With the release of libacvp 2.0.0, various changes have been made that are not backwards-compatible with software designed for previous versions of libacvp. This guide is meant to help users migrate applications made for previous versions of libacvp migrate to libacvp 2.0.
We understand that any non-backwards-compatible change can be frustrating to accommodate; however, many changes were required to add support for new functionality. In other cases, we felt these changes introduced needed improvements to the library. As the number of crypto ciphers/algorithms continues to grow, it is important that the existing codebase is as clean, adaptable, and maintainable as possible.
This guide will attempt to cover all non-backwards compatible changes. We cannot advise on how best to implement these changes into your application, as each IuT is unique and should be tested in a way specific to that IuT.
This guide does not cover new APIs or features, just changed or removed ones. If you find this guide does not cover every change that needs to be made, please open an issue/case with the libacvp team.
This section will cover changes made to libacvp's public facing APIs between libacvp 1.X and libacvp 2.0.0. Any calls to these APIs in your application must be updated to reflect the new formats.
The callback function provided to the library as the application's logging function now needs to include an extra parameter, ACVP_LOG_LVL. This allows the application to handle log messages of different levels differently.
Before:
ACVP_RESULT acvp_create_test_session(ACVP_CTX **ctx,
ACVP_RESULT (*progress_cb)(char *msg),
ACVP_LOG_LVL level);
Libacvp 2.0:
ACVP_RESULT acvp_create_test_session(ACVP_CTX **ctx,
ACVP_RESULT (*progress_cb)(char *msg, ACVP_LOG_LVL level),
ACVP_LOG_LVL level);
The capability registration function for DRBG needed the ability to specify different, unrelated groups of capabilities. A new integer parameter has been added to allow specifying a group of capabilities. If you do not need different groups (unchanged behavior from previous versions of libacvp), you can simply add a "0" for this "group" parameter in every call.
Before:
ACVP_RESULT acvp_cap_drbg_set_parm(ACVP_CTX *ctx,
ACVP_CIPHER cipher,
ACVP_DRBG_MODE mode,
ACVP_DRBG_PARM param,
int value);
Libacvp 2.0:
ACVP_RESULT acvp_cap_drbg_set_parm(ACVP_CTX *ctx,
ACVP_CIPHER cipher,
ACVP_DRBG_MODE mode,
int group,
ACVP_DRBG_PARM param,
int value);
This also applies to acvp_cap_drbg_set_length().
acvp_set_get_save_file() has been removed, and merged into acvp_mark_as_get_only(), which now
has an extra argument that has can be used to specify a file to save the GET response to.
Before:
ACVP_RESULT acvp_mark_as_get_only(ACVP_CTX *ctx, char *string);
Libacvp 2.0:
ACVP_RESULT acvp_mark_as_get_only(ACVP_CTX *ctx, char *string, const char *save_filename);
acvp_set_json_filename() has been renamed to acvp_set_registration_file. No other changes.
acvp_load_kat_filename() has been removed; it had unclear and redundant functionality.
- The enumerator
ACVP_HMAC_ALG_VALhas been removed. Any capability API calls that reference this enumerator should referenceACVP_HASH_ALGvalues instead. This affects theacvp_cap_pbkdf_*APIs, theacvp_cap_kdf_tls13_*APIs, and theacvp_cap_kda_*APIs. In other words, all references to:
ACVP_HMAC_ALG_MIN,
ACVP_HMAC_ALG_SHA1,
ACVP_HMAC_ALG_SHA224,
ACVP_HMAC_ALG_SHA256,
ACVP_HMAC_ALG_SHA384,
ACVP_HMAC_ALG_SHA512,
ACVP_HMAC_ALG_SHA512_224,
ACVP_HMAC_ALG_SHA512_256,
ACVP_HMAC_ALG_SHA3_224,
ACVP_HMAC_ALG_SHA3_256,
ACVP_HMAC_ALG_SHA3_384,
ACVP_HMAC_ALG_SHA3_512,
ACVP_HMAC_ALG_MAX
Should be replaced with, respectively:
ACVP_NO_SHA,
ACVP_SHA1,
ACVP_SHA224,
ACVP_SHA256,
ACVP_SHA384,
ACVP_SHA512,
ACVP_SHA512_224,
ACVP_SHA512_256,
ACVP_SHA3_224,
ACVP_SHA3_256,
ACVP_SHA3_384,
ACVP_SHA3_512,
ACVP_HASH_ALG_MAX
- References to
ACVP_KDA_HKDF_HMAC_ALGfor KDA algorithms need to be replaced withACVP_KDA_MAC_ALG.
