libcrypto/mlkem/mlkem_tests_util.c

*0c814320Stb/*	$OpenBSD: mlkem_tests_util.c,v 1.5 2024/12/26 00:04:24 tb Exp $ */
d4ed7533Stb/*
8889493eStb * Copyright (c) 2024 Google Inc.
8889493eStb * Copyright (c) 2024 Bob Beck <beck@obtuse.com>
8889493eStb * Copyright (c) 2024 Theo Buehler <tb@openbsd.org>
75c083a0Sbeck *
75c083a0Sbeck * Permission to use, copy, modify, and/or distribute this software for any
75c083a0Sbeck * purpose with or without fee is hereby granted, provided that the above
75c083a0Sbeck * copyright notice and this permission notice appear in all copies.
75c083a0Sbeck *
75c083a0Sbeck * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
75c083a0Sbeck * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
75c083a0Sbeck * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
75c083a0Sbeck * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
75c083a0Sbeck * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
75c083a0Sbeck * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
d4ed7533Stb * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
d4ed7533Stb */
75c083a0Sbeck
75c083a0Sbeck#include <err.h>
d4ed7533Stb#include <stdint.h>
75c083a0Sbeck#include <stdio.h>
75c083a0Sbeck#include <string.h>
75c083a0Sbeck
8889493eStb#include "bytestring.h"
8889493eStb#include "mlkem.h"
8889493eStb
8889493eStb#include "mlkem_internal.h"
8889493eStb
75c083a0Sbeck#include "mlkem_tests_util.h"
75c083a0Sbeck
8889493eStbstatic void
75c083a0Sbeckhexdump(const uint8_t *buf, size_t len, const uint8_t *compare)
75c083a0Sbeck{
75c083a0Sbeck	const char *mark = "";
75c083a0Sbeck	size_t i;
75c083a0Sbeck
75c083a0Sbeck	for (i = 1; i <= len; i++) {
75c083a0Sbeck		if (compare != NULL)
75c083a0Sbeck			mark = (buf[i - 1] != compare[i - 1]) ? "*" : " ";
75c083a0Sbeck		fprintf(stderr, " %s0x%02hhx,%s", mark, buf[i - 1],
75c083a0Sbeck		    i % 8 && i != len ? "" : "\n");
75c083a0Sbeck	}
75c083a0Sbeck	fprintf(stderr, "\n");
75c083a0Sbeck}
75c083a0Sbeck
75c083a0Sbeckint
*0c814320Stbcompare_data(const uint8_t *want, const uint8_t *got, size_t len, const char *msg)
75c083a0Sbeck{
8889493eStb	if (memcmp(want, got, len) == 0)
8889493eStb		return 0;
75c083a0Sbeck
*0c814320Stb	warnx("FAIL: %s differs", msg);
8889493eStb	fprintf(stderr, "want:\n");
8889493eStb	hexdump(want, len, got);
8889493eStb	fprintf(stderr, "got:\n");
8889493eStb	hexdump(got, len, want);
8889493eStb	fprintf(stderr, "\n");
75c083a0Sbeck
75c083a0Sbeck	return 1;
75c083a0Sbeck}
75c083a0Sbeck
8889493eStbint
*0c814320Stbmlkem768_encode_private_key(const void *private_key, uint8_t **out_buf,
*0c814320Stb    size_t *out_len)
75c083a0Sbeck{
*0c814320Stb	CBB cbb;
*0c814320Stb	int ret = 0;
8889493eStb
*0c814320Stb	if (!CBB_init(&cbb, MLKEM768_PUBLIC_KEY_BYTES))
*0c814320Stb		goto err;
*0c814320Stb	if (!MLKEM768_marshal_private_key(&cbb, private_key))
*0c814320Stb		goto err;
*0c814320Stb	if (!CBB_finish(&cbb, out_buf, out_len))
*0c814320Stb		goto err;
*0c814320Stb
*0c814320Stb	ret = 1;
*0c814320Stb
*0c814320Stb err:
*0c814320Stb	CBB_cleanup(&cbb);
*0c814320Stb
*0c814320Stb	return ret;
8889493eStb}
8889493eStb
*0c814320Stbint
*0c814320Stbmlkem768_encode_public_key(const void *public_key, uint8_t **out_buf,
*0c814320Stb    size_t *out_len)
