#include "tests.h" #include #include #include #include #include using namespace Botan; namespace { secure_vector hkdf(const std::string& hkdf_algo, const secure_vector& ikm, const secure_vector& salt, const secure_vector& info, size_t L) { Algorithm_Factory& af = global_state().algorithm_factory(); const std::string algo = hkdf_algo.substr(5, hkdf_algo.size()-6); const MessageAuthenticationCode* mac_proto = af.prototype_mac("HMAC(" + algo + ")"); if(!mac_proto) throw std::invalid_argument("Bad HKDF hash '" + algo + "'"); HKDF hkdf(mac_proto->clone(), mac_proto->clone()); hkdf.start_extract(&salt[0], salt.size()); hkdf.extract(&ikm[0], ikm.size()); hkdf.finish_extract(); secure_vector key(L); hkdf.expand(&key[0], key.size(), &info[0], info.size()); return key; } size_t hkdf_test(const std::string& algo, const std::string& ikm, const std::string& salt, const std::string& info, const std::string& okm, size_t L) { const std::string got = hex_encode( hkdf(algo, hex_decode_locked(ikm), hex_decode_locked(salt), hex_decode_locked(info), L) ); if(got != okm) { std::cout << "HKDF got " << got << " expected " << okm << std::endl; return 1; } return 0; } } size_t test_hkdf() { std::ifstream vec(TEST_DATA_DIR "/hkdf.vec"); return run_tests_bb(vec, "HKDF", "OKM", true, [](std::map m) -> size_t { return hkdf_test(m["HKDF"], m["IKM"], m["salt"], m["info"], m["OKM"], to_u32bit(m["L"])); }); }