init: v1.0.0

2026-05-27 23:03:00 +08:00
commit 8d97f750eb
466 changed files with 80067 additions and 0 deletions
@@ -0,0 +1,433 @@
+package sm4
+
+import (
+	"bytes"
+	"crypto/cipher"
+	"crypto/rand"
+	"encoding/hex"
+	"fmt"
+	"testing"
+	"time"
+
+	"github.com/stretchr/testify/assert"
+)
+
+func TestSm4RoundKey(t *testing.T) {
+	key, _ := hex.DecodeString("0123456789abcdeffedcba9876543210")
+	enckey := make([]uint32, 32)
+	deckey := make([]uint32, 32)
+	expandKeyGo(key, enckey, deckey)
+	for i := 0; i < 32; i++ {
+		fmt.Printf("0x%02x, ", (enckey[i]>>24)&0xff)
+		fmt.Printf("0x%02x, ", (enckey[i]>>16)&0xff)
+		fmt.Printf("0x%02x, ", (enckey[i]>>8)&0xff)
+		fmt.Printf("0x%02x, ", enckey[i]&0xff)
+	}
+
+}
+
+func TestSM4StdBlock(t *testing.T) {
+	key, _ := hex.DecodeString("0123456789abcdeffedcba9876543210")
+	msg, _ := hex.DecodeString("0123456789abcdeffedcba9876543210")
+	msg, _ = ECBEncrypt(msg, key, msg)
+	enckey := make([]uint32, 32)
+	deckey := make([]uint32, 32)
+	expandKeyGo(key, enckey, deckey)
+	for i := 0; i < 32; i++ {
+		fmt.Printf("0x%02x, ", enckey[i])
+	}
+
+	waned, _ := hex.DecodeString("681edf34d206965e86b3e94f536e4246")
+	assert.Equal(t, msg, waned)
+}
+
+func TestSm4Block(t *testing.T) {
+	key, _ := hex.DecodeString("0123456789abcdeffedcba9876543210")
+
+	// test 4 blocks for aesni
+	msg, _ := hex.DecodeString("0123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba9876543210")
+	times := 1000000
+	for i := 0; i < times; i++ {
+		msg, _ = ECBEncrypt(msg, key, msg)
+	}
+
+	if hex.EncodeToString(msg) != "595298c7c6fd271f0402f804c33d3f66595298c7c6fd271f0402f804c33d3f66595298c7c6fd271f0402f804c33d3f66595298c7c6fd271f0402f804c33d3f66" {
+		t.Log("SM4 Encrypt test Failed!")
+		t.Log(hex.EncodeToString(msg))
+		t.Fail()
+	}
+
+	for i := 0; i < times; i++ {
+		msg, _ = ECBDecrypt(msg, key, msg)
+	}
+
+	if hex.EncodeToString(msg) != "0123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba9876543210" {
+		t.Log("SM4 Decrypt test Failed!")
