libsodium/test/default/auth7.c


#define TEST_NAME "auth7"
#include "cmptest.h"

static unsigned char key[32];
static unsigned char c[600];
static unsigned char a[64];

int
main(void)
{
    size_t clen;

    for (clen = 0; clen < sizeof c; ++clen) {
        crypto_auth_keygen(key);
        randombytes_buf(c, clen);
        crypto_auth_hmacsha512(a, c, clen, key);
        if (crypto_auth_hmacsha512_verify(a, c, clen, key) != 0) {
            printf("fail %u\n", (unsigned int) clen);
            return 100;
        }
        if (clen > 0) {
            c[(size_t) rand() % clen] += 1 + (rand() % 255);
            if (crypto_auth_hmacsha512_verify(a, c, clen, key) == 0) {
                printf("forgery %u\n", (unsigned int) clen);
                return 100;
            }
            a[rand() % sizeof a] += 1 + (rand() % 255);
            if (crypto_auth_hmacsha512_verify(a, c, clen, key) == 0) {
                printf("forgery %u\n", (unsigned int) clen);
                return 100;
            }
        }
    }

    crypto_auth_keygen(key);
    crypto_auth_hmacsha512(a, guard_page, 0U, key);
    assert(crypto_auth_hmacsha512_verify(a, guard_page, 0U, key) == 0);

    return 0;
}
Include header files commonly used by the tests to cmptest.h 2014-09-13 17:11:12 -04:00
Add tests for auth_hmac_sha512 2014-04-15 00:32:01 -04:00			`#define TEST_NAME "auth7"`
			`#include "cmptest.h"`

Mark everything as static in tests 2015-11-23 10:07:13 -05:00			`static unsigned char key[32];`
Shorten auth7 2015-12-07 11:41:20 -05:00			`static unsigned char c[600];`
Mark everything as static in tests 2015-11-23 10:07:13 -05:00			`static unsigned char a[64];`
Add tests for auth_hmac_sha512 2014-04-15 00:32:01 -04:00
Indentx 2017-02-23 05:15:29 -05:00			`int`
			`main(void)`
Add tests for auth_hmac_sha512 2014-04-15 00:32:01 -04:00			`{`
int vs size_t 2016-03-06 07:58:10 -05:00			`size_t clen;`
Make the tests a little bit more readable 2014-09-14 13:34:16 -04:00
Shorten auth7 2015-12-07 11:41:20 -05:00			`for (clen = 0; clen < sizeof c; ++clen) {`
use crypto_*_keygen() in tests 2017-02-19 15:20:45 -05:00			`crypto_auth_keygen(key);`
Consistent syle for the tests. 2014-09-14 14:32:55 -04:00			`randombytes_buf(c, clen);`
			`crypto_auth_hmacsha512(a, c, clen, key);`
			`if (crypto_auth_hmacsha512_verify(a, c, clen, key) != 0) {`
int vs size_t 2016-03-06 07:58:10 -05:00			`printf("fail %u\n", (unsigned int) clen);`
Make the tests a little bit more readable 2014-09-14 13:34:16 -04:00			`return 100;`
			`}`
			`if (clen > 0) {`
int vs size_t 2016-03-06 07:58:10 -05:00			`c[(size_t) rand() % clen] += 1 + (rand() % 255);`
Consistent syle for the tests. 2014-09-14 14:32:55 -04:00			`if (crypto_auth_hmacsha512_verify(a, c, clen, key) == 0) {`
int vs size_t 2016-03-06 07:58:10 -05:00			`printf("forgery %u\n", (unsigned int) clen);`
Make the tests a little bit more readable 2014-09-14 13:34:16 -04:00			`return 100;`
			`}`
			`a[rand() % sizeof a] += 1 + (rand() % 255);`
Consistent syle for the tests. 2014-09-14 14:32:55 -04:00			`if (crypto_auth_hmacsha512_verify(a, c, clen, key) == 0) {`
int vs size_t 2016-03-06 07:58:10 -05:00			`printf("forgery %u\n", (unsigned int) clen);`
Make the tests a little bit more readable 2014-09-14 13:34:16 -04:00			`return 100;`
			`}`
			`}`
Add tests for auth_hmac_sha512 2014-04-15 00:32:01 -04:00			`}`
Relax most __attribute__ ((nonnull)) to allow 0-length inputs to be NULL. Justifications: - crypto_(auth\|hash\|generichash\|onetimeauth\|shorthash): it's legal to hash or HMAC a 0-length message - crypto_box: it's legal to encrypt a 0-length message - crypto_sign*: it's legal to sign a 0-length message - utils: comparing two 0-length byte arrays is legal memzero on a 0-length byte array is a no-op converting an empty hex string to binary results in an empty binary string converting an empty binary string to hex results in an empty hex string converting an empty b64 string to binary results in an empty binary string converting an empty binary string to b64 results in an empty b64 string sodium_add / sodium_sub on zero-length arrays is a no-op For the functions declared in utils.h, I moved the logic into private functions that have the __attribute__ ((nonnull)) check, but they are only called when the corresponding length argument is non-0. I didn't do this for the hash/box/sign functions since it would have been a lot more work and quite a large refactor. Only memset() may have issues with a zero length. Fix tests, use guard page instead of NULL because of Wasm 2019-02-02 16:47:31 -05:00
			`crypto_auth_keygen(key);`
			`crypto_auth_hmacsha512(a, guard_page, 0U, key);`
			`assert(crypto_auth_hmacsha512_verify(a, guard_page, 0U, key) == 0);`

Make the tests a little bit more readable 2014-09-14 13:34:16 -04:00			`return 0;`
Add tests for auth_hmac_sha512 2014-04-15 00:32:01 -04:00			`}`