From e83abe9fdbab07e6df80443240d4d649303a3dd4 Mon Sep 17 00:00:00 2001
From: Kévin Le Gouguec <kevin.legouguec@airbus.com>
Date: Fri, 22 Mar 2019 16:41:34 +0100
Subject: [implem-python] Déplacement dans le dossier SOUMISSION_NIST
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Et ajout d'un métascript pour vérifier la conformité.

Il ne reste plus qu'à… (bis)
---
 test/python/genkat_aead.py | 49 ++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 49 insertions(+)
 create mode 100755 test/python/genkat_aead.py

(limited to 'test/python/genkat_aead.py')

diff --git a/test/python/genkat_aead.py b/test/python/genkat_aead.py
new file mode 100755
index 0000000..01bed6f
--- /dev/null
+++ b/test/python/genkat_aead.py
@@ -0,0 +1,49 @@
+#!/usr/bin/env python3
+
+import crypto_aead
+
+
+MAX_MESSAGE_LENGTH = 32
+MAX_ADATA_LENGTH = 32
+
+
+def print_bstr(output, label, buf):
+    print('{l} = {b}'.format(l=label, b=buf.hex().upper()), file=output)
+
+
+def generate_test_vectors():
+    output_path = 'LWC_AEAD_KAT_{key}_{npub}.txt'.format(
+        key=crypto_aead.KEYBYTES*8, npub=crypto_aead.NPUBBYTES*8
+    )
+
+    npub = bytes(range(crypto_aead.NPUBBYTES))
+    key = bytes(range(crypto_aead.KEYBYTES))
+
+    with open(output_path, 'w') as output:
+
+        count = 1
+        for mlen in range(MAX_MESSAGE_LENGTH+1):
+            for adlen in range(MAX_ADATA_LENGTH+1):
+                print('Count = {c}'.format(c=count), file=output)
+
+                msg = bytes(range(mlen))
+                ad = bytes(range(adlen))
+
+                print_bstr(output, 'Key', key)
+                print_bstr(output, 'Nonce', npub)
+                print_bstr(output, 'PT', msg)
+                print_bstr(output, 'AD', ad)
+
+                ct = crypto_aead.encrypt(msg, ad, npub, key)
+
+                print_bstr(output, 'CT', ct)
+
+                crypto_aead.decrypt(ct, ad, npub, key)
+
+                count += 1
+
+                print(file=output)
+
+
+if __name__ == '__main__':
+    generate_test_vectors()
-- 
cgit v1.2.3


From c0d7ffb343d38a301773ea49975de6c54c91e264 Mon Sep 17 00:00:00 2001
From: Kévin Le Gouguec <kevin.legouguec@gmail.com>
Date: Sat, 23 Mar 2019 19:31:06 +0100
Subject: [implem-python] Intégration à la soumission (suite et fin)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

En plus du paquet Python "lilliput", chaque dossier embarque

- un script "genkat_aead.py" qui génère les vecteurs de test via l'API
  du module "crypto_aead",
- un module "crypto_aead" servant de point d'entrée générique,
- un  module  "parameters",  qui  permet  à  crypto_aead  d'instancier
  Lilliput-AE avec le bon mode et la bonne taille de clé.

Livraison  dans ./crypto_aead  sans  se soucier  de l'arborescence  du
dépôt, par homogénéité avec make-package.sh.

Quelques  ajustement  dans  genkat_aead.py   pour  que  le  lien  avec
genkat_aead.c soit plus évident.
---
 nist/package-python.sh     |  7 +++++--
 test/python/genkat_aead.py | 24 ++++++++++++++++--------
 2 files changed, 21 insertions(+), 10 deletions(-)

(limited to 'test/python/genkat_aead.py')

diff --git a/nist/package-python.sh b/nist/package-python.sh
index 4813dc7..88c4ef1 100755
--- a/nist/package-python.sh
+++ b/nist/package-python.sh
@@ -5,7 +5,7 @@ set -eu
 NIST_DIR=$(dirname $0)
 ROOT=${NIST_DIR}/..
 ADD_PYTHON=${ROOT}/src/add_python
-CRYPTO_AEAD=${ROOT}/crypto_aead
+PYTHON_RESOURCES=${ROOT}/test/python/
 
 
 add-variant ()
@@ -15,7 +15,7 @@ add-variant ()
 
     local -A names=([1]=lilliputaei [2]=lilliputaeii)
 
