1 files changed, 368 insertions, 0 deletions
diff --git a/src/lib/libcrypto/ecdh/ecdhtest.c b/src/lib/libcrypto/ecdh/ecdhtest.c
new file mode 100644
index 0000000000..212a87efa4
--- /dev/null
+++ b/src/lib/libcrypto/ecdh/ecdhtest.c
@@ -0,0 +1,368 @@
+/* crypto/ecdh/ecdhtest.c */
+/* ====================================================================
+ * Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED.
+ *
+ * The Elliptic Curve Public-Key Crypto Library (ECC Code) included
+ * herein is developed by SUN MICROSYSTEMS, INC., and is contributed
+ * to the OpenSSL project.
+ *
+ * The ECC Code is licensed pursuant to the OpenSSL open source
+ * license provided below.
+ *
+ * The ECDH software is originally written by Douglas Stebila of
+ * Sun Microsystems Laboratories.
+ *
+ */
+/* ====================================================================
+ * Copyright (c) 1998-2003 The OpenSSL Project.  All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ *
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer. 
+ *
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in
+ *    the documentation and/or other materials provided with the
+ *    distribution.
+ *
+ * 3. All advertising materials mentioning features or use of this
+ *    software must display the following acknowledgment:
+ *    "This product includes software developed by the OpenSSL Project
+ *    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
+ *
+ * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
+ *    endorse or promote products derived from this software without
+ *    prior written permission. For written permission, please contact
+ *    openssl-core@openssl.org.
+ *
+ * 5. Products derived from this software may not be called "OpenSSL"
+ *    nor may "OpenSSL" appear in their names without prior written
+ *    permission of the OpenSSL Project.
+ *
+ * 6. Redistributions of any form whatsoever must retain the following
+ *    acknowledgment:
+ *    "This product includes software developed by the OpenSSL Project
+ *    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
+ * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
+ * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
+ * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+ * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
+ * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+ * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+ * OF THE POSSIBILITY OF SUCH DAMAGE.
+ * ====================================================================
+ *
+ * This product includes cryptographic software written by Eric Young
+ * (eay@cryptsoft.com).  This product includes software written by Tim
+ * Hudson (tjh@cryptsoft.com).
+ *
+ */
+#include <stdio.h>
+#include <stdlib.h>
+#include <string.h>
+#include "../e_os.h"
+#include <openssl/opensslconf.h>        /* for OPENSSL_NO_ECDH */
+#include <openssl/crypto.h>
+#include <openssl/bio.h>
+#include <openssl/bn.h>
+#include <openssl/objects.h>
+#include <openssl/rand.h>
+#include <openssl/sha.h>
+#include <openssl/err.h>
+#ifdef OPENSSL_NO_ECDH
+int main(int argc, char *argv[])
+{
+    printf("No ECDH support\n");
+    return(0);
+}
+#else
+#include <openssl/ec.h>
+#include <openssl/ecdh.h>
+#ifdef OPENSSL_SYS_WIN16
+#define MS_CALLBACK     _far _loadds
+#else
+#define MS_CALLBACK
+#endif
+#if 0
+static void MS_CALLBACK cb(int p, int n, void *arg);
+#endif
+static const char rnd_seed[] = "string to make the random number generator think it has entropy";
+static const int KDF1_SHA1_len = 20;
+static void *KDF1_SHA1(const void *in, size_t inlen, void *out, size_t *outlen)
+        {
+#ifndef OPENSSL_NO_SHA
+        if (*outlen < SHA_DIGEST_LENGTH)
+                return NULL;
+        else
+                *outlen = SHA_DIGEST_LENGTH;
+        return SHA1(in, inlen, out);
+#else
+        return NULL;
+#endif
