Home Explore Help
Sign In
shayan.davarifard
/
Padra
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 6ecaad37a3
Branches Tags
Padra
/
tls
/
pycryptoMod
/
lib
/
Crypto
/
SelfTest
/
Cipher
/
test_CBC.py

test_CBC.py 20 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554 
  1. # ===================================================================
    2. 

  2. #
    3. 

  3. # Copyright (c) 2014, Legrandin <helderijs@gmail.com>
    4. 

  4. # All rights reserved.
    5. 

  5. #
    6. 

  6. # Redistribution and use in source and binary forms, with or without
    7. 

  7. # modification, are permitted provided that the following conditions
    8. 

  8. # are met:
    9. 

  9. #
    10. 

  10. # 1. Redistributions of source code must retain the above copyright
    11. 

  11. #    notice, this list of conditions and the following disclaimer.
    12. 

  12. # 2. Redistributions in binary form must reproduce the above copyright
    13. 

  13. #    notice, this list of conditions and the following disclaimer in
    14. 

  14. #    the documentation and/or other materials provided with the
    15. 

  15. #    distribution.
    16. 

  16. #
    17. 

  17. # THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
    18. 

  18. # "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
    19. 

  19. # LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
    20. 

  20. # FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
    21. 

  21. # COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
    22. 

  22. # INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
    23. 

  23. # BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
    24. 

  24. # LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
    25. 

  25. # CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
    26. 

  26. # LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
    27. 

  27. # ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
    28. 

  28. # POSSIBILITY OF SUCH DAMAGE.
    29. 

  29. # ===================================================================
    30. 

  30. 

  31. import unittest
    32. 

  32. from binascii import unhexlify
    33. 

  33. 

  34. from tls.Crypto.SelfTest.loader import load_tests
    35. 

  35. from tls.Crypto.SelfTest.st_common import list_test_cases
    36. 

  36. from tls.Crypto.Util.py3compat import tobytes, _memoryview, is_string
    37. 

  37. from tls.Crypto.Cipher import AES, DES3, DES
    38. 

  38. from tls.Crypto.Hash import SHAKE128
    39. 

  39. 

  40. def get_tag_random(tag, length):
    41. 

  41.     return SHAKE128.new(data=tobytes(tag)).read(length)
    42. 

  42. 

  43. class BlockChainingTests(unittest.TestCase):
    44. 

  44. 

  45.     key_128 = get_tag_random("key_128", 16)
    46. 

  46.     key_192 = get_tag_random("key_192", 24)
    47. 

  47.     iv_128 = get_tag_random("iv_128", 16)
    48. 

  48.     iv_64 = get_tag_random("iv_64", 8)
    49. 

  49.     data_128 = get_tag_random("data_128", 16)
    50. 

  50. 

  51.     def test_loopback_128(self):
    52. 

  52.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    53. 

  53.         pt = get_tag_random("plaintext", 16 * 100)
    54. 

  54.         ct = cipher.encrypt(pt)
    55. 

  55. 

  56.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    57. 

  57.         pt2 = cipher.decrypt(ct)
    58. 

  58.         self.assertEqual(pt, pt2)
    59. 

  59. 

  60.     def test_loopback_64(self):
    61. 

  61.         cipher = DES3.new(self.key_192, self.des3_mode, self.iv_64)
    62. 

  62.         pt = get_tag_random("plaintext", 8 * 100)
    63. 

  63.         ct = cipher.encrypt(pt)
    64. 

  64. 

  65.         cipher = DES3.new(self.key_192, self.des3_mode, self.iv_64)
    66. 

  66.         pt2 = cipher.decrypt(ct)
    67. 

  67.         self.assertEqual(pt, pt2)
    68. 

  68. 

  69.     def test_iv(self):
    70. 

  70.         # If not passed, the iv is created randomly
    71. 

  71.         cipher = AES.new(self.key_128, self.aes_mode)
    72. 

