Differential D7653 Diff 23999 src/secp256k1/src/valgrind_ctime_test.c

Changeset View

Standalone View

src/secp256k1/src/valgrind_ctime_test.c

/**********************************************************************		/**********************************************************************
* Copyright (c) 2020 Gregory Maxwell *		* Copyright (c) 2020 Gregory Maxwell *
* Distributed under the MIT software license, see the accompanying *		* Distributed under the MIT software license, see the accompanying *
* file COPYING or http://www.opensource.org/licenses/mit-license.php.*		* file COPYING or http://www.opensource.org/licenses/mit-license.php.*
**********************************************************************/		**********************************************************************/

#include <valgrind/memcheck.h>		#include <valgrind/memcheck.h>
#include "include/secp256k1.h"		#include "include/secp256k1.h"
#include "assumptions.h"		#include "assumptions.h"
#include "util.h"		#include "util.h"

#if ENABLE_MODULE_ECDH		#ifdef ENABLE_MODULE_ECDH
# include "include/secp256k1_ecdh.h"		# include "include/secp256k1_ecdh.h"
#endif		#endif

#if ENABLE_MODULE_RECOVERY		#ifdef ENABLE_MODULE_RECOVERY
# include "include/secp256k1_recovery.h"		# include "include/secp256k1_recovery.h"
#endif		#endif

#if ENABLE_MODULE_SCHNORR		#ifdef ENABLE_MODULE_SCHNORR
# include "include/secp256k1_schnorr.h"		# include "include/secp256k1_schnorr.h"
#endif		#endif

#if ENABLE_MODULE_EXTRAKEYS		#ifdef ENABLE_MODULE_EXTRAKEYS
# include "include/secp256k1_extrakeys.h"		# include "include/secp256k1_extrakeys.h"
#endif		#endif

#if ENABLE_MODULE_SCHNORRSIG		#ifdef ENABLE_MODULE_SCHNORRSIG
#include "include/secp256k1_schnorrsig.h"		#include "include/secp256k1_schnorrsig.h"
#endif		#endif

int main(void) {		int main(void) {
secp256k1_context* ctx;		secp256k1_context* ctx;
secp256k1_ecdsa_signature signature;		secp256k1_ecdsa_signature signature;
secp256k1_pubkey pubkey;		secp256k1_pubkey pubkey;
size_t siglen = 74;		size_t siglen = 74;
size_t outputlen = 33;		size_t outputlen = 33;
int i;		int i;
int ret;		int ret;
unsigned char msg[32];		unsigned char msg[32];
unsigned char key[32];		unsigned char key[32];
unsigned char sig[74];		unsigned char sig[74];
unsigned char spubkey[33];		unsigned char spubkey[33];
#if ENABLE_MODULE_RECOVERY		#ifdef ENABLE_MODULE_RECOVERY
secp256k1_ecdsa_recoverable_signature recoverable_signature;		secp256k1_ecdsa_recoverable_signature recoverable_signature;
int recid;		int recid;
#endif		#endif
#if ENABLE_MODULE_EXTRAKEYS		#ifdef ENABLE_MODULE_EXTRAKEYS
secp256k1_keypair keypair;		secp256k1_keypair keypair;
#endif		#endif

if (!RUNNING_ON_VALGRIND) {		if (!RUNNING_ON_VALGRIND) {
fprintf(stderr, "This test can only usefully be run inside valgrind.\n");		fprintf(stderr, "This test can only usefully be run inside valgrind.\n");
fprintf(stderr, "Usage: libtool --mode=execute valgrind ./valgrind_ctime_test\n");		fprintf(stderr, "Usage: libtool --mode=execute valgrind ./valgrind_ctime_test\n");
exit(1);		exit(1);
}		}
Show All 23 Lines	#endif
/* Test signing. */		/* Test signing. */
VALGRIND_MAKE_MEM_UNDEFINED(key, 32);		VALGRIND_MAKE_MEM_UNDEFINED(key, 32);
ret = secp256k1_ecdsa_sign(ctx, &signature, msg, key, NULL, NULL);		ret = secp256k1_ecdsa_sign(ctx, &signature, msg, key, NULL, NULL);
VALGRIND_MAKE_MEM_DEFINED(&signature, sizeof(secp256k1_ecdsa_signature));		VALGRIND_MAKE_MEM_DEFINED(&signature, sizeof(secp256k1_ecdsa_signature));
VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));		VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));
CHECK(ret);		CHECK(ret);
CHECK(secp256k1_ecdsa_signature_serialize_der(ctx, sig, &siglen, &signature));		CHECK(secp256k1_ecdsa_signature_serialize_der(ctx, sig, &siglen, &signature));

