1 /* 2 * Copyright (c) 2012, 2015, Oracle and/or its affiliates. All rights reserved. 3 * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER. 4 * 5 * This code is free software; you can redistribute it and/or modify it 6 * under the terms of the GNU General Public License version 2 only, as 7 * published by the Free Software Foundation. 8 * 9 * This code is distributed in the hope that it will be useful, but WITHOUT 10 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or 11 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License 12 * version 2 for more details (a copy is included in the LICENSE file that 13 * accompanied this code). 14 * 15 * You should have received a copy of the GNU General Public License version 16 * 2 along with this work; if not, write to the Free Software Foundation, 17 * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA. 18 * 19 * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA 20 * or visit www.oracle.com if you need additional information or have any 21 * questions. 22 * 23 */ 24 25 /** 26 * @author Tom Deneau 27 */ 28 29 import jdk.test.lib.Utils; 30 import java.security.AlgorithmParameters; 31 import java.util.Random; 32 import javax.crypto.Cipher; 33 import javax.crypto.SecretKey; 34 import javax.crypto.spec.GCMParameterSpec; 35 import javax.crypto.spec.IvParameterSpec; 36 import javax.crypto.spec.SecretKeySpec; 37 38 abstract public class TestAESBase { 39 int msgSize = Integer.getInteger("msgSize", 646); 40 boolean checkOutput = Boolean.getBoolean("checkOutput"); 41 boolean noReinit = Boolean.getBoolean("noReinit"); 42 boolean testingMisalignment; 43 private static final int ALIGN = 8; 44 int encInputOffset = Integer.getInteger("encInputOffset", 0) % ALIGN; 45 int encOutputOffset = Integer.getInteger("encOutputOffset", 0) % ALIGN; 46 int decOutputOffset = Integer.getInteger("decOutputOffset", 0) % ALIGN; 47 int lastChunkSize = Integer.getInteger("lastChunkSize", 32); 48 int keySize = Integer.getInteger("keySize", 128); 49 int inputLength; 50 int encodeLength; 51 int decodeLength; 52 int decodeMsgSize; 53 String algorithm = System.getProperty("algorithm", "AES"); 54 String mode = System.getProperty("mode", "CBC"); 55 String paddingStr = System.getProperty("paddingStr", "PKCS5Padding"); 56 byte[] input; 57 byte[] encode; 58 byte[] expectedEncode; 59 byte[] decode; 60 byte[] expectedDecode; 61 final Random random = Utils.getRandomInstance(); 62 Cipher cipher; 63 Cipher dCipher; 64 AlgorithmParameters algParams = null; 65 SecretKey key; 66 GCMParameterSpec gcm_spec; 67 byte[] aad = { 0x11, 0x22, 0x33, 0x44, 0x55 }; 68 int tlen = 12; 69 byte[] iv = new byte[16]; 70 71 static int numThreads = 0; 72 int threadId; 73 static synchronized int getThreadId() { 74 int id = numThreads; 75 numThreads++; 76 return id; 77 } 78 79 abstract public void run(); 80 81 public void prepare() { 82 try { 83 System.out.println("\nalgorithm=" + algorithm + ", mode=" + mode + ", paddingStr=" + paddingStr + 84 ", msgSize=" + msgSize + ", keySize=" + keySize + ", noReinit=" + noReinit + 85 ", checkOutput=" + checkOutput + ", encInputOffset=" + encInputOffset + ", encOutputOffset=" + 86 encOutputOffset + ", decOutputOffset=" + decOutputOffset + ", lastChunkSize=" +lastChunkSize ); 87 88 if (encInputOffset % ALIGN != 0 || encOutputOffset % ALIGN != 0 || decOutputOffset % ALIGN !=0 ) 89 testingMisalignment = true; 90 91 int keyLenBytes = (keySize == 0 ? 