  72.         iv1 = cipher.iv
    73. 

  73.         cipher = AES.new(self.key_128, self.aes_mode)
    74. 

  74.         iv2 = cipher.iv
    75. 

  75.         self.assertNotEqual(iv1, iv2)
    76. 

  76.         self.assertEqual(len(iv1), 16)
    77. 

  77. 

  78.         # IV can be passed in uppercase or lowercase
    79. 

  79.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    80. 

  80.         ct = cipher.encrypt(self.data_128)
    81. 

  81. 

  82.         cipher = AES.new(self.key_128, self.aes_mode, iv=self.iv_128)
    83. 

  83.         self.assertEquals(ct, cipher.encrypt(self.data_128))
    84. 

  84. 

  85.         cipher = AES.new(self.key_128, self.aes_mode, IV=self.iv_128)
    86. 

  86.         self.assertEquals(ct, cipher.encrypt(self.data_128))
    87. 

  87. 

  88.     def test_iv_must_be_bytes(self):
    89. 

  89.         self.assertRaises(TypeError, AES.new, self.key_128, self.aes_mode,
    90. 

  90.                           iv = u'test1234567890-*')
    91. 

  91. 

  92.     def test_only_one_iv(self):
    93. 

  93.         # Only one IV/iv keyword allowed
    94. 

  94.         self.assertRaises(TypeError, AES.new, self.key_128, self.aes_mode,
    95. 

  95.                           iv=self.iv_128, IV=self.iv_128)
    96. 

  96. 

  97.     def test_iv_with_matching_length(self):
    98. 

  98.         self.assertRaises(ValueError, AES.new, self.key_128, self.aes_mode,
    99. 

  99.                           b"")
    100. 

  100.         self.assertRaises(ValueError, AES.new, self.key_128, self.aes_mode,
    101. 

  101.                           self.iv_128[:15])
    102. 

  102.         self.assertRaises(ValueError, AES.new, self.key_128, self.aes_mode,
    103. 

  103.                           self.iv_128 + b"0")
    104. 

  104. 

  105.     def test_block_size_128(self):
    106. 

  106.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    107. 

  107.         self.assertEqual(cipher.block_size, AES.block_size)
    108. 

  108. 

  109.     def test_block_size_64(self):
    110. 

  110.         cipher = DES3.new(self.key_192, self.des3_mode, self.iv_64)
    111. 

  111.         self.assertEqual(cipher.block_size, DES3.block_size)
    112. 

  112. 

  113.     def test_unaligned_data_128(self):
    114. 

  114.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    115. 

  115.         for wrong_length in range(1,16):
    116. 

  116.             self.assertRaises(ValueError, cipher.encrypt, b"5" * wrong_length)
    117. 

  117. 

  118.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    119. 

  119.         for wrong_length in range(1,16):
    120. 

  120.             self.assertRaises(ValueError, cipher.decrypt, b"5" * wrong_length)
    121. 

  121. 

  122.     def test_unaligned_data_64(self):
    123. 

  123.         cipher = DES3.new(self.key_192, self.des3_mode, self.iv_64)
    124. 

  124.         for wrong_length in range(1,8):
    125. 

  125.             self.assertRaises(ValueError, cipher.encrypt, b"5" * wrong_length)
    126. 

  126. 

  127.         cipher = DES3.new(self.key_192, self.des3_mode, self.iv_64)
    128. 

  128.         for wrong_length in range(1,8):
    129. 

  129.             self.assertRaises(ValueError, cipher.decrypt, b"5" * wrong_length)
    130. 

  130. 

  131.     def test_IV_iv_attributes(self):
    132. 

  132.         data = get_tag_random("data", 16 * 100)
    133. 

  133.         for func in "encrypt", "decrypt":
    134. 

  134.             cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    135. 

  135.             getattr(cipher, func)(data)
    136. 

  136.             self.assertEqual(cipher.iv, self.iv_128)
    137. 

