]> git.ipfire.org Git - thirdparty/openssl.git/blob - test/serdes_test.c
projects / thirdparty / openssl.git / blob
? search:


43d64155f5bd804527b2775be1a01fab4d4c3bbf
[thirdparty/openssl.git] / test / serdes_test.c
1 /*
2 * Copyright 2020 The OpenSSL Project Authors. All Rights Reserved.
3 *
4 * Licensed under the Apache License 2.0 (the "License"). You may not use
5 * this file except in compliance with the License. You can obtain a copy
6 * in the file LICENSE in the source distribution or at
7 * https://www.openssl.org/source/license.html
8 */
9
10 #include <string.h>
11 #include <openssl/evp.h>
12 #include <openssl/pem.h>
13 #include <openssl/rsa.h>
14 #include <openssl/x509.h>
15 #include <openssl/params.h>
16 #include <openssl/serializer.h>
17 #include <openssl/deserializer.h>
18
19 #include "internal/pem.h" /* For PVK and "blob" PEM headers */
20 #include "internal/cryptlib.h" /* ossl_assert */
21
22 #include "testutil.h"
23
24 /*
25 * TODO(3.0) Modify PEM_write_bio_PrivateKey_traditional() to handle
26 * provider side EVP_PKEYs (which don't necessarily have an ameth)
27 *
28 * In the mean time, we use separate "downgraded" EVP_PKEYs to test
29 * serializing/deserializing with "traditional" keys.
30 */
31
32 static EVP_PKEY *make_template(const char *type, OSSL_PARAM *genparams)
33 {
34 EVP_PKEY *pkey = NULL;
35 EVP_PKEY_CTX *ctx = EVP_PKEY_CTX_new_from_name(NULL, type, NULL);
36
37 /*
38 * No real need to check the errors other than for the cascade
39 * effect. |pkey| will simply remain NULL if something goes wrong.
40 */
41 (void)(ctx != NULL
42 && EVP_PKEY_paramgen_init(ctx) > 0
43 && (genparams == NULL
44 || EVP_PKEY_CTX_set_params(ctx, genparams) > 0)
45 && EVP_PKEY_gen(ctx, &pkey) > 0);
46 EVP_PKEY_CTX_free(ctx);
47
48 return pkey;
49 }
50
51 static EVP_PKEY *make_key(const char *type, EVP_PKEY *template,
52 OSSL_PARAM *genparams, int make_legacy)
53 {
54 EVP_PKEY *pkey = NULL;
55 EVP_PKEY_CTX *ctx =
56 template != NULL
57 ? EVP_PKEY_CTX_new(template, NULL)
58 : EVP_PKEY_CTX_new_from_name(NULL, type, NULL);
59
60 /*
61 * No real need to check the errors other than for the cascade
62 * effect. |pkey| will simply remain NULL if something goes wrong.
63 */
64 (void)(ctx != NULL
65 && EVP_PKEY_keygen_init(ctx) > 0
66 && (genparams == NULL
67 || EVP_PKEY_CTX_set_params(ctx, genparams) > 0)
68 && EVP_PKEY_keygen(ctx, &pkey) > 0);
69 EVP_PKEY_CTX_free(ctx);
70 if (make_legacy && EVP_PKEY_get0(pkey) == NULL) {
71 EVP_PKEY_free(pkey);
72 pkey = NULL;
73 }
74
75 return pkey;
76 }
77
78
79 /* Main test driver */
80
81 /*
82 * TODO(3.0) For better error output, changed the callbacks to take __FILE__
83 * and __LINE__ as first two arguments, and have them use the lower case
84 * functions, such as test_strn_eq(), rather than the uppercase macros
85 * (TEST_strn2_eq(), for example).
86 */
87
88 typedef int (serializer)(void **serialized, long *serialized_len,
89 void *object, const char *pass, const char *pcipher,
90 const char *ser_propq);
91 typedef int (deserializer)(void **object,
92 void *serialized, long serialized_len,
93 const char *pass);
94 typedef int (tester)(const void *data1, size_t data1_len,
95 const void *data2, size_t data2_len);
96 typedef int (checker)(const char *type, const void *data, size_t data_len);
97 typedef void (dumper)(const char *label, const void *data, size_t data_len);
98
99 static int test_serialize_deserialize(const char *type, EVP_PKEY *pkey,
100 const char *pass, const char *pcipher,
101 serializer *serialize_cb,
102 deserializer *deserialize_cb,
103 tester *test_cb,
104 checker *check_cb, dumper *dump_cb,
105 const char *ser_propq, int make_legacy)
106 {
107 void *serialized = NULL;
108 long serialized_len = 0;
109 EVP_PKEY *pkey2 = NULL;
110 void *serialized2 = NULL;
111 long serialized2_len = 0;
112 int ok = 0;
113
114 if (!serialize_cb(&serialized, &serialized_len, pkey,
115 pass, pcipher, ser_propq)
116 || !check_cb(type, serialized, serialized_len)
117 || !deserialize_cb((void **)&pkey2, serialized, serialized_len,
118 pass)
119 || !TEST_int_eq(EVP_PKEY_eq(pkey, pkey2), 1))
120 goto end;
121
122 /*
123 * TODO(3.0) Remove this when PEM_write_bio_PrivateKey_traditional()
124 * handles provider side keys.
