Home Explore Help
Sign In
OWEALs
/
gnunet
mirror of https://gnunet.org/git/gnunet.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: v0.12.2
Branches Tags
gnunet
/
src
/
util
/
test_crypto_hkdf.c

test_crypto_hkdf.c 14 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338 
  1. /*
    2. 

  2.     Copyright (c) 2010 Nils Durner
    3. 

  3. 

  4.     Permission is hereby granted, free of charge, to any person obtaining a copy
    5. 

  5.     of this software and associated documentation files (the "Software"), to deal
    6. 

  6.     in the Software without restriction, including without limitation the rights
    7. 

  7.     to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
    8. 

  8.     copies of the Software, and to permit persons to whom the Software is
    9. 

  9.     furnished to do so, subject to the following conditions:
    10. 

  10. 

  11.     The above copyright notice and this permission notice shall be included in
    12. 

  12.     all copies or substantial portions of the Software.
    13. 

  13. 

  14.     THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
    15. 

  15.     IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    16. 

  16.     FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
    17. 

  17.     AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
    18. 

  18.     LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
    19. 

  19.     OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
    20. 

  20.     THE SOFTWARE.
    21. 

  21.  */
    22. 

  22. 

  23. /**
    24. 

  24.  * @file src/util/test_crypt_hkdf.c
    25. 

  25.  * @brief Testcases for HKDF
    26. 

  26.  * @todo: test for out_len < hash_len
    27. 

  27.  * @author Nils Durner
    28. 

  28.  */
    29. 

  29. 

  30. #include <gcrypt.h>
    31. 

  31. 

  32. #include "platform.h"
    33. 

  33. #include "gnunet_crypto_lib.h"
    34. 

  34. 

  35. void
    36. 

  36. tc1 ()
    37. 

  37. {
    38. 

  38.   unsigned char ikm[22] =
    39. 

  39.   { 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
    40. 

  40.     0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b };
    41. 

  41.   unsigned char salt[13] =
    42. 

  42.   { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09,
    43. 

  43.     0x0a, 0x0b, 0x0c };
    44. 

  44.   unsigned char info[10] =
    45. 

  45.   { 0xf0, 0xf1, 0xf2, 0xf3, 0xf4, 0xf5, 0xf6, 0xf7, 0xf8, 0xf9 };
    46. 

  46.   unsigned char okm[42] =
    47. 

  47.   { 0x3c, 0xb2, 0x5f, 0x25, 0xfa, 0xac, 0xd5, 0x7a, 0x90, 0x43,
    48. 

  48.     0x4f, 0x64, 0xd0, 0x36, 0x2f, 0x2a, 0x2d, 0x2d, 0x0a, 0x90, 0xcf, 0x1a,
    49. 

  49.     0x5a, 0x4c, 0x5d, 0xb0, 0x2d, 0x56, 0xec, 0xc4, 0xc5, 0xbf, 0x34, 0x00,
    50. 

  50.     0x72, 0x08, 0xd5, 0xb8, 0x87, 0x18, 0x58, 0x65 };
    51. 

  51.   unsigned char result[44];
    52. 

  52.   int l = 42;
    53. 

  53. 

  54.   memset (result, 0, sizeof(result));
    55. 

  55.   GNUNET_assert (GNUNET_CRYPTO_hkdf
    56. 

  56.                    (result, l, GCRY_MD_SHA256, GCRY_MD_SHA256, salt,
    57. 

  57.                    sizeof(salt), ikm, sizeof(ikm), info, sizeof(info),
    58. 

  58.                    NULL) == GNUNET_YES);
    59. 

  59.   GNUNET_assert (memcmp (result, okm, l) == 0);
    60. 

  60.   GNUNET_assert (memcmp (result + l, "\0", 2) == 0);
    61. 

  61. }
    62. 

  62. 

  63. 

  64. void
    65. 

  65. tc2 ()
    66. 

  66. {
    67. 

  67.   unsigned char ikm[80] =
    68. 

  68.   { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09,
    69. 

  69.     0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, 0x10, 0x11, 0x12, 0x13, 0x14, 0x15,
    70. 

  70.     0x16, 0x17, 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f, 0x20, 0x21,
    71. 

  71.     0x22, 0x23, 0x24, 0x25, 0x26, 0x27, 0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d,
    72. 

  72.     0x2e, 0x2f, 0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37, 0x38, 0x39,
    73. 