+		t.Log(hex.EncodeToString(msg))
+		t.Fail()
+	}
+}
+
+func BenchmarkSM4(b *testing.B) {
+	key, _ := hex.DecodeString("0123456789abcdeffedcba9876543210")
+	msg := make([]byte, 1024*1024)
+	rand.Read(msg)
+	b.ReportAllocs()
+	b.SetBytes(int64(len(msg)))
+	b.ResetTimer()
+	for i := 0; i < b.N; i++ {
+		msg, _ = ECBEncrypt(msg, key, msg)
+	}
+
+}
+
+func TestECBSpeed(t *testing.T) {
+	key := []byte("0123456789abcdef")
+	data := make([]byte, 10*1024*1024) // 10 MB data
+	rand.Read(data)
+
+	start := time.Now()
+	times := 100
+	for i := 0; i < times; i++ {
+		if _, err := EncryptECB(data, key, data); err != nil {
+			panic(err)
+		}
+	}
+	end := time.Now()
+	elapsed := end.Sub(start)
+	t.Log("SM4 Encrypt: ", int(float64(times*len(data))/float64(1024*1024)/elapsed.Seconds()), "MBps")
+
+	start = time.Now()
+	for i := 0; i < times; i++ {
+		if _, err := DecryptECB(data, key, data); err != nil {
+			panic(err)
+		}
+	}
+	end = time.Now()
+	elapsed = end.Sub(start)
+	t.Log("SM4 Decrypt: ", int(float64(times*len(data))/float64(1024*1024)/elapsed.Seconds()), "MBps")
+}
+
+func TestReportAeadSpeed(t *testing.T) {
+	key := []byte("0123456789abcdef")
+	data := make([]byte, 10*1024)
+	ad := make([]byte, 10*1024)
+	rand.Read(data)
+	rand.Read(ad)
+
+	b, _ := NewCipher(key)
+	aead, _ := cipher.NewGCM(b)
+
+	dst := make([]byte, len(data)+aead.NonceSize())
+	nonce := make([]byte, 12)
+
+	start := time.Now()
+	times := 10000
+	for i := 0; i < times; i++ {
+		dst = aead.Seal(dst[:0], nonce, data, ad)
+	}
+	end := time.Now()
+	elapsed := end.Sub(start)
+	t.Log("SM4 AEAD Seal: ", int(float64(times*len(data))/float64(1024*1024)/elapsed.Seconds()), "MBps")
+
+	start = time.Now()
+	for i := 0; i < times; i++ {
+		if _, err := aead.Open(data[:0], nonce, dst, ad); err != nil {
+			panic(err)
+		}
+	}
+	end = time.Now()
+	elapsed = end.Sub(start)
+	t.Log("SM4 AEAD Open: ", int(float64(times*len(data))/float64(1024*1024)/elapsed.Seconds()), "MBps")
+}
+
+/////////////////////////////////////////////
+//cbc test
+
+type CBCKeyTest struct {
+	key     []byte
+	iv      []byte
+	data    []byte
+	encData []byte
+}
+
+var keyTests = []CBCKeyTest{
+	{
+		[]byte{
+			0xE5, 0x26, 0xCD, 0x8D, 0xFC, 0x4E, 0x3B, 0xCA, 0xB0, 0xBA, 0x15, 0xF3, 0xC8, 0x22, 0xB6, 0xAE,
+		},
+		[]byte{
+			0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+		},
+		[]byte{
+			0xBB, 0x5D, 0xCE, 0x7C, 0x7E, 0x45, 0x3B, 0xFA, 0xC8, 0x4D, 0x67, 0x75, 0x81, 0xEE, 0xEC, 0x16,
+			0xED, 0xA7, 0xE1, 0xAD, 0x4F, 0x94, 0x82, 0x82, 0x80, 0xDF, 0x1F, 0xC7, 0xA8, 0x9B, 0xB2, 0xBE,
+		},
+		[]byte{
+			0x63, 0x9f, 0x4c, 0x4e, 0x52, 0x4a, 0x8c, 0x90, 0xfb, 0xd6, 0xc6, 0xf4, 0x2f, 0x18, 0xf3, 0xb5,
+			0x28, 0x48, 0xae, 0xc0, 0xfc, 0xc0, 0x1b, 0x03, 0xff, 0x04, 0xc5, 0x50, 0x3c, 0x9a, 0xe6, 0x11,
+		},
+	},
+	{
+		[]byte{
