2 * Copyright (c) 2003-2016 Kungliga Tekniska Högskolan
3 * (Royal Institute of Technology, Stockholm, Sweden).
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of KTH nor the names of its contributors may be
18 * used to endorse or promote products derived from this software without
19 * specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY KTH AND ITS CONTRIBUTORS ``AS IS'' AND ANY
22 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
24 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL KTH OR ITS CONTRIBUTORS BE
25 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
26 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
27 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
28 * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
29 * WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
30 * OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
31 * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */
33 #include "krb5_locl.h"
38 static int verbose
= 0;
41 hex_dump_data(const void *data
, size_t length
)
45 hex_encode(data
, length
, &p
);
61 "password", "ATHENA.MIT.EDUraeburn", -1,
63 ETYPE_AES128_CTS_HMAC_SHA1_96
, 16,
64 "\xcd\xed\xb5\x28\x1b\xb2\xf8\x01\x56\x5a\x11\x22\xb2\x56\x35\x15",
65 "\x42\x26\x3c\x6e\x89\xf4\xfc\x28\xb8\xdf\x68\xee\x09\x79\x9f\x15"
68 "password", "ATHENA.MIT.EDUraeburn", -1,
70 ETYPE_AES256_CTS_HMAC_SHA1_96
, 32,
71 "\xcd\xed\xb5\x28\x1b\xb2\xf8\x01\x56\x5a\x11\x22\xb2\x56\x35\x15"
72 "\x0a\xd1\xf7\xa0\x4b\xb9\xf3\xa3\x33\xec\xc0\xe2\xe1\xf7\x08\x37",
73 "\xfe\x69\x7b\x52\xbc\x0d\x3c\xe1\x44\x32\xba\x03\x6a\x92\xe6\x5b"
74 "\xbb\x52\x28\x09\x90\xa2\xfa\x27\x88\x39\x98\xd7\x2a\xf3\x01\x61"
77 "password", "ATHENA.MIT.EDUraeburn", -1,
79 ETYPE_AES128_CTS_HMAC_SHA1_96
, 16,
80 "\x01\xdb\xee\x7f\x4a\x9e\x24\x3e\x98\x8b\x62\xc7\x3c\xda\x93\x5d",
81 "\xc6\x51\xbf\x29\xe2\x30\x0a\xc2\x7f\xa4\x69\xd6\x93\xbd\xda\x13"
84 "password", "ATHENA.MIT.EDUraeburn", -1,
86 ETYPE_AES256_CTS_HMAC_SHA1_96
, 32,
87 "\x01\xdb\xee\x7f\x4a\x9e\x24\x3e\x98\x8b\x62\xc7\x3c\xda\x93\x5d"
88 "\xa0\x53\x78\xb9\x32\x44\xec\x8f\x48\xa9\x9e\x61\xad\x79\x9d\x86",
89 "\xa2\xe1\x6d\x16\xb3\x60\x69\xc1\x35\xd5\xe9\xd2\xe2\x5f\x89\x61"
90 "\x02\x68\x56\x18\xb9\x59\x14\xb4\x67\xc6\x76\x22\x22\x58\x24\xff"
93 "password", "ATHENA.MIT.EDUraeburn", -1,
95 ETYPE_AES128_CTS_HMAC_SHA1_96
, 16,
96 "\x5c\x08\xeb\x61\xfd\xf7\x1e\x4e\x4e\xc3\xcf\x6b\xa1\xf5\x51\x2b",
97 "\x4c\x01\xcd\x46\xd6\x32\xd0\x1e\x6d\xbe\x23\x0a\x01\xed\x64\x2a"
100 "password", "ATHENA.MIT.EDUraeburn", -1,
102 ETYPE_AES256_CTS_HMAC_SHA1_96
, 32,
103 "\x5c\x08\xeb\x61\xfd\xf7\x1e\x4e\x4e\xc3\xcf\x6b\xa1\xf5\x51\x2b"
104 "\xa7\xe5\x2d\xdb\xc5\xe5\x14\x2f\x70\x8a\x31\xe2\xe6\x2b\x1e\x13",
105 "\x55\xa6\xac\x74\x0a\xd1\x7b\x48\x46\x94\x10\x51\xe1\xe8\xb0\xa7"
