[qemu.git] / tests / test-crypto-cipher.c

/*
 * QEMU Crypto cipher algorithms
 *
 * Copyright (c) 2015 Red Hat, Inc.
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
 *
 */

#include <glib.h>

#include "crypto/init.h"
#include "crypto/cipher.h"

typedef struct QCryptoCipherTestData QCryptoCipherTestData;
struct QCryptoCipherTestData {
    const char *path;
    QCryptoCipherAlgorithm alg;
    QCryptoCipherMode mode;
    const char *key;
    const char *plaintext;
    const char *ciphertext;
    const char *iv;
};

/* AES test data comes from appendix F of:
 *
 * http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf
 */
static QCryptoCipherTestData test_data[] = {
    {
        /* NIST F.1.1 ECB-AES128.Encrypt */
        .path = "/crypto/cipher/aes-ecb-128",
        .alg = QCRYPTO_CIPHER_ALG_AES_128,
        .mode = QCRYPTO_CIPHER_MODE_ECB,
        .key = "2b7e151628aed2a6abf7158809cf4f3c",
        .plaintext =
            "6bc1bee22e409f96e93d7e117393172a"
            "ae2d8a571e03ac9c9eb76fac45af8e51"
            "30c81c46a35ce411e5fbc1191a0a52ef"
            "f69f2445df4f9b17ad2b417be66c3710",
        .ciphertext =
            "3ad77bb40d7a3660a89ecaf32466ef97"
            "f5d3d58503b9699de785895a96fdbaaf"
            "43b1cd7f598ece23881b00e3ed030688"
            "7b0c785e27e8ad3f8223207104725dd4"
    },
    {
        /* NIST F.1.3 ECB-AES192.Encrypt */
        .path = "/crypto/cipher/aes-ecb-192",
        .alg = QCRYPTO_CIPHER_ALG_AES_192,
        .mode = QCRYPTO_CIPHER_MODE_ECB,
        .key = "8e73b0f7da0e6452c810f32b809079e562f8ead2522c6b7b",
        .plaintext  =
            "6bc1bee22e409f96e93d7e117393172a"
            "ae2d8a571e03ac9c9eb76fac45af8e51"
            "30c81c46a35ce411e5fbc1191a0a52ef"
            "f69f2445df4f9b17ad2b417be66c3710",
        .ciphertext =
            "bd334f1d6e45f25ff712a214571fa5cc"
            "974104846d0ad3ad7734ecb3ecee4eef"
            "ef7afd2270e2e60adce0ba2face6444e"
            "9a4b41ba738d6c72fb16691603c18e0e"
    },
    {
        /* NIST F.1.5 ECB-AES256.Encrypt */
        .path = "/crypto/cipher/aes-ecb-256",
        .alg = QCRYPTO_CIPHER_ALG_AES_256,
        .mode = QCRYPTO_CIPHER_MODE_ECB,
        .key =
            "603deb1015ca71be2b73aef0857d7781"
            "1f352c073b6108d72d9810a30914dff4",
        .plaintext  =
            "6bc1bee22e409f96e93d7e117393172a"
            "ae2d8a571e03ac9c9eb76fac45af8e51"
            "30c81c46a35ce411e5fbc1191a0a52ef"
            "f69f2445df4f9b17ad2b417be66c3710",
        .ciphertext =
            "f3eed1bdb5d2a03c064b5a7e3db181f8"
            "591ccb10d410ed26dc5ba74a31362870"
            "b6ed21b99ca6f4f9f153e7b1beafed1d"
            "23304b7a39f9f3ff067d8d8f9e24ecc7",
    },
    {
        /* NIST F.2.1 CBC-AES128.Encrypt */
        .path = "/crypto/cipher/aes-cbc-128",
        .alg = QCRYPTO_CIPHER_ALG_AES_128,
        .mode = QCRYPTO_CIPHER_MODE_CBC,
        .key = "2b7e151628aed2a6abf7158809cf4f3c",
        .iv = "000102030405060708090a0b0c0d0e0f",
        .plaintext  =
            "6bc1bee22e409f96e93d7e117393172a"
            "ae2d8a571e03ac9c9eb76fac45af8e51"
            "30c81c46a35ce411e5fbc1191a0a52ef"
            "f69f2445df4f9b17ad2b417be66c3710",
        .ciphertext =
            "7649abac8119b246cee98e9b12e9197d"
            "5086cb9b507219ee95db113a917678b2"
            "73bed6b8e3c1743b7116e69e22229516"
            "3ff1caa1681fac09120eca307586e1a7",
    },
    {
        /* NIST F.2.3 CBC-AES128.Encrypt */
        .path = "/crypto/cipher/aes-cbc-192",
        .alg = QCRYPTO_CIPHER_ALG_AES_192,
        .mode = QCRYPTO_CIPHER_MODE_CBC,
        .key = "8e73b0f7da0e6452c810f32b809079e562f8ead2522c6b7b",
        .iv = "000102030405060708090a0b0c0d0e0f",
        .plaintext  =
            "6bc1bee22e409f96e93d7e117393172a"
            "ae2d8a571e03ac9c9eb76fac45af8e51"
            "30c81c46a35ce411e5fbc1191a0a52ef"
            "f69f2445df4f9b17ad2b417be66c3710",
        .ciphertext =
            "4f021db243bc633d7178183a9fa071e8"
            "b4d9ada9ad7dedf4e5e738763f69145a"
            "571b242012fb7ae07fa9baac3df102e0"
            "08b0e27988598881d920a9e64f5615cd",
    },
    {
        /* NIST F.2.5 CBC-AES128.Encrypt */
        .path = "/crypto/cipher/aes-cbc-256",
        .alg = QCRYPTO_CIPHER_ALG_AES_256,
        .mode = QCRYPTO_CIPHER_MODE_CBC,
        .key =
            "603deb1015ca71be2b73aef0857d7781"
            "1f352c073b6108d72d9810a30914dff4",
        .iv = "000102030405060708090a0b0c0d0e0f",
        .plaintext  =
            "6bc1bee22e409f96e93d7e117393172a"
            "ae2d8a571e03ac9c9eb76fac45af8e51"
            "30c81c46a35ce411e5fbc1191a0a52ef"
            "f69f2445df4f9b17ad2b417be66c3710",
        .ciphertext =
            "f58c4c04d6e5f1ba779eabfb5f7bfbd6"
            "9cfc4e967edb808d679f777bc6702c7d"
            "39f23369a9d9bacfa530e26304231461"
            "b2eb05e2c39be9fcda6c19078c6a9d1b",
    },
    {
        .path = "/crypto/cipher/des-rfb-ecb-56",
        .alg = QCRYPTO_CIPHER_ALG_DES_RFB,
        .mode = QCRYPTO_CIPHER_MODE_ECB,
        .key = "0123456789abcdef",
        .plaintext =
            "6bc1bee22e409f96e93d7e117393172a"
            "ae2d8a571e03ac9c9eb76fac45af8e51"
            "30c81c46a35ce411e5fbc1191a0a52ef"
            "f69f2445df4f9b17ad2b417be66c3710",
        .ciphertext =
            "8f346aaf64eaf24040720d80648c52e7"
            "aefc616be53ab1a3d301e69d91e01838"
            "ffd29f1bb5596ad94ea2d8e6196b7f09"
            "30d8ed0bf2773af36dd82a6280c20926",
    },
};


