Blame - tests/suites/test_suite_hmac_drbg.function - mirror/mbed-tls

blob: b83d760d22d4fee840d0eeb20410ec7064b4eb3c [file] [log] [blame]

Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	1	/* BEGIN_HEADER */
Manuel Pégourié-Gonnard	7f80997	2015-03-09 17:05:11 +0000	[diff] [blame]	2	#include "mbedtls/hmac_drbg.h"
Mohammad Azim Khan	67735d5	2017-04-06 11:55:43 +0100	[diff] [blame]	3	#include "string.h"
Rich Evans	00ab470	2015-02-06 13:43:58 +0000	[diff] [blame]	4
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	5	typedef struct
				6	{
				7	unsigned char *p;
				8	size_t len;
				9	} entropy_ctx;
				10
Reut Caspi	e278b36	2017-10-19 08:49:19 +0100	[diff] [blame]	11	static int mbedtls_test_entropy_func( void data, unsigned char buf, size_t len )
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	12	{
				13	entropy_ctx ctx = (entropy_ctx ) data;
				14
				15	if( len > ctx->len )
				16	return( -1 );
				17
				18	memcpy( buf, ctx->p, len );
				19
				20	ctx->p += len;
				21	ctx->len -= len;
				22
				23	return( 0 );
				24	}
				25	/* END_HEADER */
				26
				27	/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	28	* depends_on:MBEDTLS_HMAC_DRBG_C
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	29	* END_DEPENDENCIES
				30	*/
				31
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	32	/* BEGIN_CASE */
				33	void hmac_drbg_entropy_usage( int md_alg )
				34	{
				35	unsigned char out[16];
				36	unsigned char buf[1024];
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	37	const mbedtls_md_info_t *md_info;
				38	mbedtls_hmac_drbg_context ctx;
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	39	entropy_ctx entropy;
Gilles Peskine	4d2d4ff	2019-10-22 19:10:33 +0200	[diff] [blame]	40	size_t i, reps = 10;
				41	size_t default_entropy_len;
				42	size_t expected_consumed_entropy = 0;
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	43
Manuel Pégourié-Gonnard	f9e9481	2015-04-28 22:07:14 +0200	[diff] [blame]	44	mbedtls_hmac_drbg_init( &ctx );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	45	memset( buf, 0, sizeof( buf ) );
				46	memset( out, 0, sizeof( out ) );
				47
				48	entropy.len = sizeof( buf );
				49	entropy.p = buf;
				50
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	51	md_info = mbedtls_md_info_from_type( md_alg );
Paul Bakker	94b916c	2014-04-17 16:07:20 +0200	[diff] [blame]	52	TEST_ASSERT( md_info != NULL );
Gilles Peskine	4d2d4ff	2019-10-22 19:10:33 +0200	[diff] [blame]	53	if( mbedtls_md_get_size( md_info ) <= 20 )
				54	default_entropy_len = 16;
				55	else if( mbedtls_md_get_size( md_info ) <= 28 )
				56	default_entropy_len = 24;
				57	else
				58	default_entropy_len = 32;
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	59
Gavin Acquroff	6aceb51	2020-03-01 17:06:11 -0800	[diff] [blame^]	60	/* Set reseed interval before seed */
				61	mbedtls_hmac_drbg_set_reseed_interval( &ctx, 2 * reps );
				62
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	63	/* Init must use entropy */
Reut Caspi	e278b36	2017-10-19 08:49:19 +0100	[diff] [blame]	64	TEST_ASSERT( mbedtls_hmac_drbg_seed( &ctx, md_info, mbedtls_test_entropy_func, &entropy,
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	65	NULL, 0 ) == 0 );
Gilles Peskine	4d2d4ff	2019-10-22 19:10:33 +0200	[diff] [blame]	66	/* default_entropy_len of entropy, plus half as much for the nonce */
				67	expected_consumed_entropy += default_entropy_len * 3 / 2;