+        }
+static int test_ecdh_curve(int nid, const char *text, BN_CTX *ctx, BIO *out)
+        {
+        EC_KEY *a=NULL;
+        EC_KEY *b=NULL;
+        BIGNUM *x_a=NULL, *y_a=NULL,
+               *x_b=NULL, *y_b=NULL;
+        char buf[12];
+        unsigned char *abuf=NULL,*bbuf=NULL;
+        int i,alen,blen,aout,bout,ret=0;
+        const EC_GROUP *group;
+        a = EC_KEY_new_by_curve_name(nid);
+        b = EC_KEY_new_by_curve_name(nid);
+        if (a == NULL || b == NULL)
+                goto err;
+        group = EC_KEY_get0_group(a);
+        if ((x_a=BN_new()) == NULL) goto err;
+        if ((y_a=BN_new()) == NULL) goto err;
+        if ((x_b=BN_new()) == NULL) goto err;
+        if ((y_b=BN_new()) == NULL) goto err;
+        BIO_puts(out,"Testing key generation with ");
+        BIO_puts(out,text);
+#ifdef NOISY
+        BIO_puts(out,"\n");
+#else
+        (void)BIO_flush(out);
+#endif
+        if (!EC_KEY_generate_key(a)) goto err;
+        
+        if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) == NID_X9_62_prime_field) 
+                {
+                if (!EC_POINT_get_affine_coordinates_GFp(group,
+                        EC_KEY_get0_public_key(a), x_a, y_a, ctx)) goto err;
+                }
+        else
+                {
+                if (!EC_POINT_get_affine_coordinates_GF2m(group,
+                        EC_KEY_get0_public_key(a), x_a, y_a, ctx)) goto err;
+                }
+#ifdef NOISY
+        BIO_puts(out,"  pri 1=");
+        BN_print(out,a->priv_key);
+        BIO_puts(out,"\n  pub 1=");
+        BN_print(out,x_a);
+        BIO_puts(out,",");
+        BN_print(out,y_a);
+        BIO_puts(out,"\n");
+#else
+        BIO_printf(out," .");
+        (void)BIO_flush(out);
+#endif
+        if (!EC_KEY_generate_key(b)) goto err;
+        if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) == NID_X9_62_prime_field) 
+                {
+                if (!EC_POINT_get_affine_coordinates_GFp(group, 
+                        EC_KEY_get0_public_key(b), x_b, y_b, ctx)) goto err;
+                }
+        else
+                {
+                if (!EC_POINT_get_affine_coordinates_GF2m(group, 
+                        EC_KEY_get0_public_key(b), x_b, y_b, ctx)) goto err;
+                }
+#ifdef NOISY
+        BIO_puts(out,"  pri 2=");
+        BN_print(out,b->priv_key);
+        BIO_puts(out,"\n  pub 2=");
+        BN_print(out,x_b);
+        BIO_puts(out,",");
+        BN_print(out,y_b);
+        BIO_puts(out,"\n");
+#else
+        BIO_printf(out,".");
+        (void)BIO_flush(out);
+#endif
+        alen=KDF1_SHA1_len;
+        abuf=(unsigned char *)OPENSSL_malloc(alen);
+        aout=ECDH_compute_key(abuf,alen,EC_KEY_get0_public_key(b),a,KDF1_SHA1);
+#ifdef NOISY
+        BIO_puts(out,"  key1 =");
+        for (i=0; i<aout; i++)
+                {
+                sprintf(buf,"%02X",abuf[i]);
+                BIO_puts(out,buf);
+                }
+        BIO_puts(out,"\n");
+#else
+        BIO_printf(out,".");
+        (void)BIO_flush(out);
+#endif
+        blen=KDF1_SHA1_len;
+        bbuf=(unsigned char *)OPENSSL_malloc(blen);
+        bout=ECDH_compute_key(bbuf,blen,EC_KEY_get0_public_key(a),b,KDF1_SHA1);
+#ifdef NOISY
+        BIO_puts(out,"  key2 =");
+        for (i=0; i<bout; i++)
+                {
+                sprintf(buf,"%02X",bbuf[i]);
+                BIO_puts(out,buf);
+                }
+        BIO_puts(out,"\n");
+#else
+        BIO_printf(out,".");
+        (void)BIO_flush(out);
+#endif
+        if ((aout < 4) || (bout != aout) || (memcmp(abuf,bbuf,aout) != 0))
+                {
+#ifndef NOISY
+                BIO_printf(out, " failed\n\n");
+                BIO_printf(out, "key a:\n");
+                BIO_printf(out, "private key: ");
+                BN_print(out, EC_KEY_get0_private_key(a));
+                BIO_printf(out, "\n");
