~ubuntu-branches/ubuntu/vivid/nettle/vivid-proposed

Viewing changes to testsuite/ecdsa-sign-test.c

Committer: Package Import Robot
Author(s): Magnus Holmgren
Date: 2013-05-04 19:50:28 UTC
mfrom: (1.4.6) (3.1.11 experimental)
mto: This revision was merged to the branch mainline in revision 14.
Revision ID: package-import@ubuntu.com-20130504195028-fp6c9fw1tsm5scwa

Tags: 2.7-1

http://bugs.debian.org/706081

* New upstream release (Closes: #706081).
* Include watch file improvements from Bart Martens <bartm@debian.org>
via the QA system.

files added:
arm

arm/aes-decrypt-internal.asm

arm/aes-encrypt-internal.asm

arm/aes.m4

arm/ecc-192-modp.asm

arm/ecc-224-modp.asm

arm/ecc-256-redc.asm

arm/ecc-384-modp.asm

arm/ecc-521-modp.asm

arm/machine.m4

arm/memxor.asm

arm/neon

arm/neon/salsa20-core-internal.asm

arm/neon/sha3-permute.asm

arm/neon/sha512-compress.asm

arm/neon/umac-nh-n.asm

arm/neon/umac-nh.asm

arm/sha1-compress.asm

arm/sha256-compress.asm

cnd-copy.c

ecc-192.c

ecc-224.c

ecc-256.c

ecc-384.c

ecc-521.c

ecc-a-to-j.c

ecc-add-jja.c

ecc-add-jjj.c

ecc-curve.h

ecc-dup-jj.c

ecc-ecdsa-sign.c

ecc-ecdsa-verify.c

ecc-generic-modp.c

ecc-generic-modq.c

ecc-generic-redc.c

ecc-hash.c

ecc-internal.h

ecc-j-to-a.c

ecc-mod.c

ecc-modp.c

ecc-modq.c

ecc-mul-a.c

ecc-mul-g.c

ecc-point-mul-g.c

ecc-point-mul.c

ecc-point.c

ecc-random.c

ecc-scalar.c

ecc-size.c

ecc.h

eccdata.c

ecdsa-keygen.c

ecdsa-sign.c

ecdsa-verify.c

ecdsa.h

examples/base16dec.c

examples/base16enc.c

examples/base64dec.c

examples/base64enc.c

examples/ecc-benchmark.c

examples/hogweed-benchmark.c

examples/timing.c

examples/timing.h

getopt.c

getopt.h

getopt1.c

gmp-glue.c

gmp-glue.h

gosthash94-meta.c

gosthash94.c

gosthash94.h

mini-gmp.c

mini-gmp.h

pbkdf2-hmac-sha1.c

pbkdf2-hmac-sha256.c

pbkdf2.c

pbkdf2.h

pkcs1-decrypt.c

pkcs1-encrypt.c

pkcs1-rsa-digest.c

rsa-blind.c

rsa-decrypt-tr.c

rsa-pkcs1-sign-tr.c

rsa-pkcs1-sign.c

rsa-pkcs1-verify.c

run-tests

salsa20-core-internal.c

salsa20-crypt.c

salsa20-set-key.c

salsa20.h

salsa20r12-crypt.c

sec-add-1.c

sec-modinv.c

sec-sub-1.c

sec-tabselect.c

sha1.h

sha2.h

sha3-224-meta.c

sha3-224.c

sha3-256-meta.c

sha3-256.c

sha3-384-meta.c

sha3-384.c

sha3-512-meta.c

sha3-512.c

sha3-permute.c

sha3.c

sha3.h

testsuite/ecc-mod-test.c

testsuite/ecc-modinv-test.c

testsuite/ecc-mul-a-test.c

testsuite/ecc-mul-g-test.c

testsuite/ecc-redc-test.c

testsuite/ecdsa-keygen-test.c

testsuite/ecdsa-sign-test.c

testsuite/ecdsa-verify-test.c

testsuite/gosthash94-test.c

testsuite/pbkdf2-test.c

testsuite/salsa20-test.c

testsuite/setup-env

testsuite/sha3-224-test.c

testsuite/sha3-256-test.c

testsuite/sha3-384-test.c

testsuite/sha3-512-test.c

testsuite/sha3-permute-test.c

testsuite/sha3.awk