16 : keySize/8); 92 byte keyBytes[] = new byte[keyLenBytes]; 93 if (keySize == 128) 94 keyBytes = new byte[] {-8, -7, -6, -5, -4, -3, -2, -1, 0, 1, 2, 3, 4, 5, 6, 7}; 95 else 96 random.nextBytes(keyBytes); 97 98 key = new SecretKeySpec(keyBytes, algorithm); 99 if (threadId == 0) { 100 System.out.println("Algorithm: " + key.getAlgorithm() + "(" 101 + key.getEncoded().length * 8 + "bit)"); 102 } 103 104 cipher = Cipher.getInstance(algorithm + "/" + mode + "/" + paddingStr, "SunJCE"); 105 dCipher = Cipher.getInstance(algorithm + "/" + mode + "/" + paddingStr, "SunJCE"); 106 107 // CBC or CTR init 108 if (mode.equals("CBC") || mode.equals("CTR")) { 109 IvParameterSpec initVector = new IvParameterSpec(iv); 110 cipher.init(Cipher.ENCRYPT_MODE, key, initVector); 111 algParams = cipher.getParameters(); 112 dCipher.init(Cipher.DECRYPT_MODE, key, initVector); 113 114 // GCM init 115 } else if (mode.equals("GCM")) { 116 gcm_init(true); 117 gcm_init(false); 118 119 // ECB init 120 } else { 121 cipher.init(Cipher.ENCRYPT_MODE, key, algParams); 122 dCipher.init(Cipher.DECRYPT_MODE, key, algParams); 123 } 124 125 if (threadId == 0) { 126 childShowCipher(); 127 } 128 129 inputLength = msgSize + encInputOffset; 130 if (testingMisalignment) { 131 encodeLength = cipher.getOutputSize(msgSize - lastChunkSize) + encOutputOffset; 132 encodeLength += cipher.getOutputSize(lastChunkSize); 133 decodeLength = dCipher.getOutputSize(encodeLength - lastChunkSize) + decOutputOffset; 134 decodeLength += dCipher.getOutputSize(lastChunkSize); 135 } else { 136 encodeLength = cipher.getOutputSize(msgSize) + encOutputOffset; 137 decodeLength = dCipher.getOutputSize(encodeLength) + decOutputOffset; 138 } 139 140 input = new byte[inputLength]; 141 for (int i=encInputOffset, j=0; i<inputLength; i++, j++) { 142 input[i] = (byte) (j & 0xff); 143 } 144 145 // do one encode and decode in preparation 146 encode = new byte[encodeLength]; 147 decode = new byte[decodeLength]; 148 if (testingMisalignment) { 149 decodeMsgSize = cipher.update(input, encInputOffset, (msgSize - lastChunkSize), encode, encOutputOffset); 150 decodeMsgSize += cipher.doFinal(input, (encInputOffset + msgSize - lastChunkSize), lastChunkSize, encode, (encOutputOffset + decodeMsgSize)); 151 152 int tempSize = dCipher.update(encode, encOutputOffset, (decodeMsgSize - lastChunkSize), decode, decOutputOffset); 153 dCipher.doFinal(encode, (encOutputOffset + decodeMsgSize - lastChunkSize), lastChunkSize, decode, (decOutputOffset + tempSize)); 154 } else { 155 decodeMsgSize = cipher.doFinal(input, encInputOffset, msgSize, encode, encOutputOffset); 156 dCipher.doFinal(encode, encOutputOffset, decodeMsgSize, decode, decOutputOffset); 157 } 158 if (checkOutput) { 159 expectedEncode = (byte[]) encode.clone(); 160 expectedDecode = (byte[]) decode.clone(); 161 showArray(key.getEncoded() , "key: "); 162 showArray(input, "input: "); 163 showArray(encode, "encode: "); 164 showArray(decode, "decode: "); 165 } 166 } 167 catch (Exception e) { 168 e.printStackTrace(); 169 System.exit(1); 170 } 171 } 172 173 void showArray(byte b[], String name) { 174 System.out.format("%s [%d]: ", name, b.length); 175 for (int i=0; i<Math.min(b.length, 32); i++) { 176 System.out.format("%02x ", b[i] & 0xff); 177 } 178 System.out.println(); 179 } 180 181 void compareArrays(byte b[], byte exp[]) { 182 if (b.length != exp.length) { 183 System.out.format("different lengths for actual and expected output arrays\n"); 184 showArray(b, "test: "); 185 showArray(exp, "exp : "); 186 System.exit(1); 187 } 188 for (int i=0; i< exp.length; i++) { 189 if (b[i] != exp[i]) { 190 System.out.format("output error at index %d: got %02x, expected %02x\n", i, b[i] & 0xff, exp[i] & 0xff); 191 showArray(b, "test: "); 192 showArray(exp, "exp : "); 193 System.exit(1); 194 } 195 } 196 } 197 198 199 void showCipher(Cipher c, String kind) { 200 System.out.println(kind + " cipher provider: " + cipher.getProvider()); 201 System.out.println(kind + " cipher algorithm: " + cipher.getAlgorithm()); 202 } 203 204 abstract void childShowCipher(); 205 206 void gcm_init(boolean encrypt) throws Exception { 207 gcm_spec = new GCMParameterSpec(tlen * 8, iv); 208 if (encrypt) { 209 // Get a new instance everytime because of reuse IV restrictions 210 cipher = Cipher.getInstance(algorithm + "/" + mode + "/" + paddingStr, "SunJCE"); 211 cipher.init(Cipher.ENCRYPT_MODE, key, gcm_spec); 212 cipher.updateAAD(aad); 213 } else { 214 dCipher.init(Cipher.DECRYPT_MODE, key, gcm_spec); 215 dCipher.updateAAD(aad); 216 217 218 } 219 } 220 }