+			0x5F, 0x02, 0xD7, 0xE5, 0x47, 0x74, 0xE4, 0xE9, 0x43, 0x25, 0x68, 0xA3, 0x2F, 0x7E, 0x26, 0xAB,
+		},
+		[]byte{
+			0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+		},
+		[]byte{
+			0x3D, 0xAC, 0x76, 0x3E, 0x46, 0xB6, 0xF0, 0x49, 0x77, 0x4F, 0xA2, 0x2F, 0x8D, 0x51, 0xB4, 0xF4,
+			0xD0, 0x96, 0xA7, 0xB5, 0x45, 0x05, 0xF6, 0xB3, 0x8F, 0x94, 0x55, 0xB1, 0xA4, 0x2E, 0x5D, 0xD6,
+		},
+		[]byte{
+			0x4e, 0x3a, 0x19, 0x0d, 0x97, 0x10, 0xee, 0x4e, 0xcf, 0x87, 0xfa, 0xa5, 0xc3, 0x3b, 0x4b, 0x24,
+			0xf3, 0x95, 0x84, 0xbb, 0x6e, 0xb2, 0x3a, 0x74, 0x26, 0xe9, 0x87, 0x65, 0x08, 0x58, 0xc6, 0x8d,
+		},
+	},
+	{
+		[]byte{
+			0x0D, 0x55, 0x89, 0x44, 0x29, 0xB7, 0xDC, 0xA3, 0x8B, 0xE0, 0x2E, 0x98, 0x29, 0x63, 0xA5, 0x75,
+		},
+		[]byte{
+			0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+		},
+		[]byte{
+			0xB6, 0x97, 0x93, 0x80, 0x63, 0x68, 0xD2, 0x36, 0xF6, 0xD3, 0xD3, 0x5D, 0xBF, 0x5D, 0xAD, 0xA3,
+			0xBF, 0xC0, 0x9F, 0x53, 0xC3, 0xAF, 0xF8, 0x48, 0x7E, 0xA4, 0xD9, 0x56, 0x60, 0x2A, 0xBA, 0xE7,
+		},
+		[]byte{
+			0xaa, 0xeb, 0xf0, 0xec, 0xdf, 0x98, 0x72, 0xef, 0xde, 0x14, 0xc2, 0xe9, 0x06, 0x0d, 0x65, 0x06,
+			0xba, 0x5b, 0x22, 0x1a, 0x7a, 0x8b, 0xf0, 0xe8, 0x52, 0x43, 0x78, 0xcc, 0xed, 0x71, 0x70, 0xd5,
+		},
+	},
+	{
+		[]byte{
+			0x72, 0x31, 0x6E, 0x03, 0x4A, 0xDB, 0xEF, 0x7C, 0xC9, 0xD1, 0x7A, 0xA1, 0x1F, 0x25, 0x99, 0x09,
+		},
+		[]byte{
+			0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+		},
+		[]byte{
+			0xE4, 0xB4, 0x69, 0x8B, 0xDE, 0x75, 0x7D, 0xFF, 0xD8, 0xC6, 0xE6, 0x7F, 0xD7, 0x67, 0xBE, 0x62,
+			0x08, 0xEC, 0xB7, 0xFC, 0x92, 0xFB, 0x77, 0xD0, 0x79, 0xC2, 0x69, 0xC5, 0x7E, 0x0A, 0xB6, 0x2B,
+		},
+		[]byte{
+			0x90, 0x2c, 0x7c, 0x36, 0xfc, 0x6f, 0xc1, 0x3d, 0x09, 0x7d, 0xa5, 0xa8, 0x9b, 0x74, 0xc7, 0x05,
+			0xf6, 0x3b, 0xc1, 0x15, 0x4b, 0x69, 0xad, 0xdb, 0x41, 0x8a, 0xf9, 0x94, 0xde, 0xed, 0x34, 0x3a,
+		},
+	},
+	{
+		[]byte{
+			0xAC, 0xE8, 0x7E, 0x4D, 0x00, 0xD0, 0x55, 0xB5, 0x24, 0xB8, 0x5D, 0xAA, 0x23, 0xEE, 0x29, 0x18,
+		},
+		[]byte{
+			0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+		},
+		[]byte{
+			0x03, 0x7B, 0x89, 0x8B, 0x3F, 0x53, 0x55, 0x57, 0x64, 0x3B, 0x88, 0x3E, 0x63, 0xF4, 0x17, 0x77,
+			0xBA, 0x4D, 0xE7, 0xEF, 0xDE, 0xCB, 0x83, 0x0A, 0xC3, 0x77, 0x2A, 0x3D, 0x3B, 0x64, 0xBE, 0x92,
+		},
+		[]byte{
+			0x36, 0x18, 0x2e, 0xc4, 0xe2, 0x73, 0x14, 0xd7, 0xb7, 0xb2, 0xfa, 0x5c, 0x0b, 0xa6, 0x83, 0xa3,
+			0x2d, 0xb4, 0xe9, 0x81, 0x09, 0x5c, 0xee, 0xd5, 0xe0, 0x3c, 0xdd, 0xdf, 0x49, 0x28, 0x0f, 0x23,
+		},
+	},
+}
+
+func TestSm4Cbc(t *testing.T) {
+	for _, test := range keyTests {
+		output := make([]byte, len(test.data))
+		iv := make([]byte, 16)
+		copy(iv, test.iv)
+		output, _ = CBCEncrypt(output, iv, test.key, test.data)
+		// t.Log(test.iv)
+		// t.Log(iv)