  137.             self.assertEqual(cipher.IV, self.iv_128)
    138. 

  138. 

  139.     def test_unknown_parameters(self):
    140. 

  140.         self.assertRaises(TypeError, AES.new, self.key_128, self.aes_mode,
    141. 

  141.                           self.iv_128, 7)
    142. 

  142.         self.assertRaises(TypeError, AES.new, self.key_128, self.aes_mode,
    143. 

  143.                           iv=self.iv_128, unknown=7)
    144. 

  144.         # But some are only known by the base cipher (e.g. use_aesni consumed by the AES module)
    145. 

  145.         AES.new(self.key_128, self.aes_mode, iv=self.iv_128, use_aesni=False)
    146. 

  146. 

  147.     def test_null_encryption_decryption(self):
    148. 

  148.         for func in "encrypt", "decrypt":
    149. 

  149.             cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    150. 

  150.             result = getattr(cipher, func)(b"")
    151. 

  151.             self.assertEqual(result, b"")
    152. 

  152. 

  153.     def test_either_encrypt_or_decrypt(self):
    154. 

  154.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    155. 

  155.         cipher.encrypt(b"")
    156. 

  156.         self.assertRaises(TypeError, cipher.decrypt, b"")
    157. 

  157. 

  158.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    159. 

  159.         cipher.decrypt(b"")
    160. 

  160.         self.assertRaises(TypeError, cipher.encrypt, b"")
    161. 

  161. 

  162.     def test_data_must_be_bytes(self):
    163. 

  163.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    164. 

  164.         self.assertRaises(TypeError, cipher.encrypt, u'test1234567890-*')
    165. 

  165. 

  166.         cipher = AES.new(self.key_128, self.aes_mode, self.iv_128)
    167. 

  167.         self.assertRaises(TypeError, cipher.decrypt, u'test1234567890-*')
    168. 

  168. 

  169.     def test_bytearray(self):
    170. 

  170.         data = b"1" * 16
    171. 

  171.         data_ba = bytearray(data)
    172. 

  172. 

  173.         # Encrypt
    174. 

  174.         key_ba = bytearray(self.key_128)
    175. 

  175.         iv_ba = bytearray(self.iv_128)
    176. 

  176. 

  177.         cipher1 = AES.new(self.key_128, self.aes_mode, self.iv_128)
    178. 

  178.         ref1 = cipher1.encrypt(data)
    179. 

  179. 

  180.         cipher2 = AES.new(key_ba, self.aes_mode, iv_ba)
    181. 

  181.         key_ba[:3] = b'\xFF\xFF\xFF'
    182. 

  182.         iv_ba[:3] = b'\xFF\xFF\xFF'
    183. 

  183.         ref2 = cipher2.encrypt(data_ba)
    184. 

  184. 

  185.         self.assertEqual(ref1, ref2)
    186. 

  186.         self.assertEqual(cipher1.iv, cipher2.iv)
    187. 

  187. 

  188.         # Decrypt
    189. 

  189.         key_ba = bytearray(self.key_128)
    190. 

  190.         iv_ba = bytearray(self.iv_128)
    191. 

  191. 

  192.         cipher3 = AES.new(self.key_128, self.aes_mode, self.iv_128)
    193. 

  193.         ref3 = cipher3.decrypt(data)
    194. 

  194. 

  195.         cipher4 = AES.new(key_ba, self.aes_mode, iv_ba)
    196. 

  196.         key_ba[:3] = b'\xFF\xFF\xFF'
    197. 

  197.         iv_ba[:3] = b'\xFF\xFF\xFF'
    198. 

  198.         ref4 = cipher4.decrypt(data_ba)
    199. 

  199. 

  200.         self.assertEqual(ref3, ref4)
    201. 

  201. 

  202.     def test_memoryview(self):
    203. 

  203.         data = b"1" * 16
    204. 