  73.     0x3a, 0x3b, 0x3c, 0x3d, 0x3e, 0x3f, 0x40, 0x41, 0x42, 0x43, 0x44, 0x45,
    74. 

  74.     0x46, 0x47, 0x48, 0x49, 0x4a, 0x4b, 0x4c, 0x4d, 0x4e, 0x4f };
    75. 

  75.   unsigned char salt[80] =
    76. 

  76.   { 0x60, 0x61, 0x62, 0x63, 0x64, 0x65, 0x66, 0x67, 0x68, 0x69,
    77. 

  77.     0x6a, 0x6b, 0x6c, 0x6d, 0x6e, 0x6f, 0x70, 0x71, 0x72, 0x73, 0x74, 0x75,
    78. 

  78.     0x76, 0x77, 0x78, 0x79, 0x7a, 0x7b, 0x7c, 0x7d, 0x7e, 0x7f, 0x80, 0x81,
    79. 

  79.     0x82, 0x83, 0x84, 0x85, 0x86, 0x87, 0x88, 0x89, 0x8a, 0x8b, 0x8c, 0x8d,
    80. 

  80.     0x8e, 0x8f, 0x90, 0x91, 0x92, 0x93, 0x94, 0x95, 0x96, 0x97, 0x98, 0x99,
    81. 

  81.     0x9a, 0x9b, 0x9c, 0x9d, 0x9e, 0x9f, 0xa0, 0xa1, 0xa2, 0xa3, 0xa4, 0xa5,
    82. 

  82.     0xa6, 0xa7, 0xa8, 0xa9, 0xaa, 0xab, 0xac, 0xad, 0xae, 0xaf };
    83. 

  83.   unsigned char info[80] =
    84. 

  84.   { 0xb0, 0xb1, 0xb2, 0xb3, 0xb4, 0xb5, 0xb6, 0xb7, 0xb8, 0xb9,
    85. 

  85.     0xba, 0xbb, 0xbc, 0xbd, 0xbe, 0xbf, 0xc0, 0xc1, 0xc2, 0xc3, 0xc4, 0xc5,
    86. 

  86.     0xc6, 0xc7, 0xc8, 0xc9, 0xca, 0xcb, 0xcc, 0xcd, 0xce, 0xcf, 0xd0, 0xd1,
    87. 

  87.     0xd2, 0xd3, 0xd4, 0xd5, 0xd6, 0xd7, 0xd8, 0xd9, 0xda, 0xdb, 0xdc, 0xdd,
    88. 

  88.     0xde, 0xdf, 0xe0, 0xe1, 0xe2, 0xe3, 0xe4, 0xe5, 0xe6, 0xe7, 0xe8, 0xe9,
    89. 

  89.     0xea, 0xeb, 0xec, 0xed, 0xee, 0xef, 0xf0, 0xf1, 0xf2, 0xf3, 0xf4, 0xf5,
    90. 

  90.     0xf6, 0xf7, 0xf8, 0xf9, 0xfa, 0xfb, 0xfc, 0xfd, 0xfe, 0xff };
    91. 

  91.   unsigned char okm[82] =
    92. 

  92.   { 0xb1, 0x1e, 0x39, 0x8d, 0xc8, 0x03, 0x27, 0xa1, 0xc8, 0xe7,
    93. 

  93.     0xf7, 0x8c, 0x59, 0x6a, 0x49, 0x34, 0x4f, 0x01, 0x2e, 0xda, 0x2d, 0x4e,
    94. 

  94.     0xfa, 0xd8, 0xa0, 0x50, 0xcc, 0x4c, 0x19, 0xaf, 0xa9, 0x7c, 0x59, 0x04,
    95. 

  95.     0x5a, 0x99, 0xca, 0xc7, 0x82, 0x72, 0x71, 0xcb, 0x41, 0xc6, 0x5e, 0x59,
    96. 

  96.     0x0e, 0x09, 0xda, 0x32, 0x75, 0x60, 0x0c, 0x2f, 0x09, 0xb8, 0x36, 0x77,
    97. 

  97.     0x93, 0xa9, 0xac, 0xa3, 0xdb, 0x71, 0xcc, 0x30, 0xc5, 0x81, 0x79, 0xec,
    98. 

  98.     0x3e, 0x87, 0xc1, 0x4c, 0x01, 0xd5, 0xc1, 0xf3, 0x43, 0x4f, 0x1d, 0x87 };
    99. 

