TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / e66ca3bbf36332bca6a97f6bca2a5883f5f32387 / . / tests / suites / test_suite_psa_crypto.function
blob: 95863756059f3843cdcb798fcc32bc07acdf25a5 [file] [log] [blame]
Gilles Peskinee59236f2018-01-27 23:32:46 +0100[diff] [blame]1/* BEGIN_HEADER */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]2#include <stdint.h>
Gilles Peskinee59236f2018-01-27 23:32:46 +0100[diff] [blame]3#include "psa/crypto.h"
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]4
5#if(UINT32_MAX > SIZE_MAX)
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]6#define PSA_CRYPTO_TEST_SIZE_T_RANGE( x ) ( ( x ) <= SIZE_MAX )
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]7#else
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]8#define PSA_CRYPTO_TEST_SIZE_T_RANGE( x ) 1
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]9#endif
Gilles Peskinee66ca3b2018-06-20 00:11:45 +0200[diff] [blame^]10
11/** Test if a buffer is not all-bits zero.
12 *
13 * \param buffer Pointer to the beginning of the buffer.
14 * \param size Size of the buffer in bytes.
15 *
16 * \return 0 if the buffer is all-bits-zero.
17 * \return A nonzero value otherwise.
18 */
19int mem_is_nonzero( void *buffer, size_t size )
20{
21 size_t i;
22 for( i = 0; i < size; i++ )
23 {
24 if( ( (unsigned char *) buffer )[i] != 0 )
25 return( i + 1 );
26 }
27 return( 0 );
28}
Gilles Peskinee59236f2018-01-27 23:32:46 +0100[diff] [blame]29/* END_HEADER */
30
31/* BEGIN_DEPENDENCIES
32 * depends_on:MBEDTLS_PSA_CRYPTO_C
33 * END_DEPENDENCIES
34 */
35
36/* BEGIN_CASE */
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]37void init_deinit( )
Gilles Peskinee59236f2018-01-27 23:32:46 +0100[diff] [blame]38{
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]39 psa_status_t status;
Gilles Peskinee59236f2018-01-27 23:32:46 +0100[diff] [blame]40 int i;
41 for( i = 0; i <= 1; i++ )
42 {
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]43 status = psa_crypto_init( );
44 TEST_ASSERT( status == PSA_SUCCESS );
45 status = psa_crypto_init( );
46 TEST_ASSERT( status == PSA_SUCCESS );
Gilles Peskinee59236f2018-01-27 23:32:46 +0100[diff] [blame]47 mbedtls_psa_crypto_free( );
48 }
49}
50/* END_CASE */
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]51
52/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]53void import( data_t *data, int type, int expected_status )
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]54{
55 int slot = 1;
56 psa_status_t status;
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]57
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]58 TEST_ASSERT( data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]59 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( data->len ) );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]60 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
61
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]62 status = psa_import_key( slot, type, data->x, data->len );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]63 TEST_ASSERT( status == (psa_status_t) expected_status );
64 if( status == PSA_SUCCESS )
65 TEST_ASSERT( psa_destroy_key( slot ) == PSA_SUCCESS );
66
67exit:
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]68 mbedtls_psa_crypto_free( );
69}
70/* END_CASE */
71
72/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]73void import_export( data_t *data,
Moran Pekera964a8f2018-06-04 18:42:36 +0300[diff] [blame]74 int type_arg,
75 int alg_arg,
76 int usage_arg,
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]77 int expected_bits,
78 int export_size_delta,
79 int expected_export_status,
80 int canonical_input )
81{
82 int slot = 1;
83 int slot2 = slot + 1;
84 psa_key_type_t type = type_arg;
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]85 psa_algorithm_t alg = alg_arg;
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]86 psa_status_t status;
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]87 unsigned char *exported = NULL;
88 unsigned char *reexported = NULL;
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]89 size_t export_size;
90 size_t exported_length;
91 size_t reexported_length;
92 psa_key_type_t got_type;
93 size_t got_bits;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]94 psa_key_policy_t policy;
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]95
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]96 TEST_ASSERT( data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]97 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( data->len ) );
98 export_size = (ssize_t) data->len + export_size_delta;
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]99 exported = mbedtls_calloc( 1, export_size );
100 TEST_ASSERT( exported != NULL );
101 if( ! canonical_input )
102 {
103 reexported = mbedtls_calloc( 1, export_size );
104 TEST_ASSERT( reexported != NULL );
105 }
106 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
107
mohammad1603a97cb8c2018-03-28 03:46:26 -0700[diff] [blame]108 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]109 psa_key_policy_set_usage( &policy, usage_arg, alg );
mohammad1603a97cb8c2018-03-28 03:46:26 -0700[diff] [blame]110 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
111
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]112 /* Import the key */
113 TEST_ASSERT( psa_import_key( slot, type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]114 data->x, data->len ) == PSA_SUCCESS );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]115
116 /* Test the key information */
117 TEST_ASSERT( psa_get_key_information( slot,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]118 &got_type,
119 &got_bits ) == PSA_SUCCESS );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]120 TEST_ASSERT( got_type == type );
121 TEST_ASSERT( got_bits == (size_t) expected_bits );
122
123 /* Export the key */
124 status = psa_export_key( slot,
125 exported, export_size,
126 &exported_length );
127 TEST_ASSERT( status == (psa_status_t) expected_export_status );
Gilles Peskinee66ca3b2018-06-20 00:11:45 +0200[diff] [blame^]128 TEST_ASSERT( ! mem_is_nonzero( exported + exported_length,
129 export_size - exported_length ) );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]130 if( status != PSA_SUCCESS )
Gilles Peskinee66ca3b2018-06-20 00:11:45 +0200[diff] [blame^]131 {
132 TEST_ASSERT( exported_length == 0 );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]133 goto destroy;
Gilles Peskinee66ca3b2018-06-20 00:11:45 +0200[diff] [blame^]134 }
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]135
136 if( canonical_input )
137 {
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]138 TEST_ASSERT( exported_length == data->len );
139 TEST_ASSERT( memcmp( exported, data->x, data->len ) == 0 );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]140 }
141 else
142 {
mohammad1603a97cb8c2018-03-28 03:46:26 -0700[diff] [blame]143 TEST_ASSERT( psa_set_key_policy( slot2, &policy ) == PSA_SUCCESS );
144
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]145 TEST_ASSERT( psa_import_key( slot2, type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]146 exported,
147 export_size ) == PSA_SUCCESS );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]148 TEST_ASSERT( psa_export_key( slot2,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]149 reexported,
150 export_size,
151 &reexported_length ) == PSA_SUCCESS );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]152 TEST_ASSERT( reexported_length == exported_length );
153 TEST_ASSERT( memcmp( reexported, exported,
154 exported_length ) == 0 );
155 }
156
157destroy:
158 /* Destroy the key */
159 TEST_ASSERT( psa_destroy_key( slot ) == PSA_SUCCESS );
160 TEST_ASSERT( psa_get_key_information(
161 slot, NULL, NULL ) == PSA_ERROR_EMPTY_SLOT );
162
163exit:
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]164 mbedtls_free( exported );
165 mbedtls_free( reexported );
Gilles Peskine2f9c4dc2018-01-28 13:16:24 +0100[diff] [blame]166 mbedtls_psa_crypto_free( );
167}
168/* END_CASE */
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]169
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]170/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]171void import_export_public_key( data_t *data,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]172 int type_arg,
173 int alg_arg,
174 int expected_bits,
175 int public_key_expected_length,
176 int expected_export_status )
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]177{
178 int slot = 1;
179 psa_key_type_t type = type_arg;
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]180 psa_algorithm_t alg = alg_arg;
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]181 psa_status_t status;
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]182 unsigned char *exported = NULL;
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]183 size_t export_size;
184 size_t exported_length;
185 psa_key_type_t got_type;
186 size_t got_bits;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]187 psa_key_policy_t policy;
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]188
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]189 TEST_ASSERT( data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]190 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( data->len ) );
191 export_size = (ssize_t) data->len;
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]192 exported = mbedtls_calloc( 1, export_size );
193 TEST_ASSERT( exported != NULL );
194
195 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
196
197 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]198 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_EXPORT, alg );
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]199 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
200
201 /* Import the key */
202 TEST_ASSERT( psa_import_key( slot, type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]203 data->x, data->len ) == PSA_SUCCESS );
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]204
205 /* Test the key information */
206 TEST_ASSERT( psa_get_key_information( slot,
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]207 &got_type,
208 &got_bits ) == PSA_SUCCESS );
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]209 TEST_ASSERT( got_type == type );
210 TEST_ASSERT( got_bits == (size_t) expected_bits );
211
212 /* Export the key */
213 status = psa_export_public_key( slot,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]214 exported, export_size,
215 &exported_length );
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]216 TEST_ASSERT( status == (psa_status_t) expected_export_status );
217 if( status != PSA_SUCCESS )
218 goto destroy;
219
220 TEST_ASSERT( exported_length == (size_t) public_key_expected_length );
221
222destroy:
223 /* Destroy the key */
224 TEST_ASSERT( psa_destroy_key( slot ) == PSA_SUCCESS );
225 TEST_ASSERT( psa_get_key_information(
226 slot, NULL, NULL ) == PSA_ERROR_EMPTY_SLOT );
227
228exit:
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]229 mbedtls_free( exported );
Moran Pekerf709f4a2018-06-06 17:26:04 +0300[diff] [blame]230 mbedtls_psa_crypto_free( );
231}
232/* END_CASE */
233
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]234/* BEGIN_CASE */
Gilles Peskined5b33222018-06-18 22:20:03 +0200[diff] [blame]235void key_policy( int usage_arg, int alg_arg )
236{
237 int key_slot = 1;
238 psa_algorithm_t alg = alg_arg;
239 psa_key_usage_t usage = usage_arg;
240 psa_key_type_t key_type = PSA_KEY_TYPE_AES;
241 unsigned char key[32] = {0};
242 psa_key_policy_t policy_set;
243 psa_key_policy_t policy_get;
244
245 memset( key, 0x2a, sizeof( key ) );
246
247 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
248
249 psa_key_policy_init( &policy_set );
250 psa_key_policy_init( &policy_get );
251
252 psa_key_policy_set_usage( &policy_set, usage, alg );
253
254 TEST_ASSERT( psa_key_policy_get_usage( &policy_set ) == usage );
255 TEST_ASSERT( psa_key_policy_get_algorithm( &policy_set ) == alg );
256 TEST_ASSERT( psa_set_key_policy( key_slot, &policy_set ) == PSA_SUCCESS );
257
258 TEST_ASSERT( psa_import_key( key_slot, key_type,
259 key, sizeof( key ) ) == PSA_SUCCESS );
260
261 TEST_ASSERT( psa_get_key_policy( key_slot, &policy_get ) == PSA_SUCCESS );
262
263 TEST_ASSERT( policy_get.usage == policy_set.usage );
264 TEST_ASSERT( policy_get.alg == policy_set.alg );
265
266exit:
267 psa_destroy_key( key_slot );
268 mbedtls_psa_crypto_free( );
269}
270/* END_CASE */
271
272/* BEGIN_CASE */
273void key_policy_fail( int usage_arg, int alg_arg, int expected_status,
274 data_t *keypair )
275{
276 int key_slot = 1;
277 psa_algorithm_t alg = alg_arg;
278 psa_key_usage_t usage = usage_arg;
279 size_t signature_length = 0;
280 psa_key_policy_t policy;
281 int actual_status = PSA_SUCCESS;
282
283 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
284
285 psa_key_policy_init( &policy );
286 psa_key_policy_set_usage( &policy, usage, alg );
287 TEST_ASSERT( psa_set_key_policy( key_slot, &policy ) == PSA_SUCCESS );
288
289 if( usage & PSA_KEY_USAGE_EXPORT )
290 {
291 TEST_ASSERT( keypair != NULL );
292 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( keypair->len ) );
293 TEST_ASSERT( psa_import_key( key_slot,
294 PSA_KEY_TYPE_RSA_KEYPAIR,
295 keypair->x,
296 keypair->len ) == PSA_SUCCESS );
297 actual_status = psa_asymmetric_sign( key_slot, alg,
298 NULL, 0,
299 NULL, 0,
300 NULL, 0, &signature_length );
301 }
302
303 if( usage & PSA_KEY_USAGE_SIGN )
304 {
305 TEST_ASSERT( keypair != NULL );
306 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( keypair->len ) );
307 TEST_ASSERT( psa_import_key( key_slot,
308 PSA_KEY_TYPE_RSA_KEYPAIR,
309 keypair->x,
310 keypair->len ) == PSA_SUCCESS );
311 actual_status = psa_export_key( key_slot, NULL, 0, NULL );
312 }
313
314 TEST_ASSERT( actual_status == expected_status );
315
316exit:
317 psa_destroy_key( key_slot );
318 mbedtls_psa_crypto_free( );
319}
320/* END_CASE */
321
322/* BEGIN_CASE */
323void key_lifetime( int lifetime_arg )
324{
325 int key_slot = 1;
326 psa_key_type_t key_type = PSA_ALG_CBC_BASE;
327 unsigned char key[32] = {0};
328 psa_key_lifetime_t lifetime_set = lifetime_arg;
329 psa_key_lifetime_t lifetime_get;
330
331 memset( key, 0x2a, sizeof( key ) );
332
333 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
334
335 TEST_ASSERT( psa_set_key_lifetime( key_slot,
336 lifetime_set ) == PSA_SUCCESS );
337
338 TEST_ASSERT( psa_import_key( key_slot, key_type,
339 key, sizeof( key ) ) == PSA_SUCCESS );
340
341 TEST_ASSERT( psa_get_key_lifetime( key_slot,
342 &lifetime_get ) == PSA_SUCCESS );
343
344 TEST_ASSERT( lifetime_get == lifetime_set );
345
346exit:
347 psa_destroy_key( key_slot );
348 mbedtls_psa_crypto_free( );
349}
350/* END_CASE */
351
352/* BEGIN_CASE */
353void key_lifetime_set_fail( int key_slot_arg,
354 int lifetime_arg,
355 int expected_status_arg )
356{
357 psa_key_slot_t key_slot = key_slot_arg;
358 psa_key_lifetime_t lifetime_set = lifetime_arg;
359 psa_status_t actual_status;
360 psa_status_t expected_status = expected_status_arg;
361
362 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
363
364 actual_status = psa_set_key_lifetime( key_slot, lifetime_set );
365
366 if( actual_status == PSA_SUCCESS )
367 actual_status = psa_set_key_lifetime( key_slot, lifetime_set );
368
369 TEST_ASSERT( expected_status == actual_status );
370
371exit:
372 psa_destroy_key( key_slot );
373 mbedtls_psa_crypto_free( );
374}
375/* END_CASE */
376
377/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]378void hash_finish( int alg_arg, data_t *input, data_t *expected_hash )
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]379{
380 psa_algorithm_t alg = alg_arg;
Gilles Peskineb3e6e5d2018-06-18 22:16:43 +0200[diff] [blame]381 unsigned char actual_hash[PSA_HASH_MAX_SIZE];
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]382 size_t actual_hash_length;
383 psa_hash_operation_t operation;
384
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]385 TEST_ASSERT( input != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]386 TEST_ASSERT( expected_hash != NULL );
387 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input->len ) );
388 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_hash->len ) );
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]389
390 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
391
392 TEST_ASSERT( psa_hash_start( &operation, alg ) == PSA_SUCCESS );
393 TEST_ASSERT( psa_hash_update( &operation,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]394 input->x, input->len ) == PSA_SUCCESS );
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]395 TEST_ASSERT( psa_hash_finish( &operation,
396 actual_hash, sizeof( actual_hash ),
397 &actual_hash_length ) == PSA_SUCCESS );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]398 TEST_ASSERT( actual_hash_length == expected_hash->len );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]399 TEST_ASSERT( memcmp( expected_hash->x, actual_hash,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]400 expected_hash->len ) == 0 );
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]401
402exit:
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]403 mbedtls_psa_crypto_free( );
404}
405/* END_CASE */
406
407/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]408void hash_verify( int alg_arg, data_t *input, data_t *expected_hash )
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]409{
410 psa_algorithm_t alg = alg_arg;
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]411 psa_hash_operation_t operation;
412
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]413 TEST_ASSERT( input != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]414 TEST_ASSERT( expected_hash != NULL );
415 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input->len ) );
416 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_hash->len ) );
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]417
418 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
419
420 TEST_ASSERT( psa_hash_start( &operation, alg ) == PSA_SUCCESS );
421 TEST_ASSERT( psa_hash_update( &operation,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]422 input->x,
423 input->len ) == PSA_SUCCESS );
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]424 TEST_ASSERT( psa_hash_verify( &operation,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]425 expected_hash->x,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]426 expected_hash->len ) == PSA_SUCCESS );
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]427
428exit:
Gilles Peskine9ef733f2018-02-07 21:05:37 +0100[diff] [blame]429 mbedtls_psa_crypto_free( );
430}
431/* END_CASE */
432
433/* BEGIN_CASE */
Gilles Peskinec0ec9722018-06-18 17:03:37 +0200[diff] [blame]434void mac_verify( int key_type_arg,
435 data_t *key,
436 int alg_arg,
437 data_t *input,
438 data_t *expected_mac )
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]439{
440 int key_slot = 1;
441 psa_key_type_t key_type = key_type_arg;
442 psa_algorithm_t alg = alg_arg;
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]443 psa_mac_operation_t operation;
mohammad16036df908f2018-04-02 08:34:15 -0700[diff] [blame]444 psa_key_policy_t policy;
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]445
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]446 TEST_ASSERT( key != NULL );
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]447 TEST_ASSERT( input != NULL );
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]448 TEST_ASSERT( expected_mac != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]449 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key->len ) );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]450 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input->len ) );
451 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_mac->len ) );
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]452
453 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
454
mohammad16036df908f2018-04-02 08:34:15 -0700[diff] [blame]455 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]456 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_VERIFY, alg );
mohammad16036df908f2018-04-02 08:34:15 -0700[diff] [blame]457 TEST_ASSERT( psa_set_key_policy( key_slot, &policy ) == PSA_SUCCESS );
458
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]459 TEST_ASSERT( psa_import_key( key_slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]460 key->x, key->len ) == PSA_SUCCESS );
Gilles Peskinec0ec9722018-06-18 17:03:37 +0200[diff] [blame]461
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]462 TEST_ASSERT( psa_mac_start( &operation, key_slot, alg ) == PSA_SUCCESS );
463 TEST_ASSERT( psa_destroy_key( key_slot ) == PSA_SUCCESS );
464 TEST_ASSERT( psa_mac_update( &operation,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]465 input->x, input->len ) == PSA_SUCCESS );
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]466 TEST_ASSERT( psa_mac_verify( &operation,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]467 expected_mac->x,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]468 expected_mac->len ) == PSA_SUCCESS );
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]469
470exit:
Gilles Peskine8c9def32018-02-08 10:02:12 +0100[diff] [blame]471 psa_destroy_key( key_slot );
472 mbedtls_psa_crypto_free( );
473}
474/* END_CASE */
475
476/* BEGIN_CASE */
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]477void cipher_encrypt( int alg_arg, int key_type_arg,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]478 data_t *key,
479 data_t *input, data_t *expected_output,
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]480 int expected_status )
481{
482 int key_slot = 1;
483 psa_status_t status;
484 psa_key_type_t key_type = key_type_arg;
485 psa_algorithm_t alg = alg_arg;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]486 unsigned char iv[16] = {0};
