TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / aed1d7875abfc1ab9a83d0a40413a61580b51b9b / . / tests / scripts / generate_psa_tests.py
blob: 752e7cae73d743d66d0e6574003956e9eb332fb8 [file] [log] [blame]
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]1#!/usr/bin/env python3
2"""Generate test data for PSA cryptographic mechanisms.
Gilles Peskine0298bda2021-03-10 02:34:37 +0100[diff] [blame]3
4With no arguments, generate all test data. With non-option arguments,
5generate only the specified files.
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]6"""
7
8# Copyright The Mbed TLS Contributors
9# SPDX-License-Identifier: Apache-2.0
10#
11# Licensed under the Apache License, Version 2.0 (the "License"); you may
12# not use this file except in compliance with the License.
13# You may obtain a copy of the License at
14#
15# http://www.apache.org/licenses/LICENSE-2.0
16#
17# Unless required by applicable law or agreed to in writing, software
18# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
19# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
20# See the License for the specific language governing permissions and
21# limitations under the License.
22
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]23import enum
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]24import re
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]25import sys
Werner Lewisfbb75e32022-08-24 11:30:03 +0100[diff] [blame]26from typing import Callable, Dict, FrozenSet, Iterable, Iterator, List, Optional
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]27
28import scripts_path # pylint: disable=unused-import
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]29from mbedtls_dev import crypto_knowledge
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]30from mbedtls_dev import macro_collector
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]31from mbedtls_dev import psa_storage
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]32from mbedtls_dev import test_case
Gilles Peskine64f2efd2022-09-16 21:41:47 +0200[diff] [blame]33from mbedtls_dev import test_data_generation
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]34
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]35
Gilles Peskine7f756872021-02-16 12:13:12 +0100[diff] [blame]36def psa_want_symbol(name: str) -> str:
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]37 """Return the PSA_WANT_xxx symbol associated with a PSA crypto feature."""
38 if name.startswith('PSA_'):
39 return name[:4] + 'WANT_' + name[4:]
40 else:
41 raise ValueError('Unable to determine the PSA_WANT_ symbol for ' + name)
42
Gilles Peskine7f756872021-02-16 12:13:12 +0100[diff] [blame]43def finish_family_dependency(dep: str, bits: int) -> str:
44 """Finish dep if it's a family dependency symbol prefix.
45
46 A family dependency symbol prefix is a PSA_WANT_ symbol that needs to be
47 qualified by the key size. If dep is such a symbol, finish it by adjusting
48 the prefix and appending the key size. Other symbols are left unchanged.
49 """
50 return re.sub(r'_FAMILY_(.*)', r'_\1_' + str(bits), dep)
51
52def finish_family_dependencies(dependencies: List[str], bits: int) -> List[str]:
53 """Finish any family dependency symbol prefixes.
54
55 Apply `finish_family_dependency` to each element of `dependencies`.
56 """
57 return [finish_family_dependency(dep, bits) for dep in dependencies]
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]58
Gilles Peskinec5d086f2021-04-20 23:23:45 +0200[diff] [blame]59SYMBOLS_WITHOUT_DEPENDENCY = frozenset([
60 'PSA_ALG_AEAD_WITH_AT_LEAST_THIS_LENGTH_TAG', # modifier, only in policies
61 'PSA_ALG_AEAD_WITH_SHORTENED_TAG', # modifier
62 'PSA_ALG_ANY_HASH', # only in policies
63 'PSA_ALG_AT_LEAST_THIS_LENGTH_MAC', # modifier, only in policies
64 'PSA_ALG_KEY_AGREEMENT', # chaining
65 'PSA_ALG_TRUNCATED_MAC', # modifier
66])
Gilles Peskinef8223ab2021-03-10 15:07:16 +0100[diff] [blame]67def automatic_dependencies(*expressions: str) -> List[str]:
68 """Infer dependencies of a test case by looking for PSA_xxx symbols.
69
70 The arguments are strings which should be C expressions. Do not use
71 string literals or comments as this function is not smart enough to
72 skip them.
73 """
74 used = set()
75 for expr in expressions:
76 used.update(re.findall(r'PSA_(?:ALG|ECC_FAMILY|KEY_TYPE)_\w+', expr))
Gilles Peskinec5d086f2021-04-20 23:23:45 +0200[diff] [blame]77 used.difference_update(SYMBOLS_WITHOUT_DEPENDENCY)
Gilles Peskinef8223ab2021-03-10 15:07:16 +0100[diff] [blame]78 return sorted(psa_want_symbol(name) for name in used)
79
Gilles Peskined169d602021-02-16 14:16:25 +0100[diff] [blame]80# A temporary hack: at the time of writing, not all dependency symbols
81# are implemented yet. Skip test cases for which the dependency symbols are
82# not available. Once all dependency symbols are available, this hack must
Tom Cosgrove1797b052022-12-04 17:19:59 +0000[diff] [blame]83# be removed so that a bug in the dependency symbols properly leads to a test
Gilles Peskined169d602021-02-16 14:16:25 +0100[diff] [blame]84# failure.
85def read_implemented_dependencies(filename: str) -> FrozenSet[str]:
86 return frozenset(symbol
87 for line in open(filename)
88 for symbol in re.findall(r'\bPSA_WANT_\w+\b', line))
Gilles Peskinec86f20a2021-04-22 00:20:47 +0200[diff] [blame]89_implemented_dependencies = None #type: Optional[FrozenSet[str]] #pylint: disable=invalid-name
Gilles Peskined169d602021-02-16 14:16:25 +0100[diff] [blame]90def hack_dependencies_not_implemented(dependencies: List[str]) -> None:
Gilles Peskinec86f20a2021-04-22 00:20:47 +0200[diff] [blame]91 global _implemented_dependencies #pylint: disable=global-statement,invalid-name
92 if _implemented_dependencies is None:
93 _implemented_dependencies = \
94 read_implemented_dependencies('include/psa/crypto_config.h')
Przemyslaw Stekielba20fc92021-10-22 10:39:56 +0200[diff] [blame]95 if not all((dep.lstrip('!') in _implemented_dependencies or 'PSA_WANT' not in dep)
Gilles Peskined169d602021-02-16 14:16:25 +0100[diff] [blame]96 for dep in dependencies):
97 dependencies.append('DEPENDENCY_NOT_IMPLEMENTED_YET')
98
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]99
Gilles Peskineb94ea512021-03-10 02:12:08 +0100[diff] [blame]100class Information:
101 """Gather information about PSA constructors."""
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]102
Gilles Peskineb94ea512021-03-10 02:12:08 +0100[diff] [blame]103 def __init__(self) -> None:
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]104 self.constructors = self.read_psa_interface()
105
106 @staticmethod
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]107 def remove_unwanted_macros(
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]108 constructors: macro_collector.PSAMacroEnumerator
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]109 ) -> None:
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]110 # Mbed TLS doesn't support finite-field DH yet and will not support
111 # finite-field DSA. Don't attempt to generate any related test case.
112 constructors.key_types.discard('PSA_KEY_TYPE_DH_KEY_PAIR')
113 constructors.key_types.discard('PSA_KEY_TYPE_DH_PUBLIC_KEY')
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]114 constructors.key_types.discard('PSA_KEY_TYPE_DSA_KEY_PAIR')
115 constructors.key_types.discard('PSA_KEY_TYPE_DSA_PUBLIC_KEY')
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]116
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]117 def read_psa_interface(self) -> macro_collector.PSAMacroEnumerator:
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]118 """Return the list of known key types, algorithms, etc."""
