chore: more structured duplex sponge test vectors.

Author: mmaker

Cargo.toml

@@ -37,6 +37,8 @@ curve25519-dalek = { version = "4", default-features = false, features = ["serde
 hex = "0.4"
 hex-literal = "0.4"
 json = "0.12.4"
+serde = { version = "1.0.219", features = ["derive"] }
+serde_json = "1.0.140"
 sha2 = "0.10"
 subtle = "2.6.1"
 

src/duplex_sponge/keccak.rs

@@ -104,69 +104,6 @@ mod tests {
     use crate::duplex_sponge::DuplexSpongeInterface;
     use hex_literal::hex;
 
-    fn assert_sponge_output(tag: &[u8; 32], input: &[u8], expected: &[u8]) {
-        let mut sponge = KeccakDuplexSponge::new(*tag);
-        sponge.absorb(input);
-        let output = sponge.squeeze(expected.len());
-        assert_eq!(output, expected);
-    }
-
-    const TEST_TAG: &[u8; 32] = b"unit_tests_keccak_tag___________";
-    const HELLO_WORLD_OUTPUT: &[u8] = &hex!("73e4a040a956f57693fb2b2dde8a8ea2c14d39ff8830060cd0301d6de25b2097ba858efedeeb89368eaf7c94a68f62835f932b5f0dd0ba376c48a0fdb5e21f0c");
-
-    #[test]
-    fn test_keccak_duplex_sponge() {
-        assert_sponge_output(TEST_TAG, b"Hello, World!", HELLO_WORLD_OUTPUT);
-    }
-
-    #[test]
-    fn test_absorb_empty_before_does_not_break() {
-        let mut sponge = KeccakDuplexSponge::new(*TEST_TAG);
-        sponge.absorb(b"");
-        sponge.absorb(b"Hello, World!");
-        sponge.squeeze(0);
-        assert_eq!(sponge.squeeze(64), HELLO_WORLD_OUTPUT);
-    }
-    #[test]
-    fn test_absorb_empty_after_does_not_break() {
-        let mut sponge = KeccakDuplexSponge::new(*TEST_TAG);
-        sponge.absorb(b"Hello, World!");
-        sponge.absorb(b"");
-        sponge.squeeze(0);
-        assert_eq!(sponge.squeeze(64), HELLO_WORLD_OUTPUT);
-    }
-
-    #[test]
-    fn test_squeeze_zero_before_behavior() {
-        let mut sponge = KeccakDuplexSponge::new(*TEST_TAG);
-        sponge.squeeze(0);
-        sponge.absorb(b"Hello, World!");
-        assert_eq!(sponge.squeeze(64), HELLO_WORLD_OUTPUT);
-    }
-
-    #[test]
-    fn test_squeeze_zero_after_behavior() {
-        let mut sponge = KeccakDuplexSponge::new(*TEST_TAG);
-        sponge.absorb(b"Hello, World!");
-        sponge.squeeze(0);
-        assert_eq!(sponge.squeeze(64), HELLO_WORLD_OUTPUT);
-    }
-
-    #[test]
-    fn test_absorb_squeeze_absorb_consistency() {
-        let tag = *b"edge-case-test-domain-absorb0000";
-
-        let mut sponge = KeccakDuplexSponge::new(tag);
-        sponge.absorb(b"first");
-        sponge.squeeze(32);
-        sponge.absorb(b"second");
-        let output = sponge.squeeze(32);
-
-        assert_eq!(
-            output,
-            hex!("20ce6da64ffc09df8de254222c068358da39d23ec43e522ceaaa1b82b90c8b9a")
-        );
-    }
     #[test]
     fn test_associativity_of_absorb() {
         let expected_output =
@@ -188,26 +125,4 @@ mod tests {
         assert_eq!(out2, expected_output);
     }
 