				68	TEST_EQUAL( sizeof( buf ) - entropy.len, expected_consumed_entropy );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	69
Gavin Acquroff	6aceb51	2020-03-01 17:06:11 -0800	[diff] [blame^]	70	/* By default, PR is off, and reseed interval was set to
				71	* 2 * reps so the next few calls should not use entropy */
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	72	for( i = 0; i < reps; i++ )
				73	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	74	TEST_ASSERT( mbedtls_hmac_drbg_random( &ctx, out, sizeof( out ) - 4 ) == 0 );
				75	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, out, sizeof( out ) - 4,
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	76	buf, 16 ) == 0 );
				77	}
Gilles Peskine	4d2d4ff	2019-10-22 19:10:33 +0200	[diff] [blame]	78	TEST_EQUAL( sizeof( buf ) - entropy.len, expected_consumed_entropy );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	79
				80	/* While at it, make sure we didn't write past the requested length */
				81	TEST_ASSERT( out[sizeof( out ) - 4] == 0 );
				82	TEST_ASSERT( out[sizeof( out ) - 3] == 0 );
				83	TEST_ASSERT( out[sizeof( out ) - 2] == 0 );
				84	TEST_ASSERT( out[sizeof( out ) - 1] == 0 );
				85
Gavin Acquroff	6aceb51	2020-03-01 17:06:11 -0800	[diff] [blame^]	86	/* There have been 2 * reps calls to random. The next call should reseed */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	87	TEST_ASSERT( mbedtls_hmac_drbg_random( &ctx, out, sizeof( out ) ) == 0 );
Gilles Peskine	4d2d4ff	2019-10-22 19:10:33 +0200	[diff] [blame]	88	expected_consumed_entropy += default_entropy_len;
				89	TEST_EQUAL( sizeof( buf ) - entropy.len, expected_consumed_entropy );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	90
Gavin Acquroff	6aceb51	2020-03-01 17:06:11 -0800	[diff] [blame^]	91	/* Set reseed interval after seed */
				92	mbedtls_hmac_drbg_set_reseed_interval( &ctx, 4 * reps + 1);
				93
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	94	/* The new few calls should not reseed */
Gavin Acquroff	6aceb51	2020-03-01 17:06:11 -0800	[diff] [blame^]	95	for( i = 0; i < (2 * reps); i++ )
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	96	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	97	TEST_ASSERT( mbedtls_hmac_drbg_random( &ctx, out, sizeof( out ) ) == 0 );
				98	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, out, sizeof( out ) ,
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	99	buf, 16 ) == 0 );
				100	}
Gilles Peskine	4d2d4ff	2019-10-22 19:10:33 +0200	[diff] [blame]	101	TEST_EQUAL( sizeof( buf ) - entropy.len, expected_consumed_entropy );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	102
				103	/* Now enable PR, so the next few calls should all reseed */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	104	mbedtls_hmac_drbg_set_prediction_resistance( &ctx, MBEDTLS_HMAC_DRBG_PR_ON );
				105	TEST_ASSERT( mbedtls_hmac_drbg_random( &ctx, out, sizeof( out ) ) == 0 );
Gilles Peskine	4d2d4ff	2019-10-22 19:10:33 +0200	[diff] [blame]	106	expected_consumed_entropy += default_entropy_len;
				107	TEST_EQUAL( sizeof( buf ) - entropy.len, expected_consumed_entropy );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	108
				109	/* Finally, check setting entropy_len */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	110	mbedtls_hmac_drbg_set_entropy_len( &ctx, 42 );