Gilles Peskine3d404b82021-03-30 21:46:35 +0200[diff] [blame]119 constructors = macro_collector.InputsForTest()
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]120 header_file_names = ['include/psa/crypto_values.h',
121 'include/psa/crypto_extra.h']
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]122 test_suites = ['tests/suites/test_suite_psa_crypto_metadata.data']
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]123 for header_file_name in header_file_names:
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]124 constructors.parse_header(header_file_name)
125 for test_cases in test_suites:
126 constructors.parse_test_cases(test_cases)
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]127 self.remove_unwanted_macros(constructors)
Gilles Peskine3d404b82021-03-30 21:46:35 +0200[diff] [blame]128 constructors.gather_arguments()
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]129 return constructors
130
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]131
Przemyslaw Stekielb576c7b2021-10-11 10:15:25 +0200[diff] [blame]132def test_case_for_key_type_not_supported(
Gilles Peskineb94ea512021-03-10 02:12:08 +0100[diff] [blame]133 verb: str, key_type: str, bits: int,
134 dependencies: List[str],
135 *args: str,
136 param_descr: str = ''
137) -> test_case.TestCase:
138 """Return one test case exercising a key creation method
139 for an unsupported key type or size.
140 """
141 hack_dependencies_not_implemented(dependencies)
142 tc = test_case.TestCase()
Gilles Peskinee8e058c2022-03-17 23:42:25 +0100[diff] [blame]143 short_key_type = crypto_knowledge.short_expression(key_type)
Gilles Peskineb94ea512021-03-10 02:12:08 +0100[diff] [blame]144 adverb = 'not' if dependencies else 'never'
145 if param_descr:
146 adverb = param_descr + ' ' + adverb
Przemyslaw Stekielb576c7b2021-10-11 10:15:25 +0200[diff] [blame]147 tc.set_description('PSA {} {} {}-bit {} supported'
148 .format(verb, short_key_type, bits, adverb))
149 tc.set_dependencies(dependencies)
150 tc.set_function(verb + '_not_supported')
151 tc.set_arguments([key_type] + list(args))
152 return tc
153
Gilles Peskine0e9e4422022-12-15 22:14:28 +0100[diff] [blame]154class KeyTypeNotSupported:
155 """Generate test cases for when a key type is not supported."""
Gilles Peskineb94ea512021-03-10 02:12:08 +0100[diff] [blame]156
157 def __init__(self, info: Information) -> None:
158 self.constructors = info.constructors
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]159
Gilles Peskine60b29fe2021-02-16 14:06:50 +0100[diff] [blame]160 ALWAYS_SUPPORTED = frozenset([
161 'PSA_KEY_TYPE_DERIVE',
Gilles Peskinebba26302022-12-15 23:25:17 +0100[diff] [blame]162 'PSA_KEY_TYPE_PASSWORD',
163 'PSA_KEY_TYPE_PASSWORD_HASH',
Gilles Peskine60b29fe2021-02-16 14:06:50 +0100[diff] [blame]164 'PSA_KEY_TYPE_RAW_DATA',
Przemek Stekiel1068c222022-05-05 11:52:30 +0200[diff] [blame]165 'PSA_KEY_TYPE_HMAC'
Gilles Peskine60b29fe2021-02-16 14:06:50 +0100[diff] [blame]166 ])
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]167 def test_cases_for_key_type_not_supported(
Gilles Peskine60b29fe2021-02-16 14:06:50 +0100[diff] [blame]168 self,
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]169 kt: crypto_knowledge.KeyType,
170 param: Optional[int] = None,
171 param_descr: str = '',
Gilles Peskine3d778392021-02-17 15:11:05 +0100[diff] [blame]172 ) -> Iterator[test_case.TestCase]:
Przemyslaw Stekiel8d468e42021-10-18 14:58:20 +0200[diff] [blame]173 """Return test cases exercising key creation when the given type is unsupported.
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]174
175 If param is present and not None, emit test cases conditioned on this
176 parameter not being supported. If it is absent or None, emit test cases
Przemyslaw Stekiel8d468e42021-10-18 14:58:20 +0200[diff] [blame]177 conditioned on the base type not being supported.
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]178 """
Gilles Peskine60b29fe2021-02-16 14:06:50 +0100[diff] [blame]179 if kt.name in self.ALWAYS_SUPPORTED:
180 # Don't generate test cases for key types that are always supported.
181 # They would be skipped in all configurations, which is noise.
Gilles Peskine3d778392021-02-17 15:11:05 +0100[diff] [blame]182 return
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]183 import_dependencies = [('!' if param is None else '') +
184 psa_want_symbol(kt.name)]
185 if kt.params is not None:
186 import_dependencies += [('!' if param == i else '') +
187 psa_want_symbol(sym)
188 for i, sym in enumerate(kt.params)]
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]189 if kt.name.endswith('_PUBLIC_KEY'):
190 generate_dependencies = []
191 else:
192 generate_dependencies = import_dependencies
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]193 for bits in kt.sizes_to_test():
Przemyslaw Stekielb576c7b2021-10-11 10:15:25 +0200[diff] [blame]194 yield test_case_for_key_type_not_supported(
Gilles Peskine7f756872021-02-16 12:13:12 +0100[diff] [blame]195 'import', kt.expression, bits,
196 finish_family_dependencies(import_dependencies, bits),
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]197 test_case.hex_string(kt.key_material(bits)),
198 param_descr=param_descr,
Gilles Peskine3d778392021-02-17 15:11:05 +0100[diff] [blame]199 )
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]200 if not generate_dependencies and param is not None:
201 # If generation is impossible for this key type, rather than
202 # supported or not depending on implementation capabilities,
203 # only generate the test case once.
204 continue
Przemyslaw Stekiel7bc26b82021-11-02 10:50:44 +0100[diff] [blame]205 # For public key we expect that key generation fails with
206 # INVALID_ARGUMENT. It is handled by KeyGenerate class.
Gilles Peskinefa70ced2022-03-17 12:52:24 +0100[diff] [blame]207 if not kt.is_public():
Przemyslaw Stekielb576c7b2021-10-11 10:15:25 +0200[diff] [blame]208 yield test_case_for_key_type_not_supported(
209 'generate', kt.expression, bits,
210 finish_family_dependencies(generate_dependencies, bits),
211 str(bits),
212 param_descr=param_descr,
213 )
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]214 # To be added: derive
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]215
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]216 ECC_KEY_TYPES = ('PSA_KEY_TYPE_ECC_KEY_PAIR',
217 'PSA_KEY_TYPE_ECC_PUBLIC_KEY')
218
Gilles Peskine3d778392021-02-17 15:11:05 +0100[diff] [blame]219 def test_cases_for_not_supported(self) -> Iterator[test_case.TestCase]:
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]220 """Generate test cases that exercise the creation of keys of unsupported types."""
