123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125112611271128112911301131113211331134113511361137113811391140114111421143114411451146114711481149115011511152115311541155115611571158115911601161116211631164116511661167116811691170117111721173117411751176117711781179118011811182118311841185118611871188118911901191119211931194119511961197119811991200120112021203120412051206120712081209121012111212121312141215121612171218121912201221122212231224122512261227122812291230123112321233123412351236123712381239124012411242124312441245124612471248124912501251125212531254125512561257125812591260126112621263126412651266126712681269127012711272127312741275127612771278127912801281128212831284128512861287128812891290129112921293129412951296129712981299130013011302130313041305130613071308130913101311131213131314131513161317131813191320132113221323132413251326132713281329133013311332133313341335133613371338133913401341134213431344134513461347134813491350135113521353135413551356135713581359136013611362136313641365136613671368136913701371137213731374137513761377137813791380138113821383138413851386138713881389139013911392139313941395139613971398139914001401140214031404140514061407140814091410141114121413141414151416141714181419142014211422142314241425142614271428142914301431143214331434143514361437143814391440144114421443144414451446144714481449145014511452145314541455145614571458145914601461146214631464146514661467146814691470147114721473147414751476147714781479148014811482 |
- /* test.c
- *
- * Copyright (C) 2006-2015 wolfSSL Inc.
- *
- * This file is part of wolfSSL. (formerly known as CyaSSL)
- *
- * wolfSSL is free software; you can redistribute it and/or modify
- * it under the terms of the GNU General Public License as published by
- * the Free Software Foundation; either version 2 of the License, or
- * (at your option) any later version.
- *
- * wolfSSL is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
- * GNU General Public License for more details.
- *
- * You should have received a copy of the GNU General Public License
- * along with this program; if not, write to the Free Software
- * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA
- */
- /* Tests Microchip CRYPTO API layer */
- /* mc api header */
- #include "crypto.h"
- #include <wolfssl/wolfcrypt/settings.h>
- /* sanity test against our default implementation, wolfssl headers */
- #include <wolfssl/wolfcrypt/md5.h>
- #include <wolfssl/wolfcrypt/sha.h>
- #include <wolfssl/wolfcrypt/sha256.h>
- #include <wolfssl/wolfcrypt/sha512.h>
- #include <wolfssl/wolfcrypt/hmac.h>
- #include <wolfssl/wolfcrypt/compress.h>
- #include <wolfssl/wolfcrypt/random.h>
- #include <wolfssl/wolfcrypt/des3.h>
- #include <wolfssl/wolfcrypt/aes.h>
- #include <wolfssl/wolfcrypt/ecc.h>
- #include <wolfssl/wolfcrypt/rsa.h>
- #define USE_CERT_BUFFERS_1024
- #include <wolfssl/certs_test.h>
- #if defined(WOLFSSL_MICROCHIP_PIC32MZ)
- #define MICROCHIP_PIC32
- #include <xc.h>
- #pragma config ICESEL = ICS_PGx2
- /* ICE/ICD Comm Channel Select (Communicate on PGEC2/PGED2) */
- #include <stdio.h>
- #include <stdlib.h>
- #include "PIC32MZ-serial.h"
- #define SYSTEMConfigPerformance /* void out SYSTEMConfigPerformance(); */
- #elif defined(MICROCHIP_PIC32)
- #define PIC32_STARTER_KIT
- #include <stdio.h>
- #include <stdlib.h>
- #include <p32xxxx.h>
- #include <plib.h>
- #include <sys/appio.h>
- #define init_serial() /* void out init_serial() */
- #else
- #include <stdio.h> /* order matters above ? */
- #endif
- #define OUR_DATA_SIZE 1024
- static byte ourData[OUR_DATA_SIZE];
- static byte* key = NULL;
- static byte* iv = NULL;
- static CRYPT_RNG_CTX mcRng;
- static WC_RNG defRng;
- static int check_md5(void);
- static int check_sha(void);
- static int check_sha256(void);
- static int check_sha384(void);
- static int check_sha512(void);
- static int check_hmac(void);
- static int check_compress(void);
- static int check_rng(void);
- static int check_des3(void);
- static int check_aescbc(void);
- static int check_aesctr(void);
- static int check_aesdirect(void);
- static int check_rsa(void);
- static int check_ecc(void);
- int main(int argc, char** argv)
- {
- int ret;
- int i;
- (void)argc;
- (void)argv;
- #if defined(MICROCHIP_PIC32)
- init_serial() ; /* initialize PIC32MZ serial I/O */
- SYSTEMConfigPerformance(80000000);
- DBINIT();
- #endif
- /* align key, iv pointers */
- key = (byte*)XMALLOC(32, NULL, DYNAMIC_TYPE_KEY);
- if (key == NULL) {
- printf("mcapi key alloc failed\n");
- return -1;
- }
- iv = (byte*)XMALLOC(16, NULL, DYNAMIC_TYPE_KEY);
- if (iv == NULL) {
- printf("mcapi iv alloc failed\n");
