00001
00002
00003
#include "pch.h"
00004
#include "fips140.h"
00005
#include "sha.h"
00006
#include "files.h"
00007
#include "hex.h"
00008
#include "rsa.h"
00009
#include "dsa.h"
00010
#include "mqueue.h"
00011
#include "channels.h"
00012
#include "osrng.h"
00013
#include "des.h"
00014
#include "eccrypto.h"
00015
#include "ec2n.h"
00016
#include "ecp.h"
00017
#include "modes.h"
00018
#include "aes.h"
00019
#include "skipjack.h"
00020
#include "trdlocal.h"
00021
00022 NAMESPACE_BEGIN(CryptoPP)
00023
00024 extern PowerUpSelfTestStatus g_powerUpSelfTestStatus;
00025
00026
void KnownAnswerTest(
RandomNumberGenerator &rng, const
char *output)
00027 {
00028
EqualityComparisonFilter comparison;
00029
00030
RandomNumberStore(rng, strlen(output)/2).TransferAllTo(comparison,
"0");
00031
StringSource(output,
true,
new HexDecoder(
new ChannelSwitch(comparison,
"1")));
00032
00033 comparison.
ChannelMessageSeriesEnd(
"0");
00034 comparison.
ChannelMessageSeriesEnd(
"1");
00035 }
00036
00037
template <
class CIPHER>
00038
void X917RNG_KnownAnswerTest(
00039
const char *key,
00040
const char *seed,
00041
const char *output,
00042
unsigned int deterministicTimeVector,
00043 CIPHER *dummy = NULL)
00044 {
00045 std::string decodedKey, decodedSeed;
00046
StringSource(key,
true,
new HexDecoder(
new StringSink(decodedKey)));
00047
StringSource(seed,
true,
new HexDecoder(
new StringSink(decodedSeed)));
00048
00049
AutoSeededX917RNG<CIPHER> rng;
00050 rng.
Reseed((
const byte *)decodedKey.data(), decodedKey.size(), (
const byte *)decodedSeed.data(), deterministicTimeVector);
00051 KnownAnswerTest(rng, output);
00052 }
00053
00054
void KnownAnswerTest(
StreamTransformation &encryption,
StreamTransformation &decryption,
const char *plaintext,
const char *ciphertext)
00055 {
00056
EqualityComparisonFilter comparison;
00057
00058
StringSource(plaintext,
true,
new HexDecoder(
new StreamTransformationFilter(encryption,
new ChannelSwitch(comparison,
"0"), StreamTransformationFilter::NO_PADDING)));
00059
StringSource(ciphertext,
true,
new HexDecoder(
new ChannelSwitch(comparison,
"1")));
00060
00061
StringSource(ciphertext,
true,
new HexDecoder(
new StreamTransformationFilter(decryption,
new ChannelSwitch(comparison,
"0"), StreamTransformationFilter::NO_PADDING)));
00062
StringSource(plaintext,
true,
new HexDecoder(
new ChannelSwitch(comparison,
"1")));
00063
00064 comparison.
ChannelMessageSeriesEnd(
"0");
00065 comparison.
ChannelMessageSeriesEnd(
"1");
00066 }
00067
00068
template <
class CIPHER>
00069
void SymmetricEncryptionKnownAnswerTest(
00070
const char *key,
00071
const char *hexIV,
00072
const char *plaintext,
00073
const char *ecb,
00074
const char *cbc,
00075
const char *cfb,
00076
const char *ofb,
00077
const char *ctr,
00078 CIPHER *dummy = NULL)
00079 {
00080 std::string decodedKey;
00081
StringSource(key,
true,
new HexDecoder(
new StringSink(decodedKey)));
00082
00083
typename CIPHER::Encryption encryption((
const byte *)decodedKey.data(), decodedKey.size());
00084
typename CIPHER::Decryption decryption((
const byte *)decodedKey.data(), decodedKey.size());
00085
00086
SecByteBlock iv(encryption.BlockSize());
00087
StringSource(hexIV,
true,
new HexDecoder(
new ArraySink(iv, iv.size())));
00088
00089
if (ecb)
00090 KnownAnswerTest(
ECB_Mode_ExternalCipher::Encryption(encryption).Ref(),
ECB_Mode_ExternalCipher::Decryption(decryption).Ref(), plaintext, ecb);
00091
if (cbc)
00092 KnownAnswerTest(
CBC_Mode_ExternalCipher::Encryption(encryption, iv).Ref(),
CBC_Mode_ExternalCipher::Decryption(decryption, iv).Ref(), plaintext, cbc);
00093
if (cfb)
00094 KnownAnswerTest(
CFB_Mode_ExternalCipher::Encryption(encryption, iv).Ref(),
CFB_Mode_ExternalCipher::Decryption(encryption, iv).Ref(), plaintext, cfb);
00095
if (ofb)
00096 KnownAnswerTest(
OFB_Mode_ExternalCipher::Encryption(encryption, iv).Ref(),
OFB_Mode_ExternalCipher::Decryption(encryption, iv).Ref(), plaintext, ofb);
00097
if (ctr)
00098 KnownAnswerTest(
CTR_Mode_ExternalCipher::Encryption(encryption, iv).Ref(),
CTR_Mode_ExternalCipher::Decryption(encryption, iv).Ref(), plaintext, ctr);
00099 }
00100
00101
void KnownAnswerTest(
HashTransformation &hash,
const char *message,
const char *digest)
00102 {
00103
EqualityComparisonFilter comparison;
00104
StringSource(message,
true,
new HashFilter(hash,
new ChannelSwitch(comparison,
"0")));
00105
StringSource(digest,
true,
new HexDecoder(
new ChannelSwitch(comparison,
"1")));
00106
00107 comparison.