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	111	TEST_ASSERT( mbedtls_hmac_drbg_random( &ctx, out, sizeof( out ) ) == 0 );
Gilles Peskine	4d2d4ff	2019-10-22 19:10:33 +0200	[diff] [blame]	112	expected_consumed_entropy += 42;
				113	TEST_EQUAL( sizeof( buf ) - entropy.len, expected_consumed_entropy );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	114
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	115	mbedtls_hmac_drbg_set_entropy_len( &ctx, 13 );
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	116	TEST_ASSERT( mbedtls_hmac_drbg_random( &ctx, out, sizeof( out ) ) == 0 );
Gilles Peskine	4d2d4ff	2019-10-22 19:10:33 +0200	[diff] [blame]	117	expected_consumed_entropy += 13;
				118	TEST_EQUAL( sizeof( buf ) - entropy.len, expected_consumed_entropy );
Paul Bakker	bd51b26	2014-07-10 15:26:12 +0200	[diff] [blame]	119
				120	exit:
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	121	mbedtls_hmac_drbg_free( &ctx );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	122	}
				123	/* END_CASE */
				124
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	125	/* BEGIN_CASE depends_on:MBEDTLS_FS_IO */
Azim Khan	f1aaec9	2017-05-30 14:23:15 +0100	[diff] [blame]	126	void hmac_drbg_seed_file( int md_alg, char * path, int ret )
Manuel Pégourié-Gonnard	48bc3e8	2014-01-30 21:11:16 +0100	[diff] [blame]	127	{
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	128	const mbedtls_md_info_t *md_info;
				129	mbedtls_hmac_drbg_context ctx;
Manuel Pégourié-Gonnard	48bc3e8	2014-01-30 21:11:16 +0100	[diff] [blame]	130
Manuel Pégourié-Gonnard	f9e9481	2015-04-28 22:07:14 +0200	[diff] [blame]	131	mbedtls_hmac_drbg_init( &ctx );
				132
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	133	md_info = mbedtls_md_info_from_type( md_alg );
Paul Bakker	94b916c	2014-04-17 16:07:20 +0200	[diff] [blame]	134	TEST_ASSERT( md_info != NULL );
				135
Ronald Cron	6c5bd7f	2020-06-10 14:08:26 +0200	[diff] [blame]	136	TEST_ASSERT( mbedtls_hmac_drbg_seed( &ctx, md_info,
				137	mbedtls_test_rnd_std_rand, NULL,
				138	NULL, 0 ) == 0 );
Manuel Pégourié-Gonnard	48bc3e8	2014-01-30 21:11:16 +0100	[diff] [blame]	139
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	140	TEST_ASSERT( mbedtls_hmac_drbg_write_seed_file( &ctx, path ) == ret );
				141	TEST_ASSERT( mbedtls_hmac_drbg_update_seed_file( &ctx, path ) == ret );
Manuel Pégourié-Gonnard	48bc3e8	2014-01-30 21:11:16 +0100	[diff] [blame]	142
Paul Bakker	bd51b26	2014-07-10 15:26:12 +0200	[diff] [blame]	143	exit:
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	144	mbedtls_hmac_drbg_free( &ctx );
Manuel Pégourié-Gonnard	48bc3e8	2014-01-30 21:11:16 +0100	[diff] [blame]	145	}
				146	/* END_CASE */
				147
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	148	/* BEGIN_CASE */
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	149	void hmac_drbg_buf( int md_alg )
				150	{
				151	unsigned char out[16];
				152	unsigned char buf[100];
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	153	const mbedtls_md_info_t *md_info;
				154	mbedtls_hmac_drbg_context ctx;
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	155	size_t i;
				156
Manuel Pégourié-Gonnard	f9e9481	2015-04-28 22:07:14 +0200	[diff] [blame]	157	mbedtls_hmac_drbg_init( &ctx );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	158	memset( buf, 0, sizeof( buf ) );
				159	memset( out, 0, sizeof( out ) );
				160
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	161	md_info = mbedtls_md_info_from_type( md_alg );