125 */
126 if (make_legacy
127 && !TEST_ptr(EVP_PKEY_get0(pkey2)))
128 goto end;
129
130 /*
131 * Double check the serialization, but only for unprotected keys,
132 * as protected keys have a random component, which makes the output
133 * differ.
134 */
135 if ((pass == NULL && pcipher == NULL)
136 && (!serialize_cb(&serialized2, &serialized2_len, pkey2,
137 pass, pcipher, ser_propq)
138 || !test_cb(serialized, serialized_len,
139 serialized2, serialized2_len)))
140 goto end;
141
142 ok = 1;
143 end:
144 if (!ok) {
145 if (serialized != NULL && serialized_len != 0)
146 dump_cb("serialized result", serialized, serialized_len);
147 if (serialized2 != NULL && serialized2_len != 0)
148 dump_cb("re-serialized result", serialized2, serialized2_len);
149 }
150
151 OPENSSL_free(serialized);
152 OPENSSL_free(serialized2);
153 EVP_PKEY_free(pkey2);
154 return ok;
155 }
156
157 /* Serializing and desserializing methods */
158
159 static int serialize_EVP_PKEY_prov(void **serialized, long *serialized_len,
160 void *object,
161 const char *pass, const char *pcipher,
162 const char *ser_propq)
163 {
164 EVP_PKEY *pkey = object;
165 OSSL_SERIALIZER_CTX *sctx = NULL;
166 BIO *mem_ser = NULL;
167 BUF_MEM *mem_buf = NULL;
168 const unsigned char *upass = (const unsigned char *)pass;
169 int ok = 0;
170
171 if (!TEST_ptr(sctx = OSSL_SERIALIZER_CTX_new_by_EVP_PKEY(pkey, ser_propq))
172 || (pass != NULL
173 && !TEST_true(OSSL_SERIALIZER_CTX_set_passphrase(sctx, upass,
174 strlen(pass))))
175 || (pcipher != NULL
176 && !TEST_true(OSSL_SERIALIZER_CTX_set_cipher(sctx, pcipher, NULL)))
177 || !TEST_ptr(mem_ser = BIO_new(BIO_s_mem()))
178 || !TEST_true(OSSL_SERIALIZER_to_bio(sctx, mem_ser))
179 || !TEST_true(BIO_get_mem_ptr(mem_ser, &mem_buf) > 0)
180 || !TEST_ptr(*serialized = mem_buf->data)
181 || !TEST_long_gt(*serialized_len = mem_buf->length, 0))
182 goto end;
183
184 /* Detach the serialized output */
185 mem_buf->data = NULL;
186 mem_buf->length = 0;
187 ok = 1;
188 end:
189 BIO_free(mem_ser);
190 OSSL_SERIALIZER_CTX_free(sctx);
191 return ok;
192 }
193
194 static int deserialize_EVP_PKEY_prov(void **object,
195 void *serialized, long serialized_len,
196 const char *pass)
197 {
198 EVP_PKEY *pkey = NULL;
199 OSSL_DESERIALIZER_CTX *dctx = NULL;
200 BIO *mem_deser = NULL;
201 const unsigned char *upass = (const unsigned char *)pass;
202 int ok = 0;
203
204 if (!TEST_ptr(dctx = OSSL_DESERIALIZER_CTX_new_by_EVP_PKEY(&pkey, NULL,
205 NULL, NULL))
206 || (pass != NULL
207 && !OSSL_DESERIALIZER_CTX_set_passphrase(dctx, upass,
208 strlen(pass)))
209 || !TEST_ptr(mem_deser = BIO_new_mem_buf(serialized, serialized_len))
210 || !TEST_true(OSSL_DESERIALIZER_from_bio(dctx, mem_deser)))
211 goto end;
212 ok = 1;
213 *object = pkey;
214 end:
215 BIO_free(mem_deser);
216 OSSL_DESERIALIZER_CTX_free(dctx);
217 return ok;
218 }
219
220 static int serialize_EVP_PKEY_legacy_PEM(void **serialized,
221 long *serialized_len,
222 void *object,
223 const char *pass, const char *pcipher,
224 ossl_unused const char *ser_propq)
225 {
226 EVP_PKEY *pkey = object;
227 EVP_CIPHER *cipher = NULL;