ChannelMessageSeriesEnd(
"0");
00108 comparison.
ChannelMessageSeriesEnd(
"1");
00109 }
00110
00111
template <
class HASH>
00112
void SecureHashKnownAnswerTest(
const char *message,
const char *digest)
00113 {
00114 HASH hash;
00115 KnownAnswerTest(hash, message, digest);
00116 }
00117
00118
template <
class MAC>
00119
void MAC_KnownAnswerTest(
const char *key,
const char *message,
const char *digest)
00120 {
00121 std::string decodedKey;
00122
StringSource(key,
true,
new HexDecoder(
new StringSink(decodedKey)));
00123
00124 MAC mac((
const byte *)decodedKey.data(), decodedKey.size());
00125 KnownAnswerTest(mac, message, digest);
00126 }
00127
00128
template <
class SCHEME>
00129
void SignatureKnownAnswerTest(
const char *key,
const char *message,
const char *signature, SCHEME *dummy = NULL)
00130 {
00131
typename SCHEME::Signer signer(
StringSource(key,
true,
new HexDecoder).Ref());
00132
typename SCHEME::Verifier verifier(signer);
00133
00134
EqualityComparisonFilter comparison;
00135
00136
StringSource(message,
true,
new SignerFilter(NullRNG(), signer,
new ChannelSwitch(comparison,
"0")));
00137
StringSource(signature,
true,
new HexDecoder(
new ChannelSwitch(comparison,
"1")));
00138
00139 comparison.
ChannelMessageSeriesEnd(
"0");
00140 comparison.
ChannelMessageSeriesEnd(
"1");
00141
00142
VerifierFilter verifierFilter(verifier, NULL, VerifierFilter::SIGNATURE_AT_BEGIN | VerifierFilter::THROW_EXCEPTION);
00143
StringSource(signature,
true,
new HexDecoder(
new Redirector(verifierFilter,
false)));
00144
StringSource(message,
true,
new Redirector(verifierFilter));
00145 }
00146
00147
void EncryptionPairwiseConsistencyTest(
const PK_Encryptor &encryptor,
const PK_Decryptor &decryptor)
00148 {
00149
try
00150 {
00151
#ifdef OS_RNG_AVAILABLE
00152
AutoSeededX917RNG<DES_EDE3> rng;
00153
#else
00154
RandomNumberGenerator &rng = NullRNG();
00155
#endif
00156
const char *testMessage =
"test message";
00157
00158
EqualityComparisonFilter comparison;
00159 comparison.ChannelPutMessageEnd(
"0", (
const byte *)testMessage, strlen(testMessage));
00160
00161
StringSource(
00162 testMessage,
00163
true,
00164
new PK_EncryptorFilter(
00165 rng,
00166 encryptor,
00167
new PK_DecryptorFilter(rng, decryptor,
new ChannelSwitch(comparison,
"1"))));
00168
00169 comparison.
ChannelMessageSeriesEnd(
"0");
00170 comparison.
ChannelMessageSeriesEnd(
"1");
00171 }
00172
catch (...)
00173 {
00174
throw SelfTestFailure(encryptor.
AlgorithmName() +
": pairwise consistency test failed");
00175 }
00176 }
00177
00178
void SignaturePairwiseConsistencyTest(
const PK_Signer &signer,
const PK_Verifier &verifier)
00179 {
00180
try
00181 {
00182
#ifdef OS_RNG_AVAILABLE
00183
AutoSeededX917RNG<DES_EDE3> rng;
00184
#else
00185
RandomNumberGenerator &rng = NullRNG();
00186
#endif
00187
00188
StringSource(
00189
"test message",
00190
true,
00191
new SignerFilter(
00192 rng,
00193 signer,
00194
new VerifierFilter(verifier, NULL, VerifierFilter::THROW_EXCEPTION),
00195
true));
00196 }
00197
catch (...)
