnard346b8d52018-05-07 12:56:36 +0200[diff] [blame]63
64exit:
65 mbedtls_chachapoly_free( &ctx );
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]66}
67/* END_CASE */
68
Manuel Pégourié-Gonnardceb12252018-05-10 11:41:00 +0200[diff] [blame]69/* BEGIN_CASE */
70void chachapoly_state()
71{
72 unsigned char key[32];
73 unsigned char nonce[12];
74 unsigned char aad[1];
75 unsigned char input[1];
76 unsigned char output[1];
77 unsigned char mac[16];
78 size_t input_len = sizeof( input );
79 size_t aad_len = sizeof( aad );
80 mbedtls_chachapoly_context ctx;
81
82 memset( key, 0x00, sizeof( key ) );
83 memset( nonce, 0x00, sizeof( nonce ) );
84 memset( aad, 0x00, sizeof( aad ) );
85 memset( input, 0x00, sizeof( input ) );
86 memset( output, 0x00, sizeof( output ) );
87 memset( mac, 0x00, sizeof( mac ) );
88
89 /* Initial state: finish, update, update_aad forbidden */
90 mbedtls_chachapoly_init( &ctx );
91
92 TEST_ASSERT( mbedtls_chachapoly_finish( &ctx, mac )
93 == MBEDTLS_ERR_CHACHAPOLY_BAD_STATE );
94 TEST_ASSERT( mbedtls_chachapoly_update( &ctx, input_len, input, output )
95 == MBEDTLS_ERR_CHACHAPOLY_BAD_STATE );
96 TEST_ASSERT( mbedtls_chachapoly_update_aad( &ctx, aad, aad_len )
97 == MBEDTLS_ERR_CHACHAPOLY_BAD_STATE );
98
99 /* Still initial state: finish, update, update_aad forbidden */
100 TEST_ASSERT( mbedtls_chachapoly_setkey( &ctx, key )
101 == 0 );
102
103 TEST_ASSERT( mbedtls_chachapoly_finish( &ctx, mac )
104 == MBEDTLS_ERR_CHACHAPOLY_BAD_STATE );
105 TEST_ASSERT( mbedtls_chachapoly_update( &ctx, input_len, input, output )
106 == MBEDTLS_ERR_CHACHAPOLY_BAD_STATE );
107 TEST_ASSERT( mbedtls_chachapoly_update_aad( &ctx, aad, aad_len )
108 == MBEDTLS_ERR_CHACHAPOLY_BAD_STATE );
109
110 /* Starts -> finish OK */
111 TEST_ASSERT( mbedtls_chachapoly_starts( &ctx, nonce, MBEDTLS_CHACHAPOLY_ENCRYPT )
112 == 0 );
113 TEST_ASSERT( mbedtls_chachapoly_finish( &ctx, mac )
114 == 0 );
115
116 /* After finish: update, update_aad forbidden */
117 TEST_ASSERT( mbedtls_chachapoly_update( &ctx, input_len, input, output )
118 == MBEDTLS_ERR_CHACHAPOLY_BAD_STATE );
119 TEST_ASSERT( mbedtls_chachapoly_update_aad( &ctx, aad, aad_len )
120 == MBEDTLS_ERR_CHACHAPOLY_BAD_STATE );
121
122 /* Starts -> update* OK */
123 TEST_ASSERT( mbedtls_chachapoly_starts( &ctx, nonce, MBEDTLS_CHACHAPOLY_ENCRYPT )
124 == 0 );
125 TEST_ASSERT( mbedtls_chachapoly_update( &ctx, input_len, input, output )
126 == 0 );
127 TEST_ASSERT( mbedtls_chachapoly_update( &ctx, input_len, input, output )
128 == 0 );
129
130 /* After update: update_aad forbidden */
131 TEST_ASSERT( mbedtls_chachapoly_update_aad( &ctx, aad, aad_len )
132 == MBEDTLS_ERR_CHACHAPOLY_BAD_STATE );
133
134 /* Starts -> update_aad* -> finish OK */
135 TEST_ASSERT( mbedtls_chachapoly_starts( &ctx, nonce, MBEDTLS_CHACHAPOLY_ENCRYPT )
136 == 0 );
137 TEST_ASSERT( mbedtls_chachapoly_update_aad( &ctx, aad, aad_len )
138 == 0 );
139 TEST_ASSERT( mbedtls_chachapoly_update_aad( &ctx, aad, aad_len )
140 == 0 );
141 TEST_ASSERT( mbedtls_chachapoly_finish( &ctx, mac )
142 == 0 );
143
144exit:
145 mbedtls_chachapoly_free( &ctx );
146}
147/* END_CASE */
148
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]149/* BEGIN_CASE depends_on:MBEDTLS_SELF_TEST */
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]150void chachapoly_selftest()
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]151{
Manuel Pégourié-Gonnarddca3a5d2018-05-07 10:43:27 +0200[diff] [blame]152 TEST_ASSERT( mbedtls_chachapoly_self_test( 1 ) == 0 );
Daniel Kingb8025c52016-05-17 14:43:01 -0300[diff] [blame]153}
154/* END_CASE */