-    variant_dir=${CRYPTO_AEAD}/${names[${mode}]}${keylen}v1
+    variant_dir=crypto_aead/${names[${mode}]}${keylen}v1
 
     cp -r ${ADD_PYTHON} ${variant_dir}
 
@@ -23,6 +23,9 @@ add-variant ()
 MODE = ${mode}
 KEYBYTES = $((keylen/8))
 EOF
+
+    cp ${PYTHON_RESOURCES}/{crypto_aead.py,genkat_aead.py} \
+       ${variant_dir}/add_python
 }
 
 
diff --git a/test/python/genkat_aead.py b/test/python/genkat_aead.py
index 01bed6f..5e953c4 100755
--- a/test/python/genkat_aead.py
+++ b/test/python/genkat_aead.py
@@ -3,8 +3,13 @@
 import crypto_aead
 
 
+class DecryptionError(Exception):
+    def __init__(self):
+        super().__init__('crypto_aead_decrypt did not recover the plaintext')
+
+
 MAX_MESSAGE_LENGTH = 32
-MAX_ADATA_LENGTH = 32
+MAX_ASSOCIATED_DATA_LENGTH = 32
 
 
 def print_bstr(output, label, buf):
@@ -12,23 +17,25 @@ def print_bstr(output, label, buf):
 
 
 def generate_test_vectors():
-    output_path = 'LWC_AEAD_KAT_{key}_{npub}.txt'.format(
+    count = 1
+    filename = 'LWC_AEAD_KAT_{key}_{npub}.txt'.format(
         key=crypto_aead.KEYBYTES*8, npub=crypto_aead.NPUBBYTES*8
     )
 
     npub = bytes(range(crypto_aead.NPUBBYTES))
     key = bytes(range(crypto_aead.KEYBYTES))
 
-    with open(output_path, 'w') as output:
+    with open(filename, 'w') as output:
 
-        count = 1
         for mlen in range(MAX_MESSAGE_LENGTH+1):
-            for adlen in range(MAX_ADATA_LENGTH+1):
-                print('Count = {c}'.format(c=count), file=output)
+            for adlen in range(MAX_ASSOCIATED_DATA_LENGTH+1):
 
                 msg = bytes(range(mlen))
                 ad = bytes(range(adlen))
 
+                print('Count = {c}'.format(c=count), file=output)
+                count += 1
+
                 print_bstr(output, 'Key', key)
                 print_bstr(output, 'Nonce', npub)
                 print_bstr(output, 'PT', msg)
@@ -38,9 +45,10 @@ def generate_test_vectors():
 
                 print_bstr(output, 'CT', ct)
 
-                crypto_aead.decrypt(ct, ad, npub, key)
+                msg2 = crypto_aead.decrypt(ct, ad, npub, key)
 
-                count += 1
+                if msg != msg2:
+                    raise DecryptionError()
 
                 print(file=output)
 
-- 
cgit v1.2.3


From 07af965f2687105324e0142270a9e194a5ae6af5 Mon Sep 17 00:00:00 2001
From: Kévin Le Gouguec <kevin.legouguec@airbus.com>
Date: Mon, 25 Mar 2019 08:38:01 +0100
Subject: [implem-python] Ajout des entêtes manquants
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/add_python/lilliput/ae_common.py       | 17 +++++++++++++++
 src/add_python/lilliput/helpers.py         | 17 +++++++++++++++
 src/add_python/lilliput/multiplications.py | 19 +++++++++++++++++
 test/python/crypto_aead.py                 | 33 +++++++++++++++++++++++-------
 test/python/genkat_aead.py                 | 17 ++++++++++++++-
 5 files changed, 95 insertions(+), 8 deletions(-)

(limited to 'test/python/genkat_aead.py')

