1 files changed, 128 insertions, 0 deletions
diff --git a/src/regress/lib/libcrypto/mlkem/mlkem1024_decap_tests.c b/src/regress/lib/libcrypto/mlkem/mlkem1024_decap_tests.c
new file mode 100644
index 0000000000..816bc154ab
--- /dev/null
+++ b/src/regress/lib/libcrypto/mlkem/mlkem1024_decap_tests.c
@@ -0,0 +1,128 @@
+/* Copyright (c) 2024, Google Inc.
+ * Copyright (c) 2024, Bob Beck <beck@obtuse.com>
+ *
+ * Permission to use, copy, modify, and/or distribute this software for any
+ * purpose with or without fee is hereby granted, provided that the above
+ * copyright notice and this permission notice appear in all copies.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+ * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
+ * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
+ * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+ * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
+ * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
+ * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */
+#include <err.h>
+#include <stdlib.h>
+#include <stdio.h>
+#include <string.h>
+#include <openssl/evp.h>
+#include "bytestring.h"
+#include "mlkem.h"
+#include "mlkem_internal.h"
+#include "sha3_internal.h"
+#include "mlkem_tests_util.h"
+static void
+MlkemDecapFileTest(CBS *c, CBS *k, CBS *dk, int should_fail)
+{
+        uint8_t shared_secret[MLKEM_SHARED_SECRET_BYTES];
+        struct MLKEM1024_private_key priv;
+        int parse_ok, decap_ok;
+        parse_ok = MLKEM1024_parse_private_key(&priv, dk);
+        if (!parse_ok) {
+                TEST(!should_fail, "parse_private_key");
+                return;
+        }
+        decap_ok = MLKEM1024_decap(shared_secret, CBS_data(c), CBS_len(c),
+            &priv);
+        if (!decap_ok) {
+                TEST(!should_fail, "decap");
+                return;
+        }
+        TEST_DATAEQ(shared_secret, CBS_data(k),
+            MLKEM_SHARED_SECRET_BYTES, "shared_secret");
+}
+#define S_START 0
+#define S_COMMENT 1
+#define S_PRIVATE_KEY 2
+#define S_CIPHERTEXT 3
+#define S_RESULT 4
+#define S_SHARED_SECRET  5
+int
+main(int argc, char **argv)
+{
+        CBS ciphertext, shared_secret, private_key;
+        const uint8_t *p = NULL;
+        int should_fail = 0;
+        char *buf;
+        FILE *fp;
+        int state;
+        fprintf(stderr, "Testing decap test vectors in %s\n", argv[1]);
+        TEST((fp = fopen(argv[1], "r")) == NULL, "can't open test file");
+        MALLOC(buf, 16*1024);
+        state = S_COMMENT;
+        test_number = 1;
+        while (fgets(buf, 16*1024, fp) != NULL) {
+                switch (state) {
+                case S_START:
+                        if (strcmp(buf, "\n") != 0)
+                                break;
+                        state = S_COMMENT;
+                        break;
+                case S_COMMENT:
+                        if (strncmp(buf, "#", 1) != 0)
+                                break;
+                        state = S_PRIVATE_KEY;
+                        break;
+                case S_PRIVATE_KEY:
+                        if (strncmp(buf, "private_key: ",
+                            strlen("private_key: ")) != 0)
+                                break;
+                        grab_data(&private_key, buf, strlen("private_key: "));
+                        p = CBS_data(&private_key);
+                        state = S_CIPHERTEXT;
+                        break;
+                case S_CIPHERTEXT:
+                        if (strncmp(buf, "ciphertext: ",
+                            strlen("ciphertext: ")) != 0)
+                                break;
+                        grab_data(&ciphertext, buf, strlen("ciphertext: "));
+                        state = S_RESULT;
+                        break;
+                case S_RESULT:
+                        if (strncmp(buf, "result: pass",
+                            strlen("result: pass")) != 0)
+                                should_fail = 1;
+                        else
+                                should_fail = 0;
+                        state = S_SHARED_SECRET;
+                        break;
+                case S_SHARED_SECRET:
+                        if (strncmp(buf, "shared_secret: ",
+                            strlen("shared_secret: ")) != 0)
+                                break;
+                        grab_data(&shared_secret, buf,
+                            strlen("shared_secret: "));
+                        MlkemDecapFileTest(&ciphertext, &shared_secret,
+                            &private_key, should_fail);
+                        free((void *)CBS_data(&ciphertext));
+                        free((void *)CBS_data(&shared_secret));
+                        free((void *)p);
+                        test_number++;
+                        state = S_START;
+                        break;
+                }
+        }
+        free(buf);
+        exit(failure);
+}

diff --git a/src/regress/lib/libcrypto/mlkem/mlkem1024_decap_tests.c b/src/regress/lib/libcrypto/mlkem/mlkem1024_decap_tests.c new file mode 100644 index 0000000000..816bc154ab --- /dev/null +++ b/src/regress/lib/libcrypto/mlkem/mlkem1024_decap_tests.c
@@ -0,0 +1,128 @@
	1	/* Copyright (c) 2024, Google Inc.