  204.         data_mv = memoryview(bytearray(data))
    205. 

  205. 

  206.         # Encrypt
    207. 

  207.         key_mv = memoryview(bytearray(self.key_128))
    208. 

  208.         iv_mv = memoryview(bytearray(self.iv_128))
    209. 

  209. 

  210.         cipher1 = AES.new(self.key_128, self.aes_mode, self.iv_128)
    211. 

  211.         ref1 = cipher1.encrypt(data)
    212. 

  212. 

  213.         cipher2 = AES.new(key_mv, self.aes_mode, iv_mv)
    214. 

  214.         key_mv[:3] = b'\xFF\xFF\xFF'
    215. 

  215.         iv_mv[:3] = b'\xFF\xFF\xFF'
    216. 

  216.         ref2 = cipher2.encrypt(data_mv)
    217. 

  217. 

  218.         self.assertEqual(ref1, ref2)
    219. 

  219.         self.assertEqual(cipher1.iv, cipher2.iv)
    220. 

  220. 

  221.         # Decrypt
    222. 

  222.         key_mv = memoryview(bytearray(self.key_128))
    223. 

  223.         iv_mv = memoryview(bytearray(self.iv_128))
    224. 

  224. 

  225.         cipher3 = AES.new(self.key_128, self.aes_mode, self.iv_128)
    226. 

  226.         ref3 = cipher3.decrypt(data)
    227. 

  227. 

  228.         cipher4 = AES.new(key_mv, self.aes_mode, iv_mv)
    229. 

  229.         key_mv[:3] = b'\xFF\xFF\xFF'
    230. 

  230.         iv_mv[:3] = b'\xFF\xFF\xFF'
    231. 

  231.         ref4 = cipher4.decrypt(data_mv)
    232. 

  232. 

  233.         self.assertEqual(ref3, ref4)
    234. 

  234.     
    235. 

  235.     def test_output_param(self):
    236. 

  236. 

  237.         pt = b'5' * 16
    238. 

  238.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    239. 

  239.         ct = cipher.encrypt(pt)
    240. 

  240. 

  241.         output = bytearray(16)
    242. 

  242.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    243. 

  243.         res = cipher.encrypt(pt, output=output)
    244. 

  244.         self.assertEqual(ct, output)
    245. 

  245.         self.assertEqual(res, None)
    246. 

  246.         
    247. 

  247.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    248. 

  248.         res = cipher.decrypt(ct, output=output)
    249. 

  249.         self.assertEqual(pt, output)
    250. 

  250.         self.assertEqual(res, None)
    251. 

  251. 

  252. 

  253.     def test_output_param_same_buffer(self):
    254. 

  254. 

  255.         pt = b'5' * 16
    256. 

  256.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    257. 

  257.         ct = cipher.encrypt(pt)
    258. 

  258. 

  259.         pt_ba = bytearray(pt)
    260. 

  260.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    261. 

  261.         res = cipher.encrypt(pt_ba, output=pt_ba)
    262. 

  262.         self.assertEqual(ct, pt_ba)
    263. 

  263.         self.assertEqual(res, None)
    264. 

  264.         
    265. 

  265.         ct_ba = bytearray(ct)
    266. 

  266.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    267. 

  267.         res = cipher.decrypt(ct_ba, output=ct_ba)
    268. 

  268.         self.assertEqual(pt, ct_ba)
    269. 

  269.         self.assertEqual(res, None)
    270. 

  270. 

  271. 

  272.     def test_output_param_memoryview(self):
    273. 

  273.         
    274. 

  274.         pt = b'5' * 16
    275. 

  275.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    276. 

  276.         ct = cipher.encrypt(pt)
    277. 

  277. 

  278.         output = memoryview(bytearray(16))
    279. 

  279.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    280. 

  280.         cipher.encrypt(pt, output=output)
    281. 

  281.         self.assertEqual(ct, output)
    282. 

  282.         
    283. 

