Skip to content

Commit

Permalink
aes_gcm: cavp tests
Browse files Browse the repository at this point in the history
  • Loading branch information
@ctz
ctz committed Oct 26, 2024
1 parent 1d199d7 commit 520d44b
Show file tree
Hide file tree
Showing 2 changed files with 103 additions and 1 deletion.
102 changes: 102 additions & 0 deletions graviola/src/mid/aes_gcm.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -137,6 +137,8 @@ impl AesGcm {
#[cfg(test)]
mod tests {
use super::*;
use crate::test::*;

#[test]
fn smoketest() {
let t = AesGcm::new(&[0; 16]);
Expand Down Expand Up @@ -174,4 +176,104 @@ mod tests {

assert_eq!(plain, &[b'p'; 4164]);
}

#[test]
fn cavp() {
#[derive(Default)]
struct State {
encrypt: bool,
key: Option<AesGcm>,
nonce: Vec<u8>,
ct: Vec<u8>,
aad: Vec<u8>,
pt: Vec<u8>,
tag: Vec<u8>,
}

impl CavpSink for State {
fn on_meta(&mut self, _meta: &str) {}

fn on_value(&mut self, name: &str, value: Value<'_>) {
match name {
"Count" => println!(" test {}", value.int()),
"Key" => self.key = Some(AesGcm::new(&value.bytes())),
"IV" => self.nonce = value.bytes(),
"CT" => self.ct = value.bytes(),
"AAD" => self.aad = value.bytes(),
"Tag" if !self.encrypt => self.tag = value.bytes(),
"Tag" if self.encrypt => {
if self.nonce.len() != 12 {
println!("skip unhandled nonce len");
return;
}
let mut got_tag = [0u8; 16];
self.key.as_ref().unwrap().encrypt(
&self.nonce[..].try_into().unwrap(),
&self.aad,
&mut self.pt,
&mut got_tag,
);
assert_eq!(self.pt, self.ct);
let tag = value.bytes();
assert_eq!(&got_tag[..tag.len()], &tag[..]);
}
"FAIL" => {
assert!(!self.encrypt);
if self.nonce.len() != 12 {
println!("skip unhandled nonce len");
return;
}
assert_eq!(
self.key
.as_ref()
.unwrap()
.decrypt(
&self.nonce[..].try_into().unwrap(),
&self.aad,
&mut self.ct,
&self.tag,
)
.unwrap_err(),
Error::DecryptFailed,
);
}
"PT" if !self.encrypt => {
if self.nonce.len() != 12 || self.tag.len() != 16 {
println!("skip unhandled nonce/tag len");
return;
}
self.key
.as_ref()
.unwrap()
.decrypt(
&self.nonce[..].try_into().expect("only 96-bit nonce"),
&self.aad,
&mut self.ct,
&self.tag,
)
.unwrap();
assert_eq!(self.ct, value.bytes());
}
"PT" if self.encrypt => self.pt = value.bytes(),
_ => {
todo!("unhandled value {name} = {value:?}");
}
}
}
}

process_cavp(
"../thirdparty/cavp/gcm/gcmDecrypt128.rsp",
&mut State::default(),
);
process_cavp(
"../thirdparty/cavp/gcm/gcmDecrypt256.rsp",
&mut State::default(),
);

let mut state = State::default();
state.encrypt = true;
process_cavp("../thirdparty/cavp/gcm/gcmEncryptExtIV128.rsp", &mut state);
process_cavp("../thirdparty/cavp/gcm/gcmEncryptExtIV256.rsp", &mut state);
}
}
2 changes: 1 addition & 1 deletion graviola/src/test.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -51,7 +51,7 @@ pub(crate) fn process_cavp(filename: impl AsRef<Path>, sink: &mut dyn CavpSink)

sink.on_value(name, Value(value));
} else {
println!("ignored {line}");
sink.on_value(&line, Value(""));
}
}
}

0 comments on commit 520d44b

Please sign in to comment.