summaryrefslogtreecommitdiffstats
path: root/web/server/h2o/libh2o/deps/picotls/t/minicrypto.c
diff options
context:
space:
mode:
Diffstat (limited to 'web/server/h2o/libh2o/deps/picotls/t/minicrypto.c')
-rw-r--r--web/server/h2o/libh2o/deps/picotls/t/minicrypto.c165
1 files changed, 165 insertions, 0 deletions
diff --git a/web/server/h2o/libh2o/deps/picotls/t/minicrypto.c b/web/server/h2o/libh2o/deps/picotls/t/minicrypto.c
new file mode 100644
index 00000000..0c18a908
--- /dev/null
+++ b/web/server/h2o/libh2o/deps/picotls/t/minicrypto.c
@@ -0,0 +1,165 @@
+/*
+ * Copyright (c) 2016 DeNA Co., Ltd., Kazuho Oku
+ *
+ * Permission is hereby granted, free of charge, to any person obtaining a copy
+ * of this software and associated documentation files (the "Software"), to
+ * deal in the Software without restriction, including without limitation the
+ * rights to use, copy, modify, merge, publish, distribute, sublicense, and/or
+ * sell copies of the Software, and to permit persons to whom the Software is
+ * furnished to do so, subject to the following conditions:
+ *
+ * The above copyright notice and this permission notice shall be included in
+ * all copies or substantial portions of the Software.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+ * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
+ * IN THE SOFTWARE.
+ */
+#ifndef _XOPEN_SOURCE
+#define _XOPEN_SOURCE 700 /* required for glibc to use getaddrinfo, etc. */
+#endif
+#include <assert.h>
+#include <stdio.h>
+#include <string.h>
+#include "../deps/picotest/picotest.h"
+#include "../lib/cifra.c"
+#include "../lib/uecc.c"
+#include "test.h"
+
+static void test_secp256r1_key_exchange(void)
+{
+ test_key_exchange(&ptls_minicrypto_secp256r1);
+}
+
+static void test_x25519_key_exchange(void)
+{
+ test_key_exchange(&ptls_minicrypto_x25519);
+}
+
+static void test_secp256r1_sign(void)
+{
+ const char *msg = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdef";
+ ptls_minicrypto_secp256r1sha256_sign_certificate_t signer = {{secp256r1sha256_sign}};
+ uint8_t pub[SECP256R1_PUBLIC_KEY_SIZE];
+ uint16_t selected;
+ ptls_buffer_t sigbuf;
+ uint32_t sigbuf_small[128];
+
+ uECC_make_key(pub, signer.key, uECC_secp256r1());
+ ptls_buffer_init(&sigbuf, sigbuf_small, sizeof(sigbuf_small));
+
+ ok(secp256r1sha256_sign(&signer.super, NULL, &selected, &sigbuf, ptls_iovec_init(msg, 32),
+ (uint16_t[]){PTLS_SIGNATURE_ECDSA_SECP256R1_SHA256}, 1) == 0);
+ ok(selected == PTLS_SIGNATURE_ECDSA_SECP256R1_SHA256);
+
+ /* FIXME verify sign */
+
+ ptls_buffer_dispose(&sigbuf);
+}
+
+static void test_hrr(void)
+{
+ ptls_key_exchange_algorithm_t *client_keyex[] = {&ptls_minicrypto_x25519, &ptls_minicrypto_secp256r1, NULL};
+ ptls_context_t client_ctx = {ptls_minicrypto_random_bytes, &ptls_get_time, client_keyex, ptls_minicrypto_cipher_suites};
+ ptls_t *client, *server;
+ ptls_buffer_t cbuf, sbuf, decbuf;