  283.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    284. 

  284.         cipher.decrypt(ct, output=output)
    285. 

  285.         self.assertEqual(pt, output)
    286. 

  286. 

  287.     def test_output_param_neg(self):
    288. 

  288. 

  289.         pt = b'5' * 16
    290. 

  290.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    291. 

  291.         ct = cipher.encrypt(pt)
    292. 

  292. 

  293.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    294. 

  294.         self.assertRaises(TypeError, cipher.encrypt, pt, output=b'0'*16)
    295. 

  295.         
    296. 

  296.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    297. 

  297.         self.assertRaises(TypeError, cipher.decrypt, ct, output=b'0'*16)
    298. 

  298. 

  299.         shorter_output = bytearray(15)
    300. 

  300.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    301. 

  301.         self.assertRaises(ValueError, cipher.encrypt, pt, output=shorter_output)
    302. 

  302.         cipher = AES.new(b'4'*16, self.aes_mode, iv=self.iv_128)
    303. 

  303.         self.assertRaises(ValueError, cipher.decrypt, ct, output=shorter_output)
    304. 

  304. 

  305. 

  306.     import sys
    307. 

  307.     if sys.version[:3] == "2.6":
    308. 

  308.         del test_memoryview
    309. 

  309.         del test_output_param_memoryview
    310. 

  310. 

  311. 

  312. class CbcTests(BlockChainingTests):
    313. 

  313.     aes_mode = AES.MODE_CBC
    314. 

  314.     des3_mode = DES3.MODE_CBC
    315. 

  315. 

  316. 

  317. class NistBlockChainingVectors(unittest.TestCase):
    318. 

  318. 

  319.     def _do_kat_aes_test(self, file_name):
    320. 

  320.         test_vectors = load_tests(("Crypto", "SelfTest", "Cipher", "test_vectors", "AES"),
    321. 

  321.                                   file_name,
    322. 

  322.                                   "AES KAT",
    323. 

  323.                                   { "count" : lambda x: int(x) } )
    324. 

  324.         assert(test_vectors)
    325. 

  325. 

  326.         direction = None
    327. 

  327.         for tv in test_vectors:
    328. 

  328. 

  329.             # The test vector file contains some directive lines
    330. 

  330.             if is_string(tv):
    331. 

  331.                 direction = tv
    332. 

  332.                 continue
    333. 

  333. 

  334.             self.description = tv.desc
    335. 

  335. 

  336.             cipher = AES.new(tv.key, self.aes_mode, tv.iv)
    337. 

  337.             if direction == "[ENCRYPT]":
    338. 

  338.                 self.assertEqual(cipher.encrypt(tv.plaintext), tv.ciphertext)
    339. 

  339.             elif direction == "[DECRYPT]":
    340. 

  340.                 self.assertEqual(cipher.decrypt(tv.ciphertext), tv.plaintext)
    341. 

  341.             else:
    342. 

  342.                 assert False
    343. 

  343. 

  344.     # See Section 6.4.2 in AESAVS
    345. 

  345.     def _do_mct_aes_test(self, file_name):
    346. 

  346.         test_vectors = load_tests(("Crypto", "SelfTest", "Cipher", "test_vectors", "AES"),
    347. 

  347.                                   file_name,
    348. 

  348.                                   "AES Montecarlo",
    349. 

  349.                                   { "count" : lambda x: int(x) } )
    350. 

  350.         assert(test_vectors)
    351. 

  351. 

  352.         direction = None
    353. 

  353.         for tv in test_vectors:
    354. 

  354. 

  355.             # The test vector file contains some directive lines
    356. 

  356.             if is_string(tv):
    357. 

  357.                 direction = tv
    358. 

  358.                 continue
    359. 

  359. 

  360.             self.description = tv.desc
    361. 

  361.             cipher = AES.new(tv.key, self.aes_mode, tv.iv)
    362. 

  362. 