Paul Bakker	94b916c	2014-04-17 16:07:20 +0200	[diff] [blame]	162	TEST_ASSERT( md_info != NULL );
Manuel Pégourié-Gonnard	f9e9481	2015-04-28 22:07:14 +0200	[diff] [blame]	163	TEST_ASSERT( mbedtls_hmac_drbg_seed_buf( &ctx, md_info, buf, sizeof( buf ) ) == 0 );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	164
				165	/* Make sure it never tries to reseed (would segfault otherwise) */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	166	mbedtls_hmac_drbg_set_reseed_interval( &ctx, 3 );
				167	mbedtls_hmac_drbg_set_prediction_resistance( &ctx, MBEDTLS_HMAC_DRBG_PR_ON );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	168
				169	for( i = 0; i < 30; i++ )
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	170	TEST_ASSERT( mbedtls_hmac_drbg_random( &ctx, out, sizeof( out ) ) == 0 );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	171
Paul Bakker	bd51b26	2014-07-10 15:26:12 +0200	[diff] [blame]	172	exit:
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	173	mbedtls_hmac_drbg_free( &ctx );
Manuel Pégourié-Gonnard	4f880a5	2014-01-30 22:39:42 +0100	[diff] [blame]	174	}
				175	/* END_CASE */
				176
				177	/* BEGIN_CASE */
Azim Khan	5fcca46	2018-06-29 11:05:32 +0100	[diff] [blame]	178	void hmac_drbg_no_reseed( int md_alg, data_t * entropy,
				179	data_t * custom, data_t * add1,
				180	data_t * add2, data_t * output )
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	181	{
Manuel Pégourié-Gonnard	e6cdbbd	2014-02-01 11:30:03 +0100	[diff] [blame]	182	unsigned char data[1024];
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	183	unsigned char my_output[512];
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	184	entropy_ctx p_entropy;
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	185	const mbedtls_md_info_t *md_info;
				186	mbedtls_hmac_drbg_context ctx;
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	187
Manuel Pégourié-Gonnard	f9e9481	2015-04-28 22:07:14 +0200	[diff] [blame]	188	mbedtls_hmac_drbg_init( &ctx );
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	189
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	190	p_entropy.p = entropy->x;
				191	p_entropy.len = entropy->len;
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	192
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	193	md_info = mbedtls_md_info_from_type( md_alg );
Paul Bakker	94b916c	2014-04-17 16:07:20 +0200	[diff] [blame]	194	TEST_ASSERT( md_info != NULL );
Manuel Pégourié-Gonnard	e6cdbbd	2014-02-01 11:30:03 +0100	[diff] [blame]	195
				196	/* Test the simplified buffer-based variant */
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	197	memcpy( data, entropy->x, p_entropy.len );
				198	memcpy( data + p_entropy.len, custom->x, custom->len );
Manuel Pégourié-Gonnard	f9e9481	2015-04-28 22:07:14 +0200	[diff] [blame]	199	TEST_ASSERT( mbedtls_hmac_drbg_seed_buf( &ctx, md_info,
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	200	data, p_entropy.len + custom->len ) == 0 );
				201	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, my_output, output->len,
				202	add1->x, add1->len ) == 0 );
				203	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, my_output, output->len,
				204	add2->x, add2->len ) == 0 );
Paul Bakker	bd51b26	2014-07-10 15:26:12 +0200	[diff] [blame]	205
Gavin Acquroff	6aceb51	2020-03-01 17:06:11 -0800	[diff] [blame^]	206	/* Reset context for second run */