106 "\x54\x8d\x93\xb0\xab\x30\xa8\xbc\x3f\xf1\x62\x80\x38\x2b\x8c\x2a"
109 "password", "\x12\x34\x56\x78\x78\x56\x34\x12", 8,
111 ETYPE_AES128_CTS_HMAC_SHA1_96
, 16,
112 "\xd1\xda\xa7\x86\x15\xf2\x87\xe6\xa1\xc8\xb1\x20\xd7\x06\x2a\x49",
113 "\xe9\xb2\x3d\x52\x27\x37\x47\xdd\x5c\x35\xcb\x55\xbe\x61\x9d\x8e"
116 "password", "\x12\x34\x56\x78\x78\x56\x34\x12", 8,
118 ETYPE_AES256_CTS_HMAC_SHA1_96
, 32,
119 "\xd1\xda\xa7\x86\x15\xf2\x87\xe6\xa1\xc8\xb1\x20\xd7\x06\x2a\x49"
120 "\x3f\x98\xd2\x03\xe6\xbe\x49\xa6\xad\xf4\xfa\x57\x4b\x6e\x64\xee",
121 "\x97\xa4\xe7\x86\xbe\x20\xd8\x1a\x38\x2d\x5e\xbc\x96\xd5\x90\x9c"
122 "\xab\xcd\xad\xc8\x7c\xa4\x8f\x57\x45\x04\x15\x9f\x16\xc3\x6e\x31"
125 "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
126 "pass phrase equals block size", -1,
128 ETYPE_AES128_CTS_HMAC_SHA1_96
, 16,
129 "\x13\x9c\x30\xc0\x96\x6b\xc3\x2b\xa5\x5f\xdb\xf2\x12\x53\x0a\xc9",
130 "\x59\xd1\xbb\x78\x9a\x82\x8b\x1a\xa5\x4e\xf9\xc2\x88\x3f\x69\xed"
133 "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
134 "pass phrase equals block size", -1,
136 ETYPE_AES256_CTS_HMAC_SHA1_96
, 32,
137 "\x13\x9c\x30\xc0\x96\x6b\xc3\x2b\xa5\x5f\xdb\xf2\x12\x53\x0a\xc9"
138 "\xc5\xec\x59\xf1\xa4\x52\xf5\xcc\x9a\xd9\x40\xfe\xa0\x59\x8e\xd1",
139 "\x89\xad\xee\x36\x08\xdb\x8b\xc7\x1f\x1b\xfb\xfe\x45\x94\x86\xb0"
140 "\x56\x18\xb7\x0c\xba\xe2\x20\x92\x53\x4e\x56\xc5\x53\xba\x4b\x34"
143 "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
144 "pass phrase exceeds block size", -1,
146 ETYPE_AES128_CTS_HMAC_SHA1_96
, 16,
147 "\x9c\xca\xd6\xd4\x68\x77\x0c\xd5\x1b\x10\xe6\xa6\x87\x21\xbe\x61",
148 "\xcb\x80\x05\xdc\x5f\x90\x17\x9a\x7f\x02\x10\x4c\x00\x18\x75\x1d"
151 "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX",
152 "pass phrase exceeds block size", -1,
154 ETYPE_AES256_CTS_HMAC_SHA1_96
, 32,
155 "\x9c\xca\xd6\xd4\x68\x77\x0c\xd5\x1b\x10\xe6\xa6\x87\x21\xbe\x61"
156 "\x1a\x8b\x4d\x28\x26\x01\xdb\x3b\x36\xbe\x92\x46\x91\x5e\xc8\x2a",
157 "\xd7\x8c\x5c\x9c\xb8\x72\xa8\xc9\xda\xd4\x69\x7f\x0b\xb5\xb2\xd2"
158 "\x14\x96\xc8\x2b\xeb\x2c\xae\xda\x21\x12\xfc\xee\xa0\x57\x40\x1b"
162 "\xf0\x9d\x84\x9e" /* g-clef */, "EXAMPLE.COMpianist", -1,
164 ETYPE_AES128_CTS_HMAC_SHA1_96
, 16,
165 "\x6b\x9c\xf2\x6d\x45\x45\x5a\x43\xa5\xb8\xbb\x27\x6a\x40\x3b\x39",
166 "\xf1\x49\xc1\xf2\xe1\x54\xa7\x34\x52\xd4\x3e\x7f\xe6\x2a\x56\xe5"
169 "\xf0\x9d\x84\x9e" /* g-clef */, "EXAMPLE.COMpianist", -1,
171 ETYPE_AES256_CTS_HMAC_SHA1_96
, 32,
172 "\x6b\x9c\xf2\x6d\x45\x45\x5a\x43\xa5\xb8\xbb\x27\x6a\x40\x3b\x39"
173 "\xe7\xfe\x37\xa0\xc4\x1e\x02\xc2\x81\xff\x30\x69\xe1\xe9\x4f\x52",
174 "\x4b\x6d\x98\x39\xf8\x44\x06\xdf\x1f\x09\xcc\x16\x6d\xb4\xb8\x3c"
175 "\x57\x18\x48\xb7\x84\xa3\xd6\xbd\xc3\x46\x58\x9a\x3e\x39\x3f\x9e"
180 ETYPE_ARCFOUR_HMAC_MD5
, 16,