228 BIO *mem_ser = NULL;
229 BUF_MEM *mem_buf = NULL;
230 const unsigned char *upass = (const unsigned char *)pass;
231 size_t passlen = 0;
232 int ok = 0;
233
234 if (pcipher != NULL && pass != NULL) {
235 passlen = strlen(pass);
236 if (!TEST_ptr(cipher = EVP_CIPHER_fetch(NULL, pcipher, NULL)))
237 goto end;
238 }
239 if (!TEST_ptr(mem_ser = BIO_new(BIO_s_mem()))
240 || !TEST_true(PEM_write_bio_PrivateKey_traditional(mem_ser, pkey,
241 cipher,
242 upass, passlen,
243 NULL, NULL))
244 || !TEST_true(BIO_get_mem_ptr(mem_ser, &mem_buf) > 0)
245 || !TEST_ptr(*serialized = mem_buf->data)
246 || !TEST_long_gt(*serialized_len = mem_buf->length, 0))
247 goto end;
248
249 /* Detach the serialized output */
250 mem_buf->data = NULL;
251 mem_buf->length = 0;
252 ok = 1;
253 end:
254 BIO_free(mem_ser);
255 EVP_CIPHER_free(cipher);
256 return ok;
257 }
258
259 #ifndef OPENSSL_NO_DSA
260 static int serialize_EVP_PKEY_MSBLOB(void **serialized,
261 long *serialized_len,
262 void *object,
263 ossl_unused const char *pass,
264 ossl_unused const char *pcipher,
265 ossl_unused const char *ser_propq)
266 {
267 EVP_PKEY *pkey = object;
268 BIO *mem_ser = NULL;
269 BUF_MEM *mem_buf = NULL;
270 int ok = 0;
271
272 if (!TEST_ptr(mem_ser = BIO_new(BIO_s_mem()))
273 || !TEST_int_ge(i2b_PrivateKey_bio(mem_ser, pkey), 0)
274 || !TEST_true(BIO_get_mem_ptr(mem_ser, &mem_buf) > 0)
275 || !TEST_ptr(*serialized = mem_buf->data)
276 || !TEST_long_gt(*serialized_len = mem_buf->length, 0))
277 goto end;
278
279 /* Detach the serialized output */
280 mem_buf->data = NULL;
281 mem_buf->length = 0;
282 ok = 1;
283 end:
284 BIO_free(mem_ser);
285 return ok;
286 }
287
288 static int serialize_public_EVP_PKEY_MSBLOB(void **serialized,
289 long *serialized_len,
290 void *object,
291 ossl_unused const char *pass,
292 ossl_unused const char *pcipher,
293 ossl_unused const char *ser_propq)
294 {
295 EVP_PKEY *pkey = object;
296 BIO *mem_ser = NULL;
297 BUF_MEM *mem_buf = NULL;
298 int ok = 0;
299
300 if (!TEST_ptr(mem_ser = BIO_new(BIO_s_mem()))
301 || !TEST_int_ge(i2b_PublicKey_bio(mem_ser, pkey), 0)
302 || !TEST_true(BIO_get_mem_ptr(mem_ser, &mem_buf) > 0)
303 || !TEST_ptr(*serialized = mem_buf->data)
304 || !TEST_long_gt(*serialized_len = mem_buf->length, 0))
305 goto end;
306
307 /* Detach the serialized output */
308 mem_buf->data = NULL;
309 mem_buf->length = 0;
310 ok = 1;
311 end:
312 BIO_free(mem_ser);
313 return ok;
314 }
315
316 # ifndef OPENSSL_NO_RC4
317 static pem_password_cb pass_pw;
318 static int pass_pw(char *buf, int size, int rwflag, void *userdata)
319 {
320 OPENSSL_strlcpy(buf, userdata, size);
321 return strlen(userdata);
322 }
323
324 static int serialize_EVP_PKEY_PVK(void **serialized, long *serialized_len,
325 void *object,
326 const char *pass,
327 ossl_unused const char *pcipher,
328 ossl_unused const char *ser_propq)
329 {
330 EVP_PKEY *pkey = object;
331 BIO *mem_ser = NULL;
332 BUF_MEM *mem_buf = NULL;
333 int enc = (pass != NULL);
334 int ok = 0;
335
336 if (!TEST_ptr(mem_ser = BIO_new(BIO_s_mem()))
337 || !TEST_int_ge(i2b_PVK_bio(mem_ser, pkey, enc,
338 pass_pw, (void *)pass), 0)
