📄 testenv.c
字号:
/****************************************************************************
* *
* cryptlib Enveloping Test Routines *
* Copyright Peter Gutmann 1996-2002 *
* *
****************************************************************************/
#include <limits.h> /* To determine max.buffer size we can encrypt */
#ifdef _MSC_VER
#include "../cryptlib.h"
#include "../test/test.h"
#else
#include "cryptlib.h"
#include "test/test.h"
#endif /* Braindamaged MSC include handling */
/* Test data to use for the self-test. The PGP test data is slightly
different since it's not possible to include a null character in data
generated via the command-line versions of PGP */
#define ENVELOPE_TESTDATA ( ( BYTE * ) "Some test data" )
#define ENVELOPE_PGP_TESTDATA ( ( BYTE * ) "Some test data." )
#define ENVELOPE_TESTDATA_SIZE 15
/* External flags which indicate that the key read/update routines worked OK.
This is set by earlier self-test code, if it isn't set some of the tests
are disabled */
extern int keyReadOK, doubleCertOK;
/****************************************************************************
* *
* Utility Routines *
* *
****************************************************************************/
/* The general-purpose buffer used for enveloping. We use a fixed buffer
if possible to save having to add huge amounts of allocation/deallocation
code */
BYTE FAR_BSS buffer[ BUFFER_SIZE ];
/* Determine the size of a file. If there's a problem, we return the
default buffer size, which will cause a failure further up the chain
where the error can be reported better */
static int getFileSize( const char *fileName )
{
FILE *filePtr;
long size;
if( ( filePtr = fopen( fileName, "rb" ) ) == NULL )
return( BUFFER_SIZE );
fseek( filePtr, 0L, SEEK_END );
size = ftell( filePtr );
fclose( filePtr );
if( size > INT_MAX )
return( BUFFER_SIZE );
return( ( int ) size );
}
/* Read test data from a file */
static int readFileData( const char *fileName, const char *description,
BYTE *buffer, const int bufSize )
{
FILE *filePtr;
int count;
if( ( filePtr = fopen( fileName, "rb" ) ) == NULL )
{
printf( "Couldn't find %s file, skipping test of data import...\n",
description );
return( 0 );
}
printf( "Testing %s import...\n", description );
count = fread( buffer, 1, bufSize, filePtr );
fclose( filePtr );
if( count == bufSize )
{
puts( "The data buffer size is too small for the data. To fix this, "
"either increase\nthe BUFFER_SIZE value in " __FILE__ " and "
"recompile the code, or use the\ntest code with dynamically-"
"allocated buffers." );
return( 0 ); /* Skip this test and continue */
}
if( count < 32 )
{
printf( "Read failed, only read %d bytes.\n", count );
return( 0 ); /* Skip this test and continue */
}
printf( "%s has size %d bytes.\n", description, count );
return( count );
}
/* Common routines to create an envelope, add enveloping information, push
data, pop data, and destroy an envelope */
static int createEnvelope( CRYPT_ENVELOPE *envelope,
const CRYPT_FORMAT_TYPE formatType )
{
int status;
/* Create the envelope */
status = cryptCreateEnvelope( envelope, CRYPT_UNUSED, formatType );
if( cryptStatusError( status ) )
{
printf( "cryptCreateEnvelope() failed with error code %d, line %d.\n",
status, __LINE__ );
return( FALSE );
}
return( TRUE );
}
static int createDeenvelope( CRYPT_ENVELOPE *envelope )
{
int status;
