ring/tests/hmac_tests.rs

// Copyright 2015-2016 Brian Smith.
//
// Permission to use, copy, modify, and/or distribute this software for any
// purpose with or without fee is hereby granted, provided that the above
// copyright notice and this permission notice appear in all copies.
//
// THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHORS DISCLAIM ALL WARRANTIES
// WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
// MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY
// SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
// WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
// OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
// CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.

#![forbid(
    anonymous_parameters,
    box_pointers,
    legacy_directory_ownership,
    missing_copy_implementations,
    missing_debug_implementations,
    missing_docs,
    trivial_casts,
    trivial_numeric_casts,
    unsafe_code,
    unstable_features,
    unused_extern_crates,
    unused_import_braces,
    unused_qualifications,
    unused_results,
    variant_size_differences,
    warnings
)]

use ring::{digest, error, hmac, test, test_file};

#[test]
fn hmac_tests() {
    test::run(test_file!("hmac_tests.txt"), |section, test_case| {
        assert_eq!(section, "");
        let digest_alg = test_case.consume_digest_alg("HMAC");
        let key_value = test_case.consume_bytes("Key");
        let mut input = test_case.consume_bytes("Input");
        let output = test_case.consume_bytes("Output");

        let digest_alg = match digest_alg {
            Some(digest_alg) => digest_alg,
            None => {
                return Ok(());
            }, // Unsupported digest algorithm
        };

        hmac_test_case_inner(digest_alg, &key_value[..], &input[..], &output[..], true)?;

        // Tamper with the input and check that verification fails.
        if input.is_empty() {
            input.push(0);
        } else {
            input[0] ^= 1;
        }

        hmac_test_case_inner(digest_alg, &key_value[..], &input[..], &output[..], false)
    });
}

fn hmac_test_case_inner(
    digest_alg: &'static digest::Algorithm, key_value: &[u8], input: &[u8], output: &[u8],
    is_ok: bool,
) -> Result<(), error::Unspecified> {
    let s_key = hmac::SigningKey::new(digest_alg, key_value);
    let v_key = hmac::VerificationKey::new(digest_alg, key_value);

    // One-shot API.
    {
        let signature = hmac::sign(&s_key, input);
        assert_eq!(is_ok, signature.as_ref() == output);
        assert_eq!(is_ok, hmac::verify(&v_key, input, output).is_ok());
    }

    // Multi-part API, one single part.
    {
        let mut s_ctx = hmac::SigningContext::with_key(&s_key);
        s_ctx.update(input);
        let signature = s_ctx.sign();
        assert_eq!(is_ok, signature.as_ref() == output);
    }

    // Multi-part API, byte by byte.
    {
        let mut s_ctx = hmac::SigningContext::with_key(&s_key);
        for b in input {
            s_ctx.update(&[*b]);
        }
        let signature = s_ctx.sign();
        assert_eq!(is_ok, signature.as_ref() == output);
    }

    Ok(())
}

#[test]
fn hmac_debug() {
    let key = hmac::SigningKey::new(&digest::SHA256, &[0; 32]);
    assert_eq!("SigningKey { algorithm: SHA256 }", format!("{:?}", &key));

    let ctx = hmac::SigningContext::with_key(&key);
    assert_eq!(
        "SigningContext { algorithm: SHA256 }",
        format!("{:?}", &ctx)
    );

    let key = hmac::VerificationKey::new(&digest::SHA384, &[0; 32]);
    assert_eq!(
        "VerificationKey { algorithm: SHA384 }",
        format!("{:?}", &key)
    );
}
Move HMAC functional tests to tests/. 2017-06-08 11:56:39 -10:00			`// Copyright 2015-2016 Brian Smith.`
			`//`
			`// Permission to use, copy, modify, and/or distribute this software for any`
			`// purpose with or without fee is hereby granted, provided that the above`
			`// copyright notice and this permission notice appear in all copies.`
			`//`
			`// THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHORS DISCLAIM ALL WARRANTIES`
			`// WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF`
			`// MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY`
			`// SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES`
			`// WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION`
			`// OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN`
			`// CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.`

Be stricter with lints in the rest of tests/*.rs. 2017-08-27 12:31:17 -10:00			`#![forbid(`
			`anonymous_parameters,`
			`box_pointers,`
			`legacy_directory_ownership,`
			`missing_copy_implementations,`
			`missing_debug_implementations,`
			`missing_docs,`
			`trivial_casts,`
			`trivial_numeric_casts,`
			`unsafe_code,`
			`unstable_features,`
			`unused_extern_crates,`
			`unused_import_braces,`
			`unused_qualifications,`
			`unused_results,`
			`variant_size_differences,`
Reformat tests/, except AEAD tests. AEAD tests will be reformatted later. 2018-11-15 15:39:12 -10:00			`warnings`
Be stricter with lints in the rest of tests/*.rs. 2017-08-27 12:31:17 -10:00			`)]`

