~ubuntu-branches/ubuntu/vivid/nettle/vivid

Viewing changes to testsuite/salsa20-test.c

Committer: Package Import Robot
Author(s): Magnus Holmgren
Date: 2012-08-25 18:28:37 UTC
mfrom: (1.5.1) (8.1.5 sid)
mto: (8.1.7 sid)
mto: This revision was merged to the branch mainline in revision 14.
Revision ID: package-import@ubuntu.com-20120825182837-i7h4w03l7mxgvmqb

Tags: 2.5-1

http://bugs.debian.org/685855

* New upstream release (Closes: #685855).
  - All symbols from nettle-internal.c have been dropped from the built
    library, and pkcs1_signature_prefix renamed with a leading underscore,
    without SONAME change, as they were all for internal use only.
* debian/watch: Updated to handle -pre releases.

files added:
.pc

.pc/.quilt_patches

.pc/.quilt_series

.pc/.version

.pc/applied-patches

debian/libhogweed2.symbols

debian/libnettle4.symbols

debian/nettle-hash.1

debian/patches

examples/base16dec.c

examples/base16enc.c

examples/base64dec.c

examples/base64enc.c

gcm-aes.c

gcm.c

gcm.h

gcmdata.c

getopt.c

getopt.h

getopt1.c

hmac-ripemd160.c

hogweed.pc.in

nettle-meta-armors.c

nettle-meta-ciphers.c

nettle-meta-hashes.c

nettle.pc.in

pkcs1-decrypt.c

pkcs1-encrypt.c

pkcs1-rsa-digest.c

ripemd160-compress.c

ripemd160-meta.c

ripemd160.c

ripemd160.h

rsa-blind.c

rsa-decrypt-tr.c

rsa-pkcs1-sign-tr.c

rsa-pkcs1-sign.c

rsa-pkcs1-verify.c

run-tests

salsa20-crypt.c

salsa20-set-key.c

salsa20.h

serpent-decrypt.c

serpent-encrypt.c

serpent-internal.h

serpent-set-key.c

testsuite/gcm-test.c

testsuite/memxor-test.c

testsuite/meta-armor-test.c

testsuite/meta-cipher-test.c

testsuite/meta-hash-test.c

testsuite/ripemd160-test.c

testsuite/salsa20-test.c

testsuite/setup-env

tools/nettle-hash.c

twofishdata.c

write-le32.c

x86_64/camellia-crypt-internal.asm

x86_64/memxor.asm

x86_64/salsa20-crypt.asm

x86_64/serpent-decrypt.asm

x86_64/serpent-encrypt.asm

x86_64/serpent.m4

files removed:
COPYING

debian/README.source

examples/getopt.c

examples/getopt.h

examples/getopt1.c

examples/run-tests

serpent.c

serpent_sboxes.h

testsuite/run-tests

tools/getopt.c

tools/getopt.h

tools/getopt1.c

files modified:
ChangeLog

Makefile.in

NEWS

README

TODO

aclocal.m4

aes-decrypt-internal.c

aes-decrypt.c

aes-encrypt-internal.c

aes-encrypt-table.c

aes-encrypt.c

aes-internal.h

aes-meta.c

aes-set-decrypt-key.c

aes-set-encrypt-key.c

aes.h

aesdata.c

arcfour-crypt.c

arcfour-meta.c

arcfour.c

arcfour.h

arctwo.c

arctwo.h

asn1.h

base16-decode.c

base16-encode.c

base16-meta.c

base16.h

base64-decode.c

base64-encode.c

base64-meta.c

base64.h

bignum-next-prime.c

bignum-random-prime.c

bignum-random.c

bignum.c

bignum.h

blowfish.c

blowfish.h

buffer-init.c

buffer.c

buffer.h

camellia-crypt-internal.c

