You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
176 lines
6.0 KiB
176 lines
6.0 KiB
// Copyright (c) 2015 The btcsuite developers |
|
// Use of this source code is governed by an ISC |
|
// license that can be found in the LICENSE file. |
|
|
|
package btcec_test |
|
|
|
import ( |
|
"bytes" |
|
"encoding/hex" |
|
"testing" |
|
|
|
"github.com/btcsuite/btcd/btcec" |
|
) |
|
|
|
func TestGenerateSharedSecret(t *testing.T) { |
|
privKey1, err := btcec.NewPrivateKey(btcec.S256()) |
|
if err != nil { |
|
t.Errorf("private key generation error: %s", err) |
|
return |
|
} |
|
privKey2, err := btcec.NewPrivateKey(btcec.S256()) |
|
if err != nil { |
|
t.Errorf("private key generation error: %s", err) |
|
return |
|
} |
|
|
|
secret1 := btcec.GenerateSharedSecret(privKey1, privKey2.PubKey()) |
|
secret2 := btcec.GenerateSharedSecret(privKey2, privKey1.PubKey()) |
|
|
|
if !bytes.Equal(secret1, secret2) { |
|
t.Errorf("ECDH failed, secrets mismatch - first: %x, second: %x", |
|
secret1, secret2) |
|
} |
|
} |
|
|
|
// Test 1: Encryption and decryption |
|
func TestCipheringBasic(t *testing.T) { |
|
privkey, err := btcec.NewPrivateKey(btcec.S256()) |
|
if err != nil { |
|
t.Fatal("failed to generate private key") |
|
} |
|
|
|
in := []byte("Hey there dude. How are you doing? This is a test.") |
|
|
|
out, err := btcec.Encrypt(privkey.PubKey(), in) |
|
if err != nil { |
|
t.Fatal("failed to encrypt:", err) |
|
} |
|
|
|
dec, err := btcec.Decrypt(privkey, out) |
|
if err != nil { |
|
t.Fatal("failed to decrypt:", err) |
|
} |
|
|
|
if !bytes.Equal(in, dec) { |
|
t.Error("decrypted data doesn't match original") |
|
} |
|
} |
|
|
|
// Test 2: Byte compatibility with Pyelliptic |
|
func TestCiphering(t *testing.T) { |
|
pb, _ := hex.DecodeString("fe38240982f313ae5afb3e904fb8215fb11af1200592b" + |
|
"fca26c96c4738e4bf8f") |
|
privkey, _ := btcec.PrivKeyFromBytes(btcec.S256(), pb) |
|
|
|
in := []byte("This is just a test.") |
|
out, _ := hex.DecodeString("b0d66e5adaa5ed4e2f0ca68e17b8f2fc02ca002009e3" + |
|
"3487e7fa4ab505cf34d98f131be7bd258391588ca7804acb30251e71a04e0020ecf" + |
|
"df0f84608f8add82d7353af780fbb28868c713b7813eb4d4e61f7b75d7534dd9856" + |
|
"9b0ba77cf14348fcff80fee10e11981f1b4be372d93923e9178972f69937ec850ed" + |
|
"6c3f11ff572ddd5b2bedf9f9c0b327c54da02a28fcdce1f8369ffec") |
|
|
|
dec, err := btcec.Decrypt(privkey, out) |
|
if err != nil { |
|
t.Fatal("failed to decrypt:", err) |
|
} |
|
|
|
if !bytes.Equal(in, dec) { |
|
t.Error("decrypted data doesn't match original") |
|
} |
|
} |
|
|
|
func TestCipheringErrors(t *testing.T) { |
|
privkey, err := btcec.NewPrivateKey(btcec.S256()) |
|
if err != nil { |
|
t.Fatal("failed to generate private key") |
|
} |
|
|
|
tests1 := []struct { |
|
ciphertext []byte // input ciphertext |
|
}{ |
|
{bytes.Repeat([]byte{0x00}, 133)}, // errInputTooShort |
|
{bytes.Repeat([]byte{0x00}, 134)}, // errUnsupportedCurve |
|
{bytes.Repeat([]byte{0x02, 0xCA}, 134)}, // errInvalidXLength |
|
{bytes.Repeat([]byte{0x02, 0xCA, 0x00, 0x20}, 134)}, // errInvalidYLength |
|
{[]byte{0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // IV |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x02, 0xCA, 0x00, 0x20, // curve and X length |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // X |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x20, // Y length |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // Y |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // ciphertext |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // MAC |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
}}, // invalid pubkey |
|
{[]byte{0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // IV |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x02, 0xCA, 0x00, 0x20, // curve and X length |
|
0x11, 0x5C, 0x42, 0xE7, 0x57, 0xB2, 0xEF, 0xB7, // X |
|
0x67, 0x1C, 0x57, 0x85, 0x30, 0xEC, 0x19, 0x1A, |
|
0x13, 0x59, 0x38, 0x1E, 0x6A, 0x71, 0x12, 0x7A, |
|
0x9D, 0x37, 0xC4, 0x86, 0xFD, 0x30, 0xDA, 0xE5, |
|
0x00, 0x20, // Y length |
|
0x7E, 0x76, 0xDC, 0x58, 0xF6, 0x93, 0xBD, 0x7E, // Y |
|
0x70, 0x10, 0x35, 0x8C, 0xE6, 0xB1, 0x65, 0xE4, |
|
0x83, 0xA2, 0x92, 0x10, 0x10, 0xDB, 0x67, 0xAC, |
|
0x11, 0xB1, 0xB5, 0x1B, 0x65, 0x19, 0x53, 0xD2, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // ciphertext |
|
// padding not aligned to 16 bytes |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // MAC |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
}}, // errInvalidPadding |
|
{[]byte{0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // IV |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x02, 0xCA, 0x00, 0x20, // curve and X length |
|
0x11, 0x5C, 0x42, 0xE7, 0x57, 0xB2, 0xEF, 0xB7, // X |
|
0x67, 0x1C, 0x57, 0x85, 0x30, 0xEC, 0x19, 0x1A, |
|
0x13, 0x59, 0x38, 0x1E, 0x6A, 0x71, 0x12, 0x7A, |
|
0x9D, 0x37, 0xC4, 0x86, 0xFD, 0x30, 0xDA, 0xE5, |
|
0x00, 0x20, // Y length |
|
0x7E, 0x76, 0xDC, 0x58, 0xF6, 0x93, 0xBD, 0x7E, // Y |
|
0x70, 0x10, 0x35, 0x8C, 0xE6, 0xB1, 0x65, 0xE4, |
|
0x83, 0xA2, 0x92, 0x10, 0x10, 0xDB, 0x67, 0xAC, |
|
0x11, 0xB1, 0xB5, 0x1B, 0x65, 0x19, 0x53, 0xD2, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // ciphertext |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // MAC |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, |
|
}}, // ErrInvalidMAC |
|
} |
|
|
|
for i, test := range tests1 { |
|
_, err = btcec.Decrypt(privkey, test.ciphertext) |
|
if err == nil { |
|
t.Errorf("Decrypt #%d did not get error", i) |
|
} |
|
} |
|
|
|
// test error from removePKCSPadding |
|
tests2 := []struct { |
|
in []byte // input data |
|
}{ |
|
{bytes.Repeat([]byte{0x11}, 17)}, |
|
{bytes.Repeat([]byte{0x07}, 15)}, |
|
} |
|
for i, test := range tests2 { |
|
_, err = btcec.TstRemovePKCSPadding(test.in) |
|
if err == nil { |
|
t.Errorf("removePKCSPadding #%d did not get error", i) |
|
} |
|
} |
|
}
|
|
|