2 #include "mbedtls/cipher.h"
3 #include "mbedtls/cmac.h"
7 * depends_on:MBEDTLS_CMAC_C
11 /* BEGIN_CASE depends_on:MBEDTLS_SELF_TEST */
12 void mbedtls_cmac_self_test( )
14 TEST_ASSERT( mbedtls_cmac_self_test( 1 ) == 0 );
19 void mbedtls_cmac_null_args( )
21 mbedtls_cipher_context_t ctx;
22 const mbedtls_cipher_info_t *cipher_info;
23 unsigned char test_key[MBEDTLS_CIPHER_BLKSIZE_MAX];
24 unsigned char test_data[MBEDTLS_CIPHER_BLKSIZE_MAX];
25 unsigned char test_output[MBEDTLS_CIPHER_BLKSIZE_MAX];
27 mbedtls_cipher_init( &ctx );
29 /* Test NULL cipher info */
30 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx, test_data, 16 ) ==
31 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
33 cipher_info = mbedtls_cipher_info_from_type( MBEDTLS_CIPHER_AES_128_ECB );
34 TEST_ASSERT( mbedtls_cipher_setup( &ctx, cipher_info ) == 0 );
36 TEST_ASSERT( mbedtls_cipher_cmac_starts( NULL, test_key, 128 ) ==
37 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
39 TEST_ASSERT( mbedtls_cipher_cmac_starts( &ctx, NULL, 128 ) ==
40 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
42 TEST_ASSERT( mbedtls_cipher_cmac_update( NULL, test_data, 16 ) ==
43 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
45 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx, NULL, 16 ) ==
46 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
48 TEST_ASSERT( mbedtls_cipher_cmac_finish( NULL, test_output ) ==
49 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
51 TEST_ASSERT( mbedtls_cipher_cmac_finish( &ctx, NULL ) ==
52 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
54 TEST_ASSERT( mbedtls_cipher_cmac_reset( NULL ) ==
55 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
57 TEST_ASSERT( mbedtls_cipher_cmac( NULL,
61 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
63 TEST_ASSERT( mbedtls_cipher_cmac( cipher_info,
67 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
69 TEST_ASSERT( mbedtls_cipher_cmac( cipher_info,
73 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
75 TEST_ASSERT( mbedtls_cipher_cmac( cipher_info,
79 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
81 TEST_ASSERT( mbedtls_aes_cmac_prf_128( NULL, 16,
84 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
86 TEST_ASSERT( mbedtls_aes_cmac_prf_128( test_key, 16,
89 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
91 TEST_ASSERT( mbedtls_aes_cmac_prf_128( test_key, 16,
94 MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA );
97 mbedtls_cipher_free( &ctx );
102 void mbedtls_cmac_setkey( int cipher_type, int key_size, int result )
104 const mbedtls_cipher_info_t *cipher_info;
105 unsigned char key[32];
106 unsigned char buf[16];
107 unsigned char tmp[16];
109 memset( key, 0x2A, sizeof( key ) );
110 TEST_ASSERT( (unsigned) key_size <= 8 * sizeof( key ) );
112 TEST_ASSERT( ( cipher_info = mbedtls_cipher_info_from_type( cipher_type ) )
115 memset( buf, 0x2A, sizeof( buf ) );
116 TEST_ASSERT( ( result == mbedtls_cipher_cmac( cipher_info, key, key_size,
117 buf, 16, tmp ) ) != 0 );
122 void mbedtls_cmac_multiple_blocks( int cipher_type, data_t * key,
123 int keybits, int block_size,
124 data_t * block1, int block1_len,
125 data_t * block2, int block2_len,
126 data_t * block3, int block3_len,
127 data_t * block4, int block4_len,
128 data_t * expected_result )
130 const mbedtls_cipher_info_t *cipher_info;
131 mbedtls_cipher_context_t ctx;
132 unsigned char output[MBEDTLS_CIPHER_BLKSIZE_MAX];
134 /* Convert the test parameters to binary data */
