alex/esp-idf
alex/esp-idf
1
0
Fork 0
mirror of https://github.com/espressif/esp-idf.git synced 2024-10-05 20:47:46 -04:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity
47678fc17b
esp-idf/components/nvs_flash/test_nvs_host/test_nvs.cpp

1250 lines
43 KiB
C++
Raw Normal View History

refactor (nvs)!: New interface for iterator functions Closes https://github.com/espressif/esp-idf/issues/7826 * nvs_entry_find(), nvs_entry_next() and nvs_entry_info() return error codes now * nvs_entry_find() and nvs_entry_next() access/modify iterator via parameters, instead of returning an new iterator. Added appropriate documentation in Chinese and English
2022-05-11 06:49:55 -04:00
/*
* SPDX-FileCopyrightText: 2015-2022 Espressif Systems (Shanghai) CO LTD
*
* SPDX-License-Identifier: Apache-2.0
*/
Initial public version
2016-08-17 11:08:22 -04:00
#include "catch.hpp"
#include "nvs.hpp"
nvs: allow nvs_flash_init to be called more than once Also don’t assert in nvs_* functions if nvs_flash_init wasn’t called, and make nvs_flash_init_custom an internal API for unit tests.
2016-11-15 05:24:56 -05:00
#include "nvs_test_api.h"
nvs: minor host test fixes Fixes the tests to pass when some files already exist. Fixes clean target. Moves CONFIG_NVS_ENCRYPTION definition into sdkconfig.h.
2019-06-21 08:31:22 -04:00
#include "sdkconfig.h"
Initial public version
2016-08-17 11:08:22 -04:00
#include "spi_flash_emulation.h"
NVS: using esp_partition API * partition api changed from spi_flash* API to esp_partition* API and is abstracted as a C++ interface. * The old nvs encryption is still possible * changed default unit test app partition table * Partitions coming from esp_partition API are checked for generic flash encryption. If yes, an error is returned since generic flash encryption isn't compatible with nvs encryption * esp32, esp32s2 tests don't require nvs_flash but mbedtls now Closes IDF-1340 Closes IDF-858
2020-04-26 20:51:31 -04:00
#include "nvs_partition_manager.hpp"
#include "nvs_partition.hpp"
#include "mbedtls/aes.h"
nvs_flash: Extended test-app and host tests for the HMAC-based NVS encr-keys protection scheme
2023-04-16 02:11:11 -04:00
#include "mbedtls/md.h"
Initial public version
2016-08-17 11:08:22 -04:00
#include <sstream>
#include <iostream>
nvs-flash: Support for blobs larger than half of SPI Flash sector size This change removes the earlier limitation of 1984 bytes for storing data-blobs. Blobs larger than the sector size are split and stored on multiple sectors. For this purpose, two new datatypes (multi-page index and multi-page data) are added for entries stored in the sectors. The underlying read, write, erase and find operations are modified to support these large blobs. The change is transparent to users of the library and no special APIs need to be used to store these large blobs.
2018-04-02 06:44:59 -04:00
#include <fstream>
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
#include <dirent.h>
nvs_flash: Add binary creation support for NVS partition. Ideally suited for generating a binary externally, containing key-value pairs specific to device manufacturers. Utility allows creation of a binary, compatible with NVS structure, which can be separately flashed onto a new partition. This helps device manufacturers set different values for different devices, e.g. serial numbers, but using a single firmaware image.
2018-04-18 20:18:05 -04:00
#include <unistd.h>
#include <sys/wait.h>
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
#include <string.h>
Added support for NVS iterators Closes https://github.com/espressif/esp-idf/issues/129
2018-11-05 03:03:04 -05:00
#include <string>
NVS: using esp_partition API * partition api changed from spi_flash* API to esp_partition* API and is abstracted as a C++ interface. * The old nvs encryption is still possible * changed default unit test app partition table * Partitions coming from esp_partition API are checked for generic flash encryption. If yes, an error is returned since generic flash encryption isn't compatible with nvs encryption * esp32, esp32s2 tests don't require nvs_flash but mbedtls now Closes IDF-1340 Closes IDF-858
2020-04-26 20:51:31 -04:00
#include "test_fixtures.hpp"
nvs: remove search cache at page level Since read cache was introduced at page level, search cache became useless in terms of reducing the number of flash read operations. In addition to that, search cache used an assumption that if pointers to keys are identical, the keys are also identical, which was proven wrong by applications which generate key names dynamically. This change removes CachedFindInfo, and all its uses. This is done at expense of a small extra number of CPU operations (looking up a value in the read cache is slightly more expensive) but no extra flash read operations. Ref TW12505 Ref https://github.com/espressif/arduino-esp32/issues/365
2017-05-12 00:18:08 -04:00
#define TEST_ESP_ERR(rc, res) CHECK((rc) == (res))
#define TEST_ESP_OK(rc) CHECK((rc) == ESP_OK)
Initial public version
2016-08-17 11:08:22 -04:00
stringstream s_perf;
test_nvs_host: fix asan reported bugs - Use of `sizeof(uint32_t *)` instead of `sizeof(uint32_t)` in arguments - Use of `memcmp` without checking that length agreed (add `memeq`)
2023-04-03 16:25:02 -04:00
bool memeq(void *a, size_t a_len, void *b, size_t b_len)
{
if (a_len != b_len) {
return false;
}
return memcmp(a, b, a_len) == 0;
}
nvs: check value size before writing, document limitations Writing values longer than half of the page size (with header taken into account) causes fragmentation issues. Previously it was suggested on the forum that using long values may cause issues, but this wasn’t checked in the library itself, and wasn’t documented. This change adds necessary checks and introduces the new error code. Documentation is also fixed to reflect the fact that the maximum length of the key is 15 characters, not 16.
2017-05-31 00:59:24 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
static void check_nvs_part_gen_args(SpiFlashEmulator *spi_flash_emulator,
char const *part_name,
int size,
char const *filename,
bool is_encr,
nvs_sec_cfg_t *xts_cfg)
{
nvs_handle_t handle;
tools: Introduce support for blank lines in config and value files for mfg utility Some users have requested this feature. In order to avoid complete refactoring or introducing more code complexity, a design choice to create temporary files without blank lines is made. Additionally, an extension check is added and there are multiple smaller code style and structure improvements. Closes https://github.com/espressif/esp-idf/issues/8421
2022-06-30 11:53:12 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
esp_partition_t esp_part;
esp_part.encrypted = false; // we're not testing generic flash encryption here, only the legacy NVS encryption
esp_part.address = 0;
esp_part.size = size * SPI_FLASH_SEC_SIZE;
strncpy(esp_part.label, part_name, PART_NAME_MAX_SIZE);
unique_ptr<nvs::Partition> part;
tools: Introduce support for blank lines in config and value files for mfg utility Some users have requested this feature. In order to avoid complete refactoring or introducing more code complexity, a design choice to create temporary files without blank lines is made. Additionally, an extension check is added and there are multiple smaller code style and structure improvements. Closes https://github.com/espressif/esp-idf/issues/8421
2022-06-30 11:53:12 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
if (is_encr) {
nvs::NVSEncryptedPartition *enc_part = new (std::nothrow) nvs::NVSEncryptedPartition(&esp_part);
REQUIRE(enc_part != nullptr);
TEST_ESP_OK(enc_part->init(xts_cfg));
part.reset(enc_part);
} else {
part.reset(new PartitionEmulation(spi_flash_emulator, 0, size, part_name));
}
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
TEST_ESP_OK( nvs::NVSPartitionManager::get_instance()->init_custom(part.get(), 0, size) );
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
TEST_ESP_OK( nvs_open_from_partition(part_name, "dummyNamespace", NVS_READONLY, &handle));
uint8_t u8v;
TEST_ESP_OK( nvs_get_u8(handle, "dummyU8Key", &u8v));
CHECK(u8v == 127);
int8_t i8v;
TEST_ESP_OK( nvs_get_i8(handle, "dummyI8Key", &i8v));
CHECK(i8v == -128);
uint16_t u16v;
TEST_ESP_OK( nvs_get_u16(handle, "dummyU16Key", &u16v));
CHECK(u16v == 32768);
uint32_t u32v;
TEST_ESP_OK( nvs_get_u32(handle, "dummyU32Key", &u32v));
CHECK(u32v == 4294967295);
int32_t i32v;
TEST_ESP_OK( nvs_get_i32(handle, "dummyI32Key", &i32v));
CHECK(i32v == -2147483648);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
char string_buf[256];
const char test_str[] = "Lorem ipsum dolor sit amet, consectetur adipiscing elit.\n"
"Fusce quis risus justo.\n"
"Suspendisse egestas in nisi sit amet auctor.\n"
"Pellentesque rhoncus dictum sodales.\n"
"In justo erat, viverra at interdum eget, interdum vel dui.";
size_t str_len = sizeof(test_str);
TEST_ESP_OK( nvs_get_str(handle, "dummyStringKey", string_buf, &str_len));
CHECK(strncmp(string_buf, test_str, str_len) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
char buf[64] = {0};
uint8_t hexdata[] = {0x01, 0x02, 0x03, 0xab, 0xcd, 0xef};
size_t buflen = 64;
int j;
TEST_ESP_OK( nvs_get_blob(handle, "dummyHex2BinKey", buf, &buflen));
CHECK(memeq(buf, buflen, hexdata, sizeof(hexdata)));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
uint8_t base64data[] = {'1', '2', '3', 'a', 'b', 'c'};
TEST_ESP_OK( nvs_get_blob(handle, "dummyBase64Key", buf, &buflen));
CHECK(memeq(buf, buflen, base64data, sizeof(base64data)));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
buflen = 64;
uint8_t hexfiledata[] = {0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef};
TEST_ESP_OK( nvs_get_blob(handle, "hexFileKey", buf, &buflen));
CHECK(memeq(buf, buflen, hexfiledata, sizeof(hexfiledata)));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
buflen = 64;
const char strfiledata[64] = "abcdefghijklmnopqrstuvwxyz";
TEST_ESP_OK( nvs_get_str(handle, "stringFileKey", buf, &buflen));
CHECK(strcmp(buf, strfiledata) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
char bin_data[5200];
size_t bin_len = sizeof(bin_data);
char binfiledata[5200];
ifstream file;
file.open(filename);
file.read(binfiledata,5200);
size_t binfile_len = file.gcount();
TEST_ESP_OK( nvs_get_blob(handle, "binFileKey", bin_data, &bin_len));
CHECK(memeq(bin_data, bin_len, binfiledata, binfile_len));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
file.close();
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
nvs_close(handle);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
TEST_ESP_OK(nvs_flash_deinit_partition(part_name));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
}
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
static void check_nvs_part_gen_args_mfg(SpiFlashEmulator *spi_flash_emulator,
char const *part_name,
int size,
char const *filename,
bool is_encr,
nvs_sec_cfg_t *xts_cfg)
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
{
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
nvs_handle_t handle;
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
esp_partition_t esp_part;
esp_part.encrypted = false; // we're not testing generic flash encryption here, only the legacy NVS encryption
esp_part.address = 0;
esp_part.size = size * SPI_FLASH_SEC_SIZE;
strncpy(esp_part.label, part_name, PART_NAME_MAX_SIZE);
unique_ptr<nvs::Partition> part;
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
if (is_encr) {
nvs::NVSEncryptedPartition *enc_part = new (std::nothrow) nvs::NVSEncryptedPartition(&esp_part);
REQUIRE(enc_part != nullptr);
TEST_ESP_OK(enc_part->init(xts_cfg));
part.reset(enc_part);
} else {
part.reset(new PartitionEmulation(spi_flash_emulator, 0, size, part_name));
}
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
TEST_ESP_OK( nvs::NVSPartitionManager::get_instance()->init_custom(part.get(), 0, size) );
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
TEST_ESP_OK( nvs_open_from_partition(part_name, "dummyNamespace", NVS_READONLY, &handle));
uint8_t u8v;
TEST_ESP_OK( nvs_get_u8(handle, "dummyU8Key", &u8v));
CHECK(u8v == 127);
int8_t i8v;
TEST_ESP_OK( nvs_get_i8(handle, "dummyI8Key", &i8v));
CHECK(i8v == -128);
uint16_t u16v;
TEST_ESP_OK( nvs_get_u16(handle, "dummyU16Key", &u16v));
CHECK(u16v == 32768);
uint32_t u32v;
TEST_ESP_OK( nvs_get_u32(handle, "dummyU32Key", &u32v));
CHECK(u32v == 4294967295);
int32_t i32v;
TEST_ESP_OK( nvs_get_i32(handle, "dummyI32Key", &i32v));
CHECK(i32v == -2147483648);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
char buf[64] = {0};
size_t buflen = 64;
TEST_ESP_OK( nvs_get_str(handle, "dummyStringKey", buf, &buflen));
CHECK(strncmp(buf, "0A:0B:0C:0D:0E:0F", buflen) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
uint8_t hexdata[] = {0x01, 0x02, 0x03, 0xab, 0xcd, 0xef};
buflen = 64;
int j;
TEST_ESP_OK( nvs_get_blob(handle, "dummyHex2BinKey", buf, &buflen));
CHECK(memeq(buf, buflen, hexdata, sizeof(hexdata)));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
uint8_t base64data[] = {'1', '2', '3', 'a', 'b', 'c'};