+                BIO_printf(out, "public key (x,y): ");
+                BN_print(out, x_a);
+                BIO_printf(out, ",");
+                BN_print(out, y_a);
+                BIO_printf(out, "\nkey b:\n");
+                BIO_printf(out, "private key: ");
+                BN_print(out, EC_KEY_get0_private_key(b));
+                BIO_printf(out, "\n");
+                BIO_printf(out, "public key (x,y): ");
+                BN_print(out, x_b);
+                BIO_printf(out, ",");
+                BN_print(out, y_b);
+                BIO_printf(out, "\n");
+                BIO_printf(out, "generated key a: ");
+                for (i=0; i<bout; i++)
+                        {
+                        sprintf(buf, "%02X", bbuf[i]);
+                        BIO_puts(out, buf);
+                        }
+                BIO_printf(out, "\n");
+                BIO_printf(out, "generated key b: ");
+                for (i=0; i<aout; i++)
+                        {
+                        sprintf(buf, "%02X", abuf[i]);
+                        BIO_puts(out,buf);
+                        }
+                BIO_printf(out, "\n");
+#endif
+                fprintf(stderr,"Error in ECDH routines\n");
+                ret=0;
+                }
+        else
+                {
+#ifndef NOISY
+                BIO_printf(out, " ok\n");
+#endif
+                ret=1;
+                }
+err:
+        ERR_print_errors_fp(stderr);
+        if (abuf != NULL) OPENSSL_free(abuf);
+        if (bbuf != NULL) OPENSSL_free(bbuf);
+        if (x_a) BN_free(x_a);
+        if (y_a) BN_free(y_a);
+        if (x_b) BN_free(x_b);
+        if (y_b) BN_free(y_b);
+        if (b) EC_KEY_free(b);
+        if (a) EC_KEY_free(a);
+        return(ret);
+        }
+int main(int argc, char *argv[])
+        {
+        BN_CTX *ctx=NULL;
+        int ret=1;
+        BIO *out;
+        CRYPTO_malloc_debug_init();
+        CRYPTO_dbg_set_options(V_CRYPTO_MDEBUG_ALL);
+        CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON);
+#ifdef OPENSSL_SYS_WIN32
+        CRYPTO_malloc_init();
+#endif
+        RAND_seed(rnd_seed, sizeof rnd_seed);
+        out=BIO_new(BIO_s_file());
+        if (out == NULL) EXIT(1);
+        BIO_set_fp(out,stdout,BIO_NOCLOSE);
+        if ((ctx=BN_CTX_new()) == NULL) goto err;
+        /* NIST PRIME CURVES TESTS */
+        if (!test_ecdh_curve(NID_X9_62_prime192v1, "NIST Prime-Curve P-192", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_secp224r1, "NIST Prime-Curve P-224", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_X9_62_prime256v1, "NIST Prime-Curve P-256", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_secp384r1, "NIST Prime-Curve P-384", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_secp521r1, "NIST Prime-Curve P-521", ctx, out)) goto err;
+        /* NIST BINARY CURVES TESTS */
+        if (!test_ecdh_curve(NID_sect163k1, "NIST Binary-Curve K-163", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_sect163r2, "NIST Binary-Curve B-163", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_sect233k1, "NIST Binary-Curve K-233", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_sect233r1, "NIST Binary-Curve B-233", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_sect283k1, "NIST Binary-Curve K-283", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_sect283r1, "NIST Binary-Curve B-283", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_sect409k1, "NIST Binary-Curve K-409", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_sect409r1, "NIST Binary-Curve B-409", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_sect571k1, "NIST Binary-Curve K-571", ctx, out)) goto err;
+        if (!test_ecdh_curve(NID_sect571r1, "NIST Binary-Curve B-571", ctx, out)) goto err;
+        ret = 0;
+err:
+        ERR_print_errors_fp(stderr);
+        if (ctx) BN_CTX_free(ctx);