camellia-crypt.c

camellia-internal.h

camellia-meta.c

camellia-set-decrypt-key.c

camellia-set-encrypt-key.c

camellia-table.c

camellia.h

cast128-meta.c

cast128.c

cast128.h

cast128_sboxes.h

cbc.c

cbc.h

config.guess

config.h.in

config.m4.in

config.make.in

config.sub

configure

configure.ac

ctr.c

ctr.h

debian/changelog

debian/compat

debian/control

debian/copyright

debian/libhogweed2.install

debian/libnettle4.install

debian/nettle-bin.manpages

debian/nettle-dev.install

debian/rules

debian/watch

der-iterator.c

der2dsa.c

der2rsa.c

des-compat.c

des-compat.h

des.c

des.h

des3.c

desCode.h

descore.README

desdata.c

desinfo.h

dsa-keygen.c

dsa-sha1-sign.c

dsa-sha1-verify.c

dsa-sha256-sign.c

dsa-sha256-verify.c

dsa-sign.c

dsa-verify.c

dsa.c

dsa.h

dsa2sexp.c

examples/Makefile.in

examples/eratosthenes.c

examples/io.c

examples/io.h

examples/nettle-benchmark.c

examples/nettle-openssl.c

examples/next-prime.c

examples/random-prime.c

examples/rsa-decrypt.c

examples/rsa-encrypt-test

examples/rsa-encrypt.c

examples/rsa-keygen.c

examples/rsa-sign-test

examples/rsa-sign.c

examples/rsa-verify-test

examples/rsa-verify.c

examples/setup-env

examples/teardown-env

hmac-md5.c

hmac-sha1.c

hmac-sha224.c

hmac-sha256.c

hmac-sha384.c

hmac-sha512.c

hmac.c

hmac.h

knuth-lfib.c

knuth-lfib.h

macros.h

md2-meta.c

md2.c

md2.h

md4-meta.c

md4.c

md4.h

md5-compat.c

md5-compat.h

md5-compress.c

md5-meta.c

md5.c

md5.h

memxor.c

nettle-internal.c

nettle-internal.h

nettle-meta.h

nettle-types.h

nettle-write.h

nettle.html

nettle.info

nettle.pdf

nettle.texinfo

pgp-encode.c

pgp.h

pkcs1-rsa-md5.c

pkcs1-rsa-sha1.c

pkcs1-rsa-sha256.c

pkcs1-rsa-sha512.c

pkcs1.c

pkcs1.h

realloc.c

realloc.h

rsa-compat.c

rsa-compat.h

rsa-decrypt.c

rsa-encrypt.c

rsa-keygen.c

rsa-md5-sign.c

rsa-md5-verify.c

rsa-sha1-sign.c

rsa-sha1-verify.c

rsa-sha256-sign.c

rsa-sha256-verify.c

rsa-sha512-sign.c

rsa-sha512-verify.c

rsa-sign.c

rsa-verify.c

rsa.c

rsa.h

rsa2openpgp.c

rsa2sexp.c

serpent-meta.c

serpent.h

sexp-format.c

sexp-transport-format.c

sexp-transport.c

sexp.c

sexp.h

sexp2bignum.c

sexp2dsa.c

sexp2rsa.c

sha.h

sha1-compress.c

sha1-meta.c

sha1.c

sha224-meta.c

sha256-compress.c

sha256-meta.c

sha256.c

sha384-meta.c

sha512-compress.c

sha512-meta.c

sha512.c

sparc32/aes-decrypt-internal.asm

sparc32/aes-encrypt-internal.asm

sparc32/arcfour-crypt.asm

sparc64/aes-decrypt-internal.asm

sparc64/aes-encrypt-internal.asm

sparc64/arcfour-crypt.asm

testsuite/.test-rules.make

testsuite/Makefile.in

testsuite/arctwo-test.c

testsuite/des-compat-test.c

testsuite/hmac-test.c

testsuite/pkcs1-conv-test

testsuite/pkcs1-test.c

testsuite/rsa-encrypt-test.c

