avr-crypto-lib/test_src/nessie_mac_test.c

/* nessie_mac_test.c */
/*
    This file is part of the AVR-Crypto-Lib.
    Copyright (C) 2008  Daniel Otte (daniel.otte@rub.de)

    This program is free software: you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
    the Free Software Foundation, either version 3 of the License, or
    (at your option) any later version.

    This program is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    GNU General Public License for more details.

    You should have received a copy of the GNU General Public License
    along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/
/**
 * 
 * author: Daniel Otte
 * email:  daniel.otte@rub.de
 * license: GPLv3
 * 
 * a suit for running the nessie-tests for MACs
 * 
 * */
#include <stdint.h>
#include <string.h>
#include <stdlib.h>
#include <stdio.h>
#include <avr/pgmspace.h>
#include "nessie_mac_test.h"
#include "nessie_common.h"
#include "dbz_strings.h"

nessie_mac_ctx_t nessie_mac_ctx;

#define KEYSIZE_B   ((nessie_mac_ctx.keysize_b+7)/8)
#define MACSIZE_B   ((nessie_mac_ctx.macsize_b+7)/8)
#define BLOCKSIZE_B (nessie_mac_ctx.blocksize_B)

#define PRINTKEY nessie_print_item("key", key, KEYSIZE_B)
#define PRINTMAC nessie_print_item("MAC", mac, MACSIZE_B)


const uint8_t keyproto[] PROGMEM = {
		                  0x00, 0x11, 0x22, 0x33, 0x44, 0x55, 0x66, 0x77,
                          0x88, 0x99, 0xaa, 0xbb, 0xcc, 0xdd, 0xee, 0xff,
                          0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef };

static
void ascii_mac_P(PGM_P data, PGM_P desc, uint8_t* key){
	uint8_t ctx[nessie_mac_ctx.ctx_size_B];
	uint8_t mac[MACSIZE_B];
	uint16_t sl;
	uint8_t buffer[BLOCKSIZE_B];
	
	fputs_P(PSTR("\r\n                       message="), stdout);
	fputs_P(desc, stdout);
	PRINTKEY;
	nessie_mac_ctx.mac_init(ctx, key, nessie_mac_ctx.keysize_b);
	sl = strlen_P(data);
	while(sl>nessie_mac_ctx.blocksize_B){
		memcpy_P(buffer, data, BLOCKSIZE_B);
		nessie_mac_ctx.mac_next(ctx, buffer);
		data += BLOCKSIZE_B;
		sl   -= BLOCKSIZE_B;
	}
	memcpy_P(buffer, data, sl);
	nessie_mac_ctx.mac_last(ctx, buffer, sl*8);
	nessie_mac_ctx.mac_conv(mac, ctx);
	PRINTMAC;
}

// message=1 million times "a"

static
void amillion_mac(uint8_t* key){
	uint8_t ctx[nessie_mac_ctx.ctx_size_B];
	uint8_t mac[MACSIZE_B];
	uint8_t block[nessie_mac_ctx.blocksize_B];
	uint32_t n=1000000LL;
	uint16_t i=0;
	
	fputs_P(PSTR("\r\n                       message="), stdout);
	fputs_P(PSTR("1 million times \"a\""), stdout);
	PRINTKEY;
	
	memset(block, 'a', nessie_mac_ctx.blocksize_B);
	nessie_mac_ctx.mac_init(ctx, key, nessie_mac_ctx.keysize_b);
	while(n>=nessie_mac_ctx.blocksize_B){
		nessie_mac_ctx.mac_next(ctx, block);
		n    -= nessie_mac_ctx.blocksize_B;
		NESSIE_SEND_ALIVE_A(i++);
	}
	nessie_mac_ctx.mac_last(ctx, block, n*8);
	nessie_mac_ctx.mac_conv(mac, ctx);
	PRINTMAC;
}


static
void zero_mac(uint16_t n, uint8_t* key){
	uint8_t ctx[nessie_mac_ctx.ctx_size_B];
	uint8_t mac[MACSIZE_B];
	uint8_t block[nessie_mac_ctx.blocksize_B];
	
	fputs_P(PSTR("\r\n                       message="), stdout);
	fprintf_P(stdout, PSTR("%"PRIu16" zero bits"), n);
	PRINTKEY;
	
	memset(block, 0, nessie_mac_ctx.blocksize_B); 
	nessie_mac_ctx.mac_init(ctx, key, nessie_mac_ctx.keysize_b);
	while(n>nessie_mac_ctx.blocksize_B*8){
		nessie_mac_ctx.mac_next(ctx, block);
		n   -= nessie_mac_ctx.blocksize_B*8;
	}
	nessie_mac_ctx.mac_last(ctx, block, n);
	nessie_mac_ctx.mac_conv(mac, ctx);
	PRINTMAC;
}

static
void one_in512_mac(uint16_t pos, uint8_t* key){
	uint8_t ctx[nessie_mac_ctx.ctx_size_B];
	uint8_t mac[MACSIZE_B];
	uint8_t block[nessie_mac_ctx.blocksize_B];
	uint16_t n=512;
	char* tab[8] = { "80", "40", "20", "10",
	                 "08", "04", "02", "01" };

	pos&=511;
	fputs_P(PSTR("\r\n                       message="), stdout);
	fputs_P(PSTR("512-bit string: "), stdout);

    fprintf_P(stdout, PSTR("%2"PRIu16"*00,%s,%2"PRIu16"*00"), pos / 8, tab[pos & 7], 63 - pos / 8);
	PRINTKEY;
	