- return -1;
- }
- for (i = 0; i < OUR_DATA_SIZE; i++)
- ourData[i] = (byte)i;
- ret = check_md5();
- if (ret != 0) {
- printf("mcapi check_md5 failed\n");
- return -1;
- }
- ret = check_sha();
- if (ret != 0) {
- printf("mcapi check_sha failed\n");
- return -1;
- }
- ret = check_sha256();
- if (ret != 0) {
- printf("mcapi check_sha256 failed\n");
- return -1;
- }
- ret = check_sha384();
- if (ret != 0) {
- printf("mcapi check_sha384 failed\n");
- return -1;
- }
- ret = check_sha512();
- if (ret != 0) {
- printf("mcapi check_sha512 failed\n");
- return -1;
- }
- ret = check_hmac();
- if (ret != 0) {
- printf("mcapi check_hmac failed\n");
- return -1;
- }
- ret = check_compress();
- if (ret != 0) {
- printf("mcapi check_compress failed\n");
- return -1;
- }
- ret = check_rng();
- if (ret != 0) {
- printf("mcapi check_rng failed\n");
- return -1;
- }
- ret = check_des3();
- if (ret != 0) {
- printf("mcapi check_des3 failed\n");
- return -1;
- }
- ret = check_aescbc();
- if (ret != 0) {
- printf("mcapi check_aes cbc failed\n");
- return -1;
- }
- ret = check_aesctr();
- if (ret != 0) {
- printf("mcapi check_aes ctr failed\n");
- return -1;
- }
- ret = check_aesdirect();
- if (ret != 0) {
- printf("mcapi check_aes direct failed\n");
- return -1;
- }
- ret = check_rsa();
- if (ret != 0) {
- printf("mcapi check_rsa failed\n");
- return -1;
- }
- ret = check_ecc();
- if (ret != 0) {
- printf("mcapi check_ecc failed\n");
- return -1;
- }
- XFREE(iv, NULL, DYNAMIC_TYPE_KEY);
- XFREE(key, NULL, DYNAMIC_TYPE_KEY);
- return 0;
- }
- /* check mcapi md5 against internal */
- static int check_md5(void)
- {
- CRYPT_MD5_CTX mcMd5;
- Md5 defMd5;
- byte mcDigest[CRYPT_MD5_DIGEST_SIZE];
- byte defDigest[MD5_DIGEST_SIZE];
- CRYPT_MD5_Initialize(&mcMd5);
- wc_InitMd5(&defMd5);
- CRYPT_MD5_DataAdd(&mcMd5, ourData, OUR_DATA_SIZE);
- wc_Md5Update(&defMd5, ourData, OUR_DATA_SIZE);
- CRYPT_MD5_Finalize(&mcMd5, mcDigest);
- wc_Md5Final(&defMd5, defDigest);
- if (memcmp(mcDigest, defDigest, CRYPT_MD5_DIGEST_SIZE) != 0) {
- printf("md5 final memcmp fialed\n");
- return -1;
- }
- printf("md5 mcapi test passed\n");
- return 0;
- }
- /* check mcapi sha against internal */
- static int check_sha(void)
- {
- CRYPT_SHA_CTX mcSha;
- Sha defSha;
- int ret = 0;
- byte mcDigest[CRYPT_SHA_DIGEST_SIZE];
- byte defDigest[SHA_DIGEST_SIZE];
- CRYPT_SHA_Initialize(&mcSha);
- ret = wc_InitSha(&defSha);
- if (ret != 0) {
- printf("sha init default failed\n");
- return -1;
- }
- CRYPT_SHA_DataAdd(&mcSha, ourData, OUR_DATA_SIZE);
- wc_ShaUpdate(&defSha, ourData, OUR_DATA_SIZE);
- CRYPT_SHA_Finalize(&mcSha, mcDigest);
- wc_ShaFinal(&defSha, defDigest);
- if (memcmp(mcDigest, defDigest, CRYPT_SHA_DIGEST_SIZE) != 0) {
- printf("sha final memcmp failed\n");
- return -1;
- }
- printf("sha mcapi test passed\n");
- return 0;
- }
- /* check mcapi sha256 against internal */
- static int check_sha256(void)
- {
- CRYPT_SHA256_CTX mcSha256;
- Sha256 defSha256;
- int ret;
- byte mcDigest[CRYPT_SHA256_DIGEST_SIZE];
- byte defDigest[SHA256_DIGEST_SIZE];
- CRYPT_SHA256_Initialize(&mcSha256);
- ret = wc_InitSha256(&defSha256);
- if (ret != 0) {
- printf("sha256 init default failed\n");
- return -1;
- }
- CRYPT_SHA256_DataAdd(&mcSha256, ourData, OUR_DATA_SIZE);
- ret = wc_Sha256Update(&defSha256, ourData, OUR_DATA_SIZE);
- if (ret != 0) {
- printf("sha256 update default failed\n");
- return -1;
- }
- CRYPT_SHA256_Finalize(&mcSha256, mcDigest);
- ret = wc_Sha256Final(&defSha256, defDigest);
- if (ret != 0) {
- printf("sha256 final default failed\n");
- return -1;
- }
- if (memcmp(mcDigest, defDigest, CRYPT_SHA256_DIGEST_SIZE) != 0) {
- printf("sha256 final memcmp fialed\n");
- return -1;
- }
- printf("sha256 mcapi test passed\n");
- return 0;
- }
- /* check mcapi sha384 against internal */
- static int check_sha384(void)
- {
- CRYPT_SHA384_CTX mcSha384;
- Sha384 defSha384;
- int ret;
- byte mcDigest[CRYPT_SHA384_DIGEST_SIZE];
- byte defDigest[SHA384_DIGEST_SIZE];
- CRYPT_SHA384_Initialize(&mcSha384);
- ret = wc_InitSha384(&defSha384);
- if (ret != 0) {
- printf("sha384 init default failed\n");
- return -1;
- }
- CRYPT_SHA384_DataAdd(&mcSha384, ourData, OUR_DATA_SIZE);
- ret = wc_Sha384Update(&defSha384, ourData, OUR_DATA_SIZE);
- if (ret != 0) {
- printf("sha384 update default failed\n");
- return -1;
- }
- CRYPT_SHA384_Finalize(&mcSha384, mcDigest);
- ret = wc_Sha384Final(&defSha384, defDigest);
- if (ret != 0) {
- printf("sha384 final default failed\n");
- return -1;
- }
- if (memcmp(mcDigest, defDigest, CRYPT_SHA384_DIGEST_SIZE) != 0) {
- printf("sha384 final memcmp fialed\n");
