123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311 |
- /*
- * Copyright 2017-2018 The OpenSSL Project Authors. All Rights Reserved.
- *
- * Licensed under the OpenSSL license (the "License"). You may not use
- * this file except in compliance with the License. You can obtain a copy
- * in the file LICENSE in the source distribution or at
- * https://www.openssl.org/source/license.html
- */
- #include <string.h>
- #include "internal/nelem.h"
- #include <openssl/crypto.h>
- #include <openssl/err.h>
- #include <openssl/rand.h>
- #include <openssl/obj_mac.h>
- #include <openssl/evp.h>
- #include <openssl/aes.h>
- #include "../crypto/rand/rand_lcl.h"
- #include "testutil.h"
- #include "drbg_cavs_data.h"
- static int app_data_index;
- typedef struct test_ctx_st {
- const unsigned char *entropy;
- size_t entropylen;
- int entropycnt;
- const unsigned char *nonce;
- size_t noncelen;
- int noncecnt;
- } TEST_CTX;
- static size_t kat_entropy(RAND_DRBG *drbg, unsigned char **pout,
- int entropy, size_t min_len, size_t max_len,
- int prediction_resistance)
- {
- TEST_CTX *t = (TEST_CTX *)RAND_DRBG_get_ex_data(drbg, app_data_index);
- t->entropycnt++;
- *pout = (unsigned char *)t->entropy;
- return t->entropylen;
- }
- static size_t kat_nonce(RAND_DRBG *drbg, unsigned char **pout,
- int entropy, size_t min_len, size_t max_len)
- {
- TEST_CTX *t = (TEST_CTX *)RAND_DRBG_get_ex_data(drbg, app_data_index);
- t->noncecnt++;
- *pout = (unsigned char *)t->nonce;
- return t->noncelen;
- }
- /*
- * Do a single NO_RESEED KAT:
- *
- * Instantiate
- * Generate Random Bits (pr=false)
- * Generate Random Bits (pr=false)
- * Uninstantiate
- *
- * Return 0 on failure.
- */
- static int single_kat_no_reseed(const struct drbg_kat *td)
- {
- struct drbg_kat_no_reseed *data = (struct drbg_kat_no_reseed *)td->t;
- RAND_DRBG *drbg = NULL;
- unsigned char *buff = NULL;
- unsigned int flags = 0;
- int failures = 0;
- TEST_CTX t;
- if ((td->flags & USE_DF) == 0)
- flags |= RAND_DRBG_FLAG_CTR_NO_DF;
- if ((td->flags & USE_HMAC) != 0)
- flags |= RAND_DRBG_FLAG_HMAC;
- if (!TEST_ptr(drbg = RAND_DRBG_new(td->nid, flags, NULL)))
- return 0;
- if (!TEST_true(RAND_DRBG_set_callbacks(drbg, kat_entropy, NULL,
- kat_nonce, NULL))) {
- failures++;
- goto err;
- }
- memset(&t, 0, sizeof(t));
- t.entropy = data->entropyin;
- t.entropylen = td->entropyinlen;
- t.nonce = data->nonce;
- t.noncelen = td->noncelen;
- RAND_DRBG_set_ex_data(drbg, app_data_index, &t);
- buff = OPENSSL_malloc(td->retbyteslen);
- if (buff == NULL)
- goto err;
- if (!TEST_true(RAND_DRBG_instantiate(drbg, data->persstr, td->persstrlen))
- || !TEST_true(RAND_DRBG_generate(drbg, buff, td->retbyteslen, 0,
- data->addin1, td->addinlen))
- || !TEST_true(RAND_DRBG_generate(drbg, buff, td->retbyteslen, 0,
- data->addin2, td->addinlen))
- || !TEST_true(RAND_DRBG_uninstantiate(drbg))
- || !TEST_mem_eq(data->retbytes, td->retbyteslen, buff,
- td->retbyteslen))
- failures++;
- err:
- if (buff != NULL)
- OPENSSL_free(buff);
- if (drbg != NULL) {
- RAND_DRBG_uninstantiate(drbg);
- RAND_DRBG_free(drbg);
- }
- return failures == 0;
- }
- /*-
- * Do a single PR_FALSE KAT:
- *
- * Instantiate
- * Reseed
- * Generate Random Bits (pr=false)
- * Generate Random Bits (pr=false)
- * Uninstantiate
- *
- * Return 0 on failure.