+		if hex.EncodeToString(output) != hex.EncodeToString(test.encData) {
+			t.Log("SM4 CBC Test Failed")
+			t.Fail()
+		}
+		copy(iv, test.iv)
+		output, _ = CBCDecrypt(output, iv, test.key, output)
+		if hex.EncodeToString(output) != hex.EncodeToString(test.data) {
+			t.Log("SM4 CBC Test Failed")
+			t.Fail()
+		}
+	}
+}
+
+////////////////////////////////////////////
+// ofb
+
+func TestSm4OFB(t *testing.T) {
+	var key = []byte{
+		0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef,
+		0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10,
+	}
+	iv := make([]byte, len(key))
+	var msg = []byte{
+		0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef,
+		0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10,
+		0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef,
+		0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10,
+		0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef,
+		0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10,
+		0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef,
+		0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10,
+	}
+
+	encrypted := make([]byte, len(msg))
+	decrypted := make([]byte, len(msg))
+	encrypted, _ = OFBEncrypt(encrypted, iv, key, msg)
+
+	// if hex.EncodeToString(encrypted) != "681edf34d206965e86b3e94f536e4246681edf34d206965e86b3e94f536e4246681edf34d206965e86b3e94f536e4246681edf34d206965e86b3e94f536e4246" {
+	// t.Log(hex.EncodeToString(encrypted))
+	// 	t.Fail()
+	// }
+
+	decrypted, _ = OFBDecrypt(decrypted, iv, key, encrypted)
+
+	// if hex.EncodeToString(decrypted) != "0123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba9876543210" {
+	// t.Log(hex.EncodeToString(decrypted))
+	// 	t.Fail()
+	// }
+
+	if hex.EncodeToString(decrypted) != hex.EncodeToString(msg) {
+		t.Log("SM4 Decrypt test Failed!")
+		t.Log(hex.EncodeToString(msg))
+		t.Fail()
+	}
+
+}
+
+func TestSm4Mac(t *testing.T) {
+	key, _ := hex.DecodeString("55E26781FF0CB07963363B0B1880BD9F")
+	input, _ := hex.DecodeString("4808F443E2F6BC0A7A0F0FB4A4B5375C3B7BCD235134DA5664F030296B81A60FB3A4DE1661EB3C3728416002F8888AC2")
+	// input := make([]byte, 1000*16)
+	iv, _ := hex.DecodeString("D43A478CEFAA5923E3288281D8DC7964")
+	var sm4Mac []byte
+	var err error
+	cnt := 50000
+	start := time.Now()
+	for i := 0; i < cnt; i++ {
+		sm4Mac, err = Mac(key, iv, input)
+		if err != nil {
+			t.Fatal("err:" + err.Error())
+		}
+	}
+	end := time.Now()
+	elapsed := end.Sub(start)
+	fmt.Printf("Sign %d, used time: %d ms, %d pcs/s\n", cnt, elapsed.Milliseconds(), int(float64(cnt)/float64(elapsed.Milliseconds())*1000))
+
+	fmt.Println(hex.EncodeToString(sm4Mac))
+}
+
+// sm4_GCM模式
+var sm4GCMTests = []struct {
+	key, nonce, plaintext, ad, result string
+}{
+	{
+		"11754cd72aec309bf52f7687212e8957",
+		"3c819d9a9bed087615030b65", // nonce should be 12 bytes.