-    #[test]
-    fn test_tag_affects_output() {
-        assert_sponge_output(
-            b"domain-one-differs-here-00000000",
-            b"input",
-            &hex!("2ecad63584ec0ff7f31edb822530762e5cb4b7dc1a62b1ffe02c43f3073a61b8"),
-        );
-        assert_sponge_output(
-            b"domain-two-differs-here-00000000",
-            b"input",
-            &hex!("6310fa0356e1bab0442fa19958e1c4a6d1dcc565b2b139b6044d1a809f531825"),
-        );
-    }
-
-    #[test]
-    fn test_multiple_blocks_absorb_squeeze() {
-        assert_sponge_output(
-            b"multi-block-absorb-test_________",
-            &vec![0xABu8; 3 * 200],
-            &hex!("606310f839e763f4f37ce4c9730da92d4d293109de06abee8a7b40577125bcbfca331b97aee104d03139247e801d8b1a5f6b028b8e51fd643de790416819780a1235357db153462f78c150e34f29a303288f07f854e229aed41c786313119a1cee87402006ab5102271576542e5580be1927af773b0f1b46ce5c78c15267d3729928909192ea0115fcb9475b38a1ff5004477bbbb1b1f5c6a5c90c29b245a83324cb108133efc82216d33da9866051d93baab3bdf0fe02b007d4eb94885a42fcd02a9acdd47b71b6eeac17f5946367d6c69c95cbb80ac91d75e22c9862cf5fe10c7e121368e8a8cd9ff8eebe21071ff014e053725bcc624cd9f31818c4d049e70c14a22e5d3062a553ceca6157315ef2bdb3619c970c9c3d60817ee68291dcd17a282ed1b33cb3afb79c8247cd46de13add88da4418278c8b6b919914be5379daa823b036da008718c1d2a4a0768ecdf032e2b93c344ff65768c8a383a8747a1dcc13b5569b4e15cab9cc8f233fb28b13168284c8a998be6f8fa05389ff9c1d90c5845060d2df3fe0a923be8603abbd2b6f6dd6a5c09c81afe7c06bec789db87185297d6f7261f1e5637f2d140ff3b306df77f42cceffe769545ea8b011022387cd9e3d4f2c97feff5099139715f72301799fcfd59aa30f997e26da9eb7d86ee934a3f9c116d4a9e1012d795db35e1c61d27cd74bb6002f463fc129c1f9c4f25bc8e79c051ac2f1686e393d670f8d1e4cea12acfbff5a135623615d69a88f390569f17a0fc65f5886e2df491615155d5c3eb871209a5c7b0439585ad1a0acbede2e1a8d5aad1d8f3a033267e12185c5f2bbab0f2f1769247"),
-        );
-    }
 }