testsuite/umac-test.c

twofishdata.c

umac-l2.c

umac-l3.c

umac-nh-n.c

umac-nh.c

umac-poly128.c

umac-poly64.c

umac-set-key.c

umac.h

umac128.c

umac32.c

umac64.c

umac96.c

write-le64.c

x86_64/ecc-192-modp.asm

x86_64/ecc-224-modp.asm

x86_64/ecc-256-redc.asm

x86_64/ecc-384-modp.asm

x86_64/ecc-521-modp.asm

x86_64/salsa20-core-internal.asm

x86_64/salsa20-crypt.asm

x86_64/salsa20.m4

x86_64/sha256-compress.asm

x86_64/sha3-permute.asm

x86_64/sha512-compress.asm

x86_64/umac-nh-n.asm

x86_64/umac-nh.asm

files removed:
debian/nettle-bin.postinst

examples/getopt.c

examples/getopt.h

examples/getopt1.c

examples/run-tests

testsuite/run-tests

tools/getopt.c

tools/getopt.h

tools/getopt1.c

x86_64/arcfour-crypt.asm

files modified:
ChangeLog

Makefile.in

NEWS

README

aclocal.m4

aes-decrypt-internal.c

aes-decrypt.c

aes-encrypt-internal.c

aes-encrypt-table.c

aes-encrypt.c

aes-internal.h

aes-meta.c

aes-set-decrypt-key.c

aes-set-encrypt-key.c

aes.h

aesdata.c

arcfour-crypt.c

arcfour-meta.c

arcfour.c

arcfour.h

arctwo-meta.c

arctwo.c

arctwo.h

asm.m4

asn1.h

base16-decode.c

base16-encode.c

base16-meta.c

base16.h

base64-decode.c

base64-encode.c

base64-meta.c

base64.h

bignum-next-prime.c

bignum-random-prime.c

bignum-random.c

bignum.c

bignum.h

blowfish.c

blowfish.h

buffer-init.c

buffer.c

buffer.h

camellia-crypt-internal.c

camellia-crypt.c

camellia-internal.h

camellia-meta.c

camellia-set-decrypt-key.c

camellia-set-encrypt-key.c

camellia-table.c

camellia.h

cast128-meta.c

cast128.c

cast128.h

cast128_sboxes.h

cbc.c

cbc.h

config.guess

config.h.in

config.m4.in

config.make.in

config.sub

configure

configure.ac

ctr.c

ctr.h

debian/changelog

debian/control

debian/libhogweed2.symbols

debian/libnettle4.symbols

debian/watch

der-iterator.c

der2dsa.c

der2rsa.c

des-compat.c

des-compat.h

des.c

des.h

des3.c

desCode.h

descore.README

desdata.c

desinfo.h

dsa-keygen.c

dsa-sha1-sign.c

dsa-sha1-verify.c

dsa-sha256-sign.c

dsa-sha256-verify.c

dsa-sign.c

dsa-verify.c

dsa.c

dsa.h

dsa2sexp.c

examples/Makefile.in

examples/eratosthenes.c

examples/io.c

examples/io.h

examples/nettle-benchmark.c

examples/nettle-openssl.c

examples/next-prime.c

examples/random-prime.c

examples/read_rsa_key.c

examples/rsa-decrypt.c

examples/rsa-encrypt-test

examples/rsa-encrypt.c

examples/rsa-keygen.c

examples/rsa-sign-test

examples/rsa-sign.c

examples/rsa-verify-test

examples/rsa-verify.c

examples/setup-env

examples/teardown-env

gcm-aes.c

gcm.c

gcm.h

gcmdata.c

hmac-md5.c

hmac-ripemd160.c

hmac-sha1.c

hmac-sha224.c

hmac-sha256.c

hmac-sha384.c

hmac-sha512.c

hmac.c

hmac.h

knuth-lfib.c

knuth-lfib.h

macros.h

md2-meta.c

md2.c

md2.h

md4-meta.c

md4.c

md4.h

md5-compat.c

md5-compat.h