static inline int unhex(char c)
{
    if (c >= 'a' && c <= 'f') {
        return 10 + (c - 'a');
    }
    if (c >= 'A' && c <= 'F') {
        return 10 + (c - 'A');
    }
    return c - '0';
}

static inline char hex(int i)
{
    if (i < 10) {
        return '0' + i;
    }
    return 'a' + (i - 10);
}

static size_t unhex_string(const char *hexstr,
                           uint8_t **data)
{
    size_t len;
    size_t i;

    if (!hexstr) {
        *data = NULL;
        return 0;
    }

    len = strlen(hexstr);
    *data = g_new0(uint8_t, len / 2);

    for (i = 0; i < len; i += 2) {
        (*data)[i/2] = (unhex(hexstr[i]) << 4) | unhex(hexstr[i+1]);
    }
    return len / 2;
}

static char *hex_string(const uint8_t *bytes,
                        size_t len)
{
    char *hexstr = g_new0(char, len * 2 + 1);
    size_t i;

    for (i = 0; i < len; i++) {
        hexstr[i*2] = hex((bytes[i] >> 4) & 0xf);
        hexstr[i*2+1] = hex(bytes[i] & 0xf);
    }
    hexstr[len*2] = '\0';

    return hexstr;
}

static void test_cipher(const void *opaque)
{
    const QCryptoCipherTestData *data = opaque;

