jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
321 Commits
2 Branches
1.6 MiB
 
 
 
 
 
Tree: 2eacff6ad6
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2eacff6ad6'
${ noResults }
ed448goldilocks/test/test_ct.cxx

150 lines
3.7 KiB
Raw Blame History 

  1. /**

  2.  * @file test_decaf.cxx

  3.  * @author Mike Hamburg

  4.  *

  5.  * @copyright

  6.  *   Copyright (c) 2015 Cryptography Research, Inc.  \n

  7.  *   Released under the MIT License.  See LICENSE.txt for license information.

  8.  *

  9.  * @brief C++ tests, because that's easier.

  10.  */

  11. 

  12. #include <decaf.hxx>

  13. #include <decaf/spongerng.hxx>

  14. #include <decaf/crypto.h>

  15. #include <decaf/crypto.hxx>

  16. #include <stdio.h>

  17. #include <valgrind/memcheck.h>

  18. 

  19. using namespace decaf;

  20. 

  21. static const long NTESTS = 10;

  22. 

  23. const char *undef_str = "Valgrind thinks this string is undefined.";

  24. const Block undef_block(undef_str);

  25. 

  26. static inline void ignore(decaf_error_t x) {

  27.     (void)x;

  28. }

  29. 

  30. template<typename Group> struct Tests {

  31. 

  32. typedef typename Group::Scalar Scalar;

  33. typedef typename Group::Point Point;

  34. typedef typename Group::Precomputed Precomputed;

  35. 

  36. static void test_arithmetic() {

  37.     SpongeRng rng(Block("test_arithmetic"));

  38.     rng.stir(undef_block);

  39.     

  40.     Scalar x(rng),y(rng),z;

  41.     uint8_t ser[Group::Scalar::SER_BYTES];

  42.         

  43.     for (int i=0; i<NTESTS; i++) {

  44.         (void)(x+y);

  45.         (void)(x-y);

  46.         (void)(x*y);

  47.         ignore(x.inverse_noexcept(y));

  48.         (void)(x==y);

  49.         (void)(z=y);

  50.         x.serialize_into(ser);

  51.         x = y;

  52.     }

  53. }

  54. 

  55. static void test_elligator() {

  56.     SpongeRng rng(Block("test_elligator"));

  57.     rng.stir(undef_block);

  58.     

  59.     FixedArrayBuffer<Group::Point::HASH_BYTES> inv;

  60.         

  61.     for (int i=0; i<NTESTS; i++) {

  62.         Point x(rng), y(rng,false);

  63.         

  64.         ignore((x+y).invert_elligator(inv,i));

  65.     }

  66. }

  67. 

  68. static void test_ec() {

  69.     SpongeRng rng(Block("test_ec"));

  70.     rng.stir(undef_block);

  71. 

  72.     uint8_t ser[Group::Point::SER_BYTES];

  73. 

  74.     for (int i=0; i<NTESTS; i++) {

  75.         Scalar y(rng),z(rng);

  76.         Point p(rng),q(rng),r;

  77. 

  78.         p.serialize_into(ser);

  79.         ignore(Group::Point::decode(p,FixedBlock<Group::Point::SER_BYTES>(ser)));

  80.         (void)(p*y);

  81.         (void)(p+q);

  82.         (void)(p-q);

  83.         (void)(-p);

  84.         (void)(p.times_two());

  85.         (void)(p==q);

  86.         (void)(p.debugging_torque());

  87.         /* (void)(p.non_secret_combo_with_base(y,z)); */ /* Should fail */

  88.         (void)(Precomputed(p)*y);

  89.         p.dual_scalarmul(q,r,y,z);

  90.         Group::Point::double_scalarmul(p,y,q,z);

  91.         

  92.     }

  93. }

  94. 

  95. /* TODO: test x25519/x448 */

  96. 

  97. /* FUTURE: test ed25519/ed448 */

  98. 

  99. /* Specify the same value as you did when compiling decaf_crypto.c */

  100. #ifndef DECAF_CRYPTO_SHARED_SECRET_SHORT_CIRUIT

  101. #define DECAF_CRYPTO_SHARED_SECRET_SHORT_CIRUIT DECAF_FALSE

  102. #endif

  103. 

  104. static void test_crypto() {

  105.     SpongeRng rng(Block("test_crypto"));

  106.     rng.stir(undef_block);

  107. 

  108. #if DECAF_CRYPTO_SHARED_SECRET_SHORT_CIRUIT

  109.     SpongeRng defrng(Block("test_crypto_defined"));

  110. #endif

  111.     

  112.     FixedArrayBuffer<Group::Point::SER_BYTES> shared;

  113.     

  114.     for (int i=0; i<NTESTS; i++) {

  115.         PrivateKey<Group> sk1(rng);

  116.         SecureBuffer sig = sk1.sign(undef_block);

  117. 

  118. #if DECAF_CRYPTO_SHARED_SECRET_SHORT_CIRUIT

  119.         PrivateKey<Group> sk2(defrng);

  120.         (void)sk1.sharedSecretNoexcept(shared,sk2.pub(),i&1);

  121. #else

  122.         PrivateKey<Group> sk3(rng);

  123.         (void)sk1.sharedSecretNoexcept(shared,sk3.pub(),i&1);

  124. #endif

  125.     }

  126. }

  127. 

  128. }; /* template<GroupId GROUP> */

  129. 

  130. int main(int argc, char **argv) {

  131.     (void) argc; (void) argv;

  132.     

  133.     VALGRIND_MAKE_MEM_UNDEFINED(undef_str, strlen(undef_str));

  134.     

  135.     printf("Testing %s:\n",IsoEd25519::name());

  136.     Tests<IsoEd25519>::test_arithmetic();

  137.     Tests<IsoEd25519>::test_elligator();

  138.     Tests<IsoEd25519>::test_ec();

  139.     Tests<IsoEd25519>::test_crypto();

  140.     

  141.     printf("\n");

  142.     printf("Testing %s:\n", Ed448Goldilocks::name());

  143.     Tests<Ed448Goldilocks>::test_arithmetic();

  144.     Tests<Ed448Goldilocks>::test_elligator();

  145.     Tests<Ed448Goldilocks>::test_ec();

  146.     Tests<Ed448Goldilocks>::test_crypto();

  147.     

  148.     return 0;

  149. }