-
Notifications
You must be signed in to change notification settings - Fork 8
/
Copy pathtest.js
184 lines (149 loc) · 6.91 KB
/
test.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
'use strict';
const test = require('tape');
const { McEliece } = require('./');
test('McEliece constructor', (t) => {
t.plan(1);
t.throws(() => new McEliece('foo'),
/No such implementation/,
'should throw if the algorithm does not exist');
});
test('McEliece.supportedAlgorithms', (t) => {
t.plan(4);
t.ok(Array.isArray(McEliece.supportedAlgorithms),
'supportedAlgorithms should be an array');
t.ok(McEliece.supportedAlgorithms.length >= 2,
'supportedAlgorithms should contain multiple algorithms');
t.throws(() => McEliece.supportedAlgorithms = [],
'supportedAlgorithms should not be writable');
t.throws(() => McEliece.supportedAlgorithms.shift(),
'supportedAlgorithms should not be modifiable');
});
for (const algorithm of McEliece.supportedAlgorithms) {
test(`properties of ${algorithm}`, (st) => {
const [, n, t] = /^mceliece(\d{4})(\d{2,3})f?$/.exec(algorithm);
const m = Math.ceil(Math.log2(n));
const k = n - m * t;
st.ok(k > 0 && Number.isSafeInteger(k), 'n, k, t should be valid');
const kem = new McEliece(algorithm);
st.equal(kem.keySize, 32, 'keySize should be 32 bytes');
st.equal(kem.encryptedKeySize, Math.ceil(m * t / 8),
'encryptedKeySize should be ceil(m * t / 8) bytes');
st.equal(kem.publicKeySize, m * t * Math.ceil(k / 8),
'publicKeySize should be m * t * ceil(k / 8) bytes');
st.equal(kem.privateKeySize,
32 + // delta
8 + // c
t * Math.ceil(m / 8) + // g
Math.ceil((2 * m - 1) * 2**(m - 4)) + // alpha_1, ..., alpha_n
Math.ceil(n / 8), // s
'privateKeySize should consist of delta, c, g, alpha, s');
st.end();
});
test(`synchronous ${algorithm}`, (t) => {
const kem = new McEliece(algorithm);
const { keySize, encryptedKeySize, publicKeySize, privateKeySize } = kem;
// Generate a key pair.
const { publicKey, privateKey } = kem.keypair();
t.ok(Buffer.isBuffer(publicKey),
'publicKey should be a Buffer');
t.equal(publicKey.length, publicKeySize,
`publicKey.length should be ${publicKeySize}`);
t.ok(Buffer.isBuffer(privateKey),
'privateKey should be a Buffer');
t.equal(privateKey.length, privateKeySize,
`privateKey.length should be ${privateKeySize}`);
// Encrypt and decrypt.
const { key, encryptedKey } = kem.generateKey(publicKey);
t.equal(key.length, keySize,
`key.length should be ${keySize}`);
t.equal(encryptedKey.length, encryptedKeySize,
`encryptedKey.length should be ${encryptedKeySize}`);
const receivedKey = kem.decryptKey(privateKey, encryptedKey);
t.deepEqual(receivedKey, key, 'decrypted key should match generated key');
t.end();
});
test(`asynchronous ${algorithm}`, (t) => {
const kem = new McEliece(algorithm);
const { keySize, encryptedKeySize, publicKeySize, privateKeySize } = kem;
// This variable will be set to true synchronously in order to detect whether
// the main thread was blocked.
let wasAsync = false;
kem.keypair((err, result) => {
t.ok(wasAsync, 'keypair with callback should be async');
t.error(err, 'keypair should not fail');
const { publicKey, privateKey } = result;
t.ok(Buffer.isBuffer(publicKey),
'publicKey should be a Buffer');
t.equal(publicKey.length, publicKeySize,
`publicKey.length should be ${publicKeySize}`);
t.ok(Buffer.isBuffer(privateKey),
'privateKey should be a Buffer');
t.equal(privateKey.length, privateKeySize,
`privateKey.length should be ${privateKeySize}`);
const { key, encryptedKey } = kem.generateKey(publicKey);
t.equal(key.length, keySize,
`key.length should be ${keySize}`);
t.equal(encryptedKey.length, encryptedKeySize,
`encryptedKey.length should be ${encryptedKeySize}`);
wasAsync = false;
kem.decryptKey(privateKey, encryptedKey, (err, receivedKey) => {
t.ok(wasAsync, 'decryptKey with callback should be async');
t.error(err, 'decryptKey should not fail');
t.deepEqual(receivedKey, key,
'decrypted key should match generated key');
t.end();
});
wasAsync = true;
});
wasAsync = true;
});
}
// Use static test vectors to make sure that the output is correct.
test('KAT test vectors', (t) => {
const vectors = require('./test_vectors');
t.plan(vectors.length);
for (const { algorithm, privateKey, encryptedKey, key } of vectors) {
const kem = new McEliece(algorithm);
const receivedKey = kem.decryptKey(Buffer.from(privateKey, 'base64'),
Buffer.from(encryptedKey, 'base64'));
t.equal(receivedKey.toString('base64'), key,
`KAT vector for ${algorithm} should produce ${key}`);
}
});
test('Argument validation', (t) => {
t.throws(() => new McEliece(), /number of arguments/,
'Constructor throws with no arguments');
for (const v of [undefined, {}, true, 123, 123n]) {
t.throws(() => new McEliece(v), /First argument must be a string/,
`Constructor throws if first argument of type ${typeof v}`);
}
t.throws(() => new McEliece('foo', 'bar'), /number of arguments/,
'Constructor throws if more than one argument');
const kem = new McEliece(McEliece.supportedAlgorithms[0]);
t.throws(() => kem.generateKey(), /number of arguments/,
'generateKey throws with no arguments');
for (const v of [undefined, {}, true, 123, 123n, 'foo']) {
t.throws(() => kem.generateKey(v), /First argument must be a TypedArray/,
`generateKey throws if first argument of type ${typeof v}`);
}
t.throws(() => kem.generateKey('foo', 'bar'), /number of arguments/,
'generateKey throws if more than one argument');
const fakePrivateKey = new Uint8Array(kem.privateKeySize);
const fakeEncryptedKey = new Uint8Array(kem.encryptedKeySize);
t.throws(() => kem.decryptKey(), /number of arguments/,
'decryptKey throws with no arguments');
t.throws(() => kem.decryptKey(fakePrivateKey), /number of arguments/,
'decryptKey throws with only one argument');
t.throws(() => kem.decryptKey(fakePrivateKey, fakeEncryptedKey, () => {}, 1),
/number of arguments/,
'decryptKey throws if more than three arguments');
for (const v of [undefined, {}, true, 123, 123n, 'foo']) {
t.throws(() => kem.decryptKey(v, fakeEncryptedKey),
/First argument must be a TypedArray/,
`decryptKey throws if first argument of type ${typeof v}`);
t.throws(() => kem.decryptKey(fakePrivateKey, v),
/Second argument must be a TypedArray/,
`decryptKey throws if second argument of type ${typeof v}`);
}
t.end();
});