182 "\xac\x8e\x65\x7f\x83\xdf\x82\xbe\xea\x5d\x43\xbd\xaf\x78\x00\xcc"
187 ETYPE_ARCFOUR_HMAC_MD5
, 16,
189 "\x0c\xb6\x94\x88\x05\xf7\x97\xbf\x2a\x82\x80\x79\x73\xb8\x95\x37"
194 string_to_key_test(krb5_context context
)
196 krb5_data password
, opaque
;
202 for (i
= 0; i
< sizeof(keys
)/sizeof(keys
[0]); i
++) {
204 password
.data
= keys
[i
].password
;
205 password
.length
= strlen(password
.data
);
207 salt
.salttype
= KRB5_PW_SALT
;
208 salt
.saltvalue
.data
= keys
[i
].salt
;
209 if (keys
[i
].saltlen
== -1)
210 salt
.saltvalue
.length
= strlen(salt
.saltvalue
.data
);
212 salt
.saltvalue
.length
= keys
[i
].saltlen
;
215 opaque
.length
= sizeof(iter
);
216 _krb5_put_int(iter
, keys
[i
].iterations
, 4);
218 if (keys
[i
].pbkdf2
) {
219 unsigned char keyout
[32];
221 if (keys
[i
].keylen
> sizeof(keyout
))
224 PKCS5_PBKDF2_HMAC_SHA1(password
.data
, password
.length
,
225 salt
.saltvalue
.data
, salt
.saltvalue
.length
,
227 keys
[i
].keylen
, keyout
);
229 if (memcmp(keyout
, keys
[i
].pbkdf2
, keys
[i
].keylen
) != 0) {
230 krb5_warnx(context
, "%d: pbkdf2", i
);
232 hex_dump_data(keyout
, keys
[i
].keylen
);
238 hex_dump_data(keyout
, keys
[i
].keylen
);
245 ret
= krb5_string_to_key_data_salt_opaque (context
,
252 krb5_warn(context
, ret
, "%d: string_to_key_data_salt_opaque",
258 if (key
.keyvalue
.length
!= keys
[i
].keylen
) {
259 krb5_warnx(context
, "%d: key wrong length (%lu/%lu)",
260 i
, (unsigned long)key
.keyvalue
.length
,
261 (unsigned long)keys
[i
].keylen
);
266 if (memcmp(key
.keyvalue
.data
, keys
[i
].key
, keys
[i
].keylen
) != 0) {
267 krb5_warnx(context
, "%d: key wrong", i
);
269 hex_dump_data(key
.keyvalue
.data
, key
.keyvalue
.length
);
270 hex_dump_data(keys
[i
].key
, keys
[i
].keylen
);
276 hex_dump_data(key
.keyvalue
.data
, key
.keyvalue
.length
);
278 krb5_free_keyblock_contents(context
, &key
);
285 krb_enc(krb5_context context
,
294 krb5_data_zero(&decrypt
);
296 ret
= krb5_decrypt(context
,
304 krb5_warn(context
, ret
, "krb5_decrypt");
308 if (decrypt
.length
!= clear
->length
||
309 memcmp(decrypt
.data
, clear
->data
, decrypt
.length
) != 0) {
310 krb5_warnx(context
, "clear text not same");
314 krb5_data_free(&decrypt
);
320 krb_enc_iov2(krb5_context context
,
326 krb5_crypto_iov iov
[4];
335 iov
[0].flags
= KRB5_CRYPTO_TYPE_HEADER
;
336 krb5_crypto_length(context
, crypto
, iov
[0].flags
, &iov
[0].data
.length
);
337 iov
[0].data
.data
= emalloc(iov
[0].data
.length
);
339 iov
[1].flags
= KRB5_CRYPTO_TYPE_DATA
;
340 iov
[1].data
.length
= len
;
341 iov
[1].data
.data
= emalloc(iov
[1].data
.length
);
342 memcpy(iov
[1].data
.data
, p
, iov
[1].data
.length
);
345 iov
[2].flags
= KRB5_CRYPTO_TYPE_PADDING
;
346 krb5_crypto_length(context
, crypto
, KRB5_CRYPTO_TYPE_PADDING
, &iov
[2].data
.length
);
347 iov
[2].data