+        BIO_free(out);
+        CRYPTO_cleanup_all_ex_data();
+        ERR_remove_thread_state(NULL);
+        CRYPTO_mem_leaks_fp(stderr);
+        EXIT(ret);
+        return(ret);
+        }
+#if 0
+static void MS_CALLBACK cb(int p, int n, void *arg)
+        {
+        char c='*';
+        if (p == 0) c='.';
+        if (p == 1) c='+';
+        if (p == 2) c='*';
+        if (p == 3) c='\n';
+        BIO_write((BIO *)arg,&c,1);
+        (void)BIO_flush((BIO *)arg);
+#ifdef LINT
+        p=n;
+#endif
+        }
+#endif
+#endif

diff --git a/src/lib/libcrypto/ecdh/ecdhtest.c b/src/lib/libcrypto/ecdh/ecdhtest.c new file mode 100644 index 0000000000..212a87efa4 --- /dev/null +++ b/src/lib/libcrypto/ecdh/ecdhtest.c
@@ -0,0 +1,368 @@
	1	/* crypto/ecdh/ecdhtest.c */
	2	/* ====================================================================
	3	* Copyright 2002 Sun Microsystems, Inc. ALL RIGHTS RESERVED.
	4	*
	5	* The Elliptic Curve Public-Key Crypto Library (ECC Code) included
	6	* herein is developed by SUN MICROSYSTEMS, INC., and is contributed
	7	* to the OpenSSL project.
	8	*
	9	* The ECC Code is licensed pursuant to the OpenSSL open source
	10	* license provided below.
	11	*
	12	* The ECDH software is originally written by Douglas Stebila of
	13	* Sun Microsystems Laboratories.
	14	*
	15	*/
	16	/* ====================================================================
	17	* Copyright (c) 1998-2003 The OpenSSL Project. All rights reserved.
	18	*
	19	* Redistribution and use in source and binary forms, with or without
	20	* modification, are permitted provided that the following conditions
	21	* are met:
	22	*
	23	* 1. Redistributions of source code must retain the above copyright
	24	* notice, this list of conditions and the following disclaimer.
	25	*
	26	* 2. Redistributions in binary form must reproduce the above copyright
	27	* notice, this list of conditions and the following disclaimer in
	28	* the documentation and/or other materials provided with the
	29	* distribution.
	30	*
	31	* 3. All advertising materials mentioning features or use of this
	32	* software must display the following acknowledgment:
	33	* "This product includes software developed by the OpenSSL Project
	34	* for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
	35	*
	36	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
	37	* endorse or promote products derived from this software without
	38	* prior written permission. For written permission, please contact
	39	* openssl-core@openssl.org.
	40	*
	41	* 5. Products derived from this software may not be called "OpenSSL"
	42	* nor may "OpenSSL" appear in their names without prior written
	43	* permission of the OpenSSL Project.
	44	*
	45	* 6. Redistributions of any form whatsoever must retain the following
	46	* acknowledgment:
	47	* "This product includes software developed by the OpenSSL Project
	48	* for use in the OpenSSL Toolkit (http://www.openssl.org/)"
	49	*
	50	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
	51	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
	52	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
	53	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
	54	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
	55	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
	56	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
	57	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	58	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
	59	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
	60	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
	61	* OF THE POSSIBILITY OF SUCH DAMAGE.
	62	* ====================================================================
	63	*
	64	* This product includes cryptographic software written by Eric Young
	65	* (eay@cryptsoft.com). This product includes software written by Tim
	66	* Hudson (tjh@cryptsoft.com).
