/* * Copyright 2014-2021 The GmSSL Project Authors. All Rights Reserved. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #include #include #include #include # ifdef SM4_AVX2 void sm4_avx2_ecb_encrypt_blocks(const unsigned char *in, unsigned char *out, size_t blocks, const SM4_KEY *key); void sm4_avx2_ctr32_encrypt_blocks(const unsigned char *in, unsigned char *out, size_t blocks, const SM4_KEY *key, const unsigned char iv[16]); # endif static int test_ecb(int avx) { SM4_KEY key; unsigned char user_key[16] = {0}; /* 2 rounds avx-512 and 2 rounds x86 */ unsigned char in[(16 * 2 + 2) * 16] = {0}; unsigned char out1[sizeof(in)] = {0}; unsigned char out2[sizeof(in)] = {0}; int i; for (i = 0; i < sizeof(user_key); i++) { user_key[i] = (unsigned char)i; } for (i = 0; i < sizeof(in); i++) { in[i] = (unsigned char)i; } /* RAND_bytes(user_key, sizeof(user_key)); RAND_bytes(in, sizeof(in)); */ sm4_set_encrypt_key(&key, user_key); for (i = 0; i < sizeof(in)/SM4_BLOCK_SIZE; i++) { sm4_encrypt(&key, in + 16*i, out1 + 16*i); } switch (avx) { # ifdef SM4_AVX2 case 2: sm4_avx2_ecb_encrypt_blocks(in, out2, sizeof(in)/SM4_BLOCK_SIZE, &key); break; # endif default: printf("avx shuold be in {2}\n"); return 0; } if (memcmp(out1, out2, sizeof(out1)) != 0) { return 0; } return 1; } static void xor_block(unsigned char *out, const unsigned char *in) { int i; for (i = 0; i < 16; i++) { out[i] ^= in[i]; } } static int test_ctr32(int avx) { SM4_KEY key; unsigned char user_key[16] = {0}; unsigned char iv[16] = {0}; unsigned char ctr1[16]; unsigned char ctr2[16]; /* 2 rounds avx-512 and 2 rounds x86 */ unsigned char in[(16 * 2 + 2) * 16] = {0}; unsigned char out1[sizeof(in)]; unsigned char out2[sizeof(in)]; int i; /* RAND_bytes(user_key, sizeof(user_key)); RAND_bytes(iv, sizeof(iv) - 1); RAND_bytes(in, sizeof(in)); */ sm4_set_encrypt_key(&key, user_key); memcpy(ctr1, iv, sizeof(iv)); memcpy(ctr2, iv, sizeof(iv)); for (i = 0; i < sizeof(in)/16; i++) { sm4_encrypt(&key, ctr1, out1 + 16 * i); xor_block(out1 + 16 * i, in + 16 * i); ctr1[15]++; } switch (avx) { # ifdef SM4_AVX2 case 2: sm4_avx2_ctr32_encrypt_blocks(in, out2, sizeof(in)/16, &key, ctr2); break; # endif case 0: // do we need this? //sm4_ctr32_encrypt_blocks(in, out2, sizeof(in)/16, &key, ctr2); break; default: printf("avx should be in {0, 2}\n"); return 0; } if (memcmp(out1, out2, sizeof(out1)) != 0) { return 0; } return 1; } /* static int test_ede(void) { SM4_KEY key; sm4_ede_key_t ede_key; unsigned char user_key[48]; unsigned char in[16]; unsigned char out1[16]; unsigned char out2[16]; RAND_bytes(in, sizeof(in)); RAND_bytes(user_key, 16); memcpy(user_key + 16, user_key, 16); memcpy(user_key + 32, user_key, 16); sm4_set_encrypt_key(&key, user_key); sm4_encrypt(in, out1, &key); sm4_ede_set_encrypt_key(&ede_key, user_key); sm4_ede_encrypt(in, out2, &ede_key); if (memcmp(out1, out2, 16) != 0) { return 0; } RAND_bytes(user_key, sizeof(user_key)); sm4_ede_set_encrypt_key(&ede_key, user_key); sm4_ede_encrypt(in, out1, &ede_key); sm4_ede_set_decrypt_key(&ede_key, user_key); sm4_ede_decrypt(out1, out2, &ede_key); if (memcmp(in, out2, 16) != 0) { return 0; } return 1; } */ int main(int argc, char **argv) { int err = 0; int i; SM4_KEY key; unsigned char buf[16]; unsigned char user_key[16] = { 0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10, }; uint32_t rk[32] = { 0xf12186f9, 0x41662b61, 0x5a6ab19a, 0x7ba92077, 0x367360f4, 0x776a0c61, 0xb6bb89b3, 0x24763151, 0xa520307c, 0xb7584dbd, 0xc30753ed, 0x7ee55b57, 0x6988608c, 0x30d895b7, 0x44ba14af, 0x104495a1, 0xd120b428, 0x73b55fa3, 0xcc874966, 0x92244439, 0xe89e641f, 0x98ca015a, 0xc7159060, 0x99e1fd2e, 0xb79bd80c, 0x1d2115b0, 0x0e228aeb, 0xf1780c81, 0x428d3654, 0x62293496, 0x01cf72e5, 0x9124a012, }; unsigned char plaintext[16] = { 0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10, }; unsigned char ciphertext1[16] = { 0x68, 0x1e, 0xdf, 0x34, 0xd2, 0x06, 0x96, 0x5e, 0x86, 0xb3, 0xe9, 0x4f, 0x53, 0x6e, 0x42, 0x46, }; unsigned char ciphertext2[16] = { 0x59, 0x52, 0x98, 0xc7, 0xc6, 0xfd, 0x27, 0x1f, 0x04, 0x02, 0xf8, 0x04, 0xc3, 0x3d, 0x3f, 0x66, }; /* test key scheduling */ sm4_set_encrypt_key(&key, user_key); if (memcmp(key.rk, rk, sizeof(rk)) != 0) { printf("sm4 key scheduling not passed!\n"); err++; goto end; } printf("sm4 key scheduling passed!\n"); /* test encrypt once */ sm4_encrypt(&key, plaintext, buf); if (memcmp(buf, ciphertext1, sizeof(ciphertext1)) != 0) { printf("sm4 encrypt not pass!\n"); err++; goto end; } printf("sm4 encrypt pass!\n"); /* test encrypt 1000000 times */ memcpy(buf, plaintext, sizeof(plaintext)); for (i = 0; i < 1000000; i++) { sm4_encrypt(&key, buf, buf); } if (memcmp(buf, ciphertext2, sizeof(ciphertext2)) != 0) { printf("sm4 encrypt 1000000 times not pass!\n"); err++; goto end; } printf("sm4 encrypt 1000000 times pass!\n"); /* test ctr32 */ if (!test_ctr32(0)) { printf("sm4 ctr32 not pass!\n"); err++; } else printf("sm4 ctr32 pass!\n"); /* test ede */ /* if (!test_ede()) { printf("sm4 ede not pass!\n"); err++; } else printf("sm4 ede pass!\n"); */ # ifdef SM4_AVX2 /* test ecb in avx2 */ if (!test_ecb(2)) { printf("sm4 ecb in avx2 not pass!\n"); err++; } else printf("sm4 ecb in avx2 pass!\n"); /* test ctr32 in avx2 */ if (!test_ctr32(2)) { printf("sm4 ctr32 in avx2 not pass!\n"); err++; } else printf("sm4 ctr32 in avx2 pass!\n"); # endif if (err == 0) printf("sm4 all test vectors pass!\n"); else end: printf("some test vector failed\n"); return err; }