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]221 for key_type in sorted(self.constructors.key_types):
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]222 if key_type in self.ECC_KEY_TYPES:
223 continue
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]224 kt = crypto_knowledge.KeyType(key_type)
Gilles Peskine3d778392021-02-17 15:11:05 +0100[diff] [blame]225 yield from self.test_cases_for_key_type_not_supported(kt)
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]226 for curve_family in sorted(self.constructors.ecc_curves):
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]227 for constr in self.ECC_KEY_TYPES:
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]228 kt = crypto_knowledge.KeyType(constr, [curve_family])
Gilles Peskine3d778392021-02-17 15:11:05 +0100[diff] [blame]229 yield from self.test_cases_for_key_type_not_supported(
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]230 kt, param_descr='type')
Gilles Peskine3d778392021-02-17 15:11:05 +0100[diff] [blame]231 yield from self.test_cases_for_key_type_not_supported(
Gilles Peskineaf172842021-01-27 18:24:48 +0100[diff] [blame]232 kt, 0, param_descr='curve')
Gilles Peskineb94ea512021-03-10 02:12:08 +0100[diff] [blame]233
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]234def test_case_for_key_generation(
235 key_type: str, bits: int,
236 dependencies: List[str],
237 *args: str,
Przemyslaw Stekiel437da192021-10-20 11:59:50 +0200[diff] [blame]238 result: str = ''
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]239) -> test_case.TestCase:
240 """Return one test case exercising a key generation.
241 """
242 hack_dependencies_not_implemented(dependencies)
243 tc = test_case.TestCase()
Gilles Peskinee8e058c2022-03-17 23:42:25 +0100[diff] [blame]244 short_key_type = crypto_knowledge.short_expression(key_type)
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]245 tc.set_description('PSA {} {}-bit'
Przemyslaw Stekiel437da192021-10-20 11:59:50 +0200[diff] [blame]246 .format(short_key_type, bits))
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]247 tc.set_dependencies(dependencies)
248 tc.set_function('generate_key')
Przemyslaw Stekiel7bc26b82021-11-02 10:50:44 +0100[diff] [blame]249 tc.set_arguments([key_type] + list(args) + [result])
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]250
251 return tc
252
253class KeyGenerate:
254 """Generate positive and negative (invalid argument) test cases for key generation."""
255
256 def __init__(self, info: Information) -> None:
257 self.constructors = info.constructors
258
Przemyslaw Stekiel437da192021-10-20 11:59:50 +0200[diff] [blame]259 ECC_KEY_TYPES = ('PSA_KEY_TYPE_ECC_KEY_PAIR',
260 'PSA_KEY_TYPE_ECC_PUBLIC_KEY')
261
Przemyslaw Stekiel7bc26b82021-11-02 10:50:44 +0100[diff] [blame]262 @staticmethod
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]263 def test_cases_for_key_type_key_generation(
Przemyslaw Stekiel437da192021-10-20 11:59:50 +0200[diff] [blame]264 kt: crypto_knowledge.KeyType
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]265 ) -> Iterator[test_case.TestCase]:
266 """Return test cases exercising key generation.
267
268 All key types can be generated except for public keys. For public key
269 PSA_ERROR_INVALID_ARGUMENT status is expected.
270 """
271 result = 'PSA_SUCCESS'
272
273 import_dependencies = [psa_want_symbol(kt.name)]
274 if kt.params is not None:
275 import_dependencies += [psa_want_symbol(sym)
276 for i, sym in enumerate(kt.params)]
277 if kt.name.endswith('_PUBLIC_KEY'):
Przemyslaw Stekiel7bc26b82021-11-02 10:50:44 +0100[diff] [blame]278 # The library checks whether the key type is a public key generically,
279 # before it reaches a point where it needs support for the specific key
280 # type, so it returns INVALID_ARGUMENT for unsupported public key types.
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]281 generate_dependencies = []
282 result = 'PSA_ERROR_INVALID_ARGUMENT'
283 else:
284 generate_dependencies = import_dependencies
Przemyslaw Stekiel7bc26b82021-11-02 10:50:44 +0100[diff] [blame]285 if kt.name == 'PSA_KEY_TYPE_RSA_KEY_PAIR':
Przemyslaw Stekielba20fc92021-10-22 10:39:56 +0200[diff] [blame]286 generate_dependencies.append("MBEDTLS_GENPRIME")
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]287 for bits in kt.sizes_to_test():
288 yield test_case_for_key_generation(
289 kt.expression, bits,
290 finish_family_dependencies(generate_dependencies, bits),
291 str(bits),
Przemyslaw Stekiel437da192021-10-20 11:59:50 +0200[diff] [blame]292 result
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]293 )
294
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]295 def test_cases_for_key_generation(self) -> Iterator[test_case.TestCase]:
296 """Generate test cases that exercise the generation of keys."""
297 for key_type in sorted(self.constructors.key_types):
298 if key_type in self.ECC_KEY_TYPES:
299 continue
300 kt = crypto_knowledge.KeyType(key_type)
301 yield from self.test_cases_for_key_type_key_generation(kt)
302 for curve_family in sorted(self.constructors.ecc_curves):
303 for constr in self.ECC_KEY_TYPES:
304 kt = crypto_knowledge.KeyType(constr, [curve_family])
Przemyslaw Stekiel437da192021-10-20 11:59:50 +0200[diff] [blame]305 yield from self.test_cases_for_key_type_key_generation(kt)
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]306
Gilles Peskinec7e1ea02021-04-27 20:40:10 +0200[diff] [blame]307class OpFail:
308 """Generate test cases for operations that must fail."""
309 #pylint: disable=too-few-public-methods
310
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]311 class Reason(enum.Enum):
312 NOT_SUPPORTED = 0
313 INVALID = 1
314 INCOMPATIBLE = 2
Gilles Peskinee6300952021-04-29 21:56:59 +0200[diff] [blame]315 PUBLIC = 3
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]316
Gilles Peskinec7e1ea02021-04-27 20:40:10 +0200[diff] [blame]317 def __init__(self, info: Information) -> None:
318 self.constructors = info.constructors
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]319 key_type_expressions = self.constructors.generate_expressions(
320 sorted(self.constructors.key_types)
321 )
322 self.key_types = [crypto_knowledge.KeyType(kt_expr)
323 for kt_expr in key_type_expressions]
Gilles Peskinec7e1ea02021-04-27 20:40:10 +0200[diff] [blame]324
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]325 def make_test_case(
326 self,
327 alg: crypto_knowledge.Algorithm,
328 category: crypto_knowledge.AlgorithmCategory,
329 reason: 'Reason',
330 kt: Optional[crypto_knowledge.KeyType] = None,
331 not_deps: FrozenSet[str] = frozenset(),
332 ) -> test_case.TestCase:
333 """Construct a failure test case for a one-key or keyless operation."""