    QCryptoCipher *cipher;
    uint8_t *key, *iv, *ciphertext, *plaintext, *outtext;
    size_t nkey, niv, nciphertext, nplaintext;
    char *outtexthex;

    nkey = unhex_string(data->key, &key);
    niv = unhex_string(data->iv, &iv);
    nciphertext = unhex_string(data->ciphertext, &ciphertext);
    nplaintext = unhex_string(data->plaintext, &plaintext);

    g_assert(nciphertext == nplaintext);

    outtext = g_new0(uint8_t, nciphertext);

    cipher = qcrypto_cipher_new(
        data->alg, data->mode,
        key, nkey,
        &error_abort);
    g_assert(cipher != NULL);


    if (iv) {
        g_assert(qcrypto_cipher_setiv(cipher,
                                      iv, niv,
                                      &error_abort) == 0);
    }
    g_assert(qcrypto_cipher_encrypt(cipher,
                                    plaintext,
                                    outtext,
                                    nplaintext,
                                    &error_abort) == 0);

    outtexthex = hex_string(outtext, nciphertext);

    g_assert_cmpstr(outtexthex, ==, data->ciphertext);

    g_free(outtexthex);

    if (iv) {
        g_assert(qcrypto_cipher_setiv(cipher,
                                      iv, niv,
                                      &error_abort) == 0);
    }
    g_assert(qcrypto_cipher_decrypt(cipher,
                                    ciphertext,
                                    outtext,
                                    nplaintext,
                                    &error_abort) == 0);

    outtexthex = hex_string(outtext, nplaintext);

    g_assert_cmpstr(outtexthex, ==, data->plaintext);

    g_free(outtext);
    g_free(outtexthex);
    g_free(key);
    g_free(iv);
    g_free(ciphertext);
    g_free(plaintext);
    qcrypto_cipher_free(cipher);
}


static void test_cipher_null_iv(void)
{
    QCryptoCipher *cipher;
    uint8_t key[32] = { 0 };
    uint8_t plaintext[32] = { 0 };
    uint8_t ciphertext[32] = { 0 };

    cipher = qcrypto_cipher_new(
        QCRYPTO_CIPHER_ALG_AES_256,
        QCRYPTO_CIPHER_MODE_CBC,
        key, sizeof(key),
        &error_abort);
    g_assert(cipher != NULL);

    /* Don't call qcrypto_cipher_setiv */

    qcrypto_cipher_encrypt(cipher,
                           plaintext,
                           ciphertext,
                           sizeof(plaintext),
                           &error_abort);

    qcrypto_cipher_free(cipher);
}

static void test_cipher_short_plaintext(void)
{
    Error *err = NULL;
    QCryptoCipher *cipher;
    uint8_t key[32] = { 0 };
    uint8_t plaintext1[20] = { 0 };
    uint8_t ciphertext1[20] = { 0 };
    uint8_t plaintext2[40] = { 0 };
    uint8_t ciphertext2[40] = { 0 };
    int ret;

    cipher = qcrypto_cipher_new(
        QCRYPTO_CIPHER_ALG_AES_256,
        QCRYPTO_CIPHER_MODE_CBC,
        key, sizeof(key),
        &error_abort);
    g_assert(cipher != NULL);

    /* Should report an error as plaintext is shorter
     * than block size
     */
    ret = qcrypto_cipher_encrypt(cipher,
                                 plaintext1,
                                 ciphertext1,
                                 sizeof(plaintext1),
                                 &err);
    g_assert(ret == -1);
    g_assert(err != NULL);

    error_free(err);
    err = NULL;