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	207	mbedtls_hmac_drbg_free( &ctx );
Manuel Pégourié-Gonnard	e6cdbbd	2014-02-01 11:30:03 +0100	[diff] [blame]	208
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	209	TEST_ASSERT( memcmp( my_output, output->x, output->len ) == 0 );
Manuel Pégourié-Gonnard	e6cdbbd	2014-02-01 11:30:03 +0100	[diff] [blame]	210
				211	/* And now the normal entropy-based variant */
Reut Caspi	e278b36	2017-10-19 08:49:19 +0100	[diff] [blame]	212	TEST_ASSERT( mbedtls_hmac_drbg_seed( &ctx, md_info, mbedtls_test_entropy_func, &p_entropy,
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	213	custom->x, custom->len ) == 0 );
				214	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, my_output, output->len,
				215	add1->x, add1->len ) == 0 );
				216	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, my_output, output->len,
				217	add2->x, add2->len ) == 0 );
				218	TEST_ASSERT( memcmp( my_output, output->x, output->len ) == 0 );
Manuel Pégourié-Gonnard	e6cdbbd	2014-02-01 11:30:03 +0100	[diff] [blame]	219
Paul Bakker	bd51b26	2014-07-10 15:26:12 +0200	[diff] [blame]	220	exit:
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	221	mbedtls_hmac_drbg_free( &ctx );
Manuel Pégourié-Gonnard	24600b7	2014-01-31 09:54:14 +0100	[diff] [blame]	222	}
				223	/* END_CASE */
				224
				225	/* BEGIN_CASE */
Azim Khan	5fcca46	2018-06-29 11:05:32 +0100	[diff] [blame]	226	void hmac_drbg_nopr( int md_alg, data_t * entropy, data_t * custom,
				227	data_t * add1, data_t * add2, data_t * add3,
				228	data_t * output )
Manuel Pégourié-Gonnard	24600b7	2014-01-31 09:54:14 +0100	[diff] [blame]	229	{
Manuel Pégourié-Gonnard	24600b7	2014-01-31 09:54:14 +0100	[diff] [blame]	230	unsigned char my_output[512];
Manuel Pégourié-Gonnard	24600b7	2014-01-31 09:54:14 +0100	[diff] [blame]	231	entropy_ctx p_entropy;
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	232	const mbedtls_md_info_t *md_info;
				233	mbedtls_hmac_drbg_context ctx;
Manuel Pégourié-Gonnard	24600b7	2014-01-31 09:54:14 +0100	[diff] [blame]	234
Manuel Pégourié-Gonnard	f9e9481	2015-04-28 22:07:14 +0200	[diff] [blame]	235	mbedtls_hmac_drbg_init( &ctx );
Manuel Pégourié-Gonnard	24600b7	2014-01-31 09:54:14 +0100	[diff] [blame]	236
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	237	p_entropy.p = entropy->x;
				238	p_entropy.len = entropy->len;
Manuel Pégourié-Gonnard	24600b7	2014-01-31 09:54:14 +0100	[diff] [blame]	239
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	240	md_info = mbedtls_md_info_from_type( md_alg );
Paul Bakker	94b916c	2014-04-17 16:07:20 +0200	[diff] [blame]	241	TEST_ASSERT( md_info != NULL );
				242
Reut Caspi	e278b36	2017-10-19 08:49:19 +0100	[diff] [blame]	243	TEST_ASSERT( mbedtls_hmac_drbg_seed( &ctx, md_info, mbedtls_test_entropy_func, &p_entropy,
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	244	custom->x, custom->len ) == 0 );
				245	TEST_ASSERT( mbedtls_hmac_drbg_reseed( &ctx, add1->x, add1->len ) == 0 );
				246	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, my_output, output->len,
				247	add2->x, add2->len ) == 0 );
				248	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, my_output, output->len,
				249	add3->x, add3->len ) == 0 );
Manuel Pégourié-Gonnard	24600b7	2014-01-31 09:54:14 +0100	[diff] [blame]	250
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	251	TEST_ASSERT( memcmp( my_output, output->x, output->len ) == 0 );
