add sms4 module

2026-05-07 00:46:17 +08:00 · 2017-02-14 23:14:06 +08:00
parent 4e49434209
commit 01c76aa6a0
33 changed files with 3036 additions and 6 deletions
--- a/test/build.info
+++ b/test/build.info
@@ -17,7 +17,7 @@ IF[{- !$disabled{tests} -}]
          dtlsv1listentest ct_test threadstest afalgtest d2i_test \
          ssl_test_ctx_test ssl_test x509aux cipherlist_test asynciotest \
          bioprinttest sslapitest dtlstest sslcorrupttest bio_enc_test \
-          sm3test
+          sm3test sms4test

  SOURCE[aborttest]=aborttest.c
  INCLUDE[aborttest]=../include
@@ -288,6 +288,10 @@ IF[{- !$disabled{tests} -}]
  INCLUDE[sm3test]=../include
  DEPEND[sm3test]=../libcrypto

+  SOURCE[sms4test]=sms4test.c
+  INCLUDE[sms4test]=../include
+  DEPEND[sms4test]=../libcrypto
+
  IF[{- !$disabled{shared} -}]
    PROGRAMS_NO_INST=shlibloadtest
    SOURCE[shlibloadtest]=shlibloadtest.c
--- a/test/recipes/05-test_sms4.t
+++ b/test/recipes/05-test_sms4.t
@@ -0,0 +1,12 @@
+#! /usr/bin/env perl
+# Copyright 2015-2016 The OpenSSL Project Authors. All Rights Reserved.
+#
+# Licensed under the OpenSSL license (the "License").  You may not use
+# this file except in compliance with the License.  You can obtain a copy
+# in the file LICENSE in the source distribution or at
+# https://www.openssl.org/source/license.html
+
+
+use OpenSSL::Test::Simple;
+
+simple_test("test_sms4", "sms4test", "sms4");
--- a/test/recipes/70-test_sslcbcpadding.t
+++ b/test/recipes/70-test_sslcbcpadding.t
@@ -29,7 +29,7 @@ plan skip_all => "$test_name needs TLSv1.2 enabled"
 $ENV{OPENSSL_ia32cap} = '~0x200000200000000';
 my $proxy = TLSProxy::Proxy->new(
    \&add_maximal_padding_filter,
-    cmdstr(app(["openssl"]), display => 1),
+    cmdstr(app(["gmssl"]), display => 1),
    srctop_file("apps", "server.pem"),
    (!$ENV{HARNESS_ACTIVE} || $ENV{HARNESS_VERBOSE})
 );
--- a/test/recipes/70-test_sslcertstatus.t
+++ b/test/recipes/70-test_sslcertstatus.t
@@ -32,7 +32,7 @@ plan skip_all => "$test_name needs TLS enabled"
 $ENV{OPENSSL_ia32cap} = '~0x200000200000000';
 my $proxy = TLSProxy::Proxy->new(
    \&certstatus_filter,
-    cmdstr(app(["openssl"]), display => 1),
+    cmdstr(app(["gmssl"]), display => 1),
    srctop_file("apps", "server.pem"),
    (!$ENV{HARNESS_ACTIVE} || $ENV{HARNESS_VERBOSE})
 );
--- a/test/recipes/70-test_sslextension.t
+++ b/test/recipes/70-test_sslextension.t
@@ -29,7 +29,7 @@ plan skip_all => "$test_name needs TLS enabled"
 $ENV{OPENSSL_ia32cap} = '~0x200000200000000';
 my $proxy = TLSProxy::Proxy->new(
    \&extension_filter,
-    cmdstr(app(["openssl"]), display => 1),
+    cmdstr(app(["gmssl"]), display => 1),
    srctop_file("apps", "server.pem"),
    (!$ENV{HARNESS_ACTIVE} || $ENV{HARNESS_VERBOSE})
 );
--- a/test/sms4test.c
+++ b/test/sms4test.c
@@ -0,0 +1,139 @@
+/* ====================================================================
+ * Copyright (c) 2014 - 2017 The GmSSL Project.  All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ *
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer.
+ *
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in
+ *    the documentation and/or other materials provided with the
+ *    distribution.
+ *
+ * 3. All advertising materials mentioning features or use of this
+ *    software must display the following acknowledgment:
+ *    "This product includes software developed by the GmSSL Project.
+ *    (http://gmssl.org/)"
+ *
