1 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
2  * All rights reserved.
3  *
4  * This package is an SSL implementation written
5  * by Eric Young (eay@cryptsoft.com).
6  * The implementation was written so as to conform with Netscapes SSL.
7  *
8  * This library is free for commercial and non-commercial use as long as
9  * the following conditions are aheared to.  The following conditions
10  * apply to all code found in this distribution, be it the RC4, RSA,
11  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
12  * included with this distribution is covered by the same copyright terms
13  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
14  *
15  * Copyright remains Eric Young's, and as such any Copyright notices in
16  * the code are not to be removed.
17  * If this package is used in a product, Eric Young should be given attribution
18  * as the author of the parts of the library used.
19  * This can be in the form of a textual message at program startup or
20  * in documentation (online or textual) provided with the package.
21  *
22  * Redistribution and use in source and binary forms, with or without
23  * modification, are permitted provided that the following conditions
24  * are met:
25  * 1. Redistributions of source code must retain the copyright
26  *    notice, this list of conditions and the following disclaimer.
27  * 2. Redistributions in binary form must reproduce the above copyright
28  *    notice, this list of conditions and the following disclaimer in the
29  *    documentation and/or other materials provided with the distribution.
30  * 3. All advertising materials mentioning features or use of this software
31  *    must display the following acknowledgement:
32  *    "This product includes cryptographic software written by
33  *     Eric Young (eay@cryptsoft.com)"
34  *    The word 'cryptographic' can be left out if the rouines from the library
35  *    being used are not cryptographic related :-).
36  * 4. If you include any Windows specific code (or a derivative thereof) from
37  *    the apps directory (application code) you must include an acknowledgement:
38  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
39  *
40  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
41  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
42  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
43  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
44  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
45  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
46  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
48  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
49  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
50  * SUCH DAMAGE.
51  *
52  * The licence and distribution terms for any publically available version or
53  * derivative of this code cannot be changed.  i.e. this code cannot simply be
54  * copied and put under another distribution licence
55  * [including the GNU Public Licence.] */
56 
57 #include <stdio.h>
58 #include <string.h>
59 
60 #include <string>
61 #include <vector>
62 
63 #include <openssl/crypto.h>
64 #include <openssl/digest.h>
65 #include <openssl/hmac.h>
66 
67 #include "../test/file_test.h"
68 #include "../test/scoped_types.h"
69 #include "../test/stl_compat.h"
70 
71 
GetDigest(const std::string & name)72 static const EVP_MD *GetDigest(const std::string &name) {
73   if (name == "MD5") {
74     return EVP_md5();
75   } else if (name == "SHA1") {
76     return EVP_sha1();
77   } else if (name == "SHA224") {
78     return EVP_sha224();
79   } else if (name == "SHA256") {
80     return EVP_sha256();
81   } else if (name == "SHA384") {
82     return EVP_sha384();
83   } else if (name == "SHA512") {
84     return EVP_sha512();
85   }
86   return nullptr;
87 }
88 
TestHMAC(FileTest * t,void * arg)89 static bool TestHMAC(FileTest *t, void *arg) {
90   std::string digest_str;
91   if (!t->GetAttribute(&digest_str, "HMAC")) {
92     return false;
93   }
94   const EVP_MD *digest = GetDigest(digest_str);
95   if (digest == nullptr) {
96     t->PrintLine("Unknown digest '%s'", digest_str.c_str());
97     return false;
98   }
99 
100   std::vector<uint8_t> key, input, output;
101   if (!t->GetBytes(&key, "Key") ||
102       !t->GetBytes(&input, "Input") ||
103       !t->GetBytes(&output, "Output")) {
104     return false;
105   }
106 
107   // Test using the one-shot API.
108   uint8_t mac[EVP_MAX_MD_SIZE];
109   unsigned mac_len;
110   if (nullptr == HMAC(digest, bssl::vector_data(&key), key.size(),
111                       bssl::vector_data(&input), input.size(), mac,
112                       &mac_len) ||
113       !t->ExpectBytesEqual(bssl::vector_data(&output), output.size(), mac,
114                            mac_len)) {
115     t->PrintLine("One-shot API failed.");
116     return false;
117   }
118 
119   // Test using HMAC_CTX.
120   ScopedHMAC_CTX ctx;
121   if (!HMAC_Init_ex(ctx.get(), bssl::vector_data(&key), key.size(), digest,
122                     nullptr) ||
123       !HMAC_Update(ctx.get(), bssl::vector_data(&input), input.size()) ||
124       !HMAC_Final(ctx.get(), mac, &mac_len) ||
125       !t->ExpectBytesEqual(bssl::vector_data(&output), output.size(), mac,
126                            mac_len)) {
127     t->PrintLine("HMAC_CTX failed.");
128    return false;
129   }
130 
131   // Test that an HMAC_CTX may be reset with the same key.
132   if (!HMAC_Init_ex(ctx.get(), nullptr, 0, digest, nullptr) ||
133       !HMAC_Update(ctx.get(), bssl::vector_data(&input), input.size()) ||
134       !HMAC_Final(ctx.get(), mac, &mac_len) ||
135       !t->ExpectBytesEqual(bssl::vector_data(&output), output.size(), mac,
136                            mac_len)) {
137     t->PrintLine("HMAC_CTX with reset failed.");
138    return false;
139   }
140 
141   // Test feeding the input in byte by byte.
142   if (!HMAC_Init_ex(ctx.get(), nullptr, 0, nullptr, nullptr)) {
143    t->PrintLine("HMAC_CTX streaming failed.");
144    return false;
145   }
146   for (size_t i = 0; i < input.size(); i++) {
147     if (!HMAC_Update(ctx.get(), &input[i], 1)) {
148       t->PrintLine("HMAC_CTX streaming failed.");
149       return false;
150     }
151   }
152   if (!HMAC_Final(ctx.get(), mac, &mac_len) ||
153       !t->ExpectBytesEqual(bssl::vector_data(&output), output.size(), mac,
154                            mac_len)) {
155     t->PrintLine("HMAC_CTX streaming failed.");
156     return false;
157   }
158 
159   return true;
160 }
161 
main(int argc,char * argv[])162 int main(int argc, char *argv[]) {
163   CRYPTO_library_init();
164 
165   if (argc != 2) {
166     fprintf(stderr, "%s <test file.txt>\n", argv[0]);
167     return 1;
168   }
169 
170   return FileTestMain(TestHMAC, nullptr, argv[1]);
171 }
172