diff --git a/src/add_python/lilliput/ae_common.py b/src/add_python/lilliput/ae_common.py
index 033b5b0..83db056 100644
--- a/src/add_python/lilliput/ae_common.py
+++ b/src/add_python/lilliput/ae_common.py
@@ -1,3 +1,20 @@
+# Implementation of the Lilliput-AE tweakable block cipher.
+#
+# Authors, hereby denoted as "the implementer":
+#     Kévin Le Gouguec,
+#     Léo Reynaud
+#     2019.
+#
+# For more information, feedback or questions, refer to our website:
+# https://paclido.fr/lilliput-ae
+#
+# To the extent possible under law, the implementer has waived all copyright
+# and related or neighboring rights to the source code in this file.
+# http://creativecommons.org/publicdomain/zero/1.0/
+
+"""Helper functions used in both Lilliput-I and Lilliput-II."""
+
+
 from .constants import BLOCK_BITS, BLOCK_BYTES
 from .helpers import xor
 from . import tbc
diff --git a/src/add_python/lilliput/helpers.py b/src/add_python/lilliput/helpers.py
index 048aac7..41f75a6 100644
--- a/src/add_python/lilliput/helpers.py
+++ b/src/add_python/lilliput/helpers.py
@@ -1,2 +1,19 @@
+# Implementation of the Lilliput-AE tweakable block cipher.
+#
+# Authors, hereby denoted as "the implementer":
+#     Kévin Le Gouguec,
+#     Léo Reynaud
+#     2019.
+#
+# For more information, feedback or questions, refer to our website:
+# https://paclido.fr/lilliput-ae
+#
+# To the extent possible under law, the implementer has waived all copyright
+# and related or neighboring rights to the source code in this file.
+# http://creativecommons.org/publicdomain/zero/1.0/
+
+"""Helper functions used in Lilliput-AE."""
+
+
 def xor(array1, array2):
     return [a1^a2 for (a1, a2) in zip(array1, array2)]
diff --git a/src/add_python/lilliput/multiplications.py b/src/add_python/lilliput/multiplications.py
index dfdc3cb..2dea948 100644
--- a/src/add_python/lilliput/multiplications.py
+++ b/src/add_python/lilliput/multiplications.py
@@ -1,3 +1,22 @@
+# Implementation of the Lilliput-AE tweakable block cipher.
+#
+# Authors, hereby denoted as "the implementer":
+#     Kévin Le Gouguec,
+#     Léo Reynaud
+#     2019.
+#
+# For more information, feedback or questions, refer to our website:
+# https://paclido.fr/lilliput-ae
+#
+# To the extent possible under law, the implementer has waived all copyright
+# and related or neighboring rights to the source code in this file.
+# http://creativecommons.org/publicdomain/zero/1.0/
+
+"""Multiplications for Lilliput-TBC's tweakey schedule.
+
+This module provides a list of functions implementing lane multiplications,
+from ALPHAS[0] = α₀ = I to ALPHAS[6] = α₆ = M_R³.
+"""
 
 
 def _multiply_M(lane):
diff --git a/test/python/crypto_aead.py b/test/python/crypto_aead.py
index 792369c..6a9b328 100644
--- a/test/python/crypto_aead.py
+++ b/test/python/crypto_aead.py
@@ -1,9 +1,29 @@
+# Implementation of the Lilliput-AE tweakable block cipher.
+#
+# Authors, hereby denoted as "the implementer":
+#     Kévin Le Gouguec,
+#     2019.
+#
+# For more information, feedback or questions, refer to our website:
+# https://paclido.fr/lilliput-ae
+#
+# To the extent possible under law, the implementer has waived all copyright
+# and related or neighboring rights to the source code in this file.
+# http://creativecommons.org/publicdomain/zero/1.0/
+
+"""Python port of the crypto_aead API for Lilliput-AE."""
+
 import lilliput
-from lilliput.constants import NONCE_BYTES as NPUBBYTES, TAG_BYTES
 
-# Import KEYBYTES to expose it to genkat_aead.
-# Import MODE to provide it to lilliput.
-from parameters import KEYBYTES, MODE
+from lilliput.constants import (
+    NONCE_BYTES as NPUBBYTES,   # Expose to genkat_aead.
+    TAG_BYTES
+)
+
+from parameters import (
+    KEYBYTES,                   # Expose to genkat_aead.
+    MODE
+)
 
 
 def encrypt(m, ad, npub, k):
@@ -12,7 +32,6 @@ def encrypt(m, ad, npub, k):
 
 
 def decrypt(c, ad, npub, k):
-    clen = len(c)-TAG_BYTES
-    ctext = c[:clen]
-    tag = c[clen:]
+    ctext = c[:-TAG_BYTES]
+    tag = c[-TAG_BYTES:]
     return lilliput.decrypt(ctext, tag, ad, k, npub, MODE)
diff --git a/test/python/genkat_aead.py b/test/python/genkat_aead.py
index 5e953c4..db3a89c 100755
--- a/test/python/genkat_aead.py
+++ b/test/python/genkat_aead.py
@@ -1,11 +1,26 @@
 #!/usr/bin/env python3
 
+# Python port of genkat_aead.c.
+#
+# Authors, hereby denoted as "the implementer":
+#     Kévin Le Gouguec,
+#     2019.
+#
+# For more information, feedback or questions, refer to our website:
+# https://paclido.fr/lilliput-ae
+#
+# To the extent possible under law, the implementer has waived all copyright
+# and related or neighboring rights to the source code in this file.
+# http://creativecommons.org/publicdomain/zero/1.0/
+
+"""Python port of the genkat_aead.c program."""
+
 import crypto_aead
 
 
 class DecryptionError(Exception):
     def __init__(self):
-        super().__init__('crypto_aead_decrypt did not recover the plaintext')
+        super().__init__('crypto_aead.decrypt did not recover the plaintext')
 
 
 MAX_MESSAGE_LENGTH = 32
-- 
cgit v1.2.3