    /* Should report an error as plaintext is larger than
     * block size, but not a multiple of block size
     */
    ret = qcrypto_cipher_encrypt(cipher,
                                 plaintext2,
                                 ciphertext2,
                                 sizeof(plaintext2),
                                 &err);
    g_assert(ret == -1);
    g_assert(err != NULL);

    error_free(err);
    qcrypto_cipher_free(cipher);
}

int main(int argc, char **argv)
{
    size_t i;

    g_test_init(&argc, &argv, NULL);

    g_assert(qcrypto_init(NULL) == 0);

    for (i = 0; i < G_N_ELEMENTS(test_data); i++) {
        g_test_add_data_func(test_data[i].path, &test_data[i], test_cipher);
    }

    g_test_add_func("/crypto/cipher/null-iv",
                    test_cipher_null_iv);

    g_test_add_func("/crypto/cipher/short-plaintext",
                    test_cipher_short_plaintext);

    return g_test_run();
}
Commit	Line	Data
ca38a4cc DB	1	/*
	2	* QEMU Crypto cipher algorithms
	3	*
	4	* Copyright (c) 2015 Red Hat, Inc.
	5	*
	6	* This library is free software; you can redistribute it and/or
	7	* modify it under the terms of the GNU Lesser General Public
	8	* License as published by the Free Software Foundation; either
	9	* version 2 of the License, or (at your option) any later version.
	10	*
	11	* This library is distributed in the hope that it will be useful,
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	14	* Lesser General Public License for more details.
	15	*
	16	* You should have received a copy of the GNU Lesser General Public
	17	* License along with this library; if not, see <http://www.gnu.org/licenses/>.
	18	*
	19	*/
	20
	21	#include <glib.h>
	22
	23	#include "crypto/init.h"
	24	#include "crypto/cipher.h"
	25
	26	typedef struct QCryptoCipherTestData QCryptoCipherTestData;
	27	struct QCryptoCipherTestData {
	28	const char *path;
	29	QCryptoCipherAlgorithm alg;
	30	QCryptoCipherMode mode;
	31	const char *key;
	32	const char *plaintext;
	33	const char *ciphertext;
	34	const char *iv;
	35	};
	36
	37	/* AES test data comes from appendix F of:
	38	*
	39	* http://csrc.nist.gov/publications/nistpubs/800-38a/sp800-38a.pdf
	40	*/
	41	static QCryptoCipherTestData test_data[] = {
	42	{
	43	/* NIST F.1.1 ECB-AES128.Encrypt */
	44	.path = "/crypto/cipher/aes-ecb-128",
	45	.alg = QCRYPTO_CIPHER_ALG_AES_128,
	46	.mode = QCRYPTO_CIPHER_MODE_ECB,
	47	.key = "2b7e151628aed2a6abf7158809cf4f3c",
	48	.plaintext =
	49	"6bc1bee22e409f96e93d7e117393172a"
	50	"ae2d8a571e03ac9c9eb76fac45af8e51"
	51	"30c81c46a35ce411e5fbc1191a0a52ef"
	52	"f69f2445df4f9b17ad2b417be66c3710",
	53	.ciphertext =
	54	"3ad77bb40d7a3660a89ecaf32466ef97"
	55	"f5d3d58503b9699de785895a96fdbaaf"
	56	"43b1cd7f598ece23881b00e3ed030688"
	57	"7b0c785e27e8ad3f8223207104725dd4"
	58	},
	59	{
	60	/* NIST F.1.3 ECB-AES192.Encrypt */
