1 /* -*- mode: c; c-basic-offset: 4; indent-tabs-mode: nil -*- */
2 /* lib/crypto/crypto_tests/t_decrypt.c - Test decrypting known ciphertexts */
3 /*
4 * Copyright (C) 2010 by the Massachusetts Institute of Technology.
5 * All rights reserved.
6 *
7 * Export of this software from the United States of America may
8 * require a specific license from the United States Government.
9 * It is the responsibility of any person or organization contemplating
10 * export to obtain such a license before exporting.
11 *
12 * WITHIN THAT CONSTRAINT, permission to use, copy, modify, and
13 * distribute this software and its documentation for any purpose and
14 * without fee is hereby granted, provided that the above copyright
15 * notice appear in all copies and that both that copyright notice and
16 * this permission notice appear in supporting documentation, and that
17 * the name of M.I.T. not be used in advertising or publicity pertaining
18 * to distribution of the software without specific, written prior
19 * permission. Furthermore if you modify this software you must label
20 * your software as modified software and not distribute it in such a
21 * fashion that it might be confused with the original M.I.T. software.
22 * M.I.T. makes no representations about the suitability of
23 * this software for any purpose. It is provided "as is" without express
24 * or implied warranty.
25 */
26
27 /*
28 * This harness decrypts known ciphertexts to detect changes in encryption code
29 * which are self-compatible but not compatible across versions. With the -g
30 * flag, the program generates a set of test cases.
31 */
32
33 #include "k5-int.h"
34
35 struct test {
36 krb5_enctype enctype;
37 krb5_data plaintext;
38 krb5_keyusage usage;
39 krb5_data keybits;
40 krb5_data ciphertext;
41 } test_cases[] = {
42 {
43 ENCTYPE_DES3_CBC_SHA1,
44 { KV5M_DATA, 0, "", }, 0,
45 { KV5M_DATA, 24,
46 "\x7A\x25\xDF\x89\x92\x29\x6D\xCE\xDA\x0E\x13\x5B\xC4\x04\x6E\x23"
47 "\x75\xB3\xC1\x4C\x98\xFB\xC1\x62" },
48 { KV5M_DATA, 28,
49 "\x54\x8A\xF4\xD5\x04\xF7\xD7\x23\x30\x3F\x12\x17\x5F\xE8\x38\x6B"
50 "\x7B\x53\x35\xA9\x67\xBA\xD6\x1F\x3B\xF0\xB1\x43" }
51 },
52 {
53 ENCTYPE_DES3_CBC_SHA1,
54 { KV5M_DATA, 1, "1", }, 1,
55 { KV5M_DATA, 24,
56 "\xBC\x07\x83\x89\x15\x13\xD5\xCE\x57\xBC\x13\x8F\xD3\xC1\x1A\xE6"
57 "\x40\x45\x23\x85\x32\x29\x62\xB6" },
58 { KV5M_DATA, 36,
59 "\x9C\x3C\x1D\xBA\x47\x47\xD8\x5A\xF2\x91\x6E\x47\x45\xF2\xDC\xE3"
60 "\x80\x46\x79\x6E\x51\x04\xBC\xCD\xFB\x66\x9A\x91\xD4\x4B\xC3\x56"
61 "\x66\x09\x45\xC7" }
62 },
63 {
64 ENCTYPE_DES3_CBC_SHA1,
65 { KV5M_DATA, 9, "9 bytesss", }, 2,
66 { KV5M_DATA, 24,
67 "\x2F\xD0\xF7\x25\xCE\x04\x10\x0D\x2F\xC8\xA1\x80\x98\x83\x1F\x85"
68 "\x0B\x45\xD9\xEF\x85\x0B\xD9\x20" },
69 { KV5M_DATA, 44,
70 "\xCF\x91\x44\xEB\xC8\x69\x79\x81\x07\x5A\x8B\xAD\x8D\x74\xE5\xD7"
71 "\xD5\x91\xEB\x7D\x97\x70\xC7\xAD\xA2\x5E\xE8\xC5\xB3\xD6\x94\x44"
72 "\xDF\xEC\x79\xA5\xB7\xA0\x14\x82\xD9\xAF\x74\xE6" }
73 },
74 {
75 ENCTYPE_DES3_CBC_SHA1,
76 { KV5M_DATA, 13, "13 bytes byte", }, 3,
77 { KV5M_DATA, 24,
78 "\x0D\xD5\x20\x94\xE0\xF4\x1C\xEC\xCB\x5B\xE5\x10\xA7\x64\xB3\x51"
79 "\x76\xE3\x98\x13\x32\xF1\xE5\x98" },
80 { KV5M_DATA, 44,
81 "\x83\x9A\x17\x08\x1E\xCB\xAF\xBC\xDC\x91\xB8\x8C\x69\x55\xDD\x3C"
82 "\x45\x14\x02\x3C\xF1\x77\xB7\x7B\xF0\xD0\x17\x7A\x16\xF7\x05\xE8"
83 "\x49\xCB\x77\x81\xD7\x6A\x31\x6B\x19\x3F\x8D\x30" }
84 },
85 {
86 ENCTYPE_DES3_CBC_SHA1,
87 { KV5M_DATA, 30, "30 bytes bytes bytes bytes byt", }, 4,
88 { KV5M_DATA, 24,
89 "\xF1\x16\x86\xCB\xBC\x9E\x23\xEA\x54\xFE\xCD\x2A\x3D\xCD\xFB\x20"
90 "\xB6\xFE\x98\xBF\x26\x45\xC4\xC4" },
91 { KV5M_DATA, 60,
92 "\x89\x43\x3E\x83\xFD\x0E\xA3\x66\x6C\xFF\xCD\x18\xD8\xDE\xEB\xC5"
93 "\x3B\x9A\x34\xED\xBE\xB1\x59\xD9\xF6\x67\xC6\xC2\xB9\xA9\x64\x40"
94 "\x1D\x55\xE7\xE9\xC6\x8D\x64\x8D\x65\xC3\xAA\x84\xFF\xA3\x79\x0C"
95 "\x14\xA8\x64\xDA\x80\x73\xA9\xA9\x5C\x4B\xA2\xBC" }
96 },
97
98 {
99 ENCTYPE_ARCFOUR_HMAC,
100 { KV5M_DATA, 0, "", }, 0,
101 { KV5M_DATA, 16,
102 "\xF8\x1F\xEC\x39\x25\x5F\x57\x84\xE8\x50\xC4\x37\x7C\x88\xBD\x85" },
103 { KV5M_DATA, 24,
104 "\x02\xC1\xEB\x15\x58\x61\x44\x12\x2E\xC7\x17\x76\x3D\xD3\x48\xBF"
105 "\x00\x43\x4D\xDC\x65\x85\x95\x4C" }
106 },
107 {
108 ENCTYPE_ARCFOUR_HMAC,
109 { KV5M_DATA, 1, "1", }, 1,
110 { KV5M_DATA, 16,
111 "\x67\xD1\x30\x0D\x28\x12\x23\x86\x7F\x96\x47\xFF\x48\x72\x12\x73" },
112 { KV5M_DATA, 25,
113 "\x61\x56\xE0\xCC\x04\xE0\xA0\x87\x4F\x9F\xDA\x00\x8F\x49\x8A\x7A"
114 "\xDB\xBC\x80\xB7\x0B\x14\xDD\xDB\xC0" }
115 },
116 {
117 ENCTYPE_ARCFOUR_HMAC,
118 { KV5M_DATA, 9, "9 bytesss", }, 2,
119 { KV5M_DATA, 16,
120 "\x3E\x40\xAB\x60\x93\x69\x52\x81\xB3\xAC\x1A\x93\x04\x22\x4D\x98" },
121 { KV5M_DATA, 33,
122 "\x0F\x9A\xD1\x21\xD9\x9D\x4A\x09\x44\x8E\x4F\x1F\x71\x8C\x4F\x5C"
123 "\xBE\x60\x96\x26\x2C\x66\xF2\x9D\xF2\x32\xA8\x7C\x9F\x98\x75\x5D"
124 "\x55" }
125 },
126 {
127 ENCTYPE_ARCFOUR_HMAC,
128 { KV5M_DATA, 13, "13 bytes byte", }, 3,
129 { KV5M_DATA, 16,
130 "\x4B\xA2\xFB\xF0\x37\x9F\xAE\xD8\x7A\x25\x4D\x3B\x35\x3D\x5A\x7E" },
131 { KV5M_DATA, 37,
132 "\x61\x2C\x57\x56\x8B\x17\xA7\x03\x52\xBA\xE8\xCF\x26\xFB\x94\x59"
133 "\xA6\xF3\x35\x3C\xD3\x5F\xD4\x39\xDB\x31\x07\xCB\xEC\x76\x5D\x32"
134 "\x6D\xFC\x04\xC1\xDD" }
135 },
136 {
137 ENCTYPE_ARCFOUR_HMAC,
138 { KV5M_DATA, 30, "30 bytes bytes bytes bytes byt", }, 4,
139 { KV5M_DATA, 16,
140 "\x68\xF2\x63\xDB\x3F\xCE\x15\xD0\x31\xC9\xEA\xB0\x2D\x67\x10\x7A" },
141 { KV5M_DATA, 54,
142 "\x95\xF9\x04\x7C\x3A\xD7\x58\x91\xC2\xE9\xB0\x4B\x16\x56\x6D\xC8"
143 "\xB6\xEB\x9C\xE4\x23\x1A\xFB\x25\x42\xEF\x87\xA7\xB5\xA0\xF2\x60"
144 "\xA9\x9F\x04\x60\x50\x8D\xE0\xCE\xCC\x63\x2D\x07\xC3\x54\x12\x4E"
145 "\x46\xC5\xD2\x23\x4E\xB8" }
146 },
147
148 {
149 ENCTYPE_ARCFOUR_HMAC_EXP,
150 { KV5M_DATA, 0, "", }, 0,
151 { KV5M_DATA, 16,
152 "\xF7\xD3\xA1\x55\xAF\x5E\x23\x8A\x0B\x7A\x87\x1A\x96\xBA\x2A\xB2" },
