Home Explore Help
Sign In
cpp
/
ZeroTierOne
mirror of https://github.com/zerotier/ZeroTierOne
2
0
Fork 0
Files Issues 0 Wiki
Tree: 1.10.0
Branches Tags
ZeroTierOne
/
zeroidc
/
vendor
/
ring
/
tests
/
hkdf_tests.rs

hkdf_tests.rs 4.2 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129 
  1. // Copyright 2015 Brian Smith.
    2. 

  2. //
    3. 

  3. // Permission to use, copy, modify, and/or distribute this software for any
    4. 

  4. // purpose with or without fee is hereby granted, provided that the above
    5. 

  5. // copyright notice and this permission notice appear in all copies.
    6. 

  6. //
    7. 

  7. // THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHORS DISCLAIM ALL WARRANTIES
    8. 

  8. // WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
    9. 

  9. // MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY
    10. 

  10. // SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
    11. 

  11. // WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
    12. 

  12. // OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
    13. 

  13. // CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
    14. 

  14. 

  15. use ring::{digest, error, hkdf, test, test_file};
    16. 

  16. 

  17. #[cfg(target_arch = "wasm32")]
    18. 

  18. use wasm_bindgen_test::{wasm_bindgen_test, wasm_bindgen_test_configure};
    19. 

  19. 

  20. #[cfg(target_arch = "wasm32")]
    21. 

  21. wasm_bindgen_test_configure!(run_in_browser);
    22. 

  22. 

  23. #[test]
    24. 

  24. #[cfg_attr(target_arch = "wasm32", wasm_bindgen_test)]
    25. 

  25. fn hkdf_tests() {
    26. 

  26.     test::run(test_file!("hkdf_tests.txt"), |section, test_case| {
    27. 

  27.         assert_eq!(section, "");
    28. 

  28.         let alg = {
    29. 

  29.             let digest_alg = test_case
    30. 

  30.                 .consume_digest_alg("Hash")
    31. 

  31.                 .ok_or(error::Unspecified)?;
    32. 

  32.             if digest_alg == &digest::SHA256 {
    33. 

  33.                 hkdf::HKDF_SHA256
    34. 

  34.             } else {
    35. 

  35.                 // TODO: add test vectors for other algorithms
    36. 

  36.                 panic!("unsupported algorithm: {:?}", digest_alg);
    37. 

  37.             }
    38. 

  38.         };
    39. 

  39.         let secret = test_case.consume_bytes("IKM");
    40. 

  40.         let salt = test_case.consume_bytes("salt");
    41. 

  41.         let info = test_case.consume_bytes("info");
    42. 

  42.         let _ = test_case.consume_bytes("PRK");
    43. 

  43.         let expected_out = test_case.consume_bytes("OKM");
    44. 

  44. 

  45.         let salt = hkdf::Salt::new(alg, &salt);
    46. 

  46. 

  47.         // TODO: test multi-part info, especially with empty parts.
    48. 

  48.         let My(out) = salt
    49. 

  49.             .extract(&secret)
    50. 

  50.             .expand(&[&info], My(expected_out.len()))
    51. 

  51.             .unwrap()
    52. 

  52.             .into();
    53. 

  53.         assert_eq!(out, expected_out);
    54. 

  54. 

  55.         Ok(())
    56. 

  56.     });
    57. 

  57. }
    58. 

  58. 

  59. #[test]
    60. 

  60. #[cfg_attr(target_arch = "wasm32", wasm_bindgen_test)]
    61. 

  61. fn hkdf_output_len_tests() {
    62. 

  62.     for &alg in &[hkdf::HKDF_SHA256, hkdf::HKDF_SHA384, hkdf::HKDF_SHA512] {
    63. 

  63.         const MAX_BLOCKS: usize = 255;
    64. 

  64. 

  65.         let salt = hkdf::Salt::new(alg, &[]);
    66. 

  66.         let prk = salt.extract(&[]); // TODO: enforce minimum length.
    67. 

  67. 

  68.         {
    69. 

  69.             // Test zero length.
    70. 

  70.             let okm = prk.expand(&[b"info"], My(0)).unwrap();
    71. 

  71.             let result: My<Vec<u8>> = okm.into();
    72. 

  72.             assert_eq!(&result.0, &[]);
    73. 

  73.         }
    74. 

  74. 

  75.         let max_out_len = MAX_BLOCKS * alg.hmac_algorithm().digest_algorithm().output_len;
    76. 

  76. 

  77.         {
    78. 

  78.             // Test maximum length output succeeds.
    79. 

  79.             let okm = prk.expand(&[b"info"], My(max_out_len)).unwrap();
    80. 

  80.             let result: My<Vec<u8>> = okm.into();
    81. 

  81.             assert_eq!(result.0.len(), max_out_len);
    82. 

  82.         }
    83. 

  83. 

  84.         {
    85. 

  85.             // Test too-large output fails.
    86. 

  86.             assert!(prk.expand(&[b"info"], My(max_out_len + 1)).is_err());
    87. 

  87.         }
    88. 

  88. 

  89.         {
    90. 

  90.             // Test length mismatch (smaller).
    91. 

  91.             let okm = prk.expand(&[b"info"], My(2)).unwrap();
    92. 

  92.             let mut buf = [0u8; 1];
    93. 

  93.             assert_eq!(okm.fill(&mut buf), Err(error::Unspecified));
    94. 

  94.         }
    95. 

  95. 

  96.         {
    97. 

  97.             // Test length mismatch (larger).
    98. 

  98.             let okm = prk.expand(&[b"info"], My(2)).unwrap();
    99. 

  99.             let mut buf = [0u8; 3];
    100. 

  100.             assert_eq!(okm.fill(&mut buf), Err(error::Unspecified));
    101. 

  101.         }
    102. 

  102. 

  103.         {
    104. 

  104.             // Control for above two tests.
    105. 

  105.             let okm = prk.expand(&[b"info"], My(2)).unwrap();
    106. 

  106.             let mut buf = [0u8; 2];
    107. 

  107.             assert_eq!(okm.fill(&mut buf), Ok(()));
    108. 

  108.         }
    109. 

  109.     }
    110. 

  110. }
    111. 

  111. 

  112. /// Generic newtype wrapper that lets us implement traits for externally-defined
    113. 

  113. /// types.
    114. 

  114. #[derive(Debug, PartialEq)]
    115. 

  115. struct My<T: core::fmt::Debug + PartialEq>(T);
    116. 

  116. 

  117. impl hkdf::KeyType for My<usize> {
    118. 

  118.     fn len(&self) -> usize {
    119. 

  119.         self.0
    120. 

  120.     }
    121. 

  121. }
    122. 

  122. 

  123. impl From<hkdf::Okm<'_, My<usize>>> for My<Vec<u8>> {
    124. 

  124.     fn from(okm: hkdf::Okm<My<usize>>) -> Self {
    125. 

  125.         let mut r = vec![0u8; okm.len().0];
    126. 

  126.         okm.fill(&mut r).unwrap();
    127. 

  127.         My(r)
    128. 

  128.     }
    129. 

  129. }
    130.