136 mbedtls_cipher_init( &ctx );
138 /* Validate the test inputs */
139 TEST_ASSERT( block1_len <= 100 );
140 TEST_ASSERT( block2_len <= 100 );
141 TEST_ASSERT( block3_len <= 100 );
142 TEST_ASSERT( block4_len <= 100 );
145 TEST_ASSERT( ( cipher_info = mbedtls_cipher_info_from_type( cipher_type ) )
148 TEST_ASSERT( mbedtls_cipher_setup( &ctx, cipher_info ) == 0 );
150 TEST_ASSERT( mbedtls_cipher_cmac_starts( &ctx,
151 (const unsigned char*)key->x,
154 /* Multiple partial and complete blocks. A negative length means skip the
155 * update operation */
157 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
158 (unsigned char*)block1->x,
161 if( block2_len >= 0 )
162 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
163 (unsigned char*)block2->x,
166 if( block3_len >= 0 )
167 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
168 (unsigned char*)block3->x,
171 if( block4_len >= 0 )
172 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
173 (unsigned char*)block4->x,
176 TEST_ASSERT( mbedtls_cipher_cmac_finish( &ctx, output ) == 0 );
178 TEST_ASSERT( memcmp( output, expected_result->x, block_size ) == 0 );
181 mbedtls_cipher_free( &ctx );
186 void mbedtls_cmac_multiple_operations_same_key( int cipher_type,
187 data_t * key, int keybits,
195 data_t * expected_result_a,
202 data_t * expected_result_b
205 const mbedtls_cipher_info_t *cipher_info;
206 mbedtls_cipher_context_t ctx;
207 unsigned char output[MBEDTLS_CIPHER_BLKSIZE_MAX];
209 /* Convert the test parameters to binary data */
213 mbedtls_cipher_init( &ctx );
215 /* Validate the test inputs */
216 TEST_ASSERT( block_a1_len <= 100 );
217 TEST_ASSERT( block_a2_len <= 100 );
218 TEST_ASSERT( block_a3_len <= 100 );
220 TEST_ASSERT( block_b1_len <= 100 );
221 TEST_ASSERT( block_b2_len <= 100 );
222 TEST_ASSERT( block_b3_len <= 100 );
225 TEST_ASSERT( ( cipher_info = mbedtls_cipher_info_from_type( cipher_type ) )
228 TEST_ASSERT( mbedtls_cipher_setup( &ctx, cipher_info ) == 0 );
230 TEST_ASSERT( mbedtls_cipher_cmac_starts( &ctx,
231 (const unsigned char*)key->x,
236 /* Multiple partial and complete blocks. A negative length means skip the
237 * update operation */
238 if( block_a1_len >= 0 )
239 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
240 (unsigned char*)block_a1->x,
241 block_a1_len ) == 0);
243 if( block_a2_len >= 0 )
244 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
245 (unsigned char*)block_a2->x,
246 block_a2_len ) == 0);
248 if( block_a3_len >= 0 )
249 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
250 (unsigned char*)block_a3->x,
251 block_a3_len ) == 0);
253 TEST_ASSERT( mbedtls_cipher_cmac_finish( &ctx, output ) == 0 );
255 TEST_ASSERT( memcmp( output, expected_result_a->x, block_size ) == 0 );
257 TEST_ASSERT( mbedtls_cipher_cmac_reset( &ctx ) == 0 );
261 /* Multiple partial and complete blocks. A negative length means skip the
262 * update operation */
263 if( block_b1_len >= 0)
264 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
265 (unsigned char*)block_b1->x,
266 block_b1_len ) == 0);
268 if( block_b2_len >= 0 )
269 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
270 (unsigned char*)block_b2->x,
271 block_b2_len ) == 0);
273 if( block_b3_len >= 0 )
274 TEST_ASSERT( mbedtls_cipher_cmac_update( &ctx,
275 (unsigned char*)block_b3->x,
276 block_b3_len ) == 0);
278 TEST_ASSERT( mbedtls_cipher_cmac_finish( &ctx, output ) == 0 );
280 TEST_ASSERT( memcmp( output, expected_result_b->x, block_size ) == 0 );
283 mbedtls_cipher_free( &ctx );