]> git.ipfire.org Git - thirdparty/strongswan.git/commitdiff
scripts: Add script formatting NIST KEM KAT records into ke_test vectors
authorAndreas Steffen <andreas.steffen@strongswan.org>
Tue, 5 Nov 2019 11:16:49 +0000 (12:16 +0100)
committerTobias Brunner <tobias@strongswan.org>
Fri, 22 Nov 2024 13:03:16 +0000 (14:03 +0100)
scripts/.gitignore
scripts/Makefile.am
scripts/nist_kem_kat.c [new file with mode: 0644]

index 177500b46cb0e710e80a102854e2fca9195a6351..976beb5cc3a9fed90064b3eb82aab1fa5a55273f 100644 (file)
@@ -17,3 +17,4 @@ thread_analysis
 tls_test
 timeattack
 os_info
+nist_kem_kat
index b4a7863bcd2677a9edc6059d0d67b45c8379ef9a..0548f661ea93ae21bc5344c09e8e2f887069e45b 100644 (file)
@@ -7,7 +7,7 @@ AM_CPPFLAGS = \
 
 noinst_PROGRAMS = bin2array bin2sql id2sql key2keyid keyid2sql oid2der \
        thread_analysis dh_speed pubkey_speed crypt_burn hash_burn fetch \
-       dnssec malloc_speed aes-test settings-test timeattack
+       dnssec malloc_speed aes-test settings-test timeattack nist_kem_kat
 
 if USE_TLS
   noinst_PROGRAMS += tls_test
@@ -31,6 +31,7 @@ malloc_speed_SOURCES = malloc_speed.c
 fetch_SOURCES = fetch.c
 dnssec_SOURCES = dnssec.c
 timeattack_SOURCES = timeattack.c
+nist_kem_kat_SOURCES = nist_kem_kat.c
 
 id2sql_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la
 key2keyid_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la
@@ -46,6 +47,7 @@ dnssec_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la
 aes_test_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la
 settings_test_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la
 timeattack_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la $(RTLIB)
+nist_kem_kat_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la
 
 if USE_IMCV
   AM_CPPFLAGS += -I$(top_srcdir)/src/libimcv
diff --git a/scripts/nist_kem_kat.c b/scripts/nist_kem_kat.c
new file mode 100644 (file)
index 0000000..e804361
--- /dev/null
@@ -0,0 +1,189 @@
+/*
+ * Copyright (C) 2019-2020 Andreas Steffen
+ *
+ * Copyright (C) secunet Security Networks AG
+ *
+ * This program is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU General Public License as published by the
+ * Free Software Foundation; either version 2 of the License, or (at your
+ * option) any later version.  See <http://www.fsf.org/copyleft/gpl.txt>.
+ *
+ * This program is distributed in the hope that it will be useful, but
+ * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
+ * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
+ * for more details.
+ */
+
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include <unistd.h>
+#include <getopt.h>
+#include <errno.h>
+
+#include <library.h>
+
+static void usage(FILE *out, char *name)
+{
+       fprintf(out, "Convert NIST KEM KAT file into struct\n");
+       fprintf(out, "%s [OPTIONS]\n\n", name);
+       fprintf(out, "Options:\n");
+       fprintf(out, "  -h, --help          print this help.\n");
+       fprintf(out, "  -m, --method        KEM method.\n");
+       fprintf(out, "  -c, --count         number of structs (default 4).\n");
+       fprintf(out, "  -i, --in=FILE       request file (default STDIN).\n");
+       fprintf(out, "  -o, --out=FILE      response file (default STDOUT).\n");
+       fprintf(out, "\n");
+}
+
+int main(int argc, char *argv[])
+{
+       FILE *in = stdin;
+       FILE *out = stdout;
+       char line[90000], *method = "", *pos, *eol, *param, *value;
+       size_t param_len, value_len;
+       int count = 4, n;
+
+       library_init(NULL, "nist-kem-kat");
+       atexit(library_deinit);
+
+       while (true)
+       {
+               struct option long_opts[] = {
+                       {"help",        no_argument,            NULL,   'h' },
+                       {"method",      required_argument,      NULL,   'm' },
+                       {"count",       required_argument,      NULL,   'c' },
+                       {"in",          required_argument,      NULL,   'i' },
+                       {"out",         required_argument,      NULL,   'o' },
+                       {0,0,0,0 },
+               };
+               switch (getopt_long(argc, argv, "h:m:c:i:o:", long_opts, NULL))
+               {
+                       case EOF:
+                               break;
+                       case 'h':
+                               usage(stdout, argv[0]);
+                               return 0;
+                       case 'm':
+                               method = optarg;
+                               continue;
+                       case 'c':
+                               count = atoi(optarg);
+                               continue;
+                       case 'i':
+                               in = fopen(optarg, "r");
+                               if (!in)
+                               {
+                                       fprintf(stderr, "failed to open '%s': %s\n", optarg,
+                                                       strerror(errno));
+                                       usage(stderr, argv[0]);
+                                       return 1;
+                               }
+                               continue;
+                       case 'o':
+                               out = fopen(optarg, "w");
+                               if (!out)
+                               {
+                                       fprintf(stderr, "failed to open '%s': %s\n", optarg,
+                                                       strerror(errno));
+                                       usage(stderr, argv[0]);
+                                       return 1;
+                               }
+                               continue;
+                       default:
+                               usage(stderr, argv[0]);
+                               return 1;
+               }
+               break;
+       }
+
+       while (fgets(line, sizeof(line), in))
+       {
+               pos = strchr(line, '=');
+               if (!pos)
+               {
+                       continue;
+               }
+
+               /*remove preceding whitespace from value */
+               value = pos + 1;
+               eol = strchr(value, '\n');
+               if (!eol)
+               {
+                       fprintf(stderr, "eol not found\n");
+                       break;
+               }
+               value_len = eol - value;
+               while (value_len && *value == ' ')
+               {
+                       value++;
+                       value_len--;
+               }
+
+               /* remove trailing whitespace from param */
+               param = line;
+               param_len = pos - line;
+               while (param_len && *(--pos) == ' ')
+               {
+                       param_len--;
+               }
+               param[param_len] = '\0';
+
+               if (streq(param, "sk"))
+               {
+                       continue;
+               }
+
+               if (streq(param, "count"))
+               {
+                       if (count == 0)
+                       {
+                               break;
+                       }
+                       fprintf(out, "/** count = %.*s */\n", value_len, value);
+                       fprintf(out, "{\n");
+                       fprintf(out, "\t.method = %s,\n", method);
+                       count--;
+               }
+               else
+               {
+                       fprintf(out, "\t.%s = chunk_from_chars(", param);
+                       n = 0;
+
+                       while (value_len > 1)
+                       {
+                               if (n > 0)
+                               {
+                                       fprintf(out, ",");
+                                       if (n % 100 == 0)
+                                       {
+                                               fprintf(out, " /* %d */\n", n);
+                                       }
+                               }
+                               if (n % 10 == 0)
+                               {
+                                       fprintf(out, "\n\t\t");
+                               }
+                               fprintf(out, "0x%.2s", value);
+                               value += 2;
+                               value_len -= 2;
+                               n++;
+                       }
+                       fprintf(out, "),\n");
+                       if (streq(param, "ss"))
+                       {
+                               fprintf(out, "},\n");
+                       }
+               }
+       }
+
+       if (in != stdin)
+       {
+               fclose(in);
+       }
+       if (out != stdout)
+       {
+               fclose(out);
+       }
+       return 0;
+}