aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorPaul Selkirk <paul@psgd.org>2016-07-06 14:36:47 -0400
committerPaul Selkirk <paul@psgd.org>2016-07-06 18:16:49 -0400
commitf74b88612d128460cf32a281bc9464b24666cee8 (patch)
tree58662af3ac03640ae33e43811a70cb174aebfa3d
parentff928e437962a80a7f5033673cfc9f9ec019fdf8 (diff)
Add a couple more tests
-rw-r--r--tests/Makefile4
-rw-r--r--tests/test-rpc_bighash.c131
-rw-r--r--tests/test-rpc_login.c80
3 files changed, 214 insertions, 1 deletions
diff --git a/tests/Makefile b/tests/Makefile
index 229ffcf..79cb3ff 100644
--- a/tests/Makefile
+++ b/tests/Makefile
@@ -45,7 +45,7 @@ CFLAGS ?= -g3 -Wall -fPIC -std=c99 -I${LIBHAL_SRC} -I${LIBTFM_BLD}
CORE_TESTS = test-aes-key-wrap test-hash test-pbkdf2 test-ecdsa test-bus test-trng test-rsa test-mkmif
SERVER_TESTS = test-rpc_server
-CLIENT_TESTS = test-rpc_hash test-rpc_pkey test-rpc_get_version test-rpc_get_random
+CLIENT_TESTS = test-rpc_hash test-rpc_pkey test-rpc_get_version test-rpc_get_random test-rpc_login test-rpc_bighash
ALL_TESTS = ${CORE_TESTS} ${SERVER_TESTS} ${CLIENT_TESTS}
@@ -63,6 +63,8 @@ else
endif
+$(info Building libhal with configuration IO_BUS=${IO_BUS} RPC_MODE=${RPC_MODE} KS=${KS} RPC_TRANSPORT=${RPC_TRANSPORT} MODEXP_CORE=${MODEXP_CORE})
+
all: ${BIN}
test: all
diff --git a/tests/test-rpc_bighash.c b/tests/test-rpc_bighash.c
new file mode 100644
index 0000000..e18d9b0
--- /dev/null
+++ b/tests/test-rpc_bighash.c
@@ -0,0 +1,131 @@
+/*
+ * test-rpc_bighash.c
+ * ------------------
+ * Test code for RPC interface to Cryptech hash cores.
+ *
+ * Copyright (c) 2016, NORDUnet A/S
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are
+ * met:
+ * - Redistributions of source code must retain the above copyright notice,
+ * this list of conditions and the following disclaimer.
+ *
+ * - Redistributions in binary form must reproduce the above copyright
+ * notice, this list of conditions and the following disclaimer in the
+ * documentation and/or other materials provided with the distribution.
+ *
+ * - Neither the name of the NORDUnet nor the names of its contributors may
+ * be used to endorse or promote products derived from this software
+ * without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
+ * IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
+ * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
+ * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+ * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
+ * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+ * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+ * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+ * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+ * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+/*
+ * Throw a large hashing operation at the RPC server. This was originally
+ * written to flush out an interaction between RPC and the CLI login
+ * process (which uses PBKDF2, which uses HMAC-256). It might be useful
+ * for other puposes?
+ */
+
+#include <stdio.h>
+#include <string.h>
+
+#include <hal.h>
+
+static uint8_t block[] = "abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq";
+
+/* some common numbers of iterations, and their digests */
+static uint8_t expected_5k[] = {
+ 0x28, 0xe6, 0x00, 0x2d, 0x7f, 0x18, 0x05, 0x42,
+ 0xdb, 0x89, 0xc9, 0x9f, 0xc1, 0x5f, 0x83, 0x16,
+ 0xe4, 0xc2, 0x15, 0x75, 0xad, 0xe5, 0x9f, 0xe7,
+ 0x22, 0x0a, 0x59, 0x72, 0x56, 0x28, 0x1f, 0xe8,
+};
+
+static uint8_t expected_10k[] = {
+ 0x2d, 0xb1, 0x9b, 0x83, 0x14, 0x86, 0x48, 0x18,
+ 0x76, 0x54, 0xec, 0xe0, 0xfc, 0x1a, 0x56, 0xfe,
+ 0xdc, 0xfa, 0x8f, 0x46, 0xfd, 0x9d, 0x88, 0x3a,
+ 0xcd, 0x59, 0x51, 0x92, 0x44, 0x89, 0xc8, 0x51,
+};
+
+static uint8_t expected_25k[] = {
+ 0xcb, 0xf2, 0x5c, 0x1d, 0x0a, 0xee, 0xfc, 0xf7,
+ 0xe7, 0x7f, 0xda, 0x9a, 0x81, 0x1f, 0x6c, 0xa9,
+ 0x80, 0x95, 0x04, 0x75, 0xdc, 0x3a, 0xc1, 0x18,