  99.   char result[84];
    100. 

  100.   int l = 82;
    101. 

  101. 

  102.   memset (result, 0, sizeof(result));
    103. 

  103.   GNUNET_assert (GNUNET_CRYPTO_hkdf
    104. 

  104.                    (result, l, GCRY_MD_SHA256, GCRY_MD_SHA256, salt,
    105. 

  105.                    sizeof(salt), ikm, sizeof(ikm), info, sizeof(info),
    106. 

  106.                    NULL) == GNUNET_YES);
    107. 

  107.   GNUNET_assert (memcmp (result, okm, l) == 0);
    108. 

  108.   GNUNET_assert (memcmp (result + l, "\0", 2) == 0);
    109. 

  109. }
    110. 

  110. 

  111. 

  112. void
    113. 

  113. tc3 ()
    114. 

  114. {
    115. 

  115.   unsigned char ikm[22] =
    116. 

  116.   { 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
    117. 

  117.     0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b };
    118. 

  118.   unsigned char okm[42] =
    119. 

  119.   { 0x8d, 0xa4, 0xe7, 0x75, 0xa5, 0x63, 0xc1, 0x8f, 0x71, 0x5f,
    120. 

  120.     0x80, 0x2a, 0x06, 0x3c, 0x5a, 0x31, 0xb8, 0xa1, 0x1f, 0x5c, 0x5e, 0xe1,
    121. 

  121.     0x87, 0x9e, 0xc3, 0x45, 0x4e, 0x5f, 0x3c, 0x73, 0x8d, 0x2d, 0x9d, 0x20,
    122. 

  122.     0x13, 0x95, 0xfa, 0xa4, 0xb6, 0x1a, 0x96, 0xc8 };
    123. 

  123.   unsigned char result[44];
    124. 

  124.   int l = 42;
    125. 

  125. 

  126.   memset (result, 0, sizeof(result));
    127. 

  127.   GNUNET_assert (GNUNET_CRYPTO_hkdf
    128. 

  128.                    (result, l, GCRY_MD_SHA256, GCRY_MD_SHA256, NULL, 0, ikm,
    129. 

  129.                    sizeof(ikm), NULL, 0, NULL) == GNUNET_YES);
    130. 

  130.   GNUNET_assert (memcmp (result, okm, l) == 0);
    131. 

  131.   GNUNET_assert (memcmp (result + l, "\0", 2) == 0);
    132. 

  132. }
    133. 

  133. 

  134. 

  135. void
    136. 

  136. tc4 ()
    137. 

  137. {
    138. 

  138.   unsigned char ikm[11] =
    139. 

  139.   { 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
    140. 

  140.     0x0b };
    141. 

  141.   unsigned char salt[13] =
    142. 

  142.   { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09,
    143. 

  143.     0x0a, 0x0b, 0x0c };
    144. 

  144.   unsigned char info[10] =
    145. 

  145.   { 0xf0, 0xf1, 0xf2, 0xf3, 0xf4, 0xf5, 0xf6, 0xf7, 0xf8, 0xf9 };
    146. 

  146.   unsigned char okm[42] =
    147. 

  147.   { 0x08, 0x5a, 0x01, 0xea, 0x1b, 0x10, 0xf3, 0x69, 0x33, 0x06,
    148. 

  148.     0x8b, 0x56, 0xef, 0xa5, 0xad, 0x81, 0xa4, 0xf1, 0x4b, 0x82, 0x2f, 0x5b,
    149. 

  149.     0x09, 0x15, 0x68, 0xa9, 0xcd, 0xd4, 0xf1, 0x55, 0xfd, 0xa2, 0xc2, 0x2e,
    150. 

  150.     0x42, 0x24, 0x78, 0xd3, 0x05, 0xf3, 0xf8, 0x96 };
    151. 

  151.   char result[84];
    152. 

  152.   int l = 42;
    153. 

  153. 

  154.   memset (result, 0, sizeof(result));
    155. 

  155.   GNUNET_assert (GNUNET_CRYPTO_hkdf
    156. 

  156.                    (result, l, GCRY_MD_SHA1, GCRY_MD_SHA1, salt, sizeof(salt),
    157. 

  157.                    ikm, sizeof(ikm), info, sizeof(info), NULL) == GNUNET_YES);
    158. 