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	252
Paul Bakker	bd51b26	2014-07-10 15:26:12 +0200	[diff] [blame]	253	exit:
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	254	mbedtls_hmac_drbg_free( &ctx );
Manuel Pégourié-Gonnard	6801f39	2014-01-30 17:22:14 +0100	[diff] [blame]	255	}
				256	/* END_CASE */
				257
Manuel Pégourié-Gonnard	62273b8	2014-01-31 10:16:57 +0100	[diff] [blame]	258	/* BEGIN_CASE */
Azim Khan	5fcca46	2018-06-29 11:05:32 +0100	[diff] [blame]	259	void hmac_drbg_pr( int md_alg, data_t * entropy, data_t * custom,
				260	data_t * add1, data_t * add2, data_t * output )
Manuel Pégourié-Gonnard	62273b8	2014-01-31 10:16:57 +0100	[diff] [blame]	261	{
Manuel Pégourié-Gonnard	62273b8	2014-01-31 10:16:57 +0100	[diff] [blame]	262	unsigned char my_output[512];
Manuel Pégourié-Gonnard	62273b8	2014-01-31 10:16:57 +0100	[diff] [blame]	263	entropy_ctx p_entropy;
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	264	const mbedtls_md_info_t *md_info;
				265	mbedtls_hmac_drbg_context ctx;
Manuel Pégourié-Gonnard	62273b8	2014-01-31 10:16:57 +0100	[diff] [blame]	266
Manuel Pégourié-Gonnard	f9e9481	2015-04-28 22:07:14 +0200	[diff] [blame]	267	mbedtls_hmac_drbg_init( &ctx );
Manuel Pégourié-Gonnard	62273b8	2014-01-31 10:16:57 +0100	[diff] [blame]	268
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	269	p_entropy.p = entropy->x;
				270	p_entropy.len = entropy->len;
Manuel Pégourié-Gonnard	62273b8	2014-01-31 10:16:57 +0100	[diff] [blame]	271
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	272	md_info = mbedtls_md_info_from_type( md_alg );
Paul Bakker	94b916c	2014-04-17 16:07:20 +0200	[diff] [blame]	273	TEST_ASSERT( md_info != NULL );
				274
Reut Caspi	e278b36	2017-10-19 08:49:19 +0100	[diff] [blame]	275	TEST_ASSERT( mbedtls_hmac_drbg_seed( &ctx, md_info, mbedtls_test_entropy_func, &p_entropy,
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	276	custom->x, custom->len ) == 0 );
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	277	mbedtls_hmac_drbg_set_prediction_resistance( &ctx, MBEDTLS_HMAC_DRBG_PR_ON );
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	278	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, my_output, output->len,
				279	add1->x, add1->len ) == 0 );
				280	TEST_ASSERT( mbedtls_hmac_drbg_random_with_add( &ctx, my_output, output->len,
				281	add2->x, add2->len ) == 0 );
Manuel Pégourié-Gonnard	62273b8	2014-01-31 10:16:57 +0100	[diff] [blame]	282
Azim Khan	d30ca13	2017-06-09 04:32:58 +0100	[diff] [blame]	283	TEST_ASSERT( memcmp( my_output, output->x, output->len ) == 0 );
Paul Bakker	bd51b26	2014-07-10 15:26:12 +0200	[diff] [blame]	284
				285	exit:
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	286	mbedtls_hmac_drbg_free( &ctx );
Manuel Pégourié-Gonnard	62273b8	2014-01-31 10:16:57 +0100	[diff] [blame]	287	}
				288	/* END_CASE */
				289
Manuel Pégourié-Gonnard	2cf5a7c	2015-04-08 12:49:31 +0200	[diff] [blame]	290	/* BEGIN_CASE depends_on:MBEDTLS_SELF_TEST */
Azim Khan	f1aaec9	2017-05-30 14:23:15 +0100	[diff] [blame]	291	void hmac_drbg_selftest( )
Manuel Pégourié-Gonnard	79afaa0	2014-01-31 11:12:09 +0100	[diff] [blame]	292	{
Andres AG	93012e8	2016-09-09 09:10:28 +0100	[diff] [blame]	293	TEST_ASSERT( mbedtls_hmac_drbg_self_test( 1 ) == 0 );
Manuel Pégourié-Gonnard	79afaa0	2014-01-31 11:12:09 +0100	[diff] [blame]	294	}
				295	/* END_CASE */