- return -1;
- }
- printf("sha384 mcapi test passed\n");
- return 0;
- }
- /* check mcapi sha512 against internal */
- static int check_sha512(void)
- {
- CRYPT_SHA512_CTX mcSha512;
- Sha512 defSha512;
- int ret;
- byte mcDigest[CRYPT_SHA512_DIGEST_SIZE];
- byte defDigest[SHA512_DIGEST_SIZE];
- CRYPT_SHA512_Initialize(&mcSha512);
- ret = wc_InitSha512(&defSha512);
- if (ret != 0) {
- printf("sha512 init default failed\n");
- return -1;
- }
- CRYPT_SHA512_DataAdd(&mcSha512, ourData, OUR_DATA_SIZE);
- ret = wc_Sha512Update(&defSha512, ourData, OUR_DATA_SIZE);
- if (ret != 0) {
- printf("sha512 update default failed\n");
- return -1;
- }
- CRYPT_SHA512_Finalize(&mcSha512, mcDigest);
- ret = wc_Sha512Final(&defSha512, defDigest);
- if (ret != 0) {
- printf("sha512 final default failed\n");
- return -1;
- }
- if (memcmp(mcDigest, defDigest, CRYPT_SHA512_DIGEST_SIZE) != 0) {
- printf("sha512 final memcmp fialed\n");
- return -1;
- }
- printf("sha512 mcapi test passed\n");
- return 0;
- }
- /* check mcapi hmac against internal */
- static int check_hmac(void)
- {
- CRYPT_HMAC_CTX mcHmac;
- Hmac defHmac;
- int ret;
- byte mcDigest[CRYPT_SHA512_DIGEST_SIZE];
- byte defDigest[SHA512_DIGEST_SIZE];
- strncpy((char*)key, "Jefe", 4);
- /* SHA1 */
- CRYPT_HMAC_SetKey(&mcHmac, CRYPT_HMAC_SHA, key, 4);
- ret = wc_HmacSetKey(&defHmac, SHA, key, 4);
- if (ret != 0) {
- printf("hmac sha setkey default failed\n");
- return -1;
- }
- CRYPT_HMAC_DataAdd(&mcHmac, ourData, OUR_DATA_SIZE);
- ret = wc_HmacUpdate(&defHmac, ourData, OUR_DATA_SIZE);
- if (ret != 0) {
- printf("hmac sha update default failed\n");
- return -1;
- }
- CRYPT_HMAC_Finalize(&mcHmac, mcDigest);
- ret = wc_HmacFinal(&defHmac, defDigest);
- if (ret != 0) {
- printf("hmac sha final default failed\n");
- return -1;
- }
- if (memcmp(mcDigest, defDigest, CRYPT_SHA_DIGEST_SIZE) != 0) {
- printf("hmac sha final memcmp fialed\n");
- return -1;
- }
- printf("hmac sha mcapi test passed\n");
- /* SHA-256 */
- CRYPT_HMAC_SetKey(&mcHmac, CRYPT_HMAC_SHA256, key, 4);
- ret = wc_HmacSetKey(&defHmac, SHA256, key, 4);
- if (ret != 0) {
- printf("hmac sha256 setkey default failed\n");
- return -1;
- }
- CRYPT_HMAC_DataAdd(&mcHmac, ourData, OUR_DATA_SIZE);
- ret = wc_HmacUpdate(&defHmac, ourData, OUR_DATA_SIZE);
- if (ret != 0) {
- printf("hmac sha256 update default failed\n");
- return -1;
- }
- CRYPT_HMAC_Finalize(&mcHmac, mcDigest);
- ret = wc_HmacFinal(&defHmac, defDigest);
- if (ret != 0) {
- printf("hmac sha256 final default failed\n");
- return -1;
- }
- if (memcmp(mcDigest, defDigest, CRYPT_SHA256_DIGEST_SIZE) != 0) {
- printf("hmac sha256 final memcmp fialed\n");
- return -1;
- }
- printf("hmac sha256 mcapi test passed\n");
- /* SHA-384 */
- CRYPT_HMAC_SetKey(&mcHmac, CRYPT_HMAC_SHA384, key, 4);
- ret = wc_HmacSetKey(&defHmac, SHA384, key, 4);
- if (ret != 0) {
- printf("hmac sha384 setkey default failed\n");
- return -1;
- }
- CRYPT_HMAC_DataAdd(&mcHmac, ourData, OUR_DATA_SIZE);
- ret = wc_HmacUpdate(&defHmac, ourData, OUR_DATA_SIZE);
- if (ret != 0) {
- printf("hmac sha384 update default failed\n");
- return -1;
- }
- CRYPT_HMAC_Finalize(&mcHmac, mcDigest);
- ret = wc_HmacFinal(&defHmac, defDigest);
- if (ret != 0) {
- printf("hmac sha384 final default failed\n");
- return -1;
- }
- if (memcmp(mcDigest, defDigest, CRYPT_SHA384_DIGEST_SIZE) != 0) {
- printf("hmac sha384 final memcmp fialed\n");
- return -1;
- }
- printf("hmac sha384 mcapi test passed\n");
- /* SHA-512 */
- CRYPT_HMAC_SetKey(&mcHmac, CRYPT_HMAC_SHA512, key, 4);
- ret = wc_HmacSetKey(&defHmac, SHA512, key, 4);
- if (ret != 0) {
- printf("hmac sha512 setkey default failed\n");
- return -1;
- }
- CRYPT_HMAC_DataAdd(&mcHmac, ourData, OUR_DATA_SIZE);
- ret = wc_HmacUpdate(&defHmac, ourData, OUR_DATA_SIZE);
- if (ret != 0) {
- printf("hmac sha512 update default failed\n");
- return -1;
- }
- CRYPT_HMAC_Finalize(&mcHmac, mcDigest);
- ret = wc_HmacFinal(&defHmac, defDigest);
- if (ret != 0) {
- printf("hmac sha512 final default failed\n");
- return -1;
- }
- if (memcmp(mcDigest, defDigest, CRYPT_SHA512_DIGEST_SIZE) != 0) {
- printf("hmac sha512 final memcmp fialed\n");
- return -1;
- }
- printf("hmac sha512 mcapi test passed\n");
- return 0;
- }
- /* check mcapi compress against internal */
- static int check_compress(void)
- {
- const unsigned char text[] =
- "Biodiesel cupidatat marfa, cliche aute put a bird on it incididunt elit\n"
- "polaroid. Sunt tattooed bespoke reprehenderit. Sint twee organic id\n"
- "marfa. Commodo veniam ad esse gastropub. 3 wolf moon sartorial vero,\n"
- "plaid delectus biodiesel squid +1 vice. Post-ironic keffiyeh leggings\n"