334 #pylint: disable=too-many-arguments,too-many-locals
Gilles Peskine8b4a3812021-04-27 21:03:43 +0200[diff] [blame]335 tc = test_case.TestCase()
Gilles Peskinee8e058c2022-03-17 23:42:25 +0100[diff] [blame]336 pretty_alg = alg.short_expression()
Gilles Peskined79e3b92021-04-29 21:35:03 +0200[diff] [blame]337 if reason == self.Reason.NOT_SUPPORTED:
338 short_deps = [re.sub(r'PSA_WANT_ALG_', r'', dep)
339 for dep in not_deps]
340 pretty_reason = '!' + '&'.join(sorted(short_deps))
341 else:
342 pretty_reason = reason.name.lower()
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]343 if kt:
344 key_type = kt.expression
Gilles Peskinee8e058c2022-03-17 23:42:25 +0100[diff] [blame]345 pretty_type = kt.short_expression()
Gilles Peskine8b4a3812021-04-27 21:03:43 +0200[diff] [blame]346 else:
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]347 key_type = ''
348 pretty_type = ''
349 tc.set_description('PSA {} {}: {}{}'
350 .format(category.name.lower(),
351 pretty_alg,
352 pretty_reason,
353 ' with ' + pretty_type if pretty_type else ''))
354 dependencies = automatic_dependencies(alg.base_expression, key_type)
355 for i, dep in enumerate(dependencies):
356 if dep in not_deps:
357 dependencies[i] = '!' + dep
Gilles Peskine8b4a3812021-04-27 21:03:43 +0200[diff] [blame]358 tc.set_dependencies(dependencies)
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]359 tc.set_function(category.name.lower() + '_fail')
David Horstmannf0c75792023-01-24 18:53:15 +0000[diff] [blame]360 arguments = [] # type: List[str]
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]361 if kt:
362 key_material = kt.key_material(kt.sizes_to_test()[0])
363 arguments += [key_type, test_case.hex_string(key_material)]
364 arguments.append(alg.expression)
Gilles Peskinee6300952021-04-29 21:56:59 +0200[diff] [blame]365 if category.is_asymmetric():
366 arguments.append('1' if reason == self.Reason.PUBLIC else '0')
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]367 error = ('NOT_SUPPORTED' if reason == self.Reason.NOT_SUPPORTED else
368 'INVALID_ARGUMENT')
369 arguments.append('PSA_ERROR_' + error)
370 tc.set_arguments(arguments)
371 return tc
Gilles Peskine8b4a3812021-04-27 21:03:43 +0200[diff] [blame]372
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]373 def no_key_test_cases(
374 self,
375 alg: crypto_knowledge.Algorithm,
376 category: crypto_knowledge.AlgorithmCategory,
377 ) -> Iterator[test_case.TestCase]:
378 """Generate failure test cases for keyless operations with the specified algorithm."""
Gilles Peskinea4013862021-04-29 20:54:40 +0200[diff] [blame]379 if alg.can_do(category):
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]380 # Compatible operation, unsupported algorithm
381 for dep in automatic_dependencies(alg.base_expression):
382 yield self.make_test_case(alg, category,
383 self.Reason.NOT_SUPPORTED,
384 not_deps=frozenset([dep]))
385 else:
386 # Incompatible operation, supported algorithm
387 yield self.make_test_case(alg, category, self.Reason.INVALID)
388
389 def one_key_test_cases(
390 self,
391 alg: crypto_knowledge.Algorithm,
392 category: crypto_knowledge.AlgorithmCategory,
393 ) -> Iterator[test_case.TestCase]:
394 """Generate failure test cases for one-key operations with the specified algorithm."""
395 for kt in self.key_types:
396 key_is_compatible = kt.can_do(alg)
Gilles Peskinea4013862021-04-29 20:54:40 +0200[diff] [blame]397 if key_is_compatible and alg.can_do(category):
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]398 # Compatible key and operation, unsupported algorithm
399 for dep in automatic_dependencies(alg.base_expression):
400 yield self.make_test_case(alg, category,
401 self.Reason.NOT_SUPPORTED,
402 kt=kt, not_deps=frozenset([dep]))
Gilles Peskinee6300952021-04-29 21:56:59 +0200[diff] [blame]403 # Public key for a private-key operation
404 if category.is_asymmetric() and kt.is_public():
405 yield self.make_test_case(alg, category,
406 self.Reason.PUBLIC,
407 kt=kt)
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]408 elif key_is_compatible:
409 # Compatible key, incompatible operation, supported algorithm
410 yield self.make_test_case(alg, category,
411 self.Reason.INVALID,
412 kt=kt)
Gilles Peskinea4013862021-04-29 20:54:40 +0200[diff] [blame]413 elif alg.can_do(category):
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]414 # Incompatible key, compatible operation, supported algorithm
415 yield self.make_test_case(alg, category,
416 self.Reason.INCOMPATIBLE,
417 kt=kt)
418 else:
419 # Incompatible key and operation. Don't test cases where
420 # multiple things are wrong, to keep the number of test
421 # cases reasonable.
422 pass
423
424 def test_cases_for_algorithm(
425 self,
426 alg: crypto_knowledge.Algorithm,
427 ) -> Iterator[test_case.TestCase]:
Gilles Peskine8b4a3812021-04-27 21:03:43 +0200[diff] [blame]428 """Generate operation failure test cases for the specified algorithm."""
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]429 for category in crypto_knowledge.AlgorithmCategory:
430 if category == crypto_knowledge.AlgorithmCategory.PAKE:
431 # PAKE operations are not implemented yet
432 pass
433 elif category.requires_key():
434 yield from self.one_key_test_cases(alg, category)
435 else:
436 yield from self.no_key_test_cases(alg, category)
Gilles Peskine8b4a3812021-04-27 21:03:43 +0200[diff] [blame]437
Gilles Peskinec7e1ea02021-04-27 20:40:10 +0200[diff] [blame]438 def all_test_cases(self) -> Iterator[test_case.TestCase]:
439 """Generate all test cases for operations that must fail."""
Gilles Peskine8b4a3812021-04-27 21:03:43 +0200[diff] [blame]440 algorithms = sorted(self.constructors.algorithms)
Gilles Peskinecba28a72022-03-15 17:26:33 +0100[diff] [blame]441 for expr in self.constructors.generate_expressions(algorithms):
442 alg = crypto_knowledge.Algorithm(expr)
Gilles Peskine8b4a3812021-04-27 21:03:43 +0200[diff] [blame]443 yield from self.test_cases_for_algorithm(alg)
Gilles Peskinec7e1ea02021-04-27 20:40:10 +0200[diff] [blame]444
445
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]446class StorageKey(psa_storage.Key):
447 """Representation of a key for storage format testing."""
448
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]449 IMPLICIT_USAGE_FLAGS = {
450 'PSA_KEY_USAGE_SIGN_HASH': 'PSA_KEY_USAGE_SIGN_MESSAGE',
451 'PSA_KEY_USAGE_VERIFY_HASH': 'PSA_KEY_USAGE_VERIFY_MESSAGE'
452 } #type: Dict[str, str]
453 """Mapping of usage flags to the flags that they imply."""
454
455 def __init__(
456 self,
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]457 usage: Iterable[str],
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]458 without_implicit_usage: Optional[bool] = False,
459 **kwargs
460 ) -> None:
461 """Prepare to generate a key.
462
463 * `usage` : The usage flags used for the key.
Tom Cosgrove1797b052022-12-04 17:19:59 +0000[diff] [blame]464 * `without_implicit_usage`: Flag to define to apply the usage extension
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]465 """
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]466 usage_flags = set(usage)
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]467 if not without_implicit_usage:
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]468 for flag in sorted(usage_flags):
469 if flag in self.IMPLICIT_USAGE_FLAGS:
470 usage_flags.add(self.IMPLICIT_USAGE_FLAGS[flag])
471 if usage_flags:
472 usage_expression = ' | '.join(sorted(usage_flags))
473 else:
474 usage_expression = '0'
475 super().__init__(usage=usage_expression, **kwargs)
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]476
477class StorageTestData(StorageKey):
478 """Representation of test case data for storage format testing."""
479
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]480 def __init__(
481 self,
482 description: str,
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]483 expected_usage: Optional[List[str]] = None,
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]484 **kwargs
485 ) -> None:
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]486 """Prepare to generate test data
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]487
Tom Cosgrove1797b052022-12-04 17:19:59 +0000[diff] [blame]488 * `description` : used for the test case names
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]489 * `expected_usage`: the usage flags generated as the expected usage flags
490 in the test cases. CAn differ from the usage flags
491 stored in the keys because of the usage flags extension.