TEST_ESP_OK( nvs_get_blob(handle, "dummyBase64Key", buf, &buflen));
CHECK(memeq(buf, buflen, base64data, sizeof(base64data)));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
buflen = 64;
uint8_t hexfiledata[] = {0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef};
TEST_ESP_OK( nvs_get_blob(handle, "hexFileKey", buf, &buflen));
CHECK(memeq(buf, buflen, hexfiledata, sizeof(hexfiledata)));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
buflen = 64;
const char strfiledata[64] = "abcdefghijklmnopqrstuvwxyz";
TEST_ESP_OK( nvs_get_str(handle, "stringFileKey", buf, &buflen));
CHECK(strcmp(buf, strfiledata) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
char bin_data[5200];
size_t bin_len = sizeof(bin_data);
char binfiledata[5200];
ifstream file;
file.open(filename);
file.read(binfiledata,5200);
size_t binfile_len = file.gcount();
TEST_ESP_OK( nvs_get_blob(handle, "binFileKey", bin_data, &bin_len));
CHECK(memeq(bin_data, bin_len, binfiledata, binfile_len));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
file.close();
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
nvs_close(handle);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
refactor(nvs_flash): Host test migrated to esp_partition emulation for linux
2023-06-20 09:23:12 -04:00
TEST_ESP_OK(nvs_flash_deinit_partition(part_name));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
}
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
#if CONFIG_NVS_ENCRYPTION
TEST_CASE("check underlying xts code for 32-byte size sector encryption", "[nvs]")
{
auto toHex = [](char ch) {
if(ch >= '0' && ch <= '9')
return ch - '0';
else if(ch >= 'a' && ch <= 'f')
return ch - 'a' + 10;
else if(ch >= 'A' && ch <= 'F')
return ch - 'A' + 10;
else
return 0;
};
auto toHexByte = [toHex](char* c) {
return 16 * toHex(c[0]) + toHex(c[1]);
};
auto toHexStream = [toHexByte](char* src, uint8_t* dest) {
uint32_t cnt =0;
char* p = src;
while(*p != '\0' && *(p + 1) != '\0')
{
dest[cnt++] = toHexByte(p); p += 2;
}
};
uint8_t eky_hex[2 * NVS_KEY_SIZE];
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
uint8_t ptxt_hex[nvs::Page::ENTRY_SIZE], ctxt_hex[nvs::Page::ENTRY_SIZE], ba_hex[16];
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
mbedtls_aes_xts_context ectx[1];
mbedtls_aes_xts_context dctx[1];
char eky[][2 * NVS_KEY_SIZE + 1] = {
"0000000000000000000000000000000000000000000000000000000000000000",
"1111111111111111111111111111111111111111111111111111111111111111"
};
char tky[][2 * NVS_KEY_SIZE + 1] = {
"0000000000000000000000000000000000000000000000000000000000000000",
"2222222222222222222222222222222222222222222222222222222222222222"
};
char blk_addr[][2*16 + 1] = {
"00000000000000000000000000000000",
"33333333330000000000000000000000"
};
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
char ptxt[][2 * nvs::Page::ENTRY_SIZE + 1] = {
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
"0000000000000000000000000000000000000000000000000000000000000000",
"4444444444444444444444444444444444444444444444444444444444444444"
};
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
char ctxt[][2 * nvs::Page::ENTRY_SIZE + 1] = {
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
"d456b4fc2e620bba6ffbed27b956c9543454dd49ebd8d8ee6f94b65cbe158f73",
"e622334f184bbce129a25b2ac76b3d92abf98e22df5bdd15af471f3db8946a85"
};
mbedtls_aes_xts_init(ectx);
mbedtls_aes_xts_init(dctx);
for(uint8_t cnt = 0; cnt < sizeof(eky)/sizeof(eky[0]); cnt++) {
toHexStream(eky[cnt], eky_hex);
toHexStream(tky[cnt], &eky_hex[NVS_KEY_SIZE]);
toHexStream(ptxt[cnt], ptxt_hex);
toHexStream(ctxt[cnt], ctxt_hex);
toHexStream(blk_addr[cnt], ba_hex);
CHECK(!mbedtls_aes_xts_setkey_enc(ectx, eky_hex, 2 * NVS_KEY_SIZE * 8));
CHECK(!mbedtls_aes_xts_setkey_enc(dctx, eky_hex, 2 * NVS_KEY_SIZE * 8));
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
CHECK(!mbedtls_aes_crypt_xts(ectx, MBEDTLS_AES_ENCRYPT, nvs::Page::ENTRY_SIZE, ba_hex, ptxt_hex, ptxt_hex));
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
CHECK(!memcmp(ptxt_hex, ctxt_hex, nvs::Page::ENTRY_SIZE));
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
}
}
TEST_CASE("test nvs apis with encryption enabled", "[nvs]")
{
nvs: Append _t to nvs_handle & nvs_open_mode types Merges https://github.com/espressif/esp-idf/pull/3239/
2019-04-01 10:13:55 -04:00
nvs_handle_t handle_1;
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
const uint32_t NVS_FLASH_SECTOR = 6;
const uint32_t NVS_FLASH_SECTOR_COUNT_MIN = 3;
nvs_sec_cfg_t xts_cfg;
for(int count = 0; count < NVS_KEY_SIZE; count++) {
xts_cfg.eky[count] = 0x11;
xts_cfg.tky[count] = 0x22;
}
NVS: using esp_partition API * partition api changed from spi_flash* API to esp_partition* API and is abstracted as a C++ interface. * The old nvs encryption is still possible * changed default unit test app partition table * Partitions coming from esp_partition API are checked for generic flash encryption. If yes, an error is returned since generic flash encryption isn't compatible with nvs encryption * esp32, esp32s2 tests don't require nvs_flash but mbedtls now Closes IDF-1340 Closes IDF-858
2020-04-26 20:51:31 -04:00
EncryptedPartitionFixture fixture(&xts_cfg, NVS_FLASH_SECTOR, NVS_FLASH_SECTOR_COUNT_MIN);
fixture.emu.randomize(100);
fixture.emu.setBounds(NVS_FLASH_SECTOR, NVS_FLASH_SECTOR + NVS_FLASH_SECTOR_COUNT_MIN);
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
for (uint16_t i = NVS_FLASH_SECTOR; i <NVS_FLASH_SECTOR + NVS_FLASH_SECTOR_COUNT_MIN; ++i) {
NVS: using esp_partition API * partition api changed from spi_flash* API to esp_partition* API and is abstracted as a C++ interface. * The old nvs encryption is still possible * changed default unit test app partition table * Partitions coming from esp_partition API are checked for generic flash encryption. If yes, an error is returned since generic flash encryption isn't compatible with nvs encryption * esp32, esp32s2 tests don't require nvs_flash but mbedtls now Closes IDF-1340 Closes IDF-858
2020-04-26 20:51:31 -04:00
fixture.emu.erase(i);
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
}
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
TEST_ESP_OK( nvs::NVSPartitionManager::get_instance()->
NVS: using esp_partition API * partition api changed from spi_flash* API to esp_partition* API and is abstracted as a C++ interface. * The old nvs encryption is still possible * changed default unit test app partition table * Partitions coming from esp_partition API are checked for generic flash encryption. If yes, an error is returned since generic flash encryption isn't compatible with nvs encryption * esp32, esp32s2 tests don't require nvs_flash but mbedtls now Closes IDF-1340 Closes IDF-858
2020-04-26 20:51:31 -04:00
init_custom(&fixture.part, NVS_FLASH_SECTOR, NVS_FLASH_SECTOR_COUNT_MIN));
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
TEST_ESP_ERR(nvs_open("namespace1", NVS_READONLY, &handle_1), ESP_ERR_NVS_NOT_FOUND);
TEST_ESP_OK(nvs_open("namespace1", NVS_READWRITE, &handle_1));
TEST_ESP_OK(nvs_set_i32(handle_1, "foo", 0x12345678));
TEST_ESP_OK(nvs_set_i32(handle_1, "foo", 0x23456789));
nvs: Append _t to nvs_handle & nvs_open_mode types Merges https://github.com/espressif/esp-idf/pull/3239/
