TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / HEAD / . / tests / suites / test_suite_pem.data
blob: 007ba104a9f549db2a10dcf896a21936b80bddde [file] [log] [blame]
Paul Bakker16300582014-04-11 13:28:43 +0200[diff] [blame]1Standard PEM write
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]2mbedtls_pem_write_buffer:"-----START TEST-----\n":"-----END TEST-----\n":"000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F":"-----START TEST-----\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8=\n-----END TEST-----\n"
Paul Bakker16300582014-04-11 13:28:43 +0200[diff] [blame]3
4PEM write (zero data)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]5mbedtls_pem_write_buffer:"-----START TEST-----\n":"-----END TEST-----\n":"":"-----START TEST-----\n-----END TEST-----\n"
Paul Bakker16300582014-04-11 13:28:43 +0200[diff] [blame]6
7PEM write (one byte)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]8mbedtls_pem_write_buffer:"-----START TEST-----\n":"-----END TEST-----\n":"00":"-----START TEST-----\nAA==\n-----END TEST-----\n"
Paul Bakker16300582014-04-11 13:28:43 +0200[diff] [blame]9
10PEM write (more than line size)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]11mbedtls_pem_write_buffer:"-----START TEST-----\n":"-----END TEST-----\n":"000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F":"-----START TEST-----\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8AAQIDBAUGBwgJCgsMDQ4P\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8=\n-----END TEST-----\n"
Paul Bakker16300582014-04-11 13:28:43 +0200[diff] [blame]12
13PEM write (exactly two lines)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]14mbedtls_pem_write_buffer:"-----START TEST-----\n":"-----END TEST-----\n":"000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F":"-----START TEST-----\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8AAQIDBAUGBwgJCgsMDQ4P\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8AAQIDBAUGBwgJCgsMDQ4P\n-----END TEST-----\n"
Paul Bakker16300582014-04-11 13:28:43 +0200[diff] [blame]15
16PEM write (exactly two lines + 1)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]17mbedtls_pem_write_buffer:"-----START TEST-----\n":"-----END TEST-----\n":"000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F00":"-----START TEST-----\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8AAQIDBAUGBwgJCgsMDQ4P\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8AAQIDBAUGBwgJCgsMDQ4P\nAA==\n-----END TEST-----\n"
Andres AG9c94b692016-10-24 14:31:54 +0100[diff] [blame]18
Jethro Beekman746df882023-05-03 14:49:28 +0200[diff] [blame]19PEM write length reporting
20mbedtls_pem_write_buffer_lengths
21
Manuel Pégourié-Gonnard33ab0752022-02-07 12:47:00 +0100[diff] [blame]22PEM read (unencrypted, valid)
Manuel Pégourié-Gonnard1df23b92022-02-07 12:59:10 +0100[diff] [blame]23mbedtls_pem_read_buffer:"^":"$":"^\nTWJlZCBUTFM=\n$":"":0:"4d62656420544c53"
Manuel Pégourié-Gonnard33ab0752022-02-07 12:47:00 +0100[diff] [blame]24
Valerio Setti0f286d52024-02-16 14:30:58 +0100[diff] [blame]25PEM read (unencrypted, empty content)
Valerio Setti0f286d52024-02-16 14:30:58 +0100[diff] [blame]26mbedtls_pem_read_buffer:"-----BEGIN EC PRIVATE KEY-----":"-----END EC PRIVATE KEY-----":"-----BEGIN EC PRIVATE KEY-----\n\n-----END EC PRIVATE KEY-----":"":MBEDTLS_ERR_PEM_BAD_INPUT_DATA:""
27
Andres AG9c94b692016-10-24 14:31:54 +0100[diff] [blame]28PEM read (DES-EDE3-CBC + invalid iv)
Manuel Pégourié-Gonnard52d02a82023-03-16 10:24:47 +0100[diff] [blame]29depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_DES_C
Manuel Pégourié-Gonnard1df23b92022-02-07 12:59:10 +0100[diff] [blame]30mbedtls_pem_read_buffer:"^":"$":"^\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: DES-EDE3-CBC,00$":"pwd":MBEDTLS_ERR_PEM_INVALID_ENC_IV:""
Andres AG9c94b692016-10-24 14:31:54 +0100[diff] [blame]31
32PEM read (DES-CBC + invalid iv)
Manuel Pégourié-Gonnard52d02a82023-03-16 10:24:47 +0100[diff] [blame]33depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_DES_C