153 { KV5M_DATA, 24,
154 "\x28\x27\xF0\xE9\x0F\x62\xE7\x46\x0C\x4E\x2F\xB3\x9F\x96\x57\xBA"
155 "\x8B\xFA\xA9\x91\xD7\xFD\xAD\xFF" }
156 },
157 {
158 ENCTYPE_ARCFOUR_HMAC_EXP,
159 { KV5M_DATA, 1, "1", }, 1,
160 { KV5M_DATA, 16,
161 "\xDE\xEA\xA0\x60\x7D\xB7\x99\xE2\xFD\xD6\xDB\x29\x86\xBB\x8D\x65" },
162 { KV5M_DATA, 25,
163 "\x3D\xDA\x39\x2E\x2E\x27\x5A\x4D\x75\x18\x3F\xA6\x32\x8A\x0A\x4E"
164 "\x6B\x75\x2D\xF6\xCD\x2A\x25\xFA\x4E" }
165 },
166 {
167 ENCTYPE_ARCFOUR_HMAC_EXP,
168 { KV5M_DATA, 9, "9 bytesss", }, 2,
169 { KV5M_DATA, 16,
170 "\x33\xAD\x7F\xC2\x67\x86\x15\x56\x9B\x2B\x09\x83\x6E\x0A\x3A\xB6" },
171 { KV5M_DATA, 33,
172 "\x09\xD1\x36\xAC\x48\x5D\x92\x64\x4E\xC6\x70\x1D\x6A\x0D\x03\xE8"
173 "\x98\x2D\x7A\x3C\xA7\xEF\xD0\xF8\xF4\xF8\x36\x60\xEF\x42\x77\xBB"
174 "\x81" }
175 },
176 {
177 ENCTYPE_ARCFOUR_HMAC_EXP,
178 { KV5M_DATA, 13, "13 bytes byte", }, 3,
179 { KV5M_DATA, 16,
180 "\x39\xF2\x5C\xD4\xF0\xD4\x1B\x2B\x2D\x9D\x30\x0F\xCB\x29\x81\xCB" },
181 { KV5M_DATA, 37,
182 "\x91\x23\x88\xD7\xC0\x76\x12\x81\x9E\x3B\x64\x0F\xF5\xCE\xCD\xAF"
183 "\x72\xE5\xA5\x9D\xF1\x0F\x10\x91\xA6\xBE\xC3\x9C\xAA\xD7\x48\xAF"
184 "\x9B\xD2\xD8\xD5\x46" }
185 },
186 {
187 ENCTYPE_ARCFOUR_HMAC_EXP,
188 { KV5M_DATA, 30, "30 bytes bytes bytes bytes byt", }, 4,
189 { KV5M_DATA, 16,
190 "\x9F\x72\x55\x42\xD9\xF7\x2A\xA1\xF3\x86\xCB\xE7\x89\x69\x84\xFC" },
191 { KV5M_DATA, 54,
192 "\x78\xB3\x5A\x08\xB0\x8B\xE2\x65\xAE\xB4\x14\x5F\x07\x65\x13\xB6"
193 "\xB5\x6E\xFE\xD3\xF7\x52\x65\x74\xAF\x74\xF7\xD2\xF9\xBA\xE9\x6E"
194 "\xAB\xB7\x6F\x2D\x87\x38\x6D\x2E\x93\xE3\xA7\x7B\x99\x91\x9F\x1D"
195 "\x97\x64\x90\xE2\xBD\x45" }
196 },
197
198 {
199 ENCTYPE_AES128_CTS_HMAC_SHA1_96,
200 { KV5M_DATA, 0, "", }, 0,
201 { KV5M_DATA, 16,
202 "\x5A\x5C\x0F\x0B\xA5\x4F\x38\x28\xB2\x19\x5E\x66\xCA\x24\xA2\x89" },
203 { KV5M_DATA, 28,
204 "\x49\xFF\x8E\x11\xC1\x73\xD9\x58\x3A\x32\x54\xFB\xE7\xB1\xF1\xDF"
205 "\x36\xC5\x38\xE8\x41\x67\x84\xA1\x67\x2E\x66\x76" }
206 },
207 {
208 ENCTYPE_AES128_CTS_HMAC_SHA1_96,
209 { KV5M_DATA, 1, "1", }, 1,
210 { KV5M_DATA, 16,
211 "\x98\x45\x0E\x3F\x3B\xAA\x13\xF5\xC9\x9B\xEB\x93\x69\x81\xB0\x6F" },
212 { KV5M_DATA, 29,
213 "\xF8\x67\x42\xF5\x37\xB3\x5D\xC2\x17\x4A\x4D\xBA\xA9\x20\xFA\xF9"
214 "\x04\x20\x90\xB0\x65\xE1\xEB\xB1\xCA\xD9\xA6\x53\x94" }
215 },
216 {
217 ENCTYPE_AES128_CTS_HMAC_SHA1_96,
218 { KV5M_DATA, 9, "9 bytesss", }, 2,
219 { KV5M_DATA, 16,
220 "\x90\x62\x43\x0C\x8C\xDA\x33\x88\x92\x2E\x6D\x6A\x50\x9F\x5B\x7A" },
221 { KV5M_DATA, 37,
222 "\x68\xFB\x96\x79\x60\x1F\x45\xC7\x88\x57\xB2\xBF\x82\x0F\xD6\xE5"
223 "\x3E\xCA\x8D\x42\xFD\x4B\x1D\x70\x24\xA0\x92\x05\xAB\xB7\xCD\x2E"
224 "\xC2\x6C\x35\x5D\x2F" }
225 },
226 {
227 ENCTYPE_AES128_CTS_HMAC_SHA1_96,
228 { KV5M_DATA, 13, "13 bytes byte", }, 3,
229 { KV5M_DATA, 16,
230 "\x03\x3E\xE6\x50\x2C\x54\xFD\x23\xE2\x77\x91\xE9\x87\x98\x38\x27" },
231 { KV5M_DATA, 41,