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]492 """
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]493 super().__init__(**kwargs)
494 self.description = description #type: str
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]495 if expected_usage is None:
496 self.expected_usage = self.usage #type: psa_storage.Expr
497 elif expected_usage:
498 self.expected_usage = psa_storage.Expr(' | '.join(expected_usage))
499 else:
500 self.expected_usage = psa_storage.Expr(0)
gabor-mezei-arm7748b6f2021-06-24 10:04:38 +0200[diff] [blame]501
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]502class StorageFormat:
503 """Storage format stability test cases."""
504
505 def __init__(self, info: Information, version: int, forward: bool) -> None:
506 """Prepare to generate test cases for storage format stability.
507
508 * `info`: information about the API. See the `Information` class.
509 * `version`: the storage format version to generate test cases for.
510 * `forward`: if true, generate forward compatibility test cases which
511 save a key and check that its representation is as intended. Otherwise
512 generate backward compatibility test cases which inject a key
513 representation and check that it can be read and used.
514 """
gabor-mezei-arm7b5c4e22021-06-23 17:01:44 +0200[diff] [blame]515 self.constructors = info.constructors #type: macro_collector.PSAMacroEnumerator
516 self.version = version #type: int
517 self.forward = forward #type: bool
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]518
Gilles Peskine4bd90dc2022-03-19 12:09:13 +0100[diff] [blame]519 RSA_OAEP_RE = re.compile(r'PSA_ALG_RSA_OAEP\((.*)\)\Z')
Gilles Peskine61548d12022-03-19 15:36:09 +0100[diff] [blame]520 BRAINPOOL_RE = re.compile(r'PSA_KEY_TYPE_\w+\(PSA_ECC_FAMILY_BRAINPOOL_\w+\)\Z')
Gilles Peskine4bd90dc2022-03-19 12:09:13 +0100[diff] [blame]521 @classmethod
Gilles Peskine61548d12022-03-19 15:36:09 +0100[diff] [blame]522 def exercise_key_with_algorithm(
Gilles Peskine4bd90dc2022-03-19 12:09:13 +0100[diff] [blame]523 cls,
524 key_type: psa_storage.Expr, bits: int,
525 alg: psa_storage.Expr
526 ) -> bool:
Gilles Peskinecafda872022-12-15 23:03:19 +0100[diff] [blame]527 """Whether to exercise the given key with the given algorithm.
Gilles Peskine4bd90dc2022-03-19 12:09:13 +0100[diff] [blame]528
529 Normally only the type and algorithm matter for compatibility, and
530 this is handled in crypto_knowledge.KeyType.can_do(). This function
531 exists to detect exceptional cases. Exceptional cases detected here
532 are not tested in OpFail and should therefore have manually written
533 test cases.
534 """
Gilles Peskine61548d12022-03-19 15:36:09 +0100[diff] [blame]535 # Some test keys have the RAW_DATA type and attributes that don't
536 # necessarily make sense. We do this to validate numerical
537 # encodings of the attributes.
538 # Raw data keys have no useful exercise anyway so there is no
539 # loss of test coverage.
540 if key_type.string == 'PSA_KEY_TYPE_RAW_DATA':
541 return False
Gilles Peskine4bd90dc2022-03-19 12:09:13 +0100[diff] [blame]542 # OAEP requires room for two hashes plus wrapping
543 m = cls.RSA_OAEP_RE.match(alg.string)
544 if m:
545 hash_alg = m.group(1)
546 hash_length = crypto_knowledge.Algorithm.hash_length(hash_alg)
547 key_length = (bits + 7) // 8
548 # Leave enough room for at least one byte of plaintext
549 return key_length > 2 * hash_length + 2
Gilles Peskine61548d12022-03-19 15:36:09 +0100[diff] [blame]550 # There's nothing wrong with ECC keys on Brainpool curves,
551 # but operations with them are very slow. So we only exercise them
552 # with a single algorithm, not with all possible hashes. We do
553 # exercise other curves with all algorithms so test coverage is
554 # perfectly adequate like this.
555 m = cls.BRAINPOOL_RE.match(key_type.string)
556 if m and alg.string != 'PSA_ALG_ECDSA_ANY':
557 return False
Gilles Peskine4bd90dc2022-03-19 12:09:13 +0100[diff] [blame]558 return True
559
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]560 def make_test_case(self, key: StorageTestData) -> test_case.TestCase:
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]561 """Construct a storage format test case for the given key.
562
563 If ``forward`` is true, generate a forward compatibility test case:
564 create a key and validate that it has the expected representation.
565 Otherwise generate a backward compatibility test case: inject the
566 key representation into storage and validate that it can be read
567 correctly.
568 """
569 verb = 'save' if self.forward else 'read'
570 tc = test_case.TestCase()
Gilles Peskine16b25062022-03-18 00:02:15 +0100[diff] [blame]571 tc.set_description(verb + ' ' + key.description)
Gilles Peskinef8223ab2021-03-10 15:07:16 +0100[diff] [blame]572 dependencies = automatic_dependencies(
573 key.lifetime.string, key.type.string,
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]574 key.alg.string, key.alg2.string,
Gilles Peskinef8223ab2021-03-10 15:07:16 +0100[diff] [blame]575 )
576 dependencies = finish_family_dependencies(dependencies, key.bits)
577 tc.set_dependencies(dependencies)
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]578 tc.set_function('key_storage_' + verb)
579 if self.forward:
580 extra_arguments = []
581 else:
Gilles Peskine45f1cd72021-04-21 20:11:33 +0200[diff] [blame]582 flags = []
Gilles Peskine61548d12022-03-19 15:36:09 +0100[diff] [blame]583 if self.exercise_key_with_algorithm(key.type, key.bits, key.alg):
Gilles Peskine45f1cd72021-04-21 20:11:33 +0200[diff] [blame]584 flags.append('TEST_FLAG_EXERCISE')
585 if 'READ_ONLY' in key.lifetime.string:
586 flags.append('TEST_FLAG_READ_ONLY')
587 extra_arguments = [' | '.join(flags) if flags else '0']
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]588 tc.set_arguments([key.lifetime.string,
589 key.type.string, str(key.bits),
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]590 key.expected_usage.string,
591 key.alg.string, key.alg2.string,
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]592 '"' + key.material.hex() + '"',
593 '"' + key.hex() + '"',
594 *extra_arguments])
595 return tc
596
Gilles Peskineeb7bdaa2021-04-21 22:05:34 +0200[diff] [blame]597 def key_for_lifetime(
598 self,
599 lifetime: str,
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]600 ) -> StorageTestData:
Gilles Peskineeb7bdaa2021-04-21 22:05:34 +0200[diff] [blame]601 """Construct a test key for the given lifetime."""