  363.             if direction == '[ENCRYPT]':
    364. 

  364.                 cts = [ tv.iv ]
    365. 

  365.                 for count in range(1000):
    366. 

  366.                     cts.append(cipher.encrypt(tv.plaintext))
    367. 

  367.                     tv.plaintext = cts[-2]
    368. 

  368.                 self.assertEqual(cts[-1], tv.ciphertext)
    369. 

  369.             elif direction == '[DECRYPT]':
    370. 

  370.                 pts = [ tv.iv]
    371. 

  371.                 for count in range(1000):
    372. 

  372.                     pts.append(cipher.decrypt(tv.ciphertext))
    373. 

  373.                     tv.ciphertext = pts[-2]
    374. 

  374.                 self.assertEqual(pts[-1], tv.plaintext)
    375. 

  375.             else:
    376. 

  376.                 assert False
    377. 

  377. 

  378.     def _do_tdes_test(self, file_name):
    379. 

  379.         test_vectors = load_tests(("Crypto", "SelfTest", "Cipher", "test_vectors", "TDES"),
    380. 

  380.                                   file_name,
    381. 

  381.                                   "TDES CBC KAT",
    382. 

  382.                                   { "count" : lambda x: int(x) } )
    383. 

  383.         assert(test_vectors)
    384. 

  384. 

  385.         direction = None
    386. 

  386.         for tv in test_vectors:
    387. 

  387. 

  388.             # The test vector file contains some directive lines
    389. 

  389.             if is_string(tv):
    390. 

  390.                 direction = tv
    391. 

  391.                 continue
    392. 

  392. 

  393.             self.description = tv.desc
    394. 

  394.             if hasattr(tv, "keys"):
    395. 

  395.                 cipher = DES.new(tv.keys, self.des_mode, tv.iv)
    396. 

  396.             else:
    397. 

  397.                 if tv.key1 != tv.key3:
    398. 

  398.                     key = tv.key1 + tv.key2 + tv.key3  # Option 3
    399. 

  399.                 else:
    400. 

  400.                     key = tv.key1 + tv.key2            # Option 2
    401. 

  401.                 cipher = DES3.new(key, self.des3_mode, tv.iv)
    402. 

  402. 

  403.             if direction == "[ENCRYPT]":
    404. 

  404.                 self.assertEqual(cipher.encrypt(tv.plaintext), tv.ciphertext)
    405. 

  405.             elif direction == "[DECRYPT]":
    406. 

  406.                 self.assertEqual(cipher.decrypt(tv.ciphertext), tv.plaintext)
    407. 

  407.             else:
    408. 

  408.                 assert False
    409. 

  409. 

  410. 

  411. class NistCbcVectors(NistBlockChainingVectors):
    412. 

  412.     aes_mode = AES.MODE_CBC
    413. 

  413.     des_mode = DES.MODE_CBC
    414. 

  414.     des3_mode = DES3.MODE_CBC
    415. 

  415. 

  416. 

  417. # Create one test method per file
    418. 

  418. nist_aes_kat_mmt_files = (
    419. 

  419.     # KAT
    420. 

  420.     "CBCGFSbox128.rsp",
    421. 

  421.     "CBCGFSbox192.rsp",
    422. 

  422.     "CBCGFSbox256.rsp",
    423. 

  423.     "CBCKeySbox128.rsp",
    424. 

  424.     "CBCKeySbox192.rsp",
    425. 

  425.     "CBCKeySbox256.rsp",
    426. 

  426.     "CBCVarKey128.rsp",
    427. 

  427.     "CBCVarKey192.rsp",
    428. 

  428.     "CBCVarKey256.rsp",
    429. 

  429.     "CBCVarTxt128.rsp",
    430. 

  430.     "CBCVarTxt192.rsp",
    431. 

  431.     "CBCVarTxt256.rsp",
    432. 

  432.     # MMT
    433. 

  433.     "CBCMMT128.rsp",
    434. 