232 "\xEC\x36\x6D\x03\x27\xA9\x33\xBF\x49\x33\x0E\x65\x0E\x49\xBC\x6B"
233 "\x97\x46\x37\xFE\x80\xBF\x53\x2F\xE5\x17\x95\xB4\x80\x97\x18\xE6"
234 "\x19\x47\x24\xDB\x94\x8D\x1F\xD6\x37" }
235 },
236 {
237 ENCTYPE_AES128_CTS_HMAC_SHA1_96,
238 { KV5M_DATA, 30, "30 bytes bytes bytes bytes byt", }, 4,
239 { KV5M_DATA, 16,
240 "\xDC\xEE\xB7\x0B\x3D\xE7\x65\x62\xE6\x89\x22\x6C\x76\x42\x91\x48" },
241 { KV5M_DATA, 58,
242 "\xC9\x60\x81\x03\x2D\x5D\x8E\xEB\x7E\x32\xB4\x08\x9F\x78\x9D\x0F"
243 "\xAA\x48\x1D\xEA\x74\xC0\xF9\x7C\xBF\x31\x46\xDD\xFC\xF8\xE8\x00"
244 "\x15\x6E\xCB\x53\x2F\xC2\x03\xE3\x0F\xF6\x00\xB6\x3B\x35\x09\x39"
245 "\xFE\xCE\x51\x0F\x02\xD7\xFF\x1E\x7B\xAC" }
246 },
247
248 {
249 ENCTYPE_AES256_CTS_HMAC_SHA1_96,
250 { KV5M_DATA, 0, "", }, 0,
251 { KV5M_DATA, 32,
252 "\x17\xF2\x75\xF2\x95\x4F\x2E\xD1\xF9\x0C\x37\x7B\xA7\xF4\xD6\xA3"
253 "\x69\xAA\x01\x36\xE0\xBF\x0C\x92\x7A\xD6\x13\x3C\x69\x37\x59\xA9" },
254 { KV5M_DATA, 28,
255 "\xE5\x09\x4C\x55\xEE\x7B\x38\x26\x2E\x2B\x04\x42\x80\xB0\x69\x37"
256 "\x9A\x95\xBF\x95\xBD\x83\x76\xFB\x32\x81\xB4\x35" }
257 },
258 {
259 ENCTYPE_AES256_CTS_HMAC_SHA1_96,
260 { KV5M_DATA, 1, "1", }, 1,
261 { KV5M_DATA, 32,
262 "\xB9\x47\x7E\x1F\xF0\x32\x9C\x00\x50\xE2\x0C\xE6\xC7\x2D\x2D\xFF"
263 "\x27\xE8\xFE\x54\x1A\xB0\x95\x44\x29\xA9\xCB\x5B\x4F\x7B\x1E\x2A" },
264 { KV5M_DATA, 29,
265 "\x40\x61\x50\xB9\x7A\xEB\x76\xD4\x3B\x36\xB6\x2C\xC1\xEC\xDF\xBE"
266 "\x6F\x40\xE9\x57\x55\xE0\xBE\xB5\xC2\x78\x25\xF3\xA4" }
267 },
268 {
269 ENCTYPE_AES256_CTS_HMAC_SHA1_96,
270 { KV5M_DATA, 9, "9 bytesss", }, 2,
271 { KV5M_DATA, 32,
272 "\xB1\xAE\x4C\xD8\x46\x2A\xFF\x16\x77\x05\x3C\xC9\x27\x9A\xAC\x30"
273 "\xB7\x96\xFB\x81\xCE\x21\x47\x4D\xD3\xDD\xBC\xFE\xA4\xEC\x76\xD7" },
274 { KV5M_DATA, 37,
275 "\x09\x95\x7A\xA2\x5F\xCA\xF8\x8F\x7B\x39\xE4\x40\x6E\x63\x30\x12"
276 "\xD5\xFE\xA2\x18\x53\xF6\x47\x8D\xA7\x06\x5C\xAE\xF4\x1F\xD4\x54"
277 "\xA4\x08\x24\xEE\xC5" }
278 },
279 {
280 ENCTYPE_AES256_CTS_HMAC_SHA1_96,
281 { KV5M_DATA, 13, "13 bytes byte", }, 3,
282 { KV5M_DATA, 32,
283 "\xE5\xA7\x2B\xE9\xB7\x92\x6C\x12\x25\xBA\xFE\xF9\xC1\x87\x2E\x7B"
284 "\xA4\xCD\xB2\xB1\x78\x93\xD8\x4A\xBD\x90\xAC\xDD\x87\x64\xD9\x66" },
285 { KV5M_DATA, 41,
286 "\xD8\xF1\xAA\xFE\xEC\x84\x58\x7C\xC3\xE7\x00\xA7\x74\xE5\x66\x51"
287 "\xA6\xD6\x93\xE1\x74\xEC\x44\x73\xB5\xE6\xD9\x6F\x80\x29\x7A\x65"
288 "\x3F\xB8\x18\xAD\x89\x3E\x71\x9F\x96" }
289 },
290 {
291 ENCTYPE_AES256_CTS_HMAC_SHA1_96,
292 { KV5M_DATA, 30, "30 bytes bytes bytes bytes byt", }, 4,
293 { KV5M_DATA, 32,
294 "\xF1\xC7\x95\xE9\x24\x8A\x09\x33\x8D\x82\xC3\xF8\xD5\xB5\x67\x04"
295 "\x0B\x01\x10\x73\x68\x45\x04\x13\x47\x23\x5B\x14\x04\x23\x13\x98" },
296 { KV5M_DATA, 58,
297 "\xD1\x13\x7A\x4D\x63\x4C\xFE\xCE\x92\x4D\xBC\x3B\xF6\x79\x06\x48"
298 "\xBD\x5C\xFF\x7D\xE0\xE7\xB9\x94\x60\x21\x1D\x0D\xAE\xF3\xD7\x9A"
299 "\x29\x5C\x68\x88\x58\xF3\xB3\x4B\x9C\xBD\x6E\xEB\xAE\x81\xDA\xF6"
300 "\xB7\x34\xD4\xD4\x98\xB6\x71\x4F\x1C\x1D" }