	61	.path = "/crypto/cipher/aes-ecb-192",
	62	.alg = QCRYPTO_CIPHER_ALG_AES_192,
	63	.mode = QCRYPTO_CIPHER_MODE_ECB,
	64	.key = "8e73b0f7da0e6452c810f32b809079e562f8ead2522c6b7b",
65	.plaintext =
66	"6bc1bee22e409f96e93d7e117393172a"
67	"ae2d8a571e03ac9c9eb76fac45af8e51"
68	"30c81c46a35ce411e5fbc1191a0a52ef"
69	"f69f2445df4f9b17ad2b417be66c3710",
70	.ciphertext =
71	"bd334f1d6e45f25ff712a214571fa5cc"
72	"974104846d0ad3ad7734ecb3ecee4eef"
73	"ef7afd2270e2e60adce0ba2face6444e"
74	"9a4b41ba738d6c72fb16691603c18e0e"
75	},
76	{
77	/* NIST F.1.5 ECB-AES256.Encrypt */
78	.path = "/crypto/cipher/aes-ecb-256",
79	.alg = QCRYPTO_CIPHER_ALG_AES_256,
80	.mode = QCRYPTO_CIPHER_MODE_ECB,
81	.key =
82	"603deb1015ca71be2b73aef0857d7781"
83	"1f352c073b6108d72d9810a30914dff4",
84	.plaintext =
85	"6bc1bee22e409f96e93d7e117393172a"
86	"ae2d8a571e03ac9c9eb76fac45af8e51"
87	"30c81c46a35ce411e5fbc1191a0a52ef"
88	"f69f2445df4f9b17ad2b417be66c3710",
89	.ciphertext =
90	"f3eed1bdb5d2a03c064b5a7e3db181f8"
91	"591ccb10d410ed26dc5ba74a31362870"
92	"b6ed21b99ca6f4f9f153e7b1beafed1d"
93	"23304b7a39f9f3ff067d8d8f9e24ecc7",
94	},
95	{
96	/* NIST F.2.1 CBC-AES128.Encrypt */
97	.path = "/crypto/cipher/aes-cbc-128",
98	.alg = QCRYPTO_CIPHER_ALG_AES_128,
99	.mode = QCRYPTO_CIPHER_MODE_CBC,
100	.key = "2b7e151628aed2a6abf7158809cf4f3c",
101	.iv = "000102030405060708090a0b0c0d0e0f",
102	.plaintext =
103	"6bc1bee22e409f96e93d7e117393172a"
104	"ae2d8a571e03ac9c9eb76fac45af8e51"
105	"30c81c46a35ce411e5fbc1191a0a52ef"
106	"f69f2445df4f9b17ad2b417be66c3710",
107	.ciphertext =
108	"7649abac8119b246cee98e9b12e9197d"
109	"5086cb9b507219ee95db113a917678b2"
110	"73bed6b8e3c1743b7116e69e22229516"
111	"3ff1caa1681fac09120eca307586e1a7",
112	},
113	{
114	/* NIST F.2.3 CBC-AES128.Encrypt */
115	.path = "/crypto/cipher/aes-cbc-192",
116	.alg = QCRYPTO_CIPHER_ALG_AES_192,
117	.mode = QCRYPTO_CIPHER_MODE_CBC,
118	.key = "8e73b0f7da0e6452c810f32b809079e562f8ead2522c6b7b",
119	.iv = "000102030405060708090a0b0c0d0e0f",
120	.plaintext =
121	"6bc1bee22e409f96e93d7e117393172a"
122	"ae2d8a571e03ac9c9eb76fac45af8e51"
123	"30c81c46a35ce411e5fbc1191a0a52ef"
124	"f69f2445df4f9b17ad2b417be66c3710",
125	.ciphertext =
126	"4f021db243bc633d7178183a9fa071e8"
127	"b4d9ada9ad7dedf4e5e738763f69145a"
128	"571b242012fb7ae07fa9baac3df102e0"
129	"08b0e27988598881d920a9e64f5615cd",
130	},
131	{
132	/* NIST F.2.5 CBC-AES128.Encrypt */
133	.path = "/crypto/cipher/aes-cbc-256",
134	.alg = QCRYPTO_CIPHER_ALG_AES_256,
135	.mode = QCRYPTO_CIPHER_MODE_CBC,
136	.key =
137	"603deb1015ca71be2b73aef0857d7781"
138	"1f352c073b6108d72d9810a30914dff4",
139	.iv = "000102030405060708090a0b0c0d0e0f",
140	.plaintext =
141	"6bc1bee22e409f96e93d7e117393172a"
142	"ae2d8a571e03ac9c9eb76fac45af8e51"
143	"30c81c46a35ce411e5fbc1191a0a52ef"
144	"f69f2445df4f9b17ad2b417be66c3710",
145	.ciphertext =
