From: Andreas Steffen Date: Tue, 5 Nov 2019 11:16:49 +0000 (+0100) Subject: scripts: Add script formatting NIST KEM KAT records into ke_test vectors X-Git-Tag: 6.0.0rc1~25 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=ee19c3e7dd3d8f065892ef1f28e08efd74240c40;p=thirdparty%2Fstrongswan.git scripts: Add script formatting NIST KEM KAT records into ke_test vectors --- diff --git a/scripts/.gitignore b/scripts/.gitignore index 177500b46c..976beb5cc3 100644 --- a/scripts/.gitignore +++ b/scripts/.gitignore @@ -17,3 +17,4 @@ thread_analysis tls_test timeattack os_info +nist_kem_kat diff --git a/scripts/Makefile.am b/scripts/Makefile.am index b4a7863bcd..0548f661ea 100644 --- a/scripts/Makefile.am +++ b/scripts/Makefile.am @@ -7,7 +7,7 @@ AM_CPPFLAGS = \ noinst_PROGRAMS = bin2array bin2sql id2sql key2keyid keyid2sql oid2der \ thread_analysis dh_speed pubkey_speed crypt_burn hash_burn fetch \ - dnssec malloc_speed aes-test settings-test timeattack + dnssec malloc_speed aes-test settings-test timeattack nist_kem_kat if USE_TLS noinst_PROGRAMS += tls_test @@ -31,6 +31,7 @@ malloc_speed_SOURCES = malloc_speed.c fetch_SOURCES = fetch.c dnssec_SOURCES = dnssec.c timeattack_SOURCES = timeattack.c +nist_kem_kat_SOURCES = nist_kem_kat.c id2sql_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la key2keyid_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la @@ -46,6 +47,7 @@ dnssec_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la aes_test_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la settings_test_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la timeattack_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la $(RTLIB) +nist_kem_kat_LDADD = $(top_builddir)/src/libstrongswan/libstrongswan.la if USE_IMCV AM_CPPFLAGS += -I$(top_srcdir)/src/libimcv diff --git a/scripts/nist_kem_kat.c b/scripts/nist_kem_kat.c new file mode 100644 index 0000000000..e80436132c --- /dev/null +++ b/scripts/nist_kem_kat.c @@ -0,0 +1,189 @@ +/* + * Copyright (C) 2019-2020 Andreas Steffen + * + * Copyright (C) secunet Security Networks AG + * + * This program is free software; you can redistribute it and/or modify it + * under the terms of the GNU General Public License as published by the + * Free Software Foundation; either version 2 of the License, or (at your + * option) any later version. See . + * + * This program is distributed in the hope that it will be useful, but + * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY + * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License + * for more details. + */ + +#include +#include +#include +#include +#include +#include + +#include + +static void usage(FILE *out, char *name) +{ + fprintf(out, "Convert NIST KEM KAT file into struct\n"); + fprintf(out, "%s [OPTIONS]\n\n", name); + fprintf(out, "Options:\n"); + fprintf(out, " -h, --help print this help.\n"); + fprintf(out, " -m, --method KEM method.\n"); + fprintf(out, " -c, --count number of structs (default 4).\n"); + fprintf(out, " -i, --in=FILE request file (default STDIN).\n"); + fprintf(out, " -o, --out=FILE response file (default STDOUT).\n"); + fprintf(out, "\n"); +} + +int main(int argc, char *argv[]) +{ + FILE *in = stdin; + FILE *out = stdout; + char line[90000], *method = "", *pos, *eol, *param, *value; + size_t param_len, value_len; + int count = 4, n; + + library_init(NULL, "nist-kem-kat"); + atexit(library_deinit); + + while (true) + { + struct option long_opts[] = { + {"help", no_argument, NULL, 'h' }, + {"method", required_argument, NULL, 'm' }, + {"count", required_argument, NULL, 'c' }, + {"in", required_argument, NULL, 'i' }, + {"out", required_argument, NULL, 'o' }, + {0,0,0,0 }, + }; + switch (getopt_long(argc, argv, "h:m:c:i:o:", long_opts, NULL)) + { + case EOF: + break; + case 'h': + usage(stdout, argv[0]); + return 0; + case 'm': + method = optarg; + continue; + case 'c': + count = atoi(optarg); + continue; + case 'i': + in = fopen(optarg, "r"); + if (!in) + { + fprintf(stderr, "failed to open '%s': %s\n", optarg, + strerror(errno)); + usage(stderr, argv[0]); + return 1; + } + continue; + case 'o': + out = fopen(optarg, "w"); + if (!out) + { + fprintf(stderr, "failed to open '%s': %s\n", optarg, + strerror(errno)); + usage(stderr, argv[0]); + return 1; + } + continue; + default: + usage(stderr, argv[0]); + return 1; + } + break; + } + + while (fgets(line, sizeof(line), in)) + { + pos = strchr(line, '='); + if (!pos) + { + continue; + } + + /*remove preceding whitespace from value */ + value = pos + 1; + eol = strchr(value, '\n'); + if (!eol) + { + fprintf(stderr, "eol not found\n"); + break; + } + value_len = eol - value; + while (value_len && *value == ' ') + { + value++; + value_len--; + } + + /* remove trailing whitespace from param */ + param = line; + param_len = pos - line; + while (param_len && *(--pos) == ' ') + { + param_len--; + } + param[param_len] = '\0'; + + if (streq(param, "sk")) + { + continue; + } + + if (streq(param, "count")) + { + if (count == 0) + { + break; + } + fprintf(out, "/** count = %.*s */\n", value_len, value); + fprintf(out, "{\n"); + fprintf(out, "\t.method = %s,\n", method); + count--; + } + else + { + fprintf(out, "\t.%s = chunk_from_chars(", param); + n = 0; + + while (value_len > 1) + { + if (n > 0) + { + fprintf(out, ","); + if (n % 100 == 0) + { + fprintf(out, " /* %d */\n", n); + } + } + if (n % 10 == 0) + { + fprintf(out, "\n\t\t"); + } + fprintf(out, "0x%.2s", value); + value += 2; + value_len -= 2; + n++; + } + fprintf(out, "),\n"); + if (streq(param, "ss")) + { + fprintf(out, "},\n"); + } + } + } + + if (in != stdin) + { + fclose(in); + } + if (out != stdout) + { + fclose(out); + } + return 0; +}