301 },
302
303 {
304 ENCTYPE_CAMELLIA128_CTS_CMAC,
305 { KV5M_DATA, 0, "", }, 0,
306 { KV5M_DATA, 16,
307 "\x1D\xC4\x6A\x8D\x76\x3F\x4F\x93\x74\x2B\xCB\xA3\x38\x75\x76\xC3" },
308 { KV5M_DATA, 32,
309 "\xC4\x66\xF1\x87\x10\x69\x92\x1E\xDB\x7C\x6F\xDE\x24\x4A\x52\xDB"
310 "\x0B\xA1\x0E\xDC\x19\x7B\xDB\x80\x06\x65\x8C\xA3\xCC\xCE\x6E\xB8" }
311 },
312 {
313 ENCTYPE_CAMELLIA128_CTS_CMAC,
314 { KV5M_DATA, 1, "1", }, 1,
315 { KV5M_DATA, 16,
316 "\x50\x27\xBC\x23\x1D\x0F\x3A\x9D\x23\x33\x3F\x1C\xA6\xFD\xBE\x7C" },
317 { KV5M_DATA, 33,
318 "\x84\x2D\x21\xFD\x95\x03\x11\xC0\xDD\x46\x4A\x3F\x4B\xE8\xD6\xDA"
319 "\x88\xA5\x6D\x55\x9C\x9B\x47\xD3\xF9\xA8\x50\x67\xAF\x66\x15\x59"
320 "\xB8" }
321 },
322 {
323 ENCTYPE_CAMELLIA128_CTS_CMAC,
324 { KV5M_DATA, 9, "9 bytesss", }, 2,
325 { KV5M_DATA, 16,
326 "\xA1\xBB\x61\xE8\x05\xF9\xBA\x6D\xDE\x8F\xDB\xDD\xC0\x5C\xDE\xA0" },
327 { KV5M_DATA, 41,
328 "\x61\x9F\xF0\x72\xE3\x62\x86\xFF\x0A\x28\xDE\xB3\xA3\x52\xEC\x0D"
329 "\x0E\xDF\x5C\x51\x60\xD6\x63\xC9\x01\x75\x8C\xCF\x9D\x1E\xD3\x3D"
330 "\x71\xDB\x8F\x23\xAA\xBF\x83\x48\xA0" }
331 },
332 {
333 ENCTYPE_CAMELLIA128_CTS_CMAC,
334 { KV5M_DATA, 13, "13 bytes byte", }, 3,
335 { KV5M_DATA, 16,
336 "\x2C\xA2\x7A\x5F\xAF\x55\x32\x24\x45\x06\x43\x4E\x1C\xEF\x66\x76" },
337 { KV5M_DATA, 45,
338 "\xB8\xEC\xA3\x16\x7A\xE6\x31\x55\x12\xE5\x9F\x98\xA7\xC5\x00\x20"
339 "\x5E\x5F\x63\xFF\x3B\xB3\x89\xAF\x1C\x41\xA2\x1D\x64\x0D\x86\x15"
340 "\xC9\xED\x3F\xBE\xB0\x5A\xB6\xAC\xB6\x76\x89\xB5\xEA" }
341 },
342 {
343 ENCTYPE_CAMELLIA128_CTS_CMAC,
344 { KV5M_DATA, 30, "30 bytes bytes bytes bytes byt", }, 4,
345 { KV5M_DATA, 16,
346 "\x78\x24\xF8\xC1\x6F\x83\xFF\x35\x4C\x6B\xF7\x51\x5B\x97\x3F\x43" },
347 { KV5M_DATA, 62,
348 "\xA2\x6A\x39\x05\xA4\xFF\xD5\x81\x6B\x7B\x1E\x27\x38\x0D\x08\x09"
349 "\x0C\x8E\xC1\xF3\x04\x49\x6E\x1A\xBD\xCD\x2B\xDC\xD1\xDF\xFC\x66"
350 "\x09\x89\xE1\x17\xA7\x13\xDD\xBB\x57\xA4\x14\x6C\x15\x87\xCB\xA4"
351 "\x35\x66\x65\x59\x1D\x22\x40\x28\x2F\x58\x42\xB1\x05\xA5" }
352 },
353
354 {
355 ENCTYPE_CAMELLIA256_CTS_CMAC,
356 { KV5M_DATA, 0, "", }, 0,
357 { KV5M_DATA, 32,
358 "\xB6\x1C\x86\xCC\x4E\x5D\x27\x57\x54\x5A\xD4\x23\x39\x9F\xB7\x03"
359 "\x1E\xCA\xB9\x13\xCB\xB9\x00\xBD\x7A\x3C\x6D\xD8\xBF\x92\x01\x5B" },
360 { KV5M_DATA, 32,
361 "\x03\x88\x6D\x03\x31\x0B\x47\xA6\xD8\xF0\x6D\x7B\x94\xD1\xDD\x83"
362 "\x7E\xCC\xE3\x15\xEF\x65\x2A\xFF\x62\x08\x59\xD9\x4A\x25\x92\x66" }
363 },
364 {
365 ENCTYPE_CAMELLIA256_CTS_CMAC,
366 { KV5M_DATA, 1, "1", }, 1,
367 { KV5M_DATA, 32,
368 "\x1B\x97\xFE\x0A\x19\x0E\x20\x21\xEB\x30\x75\x3E\x1B\x6E\x1E\x77"
369 "\xB0\x75\x4B\x1D\x68\x46\x10\x35\x58\x64\x10\x49\x63\x46\x38\x33" },
370 { KV5M_DATA, 33,
371 "\x2C\x9C\x15\x70\x13\x3C\x99\xBF\x6A\x34\xBC\x1B\x02\x12\x00\x2F"
372 "\xD1\x94\x33\x87\x49\xDB\x41\x35\x49\x7A\x34\x7C\xFC\xD9\xD1\x8A"
373 "\x12" }
374 },
375 {
376 ENCTYPE_CAMELLIA256_CTS_CMAC,
377 { KV5M_DATA, 9, "9 bytesss", }, 2,