- "selfies cray fap hoodie, forage anim. Carles cupidatat shoreditch, VHS\n"
- "small batch meggings kogi dolore food truck bespoke gastropub.\n"
- "\n"
- "Terry richardson adipisicing actually typewriter tumblr, twee whatever\n"
- "four loko you probably haven't heard of them high life. Messenger bag\n"
- "whatever tattooed deep v mlkshk. Brooklyn pinterest assumenda chillwave\n"
- "et, banksy ullamco messenger bag umami pariatur direct trade forage.\n"
- "Typewriter culpa try-hard, pariatur sint brooklyn meggings. Gentrify\n"
- "food truck next level, tousled irony non semiotics PBR ethical anim cred\n"
- "readymade. Mumblecore brunch lomo odd future, portland organic terry\n"
- "four loko whatever street art yr farm-to-table.\n";
- unsigned int inSz = sizeof(text);
- unsigned int outSz;
- unsigned char cBuffer[1024];
- unsigned char dBuffer[1024];
- int ret1, ret2;
- /* dynamic */
- ret1 = CRYPT_HUFFMAN_Compress(cBuffer, sizeof(cBuffer), text, inSz, 0);
- ret2 = wc_Compress(dBuffer, sizeof(dBuffer), text, inSz, 0);
- if (ret1 != ret2 || ret1 < 0) {
- printf("compress dynamic ret failed\n");
- return -1;
- }
- if (memcmp(cBuffer, dBuffer, ret1) != 0) {
- printf("compress dynamic cmp failed\n");
- return -1;
- }
- outSz = ret1;
- ret1 = CRYPT_HUFFMAN_DeCompress(dBuffer, sizeof(dBuffer), cBuffer, outSz);
- if (memcmp(dBuffer, text, inSz) != 0) {
- printf("mcapi decompress dynamic cmp failed\n");
- return -1;
- }
- memset(dBuffer, 0, sizeof(dBuffer));
- ret1 = wc_DeCompress(dBuffer, sizeof(dBuffer), cBuffer, outSz);
- if (memcmp(dBuffer, text, inSz) != 0) {
- printf("decompress dynamic cmp failed\n");
- return -1;
- }
- memset(cBuffer, 0, sizeof(cBuffer));
- memset(dBuffer, 0, sizeof(dBuffer));
- /* static */
- ret1 = CRYPT_HUFFMAN_Compress(cBuffer, sizeof(cBuffer), text, inSz, 1);
- ret2 = wc_Compress(dBuffer, sizeof(dBuffer), text, inSz, 1);
- if (ret1 != ret2 || ret1 < 0) {
- printf("compress static ret failed\n");
- return -1;
- }
- if (memcmp(cBuffer, dBuffer, ret1) != 0) {
- printf("compress static cmp failed\n");
- return -1;
- }
- outSz = ret1;
- ret1 = CRYPT_HUFFMAN_DeCompress(dBuffer, sizeof(dBuffer), cBuffer, outSz);
- if (memcmp(dBuffer, text, inSz) != 0) {
- printf("mcapi decompress static cmp failed\n");
- return -1;
- }
- memset(dBuffer, 0, sizeof(dBuffer));
- ret1 = wc_DeCompress(dBuffer, sizeof(dBuffer), cBuffer, outSz);
- if (memcmp(dBuffer, text, inSz) != 0) {
- printf("decompress static cmp failed\n");
- return -1;
- }
- printf("huffman mcapi test passed\n");
- return 0;
- }
- #define RANDOM_BYTE_SZ 32
- /* check mcapi rng */
- static int check_rng(void)
- {
- int ret;
- int i;
- byte in[RANDOM_BYTE_SZ];
- byte out[RANDOM_BYTE_SZ];
- for (i = 0; i < RANDOM_BYTE_SZ; i++)
- in[i] = (byte)i;
- for (i = 0; i < RANDOM_BYTE_SZ; i++)
- out[i] = (byte)i;
- ret = wc_InitRng(&defRng);
- if (ret != 0) {
- printf("default rng init failed\n");
- return -1;
- }
- ret = CRYPT_RNG_Initialize(&mcRng);
- if (ret != 0) {
- printf("mcapi rng init failed\n");
- return -1;
- }
- ret = CRYPT_RNG_Get(&mcRng, &out[0]);
- if (ret != 0) {
- printf("mcapi rng get failed\n");
- return -1;
- }
- ret = CRYPT_RNG_BlockGenerate(&mcRng, out, RANDOM_BYTE_SZ);
- if (ret != 0) {
- printf("mcapi rng block gen failed\n");
- return -1;
- }
- if (memcmp(in, out, RANDOM_BYTE_SZ) == 0) {
- printf("mcapi rng block gen output failed\n");
- return -1;
- }
- printf("rng mcapi test passed\n");
- return 0;
- }
- #define TDES_TEST_SIZE 32
- /* check mcapi des3 */
- static int check_des3(void)
- {
- CRYPT_TDES_CTX mcDes3;
- Des3 defDes3;
- int ret;
- byte out1[TDES_TEST_SIZE];
- byte out2[TDES_TEST_SIZE];
- strncpy((char*)key, "1234567890abcdefghijklmn", 24);
- strncpy((char*)iv, "12345678", 8);
- /* cbc encrypt */
- ret = CRYPT_TDES_KeySet(&mcDes3, key, iv, CRYPT_TDES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi tdes key set failed\n");
- return -1;
- }
- ret = wc_Des3_SetKey(&defDes3, key, iv, DES_ENCRYPTION);
- if (ret != 0) {
- printf("default des3 key set failed\n");
- return -1;
- }
- ret = CRYPT_TDES_CBC_Encrypt(&mcDes3, out1, ourData, TDES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi tdes cbc encrypt failed\n");
- return -1;
- }
- ret = wc_Des3_CbcEncrypt(&defDes3, out2, ourData, TDES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi default tdes cbc encrypt failed\n");
- return -1;
- }
- if (memcmp(out1, out2, TDES_TEST_SIZE) != 0) {
- printf("mcapi tdes cbc encrypt cmp failed\n");
- return -1;
- }
- /* cbc decrypt */
- ret = CRYPT_TDES_KeySet(&mcDes3, key, iv, CRYPT_TDES_DECRYPTION);
- if (ret != 0) {