8889493eStb{
*0c814320Stb	CBB cbb;
*0c814320Stb	int ret = 0;
8889493eStb
*0c814320Stb	if (!CBB_init(&cbb, MLKEM768_PUBLIC_KEY_BYTES))
*0c814320Stb		goto err;
*0c814320Stb	if (!MLKEM768_marshal_public_key(&cbb, public_key))
*0c814320Stb		goto err;
*0c814320Stb	if (!CBB_finish(&cbb, out_buf, out_len))
*0c814320Stb		goto err;
8889493eStb
*0c814320Stb	ret = 1;
*0c814320Stb
*0c814320Stb err:
*0c814320Stb	CBB_cleanup(&cbb);
*0c814320Stb
*0c814320Stb	return ret;
8889493eStb}
8889493eStb
*0c814320Stbint
*0c814320Stbmlkem1024_encode_private_key(const void *private_key, uint8_t **out_buf,
*0c814320Stb    size_t *out_len)
*0c814320Stb{
*0c814320Stb	CBB cbb;
*0c814320Stb	int ret = 0;
*0c814320Stb
*0c814320Stb	if (!CBB_init(&cbb, MLKEM1024_PUBLIC_KEY_BYTES))
*0c814320Stb		goto err;
*0c814320Stb	if (!MLKEM1024_marshal_private_key(&cbb, private_key))
*0c814320Stb		goto err;
*0c814320Stb	if (!CBB_finish(&cbb, out_buf, out_len))
*0c814320Stb		goto err;
*0c814320Stb
*0c814320Stb	ret = 1;
*0c814320Stb
*0c814320Stb err:
*0c814320Stb	CBB_cleanup(&cbb);
*0c814320Stb
*0c814320Stb	return ret;
*0c814320Stb}
*0c814320Stb
*0c814320Stbint
*0c814320Stbmlkem1024_encode_public_key(const void *public_key, uint8_t **out_buf,
*0c814320Stb    size_t *out_len)
*0c814320Stb{
*0c814320Stb	CBB cbb;
*0c814320Stb	int ret = 0;
*0c814320Stb
*0c814320Stb	if (!CBB_init(&cbb, MLKEM1024_PUBLIC_KEY_BYTES))
*0c814320Stb		goto err;
*0c814320Stb	if (!MLKEM1024_marshal_public_key(&cbb, public_key))
*0c814320Stb		goto err;
*0c814320Stb	if (!CBB_finish(&cbb, out_buf, out_len))
*0c814320Stb		goto err;
*0c814320Stb
*0c814320Stb	ret = 1;
*0c814320Stb
*0c814320Stb err:
*0c814320Stb	CBB_cleanup(&cbb);
*0c814320Stb
*0c814320Stb	return ret;
*0c814320Stb}
*0c814320Stb
*0c814320Stbint
*0c814320Stbmlkem768_decap(uint8_t out_shared_secret[MLKEM_SHARED_SECRET_BYTES],
*0c814320Stb    const uint8_t *ciphertext, size_t ciphertext_len, const void *private_key)
*0c814320Stb{
*0c814320Stb	return MLKEM768_decap(out_shared_secret, ciphertext, ciphertext_len,
*0c814320Stb	    private_key);
8889493eStb}
8889493eStb
8889493eStbvoid
*0c814320Stbmlkem768_encap(uint8_t *out_ciphertext,
*0c814320Stb    uint8_t out_shared_secret[MLKEM_SHARED_SECRET_BYTES],
*0c814320Stb    const void *public_key)
8889493eStb{
*0c814320Stb	MLKEM768_encap(out_ciphertext, out_shared_secret, public_key);
8889493eStb}
*0c814320Stb
*0c814320Stbvoid
*0c814320Stbmlkem768_encap_external_entropy(uint8_t *out_ciphertext,
*0c814320Stb    uint8_t out_shared_secret[MLKEM_SHARED_SECRET_BYTES],
*0c814320Stb    const void *public_key, const uint8_t entropy[MLKEM_ENCAP_ENTROPY])
*0c814320Stb{
*0c814320Stb	MLKEM768_encap_external_entropy(out_ciphertext, out_shared_secret,
*0c814320Stb	    public_key, entropy);
*0c814320Stb}
*0c814320Stb
*0c814320Stbvoid
*0c814320Stbmlkem768_generate_key(uint8_t *out_encoded_public_key,
*0c814320Stb    uint8_t optional_out_seed[MLKEM_SEED_BYTES], void *out_private_key)
*0c814320Stb{
*0c814320Stb	MLKEM768_generate_key(out_encoded_public_key, optional_out_seed,
*0c814320Stb	    out_private_key);
*0c814320Stb}
*0c814320Stb
*0c814320Stbvoid
*0c814320Stbmlkem768_generate_key_external_entropy(uint8_t *out_encoded_public_key,
