summaryrefslogtreecommitdiff
path: root/src/test/test_crypto_slow.c
diff options
context:
space:
mode:
authorrl1987 <rl1987@sdf.lonestar.org>2015-07-07 20:18:45 +0300
committerNick Mathewson <nickm@torproject.org>2015-07-09 16:31:19 -0400
commit5c86708e4d2f9731c5ea1a43ca60d809fcc559b4 (patch)
tree5fcff3e56bbe72117a784c6ba6df896c4e28b5e1 /src/test/test_crypto_slow.c
parentb74947d070aad7f9f77dc23eedbfc069904808ea (diff)
downloadtor-5c86708e4d2f9731c5ea1a43ca60d809fcc559b4.tar.gz
tor-5c86708e4d2f9731c5ea1a43ca60d809fcc559b4.zip
Assert interoperability betweeen libscrypt and OpenSSL EBP_PBE_scrypt().
Add a new and slow unit test that checks if libscrypt_scrypt() and EBP_PBE_scrypt() yield the same keys from test vectors. squash! Assert interoperability betweeen libscrypt and OpenSSL EBP_PBE_scrypt(). squash! Assert interoperability betweeen libscrypt and OpenSSL EBP_PBE_scrypt(). squash! Assert interoperability betweeen libscrypt and OpenSSL EBP_PBE_scrypt().
Diffstat (limited to 'src/test/test_crypto_slow.c')
-rw-r--r--src/test/test_crypto_slow.c112
1 files changed, 112 insertions, 0 deletions
diff --git a/src/test/test_crypto_slow.c b/src/test/test_crypto_slow.c
index a0f6cdc116..41b8b97a8a 100644
--- a/src/test/test_crypto_slow.c
+++ b/src/test/test_crypto_slow.c
@@ -10,6 +10,12 @@
#include "crypto_s2k.h"
#include "crypto_pwbox.h"
+#if defined(HAVE_LIBSCRYPT_H)
+#include <libscrypt.h>
+#endif
+
+#include <openssl/evp.h>
+
/** Run unit tests for our secret-to-key passphrase hashing functionality. */
static void
test_crypto_s2k_rfc2440(void *arg)
@@ -123,6 +129,109 @@ test_crypto_s2k_general(void *arg)
}
}
+#if defined(HAVE_LIBSCRYPT_H) && HAVE_EVP_PBE_SCRYPT
+static void
+test_libscrypt_eq_openssl(void *arg)
+{
+ uint8_t buf1[64];
+ uint8_t buf2[64];
+
+ uint64_t N, r, p;
+ uint64_t maxmem = 0; // --> SCRYPT_MAX_MEM in OpenSSL.
+
+ int libscrypt_retval, openssl_retval;
+
+ size_t dk_len = 64;
+
+ (void)arg;
+
+ memset(buf1,0,64);
+ memset(buf2,0,64);
+
+ N = 1;
+ r = 16;
+ p = 1;
+
+ libscrypt_retval =
+ libscrypt_scrypt((const uint8_t *)"", 0, (const uint8_t *)"", 0,
+ r, N, p, buf1, dk_len);
+ openssl_retval =
+ EVP_PBE_scrypt((const char *)"", 0, (const unsigned char *)"", 0,
+ r, N, p, maxmem, buf2, dk_len);
+
+ tt_int_op(libscrypt_retval, ==, 0);
+ tt_int_op(openssl_retval, ==, 1);
+
+ tt_mem_op(buf1, ==, buf2, 64);
+
+ memset(buf1,0,64);
+ memset(buf2,0,64);
+
+ N = 8;
+ r = 1024;
+ p = 16;
+
+ libscrypt_retval =
+ libscrypt_scrypt((const uint8_t *)"password", 0,
+ (const uint8_t *)"NaCl", 0,
+ r, N, p, buf1, dk_len);
+ openssl_retval =
+ EVP_PBE_scrypt((const char *)"password", 0,
+ (const unsigned char *)"NaCl", 0,
+ r, N, p, maxmem, buf2, dk_len);
+
+ tt_int_op(libscrypt_retval, ==, 0);
+ tt_int_op(openssl_retval, ==, 1);
+
+ tt_mem_op(buf1, ==, buf2, 64);
+
+ memset(buf1,0,64);
+ memset(buf2,0,64);
+
+ N = 8;
+ r = 16384;
+ p = 1;
+
+ libscrypt_retval =
+ libscrypt_scrypt((const uint8_t *)"pleaseletmein", 0,
+ (const uint8_t *)"SodiumChloride", 0,
+ N, r, p, buf1, dk_len);
+ openssl_retval =
+ EVP_PBE_scrypt((const char *)"pleaseletmein", 0,
+ (const unsigned char *)"SodiumChloride", 0,
+ N, r, p, maxmem, buf2, dk_len);
+
+ tt_int_op(libscrypt_retval, ==, 0);
+ tt_int_op(openssl_retval, ==, 1);
+
+ tt_mem_op(buf1, ==, buf2, 64);
+
+#if 0
+ memset(buf1,0,64);
+ memset(buf2,0,64);
+
+ r = 1048576;
+
+ libscrypt_retval =
+ libscrypt_scrypt((const uint8_t *)"pleaseletmein", 0,
+ (const uint8_t *)"SodiumChloride", 0,
+ N, r, p, buf1, dk_len);
+ openssl_retval =
+ EVP_PBE_scrypt((const char *)"pleaseletmein", 0,
+ (const unsigned char *)"SodiumChloride", 0,
+ N, r, p, maxmem, buf2, dk_len);
+
+ tt_int_op(libscrypt_retval, ==, 0);
+ tt_int_op(openssl_retval, ==, 1);
+
+ tt_mem_op(buf1, ==, buf2, 64);
+#endif
+
+ done:
+ return;
+}
+#endif
+
static void
test_crypto_s2k_errors(void *arg)
{
@@ -393,6 +502,9 @@ struct testcase_t slow_crypto_tests[] = {
(void*)"scrypt" },
{ "s2k_scrypt_low", test_crypto_s2k_general, 0, &passthrough_setup,
(void*)"scrypt-low" },
+#if HAVE_EVP_PBE_SCRYPT
+ { "libscrypt_eq_openssl", test_libscrypt_eq_openssl, 0, NULL, NULL },
+#endif
#endif
{ "s2k_pbkdf2", test_crypto_s2k_general, 0, &passthrough_setup,
(void*)"pbkdf2" },