mirror of
https://github.com/opnsense/src.git
synced 2026-02-28 20:30:57 -05:00
0ac341f145
Bring in https://github.com/jedisct1/libsodium at 461ac93b260b91db8ad957f5a576860e3e9c88a1 (August 7, 2018), unmodified. libsodium is derived from Daniel J. Bernstein et al.'s 2011 NaCl ("Networking and Cryptography Library," pronounced "salt") software library. At the risk of oversimplifying, libsodium primarily exists to make it easier to use NaCl. NaCl and libsodium provide high quality implementations of a number of useful cryptographic concepts (as well as the underlying primitics) seeing some adoption in newer network protocols. I considered but dismissed cleaning up the directory hierarchy and discarding artifacts of other build systems in favor of remaining close to upstream (and easing future updates). Nothing is integrated into the build system yet, so in that sense, no functional change.
85 lines
2.9 KiB
C
85 lines
2.9 KiB
C
|
|
#define TEST_NAME "auth"
|
|
#include "cmptest.h"
|
|
|
|
/* "Test Case 2" from RFC 4231 */
|
|
static unsigned char key[32] = "Jefe";
|
|
static unsigned char c[] = "what do ya want for nothing?";
|
|
|
|
/* Hacker manifesto */
|
|
static unsigned char key2[] =
|
|
"Another one got caught today, it's all over the papers. \"Teenager "
|
|
"Arrested in Computer Crime Scandal\", \"Hacker Arrested after Bank "
|
|
"Tampering\"... Damn kids. They're all alike.";
|
|
|
|
static unsigned char a[crypto_auth_BYTES];
|
|
static unsigned char a2[crypto_auth_hmacsha512_BYTES];
|
|
|
|
int
|
|
main(void)
|
|
{
|
|
crypto_auth_hmacsha512_state st;
|
|
crypto_auth_hmacsha256_state st256;
|
|
size_t i;
|
|
|
|
assert(crypto_auth_hmacsha512_statebytes() ==
|
|
sizeof(crypto_auth_hmacsha512_state));
|
|
crypto_auth(a, c, sizeof c - 1U, key);
|
|
for (i = 0; i < sizeof a; ++i) {
|
|
printf(",0x%02x", (unsigned int) a[i]);
|
|
if (i % 8 == 7)
|
|
printf("\n");
|
|
}
|
|
printf("\n");
|
|
|
|
crypto_auth_hmacsha512_init(&st, key, sizeof key);
|
|
crypto_auth_hmacsha512_update(&st, c, 1U);
|
|
crypto_auth_hmacsha512_update(&st, c, sizeof c - 2U);
|
|
crypto_auth_hmacsha512_final(&st, a2);
|
|
for (i = 0; i < sizeof a2; ++i) {
|
|
printf(",0x%02x", (unsigned int) a2[i]);
|
|
if (i % 8 == 7)
|
|
printf("\n");
|
|
}
|
|
printf("\n");
|
|
|
|
crypto_auth_hmacsha512_init(&st, key2, sizeof key2);
|
|
crypto_auth_hmacsha512_update(&st, c, 1U);
|
|
crypto_auth_hmacsha512_update(&st, c, sizeof c - 2U);
|
|
crypto_auth_hmacsha512_final(&st, a2);
|
|
for (i = 0; i < sizeof a2; ++i) {
|
|
printf(",0x%02x", (unsigned int) a2[i]);
|
|
if (i % 8 == 7)
|
|
printf("\n");
|
|
}
|
|
|
|
memset(a2, 0, sizeof a2);
|
|
crypto_auth_hmacsha256_init(&st256, key2, sizeof key2);
|
|
crypto_auth_hmacsha256_update(&st256, NULL, 0U);
|
|
crypto_auth_hmacsha256_update(&st256, c, 1U);
|
|
crypto_auth_hmacsha256_update(&st256, c, sizeof c - 2U);
|
|
crypto_auth_hmacsha256_final(&st256, a2);
|
|
for (i = 0; i < sizeof a2; ++i) {
|
|
printf(",0x%02x", (unsigned int) a2[i]);
|
|
if (i % 8 == 7)
|
|
printf("\n");
|
|
}
|
|
|
|
assert(crypto_auth_bytes() > 0U);
|
|
assert(crypto_auth_keybytes() > 0U);
|
|
assert(strcmp(crypto_auth_primitive(), "hmacsha512256") == 0);
|
|
assert(crypto_auth_hmacsha256_bytes() > 0U);
|
|
assert(crypto_auth_hmacsha256_keybytes() > 0U);
|
|
assert(crypto_auth_hmacsha512_bytes() > 0U);
|
|
assert(crypto_auth_hmacsha512_keybytes() > 0U);
|
|
assert(crypto_auth_hmacsha512256_bytes() == crypto_auth_bytes());
|
|
assert(crypto_auth_hmacsha512256_keybytes() == crypto_auth_keybytes());
|
|
assert(crypto_auth_hmacsha512256_statebytes() >=
|
|
crypto_auth_hmacsha512256_keybytes());
|
|
assert(crypto_auth_hmacsha256_statebytes() ==
|
|
sizeof(crypto_auth_hmacsha256_state));
|
|
assert(crypto_auth_hmacsha512_statebytes() ==
|
|
sizeof(crypto_auth_hmacsha512_state));
|
|
|
|
return 0;
|
|
}
|