602 short = lifetime
603 short = re.sub(r'PSA_KEY_LIFETIME_FROM_PERSISTENCE_AND_LOCATION',
604 r'', short)
Gilles Peskinee8e058c2022-03-17 23:42:25 +0100[diff] [blame]605 short = crypto_knowledge.short_expression(short)
Gilles Peskineeb7bdaa2021-04-21 22:05:34 +0200[diff] [blame]606 description = 'lifetime: ' + short
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]607 key = StorageTestData(version=self.version,
608 id=1, lifetime=lifetime,
609 type='PSA_KEY_TYPE_RAW_DATA', bits=8,
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]610 usage=['PSA_KEY_USAGE_EXPORT'], alg=0, alg2=0,
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]611 material=b'L',
612 description=description)
613 return key
Gilles Peskineeb7bdaa2021-04-21 22:05:34 +0200[diff] [blame]614
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]615 def all_keys_for_lifetimes(self) -> Iterator[StorageTestData]:
Gilles Peskineeb7bdaa2021-04-21 22:05:34 +0200[diff] [blame]616 """Generate test keys covering lifetimes."""
617 lifetimes = sorted(self.constructors.lifetimes)
618 expressions = self.constructors.generate_expressions(lifetimes)
619 for lifetime in expressions:
620 # Don't attempt to create or load a volatile key in storage
621 if 'VOLATILE' in lifetime:
622 continue
623 # Don't attempt to create a read-only key in storage,
624 # but do attempt to load one.
625 if 'READ_ONLY' in lifetime and self.forward:
626 continue
gabor-mezei-arm340fbf32021-06-28 19:26:55 +0200[diff] [blame]627 yield self.key_for_lifetime(lifetime)
Gilles Peskineeb7bdaa2021-04-21 22:05:34 +0200[diff] [blame]628
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]629 def key_for_usage_flags(
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]630 self,
631 usage_flags: List[str],
gabor-mezei-arm6ee72532021-06-24 09:42:02 +0200[diff] [blame]632 short: Optional[str] = None,
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]633 test_implicit_usage: Optional[bool] = True
634 ) -> StorageTestData:
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]635 """Construct a test key for the given key usage."""
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]636 extra_desc = ' without implication' if test_implicit_usage else ''
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]637 description = 'usage' + extra_desc + ': '
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]638 key1 = StorageTestData(version=self.version,
639 id=1, lifetime=0x00000001,
640 type='PSA_KEY_TYPE_RAW_DATA', bits=8,
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]641 expected_usage=usage_flags,
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]642 without_implicit_usage=not test_implicit_usage,
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]643 usage=usage_flags, alg=0, alg2=0,
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]644 material=b'K',
645 description=description)
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]646 if short is None:
Gilles Peskinee8e058c2022-03-17 23:42:25 +0100[diff] [blame]647 usage_expr = key1.expected_usage.string
648 key1.description += crypto_knowledge.short_expression(usage_expr)
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]649 else:
650 key1.description += short
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]651 return key1
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]652
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]653 def generate_keys_for_usage_flags(self, **kwargs) -> Iterator[StorageTestData]:
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]654 """Generate test keys covering usage flags."""
655 known_flags = sorted(self.constructors.key_usage_flags)
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]656 yield self.key_for_usage_flags(['0'], **kwargs)
gabor-mezei-arm340fbf32021-06-28 19:26:55 +0200[diff] [blame]657 for usage_flag in known_flags:
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]658 yield self.key_for_usage_flags([usage_flag], **kwargs)
gabor-mezei-arm340fbf32021-06-28 19:26:55 +0200[diff] [blame]659 for flag1, flag2 in zip(known_flags,
660 known_flags[1:] + [known_flags[0]]):
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]661 yield self.key_for_usage_flags([flag1, flag2], **kwargs)
gabor-mezei-arm49d6ea92021-06-24 14:38:51 +0200[diff] [blame]662
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]663 def generate_key_for_all_usage_flags(self) -> Iterator[StorageTestData]:
gabor-mezei-arm49d6ea92021-06-24 14:38:51 +0200[diff] [blame]664 known_flags = sorted(self.constructors.key_usage_flags)
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]665 yield self.key_for_usage_flags(known_flags, short='all known')
gabor-mezei-arm49d6ea92021-06-24 14:38:51 +0200[diff] [blame]666
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]667 def all_keys_for_usage_flags(self) -> Iterator[StorageTestData]:
gabor-mezei-arm340fbf32021-06-28 19:26:55 +0200[diff] [blame]668 yield from self.generate_keys_for_usage_flags()
669 yield from self.generate_key_for_all_usage_flags()
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]670
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]671 def key_for_type_and_alg(
672 self,
673 kt: crypto_knowledge.KeyType,
674 bits: int,
675 alg: Optional[crypto_knowledge.Algorithm] = None,
676 ) -> StorageTestData:
677 """Construct a test key of the given type.
678
679 If alg is not None, this key allows it.
680 """
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]681 usage_flags = ['PSA_KEY_USAGE_EXPORT']
Gilles Peskinee6b85b42022-03-18 09:58:09 +0100[diff] [blame]682 alg1 = 0 #type: psa_storage.Exprable
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]683 alg2 = 0
Gilles Peskinee6b85b42022-03-18 09:58:09 +0100[diff] [blame]684 if alg is not None:
685 alg1 = alg.expression
686 usage_flags += alg.usage_flags(public=kt.is_public())
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]687 key_material = kt.key_material(bits)
Gilles Peskine16b25062022-03-18 00:02:15 +0100[diff] [blame]688 description = 'type: {} {}-bit'.format(kt.short_expression(1), bits)
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]689 if alg is not None:
Gilles Peskine16b25062022-03-18 00:02:15 +0100[diff] [blame]690 description += ', ' + alg.short_expression(1)
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]691 key = StorageTestData(version=self.version,
692 id=1, lifetime=0x00000001,
693 type=kt.expression, bits=bits,
694 usage=usage_flags, alg=alg1, alg2=alg2,
695 material=key_material,
696 description=description)
697 return key
698
Gilles Peskinef8223ab2021-03-10 15:07:16 +0100[diff] [blame]699 def keys_for_type(
700 self,
701 key_type: str,
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]702 all_algorithms: List[crypto_knowledge.Algorithm],
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]703 ) -> Iterator[StorageTestData]:
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]704 """Generate test keys for the given key type."""
705 kt = crypto_knowledge.KeyType(key_type)
Gilles Peskinef8223ab2021-03-10 15:07:16 +0100[diff] [blame]706 for bits in kt.sizes_to_test():
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]707 # Test a non-exercisable key, as well as exercisable keys for
708 # each compatible algorithm.
709 # To do: test reading a key from storage with an incompatible
710 # or unsupported algorithm.
711 yield self.key_for_type_and_alg(kt, bits)
712 compatible_algorithms = [alg for alg in all_algorithms
713 if kt.can_do(alg)]
714 for alg in compatible_algorithms:
715 yield self.key_for_type_and_alg(kt, bits, alg)
Gilles Peskinef8223ab2021-03-10 15:07:16 +0100[diff] [blame]716
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]717 def all_keys_for_types(self) -> Iterator[StorageTestData]:
Gilles Peskinef8223ab2021-03-10 15:07:16 +0100[diff] [blame]718 """Generate test keys covering key types and their representations."""
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]719 key_types = sorted(self.constructors.key_types)
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]720 all_algorithms = [crypto_knowledge.Algorithm(alg)
721 for alg in self.constructors.generate_expressions(
722 sorted(self.constructors.algorithms)
723 )]
gabor-mezei-arm340fbf32021-06-28 19:26:55 +0200[diff] [blame]724 for key_type in self.constructors.generate_expressions(key_types):
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]725 yield from self.keys_for_type(key_type, all_algorithms)
Gilles Peskinef8223ab2021-03-10 15:07:16 +0100[diff] [blame]726
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]727 def keys_for_algorithm(self, alg: str) -> Iterator[StorageTestData]:
Gilles Peskine7de7c102021-04-29 22:28:07 +0200[diff] [blame]728 """Generate test keys for the encoding of the specified algorithm."""