md5-compress.c

md5-meta.c

md5.c

md5.h

memxor.c

nettle-internal.c

nettle-internal.h

nettle-meta-armors.c

nettle-meta-ciphers.c

nettle-meta-hashes.c

nettle-meta.h

nettle-types.h

nettle-write.h

nettle.html

nettle.info

nettle.pdf

nettle.texinfo

pgp-encode.c

pgp.h

pkcs1-rsa-md5.c

pkcs1-rsa-sha1.c

pkcs1-rsa-sha256.c

pkcs1-rsa-sha512.c

pkcs1.c

pkcs1.h

realloc.c

realloc.h

ripemd160-compress.c

ripemd160-meta.c

ripemd160.c

ripemd160.h

rsa-compat.c

rsa-compat.h

rsa-decrypt.c

rsa-encrypt.c

rsa-keygen.c

rsa-md5-sign.c

rsa-md5-verify.c

rsa-sha1-sign.c

rsa-sha1-verify.c

rsa-sha256-sign.c

rsa-sha256-verify.c

rsa-sha512-sign.c

rsa-sha512-verify.c

rsa-sign.c

rsa-verify.c

rsa.c

rsa.h

rsa2openpgp.c

rsa2sexp.c

serpent-decrypt.c

serpent-encrypt.c

serpent-internal.h

serpent-meta.c

serpent-set-key.c

serpent.h

sexp-format.c

sexp-transport-format.c

sexp-transport.c

sexp.c

sexp.h

sexp2bignum.c

sexp2dsa.c

sexp2rsa.c

sha-example.c

sha.h

sha1-compress.c

sha1-meta.c

sha1.c

sha224-meta.c

sha256-compress.c

sha256-meta.c

sha256.c

sha384-meta.c

sha512-compress.c

sha512-meta.c

sha512.c

shadata.c

sparc32/aes-decrypt-internal.asm

sparc32/aes-encrypt-internal.asm

sparc32/arcfour-crypt.asm

sparc64/aes-decrypt-internal.asm

sparc64/aes-encrypt-internal.asm

sparc64/arcfour-crypt.asm

testsuite/.test-rules.make

testsuite/Makefile.in

testsuite/aes-test.c

testsuite/arcfour-test.c

testsuite/arctwo-test.c

testsuite/base16-test.c

testsuite/base64-test.c

testsuite/bignum-test.c

testsuite/blowfish-test.c

testsuite/buffer-test.c

testsuite/camellia-test.c

testsuite/cast128-test.c

testsuite/cbc-test.c

testsuite/ctr-test.c

testsuite/cxx-test.cxx

testsuite/des-compat-test.c

testsuite/des-test.c

testsuite/des3-test.c

testsuite/dsa-keygen-test.c

testsuite/dsa-test.c

testsuite/gcm-test.c

testsuite/hmac-test.c

testsuite/knuth-lfib-test.c

testsuite/md2-test.c

testsuite/md4-test.c

testsuite/md5-compat-test.c

testsuite/md5-test.c

testsuite/memxor-test.c

testsuite/meta-armor-test.c

testsuite/meta-cipher-test.c

testsuite/meta-hash-test.c

testsuite/pkcs1-conv-test

testsuite/pkcs1-test.c

testsuite/random-prime-test.c

testsuite/ripemd160-test.c

testsuite/rsa-encrypt-test.c

testsuite/rsa-keygen-test.c

testsuite/rsa-test.c

testsuite/rsa2sexp-test.c

testsuite/serpent-test.c

testsuite/sexp-conv-test

testsuite/sexp-format-test.c

testsuite/sexp-test.c

testsuite/sexp2rsa-test.c

testsuite/sha1-huge-test.c

testsuite/sha1-test.c

testsuite/sha224-test.c

testsuite/sha256-test.c

testsuite/sha384-test.c

testsuite/sha512-test.c

testsuite/symbols-test

testsuite/teardown-env

testsuite/testutils.c

testsuite/testutils.h

testsuite/twofish-test.c

testsuite/yarrow-test.c

tools/Makefile.in