	2	* Copyright (c) 2024, Bob Beck <beck@obtuse.com>
	3	*
	4	* Permission to use, copy, modify, and/or distribute this software for any
	5	* purpose with or without fee is hereby granted, provided that the above
	6	* copyright notice and this permission notice appear in all copies.
	7	*
	8	* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
	9	* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
	10	* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
	11	* SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
	12	* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
	13	* OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
	14	* CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */
	15
	16	#include <err.h>
	17	#include <stdlib.h>
	18	#include <stdio.h>
	19	#include <string.h>
	20
	21	#include <openssl/evp.h>
	22
	23	#include "bytestring.h"
	24	#include "mlkem.h"
	25	#include "mlkem_internal.h"
	26	#include "sha3_internal.h"
	27	#include "mlkem_tests_util.h"
	28
	29	static void
	30	MlkemDecapFileTest(CBS c, CBS k, CBS *dk, int should_fail)
	31	{
	32	uint8_t shared_secret[MLKEM_SHARED_SECRET_BYTES];
	33	struct MLKEM1024_private_key priv;
	34	int parse_ok, decap_ok;
	35
	36	parse_ok = MLKEM1024_parse_private_key(&priv, dk);
	37	if (!parse_ok) {
	38	TEST(!should_fail, "parse_private_key");
	39	return;
	40	}
	41	decap_ok = MLKEM1024_decap(shared_secret, CBS_data(c), CBS_len(c),
	42	&priv);
	43	if (!decap_ok) {
	44	TEST(!should_fail, "decap");
	45	return;
	46	}
	47	TEST_DATAEQ(shared_secret, CBS_data(k),
	48	MLKEM_SHARED_SECRET_BYTES, "shared_secret");
	49	}
	50
	51	#define S_START 0
	52	#define S_COMMENT 1
	53	#define S_PRIVATE_KEY 2
	54	#define S_CIPHERTEXT 3
	55	#define S_RESULT 4
	56	#define S_SHARED_SECRET 5
	57
	58	int
	59	main(int argc, char **argv)
	60	{
	61	CBS ciphertext, shared_secret, private_key;
	62	const uint8_t *p = NULL;
	63	int should_fail = 0;
	64	char *buf;
	65	FILE *fp;
	66	int state;
	67
	68	fprintf(stderr, "Testing decap test vectors in %s\n", argv[1]);
	69	TEST((fp = fopen(argv[1], "r")) == NULL, "can't open test file");
	70	MALLOC(buf, 16*1024);
	71	state = S_COMMENT;
	72	test_number = 1;
	73	while (fgets(buf, 16*1024, fp) != NULL) {
	74	switch (state) {
	75	case S_START:
	76	if (strcmp(buf, "\n") != 0)
	77	break;
	78	state = S_COMMENT;
	79	break;
	80	case S_COMMENT:
	81	if (strncmp(buf, "#", 1) != 0)
	82	break;
	83	state = S_PRIVATE_KEY;
	84	break;
	85	case S_PRIVATE_KEY:
	86	if (strncmp(buf, "private_key: ",
	87	strlen("private_key: ")) != 0)
	88	break;
	89	grab_data(&private_key, buf, strlen("private_key: "));
	90	p = CBS_data(&private_key);
	91	state = S_CIPHERTEXT;
	92	break;
	93	case S_CIPHERTEXT:
	94	if (strncmp(buf, "ciphertext: ",
	95	strlen("ciphertext: ")) != 0)
	96	break;
	97	grab_data(&ciphertext, buf, strlen("ciphertext: "));
	98	state = S_RESULT;
	99	break;
	100	case S_RESULT:
	101	if (strncmp(buf, "result: pass",
	102	strlen("result: pass")) != 0)
	103	should_fail = 1;
	104	else
	105	should_fail = 0;
	106	state = S_SHARED_SECRET;
	107	break;
	108	case S_SHARED_SECRET:
	109	if (strncmp(buf, "shared_secret: ",
	110	strlen("shared_secret: ")) != 0)
	111	break;
	112	grab_data(&shared_secret, buf,
	113	strlen("shared_secret: "));
	114	MlkemDecapFileTest(&ciphertext, &shared_secret,
	115	&private_key, should_fail);
	116	free((void *)CBS_data(&ciphertext));
	117	free((void *)CBS_data(&shared_secret));
	118	free((void *)p);
	119
	120	test_number++;
	121	state = S_START;
	122	break;
	123	}
	124	}
	125
	126	free(buf);
	127	exit(failure);
	128	}