- printf("mcapi tdes key set failed\n");
- return -1;
- }
- ret = wc_Des3_SetKey(&defDes3, key, iv, DES_DECRYPTION);
- if (ret != 0) {
- printf("default des3 key set failed\n");
- return -1;
- }
- ret = CRYPT_TDES_CBC_Decrypt(&mcDes3, out2, out1, TDES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi tdes cbc decrypt failed\n");
- return -1;
- }
- ret = wc_Des3_CbcDecrypt(&defDes3, out1, out1, TDES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi default tdes cbc decrypt failed\n");
- return -1;
- }
- if (memcmp(out1, out2, TDES_TEST_SIZE) != 0) {
- printf("mcapi tdes cbc decrypt cmp failed\n");
- return -1;
- }
- if (memcmp(out1, ourData, TDES_TEST_SIZE) != 0) {
- printf("mcapi tdes cbc decrypt orig cmp failed\n");
- return -1;
- }
- printf("tdes mcapi test passed\n");
- return 0;
- }
- #define AES_TEST_SIZE 32
- /* check mcapi aes cbc */
- static int check_aescbc(void)
- {
- CRYPT_AES_CTX mcAes;
- Aes defAes;
- int ret;
- byte out1[AES_TEST_SIZE];
- byte out2[AES_TEST_SIZE];
- strncpy((char*)key, "1234567890abcdefghijklmnopqrstuv", 32);
- strncpy((char*)iv, "1234567890abcdef", 16);
- /* 128 cbc encrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 16, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-128 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 16, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-128 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CBC_Encrypt(&mcAes, out1, ourData, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-128 cbc encrypt failed\n");
- return -1;
- }
- wc_AesCbcEncrypt(&defAes, out2, ourData, AES_TEST_SIZE);
- if (memcmp(out1, out2, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-128 cbc encrypt cmp failed\n");
- return -1;
- }
- /* 128 cbc decrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 16, iv, CRYPT_AES_DECRYPTION);
- if (ret != 0) {
- printf("mcapi aes-128 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 16, iv, DES_DECRYPTION);
- if (ret != 0) {
- printf("default aes-128 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CBC_Decrypt(&mcAes, out2, out1, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-128 cbc decrypt failed\n");
- return -1;
- }
- wc_AesCbcDecrypt(&defAes, out1, out1, AES_TEST_SIZE);
- if (memcmp(out1, out2, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-128 cbc decrypt cmp failed\n");
- return -1;
- }
- if (memcmp(out1, ourData, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-128 cbc decrypt orig cmp failed\n");
- return -1;
- }
- /* 192 cbc encrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 24, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-192 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 24, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-192 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CBC_Encrypt(&mcAes, out1, ourData, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-192 cbc encrypt failed\n");
- return -1;
- }
- wc_AesCbcEncrypt(&defAes, out2, ourData, AES_TEST_SIZE);
- if (memcmp(out1, out2, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-192 cbc encrypt cmp failed\n");
- return -1;
- }
- /* 192 cbc decrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 24, iv, CRYPT_AES_DECRYPTION);
- if (ret != 0) {
- printf("mcapi aes-192 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 24, iv, AES_DECRYPTION);
- if (ret != 0) {
- printf("default aes-192 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CBC_Decrypt(&mcAes, out2, out1, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-192 cbc decrypt failed\n");
- return -1;
- }
- wc_AesCbcDecrypt(&defAes, out1, out1, AES_TEST_SIZE);
- if (memcmp(out1, out2, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-192 cbc decrypt cmp failed\n");
- return -1;
- }
- if (memcmp(out1, ourData, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-192 cbc decrypt orig cmp failed\n");
- return -1;
- }
- /* 256 cbc encrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 32, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-256 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 32, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-256 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CBC_Encrypt(&mcAes, out1, ourData, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-256 cbc encrypt failed\n");
- return -1;
- }
- wc_AesCbcEncrypt(&defAes, out2, ourData, AES_TEST_SIZE);
- if (memcmp(out1, out2, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-256 cbc encrypt cmp failed\n");
- return -1;
- }
- /* 256 cbc decrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 32, iv, CRYPT_AES_DECRYPTION);
- if (ret != 0) {