tools/input.c

tools/input.h

tools/misc.c

tools/misc.h

tools/nettle-hash.c

tools/nettle-lfib-stream.c

tools/output.c

tools/output.h

tools/parse.c

tools/parse.h

tools/pkcs1-conv.c

tools/sexp-conv.c

twofish-meta.c

twofish.c

twofish.h

write-be32.c

write-le32.c

x86/aes-decrypt-internal.asm

x86/aes-encrypt-internal.asm

x86/arcfour-crypt.asm

x86/camellia-crypt-internal.asm

x86/md5-compress.asm

x86/sha1-compress.asm

x86_64/aes-decrypt-internal.asm

x86_64/aes-encrypt-internal.asm

x86_64/camellia-crypt-internal.asm

x86_64/machine.m4

x86_64/memxor.asm

x86_64/serpent-decrypt.asm

x86_64/serpent-encrypt.asm

x86_64/serpent.m4

x86_64/sha1-compress.asm

yarrow.h

yarrow256.c

yarrow_key_event.c

Show diffs side-by-side

added added

removed removed

testsuite/ecdsa-sign-test.c

#include "testutils.h"

static void

test_ecdsa (const struct ecc_curve *ecc,

/* Private key */

const char *sz,

/* Random nonce */

const char *sk,

/* Hash */

const struct tstring *h,

/* Expected signature */

const char *r, const char *s)

{

struct dsa_signature ref;

mpz_t z;

mpz_t k;

mp_limb_t *rp = xalloc_limbs (ecc->size);

mp_limb_t *sp = xalloc_limbs (ecc->size);

mp_limb_t *scratch = xalloc_limbs (ecc_ecdsa_sign_itch (ecc));

dsa_signature_init (&ref);

mpz_init_set_str (z, sz, 16);

mpz_init_set_str (k, sk, 16);

ecc_ecdsa_sign (ecc, mpz_limbs_read_n (z, ecc->size),

mpz_limbs_read_n (k, ecc->size),

h->length, h->data, rp, sp, scratch);

mpz_set_str (ref.r, r, 16);

mpz_set_str (ref.s, s, 16);

if (mpz_limbs_cmp (ref.r, rp, ecc->size) != 0

|| mpz_limbs_cmp (ref.s, sp, ecc->size) != 0)

{

fprintf (stderr, "_ecdsa_sign failed, bit_size = %u\n", ecc->bit_size);

gmp_fprintf (stderr, "r = %Nx\n", rp, ecc->size);

gmp_fprintf (stderr, "s = %Nx\n", sp, ecc->size);

gmp_fprintf (stderr, "ref.r = %Zx\n", ref.r);

gmp_fprintf (stderr, "ref.s = %Zx\n", ref.s);

abort();

}

free (rp);

free (sp);

free (scratch);

dsa_signature_clear (&ref);

mpz_clear (k);

mpz_clear (z);

}

void

test_main (void)

{

/* Test cases for the smaller groups, verified with a

proof-of-concept implementation done for Yubico AB. */

test_ecdsa (&nettle_secp_192r1,

"DC51D3866A15BACDE33D96F992FCA99D"

"A7E6EF0934E70975", /* z */

"9E56F509196784D963D1C0A401510EE7"

"ADA3DCC5DEE04B15", /* k */

SHEX("BA7816BF8F01CFEA414140DE5DAE2223"

"B00361A396177A9C"), /* h */

"8c478db6a5c131540cebc739f9c0a9a8"

"c720c2abdd14a891", /* r */

"a91fb738f9f175d72f9c98527e881c36"

"8de68cb55ffe589"); /* s */

test_ecdsa (&nettle_secp_224r1,

"446df0a771ed58403ca9cb316e617f6b"

"158420465d00a69601e22858", /* z */

"4c13f1905ad7eb201178bc08e0c9267b"

"4751c15d5e1831ca214c33f4", /* z */

SHEX("1b28a611fe62ab3649350525d06703ba"

"4b979a1e543566fd5caa85c6"), /* h */

"2cc280778f3d067df6d3adbe3a6aad63"