+		"plaintext",
+		"additional message not need encrypt, empty is ok",
+		"6111f78f2f82b913c20e333160bfec034c3720ac133a6203b1",
+	},
+}
+
+func TestSM4GCM(t *testing.T) {
+	for i, test := range sm4GCMTests {
+		key, _ := hex.DecodeString(test.key)
+		var sm4gcm cipher.AEAD
+		var err error
+
+		block, err := NewCipher(key)
+		if err != nil {
+			t.Fatal(err)
+		}
+		sm4gcm, err = cipher.NewGCM(block)
+
+		if err != nil {
+			t.Fatal(err)
+		}
+
+		nonce, _ := hex.DecodeString(test.nonce)
+		plaintext := []byte(test.plaintext)
+
+		ad := []byte(test.ad)
+		fmt.Printf("plaintext:%x\n", plaintext)
+
+		// Seal分配密文空间
+		// ct := sm4gcm.Seal(nil, nonce, plaintext, ad)
+
+		// 若有已分配好的密文空间buf
+		// buf := make([]byte, len(plaintext)+sm4gcm.Overhead())
+		// ct := sm4gcm.Seal(buf[:0], nonce, plaintext, ad)
+
+		// 如果plaintext的cap足够，则可以重复利用
+		for i := 0; i < sm4gcm.Overhead(); i++ {
+			plaintext = append(plaintext, 0)
+		}
+		plaintext = plaintext[:len(plaintext)-sm4gcm.Overhead()]
+		ct := sm4gcm.Seal(plaintext[:0], nonce, plaintext, ad)
+		fmt.Printf("cipherText: %x\n", ct)
+
+		if ctHex := hex.EncodeToString(ct); ctHex != test.result {
+			t.Errorf("#%d: got %s, want %s", i, ctHex, test.result)
+			continue
+		}
+
+		plaintext, err = sm4gcm.Open(ct[:0], nonce, ct, ad)
+		if err != nil {
+			t.Errorf("#%d: Open failed", i)
+			continue
+		}
+
+		if !bytes.Equal(plaintext, []byte(test.plaintext)) {
+			t.Errorf("#%d: plaintext's don't match: got %x vs %x", i, test.plaintext, plaintext)
+			continue
+		}
+
+		// if ad, nonce, ct was changed, return err
+		if len(ad) > 0 {
+			ad[0] ^= 0x80
+			if _, err := sm4gcm.Open(nil, nonce, ct, ad); err == nil {
+				t.Errorf("#%d: Open was successful after altering additional data", i)
+			}
+			ad[0] ^= 0x80
+		}
+
+		nonce[0] ^= 0x80
+		if _, err := sm4gcm.Open(nil, nonce, ct, ad); err == nil {
+			t.Errorf("#%d: Open was successful after altering nonce", i)
+		}
+		nonce[0] ^= 0x80
+
+		ct[0] ^= 0x80
+		if _, err := sm4gcm.Open(nil, nonce, ct, ad); err == nil {
+			t.Errorf("#%d: Open was successful after altering ciphertext", i)
+		}
+		ct[0] ^= 0x80
+	}
+}
+
+func TestTTT(t *testing.T) {
+
+	key := []byte{0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10}
+	iv := []byte{0xF0, 0xF1, 0xF2, 0xF3, 0xF4, 0xF5, 0xF6, 0xF7, 0xF8, 0xF9, 0xFA, 0xFB, 0xFC, 0xFD, 0xFE, 0xFF}
+	src := make([]byte, 2048)
+	dst := make([]byte, 2048)
+	for i := range src {
+		src[i] = byte(i)
+	}
+	c, _ := NewCipher(key)
+	ctr := cipher.NewCTR(c, iv)
+	ctr.XORKeyStream(dst, src)
+	for i, c := range dst {
+		if i > 0 && i%16 == 0 {
+			fmt.Println("")
+		}
+		fmt.Printf("0x%02x, ", c)
+
+	}
+
+}