+ uint8_t cbuf_small[16384], sbuf_small[16384], decbuf_small[16384];
+ size_t consumed;
+ int ret;
+
+ assert(ctx_peer->key_exchanges[0] != NULL && ctx_peer->key_exchanges[0]->id == PTLS_GROUP_SECP256R1);
+ assert(ctx_peer->key_exchanges[1] == NULL);
+
+ client = ptls_new(&client_ctx, 0);
+ server = ptls_new(ctx_peer, 1);
+ ptls_buffer_init(&cbuf, cbuf_small, sizeof(cbuf_small));
+ ptls_buffer_init(&sbuf, sbuf_small, sizeof(sbuf_small));
+ ptls_buffer_init(&decbuf, decbuf_small, sizeof(decbuf_small));
+
+ ret = ptls_handshake(client, &cbuf, NULL, NULL, NULL);
+ ok(ret == PTLS_ERROR_IN_PROGRESS);
+
+ consumed = cbuf.off;
+ ret = ptls_handshake(server, &sbuf, cbuf.base, &consumed, NULL);
+ ok(ret == PTLS_ERROR_IN_PROGRESS);
+ ok(consumed == cbuf.off);
+ cbuf.off = 0;
+
+ ok(sbuf.off > 5 + 4);
+ ok(sbuf.base[5] == 2 /* PTLS_HANDSHAKE_TYPE_SERVER_HELLO (RETRY_REQUEST) */);
+
+ consumed = sbuf.off;
+ ret = ptls_handshake(client, &cbuf, sbuf.base, &consumed, NULL);
+ ok(ret == PTLS_ERROR_IN_PROGRESS);
+ ok(consumed == sbuf.off);
+ sbuf.off = 0;
+
+ ok(cbuf.off >= 5 + 4);
+ ok(cbuf.base[5] == 1 /* PTLS_HANDSHAKE_TYPE_CLIENT_HELLO */);
+
+ consumed = cbuf.off;
+ ret = ptls_handshake(server, &sbuf, cbuf.base, &consumed, NULL);
+ ok(ret == 0);
+ ok(consumed == cbuf.off);
+ cbuf.off = 0;
+
+ ok(sbuf.off >= 5 + 4);
+ ok(sbuf.base[5] == 2 /* PTLS_HANDSHAKE_TYPE_SERVER_HELLO */);
+
+ consumed = sbuf.off;
+ ret = ptls_handshake(client, &cbuf, sbuf.base, &consumed, NULL);
+ ok(ret == 0);
+ ok(consumed == sbuf.off);
+ sbuf.off = 0;
+
+ ret = ptls_send(client, &cbuf, "hello world", 11);
+ ok(ret == 0);
+
+ consumed = cbuf.off;
+ ret = ptls_receive(server, &decbuf, cbuf.base, &consumed);
+ ok(ret == 0);
+ ok(consumed == cbuf.off);
+ cbuf.off = 0;
+
+ ok(decbuf.off == 11);
+ ok(memcmp(decbuf.base, "hello world", 11) == 0);
+
+ ptls_buffer_dispose(&decbuf);
+ ptls_buffer_dispose(&sbuf);
+ ptls_buffer_dispose(&cbuf);
+ ptls_free(client);
+ ptls_free(server);
+}
+
+int main(int argc, char **argv)
+{
+ subtest("secp256r1", test_secp256r1_key_exchange);
+ subtest("x25519", test_x25519_key_exchange);
+ subtest("secp256r1-sign", test_secp256r1_sign);
+
+ ptls_iovec_t cert = ptls_iovec_init(SECP256R1_CERTIFICATE, sizeof(SECP256R1_CERTIFICATE) - 1);
+
+ ptls_minicrypto_secp256r1sha256_sign_certificate_t sign_certificate;
+ ptls_minicrypto_init_secp256r1sha256_sign_certificate(&sign_certificate,
+ ptls_iovec_init(SECP256R1_PRIVATE_KEY, SECP256R1_PRIVATE_KEY_SIZE));
+
+ ptls_context_t ctxbuf = {ptls_minicrypto_random_bytes,
+ &ptls_get_time,
+ ptls_minicrypto_key_exchanges,
+ ptls_minicrypto_cipher_suites,
+ {&cert, 1},
+ NULL,
+ NULL,
+ &sign_certificate.super};
+ ctx = ctx_peer = &ctxbuf;
+
+ subtest("picotls", test_picotls);
+ subtest("hrr", test_hrr);
+
+ return done_testing();
+ return done_testing();
+}
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-13 14:16:50 +0000