339 || !TEST_true(BIO_get_mem_ptr(mem_ser, &mem_buf) > 0)
340 || !TEST_ptr(*serialized = mem_buf->data)
341 || !TEST_long_gt(*serialized_len = mem_buf->length, 0))
342 goto end;
343
344 /* Detach the serialized output */
345 mem_buf->data = NULL;
346 mem_buf->length = 0;
347 ok = 1;
348 end:
349 BIO_free(mem_ser);
350 return ok;
351 }
352 # endif
353 #endif
354
355 static int test_text(const void *data1, size_t data1_len,
356 const void *data2, size_t data2_len)
357 {
358 return TEST_strn2_eq(data1, data1_len, data2, data2_len);
359 }
360
361 static int test_mem(const void *data1, size_t data1_len,
362 const void *data2, size_t data2_len)
363 {
364 return TEST_mem_eq(data1, data1_len, data2, data2_len);
365 }
366
367 /* Test cases and their dumpers / checkers */
368
369 static void dump_der(const char *label, const void *data, size_t data_len)
370 {
371 test_output_memory(label, data, data_len);
372 }
373
374 static void dump_pem(const char *label, const void *data, size_t data_len)
375 {
376 test_output_string(label, data, data_len - 1);
377 }
378
379 static int check_unprotected_PKCS8_DER(const char *type,
380 const void *data, size_t data_len)
381 {
382 const unsigned char *datap = data;
383 PKCS8_PRIV_KEY_INFO *p8inf =
384 d2i_PKCS8_PRIV_KEY_INFO(NULL, &datap, data_len);
385 int ok = 0;
386
387 if (TEST_ptr(p8inf)) {
388 EVP_PKEY *pkey = EVP_PKCS82PKEY(p8inf);
389
390 ok = (TEST_ptr(pkey) && TEST_true(EVP_PKEY_is_a(pkey, type)));
391 EVP_PKEY_free(pkey);
392 }
393 PKCS8_PRIV_KEY_INFO_free(p8inf);
394 return ok;
395 }
396
397 static int test_unprotected_via_DER(const char *type, EVP_PKEY *key)
398 {
399 return test_serialize_deserialize(type, key, NULL, NULL,
400 serialize_EVP_PKEY_prov,
401 deserialize_EVP_PKEY_prov,
402 test_mem,
403 check_unprotected_PKCS8_DER, dump_der,
404 OSSL_SERIALIZER_PrivateKey_TO_DER_PQ,
405 0);
406 }
407
408 static int check_unprotected_PKCS8_PEM(const char *type,
409 const void *data, size_t data_len)
410 {
411 static const char pem_header[] = "-----BEGIN " PEM_STRING_PKCS8INF "-----";
412
413 return TEST_strn_eq(data, pem_header, sizeof(pem_header) - 1);
414 }
415
416 static int test_unprotected_via_PEM(const char *type, EVP_PKEY *key)
417 {
418 return test_serialize_deserialize(type, key, NULL, NULL,
419 serialize_EVP_PKEY_prov,
420 deserialize_EVP_PKEY_prov,
421 test_text,
422 check_unprotected_PKCS8_PEM, dump_pem,
423 OSSL_SERIALIZER_PrivateKey_TO_PEM_PQ,
424 0);
425 }
426
427 static int check_unprotected_legacy_PEM(const char *type,
428 const void *data, size_t data_len)
429 {
430 static char pem_header[80];
431
432 return
433 TEST_int_gt(BIO_snprintf(pem_header, sizeof(pem_header),
434 "-----BEGIN %s PRIVATE KEY-----", type), 0)
435 && TEST_strn_eq(data, pem_header, strlen(pem_header));
436 }
437
438 static int test_unprotected_via_legacy_PEM(const char *type, EVP_PKEY *key)
439 {
440 return test_serialize_deserialize(type, key, NULL, NULL,
441 serialize_EVP_PKEY_legacy_PEM,
442 deserialize_EVP_PKEY_prov,
443 test_text,
444 check_unprotected_legacy_PEM, dump_pem,
445 NULL, 1);
446 }
447