  158.   GNUNET_assert (memcmp (result, okm, l) == 0);
    159. 

  159.   GNUNET_assert (memcmp (result + l, "\0", 2) == 0);
    160. 

  160. }
    161. 

  161. 

  162. 

  163. void
    164. 

  164. tc5 ()
    165. 

  165. {
    166. 

  166.   unsigned char ikm[80] =
    167. 

  167.   { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09,
    168. 

  168.     0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, 0x10, 0x11, 0x12, 0x13, 0x14, 0x15,
    169. 

  169.     0x16, 0x17, 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f, 0x20, 0x21,
    170. 

  170.     0x22, 0x23, 0x24, 0x25, 0x26, 0x27, 0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d,
    171. 

  171.     0x2e, 0x2f, 0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37, 0x38, 0x39,
    172. 

  172.     0x3a, 0x3b, 0x3c, 0x3d, 0x3e, 0x3f, 0x40, 0x41, 0x42, 0x43, 0x44, 0x45,
    173. 

  173.     0x46, 0x47, 0x48, 0x49, 0x4a, 0x4b, 0x4c, 0x4d, 0x4e, 0x4f };
    174. 

  174.   unsigned char salt[80] =
    175. 

  175.   { 0x60, 0x61, 0x62, 0x63, 0x64, 0x65, 0x66, 0x67, 0x68, 0x69,
    176. 

  176.     0x6a, 0x6b, 0x6c, 0x6d, 0x6e, 0x6f, 0x70, 0x71, 0x72, 0x73, 0x74, 0x75,
    177. 

  177.     0x76, 0x77, 0x78, 0x79, 0x7a, 0x7b, 0x7c, 0x7d, 0x7e, 0x7f, 0x80, 0x81,
    178. 

  178.     0x82, 0x83, 0x84, 0x85, 0x86, 0x87, 0x88, 0x89, 0x8a, 0x8b, 0x8c, 0x8d,
    179. 

  179.     0x8e, 0x8f, 0x90, 0x91, 0x92, 0x93, 0x94, 0x95, 0x96, 0x97, 0x98, 0x99,
    180. 

  180.     0x9a, 0x9b, 0x9c, 0x9d, 0x9e, 0x9f, 0xa0, 0xa1, 0xa2, 0xa3, 0xa4, 0xa5,
    181. 

  181.     0xa6, 0xa7, 0xa8, 0xa9, 0xaa, 0xab, 0xac, 0xad, 0xae, 0xaf };
    182. 

  182.   unsigned char info[80] =
    183. 

  183.   { 0xb0, 0xb1, 0xb2, 0xb3, 0xb4, 0xb5, 0xb6, 0xb7, 0xb8, 0xb9,
    184. 

  184.     0xba, 0xbb, 0xbc, 0xbd, 0xbe, 0xbf, 0xc0, 0xc1, 0xc2, 0xc3, 0xc4, 0xc5,
    185. 

  185.     0xc6, 0xc7, 0xc8, 0xc9, 0xca, 0xcb, 0xcc, 0xcd, 0xce, 0xcf, 0xd0, 0xd1,
    186. 

  186.     0xd2, 0xd3, 0xd4, 0xd5, 0xd6, 0xd7, 0xd8, 0xd9, 0xda, 0xdb, 0xdc, 0xdd,
    187. 

  187.     0xde, 0xdf, 0xe0, 0xe1, 0xe2, 0xe3, 0xe4, 0xe5, 0xe6, 0xe7, 0xe8, 0xe9,
    188. 

  188.     0xea, 0xeb, 0xec, 0xed, 0xee, 0xef, 0xf0, 0xf1, 0xf2, 0xf3, 0xf4, 0xf5,
    189. 

  189.     0xf6, 0xf7, 0xf8, 0xf9, 0xfa, 0xfb, 0xfc, 0xfd, 0xfe, 0xff };
    190. 

  190.   unsigned char okm[82] =
    191. 

  191.   { 0x0b, 0xd7, 0x70, 0xa7, 0x4d, 0x11, 0x60, 0xf7, 0xc9, 0xf1,
    192. 

  192.     0x2c, 0xd5, 0x91, 0x2a, 0x06, 0xeb, 0xff, 0x6a, 0xdc, 0xae, 0x89, 0x9d,
    193. 

  193.     0x92, 0x19, 0x1f, 0xe4, 0x30, 0x56, 0x73, 0xba, 0x2f, 0xfe, 0x8f, 0xa3,
    194. 

