Fix two bugs with CommonCrypto GCM that can result in invalid output.

Bug #1: Call to AAD but no call to update. Get null tag bytes. Bug #2: Call to update without call to AAD. Get null ciphertext bytes. Fixes #1329
author: Paul Kehrer <paul.l.kehrer@gmail.com> 2014-09-11 18:04:48 -0500
committer: Paul Kehrer <paul.l.kehrer@gmail.com> 2014-09-11 18:04:48 -0500
commit: 270b9d46efdfdff9faea86a48ccb98147348418b (patch)
tree: 7b97e76a12d13c38f3c40f0a17c5904dea2af6fa /tests
parent: b8599c085d3e295f460f0117f7df9288a4841d7f (diff)
download: cryptography-270b9d46efdfdff9faea86a48ccb98147348418b.tar.gz
cryptography-270b9d46efdfdff9faea86a48ccb98147348418b.tar.bz2
cryptography-270b9d46efdfdff9faea86a48ccb98147348418b.zip
1 files changed, 31 insertions, 0 deletions
diff --git a/tests/hazmat/backends/test_commoncrypto.py b/tests/hazmat/backends/test_commoncrypto.py
index 28d1a6ca..3ea7f016 100644
--- a/tests/hazmat/backends/test_commoncrypto.py
+++ b/tests/hazmat/backends/test_commoncrypto.py
@@ -13,6 +13,8 @@
 
 from __future__ import absolute_import, division, print_function
 
+import binascii
+
 import pytest
 
 from cryptography import utils
@@ -68,3 +70,32 @@ class TestCommonCrypto(object):
         )
         with raises_unsupported_algorithm(_Reasons.UNSUPPORTED_CIPHER):
             cipher.encryptor()
+
+    def test_gcm_tag_with_only_aad(self):
+        from cryptography.hazmat.backends.commoncrypto.backend import Backend
+        b = Backend()
+        key = binascii.unhexlify("1dde380d6b04fdcb004005b8a77bd5e3")
+        iv = binascii.unhexlify("5053bf901463f97decd88c33")
+        aad = binascii.unhexlify("f807f5f6133021d15cb6434d5ad95cf7d8488727")
+        tag = binascii.unhexlify("4bebf3ff2cb67bb5444dda53bd039e22")
+
+        cipher = Cipher(AES(key), GCM(iv), backend=b)
+        encryptor = cipher.encryptor()
+        encryptor.authenticate_additional_data(aad)
+        encryptor.finalize()
+        assert encryptor.tag == tag
+
+    def test_gcm_ciphertext_with_no_aad(self):
+        from cryptography.hazmat.backends.commoncrypto.backend import Backend
+        b = Backend()
+        key = binascii.unhexlify("e98b72a9881a84ca6b76e0f43e68647a")
+        iv = binascii.unhexlify("8b23299fde174053f3d652ba")
+        ct = binascii.unhexlify("5a3c1cf1985dbb8bed818036fdd5ab42")
+        tag = binascii.unhexlify("23c7ab0f952b7091cd324835043b5eb5")
+        pt = binascii.unhexlify("28286a321293253c3e0aa2704a278032")
+
+        cipher = Cipher(AES(key), GCM(iv), backend=b)
+        encryptor = cipher.encryptor()
+        computed_ct = encryptor.update(pt) + encryptor.finalize()
+        assert computed_ct == ct
+        assert encryptor.tag == tag
author	Paul Kehrer <paul.l.kehrer@gmail.com>	2014-09-11 18:04:48 -0500
committer	Paul Kehrer <paul.l.kehrer@gmail.com>	2014-09-11 18:04:48 -0500
commit	270b9d46efdfdff9faea86a48ccb98147348418b (patch)
tree	7b97e76a12d13c38f3c40f0a17c5904dea2af6fa /tests
parent	b8599c085d3e295f460f0117f7df9288a4841d7f (diff)
download	cryptography-270b9d46efdfdff9faea86a48ccb98147348418b.tar.gz cryptography-270b9d46efdfdff9faea86a48ccb98147348418b.tar.bz2 cryptography-270b9d46efdfdff9faea86a48ccb98147348418b.zip