#if ENABLE_MODULE_ECDH		#ifdef ENABLE_MODULE_ECDH
/* Test ECDH. */		/* Test ECDH. */
VALGRIND_MAKE_MEM_UNDEFINED(key, 32);		VALGRIND_MAKE_MEM_UNDEFINED(key, 32);
ret = secp256k1_ecdh(ctx, msg, &pubkey, key, NULL, NULL);		ret = secp256k1_ecdh(ctx, msg, &pubkey, key, NULL, NULL);
VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));		VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));
CHECK(ret == 1);		CHECK(ret == 1);
#endif		#endif

#if ENABLE_MODULE_RECOVERY		#ifdef ENABLE_MODULE_RECOVERY
/* Test signing a recoverable signature. */		/* Test signing a recoverable signature. */
VALGRIND_MAKE_MEM_UNDEFINED(key, 32);		VALGRIND_MAKE_MEM_UNDEFINED(key, 32);
ret = secp256k1_ecdsa_sign_recoverable(ctx, &recoverable_signature, msg, key, NULL, NULL);		ret = secp256k1_ecdsa_sign_recoverable(ctx, &recoverable_signature, msg, key, NULL, NULL);
VALGRIND_MAKE_MEM_DEFINED(&recoverable_signature, sizeof(recoverable_signature));		VALGRIND_MAKE_MEM_DEFINED(&recoverable_signature, sizeof(recoverable_signature));
VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));		VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));
CHECK(ret);		CHECK(ret);
CHECK(secp256k1_ecdsa_recoverable_signature_serialize_compact(ctx, sig, &recid, &recoverable_signature));		CHECK(secp256k1_ecdsa_recoverable_signature_serialize_compact(ctx, sig, &recid, &recoverable_signature));
CHECK(recid >= 0 && recid <= 3);		CHECK(recid >= 0 && recid <= 3);
Show All 32 Lines	#endif

/* Test context randomisation. Do this last because it leaves the context tainted. */		/* Test context randomisation. Do this last because it leaves the context tainted. */
VALGRIND_MAKE_MEM_UNDEFINED(key, 32);		VALGRIND_MAKE_MEM_UNDEFINED(key, 32);
ret = secp256k1_context_randomize(ctx, key);		ret = secp256k1_context_randomize(ctx, key);
VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));		VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));
CHECK(ret);		CHECK(ret);

/* Test keypair_create and keypair_xonly_tweak_add. */		/* Test keypair_create and keypair_xonly_tweak_add. */
#if ENABLE_MODULE_EXTRAKEYS		#ifdef ENABLE_MODULE_EXTRAKEYS
VALGRIND_MAKE_MEM_UNDEFINED(key, 32);		VALGRIND_MAKE_MEM_UNDEFINED(key, 32);
ret = secp256k1_keypair_create(ctx, &keypair, key);		ret = secp256k1_keypair_create(ctx, &keypair, key);
VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));		VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));
CHECK(ret == 1);		CHECK(ret == 1);

/* The tweak is not treated as a secret in keypair_tweak_add */		/* The tweak is not treated as a secret in keypair_tweak_add */
VALGRIND_MAKE_MEM_DEFINED(msg, 32);		VALGRIND_MAKE_MEM_DEFINED(msg, 32);
ret = secp256k1_keypair_xonly_tweak_add(ctx, &keypair, msg);		ret = secp256k1_keypair_xonly_tweak_add(ctx, &keypair, msg);
VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));		VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));
CHECK(ret == 1);		CHECK(ret == 1);
#endif		#endif

#if ENABLE_MODULE_SCHNORRSIG		#ifdef ENABLE_MODULE_SCHNORRSIG
VALGRIND_MAKE_MEM_UNDEFINED(key, 32);		VALGRIND_MAKE_MEM_UNDEFINED(key, 32);
ret = secp256k1_keypair_create(ctx, &keypair, key);		ret = secp256k1_keypair_create(ctx, &keypair, key);
VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));		VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));
CHECK(ret == 1);		CHECK(ret == 1);
ret = secp256k1_schnorrsig_sign(ctx, sig, msg, &keypair, NULL, NULL);		ret = secp256k1_schnorrsig_sign(ctx, sig, msg, &keypair, NULL, NULL);
VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));		VALGRIND_MAKE_MEM_DEFINED(&ret, sizeof(ret));
CHECK(ret == 1);		CHECK(ret == 1);
#endif		#endif

secp256k1_context_destroy(ctx);		secp256k1_context_destroy(ctx);
return 0;		return 0;
}		}