	67	*
	68	*/
	69
	70	#include <stdio.h>
	71	#include <stdlib.h>
	72	#include <string.h>
	73
	74	#include "../e_os.h"
	75
	76	#include <openssl/opensslconf.h> /* for OPENSSL_NO_ECDH */
	77	#include <openssl/crypto.h>
	78	#include <openssl/bio.h>
	79	#include <openssl/bn.h>
	80	#include <openssl/objects.h>
	81	#include <openssl/rand.h>
	82	#include <openssl/sha.h>
	83	#include <openssl/err.h>
	84
	85	#ifdef OPENSSL_NO_ECDH
	86	int main(int argc, char *argv[])
	87	{
	88	printf("No ECDH support\n");
	89	return(0);
	90	}
	91	#else
	92	#include <openssl/ec.h>
	93	#include <openssl/ecdh.h>
	94
	95	#ifdef OPENSSL_SYS_WIN16
	96	#define MS_CALLBACK _far _loadds
	97	#else
	98	#define MS_CALLBACK
	99	#endif
	100
	101	#if 0
	102	static void MS_CALLBACK cb(int p, int n, void *arg);
	103	#endif
	104
	105	static const char rnd_seed[] = "string to make the random number generator think it has entropy";
	106
	107
	108	static const int KDF1_SHA1_len = 20;
	109	static void KDF1_SHA1(const void in, size_t inlen, void out, size_t outlen)
	110	{
	111	#ifndef OPENSSL_NO_SHA
	112	if (*outlen < SHA_DIGEST_LENGTH)
	113	return NULL;
	114	else
	115	*outlen = SHA_DIGEST_LENGTH;
	116	return SHA1(in, inlen, out);
	117	#else
	118	return NULL;
	119	#endif
	120	}
	121
	122
	123	static int test_ecdh_curve(int nid, const char text, BN_CTX ctx, BIO *out)
	124	{
	125	EC_KEY *a=NULL;
	126	EC_KEY *b=NULL;
	127	BIGNUM x_a=NULL, y_a=NULL,
	128	x_b=NULL, y_b=NULL;
	129	char buf[12];
	130	unsigned char abuf=NULL,bbuf=NULL;
	131	int i,alen,blen,aout,bout,ret=0;
	132	const EC_GROUP *group;
	133
	134	a = EC_KEY_new_by_curve_name(nid);
	135	b = EC_KEY_new_by_curve_name(nid);
	136	if (a == NULL \|\| b == NULL)
	137	goto err;
	138
	139	group = EC_KEY_get0_group(a);
	140
	141	if ((x_a=BN_new()) == NULL) goto err;
	142	if ((y_a=BN_new()) == NULL) goto err;
	143	if ((x_b=BN_new()) == NULL) goto err;
	144	if ((y_b=BN_new()) == NULL) goto err;
	145
	146	BIO_puts(out,"Testing key generation with ");
	147	BIO_puts(out,text);
	148	#ifdef NOISY
	149	BIO_puts(out,"\n");
	150	#else
	151	(void)BIO_flush(out);
	152	#endif
	153
	154	if (!EC_KEY_generate_key(a)) goto err;
	155
	156	if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) == NID_X9_62_prime_field)
	157	{
	158	if (!EC_POINT_get_affine_coordinates_GFp(group,
	159	EC_KEY_get0_public_key(a), x_a, y_a, ctx)) goto err;
	160	}
	161	else
	162	{
	163	if (!EC_POINT_get_affine_coordinates_GF2m(group,
	164	EC_KEY_get0_public_key(a), x_a, y_a, ctx)) goto err;
	165	}
	166	#ifdef NOISY
	167	BIO_puts(out," pri 1=");
	168	BN_print(out,a->priv_key);
	169	BIO_puts(out,"\n pub 1=");
	170	BN_print(out,x_a);
	171	BIO_puts(out,",");
	172	BN_print(out,y_a);
	173	BIO_puts(out,"\n");
	174	#else
	175	BIO_printf(out," .");
	176	(void)BIO_flush(out);
	177	#endif
	178
