[Cryptech-Commits] [sw/libhal] 04/05: Add a couple more tests

[git at cryptech.is]

This is an automated email from the git hooks/post-receive script.

paul at psgd.org pushed a commit to branch master
in repository sw/libhal.

commit f74b88612d128460cf32a281bc9464b24666cee8
Author: Paul Selkirk <paul at psgd.org>
AuthorDate: Wed Jul 6 14:36:47 2016 -0400

    Add a couple more tests
---
 tests/Makefile           |   4 +-
 tests/test-rpc_bighash.c | 131 +++++++++++++++++++++++++++++++++++++++++++++++
 tests/test-rpc_login.c   |  80 +++++++++++++++++++++++++++++
 3 files changed, 214 insertions(+), 1 deletion(-)

diff --git a/tests/Makefile b/tests/Makefile
index 229ffcf..79cb3ff 100644
--- a/tests/Makefile
+++ b/tests/Makefile
@@ -45,7 +45,7 @@ CFLAGS		?= -g3 -Wall -fPIC -std=c99 -I${LIBHAL_SRC} -I${LIBTFM_BLD}
 
 CORE_TESTS	= test-aes-key-wrap test-hash test-pbkdf2 test-ecdsa test-bus test-trng test-rsa test-mkmif
 SERVER_TESTS	= test-rpc_server
-CLIENT_TESTS	= test-rpc_hash test-rpc_pkey test-rpc_get_version test-rpc_get_random
+CLIENT_TESTS	= test-rpc_hash test-rpc_pkey test-rpc_get_version test-rpc_get_random test-rpc_login test-rpc_bighash
 
 ALL_TESTS	= ${CORE_TESTS} ${SERVER_TESTS} ${CLIENT_TESTS}
 
@@ -63,6 +63,8 @@ else
 
 endif
 
+$(info Building libhal with configuration IO_BUS=${IO_BUS} RPC_MODE=${RPC_MODE} KS=${KS} RPC_TRANSPORT=${RPC_TRANSPORT} MODEXP_CORE=${MODEXP_CORE})
+
 all: ${BIN}
 