2019-04-01 10:13:55 -04:00
nvs_handle_t handle_2;
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
TEST_ESP_OK(nvs_open("namespace2", NVS_READWRITE, &handle_2));
TEST_ESP_OK(nvs_set_i32(handle_2, "foo", 0x3456789a));
const char* str = "value 0123456789abcdef0123456789abcdef";
TEST_ESP_OK(nvs_set_str(handle_2, "key", str));
int32_t v1;
TEST_ESP_OK(nvs_get_i32(handle_1, "foo", &v1));
CHECK(0x23456789 == v1);
int32_t v2;
TEST_ESP_OK(nvs_get_i32(handle_2, "foo", &v2));
CHECK(0x3456789a == v2);
char buf[strlen(str) + 1];
size_t buf_len = sizeof(buf);
size_t buf_len_needed;
TEST_ESP_OK(nvs_get_str(handle_2, "key", NULL, &buf_len_needed));
CHECK(buf_len_needed == buf_len);
size_t buf_len_short = buf_len - 1;
TEST_ESP_ERR(ESP_ERR_NVS_INVALID_LENGTH, nvs_get_str(handle_2, "key", buf, &buf_len_short));
CHECK(buf_len_short == buf_len);
size_t buf_len_long = buf_len + 1;
TEST_ESP_OK(nvs_get_str(handle_2, "key", buf, &buf_len_long));
CHECK(buf_len_long == buf_len);
TEST_ESP_OK(nvs_get_str(handle_2, "key", buf, &buf_len));
CHECK(0 == strcmp(buf, str));
nvs_close(handle_1);
nvs_close(handle_2);
TEST_ESP_OK(nvs_flash_deinit());
}
TEST_CASE("test nvs apis for nvs partition generator utility with encryption enabled", "[nvs_part_gen]")
{
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
int status;
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
int childpid = fork();
if (childpid == 0) {
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
exit(execlp("cp", " cp",
"-rf",
"../nvs_partition_generator/testdata",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
".", NULL));
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"../nvs_partition_generator/nvs_partition_gen.py",
"encrypt",
"../nvs_partition_generator/sample_multipage_blob.csv",
"partition_encrypted.bin",
"0x4000",
"--inputkey",
"../nvs_partition_generator/testdata/sample_encryption_keys.bin",
"--outdir",
"../nvs_partition_generator", NULL));
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
}
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
}
SpiFlashEmulator emu("../nvs_partition_generator/partition_encrypted.bin");
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
nvs_sec_cfg_t cfg;
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
for (int count = 0; count < NVS_KEY_SIZE; count++) {
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
cfg.eky[count] = 0x11;
cfg.tky[count] = 0x22;
}
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
NVS: using esp_partition API * partition api changed from spi_flash* API to esp_partition* API and is abstracted as a C++ interface. * The old nvs encryption is still possible * changed default unit test app partition table * Partitions coming from esp_partition API are checked for generic flash encryption. If yes, an error is returned since generic flash encryption isn't compatible with nvs encryption * esp32, esp32s2 tests don't require nvs_flash but mbedtls now Closes IDF-1340 Closes IDF-858
2020-04-26 20:51:31 -04:00
check_nvs_part_gen_args(&emu, NVS_DEFAULT_PART_NAME, 4, "../nvs_partition_generator/testdata/sample_multipage_blob.bin", true, &cfg);
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
childpid = fork();
if (childpid == 0) {
exit(execlp("rm", " rm",
"-rf",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"testdata", NULL));
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
}
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
}
components: convert string to bytes to fix TypeError There is a string passed as an argument for function, but a format of a string seemingly refers to bytes therefore it needs to be converted to bytes Solves https://esp32.com/viewtopic.php?f=13&t=16529
2020-07-20 04:19:12 -04:00
TEST_CASE("test decrypt functionality for encrypted data", "[nvs_part_gen]")
{
//retrieving the temporary test data
int status = system("cp -rf ../nvs_partition_generator/testdata .");
CHECK(status == 0);
//encoding data from sample_multipage_blob.csv
status = system("python ../nvs_partition_generator/nvs_partition_gen.py generate ../nvs_partition_generator/sample_multipage_blob.csv partition_encoded.bin 0x5000 --outdir ../nvs_partition_generator");
CHECK(status == 0);
//encrypting data from sample_multipage_blob.csv
status = system("python ../nvs_partition_generator/nvs_partition_gen.py encrypt ../nvs_partition_generator/sample_multipage_blob.csv partition_encrypted.bin 0x5000 --inputkey ../nvs_partition_generator/testdata/sample_encryption_keys.bin --outdir ../nvs_partition_generator");
CHECK(status == 0);
nvs_flash: Extended test-app and host tests for the HMAC-based NVS encr-keys protection scheme
2023-04-16 02:11:11 -04:00
//encrypting data from sample_multipage_blob.csv (hmac-based scheme)
status = system("python ../nvs_partition_generator/nvs_partition_gen.py encrypt ../nvs_partition_generator/sample_multipage_blob.csv partition_encrypted_hmac.bin 0x5000 --keygen --key_protect_hmac --kp_hmac_inputkey ../nvs_partition_generator/testdata/sample_hmac_key.bin --outdir ../nvs_partition_generator");
CHECK(status == 0);
components: convert string to bytes to fix TypeError There is a string passed as an argument for function, but a format of a string seemingly refers to bytes therefore it needs to be converted to bytes Solves https://esp32.com/viewtopic.php?f=13&t=16529
2020-07-20 04:19:12 -04:00
//decrypting data from partition_encrypted.bin
status = system("python ../nvs_partition_generator/nvs_partition_gen.py decrypt ../nvs_partition_generator/partition_encrypted.bin ../nvs_partition_generator/testdata/sample_encryption_keys.bin ../nvs_partition_generator/partition_decrypted.bin");
CHECK(status == 0);
status = system("diff ../nvs_partition_generator/partition_decrypted.bin ../nvs_partition_generator/partition_encoded.bin");
CHECK(status == 0);
nvs_flash: Extended test-app and host tests for the HMAC-based NVS encr-keys protection scheme
2023-04-16 02:11:11 -04:00
//decrypting data from partition_encrypted_hmac.bin
status = system("python ../nvs_partition_generator/nvs_partition_gen.py decrypt ../nvs_partition_generator/partition_encrypted_hmac.bin ../nvs_partition_generator/testdata/sample_encryption_keys_hmac.bin ../nvs_partition_generator/partition_decrypted_hmac.bin");
CHECK(status == 0);
status = system("diff ../nvs_partition_generator/partition_decrypted_hmac.bin ../nvs_partition_generator/partition_encoded.bin");
CHECK(status == 0);
components: convert string to bytes to fix TypeError There is a string passed as an argument for function, but a format of a string seemingly refers to bytes therefore it needs to be converted to bytes Solves https://esp32.com/viewtopic.php?f=13&t=16529
2020-07-20 04:19:12 -04:00
CHECK(WEXITSTATUS(status) == 0);
//cleaning up the temporary test data
status = system("rm -rf testdata");
CHECK(status == 0);
}
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
TEST_CASE("test nvs apis for nvs partition generator utility with encryption enabled using keygen", "[nvs_part_gen]")
{
int childpid = fork();
nvs_util: update test case
2018-11-21 03:10:24 -05:00
int status;
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
if (childpid == 0) {
