/
kcapi-dgst-test.sh
executable file
·224 lines (179 loc) · 6.76 KB
/
kcapi-dgst-test.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
#!/bin/bash
#
# Copyright (C) 2017 - 2024, Stephan Mueller <smueller@chronox.de>
#
# License: see LICENSE file in root directory
#
# THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED
# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
# OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE, ALL OF
# WHICH ARE HEREBY DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE
# LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT
# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
# (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE
# USE OF THIS SOFTWARE, EVEN IF NOT ADVISED OF THE POSSIBILITY OF SUCH
# DAMAGE.
#
DIRNAME="$(dirname "$0")"
. "$DIRNAME/libtest.sh"
find_platform kcapi-dgst
TSTPREFIX="${TMPDIR}/kcapi-dgst-testfiles."
KEYFILE_128="${TSTPREFIX}128key"
KEYFILE_256="${TSTPREFIX}256key"
OPENSSLKEY128=""
OPENSSLKEY256=""
ORIGPT="${TSTPREFIX}orig_pt"
GENDGST="${TSTPREFIX}generated_dgst"
SALT="0123456789abcdef0123456789abcdef"
echo_pass_local()
{
local bytes=$(stat -c %s $ORIGPT)
echo_pass "$bytes bytes: $@"
}
echo_fail_local()
{
local bytes=$(stat -c %s $ORIGPT)
echo_fail "$bytes bytes: $@"
}
init_setup()
{
trap "rm -f $TSTPREFIX*; exit" 0 1 2 3 15
# CR is also character
# Hex key string: 3031323334353637383961626364650a
echo -n "0123456789abcdef" > $KEYFILE_128
OPENSSLKEY128="0123456789abcdef"
# Hex key string: 303132333435363738396162636465663031323334353637383961626364650a
echo -n "0123456789abcdef0123456789abcdef" > $KEYFILE_256
OPENSSLKEY256="0123456789abcdef0123456789abcdef"
}
gen_orig()
{
local size=$1
touch $ORIGPT
dd if=/dev/urandom of=$ORIGPT bs=$size count=1 2>/dev/null
}
diff_file()
{
local orighash=$(sha256sum $1 | cut -d " " -f1)
local genhash=$(sha256sum $2 | cut -d " " -f1)
shift
shift
if [ x"$orighash" = x"$genhash" ]
then
echo_pass_local "$@"
else
echo_fail_local "$@: original file ($orighash) and generated file ($genhash)"
fi
}
test_stdin_stdout()
{
local keyfile=$1
if [ ! -f "$keyfile" ]
then
echo "Keyfile $file does not exist"
exit 1
fi
run_app kcapi-dgst -c "sha256" --hex < $ORIGPT > $GENDGST
echo >> $GENDGST
openssl dgst -sha256 $ORIGPT | awk 'BEGIN {FS="= "} {print $2}' > $GENDGST.openssl
diff_file $GENDGST $GENDGST.openssl "STDIN / STDOUT test (hash)"
local keysize=$(stat -c %s $keyfile)
keysize=$((keysize*8))
eval opensslkey=\$OPENSSLKEY${keysize}
exec 10<$keyfile; run_app kcapi-dgst --keyfd 10 -c "hmac(sha256)" --hex < $ORIGPT > $GENDGST
echo >> $GENDGST
openssl dgst -sha256 -hmac $opensslkey $ORIGPT | awk 'BEGIN {FS="= "} {print $2}' > $GENDGST.openssl
diff_file $GENDGST $GENDGST.openssl "STDIN / STDOUT test (keyed MD $keysize bits)"
run_app kcapi-dgst -q --pbkdfiter 1000 -p "passwordpassword" -s $SALT -c "hmac(sha256)" < $ORIGPT > $GENDGST
run_app kcapi-dgst -q --pbkdfiter 1000 -p "passwordpassword" -s $SALT -c "hmac(sha256)" < $ORIGPT > $GENDGST.2
diff_file $GENDGST $GENDGST.2 "STDIN / STDOUT test (password)"
}
test_stdin_fileout()
{
local keyfile=$1
if [ ! -f "$keyfile" ]
then
echo "Keyfile $file does not exist"
exit 1
fi
run_app kcapi-dgst -c "sha256" --hex -o $GENDGST < $ORIGPT
echo >> $GENDGST
openssl dgst -sha256 $ORIGPT | awk 'BEGIN {FS="= "} {print $2}' > $GENDGST.openssl
