177 lines
6 KiB
Go
177 lines
6 KiB
Go
|
// Copyright (c) 2015 The btcsuite developers
|
||
|
// Use of this source code is governed by an ISC
|
||
|
// license that can be found in the LICENSE file.
|
||
|
|
||
|
package btcec_test
|
||
|
|
||
|
import (
|
||
|
"bytes"
|
||
|
"encoding/hex"
|
||
|
"testing"
|
||
|
|
||
|
"github.com/btcsuite/btcd/btcec"
|
||
|
)
|
||
|
|
||
|
func TestGenerateSharedSecret(t *testing.T) {
|
||
|
privKey1, err := btcec.NewPrivateKey(btcec.S256())
|
||
|
if err != nil {
|
||
|
t.Errorf("private key generation error: %s", err)
|
||
|
return
|
||
|
}
|
||
|
privKey2, err := btcec.NewPrivateKey(btcec.S256())
|
||
|
if err != nil {
|
||
|
t.Errorf("private key generation error: %s", err)
|
||
|
return
|
||
|
}
|
||
|
|
||
|
secret1 := btcec.GenerateSharedSecret(privKey1, privKey2.PubKey())
|
||
|
secret2 := btcec.GenerateSharedSecret(privKey2, privKey1.PubKey())
|
||
|
|
||
|
if !bytes.Equal(secret1, secret2) {
|
||
|
t.Errorf("ECDH failed, secrets mismatch - first: %x, second: %x",
|
||
|
secret1, secret2)
|
||
|
}
|
||
|
}
|
||
|
|
||
|
// Test 1: Encryption and decryption
|
||
|
func TestCipheringBasic(t *testing.T) {
|
||
|
privkey, err := btcec.NewPrivateKey(btcec.S256())
|
||
|
if err != nil {
|
||
|
t.Fatal("failed to generate private key")
|
||
|
}
|
||
|
|
||
|
in := []byte("Hey there dude. How are you doing? This is a test.")
|
||
|
|
||
|
out, err := btcec.Encrypt(privkey.PubKey(), in)
|
||
|
if err != nil {
|
||
|
t.Fatal("failed to encrypt:", err)
|
||
|
}
|
||
|
|
||
|
dec, err := btcec.Decrypt(privkey, out)
|
||
|
if err != nil {
|
||
|
t.Fatal("failed to decrypt:", err)
|
||
|
}
|
||
|
|
||
|
if !bytes.Equal(in, dec) {
|
||
|
t.Error("decrypted data doesn't match original")
|
||
|
}
|
||
|
}
|
||
|
|
||
|
// Test 2: Byte compatibility with Pyelliptic
|
||
|
func TestCiphering(t *testing.T) {
|
||
|
pb, _ := hex.DecodeString("fe38240982f313ae5afb3e904fb8215fb11af1200592b" +
|
||
|
"fca26c96c4738e4bf8f")
|
||
|
privkey, _ := btcec.PrivKeyFromBytes(btcec.S256(), pb)
|
||
|
|
||
|
in := []byte("This is just a test.")
|
||
|
out, _ := hex.DecodeString("b0d66e5adaa5ed4e2f0ca68e17b8f2fc02ca002009e3" +
|
||
|
"3487e7fa4ab505cf34d98f131be7bd258391588ca7804acb30251e71a04e0020ecf" +
|
||
|
"df0f84608f8add82d7353af780fbb28868c713b7813eb4d4e61f7b75d7534dd9856" +
|
||
|
"9b0ba77cf14348fcff80fee10e11981f1b4be372d93923e9178972f69937ec850ed" +
|
||
|
"6c3f11ff572ddd5b2bedf9f9c0b327c54da02a28fcdce1f8369ffec")
|
||
|
|
||
|
dec, err := btcec.Decrypt(privkey, out)
|
||
|
if err != nil {
|
||
|
t.Fatal("failed to decrypt:", err)
|
||
|
}
|
||
|
|
||
|
if !bytes.Equal(in, dec) {
|
||
|
t.Error("decrypted data doesn't match original")
|
||
|
}
|
||
|
}
|
||
|
|
||
|
func TestCipheringErrors(t *testing.T) {
|
||
|
privkey, err := btcec.NewPrivateKey(btcec.S256())
|
||
|
if err != nil {
|
||
|
t.Fatal("failed to generate private key")
|
||
|
}
|
||
|
|
||
|
tests1 := []struct {
|
||
|
ciphertext []byte // input ciphertext
|
||
|
}{
|
||
|
{bytes.Repeat([]byte{0x00}, 133)}, // errInputTooShort
|
||
|
{bytes.Repeat([]byte{0x00}, 134)}, // errUnsupportedCurve