	179	if (!EC_KEY_generate_key(b)) goto err;
	180
	181	if (EC_METHOD_get_field_type(EC_GROUP_method_of(group)) == NID_X9_62_prime_field)
	182	{
	183	if (!EC_POINT_get_affine_coordinates_GFp(group,
	184	EC_KEY_get0_public_key(b), x_b, y_b, ctx)) goto err;
	185	}
	186	else
	187	{
	188	if (!EC_POINT_get_affine_coordinates_GF2m(group,
	189	EC_KEY_get0_public_key(b), x_b, y_b, ctx)) goto err;
	190	}
	191
	192	#ifdef NOISY
	193	BIO_puts(out," pri 2=");
	194	BN_print(out,b->priv_key);
	195	BIO_puts(out,"\n pub 2=");
	196	BN_print(out,x_b);
	197	BIO_puts(out,",");
	198	BN_print(out,y_b);
	199	BIO_puts(out,"\n");
	200	#else
	201	BIO_printf(out,".");
	202	(void)BIO_flush(out);
	203	#endif
	204
	205	alen=KDF1_SHA1_len;
	206	abuf=(unsigned char *)OPENSSL_malloc(alen);
	207	aout=ECDH_compute_key(abuf,alen,EC_KEY_get0_public_key(b),a,KDF1_SHA1);
	208
	209	#ifdef NOISY
	210	BIO_puts(out," key1 =");
	211	for (i=0; i<aout; i++)
	212	{
	213	sprintf(buf,"%02X",abuf[i]);
	214	BIO_puts(out,buf);
	215	}
	216	BIO_puts(out,"\n");
	217	#else
	218	BIO_printf(out,".");
	219	(void)BIO_flush(out);
	220	#endif
	221
	222	blen=KDF1_SHA1_len;
	223	bbuf=(unsigned char *)OPENSSL_malloc(blen);
	224	bout=ECDH_compute_key(bbuf,blen,EC_KEY_get0_public_key(a),b,KDF1_SHA1);
	225
	226	#ifdef NOISY
	227	BIO_puts(out," key2 =");
	228	for (i=0; i<bout; i++)
	229	{
	230	sprintf(buf,"%02X",bbuf[i]);
	231	BIO_puts(out,buf);
	232	}
	233	BIO_puts(out,"\n");
	234	#else
	235	BIO_printf(out,".");
	236	(void)BIO_flush(out);
	237	#endif
	238
	239	if ((aout < 4) \|\| (bout != aout) \|\| (memcmp(abuf,bbuf,aout) != 0))
	240	{
	241	#ifndef NOISY
	242	BIO_printf(out, " failed\n\n");
	243	BIO_printf(out, "key a:\n");
	244	BIO_printf(out, "private key: ");
	245	BN_print(out, EC_KEY_get0_private_key(a));
	246	BIO_printf(out, "\n");
	247	BIO_printf(out, "public key (x,y): ");
	248	BN_print(out, x_a);
	249	BIO_printf(out, ",");
	250	BN_print(out, y_a);
	251	BIO_printf(out, "\nkey b:\n");
	252	BIO_printf(out, "private key: ");
	253	BN_print(out, EC_KEY_get0_private_key(b));
	254	BIO_printf(out, "\n");
	255	BIO_printf(out, "public key (x,y): ");
	256	BN_print(out, x_b);
	257	BIO_printf(out, ",");
	258	BN_print(out, y_b);
	259	BIO_printf(out, "\n");
	260	BIO_printf(out, "generated key a: ");
	261	for (i=0; i<bout; i++)
	262	{
	263	sprintf(buf, "%02X", bbuf[i]);
	264	BIO_puts(out, buf);
	265	}
	266	BIO_printf(out, "\n");
	267	BIO_printf(out, "generated key b: ");
	268	for (i=0; i<aout; i++)
	269	{
	270	sprintf(buf, "%02X", abuf[i]);
	271	BIO_puts(out,buf);
	272	}
	273	BIO_printf(out, "\n");
	274	#endif
	275	fprintf(stderr,"Error in ECDH routines\n");
	276	ret=0;
	277	}
	278	else
	279	{
	280	#ifndef NOISY
	281	BIO_printf(out, " ok\n");
	282	#endif
	283	ret=1;
	284	}
	285	err:
	286	ERR_print_errors_fp(stderr);
	287
	288	if (abuf != NULL) OPENSSL_free(abuf);
