search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Merge branch 'maint-0.2.9' into maint-0.3.3
[tor.git] / src / test / test_hs_ntor.c
blob8eee54d4b41f3d7f0202db5411c78e0558efd05a
1 /* Copyright (c) 2017, The Tor Project, Inc. */
2 /* See LICENSE for licensing information */
3
4 /**
5 * \file test_hs_ntor.c
6 * \brief Test hidden service ntor functionality.
7 */
8
9 #include "test.h"
10 #include "test_helpers.h"
11 #include "log_test_helpers.h"
12
13 #include "hs_ntor.h"
14
15 /* Test the HS ntor handshake. Simulate the sending of an encrypted INTRODUCE1
16 * cell, and verify the proper derivation of decryption keys on the other end.
17 * Then simulate the sending of an authenticated RENDEZVOUS1 cell and verify
18 * the proper verification on the other end. */
19 static void
20 test_hs_ntor(void *arg)
21 {
22 int retval;
23
24 uint8_t subcredential[DIGEST256_LEN];
25
26 ed25519_keypair_t service_intro_auth_keypair;
27 curve25519_keypair_t service_intro_enc_keypair;
28 curve25519_keypair_t service_ephemeral_rend_keypair;
29
30 curve25519_keypair_t client_ephemeral_enc_keypair;
31
32 hs_ntor_intro_cell_keys_t client_hs_ntor_intro_cell_keys;
33 hs_ntor_intro_cell_keys_t service_hs_ntor_intro_cell_keys;
34
35 hs_ntor_rend_cell_keys_t service_hs_ntor_rend_cell_keys;
36 hs_ntor_rend_cell_keys_t client_hs_ntor_rend_cell_keys;
37
38 (void) arg;
39
40 /* Generate fake data for this unittest */
41 {
42 /* Generate fake subcredential */
43 memset(subcredential, 'Z', DIGEST256_LEN);
44
45 /* service */
46 curve25519_keypair_generate(&service_intro_enc_keypair, 0);
47 ed25519_keypair_generate(&service_intro_auth_keypair, 0);
48 curve25519_keypair_generate(&service_ephemeral_rend_keypair, 0);
49 /* client */
50 curve25519_keypair_generate(&client_ephemeral_enc_keypair, 0);
51 }
52
53 /* Client: Simulate the sending of an encrypted INTRODUCE1 cell */
54 retval =
55 hs_ntor_client_get_introduce1_keys(&service_intro_auth_keypair.pubkey,
56 &service_intro_enc_keypair.pubkey,
57 &client_ephemeral_enc_keypair,
58 subcredential,
59 &client_hs_ntor_intro_cell_keys);
60 tt_int_op(retval, OP_EQ, 0);
61
62 /* Service: Simulate the decryption of the received INTRODUCE1 */
63 retval =
64 hs_ntor_service_get_introduce1_keys(&service_intro_auth_keypair.pubkey,
65 &service_intro_enc_keypair,
66 &client_ephemeral_enc_keypair.pubkey,
67 subcredential,
68 &service_hs_ntor_intro_cell_keys);
69 tt_int_op(retval, OP_EQ, 0);
70
71 /* Test that the INTRODUCE1 encryption/mac keys match! */
72 tt_mem_op(client_hs_ntor_intro_cell_keys.enc_key, OP_EQ,
73 service_hs_ntor_intro_cell_keys.enc_key,
74 CIPHER256_KEY_LEN);
75 tt_mem_op(client_hs_ntor_intro_cell_keys.mac_key, OP_EQ,
76 service_hs_ntor_intro_cell_keys.mac_key,
77 DIGEST256_LEN);
78
79 /* Service: Simulate creation of RENDEZVOUS1 key material. */
80 retval =
81 hs_ntor_service_get_rendezvous1_keys(&service_intro_auth_keypair.pubkey,
82 &service_intro_enc_keypair,
83 &service_ephemeral_rend_keypair,
84 &client_ephemeral_enc_keypair.pubkey,
85 &service_hs_ntor_rend_cell_keys);
86 tt_int_op(retval, OP_EQ, 0);
87
88 /* Client: Simulate the verification of a received RENDEZVOUS1 cell */
89 retval =
90 hs_ntor_client_get_rendezvous1_keys(&service_intro_auth_keypair.pubkey,
91 &client_ephemeral_enc_keypair,
92 &service_intro_enc_keypair.pubkey,
93 &service_ephemeral_rend_keypair.pubkey,
94 &client_hs_ntor_rend_cell_keys);
95 tt_int_op(retval, OP_EQ, 0);
96
97 /* Test that the RENDEZVOUS1 key material match! */
98 tt_mem_op(client_hs_ntor_rend_cell_keys.rend_cell_auth_mac, OP_EQ,
99 service_hs_ntor_rend_cell_keys.rend_cell_auth_mac,
100 DIGEST256_LEN);
101 tt_mem_op(client_hs_ntor_rend_cell_keys.ntor_key_seed, OP_EQ,
102 service_hs_ntor_rend_cell_keys.ntor_key_seed,
103 DIGEST256_LEN);
104 done:
105 ;
106 }
107
108 struct testcase_t hs_ntor_tests[] = {
109 { "hs_ntor", test_hs_ntor, TT_FORK,
110 NULL, NULL },
111
112 END_OF_TESTCASES
113 };
114
The Onion Router