448 #ifndef OPENSSL_NO_DSA
449 static int check_MSBLOB(const char *type, const void *data, size_t data_len)
450 {
451 const unsigned char *datap = data;
452 EVP_PKEY *pkey = b2i_PrivateKey(&datap, data_len);
453 int ok = TEST_ptr(pkey);
454
455 EVP_PKEY_free(pkey);
456 return ok;
457 }
458
459 static int test_unprotected_via_MSBLOB(const char *type, EVP_PKEY *key)
460 {
461 return test_serialize_deserialize(type, key, NULL, NULL,
462 serialize_EVP_PKEY_MSBLOB,
463 deserialize_EVP_PKEY_prov,
464 test_mem,
465 check_MSBLOB, dump_der,
466 NULL, 0);
467 }
468
469 # ifndef OPENSSL_NO_RC4
470 static int check_PVK(const char *type, const void *data, size_t data_len)
471 {
472 const unsigned char *in = data;
473 unsigned int saltlen = 0, keylen = 0;
474 int ok = ossl_do_PVK_header(&in, data_len, 0, &saltlen, &keylen);
475
476 return ok;
477 }
478
479 static int test_unprotected_via_PVK(const char *type, EVP_PKEY *key)
480 {
481 return test_serialize_deserialize(type, key, NULL, NULL,
482 serialize_EVP_PKEY_PVK,
483 deserialize_EVP_PKEY_prov,
484 test_mem,
485 check_PVK, dump_der,
486 NULL, 0);
487 }
488 # endif
489 #endif
490
491 static const char *pass_cipher = "AES-256-CBC";
492 static const char *pass = "the holy handgrenade of antioch";
493
494 static int check_protected_PKCS8_DER(const char *type,
495 const void *data, size_t data_len)
496 {
497 const unsigned char *datap = data;
498 X509_SIG *p8 = d2i_X509_SIG(NULL, &datap, data_len);
499 int ok = TEST_ptr(p8);
500
501 X509_SIG_free(p8);
502 return ok;
503 }
504
505 static int test_protected_via_DER(const char *type, EVP_PKEY *key)
506 {
507 return test_serialize_deserialize(type, key, pass, pass_cipher,
508 serialize_EVP_PKEY_prov,
509 deserialize_EVP_PKEY_prov,
510 test_mem,
511 check_protected_PKCS8_DER, dump_der,
512 OSSL_SERIALIZER_PrivateKey_TO_DER_PQ,
513 0);
514 }
515
516 static int check_protected_PKCS8_PEM(const char *type,
517 const void *data, size_t data_len)
518 {
519 static const char pem_header[] = "-----BEGIN " PEM_STRING_PKCS8 "-----";
520
521 return TEST_strn_eq(data, pem_header, sizeof(pem_header) - 1);
522 }
523
524 static int test_protected_via_PEM(const char *type, EVP_PKEY *key)
525 {
526 return test_serialize_deserialize(type, key, pass, pass_cipher,
527 serialize_EVP_PKEY_prov,
528 deserialize_EVP_PKEY_prov,
529 test_text,
530 check_protected_PKCS8_PEM, dump_pem,
531 OSSL_SERIALIZER_PrivateKey_TO_PEM_PQ,
532 0);
533 }
534
535 static int check_protected_legacy_PEM(const char *type,
536 const void *data, size_t data_len)
537 {
538 static char pem_header[80];
539
540 return
541 TEST_int_gt(BIO_snprintf(pem_header, sizeof(pem_header),
542 "-----BEGIN %s PRIVATE KEY-----", type), 0)
543 && TEST_strn_eq(data, pem_header, strlen(pem_header))
544 && TEST_ptr(strstr(data, "\nDEK-Info: "));
545 }
546
547 static int test_protected_via_legacy_PEM(const char *type, EVP_PKEY *key)
548 {
549 return test_serialize_deserialize(type, key, pass, pass_cipher,
550 serialize_EVP_PKEY_legacy_PEM,
551 deserialize_EVP_PKEY_prov,
552 test_text,
553 check_protected_legacy_PEM, dump_pem,
554 NULL, 1);
555 }
556