*0c814320Stb    void *out_private_key, const uint8_t entropy[MLKEM_SEED_BYTES])
*0c814320Stb{
*0c814320Stb	MLKEM768_generate_key_external_entropy(out_encoded_public_key,
*0c814320Stb	    out_private_key, entropy);
8889493eStb}
8889493eStb
8889493eStbint
*0c814320Stbmlkem768_parse_private_key(void *out_private_key, CBS *private_key_cbs)
8889493eStb{
*0c814320Stb	return MLKEM768_parse_private_key(out_private_key, private_key_cbs);
8889493eStb}
8889493eStb
8889493eStbint
*0c814320Stbmlkem768_parse_public_key(void *out_public_key, CBS *public_key_cbs)
8889493eStb{
*0c814320Stb	return MLKEM768_parse_public_key(out_public_key, public_key_cbs);
*0c814320Stb}
8889493eStb
*0c814320Stbvoid
*0c814320Stbmlkem768_public_from_private(void *out_public_key, const void *private_key)
*0c814320Stb{
*0c814320Stb	MLKEM768_public_from_private(out_public_key, private_key);
8889493eStb}
8889493eStb
8889493eStbint
*0c814320Stbmlkem1024_decap(uint8_t out_shared_secret[MLKEM_SHARED_SECRET_BYTES],
*0c814320Stb    const uint8_t *ciphertext, size_t ciphertext_len, const void *private_key)
8889493eStb{
*0c814320Stb	return MLKEM1024_decap(out_shared_secret, ciphertext, ciphertext_len,
*0c814320Stb	    private_key);
*0c814320Stb}
8889493eStb
*0c814320Stbvoid
*0c814320Stbmlkem1024_encap(uint8_t *out_ciphertext,
*0c814320Stb    uint8_t out_shared_secret[MLKEM_SHARED_SECRET_BYTES],
*0c814320Stb    const void *public_key)
*0c814320Stb{
*0c814320Stb	MLKEM1024_encap(out_ciphertext, out_shared_secret, public_key);
*0c814320Stb}
8889493eStb
*0c814320Stbvoid
*0c814320Stbmlkem1024_encap_external_entropy(uint8_t *out_ciphertext,
*0c814320Stb    uint8_t out_shared_secret[MLKEM_SHARED_SECRET_BYTES],
*0c814320Stb    const void *public_key, const uint8_t entropy[MLKEM_ENCAP_ENTROPY])
*0c814320Stb{
*0c814320Stb	MLKEM1024_encap_external_entropy(out_ciphertext, out_shared_secret,
*0c814320Stb	    public_key, entropy);
*0c814320Stb}
8889493eStb
*0c814320Stbvoid
*0c814320Stbmlkem1024_generate_key(uint8_t *out_encoded_public_key,
*0c814320Stb    uint8_t optional_out_seed[MLKEM_SEED_BYTES], void *out_private_key)
*0c814320Stb{
*0c814320Stb	MLKEM1024_generate_key(out_encoded_public_key, optional_out_seed,
*0c814320Stb	    out_private_key);
*0c814320Stb}
8889493eStb
*0c814320Stbvoid
*0c814320Stbmlkem1024_generate_key_external_entropy(uint8_t *out_encoded_public_key,
*0c814320Stb    void *out_private_key, const uint8_t entropy[MLKEM_SEED_BYTES])
*0c814320Stb{
*0c814320Stb	MLKEM1024_generate_key_external_entropy(out_encoded_public_key,
*0c814320Stb	    out_private_key, entropy);
8889493eStb}
8889493eStb
8889493eStbint
*0c814320Stbmlkem1024_parse_private_key(void *out_private_key, CBS *private_key_cbs)
8889493eStb{
*0c814320Stb	return MLKEM1024_parse_private_key(out_private_key, private_key_cbs);
*0c814320Stb}
8889493eStb
*0c814320Stbvoid
*0c814320Stbmlkem1024_public_from_private(void *out_public_key, const void *private_key)
*0c814320Stb{
*0c814320Stb	MLKEM1024_public_from_private(out_public_key, private_key);
8889493eStb}
8889493eStb
8889493eStbint
*0c814320Stbmlkem1024_parse_public_key(void *out_public_key, CBS *public_key_cbs)
8889493eStb{
*0c814320Stb	return MLKEM1024_parse_public_key(out_public_key, public_key_cbs);
75c083a0Sbeck}