Manuel Pégourié-Gonnard1df23b92022-02-07 12:59:10 +0100[diff] [blame]34mbedtls_pem_read_buffer:"^":"$":"^\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: DES-CBC,00$":"pwd":MBEDTLS_ERR_PEM_INVALID_ENC_IV:""
Andres AG9c94b692016-10-24 14:31:54 +0100[diff] [blame]35
Tomás González3719f9e2023-07-05 12:43:10 +0100[diff] [blame]36PEM read (AES-128-CBC + invalid iv)
37depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_AES_C
38mbedtls_pem_read_buffer:"^":"$":"^\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: AES-128-CBC,00$":"pwd":MBEDTLS_ERR_PEM_INVALID_ENC_IV:""
39
Andres AG9c94b692016-10-24 14:31:54 +0100[diff] [blame]40PEM read (unknown encryption algorithm)
Manuel Pégourié-Gonnard52d02a82023-03-16 10:24:47 +0100[diff] [blame]41depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_AES_C
Manuel Pégourié-Gonnard1df23b92022-02-07 12:59:10 +0100[diff] [blame]42mbedtls_pem_read_buffer:"^":"$":"^\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: AES-,00$":"pwd":MBEDTLS_ERR_PEM_UNKNOWN_ENC_ALG:""
Andres AG49d29332016-10-24 14:31:54 +0100[diff] [blame]43
Andres AGa3b9adb2017-03-01 11:53:29 +0000[diff] [blame]44PEM read (malformed PEM DES-CBC)
Manuel Pégourié-Gonnard52d02a82023-03-16 10:24:47 +0100[diff] [blame]45depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC
Manuel Pégourié-Gonnard1df23b92022-02-07 12:59:10 +0100[diff] [blame]46mbedtls_pem_read_buffer:"-----BEGIN EC PRIVATE KEY-----":"-----END EC PRIVATE KEY-----":"-----BEGIN EC PRIVATE KEY-----\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: DES-CBC,AA94892A169FA426\n\nMAAA\n-----END EC PRIVATE KEY-----":"pwd":MBEDTLS_ERR_DES_INVALID_INPUT_LENGTH:""
Andres AGa3b9adb2017-03-01 11:53:29 +0000[diff] [blame]47
48PEM read (malformed PEM DES-EDE3-CBC)
Manuel Pégourié-Gonnard52d02a82023-03-16 10:24:47 +0100[diff] [blame]49depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC
Manuel Pégourié-Gonnard1df23b92022-02-07 12:59:10 +0100[diff] [blame]50mbedtls_pem_read_buffer:"-----BEGIN EC PRIVATE KEY-----":"-----END EC PRIVATE KEY-----":"-----BEGIN EC PRIVATE KEY-----\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: DES-EDE3-CBC,AA94892A169FA426\n\nMAAA\n-----END EC PRIVATE KEY-----":"pwd":MBEDTLS_ERR_DES_INVALID_INPUT_LENGTH:""
Andres AGa3b9adb2017-03-01 11:53:29 +0000[diff] [blame]51
52PEM read (malformed PEM AES-128-CBC)
Manuel Pégourié-Gonnard52d02a82023-03-16 10:24:47 +0100[diff] [blame]53depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_AES_C:MBEDTLS_CIPHER_MODE_CBC
Manuel Pégourié-Gonnard1df23b92022-02-07 12:59:10 +0100[diff] [blame]54mbedtls_pem_read_buffer:"-----BEGIN EC PRIVATE KEY-----":"-----END EC PRIVATE KEY-----":"-----BEGIN EC PRIVATE KEY-----\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: AES-128-CBC,AA94892A169FA426AA94892A169FA426\n\nMAAA\n-----END EC PRIVATE KEY-----":"pwd":MBEDTLS_ERR_AES_INVALID_INPUT_LENGTH:""
Valerio Setti4ade8ee2024-02-09 17:44:07 +0100[diff] [blame]55
56# The output sequence's length is not multiple of block size (16 bytes). This
57# proves that the pem_context->len value is properly updated based on the SEQUENCE
58# length read from the decoded ASN.1 data (i.e. extra padding, if any, is ignored).
59PEM read (valid EC key encoded with AES-128-CBC)
60depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_AES_C:MBEDTLS_CIPHER_MODE_CBC
61mbedtls_pem_read_buffer:"-----BEGIN EC PRIVATE KEY-----":"-----END EC PRIVATE KEY-----":"-----BEGIN EC PRIVATE KEY-----\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: AES-128-CBC,151F851B6A7F3FBDAA5B7173117D0127\n\nLw+0OM+0Bwcl+ls/vxQbLrVshGc7bsNPvvtj2sJeMFFEq3V1mj/IO++0KK/CDhMH\nh6CZPsmgVOeM5uFpqYaq0fJbUduN2eDMWszWRm0SFkY=\n-----END EC PRIVATE KEY-----":"pwdpwd":0:"3041020101040f00d8023c809afd45e426d1a4dbe0ffa00706052b81040004a1220320000400da1ecfa53d528237625e119e2e0500d2eb671724f16deb6a63749516b7"
62
Valerio Setti4cc65222024-02-16 14:40:42 +0100[diff] [blame]63# The text "hello world" together with some invalid padding data is encoded
64# with AES-128-CBC in order to test padding validation.