	289	if (bbuf != NULL) OPENSSL_free(bbuf);
	290	if (x_a) BN_free(x_a);
	291	if (y_a) BN_free(y_a);
	292	if (x_b) BN_free(x_b);
	293	if (y_b) BN_free(y_b);
	294	if (b) EC_KEY_free(b);
	295	if (a) EC_KEY_free(a);
	296	return(ret);
	297	}
	298
	299	int main(int argc, char *argv[])
	300	{
	301	BN_CTX *ctx=NULL;
	302	int ret=1;
	303	BIO *out;
	304
	305	CRYPTO_malloc_debug_init();
	306	CRYPTO_dbg_set_options(V_CRYPTO_MDEBUG_ALL);
	307	CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON);
	308
	309	#ifdef OPENSSL_SYS_WIN32
	310	CRYPTO_malloc_init();
	311	#endif
	312
	313	RAND_seed(rnd_seed, sizeof rnd_seed);
	314
	315	out=BIO_new(BIO_s_file());
	316	if (out == NULL) EXIT(1);
	317	BIO_set_fp(out,stdout,BIO_NOCLOSE);
	318
	319	if ((ctx=BN_CTX_new()) == NULL) goto err;
	320
	321	/* NIST PRIME CURVES TESTS */
	322	if (!test_ecdh_curve(NID_X9_62_prime192v1, "NIST Prime-Curve P-192", ctx, out)) goto err;
	323	if (!test_ecdh_curve(NID_secp224r1, "NIST Prime-Curve P-224", ctx, out)) goto err;
	324	if (!test_ecdh_curve(NID_X9_62_prime256v1, "NIST Prime-Curve P-256", ctx, out)) goto err;
	325	if (!test_ecdh_curve(NID_secp384r1, "NIST Prime-Curve P-384", ctx, out)) goto err;
	326	if (!test_ecdh_curve(NID_secp521r1, "NIST Prime-Curve P-521", ctx, out)) goto err;
	327	/* NIST BINARY CURVES TESTS */
	328	if (!test_ecdh_curve(NID_sect163k1, "NIST Binary-Curve K-163", ctx, out)) goto err;
	329	if (!test_ecdh_curve(NID_sect163r2, "NIST Binary-Curve B-163", ctx, out)) goto err;
	330	if (!test_ecdh_curve(NID_sect233k1, "NIST Binary-Curve K-233", ctx, out)) goto err;
	331	if (!test_ecdh_curve(NID_sect233r1, "NIST Binary-Curve B-233", ctx, out)) goto err;
	332	if (!test_ecdh_curve(NID_sect283k1, "NIST Binary-Curve K-283", ctx, out)) goto err;
	333	if (!test_ecdh_curve(NID_sect283r1, "NIST Binary-Curve B-283", ctx, out)) goto err;
	334	if (!test_ecdh_curve(NID_sect409k1, "NIST Binary-Curve K-409", ctx, out)) goto err;
	335	if (!test_ecdh_curve(NID_sect409r1, "NIST Binary-Curve B-409", ctx, out)) goto err;
	336	if (!test_ecdh_curve(NID_sect571k1, "NIST Binary-Curve K-571", ctx, out)) goto err;
	337	if (!test_ecdh_curve(NID_sect571r1, "NIST Binary-Curve B-571", ctx, out)) goto err;
	338
	339	ret = 0;
	340
	341	err:
	342	ERR_print_errors_fp(stderr);
	343	if (ctx) BN_CTX_free(ctx);
	344	BIO_free(out);
	345	CRYPTO_cleanup_all_ex_data();
	346	ERR_remove_thread_state(NULL);
	347	CRYPTO_mem_leaks_fp(stderr);
	348	EXIT(ret);
	349	return(ret);
	350	}
	351
	352	#if 0
	353	static void MS_CALLBACK cb(int p, int n, void *arg)
	354	{
	355	char c='*';
	356
	357	if (p == 0) c='.';
	358	if (p == 1) c='+';
	359	if (p == 2) c='*';
	360	if (p == 3) c='\n';
	361	BIO_write((BIO *)arg,&c,1);
	362	(void)BIO_flush((BIO *)arg);
	363	#ifdef LINT
	364	p=n;
	365	#endif
	366	}
	367	#endif
	368	#endif