	/* now the real stuff */
	memset(block, 0, 512/8);
	block[pos>>3] = 0x80>>(pos&0x7);
	uint8_t* bp;
	bp = block;
	nessie_mac_ctx.mac_init(ctx, key, nessie_mac_ctx.keysize_b);
	while(n>nessie_mac_ctx.blocksize_B*8){
		nessie_mac_ctx.mac_next(ctx, bp);
		n   -= nessie_mac_ctx.blocksize_B*8;
		bp  += nessie_mac_ctx.blocksize_B;
	}
	nessie_mac_ctx.mac_last(ctx, bp, n);
	nessie_mac_ctx.mac_conv(mac, ctx);
	PRINTMAC;
}

static
void tv4_mac(void){
	uint8_t ctx[nessie_mac_ctx.ctx_size_B];
	uint8_t mac[MACSIZE_B];
	uint8_t block[MACSIZE_B];
	uint8_t key[KEYSIZE_B];
	uint16_t n=MACSIZE_B*8;
	uint32_t i;
	
	fputs_P(PSTR("\r\n                       message="), stdout);
	fprintf_P(stdout, PSTR("%"PRIu16" zero bits"), nessie_mac_ctx.macsize_b);

	memset(block, 0, MACSIZE_B);
	for(i=0; i<KEYSIZE_B; ++i)
		key[i] = pgm_read_byte(&(keyproto[i%(3*8)]));
	nessie_print_item("key", key, KEYSIZE_B);
	nessie_mac_ctx.mac_init(ctx, key, nessie_mac_ctx.keysize_b);
	while(n>nessie_mac_ctx.blocksize_B*8){
		nessie_mac_ctx.mac_next(ctx, block);
		n    -= nessie_mac_ctx.blocksize_B*8;
	}
	nessie_mac_ctx.mac_last(ctx, block, n);
	nessie_mac_ctx.mac_conv(mac, ctx);
	PRINTMAC;
	for(i=1; i<100000L; ++i){ /* this assumes BLOCKSIZE >= HASHSIZE */
		nessie_mac_ctx.mac_init(ctx, key, nessie_mac_ctx.keysize_b);
		nessie_mac_ctx.mac_last(ctx, mac, nessie_mac_ctx.macsize_b);
		nessie_mac_ctx.mac_conv(mac, ctx);
		NESSIE_SEND_ALIVE_A(i);
	}
	nessie_print_item("iterated 100000 times", mac, MACSIZE_B);
}

void nessie_mac_run(void){
	uint16_t i;
	uint8_t set;
	uint8_t key[KEYSIZE_B];
	
	nessie_print_header(nessie_mac_ctx.name, nessie_mac_ctx.keysize_b, 0, 0,
	                    nessie_mac_ctx.macsize_b, 0);
	/* test set 1 */
	const char* challange_dbz= PSTR(
		  "\0"
		"\"\" (empty string)\0"
		  "a\0"
		"\"a\"\0"
		  "abc\0"
		"\"abc\"\0"
		  "message digest\0"
		"\"message digest\"\0"
		  "abcdefghijklmnopqrstuvwxyz\0"
		"\"abcdefghijklmnopqrstuvwxyz\"\0"
		  "abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq\0"
		"\"abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq\"\0"
		  "ABCDEFGHIJKLMNOPQRSTUVWXYZ"
		  "abcdefghijklmnopqrstuvwxyz"
		  "0123456789\0"	 
		 "\"A...Za...z0...9\"\0"
		 "1234567890123456789012345678901234567890" 
		 "1234567890123456789012345678901234567890\0"
		 "8 times \"1234567890\"\0"
		  "Now is the time for all \0"
		"\"Now is the time for all \"\0"
		  "Now is the time for it\0" 
		"\"Now is the time for it\"\0"
	);

	set=1;
	nessie_print_setheader(set);
	for(i=0; i<KEYSIZE_B; ++i){
		key[i] = pgm_read_byte(&(keyproto[i%sizeof(keyproto)]));
	}
	PGM_P challange[20];
	dbz_splitup_P(challange_dbz, challange);
	for(i=0; i<10; ++i){
		nessie_print_set_vector(set, i);
		ascii_mac_P(challange[2*i], challange[2*i+1], key);
	}
	nessie_print_set_vector(set, i);
	amillion_mac(key);
	for(i=0; i<KEYSIZE_B; ++i){
		key[i] = pgm_read_byte(&(keyproto[0x10+i%0x8]));
	}
	for(i=0; i<10; ++i){
		nessie_print_set_vector(set, 11+i);
		ascii_mac_P(challange[2*i], challange[2*i+1], key);
	}
	nessie_print_set_vector(set, 11+i);
	amillion_mac(key);
	/* test set 2 */
	set=2;
	for(i=0; i<KEYSIZE_B; ++i){
		key[i] = pgm_read_byte(&(keyproto[i%sizeof(keyproto)]));
	}
	nessie_print_setheader(set);
	for(i=0; i<1024; ++i){
		nessie_print_set_vector(set, i);
		zero_mac(i, key);
	}
	/* test set 3 */
	set=3;
	nessie_print_setheader(set);
	/* we use the same key as above */
	for(i=0; i<512; ++i){
		nessie_print_set_vector(set, i);
		one_in512_mac(i, key);
	}
	/* test set 4 */
	set=4;
	nessie_print_setheader(set);
	/* we use the same key as above */
	nessie_print_set_vector(set, 0);
	tv4_mac();
	/* test set 5 */
	set=5;
	nessie_print_setheader(set);
	for(i=0; i<nessie_mac_ctx.keysize_b; ++i){
		nessie_print_set_vector(set, i);
		memset(key, 0, KEYSIZE_B);
		key[i>>3]=0x80>>(i&0x7);
		ascii_mac_P(PSTR("ABC"), PSTR("\"ABC\""), key);
	}
	nessie_print_footer();
}