Valerio Settic1b93752024-02-12 11:03:16 +0100[diff] [blame]65# Since PBKDF1 isn't supported in OpenSSL, here's the steps:
66# 1. generate the key (password="password"; IV=0x3132333435363738 in hex or "12345678" as string)
67# echo -n "password12345678" | openssl md5
68# 2. encode data
Valerio Settic1b93752024-02-12 11:03:16 +0100[diff] [blame]69# echo -n -e "\x68\x65\x6c\x6c\x6f\x20\x77\x6f\x72\x6c\x64\x01\x02\x03\x04\x05" | openssl aes-128-cbc -e -base64 -p -K "bbb0ddff1b944b3cc68eaaeb7ac20099" -iv "3132333435363738" -nopad
Valerio Setti4cc65222024-02-16 14:40:42 +0100[diff] [blame]70PEM read (AES-128-CBC, invalid padding data)
Valerio Settic1b93752024-02-12 11:03:16 +0100[diff] [blame]71depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_AES_C:MBEDTLS_CIPHER_MODE_CBC
Valerio Settie88a1c52024-02-19 15:08:49 +0100[diff] [blame]72mbedtls_pem_read_buffer:"-----BEGIN EC PRIVATE KEY-----":"-----END EC PRIVATE KEY-----":"-----BEGIN EC PRIVATE KEY-----\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: AES-128-CBC,31323334353637380000000000000000\n\n333hxynfxEdXrSHQfIabxQ==\n-----END EC PRIVATE KEY-----":"password":MBEDTLS_ERR_PEM_PASSWORD_MISMATCH:""
Valerio Setti8aff4ef2024-02-16 14:31:51 +0100[diff] [blame]73
74# Padding data (0x11) is larger than AES block size (16).
75# Generated with:
76# echo -n -e "\x68\x65\x6c\x6c\x6f\x20\x77\x6f\x72\x6c\x64\x11\x11\x11\x11\x11" | openssl aes-128-cbc -e -base64 -p -K "bbb0ddff1b944b3cc68eaaeb7ac20099" -iv "3132333435363738" -nopad
77PEM read (AES-128-CBC, padding data is larger than AES block length)
78depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_AES_C:MBEDTLS_CIPHER_MODE_CBC
Valerio Settie88a1c52024-02-19 15:08:49 +0100[diff] [blame]79mbedtls_pem_read_buffer:"-----BEGIN EC PRIVATE KEY-----":"-----END EC PRIVATE KEY-----":"-----BEGIN EC PRIVATE KEY-----\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: AES-128-CBC,31323334353637380000000000000000\n\n5wA/XVXHuMsQAAOGFQmK0g==\n-----END EC PRIVATE KEY-----":"password":MBEDTLS_ERR_PEM_PASSWORD_MISMATCH:""
Valerio Setti8aff4ef2024-02-16 14:31:51 +0100[diff] [blame]80
Valerio Settie10674d2024-02-19 14:52:24 +0100[diff] [blame]81# Padding data (0x9) is larger than DES block size (8).
Valerio Setti8aff4ef2024-02-16 14:31:51 +0100[diff] [blame]82# Generated with:
83# echo -n -e "\x68\x65\x6c\x6c\x6f\x09\x09\x09" | openssl des-cbc -e -base64 -p -K "bbb0ddff1b944b3cc68eaaeb7ac20099" -iv "3132333435363738" -nopad
84PEM read (DES-CBC, padding data is larger than DES block length)
85depends_on:MBEDTLS_MD_CAN_MD5:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC
Valerio Settie88a1c52024-02-19 15:08:49 +0100[diff] [blame]86mbedtls_pem_read_buffer:"-----BEGIN EC PRIVATE KEY-----":"-----END EC PRIVATE KEY-----":"-----BEGIN EC PRIVATE KEY-----\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: DES-CBC,3132333435363738\n\n6a+B2WineBM=\n-----END EC PRIVATE KEY-----":"password":MBEDTLS_ERR_PEM_PASSWORD_MISMATCH:""