378 { KV5M_DATA, 32,
379 "\x32\x16\x4C\x5B\x43\x4D\x1D\x15\x38\xE4\xCF\xD9\xBE\x80\x40\xFE"
380 "\x8C\x4A\xC7\xAC\xC4\xB9\x3D\x33\x14\xD2\x13\x36\x68\x14\x7A\x05" },
381 { KV5M_DATA, 41,
382 "\x9C\x6D\xE7\x5F\x81\x2D\xE7\xED\x0D\x28\xB2\x96\x35\x57\xA1\x15"
383 "\x64\x09\x98\x27\x5B\x0A\xF5\x15\x27\x09\x91\x3F\xF5\x2A\x2A\x9C"
384 "\x8E\x63\xB8\x72\xF9\x2E\x64\xC8\x39" }
385 },
386 {
387 ENCTYPE_CAMELLIA256_CTS_CMAC,
388 { KV5M_DATA, 13, "13 bytes byte", }, 3,
389 { KV5M_DATA, 32,
390 "\xB0\x38\xB1\x32\xCD\x8E\x06\x61\x22\x67\xFA\xB7\x17\x00\x66\xD8"
391 "\x8A\xEC\xCB\xA0\xB7\x44\xBF\xC6\x0D\xC8\x9B\xCA\x18\x2D\x07\x15" },
392 { KV5M_DATA, 45,
393 "\xEE\xEC\x85\xA9\x81\x3C\xDC\x53\x67\x72\xAB\x9B\x42\xDE\xFC\x57"
394 "\x06\xF7\x26\xE9\x75\xDD\xE0\x5A\x87\xEB\x54\x06\xEA\x32\x4C\xA1"
395 "\x85\xC9\x98\x6B\x42\xAA\xBE\x79\x4B\x84\x82\x1B\xEE" }
396 },
397 {
398 ENCTYPE_CAMELLIA256_CTS_CMAC,
399 { KV5M_DATA, 30, "30 bytes bytes bytes bytes byt", }, 4,
400 { KV5M_DATA, 32,
401 "\xCC\xFC\xD3\x49\xBF\x4C\x66\x77\xE8\x6E\x4B\x02\xB8\xEA\xB9\x24"
402 "\xA5\x46\xAC\x73\x1C\xF9\xBF\x69\x89\xB9\x96\xE7\xD6\xBF\xBB\xA7" },
403 { KV5M_DATA, 62,
404 "\x0E\x44\x68\x09\x85\x85\x5F\x2D\x1F\x18\x12\x52\x9C\xA8\x3B\xFD"
405 "\x8E\x34\x9D\xE6\xFD\x9A\xDA\x0B\xAA\xA0\x48\xD6\x8E\x26\x5F\xEB"
406 "\xF3\x4A\xD1\x25\x5A\x34\x49\x99\xAD\x37\x14\x68\x87\xA6\xC6\x84"
407 "\x57\x31\xAC\x7F\x46\x37\x6A\x05\x04\xCD\x06\x57\x14\x74" }
408 },
409
410 {
411 ENCTYPE_AES128_CTS_HMAC_SHA256_128,
412 { KV5M_DATA, 0, "", }, 2,
413 { KV5M_DATA, 16,
414 "\x37\x05\xD9\x60\x80\xC1\x77\x28\xA0\xE8\x00\xEA\xB6\xE0\xD2\x3C" },
415 { KV5M_DATA, 32,
416 "\xEF\x85\xFB\x89\x0B\xB8\x47\x2F\x4D\xAB\x20\x39\x4D\xCA\x78\x1D"
417 "\xAD\x87\x7E\xDA\x39\xD5\x0C\x87\x0C\x0D\x5A\x0A\x8E\x48\xC7\x18" }
418 },
419 {
420 ENCTYPE_AES128_CTS_HMAC_SHA256_128,
421 { KV5M_DATA, 6, "\x00\x01\x02\x03\x04\x05", }, 2,
422 { KV5M_DATA, 16,
423 "\x37\x05\xD9\x60\x80\xC1\x77\x28\xA0\xE8\x00\xEA\xB6\xE0\xD2\x3C" },
424 { KV5M_DATA, 38,
425 "\x84\xD7\xF3\x07\x54\xED\x98\x7B\xAB\x0B\xF3\x50\x6B\xEB\x09\xCF"
426 "\xB5\x54\x02\xCE\xF7\xE6\x87\x7C\xE9\x9E\x24\x7E\x52\xD1\x6E\xD4"
427 "\x42\x1D\xFD\xF8\x97\x6C" }
428 },
429 {
430 ENCTYPE_AES128_CTS_HMAC_SHA256_128,
431 { KV5M_DATA, 16,
432 "\x00\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0A\x0B\x0C\x0D\x0E\x0F" },
433 2,
434 { KV5M_DATA, 16,
435 "\x37\x05\xD9\x60\x80\xC1\x77\x28\xA0\xE8\x00\xEA\xB6\xE0\xD2\x3C" },
436 { KV5M_DATA, 48,
437 "\x35\x17\xD6\x40\xF5\x0D\xDC\x8A\xD3\x62\x87\x22\xB3\x56\x9D\x2A"
438 "\xE0\x74\x93\xFA\x82\x63\x25\x40\x80\xEA\x65\xC1\x00\x8E\x8F\xC2"
439 "\x95\xFB\x48\x52\xE7\xD8\x3E\x1E\x7C\x48\xC3\x7E\xEB\xE6\xB0\xD3" }
440 },
441 {
442 ENCTYPE_AES128_CTS_HMAC_SHA256_128,
443 { KV5M_DATA, 21,
444 "\x00\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0A\x0B\x0C\x0D\x0E\x0F"
445 "\x10\x11\x12\x13\x14" },
446 2,
447 { KV5M_DATA, 16,