+ 0x68, 0x7b, 0xe7, 0x9e, 0xb4, 0x2e, 0x43, 0xe5,
+};
+
+static void hexdump(uint8_t *buf, uint32_t len)
+{
+ for (uint32_t i = 0; i < len; ++i)
+ printf("%02x%c", buf[i], ((i & 0x07) == 0x07) ? '\n' : ' ');
+ if ((len & 0x07) != 0)
+ printf("\n");
+}
+
+#define check(op) \
+ do { \
+ hal_error_t err = (op); \
+ if (err) { \
+ printf("%s: %s\n", #op, hal_error_string(err)); \
+ return err; \
+ } \
+ } while (0)
+
+int main (int argc, char *argv[])
+{
+ hal_client_handle_t client = {0};
+ hal_session_handle_t session = {0};
+ hal_hash_handle_t hash;
+ uint8_t digest[32];
+ int iterations = 5000;
+ uint8_t *expected;
+
+ if (argc > 1)
+ iterations = atoi(argv[1]);
+
+ if (iterations == 5000)
+ expected = expected_5k;
+ else if (iterations == 10000)
+ expected = expected_10k;
+ else if (iterations == 25000)
+ expected = expected_25k;
+ else
+ expected = NULL;
+
+ check(hal_rpc_client_init());
+ check(hal_rpc_hash_initialize(client, session, &hash, hal_digest_algorithm_sha256, NULL, 0));
+
+ for (int i = 0; i < iterations; ++i) {
+ check(hal_rpc_hash_update(hash, block, sizeof(block)));
+ }
+
+ check(hal_rpc_hash_finalize(hash, digest, sizeof(digest)));
+
+ if (expected) {
+ if (memcmp(digest, expected, sizeof(digest)) != 0) {
+ printf("received:\n"); hexdump(digest, sizeof(digest));
+ printf("\nexpected:\n"); hexdump(expected, sizeof(digest));
+ }
+ }
+ else {
+ hexdump(digest, sizeof(digest));
+ }
+
+ check(hal_rpc_client_close());
+ return 0;
+}
diff --git a/tests/test-rpc_login.c b/tests/test-rpc_login.c
new file mode 100644
index 0000000..a95a5ed
--- /dev/null
+++ b/tests/test-rpc_login.c
@@ -0,0 +1,80 @@
+/*
+ * test-rpc_login.c
+ * ----------------
+ * Test code for RPC interface to Cryptech hash cores.
+ *
+ * Copyright (c) 2016, NORDUnet A/S
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are
+ * met:
+ * - Redistributions of source code must retain the above copyright notice,
+ * this list of conditions and the following disclaimer.
+ *
+ * - Redistributions in binary form must reproduce the above copyright
+ * notice, this list of conditions and the following disclaimer in the
+ * documentation and/or other materials provided with the distribution.
+ *
+ * - Neither the name of the NORDUnet nor the names of its contributors may
+ * be used to endorse or promote products derived from this software
+ * without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
+ * IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
+ * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
+ * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+ * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
+ * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+ * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+ * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+ * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+ * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+#include <stdio.h>
+#include <string.h>
+#include <strings.h>
+
+#include <hal.h>
+
+#define check(op) \
+ do { \
+ hal_error_t err = (op); \
+ if (err) { \
+ printf("%s: %s\n", #op, hal_error_string(err)); \
+ return err; \
+ } \
+ } while (0)
+
+int main(int argc, char *argv[])
+{
+ hal_client_handle_t client = {0};
+ hal_user_t user = HAL_USER_WHEEL;
+
+ if (argc < 3) {
+ printf("usage: %s user pin\n", argv[0]);
+ return 1;
+ }
+
+ if (strcasecmp(argv[1], "wheel") == 0)
+ user = HAL_USER_WHEEL;
+ else if (strcasecmp(argv[1], "so") == 0)
+ user = HAL_USER_SO;
+ else if (strcasecmp(argv[1], "user") == 0)
+ user = HAL_USER_NORMAL;
+ else {
+ printf("user name must be one of 'wheel', 'so', or 'user'\n");
+ return 1;
+ }
+
+ check(hal_rpc_client_init());
+
+ check(hal_rpc_login(client, user, argv[2], strlen(argv[2])));
+ check(hal_rpc_is_logged_in(client, user));
+ check(hal_rpc_logout(client));
+
+ check(hal_rpc_client_close());
+ return 0;
+}