testsuite/serpent-test.c

testsuite/sexp-conv-test

testsuite/symbols-test

testsuite/teardown-env

testsuite/testutils.c

testsuite/testutils.h

tools/Makefile.in

tools/input.c

tools/input.h

tools/misc.c

tools/misc.h

tools/nettle-lfib-stream.c

tools/output.c

tools/output.h

tools/parse.c

tools/parse.h

tools/pkcs1-conv.c

tools/sexp-conv.c

twofish-meta.c

twofish.c

twofish.h

write-be32.c

x86/aes-decrypt-internal.asm

x86/aes-encrypt-internal.asm

x86/arcfour-crypt.asm

x86/camellia-crypt-internal.asm

x86/md5-compress.asm

x86/sha1-compress.asm

x86_64/aes-decrypt-internal.asm

x86_64/aes-encrypt-internal.asm

x86_64/machine.m4

x86_64/sha1-compress.asm

yarrow.h

yarrow256.c

yarrow_key_event.c

Show diffs side-by-side

added added

removed removed

testsuite/salsa20-test.c

#include "testutils.h"

#include "salsa20.h"

#include "memxor.h"

static int

memzero_p (const uint8_t *p, size_t n)

{

size_t i;

for (i = 0; i < n; i++)

if (p[i])

return 0;

return 1;

}

/* The ecrypt testcases encrypt 512 zero bytes (8 blocks), then give

the xor of all blocks, and the data for block 0 (0-43), 3,4

(192-319), 7 (448-511) */

#define STREAM_LENGTH 512

static void

test_salsa20_stream(unsigned key_length,

const uint8_t *key,

const uint8_t *iv,

const uint8_t *ciphertext,

const uint8_t *xor_ref)

{

struct salsa20_ctx ctx;

uint8_t data[STREAM_LENGTH + 1];

uint8_t stream[STREAM_LENGTH + 1];

uint8_t xor[SALSA20_BLOCK_SIZE];

unsigned j;

salsa20_set_key(&ctx, key_length, key);

salsa20_set_iv(&ctx, iv);

memset(stream, 0, STREAM_LENGTH + 1);

salsa20_crypt(&ctx, STREAM_LENGTH, stream, stream);

if (stream[STREAM_LENGTH])

{

fprintf(stderr, "Stream of %d bytes wrote too much!\n", STREAM_LENGTH);

FAIL();

}

if (!MEMEQ (64, stream, ciphertext))

{

fprintf(stderr, "Error failed, offset 0:\n");

fprintf(stderr, "\nOutput: ");

print_hex(64, stream);

fprintf(stderr, "\nExpected:");

print_hex(64, ciphertext);

fprintf(stderr, "\n");

FAIL();

}

if (!MEMEQ (128, stream + 192, ciphertext + 64))

{

fprintf(stderr, "Error failed, offset 192:\n");

fprintf(stderr, "\nOutput: ");

print_hex(128, stream + 192);

fprintf(stderr, "\nExpected:");

print_hex(64, ciphertext + 64);

fprintf(stderr, "\n");

FAIL();

}

if (!MEMEQ (64, stream + 448, ciphertext + 192))

{

fprintf(stderr, "Error failed, offset 448:\n");

fprintf(stderr, "\nOutput: ");

print_hex(64, stream + 448);

fprintf(stderr, "\nExpected:");

print_hex(64, ciphertext + 192);

fprintf(stderr, "\n");

FAIL();

}

memxor3 (xor, stream, stream + SALSA20_BLOCK_SIZE, SALSA20_BLOCK_SIZE);

for (j = 2*SALSA20_BLOCK_SIZE; j < STREAM_LENGTH; j += SALSA20_BLOCK_SIZE)

memxor (xor, stream + j, SALSA20_BLOCK_SIZE);

if (!MEMEQ (SALSA20_BLOCK_SIZE, xor, xor_ref))

