package sm4 import ( "bytes" "crypto/cipher" "crypto/rand" "encoding/hex" "fmt" "testing" "time" "github.com/stretchr/testify/assert" ) func TestSm4RoundKey(t *testing.T) { key, _ := hex.DecodeString("0123456789abcdeffedcba9876543210") enckey := make([]uint32, 32) deckey := make([]uint32, 32) expandKeyGo(key, enckey, deckey) for i := 0; i < 32; i++ { fmt.Printf("0x%02x, ", (enckey[i]>>24)&0xff) fmt.Printf("0x%02x, ", (enckey[i]>>16)&0xff) fmt.Printf("0x%02x, ", (enckey[i]>>8)&0xff) fmt.Printf("0x%02x, ", enckey[i]&0xff) } } func TestSM4StdBlock(t *testing.T) { key, _ := hex.DecodeString("0123456789abcdeffedcba9876543210") msg, _ := hex.DecodeString("0123456789abcdeffedcba9876543210") msg, _ = ECBEncrypt(msg, key, msg) enckey := make([]uint32, 32) deckey := make([]uint32, 32) expandKeyGo(key, enckey, deckey) for i := 0; i < 32; i++ { fmt.Printf("0x%02x, ", enckey[i]) } waned, _ := hex.DecodeString("681edf34d206965e86b3e94f536e4246") assert.Equal(t, msg, waned) } func TestSm4Block(t *testing.T) { key, _ := hex.DecodeString("0123456789abcdeffedcba9876543210") // test 4 blocks for aesni msg, _ := hex.DecodeString("0123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba9876543210") times := 1000000 for i := 0; i < times; i++ { msg, _ = ECBEncrypt(msg, key, msg) } if hex.EncodeToString(msg) != "595298c7c6fd271f0402f804c33d3f66595298c7c6fd271f0402f804c33d3f66595298c7c6fd271f0402f804c33d3f66595298c7c6fd271f0402f804c33d3f66" { t.Log("SM4 Encrypt test Failed!") t.Log(hex.EncodeToString(msg)) t.Fail() } for i := 0; i < times; i++ { msg, _ = ECBDecrypt(msg, key, msg) } if hex.EncodeToString(msg) != "0123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba9876543210" { t.Log("SM4 Decrypt test Failed!") t.Log(hex.EncodeToString(msg)) t.Fail() } } func BenchmarkSM4(b *testing.B) { key, _ := hex.DecodeString("0123456789abcdeffedcba9876543210") msg := make([]byte, 1024*1024) rand.Read(msg) b.ReportAllocs() b.SetBytes(int64(len(msg))) b.ResetTimer() for i := 0; i < b.N; i++ { msg, _ = ECBEncrypt(msg, key, msg) } } func TestECBSpeed(t *testing.T) { key := []byte("0123456789abcdef") data := make([]byte, 10*1024*1024) // 10 MB data rand.Read(data) start := time.Now() times := 100 for i := 0; i < times; i++ { if _, err := EncryptECB(data, key, data); err != nil { panic(err) } } end := time.Now() elapsed := end.Sub(start) t.Log("SM4 Encrypt: ", int(float64(times*len(data))/float64(1024*1024)/elapsed.Seconds()), "MBps") start = time.Now() for i := 0; i < times; i++ { if _, err := DecryptECB(data, key, data); err != nil { panic(err) } } end = time.Now() elapsed = end.Sub(start) t.Log("SM4 Decrypt: ", int(float64(times*len(data))/float64(1024*1024)/elapsed.Seconds()), "MBps") } func TestReportAeadSpeed(t *testing.T) { key := []byte("0123456789abcdef") data := make([]byte, 10*1024) ad := make([]byte, 10*1024) rand.Read(data) rand.Read(ad) b, _ := NewCipher(key) aead, _ := cipher.NewGCM(b) dst := make([]byte, len(data)+aead.NonceSize()) nonce := make([]byte, 12) start := time.Now() times := 10000 for i := 0; i < times; i++ { dst = aead.Seal(dst[:0], nonce, data, ad) } end := time.Now() elapsed := end.Sub(start) t.Log("SM4 AEAD Seal: ", int(float64(times*len(data))/float64(1024*1024)/elapsed.Seconds()), "MBps") start = time.Now() for i := 0; i < times; i++ { if _, err := aead.Open(data[:0], nonce, dst, ad); err != nil { panic(err) } } end = time.Now() elapsed = end.Sub(start) t.Log("SM4 AEAD Open: ", int(float64(times*len(data))/float64(1024*1024)/elapsed.Seconds()), "MBps") } ///////////////////////////////////////////// //cbc test type CBCKeyTest struct { key []byte iv []byte data []byte encData []byte } var keyTests = []CBCKeyTest{ { []byte{ 0xE5, 0x26, 0xCD, 0x8D, 0xFC, 0x4E, 0x3B, 0xCA, 0xB0, 0xBA, 0x15, 0xF3, 0xC8, 0x22, 0xB6, 0xAE, }, []byte{ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, }, []byte{ 0xBB, 0x5D, 0xCE, 0x7C, 0x7E, 0x45, 0x3B, 0xFA, 0xC8, 0x4D, 0x67, 0x75, 0x81, 0xEE, 0xEC, 0x16, 0xED, 0xA7, 0xE1, 0xAD, 0x4F, 0x94, 0x82, 0x82, 0x80, 0xDF, 0x1F, 0xC7, 0xA8, 0x9B, 0xB2, 0xBE, }, []byte{ 0x63, 0x9f, 0x4c, 0x4e, 0x52, 0x4a, 0x8c, 0x90, 0xfb, 0xd6, 0xc6, 0xf4, 0x2f, 0x18, 0xf3, 0xb5, 0x28, 0x48, 0xae, 0xc0, 0xfc, 0xc0, 0x1b, 0x03, 0xff, 0x04, 0xc5, 0x50, 0x3c, 0x9a, 0xe6, 0x11, }, }, { []byte{ 0x5F, 0x02, 0xD7, 0xE5, 0x47, 0x74, 0xE4, 0xE9, 0x43, 0x25, 0x68, 0xA3, 0x2F, 0x7E, 0x26, 0xAB, }, []byte{ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, }, []byte{ 0x3D, 0xAC, 0x76, 0x3E, 0x46, 0xB6, 0xF0, 0x49, 0x77, 0x4F, 0xA2, 0x2F, 0x8D, 0x51, 0xB4, 0xF4, 0xD0, 0x96, 0xA7, 0xB5, 0x45, 0x05, 0xF6, 0xB3, 0x8F, 0x94, 0x55, 0xB1, 0xA4, 0x2E, 0x5D, 0xD6, }, []byte{ 0x4e, 0x3a, 0x19, 0x0d, 0x97, 0x10, 0xee, 0x4e, 0xcf, 0x87, 0xfa, 0xa5, 0xc3, 0x3b, 0x4b, 0x24, 0xf3, 0x95, 0x84, 0xbb, 0x6e, 0xb2, 0x3a, 0x74, 0x26, 0xe9, 0x87, 0x65, 0x08, 0x58, 0xc6, 0x8d, }, }, { []byte{ 0x0D, 0x55, 0x89, 0x44, 0x29, 0xB7, 0xDC, 0xA3, 0x8B, 0xE0, 0x2E, 0x98, 0x29, 0x63, 0xA5, 0x75, }, []byte{ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, }, []byte{ 0xB6, 0x97, 0x93, 0x80, 0x63, 0x68, 0xD2, 0x36, 0xF6, 0xD3, 0xD3, 0x5D, 0xBF, 0x5D, 0xAD, 0xA3, 0xBF, 0xC0, 0x9F, 0x53, 0xC3, 0xAF, 0xF8, 0x48, 0x7E, 0xA4, 0xD9, 0x56, 0x60, 0x2A, 0xBA, 0xE7, }, []byte{ 0xaa, 0xeb, 0xf0, 0xec, 0xdf, 0x98, 0x72, 0xef, 0xde, 0x14, 0xc2, 0xe9, 0x06, 0x0d, 0x65, 0x06, 0xba, 0x5b, 0x22, 0x1a, 0x7a, 0x8b, 0xf0, 0xe8, 0x52, 0x43, 0x78, 0xcc, 0xed, 0x71, 0x70, 0xd5, }, }, { []byte{ 0x72, 0x31, 0x6E, 0x03, 0x4A, 0xDB, 0xEF, 0x7C, 0xC9, 0xD1, 0x7A, 0xA1, 0x1F, 0x25, 0x99, 0x09, }, []byte{ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, }, []byte{ 0xE4, 0xB4, 0x69, 0x8B, 0xDE, 0x75, 0x7D, 0xFF, 0xD8, 0xC6, 0xE6, 0x7F, 0xD7, 0x67, 0xBE, 0x62, 0x08, 0xEC, 0xB7, 0xFC, 0x92, 0xFB, 0x77, 0xD0, 0x79, 0xC2, 0x69, 0xC5, 0x7E, 0x0A, 0xB6, 0x2B, }, []byte{ 