exit(execlp("cp", " cp",
"-rf",
"../nvs_partition_generator/testdata",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
".", NULL));
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
childpid = fork();
if (childpid == 0) {
exit(execlp("rm", " rm",
"-rf",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"../nvs_partition_generator/keys", NULL));
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../nvs_partition_generator/nvs_partition_gen.py",
nvs_util: Add NVS decryption feature
2019-05-07 06:06:02 -04:00
"encrypt",
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
"../nvs_partition_generator/sample_multipage_blob.csv",
nvs_util: Add NVS decryption feature
2019-05-07 06:06:02 -04:00
"partition_encrypted_using_keygen.bin",
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
"0x4000",
"--keygen",
nvs_util: Add NVS decryption feature
2019-05-07 06:06:02 -04:00
"--outdir",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"../nvs_partition_generator", NULL));
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
}
}
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
}
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
DIR *dir;
struct dirent *file;
char *filename;
char *files;
char *file_ext;
nvs_util: Add NVS decryption feature
2019-05-07 06:06:02 -04:00
dir = opendir("../nvs_partition_generator/keys");
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
while ((file = readdir(dir)) != NULL) {
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
filename = file->d_name;
files = strrchr(filename, '.');
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
if (files != NULL) {
file_ext = files + 1;
if (strncmp(file_ext, "bin", 3) == 0) {
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
break;
}
}
}
nvs_util: Add NVS decryption feature
2019-05-07 06:06:02 -04:00
std::string encr_file = std::string("../nvs_partition_generator/keys/") + std::string(filename);
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
SpiFlashEmulator emu("../nvs_partition_generator/partition_encrypted_using_keygen.bin");
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
char buffer[64];
FILE *fp;
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
fp = fopen(encr_file.c_str(), "rb");
fread(buffer, sizeof(buffer), 1, fp);
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
fclose(fp);
nvs_sec_cfg_t cfg;
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
for (int count = 0; count < NVS_KEY_SIZE; count++) {
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
cfg.eky[count] = buffer[count] & 255;
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
cfg.tky[count] = buffer[count + 32] & 255;
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
}
NVS: using esp_partition API * partition api changed from spi_flash* API to esp_partition* API and is abstracted as a C++ interface. * The old nvs encryption is still possible * changed default unit test app partition table * Partitions coming from esp_partition API are checked for generic flash encryption. If yes, an error is returned since generic flash encryption isn't compatible with nvs encryption * esp32, esp32s2 tests don't require nvs_flash but mbedtls now Closes IDF-1340 Closes IDF-858
2020-04-26 20:51:31 -04:00
check_nvs_part_gen_args(&emu, NVS_DEFAULT_PART_NAME, 4, "../nvs_partition_generator/testdata/sample_multipage_blob.bin", true, &cfg);
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
}
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_util: Add NVS decryption feature
2019-05-07 06:06:02 -04:00
TEST_CASE("test nvs apis for nvs partition generator utility with encryption enabled using inputkey", "[nvs_part_gen]")
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
{
int childpid = fork();
nvs_util: update test case
2018-11-21 03:10:24 -05:00
int status;
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
DIR *dir;
struct dirent *file;
char *filename;
char *files;
char *file_ext;
nvs_util: Add NVS decryption feature
2019-05-07 06:06:02 -04:00
dir = opendir("../nvs_partition_generator/keys");
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
while ((file = readdir(dir)) != NULL) {
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
filename = file->d_name;
files = strrchr(filename, '.');
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
if (files != NULL) {
file_ext = files + 1;
if (strncmp(file_ext, "bin", 3) == 0) {
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
break;
}
}
}
nvs_util: Add NVS decryption feature
2019-05-07 06:06:02 -04:00
std::string encr_file = std::string("../nvs_partition_generator/keys/") + std::string(filename);
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
if (childpid == 0) {
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
exit(execlp("python", "python",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"../nvs_partition_generator/nvs_partition_gen.py",
"encrypt",
"../nvs_partition_generator/sample_multipage_blob.csv",
"partition_encrypted_using_keyfile.bin",
"0x4000",
"--inputkey",
encr_file.c_str(),
"--outdir",
"../nvs_partition_generator", NULL));
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
}
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
SpiFlashEmulator emu("../nvs_partition_generator/partition_encrypted_using_keyfile.bin");
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
char buffer[64];
FILE *fp;
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
fp = fopen(encr_file.c_str(), "rb");
fread(buffer, sizeof(buffer), 1, fp);
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
fclose(fp);
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
nvs_sec_cfg_t cfg;
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
for (int count = 0; count < NVS_KEY_SIZE; count++) {
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
cfg.eky[count] = buffer[count] & 255;
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
cfg.tky[count] = buffer[count + 32] & 255;
nvs_util: Add changes to nvs part gen util nvs_util: Add changes to nvs part gen util nvs_host_test: Add test case for keygen and keyfile paratmeters
2018-10-17 07:38:32 -04:00
}
NVS: using esp_partition API * partition api changed from spi_flash* API to esp_partition* API and is abstracted as a C++ interface. * The old nvs encryption is still possible * changed default unit test app partition table * Partitions coming from esp_partition API are checked for generic flash encryption. If yes, an error is returned since generic flash encryption isn't compatible with nvs encryption * esp32, esp32s2 tests don't require nvs_flash but mbedtls now Closes IDF-1340 Closes IDF-858
2020-04-26 20:51:31 -04:00
check_nvs_part_gen_args(&emu, NVS_DEFAULT_PART_NAME, 4, "../nvs_partition_generator/testdata/sample_multipage_blob.bin", true, &cfg);
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
nvs_util: update test case
2018-11-21 03:10:24 -05:00
childpid = fork();
if (childpid == 0) {
exit(execlp("rm", " rm",
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
"-rf",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"../nvs_partition_generator/keys", NULL));
nvs_util: update test case
2018-11-21 03:10:24 -05:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