 test: all
diff --git a/tests/test-rpc_bighash.c b/tests/test-rpc_bighash.c
new file mode 100644
index 0000000..e18d9b0
--- /dev/null
+++ b/tests/test-rpc_bighash.c
@@ -0,0 +1,131 @@
+/*
+ * test-rpc_bighash.c
+ * ------------------
+ * Test code for RPC interface to Cryptech hash cores.
+ *
+ * Copyright (c) 2016, NORDUnet A/S
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are
+ * met:
+ * - Redistributions of source code must retain the above copyright notice,
+ *   this list of conditions and the following disclaimer.
+ *
+ * - Redistributions in binary form must reproduce the above copyright
+ *   notice, this list of conditions and the following disclaimer in the
+ *   documentation and/or other materials provided with the distribution.
+ *
+ * - Neither the name of the NORDUnet nor the names of its contributors may
+ *   be used to endorse or promote products derived from this software
+ *   without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
+ * IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
+ * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
+ * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+ * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
+ * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+ * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+ * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+ * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+ * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+/*
+ * Throw a large hashing operation at the RPC server. This was originally
+ * written to flush out an interaction between RPC and the CLI login
+ * process (which uses PBKDF2, which uses HMAC-256). It might be useful
+ * for other puposes?
+ */
+
+#include <stdio.h>
+#include <string.h>
+
+#include <hal.h>
+
+static uint8_t block[] = "abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq";
+
+/* some common numbers of iterations, and their digests */
+static uint8_t expected_5k[] = {
+    0x28, 0xe6, 0x00, 0x2d, 0x7f, 0x18, 0x05, 0x42,
+    0xdb, 0x89, 0xc9, 0x9f, 0xc1, 0x5f, 0x83, 0x16,
+    0xe4, 0xc2, 0x15, 0x75, 0xad, 0xe5, 0x9f, 0xe7,
+    0x22, 0x0a, 0x59, 0x72, 0x56, 0x28, 0x1f, 0xe8,
+};
+
+static uint8_t expected_10k[] = {
+    0x2d, 0xb1, 0x9b, 0x83, 0x14, 0x86, 0x48, 0x18,
+    0x76, 0x54, 0xec, 0xe0, 0xfc, 0x1a, 0x56, 0xfe,
+    0xdc, 0xfa, 0x8f, 0x46, 0xfd, 0x9d, 0x88, 0x3a,
+    0xcd, 0x59, 0x51, 0x92, 0x44, 0x89, 0xc8, 0x51,
+};
+
+static uint8_t expected_25k[] = {
+    0xcb, 0xf2, 0x5c, 0x1d, 0x0a, 0xee, 0xfc, 0xf7,
+    0xe7, 0x7f, 0xda, 0x9a, 0x81, 0x1f, 0x6c, 0xa9,
+    0x80, 0x95, 0x04, 0x75, 0xdc, 0x3a, 0xc1, 0x18,
+    0x68, 0x7b, 0xe7, 0x9e, 0xb4, 0x2e, 0x43, 0xe5,
+};
+
+static void hexdump(uint8_t *buf, uint32_t len)
+{
+    for (uint32_t i = 0; i < len; ++i)
+        printf("%02x%c", buf[i], ((i & 0x07) == 0x07) ? '\n' : ' ');
+    if ((len & 0x07) != 0)
+        printf("\n");
+}
+
+#define check(op)                                               \
+    do {                                                        \
+        hal_error_t err = (op);                                 \
+        if (err) {                                              \
+            printf("%s: %s\n", #op, hal_error_string(err));     \
+            return err;                                         \
+        }                                                       \
+    } while (0)
+
+int main (int argc, char *argv[])
+{
+    hal_client_handle_t client = {0};
+    hal_session_handle_t session = {0};
+    hal_hash_handle_t hash;
+    uint8_t digest[32];
+    int iterations = 5000;
+    uint8_t *expected;
+
+    if (argc > 1)
+        iterations = atoi(argv[1]);
+
+    if (iterations == 5000)
+        expected = expected_5k;
+    else if (iterations == 10000)
+        expected = expected_10k;
+    else if (iterations == 25000)
+        expected = expected_25k;
+    else
+        expected = NULL;
+
+    check(hal_rpc_client_init());
+    check(hal_rpc_hash_initialize(client, session, &hash, hal_digest_algorithm_sha256, NULL, 0));
+
+    for (int i = 0; i < iterations; ++i) {
+        check(hal_rpc_hash_update(hash, block, sizeof(block)));
+    }
+
+    check(hal_rpc_hash_finalize(hash, digest, sizeof(digest)));
+
+    if (expected) {
+        if (memcmp(digest, expected, sizeof(digest)) != 0) {
+            printf("received:\n"); hexdump(digest, sizeof(digest));
+            printf("\nexpected:\n"); hexdump(expected, sizeof(digest));
+        }
+    }
+    else {
+        hexdump(digest, sizeof(digest));
+    }
+
+    check(hal_rpc_client_close());
+    return 0;
+}
diff --git a/tests/test-rpc_login.c b/tests/test-rpc_login.c
new file mode 100644
index 0000000..a95a5ed
--- /dev/null
+++ b/tests/test-rpc_login.c
@@ -0,0 +1,80 @@
+/*
+ * test-rpc_login.c
+ * ----------------
+ * Test code for RPC interface to Cryptech hash cores.
+ *
+ * Copyright (c) 2016, NORDUnet A/S
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are
+ * met:
+ * - Redistributions of source code must retain the above copyright notice,
+ *   this list of conditions and the following disclaimer.
+ *
+ * - Redistributions in binary form must reproduce the above copyright
+ *   notice, this list of conditions and the following disclaimer in the
+ *   documentation and/or other materials provided with the distribution.
+ *
+ * - Neither the name of the NORDUnet nor the names of its contributors may
+ *   be used to endorse or promote products derived from this software
+ *   without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS
+ * IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
+ * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
+ * PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+ * HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
+ * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
+ * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+ * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+ * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+ * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+#include <stdio.h>
+#include <string.h>
+#include <strings.h>
+
+#include <hal.h>
+
+#define check(op)                                               \
+    do {                                                        \
+        hal_error_t err = (op);                                 \
+        if (err) {                                              \
+            printf("%s: %s\n", #op, hal_error_string(err));     \
+            return err;                                         \
+        }                                                       \
+    } while (0)
+
+int main(int argc, char *argv[])
+{
+    hal_client_handle_t client = {0};
+    hal_user_t user = HAL_USER_WHEEL;
+
+    if (argc < 3) {
+        printf("usage: %s user pin\n", argv[0]);
+        return 1;
+    }
+
+    if (strcasecmp(argv[1], "wheel") == 0)
+        user = HAL_USER_WHEEL;
+    else if (strcasecmp(argv[1], "so") == 0)
+        user = HAL_USER_SO;
+    else if (strcasecmp(argv[1], "user") == 0)
+        user = HAL_USER_NORMAL;
+    else {
+        printf("user name must be one of 'wheel', 'so', or 'user'\n");
+        return 1;
+    }
+
+    check(hal_rpc_client_init());
+
+    check(hal_rpc_login(client, user, argv[2], strlen(argv[2])));
+    check(hal_rpc_is_logged_in(client, user));
+    check(hal_rpc_logout(client));
+
+    check(hal_rpc_client_close());
+    return 0;
+}