jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
328 Commits
2 Branches
1.6 MiB
 
 
 
 
 
Tree: a69002875c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a69002875c'
${ noResults }
ed448goldilocks/test/test_ct.cxx

161 lines
4.2 KiB
Raw Blame History 

  1. /**

  2.  * @file test_decaf.cxx

  3.  * @author Mike Hamburg

  4.  *

  5.  * @copyright

  6.  *   Copyright (c) 2015 Cryptography Research, Inc.  \n

  7.  *   Released under the MIT License.  See LICENSE.txt for license information.

  8.  *

  9.  * @brief C++ tests, because that's easier.

  10.  */

  11. 

  12. #include <decaf.hxx>

  13. #include <decaf/spongerng.hxx>

  14. #include <decaf/crypto.h>

  15. #include <decaf/crypto.hxx>

  16. #include <stdio.h>

  17. #include <valgrind/memcheck.h>

  18. 

  19. using namespace decaf;

  20. 

  21. static const long NTESTS = 10;

  22. 

  23. const char *undef_str = "Valgrind thinks this string is undefined.";

  24. const Block undef_block(undef_str);

  25. 

  26. static inline void ignore(decaf_error_t x) {

  27.     (void)x;

  28. }

  29. 

  30. template<typename Group> struct Tests {

  31. 

  32. typedef typename Group::Scalar Scalar;

  33. typedef typename Group::Point Point;

  34. typedef typename Group::Precomputed Precomputed;

  35. 

  36. static void test_arithmetic() {

  37.     SpongeRng rng(Block("test_arithmetic"),SpongeRng::DETERMINISTIC);

  38.     rng.stir(undef_block);

  39.     

  40.     Scalar x(rng),y(rng),z;

  41.     uint8_t ser[Group::Scalar::SER_BYTES];

  42.         

  43.     for (int i=0; i<NTESTS; i++) {

  44.         (void)(x+y);

  45.         (void)(x-y);

  46.         (void)(x*y);

  47.         ignore(x.inverse_noexcept(y));

  48.         (void)(x==y);

  49.         (void)(z=y);

  50.         x.serialize_into(ser);

  51.         x = y;

  52.     }

  53. }

  54. 

  55. static void test_elligator() {

  56.     SpongeRng rng(Block("test_elligator"),SpongeRng::DETERMINISTIC);

  57.     rng.stir(undef_block);

  58.     

  59.     FixedArrayBuffer<Group::Point::HASH_BYTES> inv;

  60.         

  61.     for (int i=0; i<NTESTS; i++) {

  62.         Point x(rng), y(rng,false);

  63.         

  64.         ignore((x+y).invert_elligator(inv,i));

  65.     }

  66. }

  67. 

  68. static void test_ec() {

  69.     SpongeRng rng(Block("test_ec"),SpongeRng::DETERMINISTIC);

  70.     rng.stir(undef_block);

  71. 

  72.     uint8_t ser[Group::Point::SER_BYTES];

  73. 

  74.     for (int i=0; i<NTESTS; i++) {

  75.         Scalar y(rng),z(rng);

  76.         Point p(rng),q(rng),r;

  77. 

  78.         p.serialize_into(ser);

  79.         ignore(Group::Point::decode(p,FixedBlock<Group::Point::SER_BYTES>(ser)));

  80.         (void)(p*y);

  81.         (void)(p+q);

  82.         (void)(p-q);

  83.         (void)(-p);

  84.         (void)(p.times_two());

  85.         (void)(p==q);

  86.         (void)(p.debugging_torque());

  87.         /* (void)(p.non_secret_combo_with_base(y,z)); */ /* Should fail */

  88.         (void)(Precomputed(p)*y);

  89.         p.dual_scalarmul(q,r,y,z);

  90.         Group::Point::double_scalarmul(p,y,q,z);

  91.         

  92.     }

  93. }

  94. 

  95. static void test_cfrg() {

  96.     SpongeRng rng(Block("test_cfrg"),SpongeRng::DETERMINISTIC);

  97.     rng.stir(undef_block);

  98.     

  99.     for (int i=0; i<NTESTS; i++) {

  100.         FixedArrayBuffer<Group::DhLadder::PUBLIC_BYTES> pub(rng);

  101.         FixedArrayBuffer<Group::DhLadder::PRIVATE_BYTES> priv(rng);

  102.         

  103.         Group::DhLadder::generate_key(priv);

  104.         ignore(Group::DhLadder::shared_secret_noexcept(pub,pub,priv));

  105.     }

  106. }

  107. 

  108. /* Specify the same value as you did when compiling decaf_crypto.c */

  109. #ifndef DECAF_CRYPTO_SHARED_SECRET_SHORT_CIRUIT

  110. #define DECAF_CRYPTO_SHARED_SECRET_SHORT_CIRUIT DECAF_FALSE

  111. #endif

  112. 

  113. static void test_crypto() {

  114.     SpongeRng rng(Block("test_crypto"),SpongeRng::DETERMINISTIC);

  115.     rng.stir(undef_block);

  116. 

  117. #if DECAF_CRYPTO_SHARED_SECRET_SHORT_CIRUIT

  118.     SpongeRng defrng(Block("test_crypto_defined"));

  119. #endif

  120.     

  121.     FixedArrayBuffer<Group::Point::SER_BYTES> shared;

  122.     

  123.     for (int i=0; i<NTESTS; i++) {

  124.         PrivateKey<Group> sk1(rng);

  125.         SecureBuffer sig = sk1.sign(undef_block);

  126. 

  127. #if DECAF_CRYPTO_SHARED_SECRET_SHORT_CIRUIT

  128.         PrivateKey<Group> sk2(defrng);

  129.         (void)sk1.sharedSecretNoexcept(shared,sk2.pub(),i&1);

  130. #else

  131.         PrivateKey<Group> sk3(rng);

  132.         (void)sk1.sharedSecretNoexcept(shared,sk3.pub(),i&1);

  133. #endif

  134.     }

  135. }

  136. 

  137. }; /* template<GroupId GROUP> */

  138. 

  139. int main(int argc, char **argv) {

  140.     (void) argc; (void) argv;

  141.     

  142.     VALGRIND_MAKE_MEM_UNDEFINED(undef_str, strlen(undef_str));

  143.     

  144.     printf("Testing %s:\n",IsoEd25519::name());

  145.     Tests<IsoEd25519>::test_arithmetic();

  146.     Tests<IsoEd25519>::test_elligator();

  147.     Tests<IsoEd25519>::test_ec();

  148.     Tests<IsoEd25519>::test_cfrg();

  149.     Tests<IsoEd25519>::test_crypto();

  150.     

  151.     printf("\n");

  152.     printf("Testing %s:\n", Ed448Goldilocks::name());

  153.     Tests<Ed448Goldilocks>::test_arithmetic();

  154.     Tests<Ed448Goldilocks>::test_elligator();

  155.     Tests<Ed448Goldilocks>::test_ec();

  156.     Tests<Ed448Goldilocks>::test_cfrg();

  157.     Tests<Ed448Goldilocks>::test_crypto();

  158.     

  159.     return 0;

  160. }