+ * 4. The name "GmSSL Project" must not be used to endorse or promote
+ *    products derived from this software without prior written
+ *    permission. For written permission, please contact
+ *    guanzhi1980@gmail.com.
+ *
+ * 5. Products derived from this software may not be called "GmSSL"
+ *    nor may "GmSSL" appear in their names without prior written
+ *    permission of the GmSSL Project.
+ *
+ * 6. Redistributions of any form whatsoever must retain the following
+ *    acknowledgment:
+ *    "This product includes software developed by the GmSSL Project
+ *    (http://gmssl.org/)"
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE GmSSL PROJECT ``AS IS'' AND ANY
+ * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
+ * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE GmSSL PROJECT OR
+ * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+ * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
+ * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+ * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+ * OF THE POSSIBILITY OF SUCH DAMAGE.
+ * ====================================================================
+ */
+
+#include <stdio.h>
+#include <string.h>
+#include <stdlib.h>
+#include "../e_os.h"
+
+#ifdef OPENSSL_NO_SMS4
+int main(int argc, char **argv)
+{
+	printf("NO SMS4 support\n");
+	return 0;
+}
+#else
+# include <openssl/evp.h>
+# include <openssl/sms4.h>
+
+int main(int argc, char **argv)
+{
+	int err = 0;
+	int i;
+	sms4_key_t key;
+	unsigned char buf[16];
+
+	unsigned char user_key[16] = {
+		0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef,
+		0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10,
+	};
+
+	uint32_t rk[32] = {
+		0xf12186f9, 0x41662b61, 0x5a6ab19a, 0x7ba92077,
+		0x367360f4, 0x776a0c61, 0xb6bb89b3, 0x24763151,
+		0xa520307c, 0xb7584dbd, 0xc30753ed, 0x7ee55b57,
+		0x6988608c, 0x30d895b7, 0x44ba14af, 0x104495a1,
+		0xd120b428, 0x73b55fa3, 0xcc874966, 0x92244439,
+		0xe89e641f, 0x98ca015a, 0xc7159060, 0x99e1fd2e,
+		0xb79bd80c, 0x1d2115b0, 0x0e228aeb, 0xf1780c81,
+		0x428d3654, 0x62293496, 0x01cf72e5, 0x9124a012,
+	};
+
+	unsigned char plaintext[16] = {
+		0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef,
+		0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10,
+	};
+
+	unsigned char ciphertext1[16] = {
+		0x68, 0x1e, 0xdf, 0x34, 0xd2, 0x06, 0x96, 0x5e,
+		0x86, 0xb3, 0xe9, 0x4f, 0x53, 0x6e, 0x42, 0x46,
+	};
+
+	unsigned char ciphertext2[16] = {
+		0x59, 0x52, 0x98, 0xc7, 0xc6, 0xfd, 0x27, 0x1f,
+		0x04, 0x02, 0xf8, 0x04, 0xc3, 0x3d, 0x3f, 0x66,
+	};
+
+	/* test key scheduling */
+	sms4_set_encrypt_key(&key, user_key);
+
+	if (memcmp(key.rk, rk, sizeof(rk)) != 0) {
+		printf("sms4 key scheduling not passed!\n");
+		goto end;
+	}
+	printf("sms4 key scheduling passed!\n");
+
+	/* test encrypt once */
+	sms4_encrypt(plaintext, buf, &key);
+
+	if (memcmp(buf, ciphertext1, sizeof(ciphertext1)) != 0) {
+		printf("sms4 encrypt not pass!\n");
+		goto end;
+	}
+	printf("sms4 encrypt pass!\n");
+
+	/* test encrypt 1000000 times */
+	memcpy(buf, plaintext, sizeof(plaintext));
+	for (i = 0; i < 1000000; i++) {
+		sms4_encrypt(buf, buf, &key);
+	}
+
+	if (memcmp(buf, ciphertext2, sizeof(ciphertext2)) != 0) {
+		printf("sms4 encrypt 1000000 times not pass!\n");
+		goto end;
+	}
+	printf("sms4 encrypt 1000000 times pass!\n");
+	printf("sms4 all test vectors pass!\n");
+
+	return err;
+end:
+	printf("some test vector failed\n");
+	return -1;
+}
+#endif