crypto: testmgr - add genkey kpp test

The test considers a party that already has a private-public key pair and a party that provides a NULL key. The kernel will generate the private-public key pair for the latter, computes the shared secret on both ends and verifies if it's the same. The explicit private-public key pair was copied from the previous test vector. Signed-off-by: Tudor Ambarus <tudor.ambarus@microchip.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
author: Tudor-Dan Ambarus <tudor.ambarus@microchip.com> 2017-05-30 10:52:49 -0400
committer: Herbert Xu <herbert@gondor.apana.org.au> 2017-06-10 00:04:36 -0400
commit: 47d3fd390e899e0403da35733b75832eacfbbc3f (patch)
tree: 978c7091ffb0209330bb560fe5e5cf554ded03a9 /crypto/testmgr.c
parent: 6755fd269d5c100b0eca420db501ae58435efd6e (diff)
1 files changed, 65 insertions, 11 deletions
diff --git a/crypto/testmgr.c b/crypto/testmgr.c
index 6f5f3ed8376c..5f8e6838e5a8 100644
--- a/crypto/testmgr.c
+++ b/crypto/testmgr.c
@@ -1997,6 +1997,9 @@ static int do_test_kpp(struct crypto_kpp *tfm, const struct kpp_testvec *vec,
        struct kpp_request *req;
        void *input_buf = NULL;
        void *output_buf = NULL;
+        void *a_public = NULL;
+        void *a_ss = NULL;
+        void *shared_secret = NULL;
        struct tcrypt_result result;
        unsigned int out_len_max;
        int err = -ENOMEM;
@@ -2026,20 +2029,31 @@ static int do_test_kpp(struct crypto_kpp *tfm, const struct kpp_testvec *vec,
        kpp_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG,
                                 tcrypt_complete, &result);
-        /* Compute public key */
+        /* Compute party A's public key */
        err = wait_async_op(&result, crypto_kpp_generate_public_key(req));
        if (err) {
-                pr_err("alg: %s: generate public key test failed. err %d\n",
+                pr_err("alg: %s: Party A: generate public key test failed. err %d\n",
                       alg, err);
                goto free_output;
        }
-        /* Verify calculated public key */
-        if (memcmp(vec->expected_a_public, sg_virt(req->dst),
+        if (vec->genkey) {
-                   vec->expected_a_public_size)) {
+                /* Save party A's public key */
-                pr_err("alg: %s: generate public key test failed. Invalid output\n",
+                a_public = kzalloc(out_len_max, GFP_KERNEL);
-                       alg);
+                if (!a_public) {
-                err = -EINVAL;
+                        err = -ENOMEM;
-                goto free_output;
+                        goto free_output;
+                }
+                memcpy(a_public, sg_virt(req->dst), out_len_max);
+        } else {
+                /* Verify calculated public key */
+                if (memcmp(vec->expected_a_public, sg_virt(req->dst),
+                           vec->expected_a_public_size)) {
+                        pr_err("alg: %s: Party A: generate public key test failed. Invalid output\n",
+                               alg);
+                        err = -EINVAL;
+                        goto free_output;
+                }
        }
        /* Calculate shared secret key by using counter part (b) public key. */
@@ -2058,15 +2072,53 @@ static int do_test_kpp(struct crypto_kpp *tfm, const struct kpp_testvec *vec,
                                 tcrypt_complete, &result);
        err = wait_async_op(&result, crypto_kpp_compute_shared_secret(req));
        if (err) {
-                pr_err("alg: %s: compute shard secret test failed. err %d\n",
+                pr_err("alg: %s: Party A: compute shared secret test failed. err %d\n",
                       alg, err);
                goto free_all;
        }
+        if (vec->genkey) {
+                /* Save the shared secret obtained by party A */
+                a_ss = kzalloc(vec->expected_ss_size, GFP_KERNEL);
+                if (!a_ss) {
+                        err = -ENOMEM;
+                        goto free_all;
+                }
+                memcpy(a_ss, sg_virt(req->dst), vec->expected_ss_size);
+                /*
+                 * Calculate party B's shared secret by using party A's
+                 * public key.
+                 */
+                err = crypto_kpp_set_secret(tfm, vec->b_secret,
+                                            vec->b_secret_size);
+                if (err < 0)
+                        goto free_all;
+                sg_init_one(&src, a_public, vec->expected_a_public_size);
+                sg_init_one(&dst, output_buf, out_len_max);
+                kpp_request_set_input(req, &src, vec->expected_a_public_size);
+                kpp_request_set_output(req, &dst, out_len_max);
+                kpp_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG,
+                                         tcrypt_complete, &result);
+                err = wait_async_op(&result,
+                                    crypto_kpp_compute_shared_secret(req));
+                if (err) {
+                        pr_err("alg: %s: Party B: compute shared secret failed. err %d\n",
+                               alg, err);
+                        goto free_all;
+                }
+                shared_secret = a_ss;
+        } else {
+                shared_secret = (void *)vec->expected_ss;
+        }
        /*
         * verify shared secret from which the user will derive
         * secret key by executing whatever hash it has chosen
         */
-        if (memcmp(vec->expected_ss, sg_virt(req->dst),
+        if (memcmp(shared_secret, sg_virt(req->dst),
                   vec->expected_ss_size)) {
                pr_err("alg: %s: compute shared secret test failed. Invalid output\n",
                       alg);
@@ -2074,8 +2126,10 @@ static int do_test_kpp(struct crypto_kpp *tfm, const struct kpp_testvec *vec,
        }
 free_all:
+        kfree(a_ss);
        kfree(input_buf);
 free_output:
+        kfree(a_public);
        kfree(output_buf);
 free_req:
        kpp_request_free(req);
author	Tudor-Dan Ambarus <tudor.ambarus@microchip.com>	2017-05-30 10:52:49 -0400
committer	Herbert Xu <herbert@gondor.apana.org.au>	2017-06-10 00:04:36 -0400
commit	47d3fd390e899e0403da35733b75832eacfbbc3f (patch)
tree	978c7091ffb0209330bb560fe5e5cf554ded03a9 /crypto/testmgr.c
parent	6755fd269d5c100b0eca420db501ae58435efd6e (diff)

diff --git a/crypto/testmgr.c b/crypto/testmgr.c index 6f5f3ed8376c..5f8e6838e5a8 100644 --- a/crypto/testmgr.c +++ b/crypto/testmgr.c
@@ -1997,6 +1997,9 @@ static int do_test_kpp(struct crypto_kpp tfm, const struct kpp_testvec vec,
1997	struct kpp_request *req;	1997	struct kpp_request *req;
1998	void *input_buf = NULL;	1998	void *input_buf = NULL;
1999	void *output_buf = NULL;	1999	void *output_buf = NULL;
		2000	void *a_public = NULL;
		2001	void *a_ss = NULL;
		2002	void *shared_secret = NULL;
2000	struct tcrypt_result result;	2003	struct tcrypt_result result;
2001	unsigned int out_len_max;	2004	unsigned int out_len_max;
2002	int err = -ENOMEM;	2005	int err = -ENOMEM;
@@ -2026,20 +2029,31 @@ static int do_test_kpp(struct crypto_kpp tfm, const struct kpp_testvec vec,
2026	kpp_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG,	2029	kpp_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG,
2027	tcrypt_complete, &result);	2030	tcrypt_complete, &result);
2028		2031
2029	/* Compute public key */	2032	/* Compute party A's public key */
2030	err = wait_async_op(&result, crypto_kpp_generate_public_key(req));	2033	err = wait_async_op(&result, crypto_kpp_generate_public_key(req));
2031	if (err) {	2034	if (err) {
2032	pr_err("alg: %s: generate public key test failed. err %d\n",	2035	pr_err("alg: %s: Party A: generate public key test failed. err %d\n",
2033	alg, err);	2036	alg, err);
2034	goto free_output;	2037	goto free_output;
2035	}	2038	}
2036	/* Verify calculated public key */	2039
2037	if (memcmp(vec->expected_a_public, sg_virt(req->dst),	2040	if (vec->genkey) {
2038	vec->expected_a_public_size)) {	2041	/* Save party A's public key */
2039	pr_err("alg: %s: generate public key test failed. Invalid output\n",	2042	a_public = kzalloc(out_len_max, GFP_KERNEL);
2040	alg);	2043	if (!a_public) {
2041	err = -EINVAL;	2044	err = -ENOMEM;
2042	goto free_output;	2045	goto free_output;
		2046	}
		2047	memcpy(a_public, sg_virt(req->dst), out_len_max);
		2048	} else {
		2049	/* Verify calculated public key */
		2050	if (memcmp(vec->expected_a_public, sg_virt(req->dst),
		2051	vec->expected_a_public_size)) {
		2052	pr_err("alg: %s: Party A: generate public key test failed. Invalid output\n",
		2053	alg);
		2054	err = -EINVAL;
		2055	goto free_output;
		2056	}
2043	}	2057	}
2044		2058
2045	/* Calculate shared secret key by using counter part (b) public key. */	2059	/* Calculate shared secret key by using counter part (b) public key. */
@@ -2058,15 +2072,53 @@ static int do_test_kpp(struct crypto_kpp tfm, const struct kpp_testvec vec,
2058	tcrypt_complete, &result);	2072	tcrypt_complete, &result);
2059	err = wait_async_op(&result, crypto_kpp_compute_shared_secret(req));	2073	err = wait_async_op(&result, crypto_kpp_compute_shared_secret(req));
2060	if (err) {	2074	if (err) {
2061	pr_err("alg: %s: compute shard secret test failed. err %d\n",	2075	pr_err("alg: %s: Party A: compute shared secret test failed. err %d\n",
2062	alg, err);	2076	alg, err);
2063	goto free_all;	2077	goto free_all;
2064	}	2078	}
		2079
		2080	if (vec->genkey) {
		2081	/* Save the shared secret obtained by party A */
		2082	a_ss = kzalloc(vec->expected_ss_size, GFP_KERNEL);
		2083	if (!a_ss) {
		2084	err = -ENOMEM;
		2085	goto free_all;
		2086	}
		2087	memcpy(a_ss, sg_virt(req->dst), vec->expected_ss_size);
		2088
		2089	/*
		2090	* Calculate party B's shared secret by using party A's
		2091	* public key.
		2092	*/
		2093	err = crypto_kpp_set_secret(tfm, vec->b_secret,
		2094	vec->b_secret_size);
		2095	if (err < 0)
		2096	goto free_all;
		2097
		2098	sg_init_one(&src, a_public, vec->expected_a_public_size);
		2099	sg_init_one(&dst, output_buf, out_len_max);
		2100	kpp_request_set_input(req, &src, vec->expected_a_public_size);
		2101	kpp_request_set_output(req, &dst, out_len_max);
		2102	kpp_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG,
		2103	tcrypt_complete, &result);
		2104	err = wait_async_op(&result,
		2105	crypto_kpp_compute_shared_secret(req));
		2106	if (err) {
		2107	pr_err("alg: %s: Party B: compute shared secret failed. err %d\n",
		2108	alg, err);
		2109	goto free_all;
		2110	}
		2111
		2112	shared_secret = a_ss;
		2113	} else {
		2114	shared_secret = (void *)vec->expected_ss;
		2115	}
		2116
2065	/*	2117	/*
2066	* verify shared secret from which the user will derive	2118	* verify shared secret from which the user will derive
2067	* secret key by executing whatever hash it has chosen	2119	* secret key by executing whatever hash it has chosen
2068	*/	2120	*/
2069	if (memcmp(vec->expected_ss, sg_virt(req->dst),	2121	if (memcmp(shared_secret, sg_virt(req->dst),
2070	vec->expected_ss_size)) {	2122	vec->expected_ss_size)) {
2071	pr_err("alg: %s: compute shared secret test failed. Invalid output\n",	2123	pr_err("alg: %s: compute shared secret test failed. Invalid output\n",
2072	alg);	2124	alg);
@@ -2074,8 +2126,10 @@ static int do_test_kpp(struct crypto_kpp tfm, const struct kpp_testvec vec,
2074	}	2126	}
2075		2127
2076	free_all:	2128	free_all:
		2129	kfree(a_ss);
2077	kfree(input_buf);	2130	kfree(input_buf);
2078	free_output:	2131	free_output:
		2132	kfree(a_public);
2079	kfree(output_buf);	2133	kfree(output_buf);
2080	free_req:	2134	free_req:
2081	kpp_request_free(req);	2135	kpp_request_free(req);