doxygen/html/ecdh_2tests__impl_8h_source.html

 /**********************************************************************
  * Copyright (c) 2015 Andrew Poelstra                                 *
  * Distributed under the MIT software license, see the accompanying   *
  * file COPYING or http://www.opensource.org/licenses/mit-license.php.*
  **********************************************************************/

 #ifndef _SECP256K1_MODULE_ECDH_TESTS_
 #define _SECP256K1_MODULE_ECDH_TESTS_

 void test_ecdh_generator_basepoint(void) {
     unsigned char s_one[32] = { 0 };
     secp256k1_pubkey point[2];
     int i;

     s_one[31] = 1;
     /* Check against pubkey creation when the basepoint is the generator */
     for (i = 0; i < 100; ++i) {
         secp256k1_sha256_t sha;
         unsigned char s_b32[32];
         unsigned char output_ecdh[32];
         unsigned char output_ser[32];
         unsigned char point_ser[33];
         size_t point_ser_len = sizeof(point_ser);
         secp256k1_scalar s;

         random_scalar_order(&s);
         secp256k1_scalar_get_b32(s_b32, &s);

         /* compute using ECDH function */
         CHECK(secp256k1_ec_pubkey_create(ctx, &point[0], s_one) == 1);
         CHECK(secp256k1_ecdh(ctx, output_ecdh, &point[0], s_b32) == 1);
         /* compute "explicitly" */
         CHECK(secp256k1_ec_pubkey_create(ctx, &point[1], s_b32) == 1);
         CHECK(secp256k1_ec_pubkey_serialize(ctx, point_ser, &point_ser_len, &point[1], SECP256K1_EC_COMPRESSED) == 1);
         CHECK(point_ser_len == sizeof(point_ser));
         secp256k1_sha256_initialize(&sha);
         secp256k1_sha256_write(&sha, point_ser, point_ser_len);
         secp256k1_sha256_finalize(&sha, output_ser);
         /* compare */
         CHECK(memcmp(output_ecdh, output_ser, sizeof(output_ser)) == 0);
     }
 }

 void test_bad_scalar(void) {
     unsigned char s_zero[32] = { 0 };
     unsigned char s_overflow[32] = {
         0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
         0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xfe,
         0xba, 0xae, 0xdc, 0xe6, 0xaf, 0x48, 0xa0, 0x3b,
         0xbf, 0xd2, 0x5e, 0x8c, 0xd0, 0x36, 0x41, 0x41
     };
     unsigned char s_rand[32] = { 0 };
     unsigned char output[32];
     secp256k1_scalar rand;
     secp256k1_pubkey point;

     /* Create random point */
     random_scalar_order(&rand);
     secp256k1_scalar_get_b32(s_rand, &rand);
     CHECK(secp256k1_ec_pubkey_create(ctx, &point, s_rand) == 1);

     /* Try to multiply it by bad values */
     CHECK(secp256k1_ecdh(ctx, output, &point, s_zero) == 0);
     CHECK(secp256k1_ecdh(ctx, output, &point, s_overflow) == 0);
     /* ...and a good one */
     s_overflow[31] -= 1;
     CHECK(secp256k1_ecdh(ctx, output, &point, s_overflow) == 1);
 }

 void run_ecdh_tests(void) {
     test_ecdh_generator_basepoint();
     test_bad_scalar();
 }

 #endif
random_scalar_order
void random_scalar_order(secp256k1_scalar *num)
Definition: tests.c:123

secp256k1_ec_pubkey_serialize
SECP256K1_API int secp256k1_ec_pubkey_serialize(const secp256k1_context *ctx, unsigned char *output, size_t *outputlen, const secp256k1_pubkey *pubkey, unsigned int flags) SECP256K1_ARG_NONNULL(1) SECP256K1_ARG_NONNULL(2) SECP256K1_ARG_NONNULL(3) SECP256K1_ARG_NONNULL(4)
Definition: secp256k1.c:168

run_ecdh_tests
void run_ecdh_tests(void)
Definition: tests_impl.h:70

secp256k1_ec_pubkey_create
SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_ec_pubkey_create(const secp256k1_context *ctx, secp256k1_pubkey *pubkey, const unsigned char *seckey) SECP256K1_ARG_NONNULL(1) SECP256K1_ARG_NONNULL(2) SECP256K1_ARG_NONNULL(3)
Definition: secp256k1.c:409

SECP256K1_EC_COMPRESSED
#define SECP256K1_EC_COMPRESSED
Definition: secp256k1.h:165

secp256k1_sha256_finalize
static void secp256k1_sha256_finalize(secp256k1_sha256_t *hash, unsigned char *out32)

secp256k1_sha256_write
static void secp256k1_sha256_write(secp256k1_sha256_t *hash, const unsigned char *data, size_t size)

test_ecdh_generator_basepoint
void test_ecdh_generator_basepoint(void)
Definition: tests_impl.h:10

ctx
static secp256k1_context * ctx
Definition: tests.c:42

secp256k1_sha256_initialize
static void secp256k1_sha256_initialize(secp256k1_sha256_t *hash)

CHECK
#define CHECK(cond)
Definition: util.h:52

secp256k1_scalar
Definition: scalar_4x64.h:13

secp256k1_sha256_t
Definition: hash.h:13

secp256k1_scalar_get_b32
static void secp256k1_scalar_get_b32(unsigned char *bin, const secp256k1_scalar *a)

test_bad_scalar
void test_bad_scalar(void)
Definition: tests_impl.h:44

secp256k1_ecdh
SECP256K1_API SECP256K1_WARN_UNUSED_RESULT int secp256k1_ecdh(const secp256k1_context *ctx, unsigned char *result, const secp256k1_pubkey *pubkey, const unsigned char *privkey) SECP256K1_ARG_NONNULL(1) SECP256K1_ARG_NONNULL(2) SECP256K1_ARG_NONNULL(3) SECP256K1_ARG_NONNULL(4)
Definition: main_impl.h:13

secp256k1_pubkey
Definition: secp256k1.h:56