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]487 unsigned char *output = NULL;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]488 size_t output_buffer_size = 0;
489 size_t function_output_length = 0;
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]490 size_t total_output_length = 0;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]491 psa_cipher_operation_t operation;
492
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]493 TEST_ASSERT( key != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]494 TEST_ASSERT( input != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]495 TEST_ASSERT( expected_output != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]496 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key->len ) );
497 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input->len ) );
498 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_output->len ) );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]499
500 memset( iv, 0x2a, sizeof( iv ) );
501
502 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
503
504 TEST_ASSERT( psa_import_key( key_slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]505 key->x, key->len ) == PSA_SUCCESS );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]506
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]507 TEST_ASSERT( psa_encrypt_setup( &operation,
508 key_slot, alg ) == PSA_SUCCESS );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]509
510 TEST_ASSERT( psa_encrypt_set_iv( &operation,
511 iv, sizeof( iv ) ) == PSA_SUCCESS );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]512 output_buffer_size = input->len + operation.block_size;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]513 output = mbedtls_calloc( 1, output_buffer_size );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]514 TEST_ASSERT( output != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]515
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]516 TEST_ASSERT( psa_cipher_update( &operation,
517 input->x, input->len,
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]518 output, output_buffer_size,
519 &function_output_length ) == PSA_SUCCESS );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]520 total_output_length += function_output_length;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]521 status = psa_cipher_finish( &operation,
522 output + function_output_length,
523 output_buffer_size,
524 &function_output_length );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]525 total_output_length += function_output_length;
526
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]527 TEST_ASSERT( status == (psa_status_t) expected_status );
528 if( expected_status == PSA_SUCCESS )
529 {
530 TEST_ASSERT( psa_cipher_abort( &operation ) == PSA_SUCCESS );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]531 TEST_ASSERT( total_output_length == expected_output->len );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]532 TEST_ASSERT( memcmp( expected_output->x, output,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]533 expected_output->len ) == 0 );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]534 }
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]535
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]536exit:
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]537 mbedtls_free( output );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]538 psa_destroy_key( key_slot );
539 mbedtls_psa_crypto_free( );
540}
541/* END_CASE */
542
543/* BEGIN_CASE */
544void cipher_encrypt_multipart( int alg_arg, int key_type_arg,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]545 data_t *key,
546 data_t *input,
547 int first_part_size,
548 data_t *expected_output )
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]549{
550 int key_slot = 1;
551 psa_key_type_t key_type = key_type_arg;
552 psa_algorithm_t alg = alg_arg;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]553 unsigned char iv[16] = {0};
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]554 unsigned char *output = NULL;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]555 size_t output_buffer_size = 0;
556 size_t function_output_length = 0;
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]557 size_t total_output_length = 0;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]558 psa_cipher_operation_t operation;
559
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]560 TEST_ASSERT( key != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]561 TEST_ASSERT( input != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]562 TEST_ASSERT( expected_output != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]563 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key->len ) );
564 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input->len ) );
565 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_output->len ) );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]566
567 memset( iv, 0x2a, sizeof( iv ) );
568
569 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
570
571 TEST_ASSERT( psa_import_key( key_slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]572 key->x, key->len ) == PSA_SUCCESS );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]573
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]574 TEST_ASSERT( psa_encrypt_setup( &operation,
575 key_slot, alg ) == PSA_SUCCESS );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]576
577 TEST_ASSERT( psa_encrypt_set_iv( &operation,
578 iv, sizeof( iv ) ) == PSA_SUCCESS );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]579 output_buffer_size = input->len + operation.block_size;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]580 output = mbedtls_calloc( 1, output_buffer_size );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]581 TEST_ASSERT( output != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]582
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]583 TEST_ASSERT( (unsigned int) first_part_size < input->len );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]584 TEST_ASSERT( psa_cipher_update( &operation, input->x, first_part_size,
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]585 output, output_buffer_size,
586 &function_output_length ) == PSA_SUCCESS );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]587 total_output_length += function_output_length;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]588 TEST_ASSERT( psa_cipher_update( &operation,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]589 input->x + first_part_size,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]590 input->len - first_part_size,
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]591 output, output_buffer_size,
592 &function_output_length ) == PSA_SUCCESS );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]593 total_output_length += function_output_length;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]594 TEST_ASSERT( psa_cipher_finish( &operation,
595 output + function_output_length,
596 output_buffer_size,
597 &function_output_length ) == PSA_SUCCESS );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]598 total_output_length += function_output_length;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]599 TEST_ASSERT( psa_cipher_abort( &operation ) == PSA_SUCCESS );
600
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]601 TEST_ASSERT( total_output_length == expected_output->len );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]602 TEST_ASSERT( memcmp( expected_output->x, output,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]603 expected_output->len ) == 0 );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]604
605exit:
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]606 mbedtls_free( output );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]607 psa_destroy_key( key_slot );
608 mbedtls_psa_crypto_free( );
609}
610/* END_CASE */
611
612/* BEGIN_CASE */
613void cipher_decrypt_multipart( int alg_arg, int key_type_arg,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]614 data_t *key,
615 data_t *input,
616 int first_part_size,
617 data_t *expected_output )
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]618{
619 int key_slot = 1;
620
621 psa_key_type_t key_type = key_type_arg;
622 psa_algorithm_t alg = alg_arg;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]623 unsigned char iv[16] = {0};
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]624 unsigned char *output = NULL;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]625 size_t output_buffer_size = 0;
626 size_t function_output_length = 0;
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]627 size_t total_output_length = 0;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]628 psa_cipher_operation_t operation;
629
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]630 TEST_ASSERT( key != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]631 TEST_ASSERT( input != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]632 TEST_ASSERT( expected_output != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]633 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key->len ) );
634 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input->len ) );
635 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_output->len ) );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]636
637 memset( iv, 0x2a, sizeof( iv ) );
638
639 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
640
641 TEST_ASSERT( psa_import_key( key_slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]642 key->x, key->len ) == PSA_SUCCESS );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]643
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]644 TEST_ASSERT( psa_decrypt_setup( &operation,
645 key_slot, alg ) == PSA_SUCCESS );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]646
647 TEST_ASSERT( psa_encrypt_set_iv( &operation,
648 iv, sizeof( iv ) ) == PSA_SUCCESS );
649
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]650 output_buffer_size = input->len + operation.block_size;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]651 output = mbedtls_calloc( 1, output_buffer_size );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]652 TEST_ASSERT( output != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]653
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]654 TEST_ASSERT( (unsigned int) first_part_size < input->len );
655 TEST_ASSERT( psa_cipher_update( &operation,
656 input->x, first_part_size,
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]657 output, output_buffer_size,
658 &function_output_length ) == PSA_SUCCESS );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]659 total_output_length += function_output_length;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]660 TEST_ASSERT( psa_cipher_update( &operation,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]661 input->x + first_part_size,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]662 input->len - first_part_size,