  434.     "CBCMMT192.rsp",
    435. 

  435.     "CBCMMT256.rsp",
    436. 

  436.     )
    437. 

  437. nist_aes_mct_files = (
    438. 

  438.     "CBCMCT128.rsp",
    439. 

  439.     "CBCMCT192.rsp",
    440. 

  440.     "CBCMCT256.rsp",
    441. 

  441.     )
    442. 

  442. 

  443. for file_name in nist_aes_kat_mmt_files:
    444. 

  444.     def new_func(self, file_name=file_name):
    445. 

  445.         self._do_kat_aes_test(file_name)
    446. 

  446.     setattr(NistCbcVectors, "test_AES_" + file_name, new_func)
    447. 

  447. 

  448. for file_name in nist_aes_mct_files:
    449. 

  449.     def new_func(self, file_name=file_name):
    450. 

  450.         self._do_mct_aes_test(file_name)
    451. 

  451.     setattr(NistCbcVectors, "test_AES_" + file_name, new_func)
    452. 

  452. del file_name, new_func
    453. 

  453. 

  454. nist_tdes_files = (
    455. 

  455.     "TCBCMMT2.rsp",    # 2TDES
    456. 

  456.     "TCBCMMT3.rsp",    # 3TDES
    457. 

  457.     "TCBCinvperm.rsp", # Single DES
    458. 

  458.     "TCBCpermop.rsp",
    459. 

  459.     "TCBCsubtab.rsp",
    460. 

  460.     "TCBCvarkey.rsp",
    461. 

  461.     "TCBCvartext.rsp",
    462. 

  462.     )
    463. 

  463. 

  464. for file_name in nist_tdes_files:
    465. 

  465.     def new_func(self, file_name=file_name):
    466. 

  466.         self._do_tdes_test(file_name)
    467. 

  467.     setattr(NistCbcVectors, "test_TDES_" + file_name, new_func)
    468. 

  468. 

  469. # END OF NIST CBC TEST VECTORS
    470. 

  470. 

  471. 

  472. class SP800TestVectors(unittest.TestCase):
    473. 

  473.     """Class exercising the CBC test vectors found in Section F.2
    474. 

  474.     of NIST SP 800-3A"""
    475. 

  475. 

  476.     def test_aes_128(self):
    477. 

  477.         key =           '2b7e151628aed2a6abf7158809cf4f3c'
    478. 

  478.         iv =            '000102030405060708090a0b0c0d0e0f'
    479. 

  479.         plaintext =     '6bc1bee22e409f96e93d7e117393172a' +\
    480. 

  480.                         'ae2d8a571e03ac9c9eb76fac45af8e51' +\
    481. 

  481.                         '30c81c46a35ce411e5fbc1191a0a52ef' +\
    482. 

  482.                         'f69f2445df4f9b17ad2b417be66c3710'
    483. 

  483.         ciphertext =    '7649abac8119b246cee98e9b12e9197d' +\
    484. 

  484.                         '5086cb9b507219ee95db113a917678b2' +\
    485. 

  485.                         '73bed6b8e3c1743b7116e69e22229516' +\
    486. 

  486.                         '3ff1caa1681fac09120eca307586e1a7'
    487. 

  487. 

  488.         key = unhexlify(key)
    489. 

  489.         iv = unhexlify(iv)
    490. 

  490.         plaintext = unhexlify(plaintext)
    491. 

  491.         ciphertext = unhexlify(ciphertext)
    492. 

  492. 

  493.         cipher = AES.new(key, AES.MODE_CBC, iv)
    494. 

  494.         self.assertEqual(cipher.encrypt(plaintext), ciphertext)
    495. 

  495.         cipher = AES.new(key, AES.MODE_CBC, iv)
    496. 

  496.         self.assertEqual(cipher.decrypt(ciphertext), plaintext)
    497. 

  497. 

  498.     def test_aes_192(self):
    499. 