.data
= emalloc(iov
[2].data
.length
);
349 iov
[3].flags
= KRB5_CRYPTO_TYPE_TRAILER
;
350 krb5_crypto_length(context
, crypto
, iov
[3].flags
, &iov
[3].data
.length
);
351 iov
[3].data
.data
= emalloc(iov
[3].data
.length
);
353 ret
= krb5_encrypt_iov_ivec(context
, crypto
, usage
,
354 iov
, sizeof(iov
)/sizeof(iov
[0]), NULL
);
356 errx(1, "encrypt iov failed: %d", ret
);
359 for (i
= 0, len
= 0; i
< sizeof(iov
)/sizeof(iov
[0]); i
++)
360 len
+= iov
[i
].data
.length
;
361 if (len
!= cipher_len
)
362 errx(1, "cipher len wrong");
368 p
= q
= emalloc(len
);
369 for (i
= 0; i
< sizeof(iov
)/sizeof(iov
[0]); i
++) {
370 memcpy(q
, iov
[i
].data
.data
, iov
[i
].data
.length
);
371 q
+= iov
[i
].data
.length
;
374 ret
= krb5_decrypt(context
, crypto
, usage
, p
, len
, &decrypt
);
376 krb5_err(context
, 1, ret
, "krb5_decrypt");
378 krb5_data_free(&decrypt
);
383 * Now decrypt use iov
386 /* padding turn into data */
387 p
= q
= emalloc(iov
[1].data
.length
+ iov
[2].data
.length
);
389 memcpy(q
, iov
[1].data
.data
, iov
[1].data
.length
);
390 q
+= iov
[1].data
.length
;
391 memcpy(q
, iov
[2].data
.data
, iov
[2].data
.length
);
393 free(iov
[1].data
.data
);
394 free(iov
[2].data
.data
);
396 iov
[1].data
.data
= p
;
397 iov
[1].data
.length
+= iov
[2].data
.length
;
399 iov
[2].flags
= KRB5_CRYPTO_TYPE_EMPTY
;
400 iov
[2].data
.length
= 0;
402 ret
= krb5_decrypt_iov_ivec(context
, crypto
, usage
,
403 iov
, sizeof(iov
)/sizeof(iov
[0]), NULL
);
404 free(iov
[0].data
.data
);
405 free(iov
[3].data
.data
);
408 krb5_err(context
, 1, ret
, "decrypt iov failed: %d", ret
);
410 if (clear
->length
!= iov
[1].data
.length
)
411 errx(1, "length incorrect");
414 if (memcmp(iov
[1].data
.data
, p
, iov
[1].data
.length
) != 0)
415 errx(1, "iov[1] incorrect");
417 free(iov
[1].data
.data
);
424 krb_enc_iov(krb5_context context
,
430 krb5_crypto_iov iov
[3];
436 len
= cipher
->length
;
438 iov
[0].flags
= KRB5_CRYPTO_TYPE_HEADER
;
439 krb5_crypto_length(context
, crypto
, iov
[0].flags
, &iov
[0].data
.length
);
440 iov
[0].data
.data
= emalloc(iov
[0].data
.length
);
441 memcpy(iov
[0].data
.data
, p
, iov
[0].data
.length
);
442 p
+= iov
[0].data
.length
;
443 len
-= iov
[0].data
.length
;
445 iov
[1].flags
= KRB5_CRYPTO_TYPE_TRAILER
;
446 krb5_crypto_length(context
, crypto
, iov
[1].flags
, &iov
[1].data
.length
);
447 iov
[1].data
.data
= emalloc(iov
[1].data
.length
);
448 memcpy(iov
[1].data
.data
, p
+ len
- iov
[1].data
.length
, iov
[1].data
.length
);
449 len
-= iov
[1].data
.length
;
451 iov
[2].flags
= KRB5_CRYPTO_TYPE_DATA
;
452 iov
[2].data
.length
= len
;
453 iov
[2].data
.data
= emalloc(len
);
454 memcpy(iov
[2].data
.data
, p
, len
);
456 ret
= krb5_decrypt_iov_ivec(context
, crypto
, usage
,
457 iov
, sizeof(iov
)/sizeof(iov
[0]), NULL