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]663 output, output_buffer_size,
664 &function_output_length ) == PSA_SUCCESS );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]665 total_output_length += function_output_length;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]666 TEST_ASSERT( psa_cipher_finish( &operation,
667 output + function_output_length,
668 output_buffer_size,
669 &function_output_length ) == PSA_SUCCESS );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]670 total_output_length += function_output_length;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]671 TEST_ASSERT( psa_cipher_abort( &operation ) == PSA_SUCCESS );
672
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]673 TEST_ASSERT( total_output_length == expected_output->len );
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]674 TEST_ASSERT( memcmp( expected_output->x, output,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]675 expected_output->len ) == 0 );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]676
677exit:
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]678 mbedtls_free( output );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]679 psa_destroy_key( key_slot );
680 mbedtls_psa_crypto_free( );
681}
682/* END_CASE */
683
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]684/* BEGIN_CASE */
685void cipher_decrypt( int alg_arg, int key_type_arg,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]686 data_t *key,
687 data_t *input, data_t *expected_output,
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]688 int expected_status )
689{
690 int key_slot = 1;
691 psa_status_t status;
692 psa_key_type_t key_type = key_type_arg;
693 psa_algorithm_t alg = alg_arg;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]694 unsigned char iv[16] = {0};
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]695 unsigned char *output = NULL;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]696 size_t output_buffer_size = 0;
697 size_t function_output_length = 0;
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]698 size_t total_output_length = 0;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]699 psa_cipher_operation_t operation;
700
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]701 TEST_ASSERT( key != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]702 TEST_ASSERT( input != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]703 TEST_ASSERT( expected_output != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]704 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key->len ) );
705 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input->len ) );
706 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_output->len ) );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]707
708 memset( iv, 0x2a, sizeof( iv ) );
709
710 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
711
712 TEST_ASSERT( psa_import_key( key_slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]713 key->x, key->len ) == PSA_SUCCESS );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]714
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]715 TEST_ASSERT( psa_decrypt_setup( &operation,
716 key_slot, alg ) == PSA_SUCCESS );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]717
718 TEST_ASSERT( psa_encrypt_set_iv( &operation,
719 iv, sizeof( iv ) ) == PSA_SUCCESS );
720
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]721 output_buffer_size = input->len + operation.block_size;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]722 output = mbedtls_calloc( 1, output_buffer_size );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]723 TEST_ASSERT( output != NULL );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]724
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]725 TEST_ASSERT( psa_cipher_update( &operation,
726 input->x, input->len,
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]727 output, output_buffer_size,
728 &function_output_length ) == PSA_SUCCESS );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]729 total_output_length += function_output_length;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]730 status = psa_cipher_finish( &operation,
731 output + function_output_length,
732 output_buffer_size,
733 &function_output_length );
Gilles Peskinea7ec95f2018-06-08 14:40:59 +0200[diff] [blame]734 total_output_length += function_output_length;
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]735 TEST_ASSERT( status == (psa_status_t) expected_status );
736
737 if( expected_status == PSA_SUCCESS )
738 {
739 TEST_ASSERT( psa_cipher_abort( &operation ) == PSA_SUCCESS );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]740 TEST_ASSERT( total_output_length == expected_output->len );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]741 TEST_ASSERT( memcmp( expected_output->x, output,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]742 expected_output->len ) == 0 );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]743 }
744
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]745exit:
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]746 mbedtls_free( output );
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]747 psa_destroy_key( key_slot );
748 mbedtls_psa_crypto_free( );
749}
750/* END_CASE */
751
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]752/* BEGIN_CASE */
753void cipher_verify_output( int alg_arg, int key_type_arg,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]754 data_t *key,
755 data_t *input )
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]756{
757 int key_slot = 1;
758 psa_key_type_t key_type = key_type_arg;
759 psa_algorithm_t alg = alg_arg;
mohammad1603e6b67a12018-03-12 10:38:49 -0700[diff] [blame]760 unsigned char iv[16] = {0};
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]761 size_t iv_size = 16;
762 size_t iv_length = 0;
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]763 unsigned char *output1 = NULL;
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]764 size_t output1_size = 0;
765 size_t output1_length = 0;
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]766 unsigned char *output2 = NULL;
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]767 size_t output2_size = 0;
768 size_t output2_length = 0;
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]769 size_t function_output_length = 0;
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]770 psa_cipher_operation_t operation1;
771 psa_cipher_operation_t operation2;
772
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]773 TEST_ASSERT( key != NULL );
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]774 TEST_ASSERT( input != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]775 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key->len ) );
776 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input->len ) );
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]777
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]778 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
779
780 TEST_ASSERT( psa_import_key( key_slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]781 key->x, key->len ) == PSA_SUCCESS );
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]782
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]783 TEST_ASSERT( psa_encrypt_setup( &operation1,
784 key_slot, alg ) == PSA_SUCCESS );
785 TEST_ASSERT( psa_decrypt_setup( &operation2,
786 key_slot, alg ) == PSA_SUCCESS );
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]787
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]788 TEST_ASSERT( psa_encrypt_generate_iv( &operation1,
789 iv, iv_size,
790 &iv_length ) == PSA_SUCCESS );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]791 output1_size = input->len + operation1.block_size;
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]792 output1 = mbedtls_calloc( 1, output1_size );
793 TEST_ASSERT( output1 != NULL );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]794
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]795 TEST_ASSERT( psa_cipher_update( &operation1, input->x, input->len,
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]796 output1, output1_size,
797 &output1_length ) == PSA_SUCCESS );
798 TEST_ASSERT( psa_cipher_finish( &operation1,
799 output1 + output1_length, output1_size,
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]800 &function_output_length ) == PSA_SUCCESS );
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]801
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]802 output1_length += function_output_length;
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]803
804 TEST_ASSERT( psa_cipher_abort( &operation1 ) == PSA_SUCCESS );
805
806 output2_size = output1_length;
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]807 output2 = mbedtls_calloc( 1, output2_size );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]808 TEST_ASSERT( output2 != NULL );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]809
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]810 TEST_ASSERT( psa_encrypt_set_iv( &operation2,
811 iv, iv_length ) == PSA_SUCCESS );
812 TEST_ASSERT( psa_cipher_update( &operation2, output1, output1_length,
813 output2, output2_size,
814 &output2_length ) == PSA_SUCCESS );
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]815 function_output_length = 0;
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]816 TEST_ASSERT( psa_cipher_finish( &operation2,
817 output2 + output2_length,
818 output2_size,
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]819 &function_output_length ) == PSA_SUCCESS );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]820
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]821 output2_length += function_output_length;
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]822
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]823 TEST_ASSERT( psa_cipher_abort( &operation1 ) == PSA_SUCCESS );
824
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]825 TEST_ASSERT( input->len == output2_length );
826 TEST_ASSERT( memcmp( input->x, output2, input->len ) == 0 );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]827
828exit:
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]829 mbedtls_free( output1 );
830 mbedtls_free( output2 );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]831 psa_destroy_key( key_slot );
832 mbedtls_psa_crypto_free( );
833}
834/* END_CASE */
835
836/* BEGIN_CASE */
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]837void cipher_verify_output_multipart( int alg_arg,
838 int key_type_arg,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]839 data_t *key,
840 data_t *input,
Gilles Peskine50e586b2018-06-08 14:28:46 +0200[diff] [blame]841 int first_part_size )
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]842{
843 int key_slot = 1;
844 psa_key_type_t key_type = key_type_arg;
845 psa_algorithm_t alg = alg_arg;