146	"f58c4c04d6e5f1ba779eabfb5f7bfbd6"
147	"9cfc4e967edb808d679f777bc6702c7d"
148	"39f23369a9d9bacfa530e26304231461"
149	"b2eb05e2c39be9fcda6c19078c6a9d1b",
150	},
151	{
152	.path = "/crypto/cipher/des-rfb-ecb-56",
153	.alg = QCRYPTO_CIPHER_ALG_DES_RFB,
154	.mode = QCRYPTO_CIPHER_MODE_ECB,
155	.key = "0123456789abcdef",
156	.plaintext =
157	"6bc1bee22e409f96e93d7e117393172a"
158	"ae2d8a571e03ac9c9eb76fac45af8e51"
159	"30c81c46a35ce411e5fbc1191a0a52ef"
160	"f69f2445df4f9b17ad2b417be66c3710",
161	.ciphertext =
162	"8f346aaf64eaf24040720d80648c52e7"
163	"aefc616be53ab1a3d301e69d91e01838"
164	"ffd29f1bb5596ad94ea2d8e6196b7f09"
165	"30d8ed0bf2773af36dd82a6280c20926",
166	},
167	};
168
169
170	static inline int unhex(char c)
171	{
172	if (c >= 'a' && c <= 'f') {
173	return 10 + (c - 'a');
174	}
175	if (c >= 'A' && c <= 'F') {
176	return 10 + (c - 'A');
177	}
178	return c - '0';
179	}
180
181	static inline char hex(int i)
182	{
183	if (i < 10) {
184	return '0' + i;
185	}
186	return 'a' + (i - 10);
187	}
188
189	static size_t unhex_string(const char *hexstr,
190	uint8_t **data)
191	{
192	size_t len;
193	size_t i;
194
195	if (!hexstr) {
196	*data = NULL;
197	return 0;
198	}
199
200	len = strlen(hexstr);
201	*data = g_new0(uint8_t, len / 2);
202
203	for (i = 0; i < len; i += 2) {
204	(*data)[i/2] = (unhex(hexstr[i]) << 4) \| unhex(hexstr[i+1]);
205	}
206	return len / 2;
207	}
208
209	static char hex_string(const uint8_t bytes,
210	size_t len)
211	{
212	char hexstr = g_new0(char, len 2 + 1);
213	size_t i;
214
215	for (i = 0; i < len; i++) {
216	hexstr[i*2] = hex((bytes[i] >> 4) & 0xf);
217	hexstr[i*2+1] = hex(bytes[i] & 0xf);
218	}
219	hexstr[len*2] = '\0';
220
221	return hexstr;
222	}
223
224	static void test_cipher(const void *opaque)
225	{
226	const QCryptoCipherTestData *data = opaque;
227
228	QCryptoCipher *cipher;
ca38a4cc DB	229	uint8_t key, iv, ciphertext, plaintext, *outtext;
	230	size_t nkey, niv, nciphertext, nplaintext;
	231	char *outtexthex;
	232
ca38a4cc DB	233	nkey = unhex_string(data->key, &key);
	234	niv = unhex_string(data->iv, &iv);
	235	nciphertext = unhex_string(data->ciphertext, &ciphertext);
	236	nplaintext = unhex_string(data->plaintext, &plaintext);
	237
	238	g_assert(nciphertext == nplaintext);
	239
	240	outtext = g_new0(uint8_t, nciphertext);
	241
	242	cipher = qcrypto_cipher_new(
	243	data->alg, data->mode,
	244	key, nkey,
019c2ab8	245	&error_abort);
ca38a4cc	246	g_assert(cipher != NULL);
ca38a4cc DB	247
	248
	249	if (iv) {
	250	g_assert(qcrypto_cipher_setiv(cipher,
	251	iv, niv,
019c2ab8	252	&error_abort) == 0);
ca38a4cc DB	253	}
	254	g_assert(qcrypto_cipher_encrypt(cipher,
	255	plaintext,
	256	outtext,
	257	nplaintext,
019c2ab8	258	&error_abort) == 0);
ca38a4cc DB	259
	260	outtexthex = hex_string(outtext, nciphertext);
	261
	262	g_assert_cmpstr(outtexthex, ==, data->ciphertext);
	263
019c2ab8 DB	264	g_free(outtexthex);