- printf("mcapi aes-256 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 32, iv, AES_DECRYPTION);
- if (ret != 0) {
- printf("default aes-256 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CBC_Decrypt(&mcAes, out2, out1, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-256 cbc decrypt failed\n");
- return -1;
- }
- wc_AesCbcDecrypt(&defAes, out1, out1, AES_TEST_SIZE);
- if (memcmp(out1, out2, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-256 cbc decrypt cmp failed\n");
- return -1;
- }
- if (memcmp(out1, ourData, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-256 cbc decrypt orig cmp failed\n");
- return -1;
- }
- printf("aes-cbc mcapi test passed\n");
- return 0;
- }
- /* check mcapi aes ctr */
- static int check_aesctr(void)
- {
- CRYPT_AES_CTX mcAes;
- Aes defAes;
- int ret;
- byte out1[AES_TEST_SIZE];
- byte out2[AES_TEST_SIZE];
- strncpy((char*)key, "1234567890abcdefghijklmnopqrstuv", 32);
- strncpy((char*)iv, "1234567890abcdef", 16);
- /* 128 ctr encrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 16, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-128 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 16, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-128 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CTR_Encrypt(&mcAes, out1, ourData, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-128 ctr encrypt failed\n");
- return -1;
- }
- wc_AesCtrEncrypt(&defAes, out2, ourData, AES_TEST_SIZE);
- if (memcmp(out1, out2, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-128 ctr encrypt cmp failed\n");
- return -1;
- }
- /* 128 ctr decrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 16, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-128 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 16, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-128 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CTR_Encrypt(&mcAes, out2, out1, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-128 ctr decrypt failed\n");
- return -1;
- }
- if (memcmp(out2, ourData, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-128 ctr decrypt orig cmp failed\n");
- return -1;
- }
- /* 192 ctr encrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 24, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-192 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 24, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-192 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CTR_Encrypt(&mcAes, out1, ourData, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-192 ctr encrypt failed\n");
- return -1;
- }
- wc_AesCtrEncrypt(&defAes, out2, ourData, AES_TEST_SIZE);
- if (memcmp(out1, out2, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-192 ctr encrypt cmp failed\n");
- return -1;
- }
- /* 192 ctr decrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 24, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-192 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 24, iv, AES_DECRYPTION);
- if (ret != 0) {
- printf("default aes-192 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CTR_Encrypt(&mcAes, out2, out1, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-192 ctr decrypt failed\n");
- return -1;
- }
- if (memcmp(out2, ourData, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-192 ctr decrypt orig cmp failed\n");
- return -1;
- }
- /* 256 ctr encrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 32, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-256 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 32, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-256 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CTR_Encrypt(&mcAes, out1, ourData, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-256 ctr encrypt failed\n");
- return -1;
- }
- wc_AesCtrEncrypt(&defAes, out2, ourData, AES_TEST_SIZE);
- if (memcmp(out1, out2, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-256 ctr encrypt cmp failed\n");
- return -1;
- }
- /* 256 ctr decrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 32, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-256 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 32, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-256 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_CTR_Encrypt(&mcAes, out2, out1, AES_TEST_SIZE);
- if (ret != 0) {
- printf("mcapi aes-256 ctr decrypt failed\n");
- return -1;
- }
- if (memcmp(out2, ourData, AES_TEST_SIZE) != 0) {
- printf("mcapi aes-256 ctr decrypt orig cmp failed\n");
- return -1;
- }
- printf("aes-ctr mcapi test passed\n");
- return 0;
- }
- /* check mcapi aes direct */
- static int check_aesdirect(void)
- {
- CRYPT_AES_CTX mcAes;
- Aes defAes;
- int ret;
- byte out1[CRYPT_AES_BLOCK_SIZE];
- byte out2[16]; /* one block at a time */
- strncpy((char*)key, "1234567890abcdefghijklmnopqrstuv", 32);
- strncpy((char*)iv, "1234567890abcdef", 16);
- /* 128 direct encrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 16, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-128 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 16, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-128 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_DIRECT_Encrypt(&mcAes, out1, ourData);
- if (ret != 0) {
- printf("mcapi aes-128 direct encrypt failed\n");
- return -1;
- }
- wc_AesEncryptDirect(&defAes, out2, ourData);
- if (memcmp(out1, out2, CRYPT_AES_BLOCK_SIZE) != 0) {
- printf("mcapi aes-128 direct encrypt cmp failed\n");
- return -1;
- }
- /* 128 direct decrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 16, iv, CRYPT_AES_DECRYPTION);
- if (ret != 0) {
- printf("mcapi aes-128 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 16, iv, DES_DECRYPTION);
- if (ret != 0) {
- printf("default aes-128 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_DIRECT_Decrypt(&mcAes, out2, out1);
- if (ret != 0) {
- printf("mcapi aes-128 direct decrypt failed\n");
- return -1;
- }
- wc_AesDecryptDirect(&defAes, out1, out1);
- if (memcmp(out1, out2, CRYPT_AES_BLOCK_SIZE) != 0) {
- printf("mcapi aes-128 direct decrypt cmp failed\n");
- return -1;
- }
- if (memcmp(out1, ourData, CRYPT_AES_BLOCK_SIZE) != 0) {
- printf("mcapi aes-128 direct decrypt orig cmp failed\n");
- return -1;
- }
- /* 192 direct encrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 24, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-192 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 24, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-192 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_DIRECT_Encrypt(&mcAes, out1, ourData);
- if (ret != 0) {
- printf("mcapi aes-192 direct encrypt failed\n");
- return -1;
- }
- wc_AesEncryptDirect(&defAes, out2, ourData);
- if (memcmp(out1, out2, CRYPT_AES_BLOCK_SIZE) != 0) {
- printf("mcapi aes-192 direct encrypt cmp failed\n");
- return -1;
- }
- /* 192 direct decrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 24, iv, CRYPT_AES_DECRYPTION);
- if (ret != 0) {
- printf("mcapi aes-192 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 24, iv, AES_DECRYPTION);
- if (ret != 0) {
- printf("default aes-192 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_DIRECT_Decrypt(&mcAes, out2, out1);
- if (ret != 0) {
- printf("mcapi aes-192 direct decrypt failed\n");
- return -1;
- }
- wc_AesDecryptDirect(&defAes, out1, out1);
- if (memcmp(out1, out2, CRYPT_AES_BLOCK_SIZE) != 0) {
- printf("mcapi aes-192 direct decrypt cmp failed\n");
- return -1;
- }
- if (memcmp(out1, ourData, CRYPT_AES_BLOCK_SIZE) != 0) {
- printf("mcapi aes-192 direct decrypt orig cmp failed\n");
- return -1;
- }
- /* 256 direct encrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 32, iv, CRYPT_AES_ENCRYPTION);
- if (ret != 0) {
- printf("mcapi aes-256 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 32, iv, AES_ENCRYPTION);
- if (ret != 0) {
- printf("default aes-256 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_DIRECT_Encrypt(&mcAes, out1, ourData);
- if (ret != 0) {
- printf("mcapi aes-256 direct encrypt failed\n");
- return -1;
- }
- wc_AesEncryptDirect(&defAes, out2, ourData);
- if (memcmp(out1, out2, CRYPT_AES_BLOCK_SIZE) != 0) {
- printf("mcapi aes-256 direct encrypt cmp failed\n");
- return -1;
- }
- /* 256 direct decrypt */
- ret = CRYPT_AES_KeySet(&mcAes, key, 32, iv, CRYPT_AES_DECRYPTION);
- if (ret != 0) {
- printf("mcapi aes-256 key set failed\n");
- return -1;
- }
- ret = wc_AesSetKey(&defAes, key, 32, iv, AES_DECRYPTION);
- if (ret != 0) {
- printf("default aes-256 key set failed\n");
- return -1;
- }
- ret = CRYPT_AES_DIRECT_Decrypt(&mcAes, out2, out1);
- if (ret != 0) {
- printf("mcapi aes-256 direct decrypt failed\n");
- return -1;
- }
- wc_AesDecryptDirect(&defAes, out1, out1);
- if (memcmp(out1, out2, CRYPT_AES_BLOCK_SIZE) != 0) {
- printf("mcapi aes-256 direct decrypt cmp failed\n");
- return -1;
- }
- if (memcmp(out1, ourData, CRYPT_AES_BLOCK_SIZE) != 0) {
- printf("mcapi aes-256 direct decrypt orig cmp failed\n");
- return -1;
- }
- printf("aes-direct mcapi test passed\n");
- return 0;
- }
- #define RSA_TEST_SIZE 64
- /* check mcapi rsa */
- static int check_rsa(void)
- {
- CRYPT_RSA_CTX mcRsa;
- RsaKey defRsa;
- int ret;
- int ret2;