Embed test data into test executables. Embed test data files into test executables so that file I/O isn't necessary during tests. This allows the tests to run on platforms that don't have file I/O. It also makes it easier to run the tests on a separate (virtual) machine from the build machine since the test automation no longer needs to keep track of the test files. 2019-02-02 12:11:19 -10:00			`use ring::{digest, error, hmac, test, test_file};`
Move HMAC functional tests to tests/. 2017-06-08 11:56:39 -10:00
			`#[test]`
			`fn hmac_tests() {`
Embed test data into test executables. Embed test data files into test executables so that file I/O isn't necessary during tests. This allows the tests to run on platforms that don't have file I/O. It also makes it easier to run the tests on a separate (virtual) machine from the build machine since the test automation no longer needs to keep track of the test files. 2019-02-02 12:11:19 -10:00			`test::run(test_file!("hmac_tests.txt"), \|section, test_case\| {`
Move HMAC functional tests to tests/. 2017-06-08 11:56:39 -10:00			`assert_eq!(section, "");`
			`let digest_alg = test_case.consume_digest_alg("HMAC");`
			`let key_value = test_case.consume_bytes("Key");`
			`let mut input = test_case.consume_bytes("Input");`
			`let output = test_case.consume_bytes("Output");`

			`let digest_alg = match digest_alg {`
			`Some(digest_alg) => digest_alg,`
Reformat tests/, except AEAD tests. AEAD tests will be reformatted later. 2018-11-15 15:39:12 -10:00			`None => {`
			`return Ok(());`
			`}, // Unsupported digest algorithm`
Move HMAC functional tests to tests/. 2017-06-08 11:56:39 -10:00			`};`

Reformat tests/, except AEAD tests. AEAD tests will be reformatted later. 2018-11-15 15:39:12 -10:00			`hmac_test_case_inner(digest_alg, &key_value[..], &input[..], &output[..], true)?;`
Move HMAC functional tests to tests/. 2017-06-08 11:56:39 -10:00
			`// Tamper with the input and check that verification fails.`
			`if input.is_empty() {`
			`input.push(0);`
			`} else {`
			`input[0] ^= 1;`
			`}`

Reformat tests/, except AEAD tests. AEAD tests will be reformatted later. 2018-11-15 15:39:12 -10:00			`hmac_test_case_inner(digest_alg, &key_value[..], &input[..], &output[..], false)`
Move HMAC functional tests to tests/. 2017-06-08 11:56:39 -10:00			`});`
			`}`

Reformat tests/, except AEAD tests. AEAD tests will be reformatted later. 2018-11-15 15:39:12 -10:00			`fn hmac_test_case_inner(`
			`digest_alg: &'static digest::Algorithm, key_value: &[u8], input: &[u8], output: &[u8],`
			`is_ok: bool,`
			`) -> Result<(), error::Unspecified> {`
Move HMAC functional tests to tests/. 2017-06-08 11:56:39 -10:00			`let s_key = hmac::SigningKey::new(digest_alg, key_value);`
			`let v_key = hmac::VerificationKey::new(digest_alg, key_value);`

			`// One-shot API.`
			`{`
			`let signature = hmac::sign(&s_key, input);`
			`assert_eq!(is_ok, signature.as_ref() == output);`
			`assert_eq!(is_ok, hmac::verify(&v_key, input, output).is_ok());`
			`}`

			`// Multi-part API, one single part.`
			`{`
			`let mut s_ctx = hmac::SigningContext::with_key(&s_key);`
			`s_ctx.update(input);`
			`let signature = s_ctx.sign();`
			`assert_eq!(is_ok, signature.as_ref() == output);`
			`}`

			`// Multi-part API, byte by byte.`
			`{`
			`let mut s_ctx = hmac::SigningContext::with_key(&s_key);`
			`for b in input {`
			`s_ctx.update(&[*b]);`
			`}`
			`let signature = s_ctx.sign();`
			`assert_eq!(is_ok, signature.as_ref() == output);`
			`}`

			`Ok(())`
			`}`
Improve and test various key type `Clone`/`Debug` implementations. 2019-01-19 18:17:45 -10:00
			`#[test]`
			`fn hmac_debug() {`
			`let key = hmac::SigningKey::new(&digest::SHA256, &[0; 32]);`
			`assert_eq!("SigningKey { algorithm: SHA256 }", format!("{:?}", &key));`

			`let ctx = hmac::SigningContext::with_key(&key);`
Loosen lifetime requirements for `aead::open_in_place()`. Tying the lifetime of the `aad` parameter to the lifetime of the input/output buffer was an accident. Separate them. 2019-01-22 10:04:50 -10:00			`assert_eq!(`
			`"SigningContext { algorithm: SHA256 }",`
			`format!("{:?}", &ctx)`
			`);`
Improve and test various key type `Clone`/`Debug` implementations. 2019-01-19 18:17:45 -10:00
			`let key = hmac::VerificationKey::new(&digest::SHA384, &[0; 32]);`
Loosen lifetime requirements for `aead::open_in_place()`. Tying the lifetime of the `aad` parameter to the lifetime of the input/output buffer was an accident. Separate them. 2019-01-22 10:04:50 -10:00			`assert_eq!(`
			`"VerificationKey { algorithm: SHA384 }",`
			`format!("{:?}", &key)`
			`);`
Improve and test various key type `Clone`/`Debug` implementations. 2019-01-19 18:17:45 -10:00			`}`