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]846 unsigned char iv[16] = {0};
847 size_t iv_size = 16;
848 size_t iv_length = 0;
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]849 unsigned char *output1 = NULL;
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]850 size_t output1_buffer_size = 0;
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]851 size_t output1_length = 0;
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]852 unsigned char *output2 = NULL;
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]853 size_t output2_buffer_size = 0;
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]854 size_t output2_length = 0;
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]855 size_t function_output_length;
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]856 psa_cipher_operation_t operation1;
857 psa_cipher_operation_t operation2;
858
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]859 TEST_ASSERT( key != NULL );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]860 TEST_ASSERT( input != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]861 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key->len ) );
862 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input->len ) );
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]863
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]864 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
865
866 TEST_ASSERT( psa_import_key( key_slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]867 key->x, key->len ) == PSA_SUCCESS );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]868
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]869 TEST_ASSERT( psa_encrypt_setup( &operation1,
870 key_slot, alg ) == PSA_SUCCESS );
871 TEST_ASSERT( psa_decrypt_setup( &operation2,
872 key_slot, alg ) == PSA_SUCCESS );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]873
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]874 TEST_ASSERT( psa_encrypt_generate_iv( &operation1,
875 iv, iv_size,
876 &iv_length ) == PSA_SUCCESS );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]877 output1_buffer_size = input->len + operation1.block_size;
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]878 output1 = mbedtls_calloc( 1, output1_buffer_size );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]879 TEST_ASSERT( output1 != NULL );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]880
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]881 TEST_ASSERT( (unsigned int) first_part_size < input->len );
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]882
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]883 TEST_ASSERT( psa_cipher_update( &operation1, input->x, first_part_size,
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]884 output1, output1_buffer_size,
885 &function_output_length ) == PSA_SUCCESS );
886 output1_length += function_output_length;
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]887
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]888 TEST_ASSERT( psa_cipher_update( &operation1,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]889 input->x + first_part_size,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]890 input->len - first_part_size,
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]891 output1, output1_buffer_size,
892 &function_output_length ) == PSA_SUCCESS );
893 output1_length += function_output_length;
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]894
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]895 TEST_ASSERT( psa_cipher_finish( &operation1,
896 output1 + output1_length,
897 output1_buffer_size - output1_length,
898 &function_output_length ) == PSA_SUCCESS );
899 output1_length += function_output_length;
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]900
901 TEST_ASSERT( psa_cipher_abort( &operation1 ) == PSA_SUCCESS );
902
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]903 output2_buffer_size = output1_length;
904 output2 = mbedtls_calloc( 1, output2_buffer_size );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]905 TEST_ASSERT( output2 != NULL );
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]906
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]907 TEST_ASSERT( psa_encrypt_set_iv( &operation2,
908 iv, iv_length ) == PSA_SUCCESS );
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]909
910 TEST_ASSERT( psa_cipher_update( &operation2, output1, first_part_size,
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]911 output2, output2_buffer_size,
912 &function_output_length ) == PSA_SUCCESS );
913 output2_length += function_output_length;
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]914
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]915 TEST_ASSERT( psa_cipher_update( &operation2,
916 output1 + first_part_size,
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]917 output1_length - first_part_size,
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]918 output2, output2_buffer_size,
919 &function_output_length ) == PSA_SUCCESS );
920 output2_length += function_output_length;
Moran Pekerded84402018-06-06 16:36:50 +0300[diff] [blame]921
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]922 TEST_ASSERT( psa_cipher_finish( &operation2,
923 output2 + output2_length,
Gilles Peskine048b7f02018-06-08 14:20:49 +0200[diff] [blame]924 output2_buffer_size - output2_length,
925 &function_output_length ) == PSA_SUCCESS );
926 output2_length += function_output_length;
Gilles Peskine4ca9c3f2018-06-06 18:44:09 +0200[diff] [blame]927
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]928 TEST_ASSERT( psa_cipher_abort( &operation1 ) == PSA_SUCCESS );
929
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]930 TEST_ASSERT( input->len == output2_length );
931 TEST_ASSERT( memcmp( input->x, output2, input->len ) == 0 );
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]932
933exit:
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]934 mbedtls_free( output1 );
935 mbedtls_free( output2 );
mohammad1603d7d7ba52018-03-12 18:51:53 +0200[diff] [blame]936 psa_destroy_key( key_slot );
937 mbedtls_psa_crypto_free( );
938}
939/* END_CASE */
Gilles Peskine7268afc2018-06-06 15:19:24 +0200[diff] [blame]940
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]941/* BEGIN_CASE */
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]942void aead_encrypt_decrypt( int key_type_arg,
943 data_t * key_data,
944 int alg_arg,
945 data_t * input_data,
946 data_t * nonce,
947 data_t * additional_data,
948 int expected_result_arg )
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]949{
950 int slot = 1;
951 psa_key_type_t key_type = key_type_arg;
952 psa_algorithm_t alg = alg_arg;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]953 unsigned char *output_data = NULL;
954 size_t output_size = 0;
955 size_t output_length = 0;
956 unsigned char *output_data2 = NULL;
957 size_t output_length2 = 0;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]958 size_t tag_length = 16;
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]959 psa_status_t expected_result = expected_result_arg;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]960 psa_key_policy_t policy;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]961
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]962 TEST_ASSERT( key_data != NULL );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]963 TEST_ASSERT( input_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]964 TEST_ASSERT( nonce != NULL );
965 TEST_ASSERT( additional_data != NULL );
966 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
967 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input_data->len ) );
968 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( nonce->len ) );
969 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( additional_data->len ) );
970
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]971 output_size = input_data->len + tag_length;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]972 output_data = mbedtls_calloc( 1, output_size );
973 TEST_ASSERT( output_data != NULL );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]974
975 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
976
977 psa_key_policy_init( &policy );
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]978 psa_key_policy_set_usage( &policy,
979 PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT,
980 alg );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]981 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
982
983 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]984 key_data->x, key_data->len ) == PSA_SUCCESS );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]985
986 TEST_ASSERT( psa_aead_encrypt( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]987 nonce->x, nonce->len,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]988 additional_data->x,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]989 additional_data->len,
990 input_data->x, input_data->len,
991 output_data, output_size,
992 &output_length ) == expected_result );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]993
994 if( PSA_SUCCESS == expected_result )
995 {
996 output_data2 = mbedtls_calloc( 1, output_length );
997 TEST_ASSERT( output_data2 != NULL );
998
999 TEST_ASSERT( psa_aead_decrypt( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1000 nonce->x, nonce->len,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1001 additional_data->x,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1002 additional_data->len,
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]1003 output_data, output_length,
1004 output_data2, output_length,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1005 &output_length2 ) == expected_result );
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1006
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1007 TEST_ASSERT( memcmp( input_data->x, output_data2,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1008 input_data->len ) == 0 );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1009 }
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1010
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1011exit:
1012 psa_destroy_key( slot );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1013 mbedtls_free( output_data );
1014 mbedtls_free( output_data2 );
1015 mbedtls_psa_crypto_free( );
1016}
1017/* END_CASE */
1018
1019/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1020void aead_encrypt( int key_type_arg, data_t * key_data,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1021 int alg_arg, data_t * input_data,
1022 data_t * additional_data, data_t * nonce,
1023 data_t * expected_result )
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1024{
1025 int slot = 1;
1026 psa_key_type_t key_type = key_type_arg;
1027 psa_algorithm_t alg = alg_arg;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1028 unsigned char *output_data = NULL;
1029 size_t output_size = 0;