  194.     0xf1, 0xa4, 0xe5, 0xad, 0x79, 0xf3, 0xf3, 0x34, 0xb3, 0xb2, 0x02, 0xb2,
    195. 

  195.     0x17, 0x3c, 0x48, 0x6e, 0xa3, 0x7c, 0xe3, 0xd3, 0x97, 0xed, 0x03, 0x4c,
    196. 

  196.     0x7f, 0x9d, 0xfe, 0xb1, 0x5c, 0x5e, 0x92, 0x73, 0x36, 0xd0, 0x44, 0x1f,
    197. 

  197.     0x4c, 0x43, 0x00, 0xe2, 0xcf, 0xf0, 0xd0, 0x90, 0x0b, 0x52, 0xd3, 0xb4 };
    198. 

  198.   char result[84];
    199. 

  199.   int l = 82;
    200. 

  200. 

  201.   memset (result, 0, sizeof(result));
    202. 

  202.   GNUNET_assert (GNUNET_CRYPTO_hkdf
    203. 

  203.                    (result, l, GCRY_MD_SHA1, GCRY_MD_SHA1, salt, sizeof(salt),
    204. 

  204.                    ikm, sizeof(ikm), info, sizeof(info), NULL) == GNUNET_YES);
    205. 

  205.   GNUNET_assert (memcmp (result, okm, l) == 0);
    206. 

  206.   GNUNET_assert (memcmp (result + l, "\0", 2) == 0);
    207. 

  207. }
    208. 

  208. 

  209. 

  210. void
    211. 

  211. tc6 ()
    212. 

  212. {
    213. 

  213.   unsigned char ikm[22] =
    214. 

  214.   { 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b,
    215. 

  215.     0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b, 0x0b };
    216. 

  216.   unsigned char okm[42] =
    217. 

  217.   { 0x0a, 0xc1, 0xaf, 0x70, 0x02, 0xb3, 0xd7, 0x61, 0xd1, 0xe5,
    218. 

  218.     0x52, 0x98, 0xda, 0x9d, 0x05, 0x06, 0xb9, 0xae, 0x52, 0x05, 0x72, 0x20,
    219. 

  219.     0xa3, 0x06, 0xe0, 0x7b, 0x6b, 0x87, 0xe8, 0xdf, 0x21, 0xd0, 0xea, 0x00,
    220. 

  220.     0x03, 0x3d, 0xe0, 0x39, 0x84, 0xd3, 0x49, 0x18 };
    221. 

  221.   char result[44];
    222. 

  222.   int l = 42;
    223. 

  223. 

  224.   memset (result, 0, sizeof(result));
    225. 

  225.   GNUNET_assert (GNUNET_CRYPTO_hkdf
    226. 

  226.                    (result, l, GCRY_MD_SHA1, GCRY_MD_SHA1, NULL, 0, ikm,
    227. 

  227.                    sizeof(ikm), NULL, 0, NULL) == GNUNET_YES);
    228. 

  228.   GNUNET_assert (memcmp (result, okm, l) == 0);
    229. 

  229.   GNUNET_assert (memcmp (result + l, "\0", 2) == 0);
    230. 

  230. }
    231. 

  231. 

  232. 

  233. void
    234. 

  234. tc7 ()
    235. 

  235. {
    236. 

  236.   unsigned char ikm[80] =
    237. 

  237.   { 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07, 0x08, 0x09,
    238. 

  238.     0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f, 0x10, 0x11, 0x12, 0x13, 0x14, 0x15,
    239. 

  239.     0x16, 0x17, 0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f, 0x20, 0x21,
    240. 

  240.     0x22, 0x23, 0x24, 0x25, 0x26, 0x27, 0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d,
    241. 

  241.     0x2e, 0x2f, 0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37, 0x38, 0x39,
    242. 

  242.     0x3a, 0x3b, 0x3c, 0x3d, 0x3e, 0x3f, 0x40, 0x41, 0x42, 0x43, 0x44, 0x45,
    243. 

  243.     0x46, 0x47, 0x48, 0x49, 0x4a, 0x4b, 0x4c, 0x4d, 0x4e, 0x4f };
    244. 

  244.   unsigned char salt[80] =
    245. 

  245.   { 0x60, 0x61, 0x62, 0x63, 0x64, 0x65, 0x66, 0x67, 0x68, 0x69,
    246. 