diff_file $GENDGST $GENDGST.openssl "STDIN / FILEOUT test (hash)"
local keysize=$(stat -c %s $keyfile)
keysize=$((keysize*8))
eval opensslkey=\$OPENSSLKEY${keysize}
exec 10<$keyfile; run_app kcapi-dgst --keyfd 10 -c "hmac(sha256)" --hex -o $GENDGST < $ORIGPT
echo >> $GENDGST
openssl dgst -sha256 -hmac $opensslkey $ORIGPT | awk 'BEGIN {FS="= "} {print $2}' > $GENDGST.openssl
diff_file $GENDGST $GENDGST.openssl "STDIN / FILEOUT test (keyed MD $keysize bits)"
run_app kcapi-dgst -q --pbkdfiter 1000 -p "passwordpassword" -s $SALT -c "hmac(sha256)" -o $GENDGST < $ORIGPT
run_app kcapi-dgst -q --pbkdfiter 1000 -p "passwordpassword" -s $SALT -c "hmac(sha256)" -o $GENDGST.2 < $ORIGPT
diff_file $GENDGST $GENDGST.2 "STDIN / FILEOUT test (password)"
}
test_filein_stdout()
{
local keyfile=$1
if [ ! -f "$keyfile" ]
then
echo "Keyfile $file does not exist"
exit 1
fi
run_app kcapi-dgst -c "sha256" --hex -i $ORIGPT > $GENDGST
echo >> $GENDGST
openssl dgst -sha256 $ORIGPT | awk 'BEGIN {FS="= "} {print $2}' > $GENDGST.openssl
diff_file $GENDGST $GENDGST.openssl "FILEIN / STDOUT test (hash)"
local keysize=$(stat -c %s $keyfile)
keysize=$((keysize*8))
eval opensslkey=\$OPENSSLKEY${keysize}
exec 10<$keyfile; run_app kcapi-dgst --keyfd 10 -c "hmac(sha256)" --hex -i $ORIGPT > $GENDGST
echo >> $GENDGST
openssl dgst -sha256 -hmac $opensslkey $ORIGPT | awk 'BEGIN {FS="= "} {print $2}' > $GENDGST.openssl
diff_file $GENDGST $GENDGST.openssl "FILEIN / STDOUT test (keyed MD $keysize bits)"
run_app kcapi-dgst -q --pbkdfiter 1000 -p "passwordpassword" -s $SALT -c "hmac(sha256)" -i $ORIGPT > $GENDGST
run_app kcapi-dgst -q --pbkdfiter 1000 -p "passwordpassword" -s $SALT -c "hmac(sha256)" -i $ORIGPT > $GENDGST.2
diff_file $GENDGST $GENDGST.2 "FILEIN / STDOUT test (password)"
}
test_filein_fileout()
{
local keyfile=$1
local keyfile=$1
if [ ! -f "$keyfile" ]
then
echo "Keyfile $file does not exist"
exit 1
fi
run_app kcapi-dgst -c "sha256" --hex -i $ORIGPT -o $GENDGST
echo >> $GENDGST
openssl dgst -sha256 $ORIGPT | awk 'BEGIN {FS="= "} {print $2}' > $GENDGST.openssl
diff_file $GENDGST $GENDGST.openssl "FILEIN / FILEOUT test (hash)"
local keysize=$(stat -c %s $keyfile)
keysize=$((keysize*8))
eval opensslkey=\$OPENSSLKEY${keysize}
exec 10<$keyfile; run_app kcapi-dgst --keyfd 10 -c "hmac(sha256)" --hex -i $ORIGPT -o $GENDGST
echo >> $GENDGST
openssl dgst -sha256 -hmac $opensslkey $ORIGPT | awk 'BEGIN {FS="= "} {print $2}' > $GENDGST.openssl
diff_file $GENDGST $GENDGST.openssl "FILEIN / FILEOUT test (keyed MD $keysize bits)"
run_app kcapi-dgst -q --pbkdfiter 1000 -p "passwordpassword" -s $SALT -c "hmac(sha256)" -i $ORIGPT -o $GENDGST
run_app kcapi-dgst -q --pbkdfiter 1000 -p "passwordpassword" -s $SALT -c "hmac(sha256)" -i $ORIGPT -o $GENDGST.2
diff_file $GENDGST $GENDGST.2 "FILEIN / FILEOUT test (password)"
}
init_setup
for i in 0 1 15 16 29 32 257 512 1023 16385 65535 65536 65537 99999 100000 100001
do
gen_orig $i
test_stdin_stdout $KEYFILE_128
test_stdin_stdout $KEYFILE_256
test_stdin_fileout $KEYFILE_128
test_stdin_fileout $KEYFILE_256
test_filein_stdout $KEYFILE_128
test_filein_stdout $KEYFILE_256
test_filein_fileout $KEYFILE_128
test_filein_fileout $KEYFILE_256
done
echo "==================================================================="
echo "Number of failures: $failures"
exit $failures