1030 size_t output_length = 0;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1031 size_t tag_length = 16;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1032 psa_key_policy_t policy;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1033
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1034 TEST_ASSERT( key_data != NULL );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1035 TEST_ASSERT( input_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1036 TEST_ASSERT( additional_data != NULL );
1037 TEST_ASSERT( nonce != NULL );
1038 TEST_ASSERT( expected_result != NULL );
1039 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1040 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input_data->len ) );
1041 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( additional_data->len ) );
1042 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( nonce->len ) );
1043 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_result->len ) );
1044
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1045 output_size = input_data->len + tag_length;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1046 output_data = mbedtls_calloc( 1, output_size );
1047 TEST_ASSERT( output_data != NULL );
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1048
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1049 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1050
1051 psa_key_policy_init( &policy );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1052 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_ENCRYPT , alg );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1053 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1054
1055 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1056 key_data->x,
1057 key_data->len ) == PSA_SUCCESS );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1058
1059 TEST_ASSERT( psa_aead_encrypt( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1060 nonce->x, nonce->len,
1061 additional_data->x, additional_data->len,
1062 input_data->x, input_data->len,
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]1063 output_data, output_size,
1064 &output_length ) == PSA_SUCCESS );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1065
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1066 TEST_ASSERT( memcmp( output_data, expected_result->x,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1067 output_length ) == 0 );
1068
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1069exit:
1070 psa_destroy_key( slot );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1071 mbedtls_free( output_data );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1072 mbedtls_psa_crypto_free( );
1073}
1074/* END_CASE */
1075
1076/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1077void aead_decrypt( int key_type_arg, data_t * key_data,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1078 int alg_arg, data_t * input_data,
1079 data_t * additional_data, data_t * nonce,
1080 data_t * expected_data, int expected_result_arg )
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1081{
1082 int slot = 1;
1083 psa_key_type_t key_type = key_type_arg;
1084 psa_algorithm_t alg = alg_arg;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1085 unsigned char *output_data = NULL;
1086 size_t output_size = 0;
1087 size_t output_length = 0;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1088 size_t tag_length = 16;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1089 psa_key_policy_t policy;
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1090 psa_status_t expected_result = expected_result_arg;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1091
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1092 TEST_ASSERT( key_data != NULL );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1093 TEST_ASSERT( input_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1094 TEST_ASSERT( additional_data != NULL );
1095 TEST_ASSERT( nonce != NULL );
1096 TEST_ASSERT( expected_data != NULL );
1097 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1098 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input_data->len ) );
1099 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( additional_data->len ) );
1100 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( nonce->len ) );
1101 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_data->len ) );
1102
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1103 output_size = input_data->len + tag_length;
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1104 output_data = mbedtls_calloc( 1, output_size );
1105 TEST_ASSERT( output_data != NULL );
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1106
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1107 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1108
1109 psa_key_policy_init( &policy );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1110 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_DECRYPT , alg );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1111 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1112
1113 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1114 key_data->x,
1115 key_data->len ) == PSA_SUCCESS );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1116
1117 TEST_ASSERT( psa_aead_decrypt( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1118 nonce->x, nonce->len,
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]1119 additional_data->x,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1120 additional_data->len,
1121 input_data->x, input_data->len,
1122 output_data, output_size,
1123 &output_length ) == expected_result );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1124
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1125 if( expected_result == PSA_SUCCESS )
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1126 {
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1127 TEST_ASSERT( memcmp( output_data, expected_data->x,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1128 output_length ) == 0 );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1129 }
1130
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1131exit:
1132 psa_destroy_key( slot );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1133 mbedtls_free( output_data );
Gilles Peskinea1cac842018-06-11 19:33:02 +0200[diff] [blame]1134 mbedtls_psa_crypto_free( );
1135}
1136/* END_CASE */
1137
1138/* BEGIN_CASE */
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]1139void signature_size( int type_arg,
1140 int bits,
1141 int alg_arg,
1142 int expected_size_arg )
Gilles Peskinee59236f2018-01-27 23:32:46 +0100[diff] [blame]1143{
1144 psa_key_type_t type = type_arg;
1145 psa_algorithm_t alg = alg_arg;
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1146 size_t actual_size = PSA_ASYMMETRIC_SIGN_OUTPUT_SIZE( type, bits, alg );
Gilles Peskinee59236f2018-01-27 23:32:46 +0100[diff] [blame]1147 TEST_ASSERT( actual_size == (size_t) expected_size_arg );
1148exit:
1149 ;
1150}
1151/* END_CASE */
1152
1153/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1154void sign_deterministic( int key_type_arg, data_t *key_data,
1155 int alg_arg, data_t *input_data,
1156 data_t *output_data )
Gilles Peskinee59236f2018-01-27 23:32:46 +0100[diff] [blame]1157{
1158 int slot = 1;
1159 psa_key_type_t key_type = key_type_arg;
1160 psa_algorithm_t alg = alg_arg;
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1161 size_t key_bits;
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1162 unsigned char *signature = NULL;
1163 size_t signature_size;
1164 size_t signature_length = 0xdeadbeef;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1165 psa_key_policy_t policy;
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1166
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1167 TEST_ASSERT( key_data != NULL );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1168 TEST_ASSERT( input_data != NULL );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1169 TEST_ASSERT( output_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1170 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1171 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input_data->len ) );
1172 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( output_data->len ) );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1173
1174 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1175
mohammad1603a97cb8c2018-03-28 03:46:26 -0700[diff] [blame]1176 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1177 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_SIGN, alg );
mohammad1603a97cb8c2018-03-28 03:46:26 -0700[diff] [blame]1178 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1179
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1180 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1181 key_data->x,
1182 key_data->len ) == PSA_SUCCESS );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1183 TEST_ASSERT( psa_get_key_information( slot,
1184 NULL,
1185 &key_bits ) == PSA_SUCCESS );
1186
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]1187 signature_size = PSA_ASYMMETRIC_SIGN_OUTPUT_SIZE( key_type,
1188 key_bits, alg );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1189 TEST_ASSERT( signature_size != 0 );
1190 signature = mbedtls_calloc( 1, signature_size );
1191 TEST_ASSERT( signature != NULL );
1192
1193 TEST_ASSERT( psa_asymmetric_sign( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1194 input_data->x, input_data->len,
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1195 NULL, 0,
1196 signature, signature_size,
1197 &signature_length ) == PSA_SUCCESS );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1198 TEST_ASSERT( signature_length == output_data->len );
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1199 TEST_ASSERT( memcmp( signature, output_data->x,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1200 output_data->len ) == 0 );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1201
1202exit:
1203 psa_destroy_key( slot );
Gilles Peskine0189e752018-02-03 23:57:22 +0100[diff] [blame]1204 mbedtls_free( signature );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1205 mbedtls_psa_crypto_free( );
1206}
1207/* END_CASE */
1208
1209/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1210void sign_fail( int key_type_arg, data_t *key_data,
1211 int alg_arg, data_t *input_data,
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1212 int signature_size, int expected_status_arg )
1213{
1214 int slot = 1;
1215 psa_key_type_t key_type = key_type_arg;
1216 psa_algorithm_t alg = alg_arg;
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1217 psa_status_t actual_status;
1218 psa_status_t expected_status = expected_status_arg;
Gilles Peskine40f68b92018-03-07 16:43:36 +0100[diff] [blame]1219 unsigned char *signature = NULL;
Gilles Peskine93aa0332018-02-03 23:58:03 +0100[diff] [blame]1220 size_t signature_length = 0xdeadbeef;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1221 psa_key_policy_t policy;