00198 {
00199
throw SelfTestFailure(signer.
AlgorithmName() +
": pairwise consistency test failed");
00200 }
00201 }
00202
00203
template <
class SCHEME>
00204
void SignaturePairwiseConsistencyTest(
const char *key, SCHEME *dummy = NULL)
00205 {
00206
typename SCHEME::Signer signer(
StringSource(key,
true,
new HexDecoder).Ref());
00207
typename SCHEME::Verifier verifier(signer);
00208
00209 SignaturePairwiseConsistencyTest(signer, verifier);
00210 }
00211
00212
void DoPowerUpSelfTest(
const char *moduleFilename,
const byte *expectedModuleSha1Digest)
00213 {
00214 g_powerUpSelfTestStatus = POWER_UP_SELF_TEST_NOT_DONE;
00215 SetPowerUpSelfTestInProgressOnThisThread(
true);
00216
00217
try
00218 {
00219
if (FIPS_140_2_ComplianceEnabled() || moduleFilename != NULL)
00220 {
00221
00222
SHA1 sha;
00223
HashVerifier verifier(sha);
00224 verifier.
Put(expectedModuleSha1Digest, sha.DigestSize());
00225
FileStore(moduleFilename).TransferAllTo(verifier);
00226
if (!verifier.
GetLastResult())
00227 {
00228
#ifdef CRYPTOPP_WIN32_AVAILABLE
00229
std::string actualDigest;
00230
FileSource(moduleFilename,
true,
new HashFilter(sha,
new HexEncoder(
new StringSink(actualDigest))));
00231 OutputDebugString((
"Crypto++ EDC test failed. Actual digest is: " + actualDigest +
"\n").c_str());
00232
#endif
00233
throw 0;
00234 }
00235 }
00236
00237
00238
00239 X917RNG_KnownAnswerTest<DES_EDE3>(
00240
"48851090B4992453E83CDA86416534E53EA2FCE1A0B3A40C",
00241
"7D00BD0A79F6B0F5",
00242
"22B590B08B53363AEB89AD65F81A5B6FB83F326CE06BF35751E6C41B43B729C4",
00243 1489728269);
00244
00245 SymmetricEncryptionKnownAnswerTest<DES>(
00246
"0123456789abcdef",
00247
"1234567890abcdef",
00248
"4e6f77206973207468652074696d6520666f7220616c6c20",
00249
"3fa40e8a984d48156a271787ab8883f9893d51ec4b563b53",
00250
"E5C7CDDE872BF27C43E934008C389C0F683788499A7C05F6",
00251
"F3096249C7F46E51A69E839B1A92F78403467133898EA622",
00252
"f3096249c7f46e5135f24a242eeb3d3f3d6d5be3255af8c3",
00253
"F3096249C7F46E51163A8CA0FFC94C27FA2F80F480B86F75");
00254
00255 SymmetricEncryptionKnownAnswerTest<DES_EDE3>(
00256
"385D7189A5C3D485E1370AA5D408082B5CCCCB5E19F2D90E",
00257
"C141B5FCCD28DC8A",
00258
"6E1BD7C6120947A464A6AAB293A0F89A563D8D40D3461B68",
00259
"64EAAD4ACBB9CEAD6C7615E7C7E4792FE587D91F20C7D2F4",
00260
"6235A461AFD312973E3B4F7AA7D23E34E03371F8E8C376C9",
00261
"E26BA806A59B0330DE40CA38E77A3E494BE2B212F6DD624B",
00262
"E26BA806A59B03307DE2BCC25A08BA40A8BA335F5D604C62",
00263
"E26BA806A59B03303C62C2EFF32D3ACDD5D5F35EBCC53371");
00264
00265 SymmetricEncryptionKnownAnswerTest<SKIPJACK>(
00266
"1555E5531C3A169B2D65",
00267
"6EC9795701F49864",
00268
"00AFA48E9621E52E8CBDA312660184EDDB1F33D9DACDA8DA",
00269
"DBEC73562EFCAEB56204EB8AE9557EBF77473FBB52D17CD1",
00270
"0C7B0B74E21F99B8F2C8DF37879F6C044967F42A796DCA8B",
00271
"79FDDA9724E36CC2E023E9A5C717A8A8A7FDA465CADCBF63",
00272
"79FDDA9724E36CC26CACBD83C1ABC06EAF5B249BE5B1E040",
00273
"79FDDA9724E36CC211B0AEC607B95A96BCDA318440B82F49");
00274
00275 SymmetricEncryptionKnownAnswerTest<AES>(
00276
"2b7e151628aed2a6abf7158809cf4f3c",
00277
"000102030405060708090a0b0c0d0e0f",
00278