);
459 krb5_err(context
, 1, ret
, "krb_enc_iov decrypt iov failed: %d", ret
);
461 if (clear
->length
!= iov
[2].data
.length
)
462 errx(1, "length incorrect");
465 if (memcmp(iov
[2].data
.data
, p
, iov
[2].data
.length
) != 0)
466 errx(1, "iov[2] incorrect");
468 free(iov
[0].data
.data
);
469 free(iov
[1].data
.data
);
470 free(iov
[2].data
.data
);
477 krb_checksum_iov(krb5_context context
,
482 krb5_crypto_iov iov
[4];
490 iov
[0].flags
= KRB5_CRYPTO_TYPE_CHECKSUM
;
491 krb5_crypto_length(context
, crypto
, iov
[0].flags
, &iov
[0].data
.length
);
492 iov
[0].data
.data
= emalloc(iov
[0].data
.length
);
494 iov
[1].flags
= KRB5_CRYPTO_TYPE_DATA
;
495 iov
[1].data
.length
= len
;
496 iov
[1].data
.data
= p
;
498 iov
[2].flags
= KRB5_CRYPTO_TYPE_TRAILER
;
499 krb5_crypto_length(context
, crypto
, iov
[0].flags
, &iov
[2].data
.length
);
500 iov
[2].data
.data
= malloc(iov
[2].data
.length
);
502 ret
= krb5_create_checksum_iov(context
, crypto
, usage
,
503 iov
, sizeof(iov
)/sizeof(iov
[0]), NULL
);
505 krb5_err(context
, 1, ret
, "krb5_create_checksum_iov failed");
507 ret
= krb5_verify_checksum_iov(context
, crypto
, usage
, iov
, sizeof(iov
)/sizeof(iov
[0]), NULL
);
509 krb5_err(context
, 1, ret
, "krb5_verify_checksum_iov");
511 free(iov
[0].data
.data
);
512 free(iov
[2].data
.data
);
519 krb_enc_mit(krb5_context context
,
520 krb5_enctype enctype
,
526 #ifndef HEIMDAL_SMALLER
534 e
.ciphertext
= *cipher
;
536 ret
= krb5_c_decrypt(context
, *key
, usage
, NULL
, &e
, &decrypt
);
540 if (decrypt
.length
!= clear
->length
||
541 memcmp(decrypt
.data
, clear
->data
, decrypt
.length
) != 0) {
542 krb5_warnx(context
, "clear text not same");
546 krb5_data_free(&decrypt
);
548 ret
= krb5_c_encrypt_length(context
, enctype
, clear
->length
, &len
);
552 if (len
!= cipher
->length
) {
553 krb5_warnx(context
, "c_encrypt_length wrong %lu != %lu",
554 (unsigned long)len
, (unsigned long)cipher
->length
);
557 #endif /* HEIMDAL_SMALLER */
563 krb5_enctype enctype
;
573 ETYPE_AES256_CTS_HMAC_SHA1_96
,
576 "\x47\x75\x69\x64\x65\x6c\x69\x6e\x65\x73\x20\x74\x6f\x20\x41\x75"
577 "\x74\x68\x6f\x72\x73\x20\x6f\x66\x20\x49\x6e\x74\x65\x72\x6e\x65",
579 "\xcf\x79\x8f\x0d\x76\xf3\xe0\xbe\x8e\x66\x94\x70\xfa\xcc\x9e\x91"
580 "\xa9\xec\x1c\x5c\x21\xfb\x6e\xef\x1a\x7a\xc8\xc1\xcc\x5a\x95\x24"
581 "\x6f\x9f\xf4\xd5\xbe\x5d\x59\x97\x44\xd8\x47\xcd",
583 "\x54\x68\x69\x73\x20\x69\x73\x20\x61\x20\x74\x65\x73\x74\x2e\x0a"
589 krb_enc_test(krb5_context context
)
594 krb5_data cipher
, plain
;
597 for (i
= 0; i
< sizeof(krbencs
)/sizeof(krbencs
[0]); i
++) {
599 kb
.keytype
= krbencs
[i
].enctype
;
600 kb
.keyvalue
.length
= krbencs
[i
].keylen
;
601 kb
.keyvalue
.data
= krbencs
[i
].key
;
603 ret
= krb5_crypto_init(context
, &kb
, krbencs
[i
].enctype