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1222
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1223 TEST_ASSERT( key_data != NULL );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1224 TEST_ASSERT( input_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1225 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1226 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input_data->len ) );
1227
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1228 signature = mbedtls_calloc( 1, signature_size );
1229 TEST_ASSERT( signature != NULL );
1230
1231 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1232
mohammad1603a97cb8c2018-03-28 03:46:26 -0700[diff] [blame]1233 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1234 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_SIGN, alg );
mohammad1603a97cb8c2018-03-28 03:46:26 -0700[diff] [blame]1235 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1236
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1237 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1238 key_data->x,
1239 key_data->len ) == PSA_SUCCESS );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1240
1241 actual_status = psa_asymmetric_sign( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1242 input_data->x, input_data->len,
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1243 NULL, 0,
1244 signature, signature_size,
1245 &signature_length );
1246 TEST_ASSERT( actual_status == expected_status );
Gilles Peskine93aa0332018-02-03 23:58:03 +0100[diff] [blame]1247 TEST_ASSERT( signature_length == 0 );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1248
1249exit:
1250 psa_destroy_key( slot );
Gilles Peskine20035e32018-02-03 22:44:14 +0100[diff] [blame]1251 mbedtls_free( signature );
1252 mbedtls_psa_crypto_free( );
1253}
1254/* END_CASE */
mohammad16038cc1cee2018-03-28 01:21:33 +0300[diff] [blame]1255
1256/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1257void asymmetric_verify( int key_type_arg, data_t *key_data,
1258 int alg_arg, data_t *hash_data,
1259 data_t *signature_data )
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1260{
1261 int slot = 1;
1262 psa_key_type_t key_type = key_type_arg;
1263 psa_algorithm_t alg = alg_arg;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1264 psa_key_policy_t policy;
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1265
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1266 TEST_ASSERT( key_data != NULL );
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1267 TEST_ASSERT( hash_data != NULL );
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1268 TEST_ASSERT( signature_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1269 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1270 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( hash_data->len ) );
1271 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( signature_data->len ) );
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1272
1273 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1274
1275 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1276 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_VERIFY, alg );
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1277 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1278
1279 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1280 key_data->x,
1281 key_data->len ) == PSA_SUCCESS );
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1282
1283 TEST_ASSERT( psa_asymmetric_verify( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1284 hash_data->x, hash_data->len,
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1285 NULL, 0,
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1286 signature_data->x,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1287 signature_data->len ) == PSA_SUCCESS );
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1288exit:
1289 psa_destroy_key( slot );
itayzafrir5c753392018-05-08 11:18:38 +0300[diff] [blame]1290 mbedtls_psa_crypto_free( );
1291}
1292/* END_CASE */
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1293
1294/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1295void asymmetric_verify_fail( int key_type_arg, data_t *key_data,
1296 int alg_arg, data_t *hash_data,
1297 data_t *signature_data,
1298 int expected_status_arg )
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1299{
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1300 int slot = 1;
1301 psa_key_type_t key_type = key_type_arg;
1302 psa_algorithm_t alg = alg_arg;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1303 psa_status_t actual_status;
1304 psa_status_t expected_status = expected_status_arg;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1305 psa_key_policy_t policy;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1306
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1307 TEST_ASSERT( key_data != NULL );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1308 TEST_ASSERT( hash_data != NULL );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1309 TEST_ASSERT( signature_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1310 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1311 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( hash_data->len ) );
1312 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( signature_data->len ) );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1313
1314 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1315
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1316 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1317 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_VERIFY, alg );
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1318 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1319
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1320 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1321 key_data->x,
1322 key_data->len ) == PSA_SUCCESS );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1323
1324 actual_status = psa_asymmetric_verify( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1325 hash_data->x, hash_data->len,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1326 NULL, 0,
1327 signature_data->x,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1328 signature_data->len );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1329
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1330 TEST_ASSERT( actual_status == expected_status );
1331
1332exit:
1333 psa_destroy_key( slot );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1334 mbedtls_psa_crypto_free( );
1335}
1336/* END_CASE */
1337
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1338/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1339void asymmetric_encrypt_decrypt( int key_type_arg, data_t *key_data,
1340 int alg_arg, data_t *input_data )
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1341{
1342 int slot = 1;
1343 psa_key_type_t key_type = key_type_arg;
1344 psa_algorithm_t alg = alg_arg;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1345 unsigned char *output = NULL;
Nir Sonnenscheind70bc482018-06-04 16:31:13 +0300[diff] [blame]1346 size_t output_size = 0;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1347 size_t output_length = 0;
Nir Sonnenschein0f3bdbd2018-05-02 23:56:12 +0300[diff] [blame]1348 unsigned char *output2 = NULL;
Nir Sonnenscheind70bc482018-06-04 16:31:13 +0300[diff] [blame]1349 size_t output2_size = 0;
Nir Sonnenschein0f3bdbd2018-05-02 23:56:12 +0300[diff] [blame]1350 size_t output2_length = 0;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1351 psa_key_policy_t policy;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1352
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1353 TEST_ASSERT( key_data != NULL );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1354 TEST_ASSERT( input_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1355 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1356 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input_data->len ) );
1357
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1358 output_size = key_data->len;
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1359 output2_size = output_size;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1360 output = mbedtls_calloc( 1, output_size );
1361 TEST_ASSERT( output != NULL );
Nir Sonnenschein0f3bdbd2018-05-02 23:56:12 +0300[diff] [blame]1362 output2 = mbedtls_calloc( 1, output2_size );
1363 TEST_ASSERT( output2 != NULL );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1364
1365 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1366
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1367 psa_key_policy_init( &policy );
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]1368 psa_key_policy_set_usage( &policy,
1369 PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1370 alg );
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1371 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1372
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1373 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1374 key_data->x,
1375 key_data->len ) == PSA_SUCCESS );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1376
Gilles Peskineeebd7382018-06-08 18:11:54 +0200[diff] [blame]1377 /* We test encryption by checking that encrypt-then-decrypt gives back
1378 * the original plaintext because of the non-optional random
1379 * part of encryption process which prevents using fixed vectors. */
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1380 TEST_ASSERT( psa_asymmetric_encrypt( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1381 input_data->x, input_data->len,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1382 NULL, 0,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1383 output, output_size,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1384 &output_length ) == PSA_SUCCESS );
Nir Sonnenschein0f3bdbd2018-05-02 23:56:12 +0300[diff] [blame]1385
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1386 TEST_ASSERT( psa_asymmetric_decrypt( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1387 output, output_length,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1388 NULL, 0,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1389 output2, output2_size,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1390 &output2_length ) == PSA_SUCCESS );
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]1391 TEST_ASSERT( memcmp( input_data->x, output2,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1392 input_data->len ) == 0 );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1393
1394exit:
1395 psa_destroy_key( slot );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1396 mbedtls_free( output );
1397 mbedtls_free( output2 );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1398 mbedtls_psa_crypto_free( );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1399}