557 #if !defined(OPENSSL_NO_DSA) && !defined(OPENSSL_NO_RC4)
558 static int test_protected_via_PVK(const char *type, EVP_PKEY *key)
559 {
560 return test_serialize_deserialize(type, key, pass, NULL,
561 serialize_EVP_PKEY_PVK,
562 deserialize_EVP_PKEY_prov,
563 test_mem,
564 check_PVK, dump_der,
565 NULL, 0);
566 }
567 #endif
568
569 static int check_public_DER(const char *type, const void *data, size_t data_len)
570 {
571 const unsigned char *datap = data;
572 EVP_PKEY *pkey = d2i_PUBKEY(NULL, &datap, data_len);
573 int ok = (TEST_ptr(pkey) && TEST_true(EVP_PKEY_is_a(pkey, type)));
574
575 EVP_PKEY_free(pkey);
576 return ok;
577 }
578
579 static int test_public_via_DER(const char *type, EVP_PKEY *key)
580 {
581 return test_serialize_deserialize(type, key, NULL, NULL,
582 serialize_EVP_PKEY_prov,
583 deserialize_EVP_PKEY_prov,
584 test_mem,
585 check_public_DER, dump_der,
586 OSSL_SERIALIZER_PUBKEY_TO_DER_PQ,
587 0);
588 }
589
590 static int check_public_PEM(const char *type, const void *data, size_t data_len)
591 {
592 static const char pem_header[] = "-----BEGIN " PEM_STRING_PUBLIC "-----";
593
594 return
595 TEST_strn_eq(data, pem_header, sizeof(pem_header) - 1);
596 }
597
598 static int test_public_via_PEM(const char *type, EVP_PKEY *key)
599 {
600 return test_serialize_deserialize(type, key, NULL, NULL,
601 serialize_EVP_PKEY_prov,
602 deserialize_EVP_PKEY_prov,
603 test_text,
604 check_public_PEM, dump_pem,
605 OSSL_SERIALIZER_PUBKEY_TO_PEM_PQ,
606 0);
607 }
608
609 #ifndef OPENSSL_NO_DSA
610 static int check_public_MSBLOB(const char *type,
611 const void *data, size_t data_len)
612 {
613 const unsigned char *datap = data;
614 EVP_PKEY *pkey = b2i_PublicKey(&datap, data_len);
615 int ok = TEST_ptr(pkey);
616
617 EVP_PKEY_free(pkey);
618 return ok;
619 }
620
621 static int test_public_via_MSBLOB(const char *type, EVP_PKEY *key)
622 {
623 return test_serialize_deserialize(type, key, NULL, NULL,
624 serialize_public_EVP_PKEY_MSBLOB,
625 deserialize_EVP_PKEY_prov,
626 test_mem,
627 check_public_MSBLOB, dump_der,
628 NULL, 0);
629 }
630 #endif
631
632 #define KEYS(KEYTYPE) \
633 static EVP_PKEY *key_##KEYTYPE = NULL; \
634 static EVP_PKEY *legacy_key_##KEYTYPE = NULL
635 #define MAKE_KEYS(KEYTYPE, KEYTYPEstr, params) \
636 ok = ok \
637 && TEST_ptr(key_##KEYTYPE = \
638 make_key(KEYTYPEstr, NULL, params, 0)) \
639 && TEST_ptr(legacy_key_##KEYTYPE = \
640 make_key(KEYTYPEstr, NULL, params, 1))
641 #define FREE_KEYS(KEYTYPE) \
642 EVP_PKEY_free(key_##KEYTYPE); \
643 EVP_PKEY_free(legacy_key_##KEYTYPE)
644
645 #define DOMAIN_KEYS(KEYTYPE) \
646 static EVP_PKEY *template_##KEYTYPE = NULL; \
647 static EVP_PKEY *key_##KEYTYPE = NULL; \
648 static EVP_PKEY *legacy_key_##KEYTYPE = NULL
649 #define MAKE_DOMAIN_KEYS(KEYTYPE, KEYTYPEstr, params) \
650 ok = ok \
651 && TEST_ptr(template_##KEYTYPE = \
652 make_template(KEYTYPEstr, params)) \
653 && TEST_ptr(key_##KEYTYPE = \
654 make_key(KEYTYPEstr, template_##KEYTYPE, NULL, 0)) \
655 && TEST_ptr(legacy_key_##KEYTYPE = \
656 make_key(KEYTYPEstr, template_##KEYTYPE, NULL, 1))
657 #define FREE_DOMAIN_KEYS(KEYTYPE) \