, &crypto
);
605 cipher
.length
= krbencs
[i
].elen
;
606 cipher
.data
= krbencs
[i
].edata
;
607 plain
.length
= krbencs
[i
].plen
;
608 plain
.data
= krbencs
[i
].pdata
;
610 ret
= krb_enc(context
, crypto
, krbencs
[i
].usage
, &cipher
, &plain
);
613 errx(1, "krb_enc failed with %d for test %d", ret
, i
);
615 ret
= krb_enc_iov(context
, crypto
, krbencs
[i
].usage
, &cipher
, &plain
);
617 errx(1, "krb_enc_iov failed with %d for test %d", ret
, i
);
619 ret
= krb_enc_iov2(context
, crypto
, krbencs
[i
].usage
,
620 cipher
.length
, &plain
);
622 errx(1, "krb_enc_iov2 failed with %d for test %d", ret
, i
);
624 ret
= krb_checksum_iov(context
, crypto
, krbencs
[i
].usage
, &plain
);
626 errx(1, "krb_checksum_iov failed with %d for test %d", ret
, i
);
628 krb5_crypto_destroy(context
, crypto
);
630 ret
= krb_enc_mit(context
, krbencs
[i
].enctype
, &kb
,
631 krbencs
[i
].usage
, &cipher
, &plain
);
633 errx(1, "krb_enc_mit failed with %d for test %d", ret
, i
);
640 iov_test(krb5_context context
)
642 krb5_enctype enctype
= KRB5_ENCTYPE_AES256_CTS_HMAC_SHA1_96
;
646 krb5_data signonly
, in
, in2
;
647 krb5_crypto_iov iov
[6];
649 unsigned char *base
, *p
;
651 ret
= krb5_generate_random_keyblock(context
, enctype
, &key
);
653 krb5_err(context
, 1, ret
, "krb5_generate_random_keyblock");
655 ret
= krb5_crypto_init(context
, &key
, 0, &crypto
);
657 krb5_err(context
, 1, ret
, "krb5_crypto_init");
660 ret
= krb5_crypto_length(context
, crypto
, KRB5_CRYPTO_TYPE_HEADER
, &len
);
662 krb5_err(context
, 1, ret
, "krb5_crypto_length");
664 signonly
.data
= "This should be signed";
665 signonly
.length
= strlen(signonly
.data
);
666 in
.data
= "inputdata";
667 in
.length
= strlen(in
.data
);
669 in2
.data
= "INPUTDATA";
670 in2
.length
= strlen(in2
.data
);
673 memset(iov
, 0, sizeof(iov
));
675 iov
[0].flags
= KRB5_CRYPTO_TYPE_HEADER
;
676 iov
[1].flags
= KRB5_CRYPTO_TYPE_DATA
;
678 iov
[2].flags
= KRB5_CRYPTO_TYPE_SIGN_ONLY
;
679 iov
[2].data
= signonly
;
680 iov
[3].flags
= KRB5_CRYPTO_TYPE_EMPTY
;
681 iov
[4].flags
= KRB5_CRYPTO_TYPE_PADDING
;
682 iov
[5].flags
= KRB5_CRYPTO_TYPE_TRAILER
;
684 ret
= krb5_crypto_length_iov(context
, crypto
, iov
,
685 sizeof(iov
)/sizeof(iov
[0]));
687 krb5_err(context
, 1, ret
, "krb5_crypto_length_iov");
689 for (len
= 0, i
= 0; i
< sizeof(iov
)/sizeof(iov
[0]); i
++) {
690 if (iov
[i
].flags
== KRB5_CRYPTO_TYPE_SIGN_ONLY
)
692 len
+= iov
[i
].data
.length
;
698 * Allocate data for the fields
701 for (p
= base
, i
= 0; i
< sizeof(iov
)/sizeof(iov
[0]); i
++) {
702 if (iov
[i
].flags
== KRB5_CRYPTO_TYPE_SIGN_ONLY
)
704 iov
[i
].data
.data
= p
;
705 p
+= iov
[i
].data
.length
;
707 assert(iov
[1].data
.length
== in
.length
);
708 memcpy(iov
[1].data
.data
, in
.data
, iov
[1].data
.length
);
714 ret