729 # These test cases only validate the encoding of algorithms, not
730 # whether the key read from storage is suitable for an operation.
731 # `keys_for_types` generate read tests with an algorithm and a
732 # compatible key.
Gilles Peskine16b25062022-03-18 00:02:15 +0100[diff] [blame]733 descr = crypto_knowledge.short_expression(alg, 1)
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]734 usage = ['PSA_KEY_USAGE_EXPORT']
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]735 key1 = StorageTestData(version=self.version,
736 id=1, lifetime=0x00000001,
737 type='PSA_KEY_TYPE_RAW_DATA', bits=8,
738 usage=usage, alg=alg, alg2=0,
739 material=b'K',
740 description='alg: ' + descr)
741 yield key1
742 key2 = StorageTestData(version=self.version,
743 id=1, lifetime=0x00000001,
744 type='PSA_KEY_TYPE_RAW_DATA', bits=8,
745 usage=usage, alg=0, alg2=alg,
746 material=b'L',
747 description='alg2: ' + descr)
748 yield key2
Gilles Peskined86bc522021-03-10 15:08:57 +0100[diff] [blame]749
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]750 def all_keys_for_algorithms(self) -> Iterator[StorageTestData]:
Gilles Peskined86bc522021-03-10 15:08:57 +0100[diff] [blame]751 """Generate test keys covering algorithm encodings."""
Gilles Peskine537d5fa2021-04-19 13:50:25 +0200[diff] [blame]752 algorithms = sorted(self.constructors.algorithms)
gabor-mezei-arm340fbf32021-06-28 19:26:55 +0200[diff] [blame]753 for alg in self.constructors.generate_expressions(algorithms):
754 yield from self.keys_for_algorithm(alg)
Gilles Peskined86bc522021-03-10 15:08:57 +0100[diff] [blame]755
gabor-mezei-arm0c24edd2021-06-29 15:42:57 +0200[diff] [blame]756 def generate_all_keys(self) -> Iterator[StorageTestData]:
gabor-mezei-arm780cf9d2021-06-24 09:49:50 +0200[diff] [blame]757 """Generate all keys for the test cases."""
gabor-mezei-arm0c24edd2021-06-29 15:42:57 +0200[diff] [blame]758 yield from self.all_keys_for_lifetimes()
759 yield from self.all_keys_for_usage_flags()
760 yield from self.all_keys_for_types()
761 yield from self.all_keys_for_algorithms()
gabor-mezei-arm780cf9d2021-06-24 09:49:50 +0200[diff] [blame]762
gabor-mezei-arm340fbf32021-06-28 19:26:55 +0200[diff] [blame]763 def all_test_cases(self) -> Iterator[test_case.TestCase]:
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]764 """Generate all storage format test cases."""
Gilles Peskine3c9d4232021-04-12 14:43:05 +0200[diff] [blame]765 # First build a list of all keys, then construct all the corresponding
766 # test cases. This allows all required information to be obtained in
767 # one go, which is a significant performance gain as the information
768 # includes numerical values obtained by compiling a C program.
Gilles Peskine45f2a402021-07-06 21:05:52 +0200[diff] [blame]769 all_keys = list(self.generate_all_keys())
770 for key in all_keys:
gabor-mezei-arm340fbf32021-06-28 19:26:55 +0200[diff] [blame]771 if key.location_value() != 0:
772 # Skip keys with a non-default location, because they
773 # require a driver and we currently have no mechanism to
774 # determine whether a driver is available.
775 continue
776 yield self.make_test_case(key)
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]777
gabor-mezei-arma4102cb2021-06-24 09:53:26 +0200[diff] [blame]778class StorageFormatForward(StorageFormat):
779 """Storage format stability test cases for forward compatibility."""
780
781 def __init__(self, info: Information, version: int) -> None:
782 super().__init__(info, version, True)
783
784class StorageFormatV0(StorageFormat):
785 """Storage format stability test cases for version 0 compatibility."""
786
787 def __init__(self, info: Information) -> None:
788 super().__init__(info, 0, False)
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]789
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]790 def all_keys_for_usage_flags(self) -> Iterator[StorageTestData]:
gabor-mezei-arm7748b6f2021-06-24 10:04:38 +0200[diff] [blame]791 """Generate test keys covering usage flags."""
Gilles Peskinef7614272022-02-24 18:58:08 +0100[diff] [blame]792 yield from super().all_keys_for_usage_flags()
793 yield from self.generate_keys_for_usage_flags(test_implicit_usage=False)
gabor-mezei-arm7748b6f2021-06-24 10:04:38 +0200[diff] [blame]794
gabor-mezei-arm5df1dee2021-06-28 17:40:32 +0200[diff] [blame]795 def keys_for_implicit_usage(
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]796 self,
gabor-mezei-arm2710bb12021-06-28 16:54:11 +0200[diff] [blame]797 implyer_usage: str,
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]798 alg: str,
gabor-mezei-arm2784bfe2021-06-28 20:02:11 +0200[diff] [blame]799 key_type: crypto_knowledge.KeyType
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]800 ) -> StorageTestData:
gabor-mezei-arm0f8136a2021-06-24 14:38:25 +0200[diff] [blame]801 # pylint: disable=too-many-locals
gabor-mezei-arm8f405102021-06-28 16:27:29 +0200[diff] [blame]802 """Generate test keys for the specified implicit usage flag,
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]803 algorithm and key type combination.
804 """
gabor-mezei-arm2784bfe2021-06-28 20:02:11 +0200[diff] [blame]805 bits = key_type.sizes_to_test()[0]
gabor-mezei-arm2710bb12021-06-28 16:54:11 +0200[diff] [blame]806 implicit_usage = StorageKey.IMPLICIT_USAGE_FLAGS[implyer_usage]
Gilles Peskine564fae82022-03-17 22:32:59 +0100[diff] [blame]807 usage_flags = ['PSA_KEY_USAGE_EXPORT']
808 material_usage_flags = usage_flags + [implyer_usage]
809 expected_usage_flags = material_usage_flags + [implicit_usage]
gabor-mezei-armd9050a52021-06-28 16:35:48 +0200[diff] [blame]810 alg2 = 0
gabor-mezei-arm2784bfe2021-06-28 20:02:11 +0200[diff] [blame]811 key_material = key_type.key_material(bits)
Gilles Peskine16b25062022-03-18 00:02:15 +0100[diff] [blame]812 usage_expression = crypto_knowledge.short_expression(implyer_usage, 1)
813 alg_expression = crypto_knowledge.short_expression(alg, 1)
814 key_type_expression = key_type.short_expression(1)
gabor-mezei-arm5df1dee2021-06-28 17:40:32 +0200[diff] [blame]815 description = 'implied by {}: {} {} {}-bit'.format(
gabor-mezei-armd9050a52021-06-28 16:35:48 +0200[diff] [blame]816 usage_expression, alg_expression, key_type_expression, bits)
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]817 key = StorageTestData(version=self.version,
818 id=1, lifetime=0x00000001,
819 type=key_type.expression, bits=bits,
820 usage=material_usage_flags,
821 expected_usage=expected_usage_flags,
822 without_implicit_usage=True,
823 alg=alg, alg2=alg2,
824 material=key_material,
825 description=description)
826 return key
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]827
828 def gather_key_types_for_sign_alg(self) -> Dict[str, List[str]]:
gabor-mezei-arm0f8136a2021-06-24 14:38:25 +0200[diff] [blame]829 # pylint: disable=too-many-locals
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]830 """Match possible key types for sign algorithms."""