This section will cover changes made to test case structs between libacvp 1.X and 2.0.0. These changes involve the inputs and outputs of tests; It is very important that you take care to understand the inputs and outputs of each test while making these changes.
Drastic changes to the KAS-IFC test case structure were required. For more details, please review
the new ACVP_KAS_IFC_TC in acvp.h, and the code and comments in app_kas.c in the included
acvp_app for reference. If you have further questions please feel free to reach out to the libacvp
team. This is the most complex change (by far) required to update to libacvp 2.0.
In previous versions of libacvp, for KTS-IFC tests, the plain-text derived key material was stored
in the n field; the user was expected to modify this test input field that originally contained
key info. In libacvp 2.0, plain-text DKM should be stored in the pt field.
Cleaned up some redundancy -
msecret1, msecret2, kblock1, and kblock2 values removed and replaced with just msecret
and kblock.
Output was previously taken from msecret1 and kblock1; now taken from msecret and kblock.
The included acvp_app does not use many of the ACVP_RESULT values by default; if your client uses them, you should adjust them:
ACVP_CRYPTO_TAG_FAILremoved; Replace withACVP_CRYPTO_MODULE_FAILACVP_CRYPTO_WRAP_FAILremoved; Replace withACVP_CRYPTO_MODULE_FAILACVP_NO_TOKENremoved; Replace withACVP_JWT_MISSINGACVP_TOTP_DECODE_FAILremoved; Replace withACVP_TOTP_FAILACVP_TOTP_MISSING_SEEDremoved; replace withACVP_TOTP_FAILACVP_DUPLICATE_CTXremoved; Replace withACVP_CTX_NOT_EMPTY
Other new return values have been added; for a complete list see acvp.h. Return values from
within the library have been adjusted in several places to be more relevant or descriptive. We
expect to continue to adjust return values in future releases; we may add new possible return
values but will not remove or change existing ones outside of major releases.
The process for building libacvp itself has not changed. On Windows platforms, some options (deemed likely to be redundant or unused) have been removed. For users also intending to use the included acvp_app, please view the README for more details about how building and testing with OpenSSL 3.X has changed.
Further changes were required in libacvp 2.1.0 that are not backwards compatible with the libacvp 2.0.0 API. those changes are described here.
We needed the ability to set parameters for both RSA decryption primitive AND signature primitive using the appropriate APIs for their new revisions. The old API version assumed you were using signature primitive.
Before:
ACVP_RESULT acvp_cap_rsa_prim_set_parm(ACVP_CTX *ctx,
ACVP_RSA_PARM prim_type,
int value);
Libacvp 2.1.0:
ACVP_RESULT acvp_cap_rsa_prim_set_parm(ACVP_CTX *ctx,
ACVP_CIPHER cipher,
ACVP_RSA_PARM param,
int value);
Simply adding ACVP_RSA_SIGPRIM for cipher should make existing calls behave.
For RSA registrations, the value ACVP_RSA_PARM_KEY_FORMAT_CRT has been replaced with
ACVP_RSA_PARM_KEY_FORMAT. The expected value is no longer a 1 or a 0, but an enum from
ACVP_RSA_KEY_FORMAT.
Several test cases have new fields which should not affect existing testing. For RSA primitive
testing, an int field for key_format was replaced with an appropriate enum,
ACVP_RSA_KEY_FORMAT.