diff options
| author | Paul Kehrer <paul.l.kehrer@gmail.com> | 2018-07-18 00:44:55 +0800 |
|---|---|---|
| committer | Alex Gaynor <alex.gaynor@gmail.com> | 2018-07-17 12:44:55 -0400 |
| commit | 4de004955b2d9d0d714fe29ae95b8eff7ee983a1 (patch) | |
| tree | 86ace4240caeaad14cfb0ff17b1c781e348efd0d /tests/wycheproof | |
| parent | c563b576b3bba4a93f8f47272759b29f182dea13 (diff) | |
| download | cryptography-4de004955b2d9d0d714fe29ae95b8eff7ee983a1.tar.gz cryptography-4de004955b2d9d0d714fe29ae95b8eff7ee983a1.tar.bz2 cryptography-4de004955b2d9d0d714fe29ae95b8eff7ee983a1.zip | |
add wycheproof gcm tests (#4349)
* add wycheproof gcm tests
* add AEAD test
Diffstat (limited to 'tests/wycheproof')
| -rw-r--r-- | tests/wycheproof/test_aes.py | 54 |
1 files changed, 54 insertions, 0 deletions
diff --git a/tests/wycheproof/test_aes.py b/tests/wycheproof/test_aes.py index 65db9cdb..929ad8dc 100644 --- a/tests/wycheproof/test_aes.py +++ b/tests/wycheproof/test_aes.py @@ -13,6 +13,7 @@ from cryptography.hazmat.primitives import padding from cryptography.hazmat.primitives.ciphers import ( Cipher, algorithms, modes ) +from cryptography.hazmat.primitives.ciphers.aead import AESGCM @pytest.mark.requires_backend_interface(interface=CipherBackend) @@ -40,3 +41,56 @@ def test_aes_cbc_pkcs5(backend, wycheproof): assert computed_ct != ct with pytest.raises(ValueError): unpadder.update(padded_msg) + unpadder.finalize() + + +@pytest.mark.requires_backend_interface(interface=CipherBackend) +@pytest.mark.wycheproof_tests("aes_gcm_test.json") +def test_aes_gcm(backend, wycheproof): + key = binascii.unhexlify(wycheproof.testcase["key"]) + iv = binascii.unhexlify(wycheproof.testcase["iv"]) + aad = binascii.unhexlify(wycheproof.testcase["aad"]) + msg = binascii.unhexlify(wycheproof.testcase["msg"]) + ct = binascii.unhexlify(wycheproof.testcase["ct"]) + tag = binascii.unhexlify(wycheproof.testcase["tag"]) + if wycheproof.valid or wycheproof.acceptable: + enc = Cipher(algorithms.AES(key), modes.GCM(iv), backend).encryptor() + enc.authenticate_additional_data(aad) + computed_ct = enc.update(msg) + enc.finalize() + computed_tag = enc.tag + assert computed_ct == ct + assert computed_tag == tag + dec = Cipher( + algorithms.AES(key), + modes.GCM(iv, tag, min_tag_length=len(tag)), + backend + ).decryptor() + dec.authenticate_additional_data(aad) + computed_msg = dec.update(ct) + dec.finalize() + assert computed_msg == msg + else: + # All invalid GCM tests are IV len 0 right now + assert len(iv) == 0 + with pytest.raises(ValueError): + Cipher(algorithms.AES(key), modes.GCM(iv), backend) + + +@pytest.mark.requires_backend_interface(interface=CipherBackend) +@pytest.mark.wycheproof_tests("aes_gcm_test.json") +def test_aes_gcm_aead_api(backend, wycheproof): + key = binascii.unhexlify(wycheproof.testcase["key"]) + iv = binascii.unhexlify(wycheproof.testcase["iv"]) + aad = binascii.unhexlify(wycheproof.testcase["aad"]) + msg = binascii.unhexlify(wycheproof.testcase["msg"]) + ct = binascii.unhexlify(wycheproof.testcase["ct"]) + tag = binascii.unhexlify(wycheproof.testcase["tag"]) + aesgcm = AESGCM(key) + if wycheproof.valid or wycheproof.acceptable: + computed_ct = aesgcm.encrypt(iv, msg, aad) + assert computed_ct == ct + tag + computed_msg = aesgcm.decrypt(iv, ct + tag, aad) + assert computed_msg == msg + else: + # All invalid GCM tests are IV len 0 right now + assert len(iv) == 0 + with pytest.raises(ValueError): + aesgcm.encrypt(iv, msg, aad) |