1400/* END_CASE */
1401
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1402/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1403void asymmetric_encrypt_fail( int key_type_arg, data_t *key_data,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1404 int alg_arg, data_t *input_data,
1405 int expected_status_arg )
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1406{
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1407 int slot = 1;
1408 psa_key_type_t key_type = key_type_arg;
1409 psa_algorithm_t alg = alg_arg;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1410 unsigned char *output = NULL;
Nir Sonnenscheind70bc482018-06-04 16:31:13 +0300[diff] [blame]1411 size_t output_size = 0;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1412 size_t output_length = 0;
1413 psa_status_t actual_status;
1414 psa_status_t expected_status = expected_status_arg;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1415 psa_key_policy_t policy;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1416
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1417 TEST_ASSERT( key_data != NULL );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1418 TEST_ASSERT( input_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1419 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1420 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input_data->len ) );
1421
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1422 output_size = key_data->len;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1423 output = mbedtls_calloc( 1, output_size );
1424 TEST_ASSERT( output != NULL );
Gilles Peskine5b051bc2018-05-31 13:25:48 +0200[diff] [blame]1425
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1426 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1427
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1428 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1429 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_ENCRYPT, alg );
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1430 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1431
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1432 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1433 key_data->x,
1434 key_data->len ) == PSA_SUCCESS );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1435
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1436 actual_status = psa_asymmetric_encrypt( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1437 input_data->x, input_data->len,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1438 NULL, 0,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1439 output, output_size,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1440 &output_length );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1441 TEST_ASSERT( actual_status == expected_status );
1442
1443exit:
1444 psa_destroy_key( slot );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1445 mbedtls_free( output );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1446 mbedtls_psa_crypto_free( );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1447}
1448/* END_CASE */
1449
1450/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1451void asymmetric_decrypt( int key_type_arg, data_t *key_data,
1452 int alg_arg, data_t *input_data,
1453 data_t *expected_data, int expected_size )
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1454{
1455 int slot = 1;
1456 psa_key_type_t key_type = key_type_arg;
1457 psa_algorithm_t alg = alg_arg;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1458 unsigned char *output = NULL;
Nir Sonnenscheind70bc482018-06-04 16:31:13 +0300[diff] [blame]1459 size_t output_size = 0;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1460 size_t output_length = 0;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1461 psa_key_policy_t policy;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1462
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1463 TEST_ASSERT( key_data != NULL );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1464 TEST_ASSERT( input_data != NULL );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1465 TEST_ASSERT( expected_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1466 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1467 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input_data->len ) );
1468 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( expected_data->len ) );
1469
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1470 output_size = key_data->len;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1471 output = mbedtls_calloc( 1, output_size );
1472 TEST_ASSERT( output != NULL );
Gilles Peskine5b051bc2018-05-31 13:25:48 +0200[diff] [blame]1473
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1474 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1475
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1476 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1477 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_DECRYPT, alg );
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1478 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1479
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1480 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1481 key_data->x,
1482 key_data->len ) == PSA_SUCCESS );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1483
Nir Sonnenschein0f3bdbd2018-05-02 23:56:12 +0300[diff] [blame]1484 TEST_ASSERT( psa_asymmetric_decrypt( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1485 input_data->x, input_data->len,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1486 NULL, 0,
1487 output,
1488 output_size,
1489 &output_length ) == PSA_SUCCESS );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1490 TEST_ASSERT( (size_t) expected_size == output_length );
Gilles Peskinec1bb6c82018-06-18 16:04:39 +0200[diff] [blame]1491 TEST_ASSERT( memcmp( expected_data->x, output, output_length ) == 0 );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1492
1493exit:
1494 psa_destroy_key( slot );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1495 mbedtls_free( output );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1496 mbedtls_psa_crypto_free( );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1497}
1498/* END_CASE */
1499
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1500/* BEGIN_CASE */
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1501void asymmetric_decrypt_fail( int key_type_arg, data_t *key_data,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1502 int alg_arg, data_t *input_data,
1503 int expected_status_arg )
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1504{
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1505 int slot = 1;
1506 psa_key_type_t key_type = key_type_arg;
1507 psa_algorithm_t alg = alg_arg;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1508 unsigned char *output = NULL;
Nir Sonnenscheind70bc482018-06-04 16:31:13 +0300[diff] [blame]1509 size_t output_size = 0;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1510 size_t output_length = 0;
1511 psa_status_t actual_status;
1512 psa_status_t expected_status = expected_status_arg;
Gilles Peskinedec72612018-06-18 18:12:37 +0200[diff] [blame]1513 psa_key_policy_t policy;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1514
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1515 TEST_ASSERT( key_data != NULL );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1516 TEST_ASSERT( input_data != NULL );
itayzafrir3e02b3b2018-06-12 17:06:52 +0300[diff] [blame]1517 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( key_data->len ) );
1518 TEST_ASSERT( PSA_CRYPTO_TEST_SIZE_T_RANGE( input_data->len ) );
1519
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1520 output_size = key_data->len;
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1521 output = mbedtls_calloc( 1, output_size );
1522 TEST_ASSERT( output != NULL );
Gilles Peskine5b051bc2018-05-31 13:25:48 +0200[diff] [blame]1523
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1524 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1525
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1526 psa_key_policy_init( &policy );
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1527 psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_DECRYPT, alg );
Nir Sonnenscheind7082602018-06-04 16:45:27 +0300[diff] [blame]1528 TEST_ASSERT( psa_set_key_policy( slot, &policy ) == PSA_SUCCESS );
1529
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1530 TEST_ASSERT( psa_import_key( slot, key_type,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1531 key_data->x,
1532 key_data->len ) == PSA_SUCCESS );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1533
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1534 actual_status = psa_asymmetric_decrypt( slot, alg,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1535 input_data->x, input_data->len,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1536 NULL, 0,
Gilles Peskine4abf7412018-06-18 16:35:34 +0200[diff] [blame]1537 output, output_size,
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1538 &output_length );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1539 TEST_ASSERT( actual_status == expected_status );
1540
1541exit:
1542 psa_destroy_key( slot );
Gilles Peskine2d277862018-06-18 15:41:12 +0200[diff] [blame]1543 mbedtls_free( output );
Nir Sonnenschein39e59142018-05-02 23:16:26 +0300[diff] [blame]1544 mbedtls_psa_crypto_free( );
1545}
Gilles Peskine5b051bc2018-05-31 13:25:48 +0200[diff] [blame]1546/* END_CASE */
Gilles Peskine05d69892018-06-19 22:00:52 +0200[diff] [blame]1547
1548/* BEGIN_CASE */
1549void generate_random( int bytes, int retries )
1550{
1551 const unsigned char trail[] = "foobar";
1552 unsigned char *buffer1 = mbedtls_calloc( 1, bytes + sizeof( trail ) );
1553 unsigned char *buffer2 = mbedtls_calloc( 1, bytes );
1554
1555 TEST_ASSERT( buffer1 != NULL );
1556 TEST_ASSERT( buffer2 != NULL );
1557 memcpy( buffer1 + bytes, trail, sizeof( trail ) );
1558
1559 TEST_ASSERT( psa_crypto_init( ) == PSA_SUCCESS );
1560
1561 TEST_ASSERT( psa_generate_random( buffer1, bytes ) == PSA_SUCCESS );
1562
1563 /* Check that no more than bytes have been overwritten */
1564 TEST_ASSERT( memcmp( buffer1 + bytes, trail, sizeof( trail ) ) == 0 );
1565
1566 if( bytes == 0 )
1567 goto exit;
1568
1569 /* We can't validate that the data is really random, but we can
1570 * validate that it doesn't repeat between calls. There's a
1571 * 1/256^bytes chance that it does repeat, of course, so allow
1572 * a few retries. */
1573 ++retries; /* The first time isn't a REtry */
1574 do
1575 {
1576 --retries;
1577 TEST_ASSERT( psa_generate_random( buffer2, bytes ) == PSA_SUCCESS );
1578 }
1579 while( memcmp( buffer1, buffer2, bytes ) == 0 && retries >= -1 );
1580 TEST_ASSERT( retries >= 0 );
1581
1582exit:
1583 mbedtls_psa_crypto_free( );
1584 mbedtls_free( buffer1 );
1585 mbedtls_free( buffer2 );
1586}
1587/* END_CASE */