  246.     0x6a, 0x6b, 0x6c, 0x6d, 0x6e, 0x6f, 0x70, 0x71, 0x72, 0x73, 0x74, 0x75,
    247. 

  247.     0x76, 0x77, 0x78, 0x79, 0x7a, 0x7b, 0x7c, 0x7d, 0x7e, 0x7f, 0x80, 0x81,
    248. 

  248.     0x82, 0x83, 0x84, 0x85, 0x86, 0x87, 0x88, 0x89, 0x8a, 0x8b, 0x8c, 0x8d,
    249. 

  249.     0x8e, 0x8f, 0x90, 0x91, 0x92, 0x93, 0x94, 0x95, 0x96, 0x97, 0x98, 0x99,
    250. 

  250.     0x9a, 0x9b, 0x9c, 0x9d, 0x9e, 0x9f, 0xa0, 0xa1, 0xa2, 0xa3, 0xa4, 0xa5,
    251. 

  251.     0xa6, 0xa7, 0xa8, 0xa9, 0xaa, 0xab, 0xac, 0xad, 0xae, 0xaf };
    252. 

  252.   unsigned char info1[34] = { 0xb0, 0xb1, 0xb2, 0xb3, 0xb4, 0xb5, 0xb6, 0xb7,
    253. 

  253.                               0xb8, 0xb9, 0xba, 0xbb, 0xbc, 0xbd, 0xbe, 0xbf,
    254. 

  254.                               0xc0, 0xc1, 0xc2, 0xc3,
    255. 

  255.                               0xc4, 0xc5, 0xc6, 0xc7, 0xc8, 0xc9, 0xca, 0xcb,
    256. 

  256.                               0xcc, 0xcd, 0xce, 0xcf,
    257. 

  257.                               0xd0, 0xd1 };
    258. 

  258.   unsigned char info2[46] = { 0xd2, 0xd3, 0xd4, 0xd5, 0xd6, 0xd7, 0xd8, 0xd9,
    259. 

  259.                               0xda, 0xdb, 0xdc, 0xdd, 0xde, 0xdf, 0xe0, 0xe1,
    260. 

  260.                               0xe2, 0xe3, 0xe4, 0xe5,
    261. 

  261.                               0xe6, 0xe7, 0xe8, 0xe9, 0xea, 0xeb, 0xec, 0xed,
    262. 

  262.                               0xee, 0xef, 0xf0, 0xf1,
    263. 

  263.                               0xf2, 0xf3, 0xf4, 0xf5, 0xf6, 0xf7, 0xf8, 0xf9,
    264. 

  264.                               0xfa, 0xfb, 0xfc, 0xfd,
    265. 

  265.                               0xfe, 0xff };
    266. 

  266.   unsigned char okm[82] =
    267. 

  267.   { 0x0b, 0xd7, 0x70, 0xa7, 0x4d, 0x11, 0x60, 0xf7, 0xc9, 0xf1,
    268. 

  268.     0x2c, 0xd5, 0x91, 0x2a, 0x06, 0xeb, 0xff, 0x6a, 0xdc, 0xae, 0x89, 0x9d,
    269. 

  269.     0x92, 0x19, 0x1f, 0xe4, 0x30, 0x56, 0x73, 0xba, 0x2f, 0xfe, 0x8f, 0xa3,
    270. 

  270.     0xf1, 0xa4, 0xe5, 0xad, 0x79, 0xf3, 0xf3, 0x34, 0xb3, 0xb2, 0x02, 0xb2,
    271. 

  271.     0x17, 0x3c, 0x48, 0x6e, 0xa3, 0x7c, 0xe3, 0xd3, 0x97, 0xed, 0x03, 0x4c,
    272. 

  272.     0x7f, 0x9d, 0xfe, 0xb1, 0x5c, 0x5e, 0x92, 0x73, 0x36, 0xd0, 0x44, 0x1f,
    273. 

  273.     0x4c, 0x43, 0x00, 0xe2, 0xcf, 0xf0, 0xd0, 0x90, 0x0b, 0x52, 0xd3, 0xb4 };
    274. 

  274.   char result[84];
    275. 

  275.   int l = 82;
    276. 

  276. 

  277.   memset (result, 0, sizeof(result));
    278. 

  278.   GNUNET_assert (GNUNET_CRYPTO_hkdf
    279. 

  279.                    (result, l, GCRY_MD_SHA1, GCRY_MD_SHA1, salt, sizeof(salt),
    280. 