|
||
|
{bytes.Repeat([]byte{0x02, 0xCA}, 134)}, // errInvalidXLength
|
||
|
{bytes.Repeat([]byte{0x02, 0xCA, 0x00, 0x20}, 134)}, // errInvalidYLength
|
||
|
{[]byte{0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // IV
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x02, 0xCA, 0x00, 0x20, // curve and X length
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // X
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x20, // Y length
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // Y
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // ciphertext
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // MAC
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
}}, // invalid pubkey
|
||
|
{[]byte{0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // IV
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x02, 0xCA, 0x00, 0x20, // curve and X length
|
||
|
0x11, 0x5C, 0x42, 0xE7, 0x57, 0xB2, 0xEF, 0xB7, // X
|
||
|
0x67, 0x1C, 0x57, 0x85, 0x30, 0xEC, 0x19, 0x1A,
|
||
|
0x13, 0x59, 0x38, 0x1E, 0x6A, 0x71, 0x12, 0x7A,
|
||
|
0x9D, 0x37, 0xC4, 0x86, 0xFD, 0x30, 0xDA, 0xE5,
|
||
|
0x00, 0x20, // Y length
|
||
|
0x7E, 0x76, 0xDC, 0x58, 0xF6, 0x93, 0xBD, 0x7E, // Y
|
||
|
0x70, 0x10, 0x35, 0x8C, 0xE6, 0xB1, 0x65, 0xE4,
|
||
|
0x83, 0xA2, 0x92, 0x10, 0x10, 0xDB, 0x67, 0xAC,
|
||
|
0x11, 0xB1, 0xB5, 0x1B, 0x65, 0x19, 0x53, 0xD2,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // ciphertext
|
||
|
// padding not aligned to 16 bytes
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // MAC
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
}}, // errInvalidPadding
|
||
|
{[]byte{0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // IV
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x02, 0xCA, 0x00, 0x20, // curve and X length
|
||
|
0x11, 0x5C, 0x42, 0xE7, 0x57, 0xB2, 0xEF, 0xB7, // X
|
||
|
0x67, 0x1C, 0x57, 0x85, 0x30, 0xEC, 0x19, 0x1A,
|
||
|
0x13, 0x59, 0x38, 0x1E, 0x6A, 0x71, 0x12, 0x7A,
|
||
|
0x9D, 0x37, 0xC4, 0x86, 0xFD, 0x30, 0xDA, 0xE5,
|
||
|
0x00, 0x20, // Y length
|
||
|
0x7E, 0x76, 0xDC, 0x58, 0xF6, 0x93, 0xBD, 0x7E, // Y
|
||
|
0x70, 0x10, 0x35, 0x8C, 0xE6, 0xB1, 0x65, 0xE4,
|
||
|
0x83, 0xA2, 0x92, 0x10, 0x10, 0xDB, 0x67, 0xAC,
|
||
|
0x11, 0xB1, 0xB5, 0x1B, 0x65, 0x19, 0x53, 0xD2,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // ciphertext
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, // MAC
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
|
||
|
}}, // ErrInvalidMAC
|
||
|
}
|
||
|
|
||
|
for i, test := range tests1 {
|
||
|
_, err = btcec.Decrypt(privkey, test.ciphertext)
|
||
|
if err == nil {
|
||
|
t.Errorf("Decrypt #%d did not get error", i)
|
||
|
}
|
||
|
}
|
||
|
|
||
|
// test error from removePKCSPadding
|
||
|
tests2 := []struct {
|
||
|
in []byte // input data
|
||
|
}{
|
||
|
{bytes.Repeat([]byte{0x11}, 17)},
|
||
|
{bytes.Repeat([]byte{0x07}, 15)},
|
||
|
}
|
||
|
for i, test := range tests2 {
|
||
|
_, err = btcec.TstRemovePKCSPadding(test.in)
|
||
|
if err == nil {
|
||
|
t.Errorf("removePKCSPadding #%d did not get error", i)
|
||
|
}
|
||
|
}
|
||
|
}
|