"bc75f08f5c5f915411902a99", /* r */

"d0f069fd0f108eb07b7bbc54c8d6c88d"

"f2715c38a95c31a2b486995f"); /* s */

/* From RFC 4754 */

test_ecdsa (&nettle_secp_256r1,

"DC51D386 6A15BACD E33D96F9 92FCA99D"

"A7E6EF09 34E70975 59C27F16 14C88A7F", /* z */

"9E56F509 196784D9 63D1C0A4 01510EE7"

"ADA3DCC5 DEE04B15 4BF61AF1 D5A6DECE", /* k */

SHEX("BA7816BF 8F01CFEA 414140DE 5DAE2223"

"B00361A3 96177A9C B410FF61 F20015AD"), /* h */

100

101

"CB28E099 9B9C7715 FD0A80D8 E47A7707"

102

"9716CBBF 917DD72E 97566EA1 C066957C", /* r */

103

"86FA3BB4 E26CAD5B F90B7F81 899256CE"

104

"7594BB1E A0C89212 748BFF3B 3D5B0315"); /* s */

105

106

test_ecdsa (&nettle_secp_384r1,

107

"0BEB6466 34BA8773 5D77AE48 09A0EBEA"

108

"865535DE 4C1E1DCB 692E8470 8E81A5AF"

109

"62E528C3 8B2A81B3 5309668D 73524D9F", /* z */

110

111

"B4B74E44 D71A13D5 68003D74 89908D56"

112

"4C7761E2 29C58CBF A1895009 6EB7463B"

113

"854D7FA9 92F934D9 27376285 E63414FA", /* k */

114

115

SHEX("CB00753F 45A35E8B B5A03D69 9AC65007"

116

"272C32AB 0EDED163 1A8B605A 43FF5BED"

117

"8086072B A1E7CC23 58BAECA1 34C825A7"), /* h */

118

119

"FB017B91 4E291494 32D8BAC2 9A514640"

120

"B46F53DD AB2C6994 8084E293 0F1C8F7E"

121

"08E07C9C 63F2D21A 07DCB56A 6AF56EB3", /* r */

122

"B263A130 5E057F98 4D38726A 1B468741"

123

"09F417BC A112674C 528262A4 0A629AF1"

124

"CBB9F516 CE0FA7D2 FF630863 A00E8B9F"); /* s*/

125

126

test_ecdsa (&nettle_secp_521r1,

127

"0065FDA3 409451DC AB0A0EAD 45495112"

128

"A3D813C1 7BFD34BD F8C1209D 7DF58491"

129

"20597779 060A7FF9 D704ADF7 8B570FFA"

130

"D6F062E9 5C7E0C5D 5481C5B1 53B48B37"

131

"5FA1", /* z */

132

133

"00C1C2B3 05419F5A 41344D7E 4359933D"

134

"734096F5 56197A9B 244342B8 B62F46F9"

135

"373778F9 DE6B6497 B1EF825F F24F42F9"

136

"B4A4BD73 82CFC337 8A540B1B 7F0C1B95"

137

"6C2F", /* k */

138

139

SHEX("DDAF35A1 93617ABA CC417349 AE204131"

140

"12E6FA4E 89A97EA2 0A9EEEE6 4B55D39A"

141

"2192992A 274FC1A8 36BA3C23 A3FEEBBD"

142

"454D4423 643CE80E 2A9AC94F A54CA49F"), /* h */

143

144

"0154FD38 36AF92D0 DCA57DD5 341D3053"

145

"988534FD E8318FC6 AAAAB68E 2E6F4339"

146

"B19F2F28 1A7E0B22 C269D93C F8794A92"

147

"78880ED7 DBB8D936 2CAEACEE 54432055"

148

"2251", /* r */

149

"017705A7 030290D1 CEB605A9 A1BB03FF"

150

"9CDD521E 87A696EC 926C8C10 C8362DF4"

151

"97536710 1F67D1CF 9BCCBF2F 3D239534"

152

"FA509E70 AAC851AE 01AAC68D 62F86647"

153

"2660"); /* s */

154

}

155

Older »