448 "\x37\x05\xD9\x60\x80\xC1\x77\x28\xA0\xE8\x00\xEA\xB6\xE0\xD2\x3C" },
449 { KV5M_DATA, 53,
450 "\x72\x0F\x73\xB1\x8D\x98\x59\xCD\x6C\xCB\x43\x46\x11\x5C\xD3\x36"
451 "\xC7\x0F\x58\xED\xC0\xC4\x43\x7C\x55\x73\x54\x4C\x31\xC8\x13\xBC"
452 "\xE1\xE6\xD0\x72\xC1\x86\xB3\x9A\x41\x3C\x2F\x92\xCA\x9B\x83\x34"
453 "\xA2\x87\xFF\xCB\xFC" }
454 },
455
456 {
457 ENCTYPE_AES256_CTS_HMAC_SHA384_192,
458 { KV5M_DATA, 0, "", }, 2,
459 { KV5M_DATA, 32,
460 "\x6D\x40\x4D\x37\xFA\xF7\x9F\x9D\xF0\xD3\x35\x68\xD3\x20\x66\x98"
461 "\x00\xEB\x48\x36\x47\x2E\xA8\xA0\x26\xD1\x6B\x71\x82\x46\x0C\x52" },
462 { KV5M_DATA, 40,
463 "\x41\xF5\x3F\xA5\xBF\xE7\x02\x6D\x91\xFA\xF9\xBE\x95\x91\x95\xA0"
464 "\x58\x70\x72\x73\xA9\x6A\x40\xF0\xA0\x19\x60\x62\x1A\xC6\x12\x74"
465 "\x8B\x9B\xBF\xBE\x7E\xB4\xCE\x3C" }
466 },
467 {
468 ENCTYPE_AES256_CTS_HMAC_SHA384_192,
469 { KV5M_DATA, 6, "\x00\x01\x02\x03\x04\x05", }, 2,
470 { KV5M_DATA, 32,
471 "\x6D\x40\x4D\x37\xFA\xF7\x9F\x9D\xF0\xD3\x35\x68\xD3\x20\x66\x98"
472 "\x00\xEB\x48\x36\x47\x2E\xA8\xA0\x26\xD1\x6B\x71\x82\x46\x0C\x52" },
473 { KV5M_DATA, 46,
474 "\x4E\xD7\xB3\x7C\x2B\xCA\xC8\xF7\x4F\x23\xC1\xCF\x07\xE6\x2B\xC7"
475 "\xB7\x5F\xB3\xF6\x37\xB9\xF5\x59\xC7\xF6\x64\xF6\x9E\xAB\x7B\x60"
476 "\x92\x23\x75\x26\xEA\x0D\x1F\x61\xCB\x20\xD6\x9D\x10\xF2" }
477 },
478 {
479 ENCTYPE_AES256_CTS_HMAC_SHA384_192,
480 { KV5M_DATA, 16,
481 "\x00\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0A\x0B\x0C\x0D\x0E\x0F" },
482 2,
483 { KV5M_DATA, 32,
484 "\x6D\x40\x4D\x37\xFA\xF7\x9F\x9D\xF0\xD3\x35\x68\xD3\x20\x66\x98"
485 "\x00\xEB\x48\x36\x47\x2E\xA8\xA0\x26\xD1\x6B\x71\x82\x46\x0C\x52" },
486 { KV5M_DATA, 56,
487 "\xBC\x47\xFF\xEC\x79\x98\xEB\x91\xE8\x11\x5C\xF8\xD1\x9D\xAC\x4B"
488 "\xBB\xE2\xE1\x63\xE8\x7D\xD3\x7F\x49\xBE\xCA\x92\x02\x77\x64\xF6"
489 "\x8C\xF5\x1F\x14\xD7\x98\xC2\x27\x3F\x35\xDF\x57\x4D\x1F\x93\x2E"
490 "\x40\xC4\xFF\x25\x5B\x36\xA2\x66" }
491 },
492 {
493 ENCTYPE_AES256_CTS_HMAC_SHA384_192,
494 { KV5M_DATA, 21,
495 "\x00\x01\x02\x03\x04\x05\x06\x07\x08\x09\x0A\x0B\x0C\x0D\x0E\x0F"
496 "\x10\x11\x12\x13\x14" },
497 2,
498 { KV5M_DATA, 32,
499 "\x6D\x40\x4D\x37\xFA\xF7\x9F\x9D\xF0\xD3\x35\x68\xD3\x20\x66\x98"
500 "\x00\xEB\x48\x36\x47\x2E\xA8\xA0\x26\xD1\x6B\x71\x82\x46\x0C\x52" },
501 { KV5M_DATA, 61,
502 "\x40\x01\x3E\x2D\xF5\x8E\x87\x51\x95\x7D\x28\x78\xBC\xD2\xD6\xFE"
503 "\x10\x1C\xCF\xD5\x56\xCB\x1E\xAE\x79\xDB\x3C\x3E\xE8\x64\x29\xF2"
504 "\xB2\xA6\x02\xAC\x86\xFE\xF6\xEC\xB6\x47\xD6\x29\x5F\xAE\x07\x7A"
505 "\x1F\xEB\x51\x75\x08\xD2\xC1\x6B\x41\x92\xE0\x1F\x62" }
506 },
507 };
508
509 static void
printhex(const char * head,void * data,size_t len)510 printhex(const char *head, void *data, size_t len)
511 {
512 size_t i;
513
514 printf("%s", head);
515 for (i = 0; i < len; i++) {
516 printf("%02X", ((unsigned char*)data)[i]);
517 if (i % 16 == 15 && i + 1 < len)
518 printf("\n%*s", (int)strlen(head), "");
519 else if (i + 1 < len)