"6bc1bee22e409f96e93d7e117393172aae2d8a571e03ac9c9eb76fac45af8e5130c81c46a35ce411e5fbc1191a0a52eff69f2445df4f9b17ad2b417be66c3710",
00279
"3ad77bb40d7a3660a89ecaf32466ef97f5d3d58503b9699de785895a96fdbaaf43b1cd7f598ece23881b00e3ed0306887b0c785e27e8ad3f8223207104725dd4",
00280
"7649abac8119b246cee98e9b12e9197d5086cb9b507219ee95db113a917678b273bed6b8e3c1743b7116e69e222295163ff1caa1681fac09120eca307586e1a7",
00281
"3b3fd92eb72dad20333449f8e83cfb4ac8a64537a0b3a93fcde3cdad9f1ce58b26751f67a3cbb140b1808cf187a4f4dfc04b05357c5d1c0eeac4c66f9ff7f2e6",
00282
"3b3fd92eb72dad20333449f8e83cfb4a7789508d16918f03f53c52dac54ed8259740051e9c5fecf64344f7a82260edcc304c6528f659c77866a510d9c1d6ae5e",
00283 NULL);
00284
00285 SymmetricEncryptionKnownAnswerTest<AES>(
00286
"2b7e151628aed2a6abf7158809cf4f3c",
00287
"f0f1f2f3f4f5f6f7f8f9fafbfcfdfeff",
00288
"6bc1bee22e409f96e93d7e117393172aae2d8a571e03ac9c9eb76fac45af8e5130c81c46a35ce411e5fbc1191a0a52eff69f2445df4f9b17ad2b417be66c3710",
00289 NULL,
00290 NULL,
00291 NULL,
00292 NULL,
00293
"874d6191b620e3261bef6864990db6ce9806f66b7970fdff8617187bb9fffdff5ae4df3edbd5d35e5b4f09020db03eab1e031dda2fbe03d1792170a0f3009cee");
00294
00295
00296 SecureHashKnownAnswerTest<SHA>(
00297
"abc",
00298
"A9993E364706816ABA3E25717850C26C9CD0D89D");
00299
00300 MAC_KnownAnswerTest<HMAC<SHA> >(
00301
"303132333435363738393a3b3c3d3e3f40414243",
00302
"Sample #2",
00303
"0922d3405faa3d194f82a45830737d5cc6c75d24");
00304
00305 SignatureKnownAnswerTest<RSASS<PKCS1v15, SHA> >(
00306
"30820150020100300d06092a864886f70d01010105000482013a3082013602010002400a66791dc6988168de7ab77419bb7fb0"
00307
"c001c62710270075142942e19a8d8c51d053b3e3782a1de5dc5af4ebe99468170114a1dfe67cdc9a9af55d655620bbab0203010001"
00308
"02400123c5b61ba36edb1d3679904199a89ea80c09b9122e1400c09adcf7784676d01d23356a7d44d6bd8bd50e94bfc723fa"
00309
"87d8862b75177691c11d757692df8881022033d48445c859e52340de704bcdda065fbb4058d740bd1d67d29e9c146c11cf61"
00310
"0220335e8408866b0fd38dc7002d3f972c67389a65d5d8306566d5c4f2a5aa52628b0220045ec90071525325d3d46db79695e9af"
00311
"acc4523964360e02b119baa366316241022015eb327360c7b60d12e5e2d16bdcd97981d17fba6b70db13b20b436e24eada590220"
00312
"2ca6366d72781dfa24d34a9a24cbc2ae927a9958af426563ff63fb11658a461d",
00313
"Everyone gets Friday off.",
00314
"0610761F95FFD1B8F29DA34212947EC2AA0E358866A722F03CC3C41487ADC604A48FF54F5C6BEDB9FB7BD59F82D6E55D8F3174BA361B2214B2D74E8825E04E81");
00315
00316 SignaturePairwiseConsistencyTest<DSA>(
00317
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
00318
00319 SignaturePairwiseConsistencyTest<ECDSA<EC2N, SHA> >(
00320
"302D020100301006072A8648CE3D020106052B8104000404163014020101040F0070337065E1E196980A9D00E37211");
00321
00322 SignaturePairwiseConsistencyTest<ECDSA<ECP, SHA> >(
00323
"3039020100301306072A8648CE3D020106082A8648CE3D030101041F301D02010104182BB8A13C8B867010BD9471D9E81FDB01ABD0538C64D6249A");
00324 }
00325
catch (...)
00326 {
00327 g_powerUpSelfTestStatus = POWER_UP_SELF_TEST_FAILED;
00328
goto done;
00329 }
00330
00331 g_powerUpSelfTestStatus = POWER_UP_SELF_TEST_PASSED;
00332
00333 done:
00334 SetPowerUpSelfTestInProgressOnThisThread(
false);
00335
return;
00336 }
00337
00338 NAMESPACE_END