nvs_util: update test case
2018-11-21 03:10:24 -05:00
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
childpid = fork();
if (childpid == 0) {
exit(execlp("rm", " rm",
"-rf",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"testdata", NULL));
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
nvs_util: Add support for creation of unique encryption keys
2018-11-28 00:26:06 -05:00
}
nvs_util: update test case
2018-11-21 03:10:24 -05:00
}
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
}
nvs_flash: Extended test-app and host tests for the HMAC-based NVS encr-keys protection scheme
2023-04-16 02:11:11 -04:00
static void compute_nvs_keys_with_hmac(nvs_sec_cfg_t *cfg, void *hmac_key)
{
unsigned char key_bytes[32] = { 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08,
0x09, 0x0A, 0x0B, 0x0C, 0x0D, 0x0E, 0x0F, 0x10,
0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17, 0x18,
0x19, 0x1A, 0x1B, 0x1C, 0x1D, 0x1E, 0x1F, 0x20 };
if (hmac_key != NULL){
memcpy(key_bytes, hmac_key, 32);
}
unsigned char ekey_seed[32], tkey_seed[32];
for (unsigned int i = 0; i < sizeof(ekey_seed); i+=4) {
ekey_seed[i] = 0x5A;
ekey_seed[i + 1] = 0x5A;
ekey_seed[i + 2] = 0xBE;
ekey_seed[i + 3] = 0xAE;
}
for (unsigned int i = 0; i < sizeof(tkey_seed); i+=4) {
tkey_seed[i] = 0xA5;
tkey_seed[i + 1] = 0xA5;
tkey_seed[i + 2] = 0xDE;
tkey_seed[i + 3] = 0xCE;
}
const mbedtls_md_type_t alg = MBEDTLS_MD_SHA256;
mbedtls_md_context_t ctx;
mbedtls_md_init(&ctx);
const mbedtls_md_info_t *info = mbedtls_md_info_from_type(alg);
mbedtls_md_setup(&ctx, info, 1);
mbedtls_md_hmac_starts(&ctx, key_bytes, sizeof(key_bytes));
mbedtls_md_hmac_update(&ctx, ekey_seed, sizeof(ekey_seed));
mbedtls_md_hmac_finish(&ctx, cfg->eky);
mbedtls_md_hmac_reset(&ctx);
mbedtls_md_hmac_update(&ctx, tkey_seed, sizeof(tkey_seed));
mbedtls_md_hmac_finish(&ctx, cfg->tky);
assert(memcmp(cfg->eky, cfg->tky, NVS_KEY_SIZE));
mbedtls_md_free(&ctx);
}
TEST_CASE("test nvs apis for nvs partition generator utility with encryption enabled using keygen (user-provided HMAC-key)", "[nvs_part_gen]")
{
int childpid = fork();
int status;
if (childpid == 0) {
exit(execlp("cp", " cp",
"-rf",
"../nvs_partition_generator/testdata",
".", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
childpid = fork();
if (childpid == 0) {
exit(execlp("rm", " rm",
"-rf",
"../nvs_partition_generator/keys", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../nvs_partition_generator/nvs_partition_gen.py",
"encrypt",
"../nvs_partition_generator/sample_multipage_blob.csv",
"partition_encrypted_using_keygen_hmac.bin",
"0x4000",
"--keygen",
"--key_protect_hmac",
"--kp_hmac_inputkey",
"../nvs_partition_generator/testdata/sample_hmac_key.bin",
"--outdir",
"../nvs_partition_generator", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
}
}
}
SpiFlashEmulator emu("../nvs_partition_generator/partition_encrypted_using_keygen_hmac.bin");
nvs_sec_cfg_t cfg;
compute_nvs_keys_with_hmac(&cfg, NULL);
check_nvs_part_gen_args(&emu, NVS_DEFAULT_PART_NAME, 4, "../nvs_partition_generator/testdata/sample_multipage_blob.bin", true, &cfg);
}
TEST_CASE("test nvs apis for nvs partition generator utility with encryption enabled using keygen (dynamically generated HMAC-key)", "[nvs_part_gen]")
{
int childpid = fork();
int status;
if (childpid == 0) {
exit(execlp("cp", " cp",
"-rf",
"../nvs_partition_generator/testdata",
".", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
childpid = fork();
if (childpid == 0) {
exit(execlp("rm", " rm",
"-rf",
"../nvs_partition_generator/keys", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../nvs_partition_generator/nvs_partition_gen.py",
"encrypt",
"../nvs_partition_generator/sample_multipage_blob.csv",
"partition_encrypted_using_keygen_hmac.bin",
"0x4000",
"--keygen",
"--key_protect_hmac",
"--kp_hmac_keygen",
"--outdir",
"../nvs_partition_generator", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
}
}
}
DIR *dir;
struct dirent *file;
char *filename;
char *files;
char *file_ext;
char *hmac_key_file;
dir = opendir("../nvs_partition_generator/keys");
while ((file = readdir(dir)) != NULL) {
filename = file->d_name;
file_ext = NULL;
files = strrchr(filename, '.');
if (files != NULL) {
file_ext = files + 1;
if (strncmp(file_ext, "bin", 3) != 0) {
continue;
}
}
if (strstr(filename, "hmac") != NULL) {
hmac_key_file = filename;
}
}
std::string hmac_key_path = std::string("../nvs_partition_generator/keys/") + std::string(hmac_key_file);
SpiFlashEmulator emu("../nvs_partition_generator/partition_encrypted_using_keygen_hmac.bin");
char hmac_key_buf[32];
FILE *fp;
fp = fopen(hmac_key_path.c_str(), "rb");
fread(hmac_key_buf, sizeof(hmac_key_buf), 1, fp);
fclose(fp);
nvs_sec_cfg_t cfg;
compute_nvs_keys_with_hmac(&cfg, hmac_key_buf);
check_nvs_part_gen_args(&emu, NVS_DEFAULT_PART_NAME, 4, "../nvs_partition_generator/testdata/sample_multipage_blob.bin", true, &cfg);
}
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
TEST_CASE("check and read data from partition generated via manufacturing utility with encryption enabled using sample inputkey", "[mfg_gen]")
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
{
int childpid = fork();
int status;
if (childpid == 0) {
exit(execlp("bash", " bash",
"-c",
"rm -rf ../../../tools/mass_mfg/host_test | \
cp -rf ../../../tools/mass_mfg/testdata mfg_testdata | \
cp -rf ../nvs_partition_generator/testdata . | \
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
mkdir -p ../../../tools/mass_mfg/host_test", NULL));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../../../tools/mass_mfg/mfg_gen.py",
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
"generate",
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
"../../../tools/mass_mfg/samples/sample_config.csv",
"../../../tools/mass_mfg/samples/sample_values_multipage_blob.csv",
"Test",
"0x4000",
"--outdir",
"../../../tools/mass_mfg/host_test",
"--version",
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
"2",
"--inputkey",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"mfg_testdata/sample_encryption_keys.bin", NULL));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../nvs_partition_generator/nvs_partition_gen.py",
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
"encrypt",
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
"../../../tools/mass_mfg/host_test/csv/Test-1.csv",
"../nvs_partition_generator/Test-1-partition-encrypted.bin",
"0x4000",
"--version",
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
"2",
"--inputkey",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"testdata/sample_encryption_keys.bin", NULL));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
}
}
}
SpiFlashEmulator emu1("../../../tools/mass_mfg/host_test/bin/Test-1.bin");
nvs_sec_cfg_t cfg;
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
for (int count = 0; count < NVS_KEY_SIZE; count++) {
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
cfg.eky[count] = 0x11;
cfg.tky[count] = 0x22;
}