- unsigned int keySz = (unsigned int)sizeof(client_key_der_1024);
- unsigned int idx = 0;
- byte out1[256];
- byte out2[256];
- ret = wc_InitRsaKey(&defRsa, NULL);
- if (ret == 0)
- ret = CRYPT_RSA_Initialize(&mcRsa);
- if (ret != 0) {
- printf("mcapi rsa init failed\n");
- return -1;
- }
- ret = CRYPT_RSA_PrivateKeyDecode(&mcRsa, client_key_der_1024, keySz);
- if (ret != 0) {
- printf("mcapi rsa private key decode failed\n");
- return -1;
- }
- ret = wc_RsaPrivateKeyDecode(client_key_der_1024, &idx, &defRsa, keySz);
- if (ret != 0) {
- printf("default rsa private key decode failed\n");
- return -1;
- }
- ret = CRYPT_RSA_PublicEncrypt(&mcRsa, out1, sizeof(out1), ourData,
- RSA_TEST_SIZE, &mcRng);
- if (ret < 0) {
- printf("mcapi rsa public encrypt failed\n");
- return -1;
- }
- ret2 = wc_RsaPublicEncrypt(ourData, RSA_TEST_SIZE, out2, sizeof(out2),
- &defRsa, &defRng);
- if (ret2 < 0) {
- printf("default rsa public encrypt failed\n");
- return -1;
- }
- if (ret != ret2) {
- printf("default rsa public encrypt sz != mcapi sz\n");
- return -1;
- }
- if (ret != CRYPT_RSA_EncryptSizeGet(&mcRsa)) {
- printf("mcapi encrypt sz get != mcapi sz\n");
- return -1;
- }
- ret = CRYPT_RSA_PrivateDecrypt(&mcRsa, out2, sizeof(out2), out1, ret);
- if (ret < 0) {
- printf("mcapi rsa private derypt failed\n");
- return -1;
- }
- if (ret != RSA_TEST_SIZE) {
- printf("mcapi rsa private derypt plain size wrong\n");
- return -1;
- }
- if (memcmp(out2, ourData, ret) != 0) {
- printf("mcapi rsa private derypt plain text bad\n");
- return -1;
- }
- wc_FreeRsaKey(&defRsa);
- ret = CRYPT_RSA_Free(&mcRsa);
- if (ret != 0) {
- printf("mcapi rsa free failed\n");
- return -1;
- }
-
- printf("rsa mcapi test passed\n");
- return 0;
- }
- /* check mcapi ecc */
- static int check_ecc(void)
- {
- CRYPT_ECC_CTX userA;
- CRYPT_ECC_CTX userB;
- int ret;
- byte sharedA[100];
- byte sharedB[100];
- byte sig[100];
- unsigned int aSz = (unsigned int)sizeof(sharedA);
- unsigned int bSz = (unsigned int)sizeof(sharedB);
- unsigned int sigSz = (unsigned int)sizeof(sig);
- unsigned int usedA = 0;
- unsigned int usedB = 0;
- int verifyStatus = 0;
- /* init */
- ret = CRYPT_ECC_Initialize(&userA);
- if (ret != 0) {
- printf("mcapi ecc init failed\n");
- return -1;
- }
- ret = CRYPT_ECC_Initialize(&userB);
- if (ret != 0) {
- printf("mcapi ecc init b failed\n");
- return -1;
- }
- /* dhe + helpers */
- ret = CRYPT_ECC_DHE_KeyMake(&userA, &mcRng, 32);
- if (ret != 0) {
- printf("mcapi ecc make key failed\n");
- return -1;
- }
- ret = CRYPT_ECC_DHE_KeyMake(&userB, &mcRng, 32);
- if (ret != 0) {
- printf("mcapi ecc make key b failed\n");
- return -1;
- }
- ret = CRYPT_ECC_KeySizeGet(&userA);
- if (ret <= 0) {
- printf("mcapi ecc key size get failed\n");
- return -1;
- }
- ret = CRYPT_ECC_SignatureSizeGet(&userA);
- if (ret <= 0) {
- printf("mcapi ecc signature size get failed\n");
- return -1;
- }
- ret = CRYPT_ECC_DHE_SharedSecretMake(&userA, &userB, sharedA, aSz, &usedA);
- if (ret != 0) {
- printf("mcapi ecc make shared secret failed\n");
- return -1;
- }
- ret = CRYPT_ECC_DHE_SharedSecretMake(&userB, &userA, sharedB, bSz, &usedB);
- if (ret != 0) {
- printf("mcapi ecc make shared secret failed\n");
- return -1;
- }
- if (usedA != usedB || usedA <= 0) {
- printf("mcapi ecc make shared secret output size match failed\n");
- return -1;
- }
- if (memcmp(sharedA, sharedB, usedA) != 0) {
- printf("mcapi ecc make shared secret output match cmp failed\n");
- return -1;
- }
- /* dsa */
- ret = CRYPT_ECC_DSA_HashSign(&userA, &mcRng, sig, sigSz, &usedA, ourData,
- CRYPT_SHA_DIGEST_SIZE);
- if (ret != 0) {
- printf("mcapi ecc sign hash failed\n");
- return -1;
- }
- sigSz = usedA;
- if (sigSz <= 0) {
- printf("mcapi ecc sign hash bad sig size\n");
- return -1;
- }
- ret = CRYPT_ECC_DSA_HashVerify(&userA, sig, sigSz, ourData,
- CRYPT_SHA_DIGEST_SIZE, &verifyStatus);
- if (ret != 0) {
- printf("mcapi ecc verify hash failed\n");
- return -1;
- }
- if (verifyStatus != 1) {
- printf("mcapi ecc verify hash status failed\n");
- return -1;
- }
- /* import / export */
- usedA = 0;
- ret = CRYPT_ECC_PublicExport(&userA, sharedA, aSz, &usedA);
- if (ret != 0) {
- printf("mcapi ecc public export failed\n");
- return -1;
- }
-
- ret = CRYPT_ECC_PublicImport(&userB, sharedA, usedA);
- if (ret != 0) {
- printf("mcapi ecc public import failed\n");
- return -1;
- }
- ret = CRYPT_ECC_Free(&userA);
- if (ret != 0) {
- printf("mcapi ecc free failed\n");
- return -1;
- }
- ret = CRYPT_ECC_Free(&userB);
- if (ret != 0) {
- printf("mcapi ecc free b failed\n");
- return -1;
- }
- printf("ecc mcapi test passed\n");
- return 0;
- }
|