0x90, 0x2c, 0x7c, 0x36, 0xfc, 0x6f, 0xc1, 0x3d, 0x09, 0x7d, 0xa5, 0xa8, 0x9b, 0x74, 0xc7, 0x05, 0xf6, 0x3b, 0xc1, 0x15, 0x4b, 0x69, 0xad, 0xdb, 0x41, 0x8a, 0xf9, 0x94, 0xde, 0xed, 0x34, 0x3a, }, }, { []byte{ 0xAC, 0xE8, 0x7E, 0x4D, 0x00, 0xD0, 0x55, 0xB5, 0x24, 0xB8, 0x5D, 0xAA, 0x23, 0xEE, 0x29, 0x18, }, []byte{ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, }, []byte{ 0x03, 0x7B, 0x89, 0x8B, 0x3F, 0x53, 0x55, 0x57, 0x64, 0x3B, 0x88, 0x3E, 0x63, 0xF4, 0x17, 0x77, 0xBA, 0x4D, 0xE7, 0xEF, 0xDE, 0xCB, 0x83, 0x0A, 0xC3, 0x77, 0x2A, 0x3D, 0x3B, 0x64, 0xBE, 0x92, }, []byte{ 0x36, 0x18, 0x2e, 0xc4, 0xe2, 0x73, 0x14, 0xd7, 0xb7, 0xb2, 0xfa, 0x5c, 0x0b, 0xa6, 0x83, 0xa3, 0x2d, 0xb4, 0xe9, 0x81, 0x09, 0x5c, 0xee, 0xd5, 0xe0, 0x3c, 0xdd, 0xdf, 0x49, 0x28, 0x0f, 0x23, }, }, } func TestSm4Cbc(t *testing.T) { for _, test := range keyTests { output := make([]byte, len(test.data)) iv := make([]byte, 16) copy(iv, test.iv) output, _ = CBCEncrypt(output, iv, test.key, test.data) // t.Log(test.iv) // t.Log(iv) if hex.EncodeToString(output) != hex.EncodeToString(test.encData) { t.Log("SM4 CBC Test Failed") t.Fail() } copy(iv, test.iv) output, _ = CBCDecrypt(output, iv, test.key, output) if hex.EncodeToString(output) != hex.EncodeToString(test.data) { t.Log("SM4 CBC Test Failed") t.Fail() } } } //////////////////////////////////////////// // ofb func TestSm4OFB(t *testing.T) { var key = []byte{ 0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10, } iv := make([]byte, len(key)) var msg = []byte{ 0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10, 0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10, 0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10, 0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10, } encrypted := make([]byte, len(msg)) decrypted := make([]byte, len(msg)) encrypted, _ = OFBEncrypt(encrypted, iv, key, msg) // if hex.EncodeToString(encrypted) != "681edf34d206965e86b3e94f536e4246681edf34d206965e86b3e94f536e4246681edf34d206965e86b3e94f536e4246681edf34d206965e86b3e94f536e4246" { // t.Log(hex.EncodeToString(encrypted)) // t.Fail() // } decrypted, _ = OFBDecrypt(decrypted, iv, key, encrypted) // if hex.EncodeToString(decrypted) != "0123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba98765432100123456789abcdeffedcba9876543210" { // t.Log(hex.EncodeToString(decrypted)) // t.Fail() // } if hex.EncodeToString(decrypted) != hex.EncodeToString(msg) { t.Log("SM4 Decrypt test Failed!") t.Log(hex.EncodeToString(msg)) t.Fail() } } func TestSm4Mac(t *testing.T) { key, _ := hex.DecodeString("55E26781FF0CB07963363B0B1880BD9F") input, _ := hex.DecodeString("4808F443E2F6BC0A7A0F0FB4A4B5375C3B7BCD235134DA5664F030296B81A60FB3A4DE1661EB3C3728416002F8888AC2") // input := make([]byte, 1000*16) iv, _ := hex.DecodeString("D43A478CEFAA5923E3288281D8DC7964") var sm4Mac []byte var err error cnt := 50000 start := time.Now() for i := 0; i < cnt; i++ { sm4Mac, err = Mac(key, iv, input) if err != nil { t.Fatal("err:" + err.Error()) } } end := time.Now() elapsed := end.Sub(start) fmt.Printf("Sign %d, used time: %d ms, %d pcs/s\n", cnt, elapsed.Milliseconds(), int(float64(cnt)/float64(elapsed.Milliseconds())*1000)) fmt.Println(hex.EncodeToString(sm4Mac)) } // sm4_GCM模式 var sm4GCMTests = []struct { key, nonce, plaintext, ad, result string }{ { "11754cd72aec309bf52f7687212e8957", "3c819d9a9bed087615030b65", // nonce should be 12 bytes. "plaintext", "additional message not need encrypt, empty is ok", "6111f78f2f82b913c20e333160bfec034c3720ac133a6203b1", }, } func TestSM4GCM(t *testing.T) { for i, test := range sm4GCMTests { key, _ := hex.DecodeString(test.key) var sm4gcm cipher.AEAD var err error block, err := NewCipher(key) if err != nil { t.Fatal(err) } sm4gcm, err = cipher.NewGCM(block) if err != nil { t.Fatal(err) } nonce, _ := hex.DecodeString(test.nonce) plaintext := []byte(test.plaintext) ad := []byte(test.ad) fmt.Printf("plaintext:%x\n", plaintext) // Seal分配密文空间 // ct := sm4gcm.Seal(nil, nonce, plaintext, ad) // 若有已分配好的密文空间buf // buf := make([]byte, len(plaintext)+sm4gcm.Overhead()) // ct := sm4gcm.Seal(buf[:0], nonce, plaintext, ad) // 如果plaintext的cap足够,则可以重复利用 for i := 0; i < sm4gcm.Overhead(); i++ { plaintext = append(plaintext, 0) } plaintext = plaintext[:len(plaintext)-sm4gcm.Overhead()] ct := sm4gcm.Seal(plaintext[:0], nonce, plaintext, ad) fmt.Printf("cipherText: %x\n", ct) if ctHex := hex.EncodeToString(ct); ctHex != test.result { t.Errorf("#%d: got %s, want %s", i, ctHex, test.result) continue } plaintext, err = sm4gcm.Open(ct[:0], nonce, ct, ad) if err != nil { t.Errorf("#%d: Open failed", i) continue } if !bytes.Equal(plaintext, []byte(test.plaintext)) { t.Errorf("#%d: plaintext's don't match: got %x vs %x", i, test.plaintext, plaintext) continue } // if ad, nonce, ct was changed, return err if len(ad) > 0 { ad[0] ^= 0x80 if _, err := sm4gcm.Open(nil, nonce, ct, ad); err == nil { t.Errorf("#%d: Open was successful after altering additional data", i) } ad[0] ^= 0x80 } nonce[0] ^= 0x80 if _, err := sm4gcm.Open(nil, nonce, ct, ad); err == nil { t.Errorf("#%d: Open was successful after altering nonce", i) } nonce[0] ^= 0x80 ct[0] ^= 0x80 if _, err := sm4gcm.Open(nil, nonce, ct, ad); err == nil { t.Errorf("#%d: Open was successful after altering ciphertext", i) } ct[0] ^= 0x80 } } func TestTTT(t *testing.T) { key := []byte{0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef, 0xfe, 0xdc, 0xba, 0x98, 0x76, 0x54, 0x32, 0x10} iv := []byte{0xF0, 0xF1, 0xF2, 0xF3, 0xF4, 0xF5, 0xF6, 0xF7, 0xF8, 0xF9, 0xFA, 0xFB, 0xFC, 0xFD, 0xFE, 0xFF} src := make([]byte, 2048) dst := make([]byte, 2048) for i := range src { src[i] = byte(i) } c, _ := NewCipher(key) ctr := cipher.NewCTR(c, iv) ctr.XORKeyStream(dst, src) for i, c := range dst { if i > 0 && i%16 == 0 { fmt.Println("") } fmt.Printf("0x%02x, ", c) } }