520 printf(" ");
521 }
522 printf("\n");
523 }
524
525 static krb5_enctype
526 enctypes[] = {
527 ENCTYPE_DES3_CBC_SHA1,
528 ENCTYPE_ARCFOUR_HMAC,
529 ENCTYPE_ARCFOUR_HMAC_EXP,
530 ENCTYPE_AES128_CTS_HMAC_SHA1_96,
531 ENCTYPE_AES256_CTS_HMAC_SHA1_96,
532 ENCTYPE_CAMELLIA128_CTS_CMAC,
533 ENCTYPE_CAMELLIA256_CTS_CMAC,
534 ENCTYPE_AES128_CTS_HMAC_SHA256_128,
535 ENCTYPE_AES256_CTS_HMAC_SHA384_192
536 };
537
538 static char *plaintexts[] = {
539 "",
540 "1",
541 "9 bytesss",
542 "13 bytes byte",
543 "30 bytes bytes bytes bytes byt"
544 };
545
546 static int
generate(krb5_context context)547 generate(krb5_context context)
548 {
549 krb5_error_code ret;
550 size_t i, j;
551 krb5_keyblock kb;
552 krb5_data plain, seed = string2data("seed");
553 krb5_enc_data enc;
554 size_t enclen;
555 char buf[64];
556
557 ret = krb5_c_random_seed(context, &seed);
558 assert(!ret);
559 for (i = 0; i < sizeof(enctypes) / sizeof(*enctypes); i++) {
560 for (j = 0; j < sizeof(plaintexts) / sizeof(*plaintexts); j++) {
561 ret = krb5_c_make_random_key(context, enctypes[i], &kb);
562 assert(!ret);
563 plain = string2data(plaintexts[j]);
564 ret = krb5_c_encrypt_length(context, enctypes[i], plain.length,
565 &enclen);
566 assert(!ret);
567 ret = alloc_data(&enc.ciphertext, enclen);
568 assert(!ret);
569 ret = krb5_c_encrypt(context, &kb, j, NULL, &plain, &enc);
570 assert(!ret);
571 krb5_enctype_to_name(enctypes[i], FALSE, buf, sizeof(buf));
572 printf("\nEnctype: %s\n", buf);
573 printf("Plaintext: %s\n", plaintexts[j]);
574 printhex("Key: ", kb.contents, kb.length);
575 printhex("Ciphertext: ", enc.ciphertext.data,
576 enc.ciphertext.length);
577 free(enc.ciphertext.data);
578 }
579 }
580 return 0;
581 }
582
583 int
main(int argc,char ** argv)584 main(int argc, char **argv)
585 {
586 krb5_error_code ret;
587 krb5_context context = NULL;
588 krb5_data plain;
589 size_t i;
590 struct test *test;
591 krb5_keyblock kb;
592 krb5_enc_data enc;
593
594 if (argc >= 2 && strcmp(argv[1], "-g") == 0)
595 return generate(context);
596
597 for (i = 0; i < sizeof(test_cases) / sizeof(*test_cases); i++) {
598 test = &test_cases[i];
599 kb.magic = KV5M_KEYBLOCK;
600 kb.enctype = test->enctype;
601 kb.length = test->keybits.length;
602 kb.contents = (unsigned char *)test->keybits.data;
603 ret = alloc_data(&plain, test->ciphertext.length);
604 assert(!ret);
605 enc.magic = KV5M_ENC_DATA;
606 enc.enctype = test->enctype;
607 enc.kvno = 0;
608 enc.ciphertext = test->ciphertext;
609 if (krb5_c_decrypt(context, &kb, test->usage, NULL, &enc,
610 &plain) != 0) {
611 printf("decrypt test %d failed to decrypt\n", (int)i);
612 return 1;
613 }
614 assert(plain.length >= test->plaintext.length);
615 if (memcmp(plain.data, test->plaintext.data,
616 test->plaintext.length) != 0) {
617 printf("decrypt test %d produced wrong result\n", (int)i);
618 return 1;
619 }
620 free(plain.data);
621 }
622 return 0;
623 }
624