tools: overhaul csv handling for mfg_gen and nvs_partition_gen This fixes the issue where multiline strings and strings with delimiters inside the nvs input csv file were incorrectly parsed, and adds back the ability to add comment lines anywhere in the CSV file. The issue stems from the move away from the python built in csv module to manual parsing, which was made after moving away from using the csv module to parse mfg data. This reverts back to using the csv module for parsing and writing csv data in both mfg_gen and nvs_partition_gen, fixes the original issue in mfg_gen and improves code quality which makes the code more readable and maintainable. Closes https://github.com/espressif/esp-idf/issues/7175
2022-06-02 09:29:35 -04:00
check_nvs_part_gen_args_mfg(&emu1, NVS_DEFAULT_PART_NAME, 4, "mfg_testdata/sample_multipage_blob.bin", true, &cfg);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
SpiFlashEmulator emu2("../nvs_partition_generator/Test-1-partition-encrypted.bin");
tools: overhaul csv handling for mfg_gen and nvs_partition_gen This fixes the issue where multiline strings and strings with delimiters inside the nvs input csv file were incorrectly parsed, and adds back the ability to add comment lines anywhere in the CSV file. The issue stems from the move away from the python built in csv module to manual parsing, which was made after moving away from using the csv module to parse mfg data. This reverts back to using the csv module for parsing and writing csv data in both mfg_gen and nvs_partition_gen, fixes the original issue in mfg_gen and improves code quality which makes the code more readable and maintainable. Closes https://github.com/espressif/esp-idf/issues/7175
2022-06-02 09:29:35 -04:00
check_nvs_part_gen_args_mfg(&emu2, NVS_DEFAULT_PART_NAME, 4, "testdata/sample_multipage_blob.bin", true, &cfg);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
childpid = fork();
if (childpid == 0) {
exit(execlp("bash", " bash",
"-c",
"rm -rf ../../../tools/mass_mfg/host_test | \
rm -rf mfg_testdata | \
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
rm -rf testdata", NULL));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
}
}
TEST_CASE("check and read data from partition generated via manufacturing utility with encryption enabled using new generated key", "[mfg_gen]")
{
int childpid = fork();
int status;
if (childpid == 0) {
exit(execlp("bash", " bash",
"-c",
"rm -rf ../../../tools/mass_mfg/host_test | \
cp -rf ../../../tools/mass_mfg/testdata mfg_testdata | \
cp -rf ../nvs_partition_generator/testdata . | \
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
mkdir -p ../../../tools/mass_mfg/host_test", NULL));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../../../tools/mass_mfg/mfg_gen.py",
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
"generate-key",
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
"--outdir",
"../../../tools/mass_mfg/host_test",
"--keyfile",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"encr_keys_host_test.bin", NULL));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../../../tools/mass_mfg/mfg_gen.py",
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
"generate",
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
"../../../tools/mass_mfg/samples/sample_config.csv",
"../../../tools/mass_mfg/samples/sample_values_multipage_blob.csv",
"Test",
"0x4000",
"--outdir",
"../../../tools/mass_mfg/host_test",
"--version",
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
"2",
"--inputkey",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"../../../tools/mass_mfg/host_test/keys/encr_keys_host_test.bin", NULL));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../nvs_partition_generator/nvs_partition_gen.py",
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
"encrypt",
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
"../../../tools/mass_mfg/host_test/csv/Test-1.csv",
"../nvs_partition_generator/Test-1-partition-encrypted.bin",
"0x4000",
"--version",
mfg_util: Optimise by adding subparser changes w.r.t similar changes in nvs util changes
2019-06-20 09:17:59 -04:00
"2",
"--inputkey",
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
"../../../tools/mass_mfg/host_test/keys/encr_keys_host_test.bin", NULL));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
}
}
}
}
SpiFlashEmulator emu1("../../../tools/mass_mfg/host_test/bin/Test-1.bin");
char buffer[64];
FILE *fp;
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
fp = fopen("../../../tools/mass_mfg/host_test/keys/encr_keys_host_test.bin", "rb");
fread(buffer, sizeof(buffer), 1, fp);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
fclose(fp);
nvs_sec_cfg_t cfg;
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
for (int count = 0; count < NVS_KEY_SIZE; count++) {
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
cfg.eky[count] = buffer[count] & 255;
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
cfg.tky[count] = buffer[count + 32] & 255;
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
}
tools: overhaul csv handling for mfg_gen and nvs_partition_gen This fixes the issue where multiline strings and strings with delimiters inside the nvs input csv file were incorrectly parsed, and adds back the ability to add comment lines anywhere in the CSV file. The issue stems from the move away from the python built in csv module to manual parsing, which was made after moving away from using the csv module to parse mfg data. This reverts back to using the csv module for parsing and writing csv data in both mfg_gen and nvs_partition_gen, fixes the original issue in mfg_gen and improves code quality which makes the code more readable and maintainable. Closes https://github.com/espressif/esp-idf/issues/7175
2022-06-02 09:29:35 -04:00
check_nvs_part_gen_args_mfg(&emu1, NVS_DEFAULT_PART_NAME, 4, "mfg_testdata/sample_multipage_blob.bin", true, &cfg);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
SpiFlashEmulator emu2("../nvs_partition_generator/Test-1-partition-encrypted.bin");
tools: overhaul csv handling for mfg_gen and nvs_partition_gen This fixes the issue where multiline strings and strings with delimiters inside the nvs input csv file were incorrectly parsed, and adds back the ability to add comment lines anywhere in the CSV file. The issue stems from the move away from the python built in csv module to manual parsing, which was made after moving away from using the csv module to parse mfg data. This reverts back to using the csv module for parsing and writing csv data in both mfg_gen and nvs_partition_gen, fixes the original issue in mfg_gen and improves code quality which makes the code more readable and maintainable. Closes https://github.com/espressif/esp-idf/issues/7175
2022-06-02 09:29:35 -04:00
check_nvs_part_gen_args_mfg(&emu2, NVS_DEFAULT_PART_NAME, 4, "testdata/sample_multipage_blob.bin", true, &cfg);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
childpid = fork();
if (childpid == 0) {
exit(execlp("bash", " bash",
"-c",
"rm -rf keys | \
rm -rf mfg_testdata | \
rm -rf testdata | \
nvs_flash/host_test: migrated to the CMake build system and nvs flash Linux implementation Host tests of nvs_flash eligible to run in Linux implementation of nvs flash were migrated. Remaining test cases were left in original folder. Migrated test cases use CMake instead of make.
