mirrors/pico-hsm
1
0
Fork 0
mirror of https://github.com/polhenarejos/pico-hsm.git synced 2026-01-17 09:28:05 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
pico-hsm/tests/pico-hsm/test_051_chachapoly.py
Pol Henarejos 18bcf532e7
PicoHSM always returns bytes(). 
No need for casting.

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
2023-03-20 20:07:33 +01:00

126 lines
4.2 KiB
Python
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

"""
/*
* This file is part of the Pico HSM distribution (https://github.com/polhenarejos/pico-hsm).
* Copyright (c) 2022 Pol Henarejos.
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, version 3.
*
* This program is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
* General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
"""
import pytest
import os
from cryptography.hazmat.primitives.ciphers import aead
import cryptography.exceptions
from picohsm import APDUResponse, DOPrefixes, EncryptionMode, SWCodes
from picohsm.const import DEFAULT_DKEK_SHARES
from const import DEFAULT_DKEK
from binascii import hexlify
MESSAGE = b'a secret message'
AAD = b'this is a tag for AAD'
def test_prepare_chachapoly(device):
device.initialize(dkek_shares=DEFAULT_DKEK_SHARES)
resp = device.import_dkek(DEFAULT_DKEK)
resp = device.import_dkek(DEFAULT_DKEK)
def generate_key(device):
# ChaCha uses 32 bytes key
pkey = os.urandom(256 // 8)
keyid = device.import_key(pkey)
return pkey, keyid
def test_cipher_chachapoly_cipher(device):
iv = b'\x00'*12
pkey, keyid = generate_key(device)
ctd = device.chachapoly(keyid, EncryptionMode.ENCRYPT, data=MESSAGE, aad=AAD)
chacha = aead.ChaCha20Poly1305(pkey)
ctg = chacha.encrypt(iv, MESSAGE, AAD)
assert(ctd == ctg)
pld = device.chachapoly(keyid, EncryptionMode.DECRYPT, data=ctd, aad=AAD)
plg = chacha.decrypt(iv, ctg, AAD)
device.delete_file(DOPrefixes.KEY_PREFIX, keyid)
assert(pld == plg)
assert(pld == MESSAGE)
def test_cipher_chachapoly_random_iv(device):
pkey, keyid = generate_key(device)
iv = os.urandom(12)
ctd = device.chachapoly(keyid, EncryptionMode.ENCRYPT, data=MESSAGE, iv=iv, aad=AAD)
chacha = aead.ChaCha20Poly1305(pkey)
ctg = chacha.encrypt(iv, MESSAGE, AAD)
assert(ctd == ctg)
pld = device.chachapoly(keyid, EncryptionMode.DECRYPT, data=ctd, iv=iv, aad=AAD)
plg = chacha.decrypt(iv, ctg, AAD)
device.delete_file(DOPrefixes.KEY_PREFIX, keyid)
assert(pld == plg)
assert(pld == MESSAGE)
def test_cipher_chachapoly_no_aad(device):
pkey, keyid = generate_key(device)
iv = os.urandom(12)
ctd = device.chachapoly(keyid, EncryptionMode.ENCRYPT, data=MESSAGE, iv=iv)
chacha = aead.ChaCha20Poly1305(pkey)
ctg = chacha.encrypt(iv, MESSAGE, b'')
assert(ctd == ctg)
pld = device.chachapoly(keyid, EncryptionMode.DECRYPT, data=ctd, iv=iv)
plg = chacha.decrypt(iv, ctg, b'')
device.delete_file(DOPrefixes.KEY_PREFIX, keyid)
assert(pld == plg)
assert(pld == MESSAGE)
def test_cipher_chachapoly_bad_random_iv(device):
pkey, keyid = generate_key(device)
iv = os.urandom(12)
ctd = device.chachapoly(keyid, EncryptionMode.ENCRYPT, data=MESSAGE, iv=iv, aad=AAD)
chacha = aead.ChaCha20Poly1305(pkey)
ctg = chacha.encrypt(iv, MESSAGE, AAD)
assert(ctd == ctg)
iv = os.urandom(12)
with pytest.raises(APDUResponse) as e:
pld = device.chachapoly(keyid, EncryptionMode.DECRYPT, data=ctd, iv=iv, aad=AAD)
assert (e.value.sw == SWCodes.SW_WRONG_DATA)
with pytest.raises(cryptography.exceptions.InvalidTag):
plg = chacha.decrypt(iv, ctg, AAD)
device.delete_file(DOPrefixes.KEY_PREFIX, keyid)
def test_cipher_chachapoly_bad_aad(device):
pkey, keyid = generate_key(device)
iv = os.urandom(12)
ctd = device.chachapoly(keyid, EncryptionMode.ENCRYPT, data=MESSAGE, iv=iv, aad=AAD)
chacha = aead.ChaCha20Poly1305(pkey)
ctg = chacha.encrypt(iv, MESSAGE, AAD)
assert(ctd == ctg)
with pytest.raises(APDUResponse) as e:
pld = device.chachapoly(keyid, EncryptionMode.DECRYPT, data=ctd, iv=iv, aad=AAD + b'bad')
assert (e.value.sw == SWCodes.SW_WRONG_DATA)
with pytest.raises(cryptography.exceptions.InvalidTag):
plg = chacha.decrypt(iv, ctg, AAD + b'bad')
device.delete_file(DOPrefixes.KEY_PREFIX, keyid)
Reference in a new issue View git blame Copy permalink