- */
- static int single_kat_pr_false(const struct drbg_kat *td)
- {
- struct drbg_kat_pr_false *data = (struct drbg_kat_pr_false *)td->t;
- RAND_DRBG *drbg = NULL;
- unsigned char *buff = NULL;
- unsigned int flags = 0;
- int failures = 0;
- TEST_CTX t;
- if ((td->flags & USE_DF) == 0)
- flags |= RAND_DRBG_FLAG_CTR_NO_DF;
- if ((td->flags & USE_HMAC) != 0)
- flags |= RAND_DRBG_FLAG_HMAC;
- if (!TEST_ptr(drbg = RAND_DRBG_new(td->nid, flags, NULL)))
- return 0;
- if (!TEST_true(RAND_DRBG_set_callbacks(drbg, kat_entropy, NULL,
- kat_nonce, NULL))) {
- failures++;
- goto err;
- }
- memset(&t, 0, sizeof(t));
- t.entropy = data->entropyin;
- t.entropylen = td->entropyinlen;
- t.nonce = data->nonce;
- t.noncelen = td->noncelen;
- RAND_DRBG_set_ex_data(drbg, app_data_index, &t);
- buff = OPENSSL_malloc(td->retbyteslen);
- if (buff == NULL)
- goto err;
- if (!TEST_true(RAND_DRBG_instantiate(drbg, data->persstr, td->persstrlen)))
- failures++;
- t.entropy = data->entropyinreseed;
- t.entropylen = td->entropyinlen;
- if (!TEST_true(RAND_DRBG_reseed(drbg, data->addinreseed, td->addinlen, 0))
- || !TEST_true(RAND_DRBG_generate(drbg, buff, td->retbyteslen, 0,
- data->addin1, td->addinlen))
- || !TEST_true(RAND_DRBG_generate(drbg, buff, td->retbyteslen, 0,
- data->addin2, td->addinlen))
- || !TEST_true(RAND_DRBG_uninstantiate(drbg))
- || !TEST_mem_eq(data->retbytes, td->retbyteslen, buff,
- td->retbyteslen))
- failures++;
- err:
- if (buff != NULL)
- OPENSSL_free(buff);
- if (drbg != NULL) {
- RAND_DRBG_uninstantiate(drbg);
- RAND_DRBG_free(drbg);
- }
- return failures == 0;
- }
- /*-
- * Do a single PR_TRUE KAT:
- *
- * Instantiate
- * Generate Random Bits (pr=true)
- * Generate Random Bits (pr=true)
- * Uninstantiate
- *
- * Return 0 on failure.
- */
- static int single_kat_pr_true(const struct drbg_kat *td)
- {
- struct drbg_kat_pr_true *data = (struct drbg_kat_pr_true *)td->t;
- RAND_DRBG *drbg = NULL;
- unsigned char *buff = NULL;
- unsigned int flags = 0;
- int failures = 0;
- TEST_CTX t;
- if ((td->flags & USE_DF) == 0)
- flags |= RAND_DRBG_FLAG_CTR_NO_DF;
- if ((td->flags & USE_HMAC) != 0)
- flags |= RAND_DRBG_FLAG_HMAC;
- if (!TEST_ptr(drbg = RAND_DRBG_new(td->nid, flags, NULL)))
- return 0;
- if (!TEST_true(RAND_DRBG_set_callbacks(drbg, kat_entropy, NULL,
- kat_nonce, NULL))) {
- failures++;
- goto err;
- }
- memset(&t, 0, sizeof(t));
- t.nonce = data->nonce;
- t.noncelen = td->noncelen;
- t.entropy = data->entropyin;
- t.entropylen = td->entropyinlen;
- RAND_DRBG_set_ex_data(drbg, app_data_index, &t);
- buff = OPENSSL_malloc(td->retbyteslen);
- if (buff == NULL)
- goto err;
- if (!TEST_true(RAND_DRBG_instantiate(drbg, data->persstr, td->persstrlen)))
- failures++;
- t.entropy = data->entropyinpr1;
- t.entropylen = td->entropyinlen;
- if (!TEST_true(RAND_DRBG_generate(drbg, buff, td->retbyteslen, 1,
- data->addin1, td->addinlen)))
- failures++;
- t.entropy = data->entropyinpr2;
- t.entropylen = td->entropyinlen;
- if (!TEST_true(RAND_DRBG_generate(drbg, buff, td->retbyteslen, 1,
- data->addin2, td->addinlen))
- || !TEST_true(RAND_DRBG_uninstantiate(drbg))
- || !TEST_mem_eq(data->retbytes, td->retbyteslen, buff,
- td->retbyteslen))
- failures++;
- err:
- if (buff != NULL)
- OPENSSL_free(buff);
- if (drbg != NULL) {
- RAND_DRBG_uninstantiate(drbg);
- RAND_DRBG_free(drbg);
- }
- return failures == 0;
- }
- static int test_cavs_kats(const struct drbg_kat *test[], int i)
- {
- const struct drbg_kat *td = test[i];
- int rv = 0;
- switch (td->type) {
- case NO_RESEED:
- if (!single_kat_no_reseed(td))
- goto err;
- break;
- case PR_FALSE:
- if (!single_kat_pr_false(td))
- goto err;
- break;
- case PR_TRUE:
- if (!single_kat_pr_true(td))
- goto err;
- break;
- default: /* cant happen */
- goto err;
- }
- rv = 1;
- err:
- return rv;
- }
- static int test_cavs_ctr(int i)
- {
- return test_cavs_kats(drbg_ctr_test, i);
- }
- static int test_cavs_hmac(int i)
- {
- return test_cavs_kats(drbg_hmac_test, i);
- }
- static int test_cavs_hash(int i)
- {
- return test_cavs_kats(drbg_hash_test, i);
- }
- int setup_tests(void)
- {
- app_data_index = RAND_DRBG_get_ex_new_index(0L, NULL, NULL, NULL, NULL);
- ADD_ALL_TESTS(test_cavs_ctr, drbg_ctr_nelem);
- ADD_ALL_TESTS(test_cavs_hmac, drbg_hmac_nelem);
- ADD_ALL_TESTS(test_cavs_hash, drbg_hash_nelem);
- return 1;
- }
|