{

fprintf(stderr, "Error failed, bad xor 448:\n");

fprintf(stderr, "\nOutput: ");

print_hex(SALSA20_BLOCK_SIZE, xor);

fprintf(stderr, "\nExpected:");

print_hex(SALSA20_BLOCK_SIZE, xor_ref);

fprintf(stderr, "\n");

FAIL();

}

for (j = 1; j <= STREAM_LENGTH; j++)

{

memset(data, 0, STREAM_LENGTH + 1);

salsa20_set_iv(&ctx, iv);

salsa20_crypt(&ctx, j, data, data);

if (!MEMEQ(j, data, stream))

{

fprintf(stderr, "Encrypt failed for length %u:\n", j);

fprintf(stderr, "\nOutput: ");

print_hex(j, data);

100

fprintf(stderr, "\nExpected:");

101

print_hex(j, stream);

102

fprintf(stderr, "\n");

103

FAIL();

104

}

105

if (!memzero_p (data + j, STREAM_LENGTH + 1 - j))

106

{

107

fprintf(stderr, "Encrypt failed for length %u, wrote too much:\n", j);

108

fprintf(stderr, "\nOutput: ");

109

print_hex(STREAM_LENGTH + 1 - j, data + j);

110

fprintf(stderr, "\n");

111

FAIL();

112

}

113

}

114

}

115

116

static void

117

test_salsa20(unsigned key_length,

118

const uint8_t *key,

119

const uint8_t *iv,

120

unsigned length,

121

const uint8_t *cleartext,

122

const uint8_t *ciphertext)

123

{

124

struct salsa20_ctx ctx;

125

uint8_t *data = xalloc(length + 1);

126

127

salsa20_set_key(&ctx, key_length, key);

128

salsa20_set_iv(&ctx, iv);

129

data[length] = 17;

130

salsa20_crypt(&ctx, length, data, cleartext);

131

if (data[length] != 17)

132

{

133

fprintf(stderr, "Encrypt of %u bytes wrote too much!\nInput:", length);

134

print_hex(length, cleartext);

135

fprintf(stderr, "\n");

136

FAIL();

137

}

138

if (!MEMEQ(length, data, ciphertext))

139

{

140

fprintf(stderr, "Encrypt failed:\nInput:");

141

print_hex(length, cleartext);

142

fprintf(stderr, "\nOutput: ");

143

print_hex(length, data);

144

fprintf(stderr, "\nExpected:");

145

print_hex(length, ciphertext);

146

fprintf(stderr, "\n");

147

FAIL();

148

}

149

salsa20_set_key(&ctx, key_length, key);

150

salsa20_set_iv(&ctx, iv);

151

salsa20_crypt(&ctx, length, data, data);

152

153

if (!MEMEQ(length, data, cleartext))

154

{

155

fprintf(stderr, "Decrypt failed:\nInput:");

156

print_hex(length, ciphertext);

157

fprintf(stderr, "\nOutput: ");

158

print_hex(length, data);

159

fprintf(stderr, "\nExpected:");

160

print_hex(length, cleartext);

161

fprintf(stderr, "\n");

162

FAIL();

163

}

164

165

free(data);

166

}

167

168

int

169

test_main(void)

170

{

171

/* http://www.ecrypt.eu.org/stream/svn/viewcvs.cgi/ecrypt/trunk/submissions/salsa20/full/verified.test-vectors?logsort=rev&rev=210&view=markup */

172

173

test_salsa20(HL("80000000 00000000 00000000 00000000"),

174

H("00000000 00000000"),

175

HL("00000000 00000000"),

176

H("4DFA5E48 1DA23EA0"));

177

178

test_salsa20(HL("00000000 00000000 00000000 00000000"),

179

H("80000000 00000000"),

180

HL("00000000 00000000"),

181

H("B66C1E44 46DD9557"));

182

183

test_salsa20(HL("0053A6F94C9FF24598EB3E91E4378ADD"),

184

H("0D74DB42A91077DE"),

185

HL("00000000 00000000"),

186

H("05E1E7BE B697D999"));