src/tests/spec/duplexSpongeVectors.json

@@ -0,0 +1,165 @@
+{
+  "test_absorb_empty_after_does_not_break": {
+    "Expected": "73e4a040a956f57693fb2b2dde8a8ea2c14d39ff8830060cd0301d6de25b2097ba858efedeeb89368eaf7c94a68f62835f932b5f0dd0ba376c48a0fdb5e21f0c",
+    "HashFunction": "Keccak-f[1600] overwrite mode",
+    "Operations": [
+      {
+        "data": "",
+        "type": "absorb"
+      },
+      {
+        "data": "48656c6c6f2c20576f726c6421",
+        "type": "absorb"
+      },
+      {
+        "length": 64,
+        "type": "squeeze"
+      }
+    ],
+    "Tag": "756e69745f74657374735f6b656363616b5f7461675f5f5f5f5f5f5f5f5f5f5f"
+  },
+  "test_absorb_empty_before_does_not_break": {
+    "Expected": "73e4a040a956f57693fb2b2dde8a8ea2c14d39ff8830060cd0301d6de25b2097ba858efedeeb89368eaf7c94a68f62835f932b5f0dd0ba376c48a0fdb5e21f0c",
+    "HashFunction": "Keccak-f[1600] overwrite mode",
+    "Operations": [
+      {
+        "data": "48656c6c6f2c20576f726c6421",
+        "type": "absorb"
+      },
+      {
+        "data": "",
+        "type": "absorb"
+      },
+      {
+        "length": 64,
+        "type": "squeeze"
+      }
+    ],
+    "Tag": "756e69745f74657374735f6b656363616b5f7461675f5f5f5f5f5f5f5f5f5f5f"
+  },
+  "test_absorb_squeeze_absorb_consistency": {
+    "Expected": "20ce6da64ffc09df8de254222c068358da39d23ec43e522ceaaa1b82b90c8b9a",
+    "HashFunction": "Keccak-f[1600] overwrite mode",
+    "Operations": [
+      {
+        "data": "6669727374",
+        "type": "absorb"
+      },
+      {
+        "length": 32,
+        "type": "squeeze"
+      },
+      {
+        "data": "7365636f6e64",
+        "type": "absorb"
+      },
+      {
+        "length": 32,
+        "type": "squeeze"
+      }
+    ],
+    "Tag": "656467652d636173652d746573742d646f6d61696e2d6162736f726230303030"
+  },
+  "test_associativity_of_absorb": {
+    "Expected": "7dfada182d6191e106ce287c2262a443ce2fb695c7cc5037a46626e88889af58",
+    "HashFunction": "Keccak-f[1600] overwrite mode",
+    "Operations": [
+      {
+        "data": "68656c6c6f20776f726c64",
+        "type": "absorb"
+      },
+      {
+        "length": 32,
+        "type": "squeeze"
+      }
+    ],
+    "Tag": "6162736f72622d6173736f6369617469766974792d646f6d61696e2d2d2d2d2d"
+  },
+  "test_keccak_duplex_sponge": {
+    "Expected": "73e4a040a956f57693fb2b2dde8a8ea2c14d39ff8830060cd0301d6de25b2097ba858efedeeb89368eaf7c94a68f62835f932b5f0dd0ba376c48a0fdb5e21f0c",
+    "HashFunction": "Keccak-f[1600] overwrite mode",
+    "Operations": [
+      {
+        "data": "48656c6c6f2c20576f726c6421",
+        "type": "absorb"
+      },
+      {
+        "length": 64,
+        "type": "squeeze"
+      }
+    ],
+    "Tag": "756e69745f74657374735f6b656363616b5f7461675f5f5f5f5f5f5f5f5f5f5f"
+  },
+  "test_multiple_blocks_absorb_squeeze": {
+    "Expected": "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",
+    "HashFunction": "Keccak-f[1600] overwrite mode",
+    "Operations": [
+      {
+        "data": "abababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababababab",
+        "type": "absorb"
+      },
+      {
+        "length": 600,
+        "type": "squeeze"
+      }
+    ],
+    "Tag": "6d756c74692d626c6f636b2d6162736f72622d746573745f5f5f5f5f5f5f5f5f"
+  },
+  "test_squeeze_zero_after_behavior": {
+    "Expected": "73e4a040a956f57693fb2b2dde8a8ea2c14d39ff8830060cd0301d6de25b2097ba858efedeeb89368eaf7c94a68f62835f932b5f0dd0ba376c48a0fdb5e21f0c",
+    "HashFunction": "Keccak-f[1600] overwrite mode",
+    "Operations": [
+      {
+        "length": 0,
+        "type": "squeeze"
+      },
+      {
+        "data": "48656c6c6f2c20576f726c6421",
+        "type": "absorb"
+      },
+      {
+        "length": 64,
+        "type": "squeeze"
+      }
+    ],
+    "Tag": "756e69745f74657374735f6b656363616b5f7461675f5f5f5f5f5f5f5f5f5f5f"
+  },
+  "test_squeeze_zero_behavior": {
+    "Expected": "73e4a040a956f57693fb2b2dde8a8ea2c14d39ff8830060cd0301d6de25b2097ba858efedeeb89368eaf7c94a68f62835f932b5f0dd0ba376c48a0fdb5e21f0c",
+    "HashFunction": "Keccak-f[1600] overwrite mode",
+    "Operations": [
+      {
+        "length": 0,
+        "type": "squeeze"
+      },
+      {
+        "data": "48656c6c6f2c20576f726c6421",
+        "type": "absorb"
+      },
+      {
+        "length": 0,
+        "type": "squeeze"
+      },
+      {
+        "length": 64,
+        "type": "squeeze"
+      }
+    ],
+    "Tag": "756e69745f74657374735f6b656363616b5f7461675f5f5f5f5f5f5f5f5f5f5f"
+  },
+  "test_tag_affects_output": {
+    "Expected": "2ecad63584ec0ff7f31edb822530762e5cb4b7dc1a62b1ffe02c43f3073a61b8",
+    "HashFunction": "Keccak-f[1600] overwrite mode",
+    "Operations": [
+      {
+        "data": "696e707574",
+        "type": "absorb"
+      },
+      {
+        "length": 32,
+        "type": "squeeze"
+      }
+    ],
+    "Tag": "646f6d61696e2d6f6e652d646966666572732d686572652d3030303030303030"
+  }
+}

src/tests/spec/mod.rs

@@ -2,4 +2,6 @@ mod bls12_381;
 mod custom_schnorr_protocol;
 mod random;
 mod rng;
+
+mod test_duplex_sponge;
 mod test_vectors;