= krb5_encrypt_iov_ivec(context
, crypto
, 7, iov
,
715 sizeof(iov
)/sizeof(iov
[0]), NULL
);
717 krb5_err(context
, 1, ret
, "krb5_encrypt_iov_ivec");
723 ret
= krb5_decrypt_iov_ivec(context
, crypto
, 7,
724 iov
, sizeof(iov
)/sizeof(iov
[0]), NULL
);
726 krb5_err(context
, 1, ret
, "krb5_decrypt_iov_ivec");
732 if (krb5_data_cmp(&iov
[1].data
, &in
) != 0)
733 krb5_errx(context
, 1, "decrypted data not same");
741 /* Set up for second try */
743 iov
[3].flags
= KRB5_CRYPTO_TYPE_DATA
;
746 ret
= krb5_crypto_length_iov(context
, crypto
,
747 iov
, sizeof(iov
)/sizeof(iov
[0]));
749 krb5_err(context
, 1, ret
, "krb5_crypto_length_iov");
751 for (len
= 0, i
= 0; i
< sizeof(iov
)/sizeof(iov
[0]); i
++) {
752 if (iov
[i
].flags
== KRB5_CRYPTO_TYPE_SIGN_ONLY
)
754 len
+= iov
[i
].data
.length
;
760 * Allocate data for the fields
763 for (p
= base
, i
= 0; i
< sizeof(iov
)/sizeof(iov
[0]); i
++) {
764 if (iov
[i
].flags
== KRB5_CRYPTO_TYPE_SIGN_ONLY
)
766 iov
[i
].data
.data
= p
;
767 p
+= iov
[i
].data
.length
;
769 assert(iov
[1].data
.length
== in
.length
);
770 memcpy(iov
[1].data
.data
, in
.data
, iov
[1].data
.length
);
772 assert(iov
[3].data
.length
== in2
.length
);
773 memcpy(iov
[3].data
.data
, in2
.data
, iov
[3].data
.length
);
781 ret
= krb5_encrypt_iov_ivec(context
, crypto
, 7,
782 iov
, sizeof(iov
)/sizeof(iov
[0]), NULL
);
784 krb5_err(context
, 1, ret
, "krb5_encrypt_iov_ivec");
790 ret
= krb5_decrypt_iov_ivec(context
, crypto
, 7,
791 iov
, sizeof(iov
)/sizeof(iov
[0]), NULL
);
793 krb5_err(context
, 1, ret
, "krb5_decrypt_iov_ivec");
799 if (krb5_data_cmp(&iov
[1].data
, &in
) != 0)
800 krb5_errx(context
, 1, "decrypted data 2.1 not same");
802 if (krb5_data_cmp(&iov
[3].data
, &in2
) != 0)
803 krb5_errx(context
, 1, "decrypted data 2.2 not same");
811 krb5_crypto_destroy(context
, crypto
);
813 krb5_free_keyblock_contents(context
, &key
);
821 random_to_key(krb5_context context
)
826 ret
= krb5_random_to_key(context
,
828 "\x21\x39\x04\x58\x6A\xBD\x7F"
829 "\x21\x39\x04\x58\x6A\xBD\x7F"
830 "\x21\x39\x04\x58\x6A\xBD\x7F",
834 krb5_warn(context
, ret
, "random_to_key");
837 if (key
.keyvalue
.length
!= 24)
840 if (memcmp(key
.keyvalue
.data
,
841 "\x20\x38\x04\x58\x6b\xbc\x7f\xc7"
842 "\x20\x38\x04\x58\x6b\xbc\x7f\xc7"
843 "\x20\x38\x04\x58\x6b\xbc\x7f\xc7",
847 krb5_free_keyblock_contents(context
, &key
);
853 main(int argc
, char **argv
)
856 krb5_context context
;
859 if (argc
> 1 && strcmp(argv
[1], "-v") == 0)
862 ret
= krb5_init_context (&context
);
864 errx (1, "krb5_init_context failed: %d", ret
);
866 val
|= string_to_key_test(context
);
868 val
|= krb_enc_test(context
);
869 val
|= random_to_key(context
);
870 val
|= iov_test(context
);
872 if (verbose
&& val
== 0)
875 printf("tests failed\n");
877 krb5_free_context(context
);