  499.         key =           '8e73b0f7da0e6452c810f32b809079e562f8ead2522c6b7b'
    500. 

  500.         iv =            '000102030405060708090a0b0c0d0e0f'
    501. 

  501.         plaintext =     '6bc1bee22e409f96e93d7e117393172a' +\
    502. 

  502.                         'ae2d8a571e03ac9c9eb76fac45af8e51' +\
    503. 

  503.                         '30c81c46a35ce411e5fbc1191a0a52ef' +\
    504. 

  504.                         'f69f2445df4f9b17ad2b417be66c3710'
    505. 

  505.         ciphertext =    '4f021db243bc633d7178183a9fa071e8' +\
    506. 

  506.                         'b4d9ada9ad7dedf4e5e738763f69145a' +\
    507. 

  507.                         '571b242012fb7ae07fa9baac3df102e0' +\
    508. 

  508.                         '08b0e27988598881d920a9e64f5615cd'
    509. 

  509. 

  510.         key = unhexlify(key)
    511. 

  511.         iv = unhexlify(iv)
    512. 

  512.         plaintext = unhexlify(plaintext)
    513. 

  513.         ciphertext = unhexlify(ciphertext)
    514. 

  514. 

  515.         cipher = AES.new(key, AES.MODE_CBC, iv)
    516. 

  516.         self.assertEqual(cipher.encrypt(plaintext), ciphertext)
    517. 

  517.         cipher = AES.new(key, AES.MODE_CBC, iv)
    518. 

  518.         self.assertEqual(cipher.decrypt(ciphertext), plaintext)
    519. 

  519. 

  520.     def test_aes_256(self):
    521. 

  521.         key =           '603deb1015ca71be2b73aef0857d77811f352c073b6108d72d9810a30914dff4'
    522. 

  522.         iv =            '000102030405060708090a0b0c0d0e0f'
    523. 

  523.         plaintext =     '6bc1bee22e409f96e93d7e117393172a' +\
    524. 

  524.                         'ae2d8a571e03ac9c9eb76fac45af8e51' +\
    525. 

  525.                         '30c81c46a35ce411e5fbc1191a0a52ef' +\
    526. 

  526.                         'f69f2445df4f9b17ad2b417be66c3710'
    527. 

  527.         ciphertext =    'f58c4c04d6e5f1ba779eabfb5f7bfbd6' +\
    528. 

  528.                         '9cfc4e967edb808d679f777bc6702c7d' +\
    529. 

  529.                         '39f23369a9d9bacfa530e26304231461' +\
    530. 

  530.                         'b2eb05e2c39be9fcda6c19078c6a9d1b'
    531. 

  531. 

  532.         key = unhexlify(key)
    533. 

  533.         iv = unhexlify(iv)
    534. 

  534.         plaintext = unhexlify(plaintext)
    535. 

  535.         ciphertext = unhexlify(ciphertext)
    536. 

  536. 

  537.         cipher = AES.new(key, AES.MODE_CBC, iv)
    538. 

  538.         self.assertEqual(cipher.encrypt(plaintext), ciphertext)
    539. 

  539.         cipher = AES.new(key, AES.MODE_CBC, iv)
    540. 

  540.         self.assertEqual(cipher.decrypt(ciphertext), plaintext)
    541. 

  541. 

  542. 

  543. def get_tests(config={}):
    544. 

  544.     tests = []
    545. 

  545.     tests += list_test_cases(CbcTests)
    546. 

  546.     if config.get('slow_tests'):
    547. 

  547.         tests += list_test_cases(NistCbcVectors)
    548. 

  548.     tests += list_test_cases(SP800TestVectors)
    549. 

  549.     return tests
    550. 

  550. 

  551. 

  552. if __name__ == '__main__':
    553. 

  553.     suite = lambda: unittest.TestSuite(get_tests())
    554. 

  554.     unittest.main(defaultTest='suite')
    555.