2022-10-18 09:06:10 -04:00
rm -rf ../../../tools/mass_mfg/host_test", NULL));
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
test_nvs_host: Fail on any non-zero exit code when running external tools Check for != -1 was not picking up Python errors as WEXITSTATUS evaluates to 254 (at least on Linux)
2020-11-10 18:35:24 -05:00
CHECK(WEXITSTATUS(status) == 0);
mfg_util: Add changes to mfg_util as per changes in nvs_util revert changeson this file Update README for mfg util Update to correct coding style of script
2018-10-29 03:49:20 -04:00
}
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
}
nvs_flash: Extended test-app and host tests for the HMAC-based NVS encr-keys protection scheme
2023-04-16 02:11:11 -04:00
TEST_CASE("check and read data from partition generated via manufacturing utility with encryption enabled using new generated key (user-provided HMAC-key)", "[mfg_gen]")
{
int childpid = fork();
int status;
if (childpid == 0) {
exit(execlp("bash", " bash",
"-c",
"rm -rf ../../../tools/mass_mfg/host_test | \
cp -rf ../../../tools/mass_mfg/testdata mfg_testdata | \
cp -rf ../nvs_partition_generator/testdata . | \
mkdir -p ../../../tools/mass_mfg/host_test", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../../../tools/mass_mfg/mfg_gen.py",
"generate",
"../../../tools/mass_mfg/samples/sample_config.csv",
"../../../tools/mass_mfg/samples/sample_values_multipage_blob.csv",
"Test",
"0x4000",
"--version",
"2",
"--keygen",
"--key_protect_hmac",
"--kp_hmac_inputkey",
"mfg_testdata/sample_hmac_key.bin",
"--outdir",
"../../../tools/mass_mfg/host_test",NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../nvs_partition_generator/nvs_partition_gen.py",
"encrypt",
"../../../tools/mass_mfg/host_test/csv/Test-1.csv",
"../nvs_partition_generator/Test-1-partition-encrypted-hmac.bin",
"0x4000",
"--version",
"2",
"--keygen",
"--key_protect_hmac",
"--kp_hmac_inputkey",
"mfg_testdata/sample_hmac_key.bin", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
}
}
}
SpiFlashEmulator emu1("../../../tools/mass_mfg/host_test/bin/Test-1.bin");
nvs_sec_cfg_t cfg;
compute_nvs_keys_with_hmac(&cfg, NULL);
check_nvs_part_gen_args_mfg(&emu1, NVS_DEFAULT_PART_NAME, 4, "mfg_testdata/sample_multipage_blob.bin", true, &cfg);
SpiFlashEmulator emu2("../nvs_partition_generator/Test-1-partition-encrypted-hmac.bin");
check_nvs_part_gen_args_mfg(&emu2, NVS_DEFAULT_PART_NAME, 4, "testdata/sample_multipage_blob.bin", true, &cfg);
childpid = fork();
if (childpid == 0) {
exit(execlp("bash", " bash",
"-c",
"rm -rf ../../../tools/mass_mfg/host_test | \
rm -rf mfg_testdata | \
rm -rf testdata", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
}
}
TEST_CASE("check and read data from partition generated via manufacturing utility with encryption enabled using new generated key (dynamically generated HMAC-key)", "[mfg_gen]")
{
int childpid = fork();
int status;
if (childpid == 0) {
exit(execlp("bash", " bash",
"-c",
"rm -rf ../../../tools/mass_mfg/host_test | \
cp -rf ../../../tools/mass_mfg/testdata mfg_testdata | \
cp -rf ../nvs_partition_generator/testdata . | \
mkdir -p ../../../tools/mass_mfg/host_test", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../../../tools/mass_mfg/mfg_gen.py",
"generate-key",
"--outdir",
"../../../tools/mass_mfg/host_test",
"--key_protect_hmac",
"--kp_hmac_keygen",
"--kp_hmac_keyfile",
"hmac_key_host_test.bin",
"--keyfile",
"encr_keys_host_test.bin", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../../../tools/mass_mfg/mfg_gen.py",
"generate",
"../../../tools/mass_mfg/samples/sample_config.csv",
"../../../tools/mass_mfg/samples/sample_values_multipage_blob.csv",
"Test",
"0x4000",
"--outdir",
"../../../tools/mass_mfg/host_test",
"--version",
"2",
"--inputkey",
"../../../tools/mass_mfg/host_test/keys/encr_keys_host_test.bin", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
childpid = fork();
if (childpid == 0) {
exit(execlp("python", "python",
"../nvs_partition_generator/nvs_partition_gen.py",
"encrypt",
"../../../tools/mass_mfg/host_test/csv/Test-1.csv",
"../nvs_partition_generator/Test-1-partition-encrypted-hmac.bin",
"0x4000",
"--version",
"2",
"--inputkey",
"../../../tools/mass_mfg/host_test/keys/encr_keys_host_test.bin", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
}
}
}
}
SpiFlashEmulator emu1("../../../tools/mass_mfg/host_test/bin/Test-1.bin");
char hmac_key_buf[32];
FILE *fp;
fp = fopen("../../../tools/mass_mfg/host_test/keys/hmac_key_host_test.bin", "rb");
fread(hmac_key_buf, sizeof(hmac_key_buf), 1, fp);
fclose(fp);
nvs_sec_cfg_t cfg;
compute_nvs_keys_with_hmac(&cfg, hmac_key_buf);
check_nvs_part_gen_args_mfg(&emu1, NVS_DEFAULT_PART_NAME, 4, "mfg_testdata/sample_multipage_blob.bin", true, &cfg);
SpiFlashEmulator emu2("../nvs_partition_generator/Test-1-partition-encrypted-hmac.bin");
check_nvs_part_gen_args_mfg(&emu2, NVS_DEFAULT_PART_NAME, 4, "testdata/sample_multipage_blob.bin", true, &cfg);
childpid = fork();
if (childpid == 0) {
exit(execlp("bash", " bash",
"-c",
"rm -rf keys | \
rm -rf mfg_testdata | \
rm -rf testdata | \
rm -rf ../../../tools/mass_mfg/host_test", NULL));
} else {
CHECK(childpid > 0);
waitpid(childpid, &status, 0);
CHECK(WEXITSTATUS(status) == 0);
}
}
nvs_flash: Add support for nvs encryption
2018-07-02 07:10:43 -04:00
#endif
Reference in New Issue Copy Permalink