187

188

test_salsa20(HL("80000000 00000000 00000000 00000000"

189

"00000000 00000000 00000000 00000000"),

190

H("00000000 00000000"),

191

HL("00000000 00000000"),

192

H("E3BE8FDD 8BECA2E3"));

193

194

test_salsa20(HL("00000000 00000000 00000000 00000000"

195

"00000000 00000000 00000000 00000000"),

196

H("80000000 00000000"),

197

HL("00000000 00000000"),

198

H("2ABA3DC45B494700"));

199

200

test_salsa20(HL("0053A6F94C9FF24598EB3E91E4378ADD"

201

"3083D6297CCF2275C81B6EC11467BA0D"),

202

H("0D74DB42A91077DE"),

203

HL("00000000 00000000"),

204

H("F5FAD53F 79F9DF58"));

205

206

test_salsa20_stream(HL("80000000000000000000000000000000"),

207

H("00000000 00000000"),

208

H("4DFA5E481DA23EA09A31022050859936"

209

"DA52FCEE218005164F267CB65F5CFD7F"

210

"2B4F97E0FF16924A52DF269515110A07"

211

"F9E460BC65EF95DA58F740B7D1DBB0AA"

212

"DA9C1581F429E0A00F7D67E23B730676"

213

"783B262E8EB43A25F55FB90B3E753AEF"

214

"8C6713EC66C51881111593CCB3E8CB8F"

215

"8DE124080501EEEB389C4BCB6977CF95"

216

"7D5789631EB4554400E1E025935DFA7B"

217

"3E9039D61BDC58A8697D36815BF1985C"

218

"EFDF7AE112E5BB81E37ECF0616CE7147"

219

"FC08A93A367E08631F23C03B00A8DA2F"

220

"B375703739DACED4DD4059FD71C3C47F"

221

"C2F9939670FAD4A46066ADCC6A564578"

222

"3308B90FFB72BE04A6B147CBE38CC0C3"

223

"B9267C296A92A7C69873F9F263BE9703"),

224

H("F7A274D268316790A67EC058F45C0F2A"

225

"067A99FCDE6236C0CEF8E056349FE54C"

226

"5F13AC74D2539570FD34FEAB06C57205"

227

"3949B59585742181A5A760223AFA22D4"));

228

229

test_salsa20_stream(HL("48494A4B4C4D4E4F5051525354555657"

230

"58595A5B5C5D5E5F6061626364656667"),

231

H("0000000000000000"),

232

H("53AD3698A011F779AD71030F3EFBEBA0"

233

"A7EE3C55789681B1591EF33A7BE521ED"

234

"68FC36E58F53FFD6E1369B00E390E973"

235

"F656ACB097E0D603BE59A0B8F7975B98"

236

"A04698274C6AC6EC03F66ED3F94C08B7"

237

"9FFDBF2A1610E6F5814905E73AD6D0D2"

238

"8164EEB8450D8ED0BB4B644761B43512"

239

"52DD5DDF00C31E3DABA0BC17691CCFDC"

240

"B826C7F071E796D34E3BFFB3C96E76A1"

241

"209388392806947C7F19B86D379FA3AE"

242

"DFCD19EBF49803DACC6E577E5B97B0F6"

243

"D2036B6624D8196C96FCF02C865D30C1"

244

"B505D41E2C207FA1C0A0E93413DDCFFC"

245

"9BECA8030AFFAC2466E56482DA0EF428"

246

"E63880B5021D3051F18679505A2B9D4F"

247

"9B2C5A2D271D276DE3F51DBEBA934436"),

248

H("7849651A820B1CDFE36D5D6632716534"

249

"E0635EDEFD538122D80870B60FB055DB"

250

"637C7CA2B78B116F83AFF46E40F8F71D"

251

"4CD6D2E1B750D5E011D1DF2E80F7210A"));

252

253

SUCCESS();

254

}

Older »