Fix CCM mode encryption when length of message > 256

[mtausig]

Contribution description

Encryption/Decryption using CCM mode did not work when the message had a size that exceeded 256. This patch fixes it

Testing procedure

I was unable to find a public test vector for messages of large size. I have therefore created a new one manually and validated it against two other crypto libraries (BouncyCastle and pycrpytodome)

Issues/PRs references

Fixes part of issue #8107

[mtausig]

Note: This is based on the branch of pull request #12362 to avoid conflicts later on. I will rebase it once that PR is merged.

[fjmolinas]

I couldn't find a text vector either so lets go with your manually generated test vector. Other than that just one minor comment where I think an assert could be good.

[fjmolinas]

Doesn't this limit the message length to 2^32 and isn't the message limit 2^8L so 2^64? I think its OK not to expect messages longer than 2^32 (which is already huge!) buy maybe this should be checked and asserted?

I think the doc should be updated with your changes in #12362 as well but this could be left for a follow up PR.

[mtausig]

Should I change length from size_t to uint32_t? That would make the size limitation obvious and lead to a better defined situation.

[fjmolinas]

Hmm I think this is something with public API, but I'll handle it in a separate PR. Lets get this fix in, lets wait for #12362 to get in and then we will go with this one as well.

[fjmolinas]

@mtausig this one needs rebase now.

[mtausig]

Rebased to master

[fjmolinas]

Ran test locally:

Help: Press s to start test, r to print it is ready
READY
s
START
main(): This is RIOT! (Version: 2020.01-devel-1598-g4428-pr-12364)
..................................
OK (34 tests)

[fjmolinas]

ACK, tested locally and murdock will do the rest. I would like to see the implementation restrictions reflected in the API, but I would rather leave that for another PR.

[fjmolinas]

Failing tests seem an issue with the board connected to murodck, locally I can't reproduce:

BUILD_IN_DOCKER=1 RIOT_CI_BUILD=1 BOARD=nrf52dk make -C tests/msg_send_receive/ clean all flash test -j3

Connect to serial port /dev/riot/tty-nrf52dk
Welcome to pyterm!
Type '/exit' to exit.
:kwHelp: Press s to start test, r to print it is ready
Help: Press s to start test, r to print it is ready
Help: Press s to start test, r to print it is ready
READY
s
START
main(): This is RIOT! (Version: buildtest)
Incremented counters to 1 and 1
Incremented counters to 2 and 2
Incremented counters to 3 and 3
Incremented counters to 4 and 4
Incremented counters to 5 and 5
Incremented counters to 6 and 6
Incremented counters to 7 and 7
Incremented counters to 8 and 8
Incremented counters to 9 and 9
Incremented counters to 10 and 10
Test successful.

make: Leaving directory '/home/francisco/workspace/RIOT3/tests/msg_send_receive'

Re-triggering build.

[aabadie]

All green here!

[fjmolinas]

@mtausig thanks for the fix!