/* Create the envelope */
status = cryptCreateEnvelope( envelope, CRYPT_UNUSED, CRYPT_FORMAT_AUTO );
if( cryptStatusError( status ) )
{
printf( "cryptCreateDeevelope() failed with error code %d, line %d.\n",
status, __LINE__ );
return( FALSE );
}
return( TRUE );
}
static int addEnvInfoString( const CRYPT_ENVELOPE envelope,
const CRYPT_ATTRIBUTE_TYPE type,
const void *envInfo, const int envInfoLen )
{
int status;
status = cryptSetAttributeString( envelope, type, envInfo, envInfoLen );
if( cryptStatusError( status ) )
{
printf( "cryptSetAttributeString() failed with error code %d, "
"line %d.\n", status, __LINE__ );
return( FALSE );
}
return( TRUE );
}
static int addEnvInfoNumeric( const CRYPT_ENVELOPE envelope,
const CRYPT_ATTRIBUTE_TYPE type,
const int envInfo )
{
int status;
status = cryptSetAttribute( envelope, type, envInfo );
if( cryptStatusError( status ) )
{
printf( "cryptSetAttribute() failed with error code %d, line %d.\n",
status, __LINE__ );
return( FALSE );
}
return( TRUE );
}
static int pushData( const CRYPT_ENVELOPE envelope, const BYTE *buffer,
const int length, const void *stringEnvInfo,
const int numericEnvInfo )
{
int status, bytesIn;
/* Push in the data */
status = cryptPushData( envelope, buffer, length, &bytesIn );
if( status == CRYPT_ENVELOPE_RESOURCE )
{
int cryptEnvInfo;
/* Add the appropriate enveloping information we need to continue */
cryptSetAttribute( envelope, CRYPT_ENVINFO_CURRENT_COMPONENT,
CRYPT_CURSOR_FIRST );
do
{
char label[ CRYPT_MAX_TEXTSIZE + 1 ];
int labelLength;
status = cryptGetAttribute( envelope,
CRYPT_ENVINFO_CURRENT_COMPONENT, &cryptEnvInfo );
if( cryptStatusError( status ) )
{
printf( "cryptGetAttribute() failed with error code %d, "
"line %d.\n", status, __LINE__ );
return( status );
}
switch( cryptEnvInfo )
{
case CRYPT_ATTRIBUTE_NONE:
/* The required information was supplied via other means
(in practice this means there's a crypto device
available and that was used for the decrypt), there's
nothing left to do */
puts( "(Decryption key was recovered using crypto device "
"or non-password-protected\n private key)." );
break;
case CRYPT_ENVINFO_PRIVATEKEY:
/* Private key is present, need password to decrypt */
status = cryptGetAttributeString( envelope,
CRYPT_ENVINFO_PRIVATEKEY_LABEL,
label, &labelLength );
if( cryptStatusError( status ) )
{
printf( "Private key label read failed with error "
"code %d, line %d.\n", status, __LINE__ );
return( status );
}
label[ labelLength ] = '\0';
printf( "Need password to decrypt private key '%s'.\n",
label );
if( !addEnvInfoString( envelope, CRYPT_ENVINFO_PASSWORD,
stringEnvInfo, strlen( stringEnvInfo ) ) )
return( SENTINEL );
break;
case CRYPT_ENVINFO_PASSWORD:
puts( "Need user password." );
if( !addEnvInfoString( envelope, CRYPT_ENVINFO_PASSWORD,
stringEnvInfo, strlen( stringEnvInfo ) ) )
return( SENTINEL );
break;
case CRYPT_ENVINFO_SESSIONKEY:
puts( "Need session key." );
if( !addEnvInfoNumeric( envelope, CRYPT_ENVINFO_SESSIONKEY,
numericEnvInfo ) )
return( SENTINEL );
break;
case CRYPT_ENVINFO_KEY:
puts( "Need conventional encryption key." );
break;
case CRYPT_ENVINFO_SIGNATURE:
/* If we've processed the entire data block in one go,
we may end up with only signature information
available, in which case we defer processing them
until after we've finished with the deenveloped data */
break;
default:
printf( "Need unknown enveloping information type %d.\n",
cryptEnvInfo );
return( SENTINEL );
}
}
while( cryptSetAttribute( envelope,
CRYPT_ENVINFO_CURRENT_COMPONENT, CRYPT_CURSOR_NEXT ) == CRYPT_OK );
/* If we're using some form of encrypted enveloping, report the
algorithm and keysize used */
if( cryptEnvInfo == CRYPT_ATTRIBUTE_NONE || \
cryptEnvInfo == CRYPT_ENVINFO_PRIVATEKEY || \
cryptEnvInfo == CRYPT_ENVINFO_PASSWORD )
{
int cryptAlgo, keySize;
status = cryptGetAttribute( envelope, CRYPT_CTXINFO_ALGO,
&cryptAlgo );
if( cryptStatusOK( status ) )
status = cryptGetAttribute( envelope, CRYPT_CTXINFO_KEYSIZE,
&keySize );
if( cryptStatusError( status ) )
{
printf( "Couldn't query encryption algorithm and keysize "
"used in envelope, status %d, line %d.\n", status,
__LINE__ );
return( status );
}
printf( "Data is protected using algorithm %d with %d bit key.\n",
cryptAlgo, keySize * 8 );
}
}
else
if( cryptStatusError( status ) )
{
printf( "cryptPushData() failed with error code %d, line %d.\n",
status, __LINE__ );
return( status );
}
if( bytesIn != length )
{
printf( "cryptPushData() only copied %d of %d bytes, line %d.\n",
bytesIn, length, __LINE__ );
return( SENTINEL );
}
/* Flush the data */
status = cryptFlushData( envelope );
if( cryptStatusError( status ) && status != CRYPT_ERROR_COMPLETE )
{
printf( "cryptPushData() (flush) failed with error code %d, line "
"%d.\n", status, __LINE__ );
return( status );
}
return( bytesIn );
}
static int popData( CRYPT_ENVELOPE envelope, BYTE *buffer, int bufferSize )
{
int status, bytesOut;
status = cryptPopData( envelope, buffer, bufferSize, &bytesOut );
if( cryptStatusError( status ) )
{
printf( "cryptPopData() failed with error code %d, line %d.\n",
status, __LINE__ );
return( status );
}
return( bytesOut );
}
static int destroyEnvelope( CRYPT_ENVELOPE envelope )
{
int status;
/* Destroy the envelope */
status = cryptDestroyEnvelope( envelope );
if( cryptStatusError( status ) )
{
printf( "cryptDestroyEnvelope() failed with error code %d, line %d.\n",
status, __LINE__ );
return( FALSE );
}
return( TRUE );
}
/****************************************************************************
* *
* Enveloping Test Routines *
* *
****************************************************************************/
/* Test raw data enveloping */
static int envelopeData( const char *dumpFileName,
const BOOLEAN useDatasize,
const BOOLEAN useLargeBuffer,
const CRYPT_FORMAT_TYPE formatType )
{
CRYPT_ENVELOPE cryptEnvelope;
BYTE *inBufPtr = ENVELOPE_TESTDATA, *outBufPtr = buffer;
const int length = useLargeBuffer ? \
( ( INT_MAX <= 32768L ) ? 16384 : 1048576 ) : \
ENVELOPE_TESTDATA_SIZE;
const int bufSize = length + 128;
int count;
if( useLargeBuffer )
{
int i;
printf( "Testing %senveloping of large data quantity...\n",
( formatType == CRYPT_FORMAT_PGP ) ? "PGP " : "" );
/* Allocate a large buffer and fill it with a known value */
if( ( inBufPtr = malloc( bufSize ) ) == NULL )
{
printf( "Couldn't allocate buffer of %d bytes, skipping large "
"buffer enveloping test.\n", length );
return( TRUE );
}
outBufPtr = inBufPtr;
for( i = 0; i < length; i++ )
inBufPtr[ i ] = i & 0xFF;
}
else
printf( "Testing %splain data enveloping%s...\n",
( formatType == CRYPT_FORMAT_PGP ) ? "PGP " : "",
( useDatasize && ( formatType != CRYPT_FORMAT_PGP ) ) ? \
" with datasize hint" : "" );
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -