1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
|
/*
20141017
Jan Mojzis
Public domain.
*/
#include <string.h>
#include "misc.h"
#include "crypto_sign_ed25519.h"
#define MLEN 5232
static unsigned char space[MLEN + 16];
static unsigned char m[MLEN + crypto_sign_ed25519_BYTES + 16];
static unsigned char sm[MLEN + crypto_sign_ed25519_BYTES + 16];
static unsigned char sk[crypto_sign_ed25519_SECRETKEYBYTES + 16];
static unsigned char pk[crypto_sign_ed25519_PUBLICKEYBYTES + 16];
static unsigned long long mlen;
static unsigned long long smlen;
static unsigned char test_precomp_checksumsha2[32] = {
0x63, 0xe6, 0x3c, 0xcf, 0x4a, 0x50, 0x12, 0xdc,
0xc5, 0xec, 0x43, 0x76, 0x52, 0x6c, 0xf1, 0x5c,
0x7b, 0x12, 0xb2, 0xa5, 0xee, 0x77, 0x71, 0x63,
0xd0, 0x3a, 0xf1, 0x84, 0xe0, 0xd2, 0x06, 0x13
};
static unsigned char test_precomp_checksumsha3[32] = {
0x18, 0x03, 0xc1, 0x7e, 0xf4, 0x2c, 0x56, 0xce,
0xc0, 0xc4, 0xb2, 0xc3, 0x29, 0xf7, 0xa8, 0x8c,
0x1e, 0xfe, 0xd2, 0x9c, 0xf3, 0xdb, 0xe5, 0x61,
0x2d, 0x22, 0xf9, 0x0c, 0xd9, 0x0f, 0xf2, 0x7f
};
static unsigned char skdata[1080][32] = {
#include "precomp.data"
};
static unsigned char pkdata[1080][32] = {
#include "precomp_ed25519.data"
};
static void test_precomp(void) {
long long i, j;
pseudorandombytes(space, sizeof space);
checksum_zero();
for (i = 0; i < 1080; ++i) {
for (j = 31; j >= 0; --j) sk[j ] = skdata[i][j];
for (j = 31; j >= 0; --j) sk[j + 32] = pkdata[i][j];
for (j = 31; j >= 0; --j) pk[j ] = pkdata[i][j];
crypto_sign_ed25519(sm, &smlen, space, MLEN - i, sk);
checksum(sm, crypto_sign_ed25519_BYTES);
if (crypto_sign_ed25519_open(m, &mlen, sm, smlen, pk) != 0) {
fail_printdata("sm", sm, smlen);
fail_printdata("pk", pk, crypto_sign_ed25519_PUBLICKEYBYTES);
fail_printdata("sk", sk, crypto_sign_ed25519_SECRETKEYBYTES);
fail("crypto_sign_ed25519_open() failure, please report it !!!!!!!!!");
}
}
if (!checksum_check((test_precomp_checksumsha2)) && !checksum_check((test_precomp_checksumsha3))) {
fail_whenbadchecksum(test_precomp_checksumsha3);
}
}
static void test_random(void) {
long long i, j;
i = 0;
for (j = 0; j < sizeof space; j += 1 + j / 16) {
unsaferandombytes(space + i, j);
if (crypto_sign_ed25519_keypair(pk + i, sk + i) != 0)
fail("crypto_sign_ed25519_keypair() failure");
crypto_sign_ed25519(sm + i, &smlen, space + i, j, sk + i);
if (crypto_sign_ed25519_open(m + i, &mlen, sm + i, smlen, pk + i) != 0) {
fail_printdata("sm", sm + i, smlen);
fail_printdata("pk", pk + i, crypto_sign_ed25519_PUBLICKEYBYTES);
fail_printdata("sk", sk + i, crypto_sign_ed25519_SECRETKEYBYTES);
fail("crypto_sign_ed25519_open() failure, please report it !!!!!!!!!");
}
++i;
i %= 16;
}
}
static void test_signopen(void) {
unsigned char m[1024];
unsigned char sm[1024];
unsigned char om[1024];
unsigned long long smlen = 0;
unsigned long long omlen;
if (crypto_sign_ed25519_keypair(pk, sk) != 0) fail("crypto_sign_ed25519_keypair() failure");
pseudorandombytes(m, sizeof m);
crypto_sign_ed25519(sm, &smlen, m + 64, sizeof m - 64, sk);
if (crypto_sign_ed25519_open(om, &omlen, sm, sizeof sm, pk) != 0) {
fail_printdata("sm", sm, smlen);
fail_printdata("pk", pk, crypto_sign_ed25519_PUBLICKEYBYTES);
fail_printdata("sk", sk, crypto_sign_ed25519_SECRETKEYBYTES);
fail("crypto_sign_ed25519_open() failure, please report it !!!!!!!!!");
}
if (memcmp(m + 64, om, sizeof m - 64)) {
fail("crypto_sign_ed25519_open() failure, messages do not match");
}
}
int main(void) {
test_precomp();
test_random();
test_signopen();
_exit(0);
}
|
