diff options
Diffstat (limited to 'debian/vendor-h2o/deps/picotls/t/minicrypto.c')
-rw-r--r-- | debian/vendor-h2o/deps/picotls/t/minicrypto.c | 165 |
1 files changed, 165 insertions, 0 deletions
diff --git a/debian/vendor-h2o/deps/picotls/t/minicrypto.c b/debian/vendor-h2o/deps/picotls/t/minicrypto.c new file mode 100644 index 0000000..0c18a90 --- /dev/null +++ b/debian/vendor-h2o/deps/picotls/t/minicrypto.c @@ -0,0 +1,165 @@ +/* + * Copyright (c) 2016 DeNA Co., Ltd., Kazuho Oku + * + * Permission is hereby granted, free of charge, to any person obtaining a copy + * of this software and associated documentation files (the "Software"), to + * deal in the Software without restriction, including without limitation the + * rights to use, copy, modify, merge, publish, distribute, sublicense, and/or + * sell copies of the Software, and to permit persons to whom the Software is + * furnished to do so, subject to the following conditions: + * + * The above copyright notice and this permission notice shall be included in + * all copies or substantial portions of the Software. + * + * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR + * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, + * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE + * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER + * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING + * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS + * IN THE SOFTWARE. + */ +#ifndef _XOPEN_SOURCE +#define _XOPEN_SOURCE 700 /* required for glibc to use getaddrinfo, etc. */ +#endif +#include <assert.h> +#include <stdio.h> +#include <string.h> +#include "../deps/picotest/picotest.h" +#include "../lib/cifra.c" +#include "../lib/uecc.c" +#include "test.h" + +static void test_secp256r1_key_exchange(void) +{ + test_key_exchange(&ptls_minicrypto_secp256r1); +} + +static void test_x25519_key_exchange(void) +{ + test_key_exchange(&ptls_minicrypto_x25519); +} + +static void test_secp256r1_sign(void) +{ + const char *msg = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdef"; + ptls_minicrypto_secp256r1sha256_sign_certificate_t signer = {{secp256r1sha256_sign}}; + uint8_t pub[SECP256R1_PUBLIC_KEY_SIZE]; + uint16_t selected; + ptls_buffer_t sigbuf; + uint32_t sigbuf_small[128]; + + uECC_make_key(pub, signer.key, uECC_secp256r1()); + ptls_buffer_init(&sigbuf, sigbuf_small, sizeof(sigbuf_small)); + + ok(secp256r1sha256_sign(&signer.super, NULL, &selected, &sigbuf, ptls_iovec_init(msg, 32), + (uint16_t[]){PTLS_SIGNATURE_ECDSA_SECP256R1_SHA256}, 1) == 0); + ok(selected == PTLS_SIGNATURE_ECDSA_SECP256R1_SHA256); + + /* FIXME verify sign */ + + ptls_buffer_dispose(&sigbuf); +} + +static void test_hrr(void) +{ + ptls_key_exchange_algorithm_t *client_keyex[] = {&ptls_minicrypto_x25519, &ptls_minicrypto_secp256r1, NULL}; + ptls_context_t client_ctx = {ptls_minicrypto_random_bytes, &ptls_get_time, client_keyex, ptls_minicrypto_cipher_suites}; + ptls_t *client, *server; + ptls_buffer_t cbuf, sbuf, decbuf; + uint8_t cbuf_small[16384], sbuf_small[16384], decbuf_small[16384]; + size_t consumed; + int ret; + + assert(ctx_peer->key_exchanges[0] != NULL && ctx_peer->key_exchanges[0]->id == PTLS_GROUP_SECP256R1); + assert(ctx_peer->key_exchanges[1] == NULL); + + client = ptls_new(&client_ctx, 0); + server = ptls_new(ctx_peer, 1); + ptls_buffer_init(&cbuf, cbuf_small, sizeof(cbuf_small)); + ptls_buffer_init(&sbuf, sbuf_small, sizeof(sbuf_small)); + ptls_buffer_init(&decbuf, decbuf_small, sizeof(decbuf_small)); + + ret = ptls_handshake(client, &cbuf, NULL, NULL, NULL); + ok(ret == PTLS_ERROR_IN_PROGRESS); + + consumed = cbuf.off; + ret = ptls_handshake(server, &sbuf, cbuf.base, &consumed, NULL); + ok(ret == PTLS_ERROR_IN_PROGRESS); + ok(consumed == cbuf.off); + cbuf.off = 0; + + ok(sbuf.off > 5 + 4); + ok(sbuf.base[5] == 2 /* PTLS_HANDSHAKE_TYPE_SERVER_HELLO (RETRY_REQUEST) */); + + consumed = sbuf.off; + ret = ptls_handshake(client, &cbuf, sbuf.base, &consumed, NULL); + ok(ret == PTLS_ERROR_IN_PROGRESS); + ok(consumed == sbuf.off); + sbuf.off = 0; + + ok(cbuf.off >= 5 + 4); + ok(cbuf.base[5] == 1 /* PTLS_HANDSHAKE_TYPE_CLIENT_HELLO */); + + consumed = cbuf.off; + ret = ptls_handshake(server, &sbuf, cbuf.base, &consumed, NULL); + ok(ret == 0); + ok(consumed == cbuf.off); + cbuf.off = 0; + + ok(sbuf.off >= 5 + 4); + ok(sbuf.base[5] == 2 /* PTLS_HANDSHAKE_TYPE_SERVER_HELLO */); + + consumed = sbuf.off; + ret = ptls_handshake(client, &cbuf, sbuf.base, &consumed, NULL); + ok(ret == 0); + ok(consumed == sbuf.off); + sbuf.off = 0; + + ret = ptls_send(client, &cbuf, "hello world", 11); + ok(ret == 0); + + consumed = cbuf.off; + ret = ptls_receive(server, &decbuf, cbuf.base, &consumed); + ok(ret == 0); + ok(consumed == cbuf.off); + cbuf.off = 0; + + ok(decbuf.off == 11); + ok(memcmp(decbuf.base, "hello world", 11) == 0); + + ptls_buffer_dispose(&decbuf); + ptls_buffer_dispose(&sbuf); + ptls_buffer_dispose(&cbuf); + ptls_free(client); + ptls_free(server); +} + +int main(int argc, char **argv) +{ + subtest("secp256r1", test_secp256r1_key_exchange); + subtest("x25519", test_x25519_key_exchange); + subtest("secp256r1-sign", test_secp256r1_sign); + + ptls_iovec_t cert = ptls_iovec_init(SECP256R1_CERTIFICATE, sizeof(SECP256R1_CERTIFICATE) - 1); + + ptls_minicrypto_secp256r1sha256_sign_certificate_t sign_certificate; + ptls_minicrypto_init_secp256r1sha256_sign_certificate(&sign_certificate, + ptls_iovec_init(SECP256R1_PRIVATE_KEY, SECP256R1_PRIVATE_KEY_SIZE)); + + ptls_context_t ctxbuf = {ptls_minicrypto_random_bytes, + &ptls_get_time, + ptls_minicrypto_key_exchanges, + ptls_minicrypto_cipher_suites, + {&cert, 1}, + NULL, + NULL, + &sign_certificate.super}; + ctx = ctx_peer = &ctxbuf; + + subtest("picotls", test_picotls); + subtest("hrr", test_hrr); + + return done_testing(); + return done_testing(); +} |