658 EVP_PKEY_free(template_##KEYTYPE); \
659 EVP_PKEY_free(key_##KEYTYPE); \
660 EVP_PKEY_free(legacy_key_##KEYTYPE)
661
662 #define IMPLEMENT_TEST_SUITE(KEYTYPE, KEYTYPEstr) \
663 static int test_unprotected_##KEYTYPE##_via_DER(void) \
664 { \
665 return test_unprotected_via_DER(KEYTYPEstr, key_##KEYTYPE); \
666 } \
667 static int test_unprotected_##KEYTYPE##_via_PEM(void) \
668 { \
669 return test_unprotected_via_PEM(KEYTYPEstr, key_##KEYTYPE); \
670 } \
671 static int test_unprotected_##KEYTYPE##_via_legacy_PEM(void) \
672 { \
673 return test_unprotected_via_legacy_PEM(KEYTYPEstr, \
674 legacy_key_##KEYTYPE); \
675 } \
676 static int test_protected_##KEYTYPE##_via_DER(void) \
677 { \
678 return test_protected_via_DER(KEYTYPEstr, key_##KEYTYPE); \
679 } \
680 static int test_protected_##KEYTYPE##_via_PEM(void) \
681 { \
682 return test_protected_via_PEM(KEYTYPEstr, key_##KEYTYPE); \
683 } \
684 static int test_protected_##KEYTYPE##_via_legacy_PEM(void) \
685 { \
686 return test_protected_via_legacy_PEM(KEYTYPEstr, \
687 legacy_key_##KEYTYPE); \
688 } \
689 static int test_public_##KEYTYPE##_via_DER(void) \
690 { \
691 return test_public_via_DER(KEYTYPEstr, key_##KEYTYPE); \
692 } \
693 static int test_public_##KEYTYPE##_via_PEM(void) \
694 { \
695 return test_public_via_PEM(KEYTYPEstr, key_##KEYTYPE); \
696 }
697
698 #define ADD_TEST_SUITE(KEYTYPE) \
699 ADD_TEST(test_unprotected_##KEYTYPE##_via_DER); \
700 ADD_TEST(test_unprotected_##KEYTYPE##_via_PEM); \
701 ADD_TEST(test_unprotected_##KEYTYPE##_via_legacy_PEM); \
702 ADD_TEST(test_protected_##KEYTYPE##_via_DER); \
703 ADD_TEST(test_protected_##KEYTYPE##_via_PEM); \
704 ADD_TEST(test_protected_##KEYTYPE##_via_legacy_PEM); \
705 ADD_TEST(test_public_##KEYTYPE##_via_DER); \
706 ADD_TEST(test_public_##KEYTYPE##_via_PEM)
707
708 #ifndef OPENSSL_NO_DSA
709 # define IMPLEMENT_TEST_SUITE_MSBLOB(KEYTYPE, KEYTYPEstr) \
710 static int test_unprotected_##KEYTYPE##_via_MSBLOB(void) \
711 { \
712 return test_unprotected_via_MSBLOB(KEYTYPEstr, key_##KEYTYPE); \
713 } \
714 static int test_public_##KEYTYPE##_via_MSBLOB(void) \
715 { \
716 return test_public_via_MSBLOB(KEYTYPEstr, key_##KEYTYPE); \
717 }
718
719 # define ADD_TEST_SUITE_MSBLOB(KEYTYPE) \
720 ADD_TEST(test_unprotected_##KEYTYPE##_via_MSBLOB); \
721 ADD_TEST(test_public_##KEYTYPE##_via_MSBLOB)
722
723 # ifndef OPENSSL_NO_RC4
724 # define IMPLEMENT_TEST_SUITE_PVK(KEYTYPE, KEYTYPEstr) \
725 static int test_unprotected_##KEYTYPE##_via_PVK(void) \
726 { \
727 return test_unprotected_via_PVK(KEYTYPEstr, key_##KEYTYPE); \
728 } \
729 static int test_protected_##KEYTYPE##_via_PVK(void) \
730 { \
731 return test_protected_via_PVK(KEYTYPEstr, key_##KEYTYPE); \
732 }
733
734 # define ADD_TEST_SUITE_PVK(KEYTYPE) \
735 ADD_TEST(test_unprotected_##KEYTYPE##_via_PVK); \
736 ADD_TEST(test_protected_##KEYTYPE##_via_PVK)
737 # endif
738 #endif
739
740 #ifndef OPENSSL_NO_DH
741 DOMAIN_KEYS(DH);
742 IMPLEMENT_TEST_SUITE(DH, "DH")
743 #endif
744 #ifndef OPENSSL_NO_DSA
745 DOMAIN_KEYS(DSA);
746 IMPLEMENT_TEST_SUITE(DSA, "DSA")
747 IMPLEMENT_TEST_SUITE_MSBLOB(DSA, "DSA")