  280.                    ikm, sizeof(ikm), info1, sizeof(info1), info2,
    281. 

  281.                    sizeof(info2), NULL) == GNUNET_YES);
    282. 

  282.   GNUNET_assert (memcmp (result, okm, l) == 0);
    283. 

  283.   GNUNET_assert (memcmp (result + l, "\0", 2) == 0);
    284. 

  284. }
    285. 

  285. 

  286. 

  287. void
    288. 

  288. tc8 ()
    289. 

  289. {
    290. 

  290.   unsigned char ikm[32] =
    291. 

  291.   { 0xbf, 0x16, 0x6e, 0x46, 0x3a, 0x6c, 0xf3, 0x93, 0xa7, 0x72,
    292. 

  292.     0x11, 0xa1, 0xdc, 0x0b, 0x07, 0xdb, 0x1a, 0x5e, 0xd9, 0xb9, 0x81, 0xbe,
    293. 

  293.     0xea, 0xe4, 0x31, 0x5f, 0x24, 0xff, 0xfe, 0x50, 0x8a, 0xde };
    294. 

  294.   unsigned char salt[4] = { 0xfc, 0x62, 0x76, 0x35 };
    295. 

  295.   unsigned char info[86] =
    296. 

  296.   { 0x8c, 0x0d, 0xcf, 0xb3, 0x25, 0x6e, 0x88, 0x0d, 0xc1, 0x0b,
    297. 

  297.     0x1d, 0x33, 0x15, 0x3e, 0x52, 0x0b, 0xb0, 0x77, 0xff, 0x7d, 0xc3, 0xc7,
    298. 

  298.     0xef, 0xe5, 0x8e, 0x3c, 0xc4, 0x4e, 0x8b, 0x41, 0x46, 0x1f, 0x02, 0x94,
    299. 

  299.     0x82, 0x35, 0xc5, 0xa6, 0x5e, 0x91, 0xd8, 0xa2, 0x90, 0xfd, 0x6f, 0xb4,
    300. 

  300.     0x07, 0xc9, 0xed, 0x6b, 0x18, 0x90, 0x31, 0xab, 0x0f, 0xb5, 0x6b, 0xec,
    301. 

  301.     0x9e, 0x45, 0xa2, 0x83, 0x65, 0x41, 0x69, 0x6e, 0x69, 0x74, 0x69, 0x61,
    302. 

  302.     0x6c, 0x69, 0x7a, 0x61, 0x74, 0x69, 0x6f, 0x6e, 0x20, 0x76, 0x65, 0x63,
    303. 

  303.     0x74, 0x6f, 0x72, 0x00 };
    304. 

  304.   unsigned char okm[16] =
    305. 

  305.   { 0xd6, 0x90, 0xec, 0x9e, 0x62, 0xdf, 0xb9, 0x41, 0xff, 0x92,
    306. 

  306.     0x4f, 0xd2, 0xf6, 0x1d, 0x67, 0xe0 };
    307. 

  307.   char result[18];
    308. 

  308.   int l = 16;
    309. 

  309. 

  310.   memset (result, 0, sizeof(result));
    311. 

  311.   GNUNET_assert (GNUNET_CRYPTO_hkdf
    312. 

  312.                    (result, l, GCRY_MD_SHA512, GCRY_MD_SHA256, salt,
    313. 

  313.                    sizeof(salt), ikm, sizeof(ikm), info, sizeof(info),
    314. 

  314.                    NULL) == GNUNET_YES);
    315. 

  315.   GNUNET_assert (memcmp (result, okm, l) == 0);
    316. 

  316.   GNUNET_assert (memcmp (result + l, "\0", 2) == 0);
    317. 

  317. }
    318. 

  318. 

  319. 

  320. int
    321. 

  321. main ()
    322. 

  322. {
    323. 

  323.   GNUNET_log_setup ("test-crypto-hkdf", "WARNING", NULL);
    324. 

  324. 

  325.   /* Official test vectors */
    326. 

  326.   tc1 ();
    327. 

  327.   tc2 ();
    328. 

  328.   tc3 ();
    329. 

  329.   tc4 ();
    330. 

  330.   tc5 ();
    331. 

  331.   tc6 ();
    332. 

  332. 

  333.   /* Additional tests */
    334. 

  334.   tc7 ();
    335. 

  335.   tc8 ();
    336. 

  336. 

  337.   return 0;
    338. 

  338. }
    339.