1 // SPDX-License-Identifier: BSD-2-Clause
2 /* LibTomCrypt, modular cryptographic library -- Tom St Denis
3  *
4  * LibTomCrypt is a library that provides various cryptographic
5  * algorithms in a highly modular and flexible manner.
6  *
7  * The library is free for all purposes without any express
8  * guarantee it works.
9  */
10 #include "tomcrypt_private.h"
11 
12 /**
13   @file xcbc_test.c
14   XCBC Support, Test XCBC-MAC mode
15 */
16 
17 #ifdef LTC_XCBC
18 
19 /** Test XCBC-MAC mode
20   Return CRYPT_OK on succes
21 */
xcbc_test(void)22 int xcbc_test(void)
23 {
24 #ifdef LTC_NO_TEST
25    return CRYPT_NOP;
26 #else
27    static const struct {
28        int msglen;
29        unsigned char K[16], M[34], T[16];
30    } tests[] = {
31 {
32    0,
33    { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
34      0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f },
35 
36    { 0 },
37 
38    { 0x75, 0xf0, 0x25, 0x1d, 0x52, 0x8a, 0xc0, 0x1c,
39      0x45, 0x73, 0xdf, 0xd5, 0x84, 0xd7, 0x9f, 0x29 }
40 },
41 
42 {
43    3,
44    { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
45      0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f },
46 
47    { 0x00, 0x01, 0x02 },
48 
49    { 0x5b, 0x37, 0x65, 0x80, 0xae, 0x2f, 0x19, 0xaf,
50      0xe7, 0x21, 0x9c, 0xee, 0xf1, 0x72, 0x75, 0x6f }
51 },
52 
53 {
54    16,
55    { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
56      0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f },
57 
58    { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
59      0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f },
60 
61    { 0xd2, 0xa2, 0x46, 0xfa, 0x34, 0x9b, 0x68, 0xa7,
62      0x99, 0x98, 0xa4, 0x39, 0x4f, 0xf7, 0xa2, 0x63 }
63 },
64 
65 {
66    32,
67    { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
68      0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f },
69 
70    { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
71      0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
72      0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17,
73      0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f },
74 
75    { 0xf5, 0x4f, 0x0e, 0xc8, 0xd2, 0xb9, 0xf3, 0xd3,
76      0x68, 0x07, 0x73, 0x4b, 0xd5, 0x28, 0x3f, 0xd4 }
77 },
78 
79 {
80    34,
81    { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
82      0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f },
83 
84    { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
85      0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
86      0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17,
87      0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f,
88      0x20, 0x21 },
89 
90    { 0xbe, 0xcb, 0xb3, 0xbc, 0xcd, 0xb5, 0x18, 0xa3,
91      0x06, 0x77, 0xd5, 0x48, 0x1f, 0xb6, 0xb4, 0xd8 },
92 },
93 
94 
95 
96 };
97   unsigned char T[16];
98   unsigned long taglen;
99   int err, x, idx;
100 
101   /* AES can be under rijndael or aes... try to find it */
102   if ((idx = find_cipher("aes")) == -1) {
103      if ((idx = find_cipher("rijndael")) == -1) {
104         return CRYPT_NOP;
105      }
106   }
107 
108   for (x = 0; x < (int)(sizeof(tests)/sizeof(tests[0])); x++) {
109      taglen = 16;
110      if ((err = xcbc_memory(idx, tests[x].K, 16, tests[x].M, tests[x].msglen, T, &taglen)) != CRYPT_OK) {
111         return err;
112      }
113      if (compare_testvector(T, taglen, tests[x].T, 16, "XCBC", x)) {
114         return CRYPT_FAIL_TESTVECTOR;
115      }
116   }
117 
118   return CRYPT_OK;
119 #endif
120 }
121 
122 #endif
123 
124 /* ref:         $Format:%D$ */
125 /* git commit:  $Format:%H$ */
126 /* commit time: $Format:%ai$ */
127 
128