	265
	266	if (iv) {
	267	g_assert(qcrypto_cipher_setiv(cipher,
	268	iv, niv,
	269	&error_abort) == 0);
	270	}
	271	g_assert(qcrypto_cipher_decrypt(cipher,
	272	ciphertext,
	273	outtext,
	274	nplaintext,
	275	&error_abort) == 0);
	276
	277	outtexthex = hex_string(outtext, nplaintext);
	278
	279	g_assert_cmpstr(outtexthex, ==, data->plaintext);
	280
ca38a4cc DB	281	g_free(outtext);
	282	g_free(outtexthex);
	283	g_free(key);
	284	g_free(iv);
	285	g_free(ciphertext);
	286	g_free(plaintext);
	287	qcrypto_cipher_free(cipher);
	288	}
	289
eb2a770b DB	290
	291	static void test_cipher_null_iv(void)
	292	{
	293	QCryptoCipher *cipher;
	294	uint8_t key[32] = { 0 };
	295	uint8_t plaintext[32] = { 0 };
	296	uint8_t ciphertext[32] = { 0 };
	297
	298	cipher = qcrypto_cipher_new(
	299	QCRYPTO_CIPHER_ALG_AES_256,
	300	QCRYPTO_CIPHER_MODE_CBC,
	301	key, sizeof(key),
	302	&error_abort);
	303	g_assert(cipher != NULL);
	304
	305	/* Don't call qcrypto_cipher_setiv */
	306
	307	qcrypto_cipher_encrypt(cipher,
	308	plaintext,
	309	ciphertext,
	310	sizeof(plaintext),
	311	&error_abort);
	312
	313	qcrypto_cipher_free(cipher);
	314	}
	315
3a661f1e DB	316	static void test_cipher_short_plaintext(void)
	317	{
	318	Error *err = NULL;
	319	QCryptoCipher *cipher;
	320	uint8_t key[32] = { 0 };
	321	uint8_t plaintext1[20] = { 0 };
	322	uint8_t ciphertext1[20] = { 0 };
	323	uint8_t plaintext2[40] = { 0 };
	324	uint8_t ciphertext2[40] = { 0 };
	325	int ret;
	326
	327	cipher = qcrypto_cipher_new(
	328	QCRYPTO_CIPHER_ALG_AES_256,
	329	QCRYPTO_CIPHER_MODE_CBC,
	330	key, sizeof(key),
	331	&error_abort);
	332	g_assert(cipher != NULL);
	333
	334	/* Should report an error as plaintext is shorter
	335	* than block size
	336	*/
	337	ret = qcrypto_cipher_encrypt(cipher,
	338	plaintext1,
	339	ciphertext1,
	340	sizeof(plaintext1),
	341	&err);
	342	g_assert(ret == -1);
	343	g_assert(err != NULL);
	344
	345	error_free(err);
	346	err = NULL;
	347
	348	/* Should report an error as plaintext is larger than
	349	* block size, but not a multiple of block size
	350	*/
	351	ret = qcrypto_cipher_encrypt(cipher,
	352	plaintext2,
	353	ciphertext2,
	354	sizeof(plaintext2),
	355	&err);
	356	g_assert(ret == -1);
	357	g_assert(err != NULL);
	358
	359	error_free(err);
	360	qcrypto_cipher_free(cipher);
	361	}
	362
ca38a4cc DB	363	int main(int argc, char **argv)
	364	{
	365	size_t i;
	366
	367	g_test_init(&argc, &argv, NULL);
	368
	369	g_assert(qcrypto_init(NULL) == 0);
	370
	371	for (i = 0; i < G_N_ELEMENTS(test_data); i++) {
	372	g_test_add_data_func(test_data[i].path, &test_data[i], test_cipher);
	373	}
eb2a770b DB	374
	375	g_test_add_func("/crypto/cipher/null-iv",
	376	test_cipher_null_iv);
	377
3a661f1e DB	378	g_test_add_func("/crypto/cipher/short-plaintext",
	379	test_cipher_short_plaintext);
	380
ca38a4cc DB	381	return g_test_run();
ca38a4cc DB	382	}