748 # ifndef OPENSSL_NO_RC4
749 IMPLEMENT_TEST_SUITE_PVK(DSA, "DSA")
750 # endif
751 #endif
752 #ifndef OPENSSL_NO_EC
753 DOMAIN_KEYS(EC);
754 IMPLEMENT_TEST_SUITE(EC, "EC")
755 KEYS(ED25519);
756 IMPLEMENT_TEST_SUITE(ED25519, "ED25519")
757 KEYS(ED448);
758 IMPLEMENT_TEST_SUITE(ED448, "ED448")
759 KEYS(X25519);
760 IMPLEMENT_TEST_SUITE(X25519, "X25519")
761 KEYS(X448);
762 IMPLEMENT_TEST_SUITE(X448, "X448")
763 #endif
764 KEYS(RSA);
765 IMPLEMENT_TEST_SUITE(RSA, "RSA")
766 KEYS(RSA_PSS);
767 IMPLEMENT_TEST_SUITE(RSA_PSS, "RSA-PSS")
768 #ifndef OPENSSL_NO_DSA
769 IMPLEMENT_TEST_SUITE_MSBLOB(RSA, "RSA")
770 # ifndef OPENSSL_NO_RC4
771 IMPLEMENT_TEST_SUITE_PVK(RSA, "RSA")
772 # endif
773 #endif
774
775 int setup_tests(void)
776 {
777 int ok = 1;
778
779 #ifndef OPENSSL_NO_DSA
780 static size_t qbits = 160; /* PVK only tolerates 160 Q bits */
781 static size_t pbits = 1024; /* With 160 Q bits, we MUST use 1024 P bits */
782 OSSL_PARAM DSA_params[] = {
783 OSSL_PARAM_size_t("pbits", &pbits),
784 OSSL_PARAM_size_t("qbits", &qbits),
785 OSSL_PARAM_END
786 };
787 #endif
788
789 #ifndef OPENSSL_NO_EC
790 static char groupname[] = "prime256v1";
791 OSSL_PARAM EC_params[] = {
792 OSSL_PARAM_utf8_string("group", groupname, sizeof(groupname) - 1),
793 OSSL_PARAM_END
794 };
795 #endif
796
797 /* 7 is the default magic number */
798 static unsigned int rsapss_min_saltlen = 7;
799 OSSL_PARAM RSA_PSS_params[] = {
800 OSSL_PARAM_uint("saltlen", &rsapss_min_saltlen),
801 OSSL_PARAM_END
802 };
803
804 TEST_info("Generating keys...");
805 #ifndef OPENSSL_NO_DH
806 MAKE_DOMAIN_KEYS(DH, "DH", NULL);
807 #endif
808 #ifndef OPENSSL_NO_DSA
809 MAKE_DOMAIN_KEYS(DSA, "DSA", DSA_params);
810 #endif
811 #ifndef OPENSSL_NO_EC
812 MAKE_DOMAIN_KEYS(EC, "EC", EC_params);
813 MAKE_KEYS(ED25519, "ED25519", NULL);
814 MAKE_KEYS(ED448, "ED448", NULL);
815 MAKE_KEYS(X25519, "X25519", NULL);
816 MAKE_KEYS(X448, "X448", NULL);
817 #endif
818 MAKE_KEYS(RSA, "RSA", NULL);
819 MAKE_KEYS(RSA_PSS, "RSA-PSS", RSA_PSS_params);
820 TEST_info("Generating key... done");
821
822 if (ok) {
823 #ifndef OPENSSL_NO_DH
824 ADD_TEST_SUITE(DH);
825 #endif
826 #ifndef OPENSSL_NO_DSA
827 ADD_TEST_SUITE(DSA);
828 ADD_TEST_SUITE_MSBLOB(DSA);
829 # ifndef OPENSSL_NO_RC4
830 ADD_TEST_SUITE_PVK(DSA);
831 # endif
832 #endif
833 #ifndef OPENSSL_NO_EC
834 ADD_TEST_SUITE(EC);
835 ADD_TEST_SUITE(ED25519);
836 ADD_TEST_SUITE(ED448);
837 ADD_TEST_SUITE(X25519);
838 ADD_TEST_SUITE(X448);
839 #endif
840 ADD_TEST_SUITE(RSA);
841 ADD_TEST_SUITE(RSA_PSS);
842 #ifndef OPENSSL_NO_DSA
843 ADD_TEST_SUITE_MSBLOB(RSA);
844 # ifndef OPENSSL_NO_RC4
845 ADD_TEST_SUITE_PVK(RSA);
846 # endif
847 #endif
848 }
849
850 return 1;
851 }
852
853 void cleanup_tests(void)
854 {
855 #ifndef OPENSSL_NO_DH
856 FREE_DOMAIN_KEYS(DH);
857 #endif
858 #ifndef OPENSSL_NO_DSA
859 FREE_DOMAIN_KEYS(DSA);
860 #endif
861 #ifndef OPENSSL_NO_EC
862 FREE_DOMAIN_KEYS(EC);
863 FREE_KEYS(ED25519);
864 FREE_KEYS(ED448);
865 FREE_KEYS(X25519);
866 FREE_KEYS(X448);
867 #endif
868 FREE_KEYS(RSA);
869 FREE_KEYS(RSA_PSS);
870 }
A mirror of the official openssl repository