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]831 # To create a valid combination both the algorithms and key types
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]832 # must be filtered. Pair them with keywords created from its names.
833 incompatible_alg_keyword = frozenset(['RAW', 'ANY', 'PURE'])
834 incompatible_key_type_keywords = frozenset(['MONTGOMERY'])
835 keyword_translation = {
836 'ECDSA': 'ECC',
837 'ED[0-9]*.*' : 'EDWARDS'
838 }
839 exclusive_keywords = {
840 'EDWARDS': 'ECC'
841 }
gabor-mezei-arm0f8136a2021-06-24 14:38:25 +0200[diff] [blame]842 key_types = set(self.constructors.generate_expressions(self.constructors.key_types))
843 algorithms = set(self.constructors.generate_expressions(self.constructors.sign_algorithms))
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]844 alg_with_keys = {} #type: Dict[str, List[str]]
845 translation_table = str.maketrans('(', '_', ')')
846 for alg in algorithms:
847 # Generate keywords from the name of the algorithm
848 alg_keywords = set(alg.partition('(')[0].split(sep='_')[2:])
849 # Translate keywords for better matching with the key types
850 for keyword in alg_keywords.copy():
851 for pattern, replace in keyword_translation.items():
852 if re.match(pattern, keyword):
853 alg_keywords.remove(keyword)
854 alg_keywords.add(replace)
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]855 # Filter out incompatible algorithms
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]856 if not alg_keywords.isdisjoint(incompatible_alg_keyword):
857 continue
858
859 for key_type in key_types:
860 # Generate keywords from the of the key type
861 key_type_keywords = set(key_type.translate(translation_table).split(sep='_')[3:])
862
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]863 # Remove ambiguous keywords
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]864 for keyword1, keyword2 in exclusive_keywords.items():
865 if keyword1 in key_type_keywords:
866 key_type_keywords.remove(keyword2)
867
868 if key_type_keywords.isdisjoint(incompatible_key_type_keywords) and\
869 not key_type_keywords.isdisjoint(alg_keywords):
870 if alg in alg_with_keys:
871 alg_with_keys[alg].append(key_type)
872 else:
873 alg_with_keys[alg] = [key_type]
874 return alg_with_keys
875
gabor-mezei-arm2a499c02021-06-29 15:29:24 +0200[diff] [blame]876 def all_keys_for_implicit_usage(self) -> Iterator[StorageTestData]:
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]877 """Generate test keys for usage flag extensions."""
878 # Generate a key type and algorithm pair for each extendable usage
879 # flag to generate a valid key for exercising. The key is generated
Shaun Case8b0ecbc2021-12-20 21:14:10 -0800[diff] [blame]880 # without usage extension to check the extension compatibility.
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]881 alg_with_keys = self.gather_key_types_for_sign_alg()
gabor-mezei-arm11e48382021-06-24 16:35:01 +0200[diff] [blame]882
gabor-mezei-arm340fbf32021-06-28 19:26:55 +0200[diff] [blame]883 for usage in sorted(StorageKey.IMPLICIT_USAGE_FLAGS, key=str):
884 for alg in sorted(alg_with_keys):
885 for key_type in sorted(alg_with_keys[alg]):
886 # The key types must be filtered to fit the specific usage flag.
gabor-mezei-arm2784bfe2021-06-28 20:02:11 +0200[diff] [blame]887 kt = crypto_knowledge.KeyType(key_type)
Gilles Peskinefa70ced2022-03-17 12:52:24 +0100[diff] [blame]888 if kt.is_public() and '_SIGN_' in usage:
889 # Can't sign with a public key
890 continue
891 yield self.keys_for_implicit_usage(usage, alg, kt)
gabor-mezei-arm672e3762021-06-24 10:16:44 +0200[diff] [blame]892
gabor-mezei-arm0c24edd2021-06-29 15:42:57 +0200[diff] [blame]893 def generate_all_keys(self) -> Iterator[StorageTestData]:
894 yield from super().generate_all_keys()
895 yield from self.all_keys_for_implicit_usage()
gabor-mezei-arm7748b6f2021-06-24 10:04:38 +0200[diff] [blame]896
Gilles Peskine64f2efd2022-09-16 21:41:47 +0200[diff] [blame]897class PSATestGenerator(test_data_generation.TestGenerator):
Werner Lewisfbb75e32022-08-24 11:30:03 +0100[diff] [blame]898 """Test generator subclass including PSA targets and info."""
Dave Rodgman3009a972022-04-22 14:52:41 +0100[diff] [blame]899 # Note that targets whose names contain 'test_format' have their content
Gilles Peskine92165362021-04-23 16:37:12 +0200[diff] [blame]900 # validated by `abi_check.py`.
Werner Lewisa4668a62022-09-02 11:56:34 +0100[diff] [blame]901 targets = {
Przemyslaw Stekiel1b0978b2021-10-15 15:21:51 +0200[diff] [blame]902 'test_suite_psa_crypto_generate_key.generated':
903 lambda info: KeyGenerate(info).test_cases_for_key_generation(),
Gilles Peskine0298bda2021-03-10 02:34:37 +0100[diff] [blame]904 'test_suite_psa_crypto_not_supported.generated':
Gilles Peskine0e9e4422022-12-15 22:14:28 +0100[diff] [blame]905 lambda info: KeyTypeNotSupported(info).test_cases_for_not_supported(),
Gilles Peskinec7e1ea02021-04-27 20:40:10 +0200[diff] [blame]906 'test_suite_psa_crypto_op_fail.generated':
907 lambda info: OpFail(info).all_test_cases(),
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]908 'test_suite_psa_crypto_storage_format.current':
gabor-mezei-arma4102cb2021-06-24 09:53:26 +0200[diff] [blame]909 lambda info: StorageFormatForward(info, 0).all_test_cases(),
Gilles Peskine897dff92021-03-10 15:03:44 +0100[diff] [blame]910 'test_suite_psa_crypto_storage_format.v0':
gabor-mezei-arma4102cb2021-06-24 09:53:26 +0200[diff] [blame]911 lambda info: StorageFormatV0(info).all_test_cases(),
Gilles Peskine0298bda2021-03-10 02:34:37 +0100[diff] [blame]912 } #type: Dict[str, Callable[[Information], Iterable[test_case.TestCase]]]
913
Werner Lewisfbb75e32022-08-24 11:30:03 +0100[diff] [blame]914 def __init__(self, options):
915 super().__init__(options)
916 self.info = Information()
Gilles Peskine14e428f2021-01-26 22:19:21 +0100[diff] [blame]917
Werner Lewisfbb75e32022-08-24 11:30:03 +0100[diff] [blame]918 def generate_target(self, name: str, *target_args) -> None:
919 super().generate_target(name, self.info)
Gilles Peskine09940492021-01-26 22:16:30 +0100[diff] [blame]920
921if __name__ == '__main__':
Gilles Peskine64f2efd2022-09-16 21:41:47 +0200[diff] [blame]922 test_data_generation.main(sys.argv[1:], __doc__, PSATestGenerator)