From 7a0d1219f90a2d083da8931c9fcf0977abbba1a3 Mon Sep 17 00:00:00 2001
From: Alivecow <mail@ta-lotz.de>
Date: Thu, 5 Dec 2024 15:57:18 +0100
Subject: [PATCH] fix: Fix GCM crack output

---
 src/tasks/mod.rs               |  2 +-
 src/tasks/tasks01/gcm_crack.rs | 62 +++++++++++++++++++++++++++++++++-
 2 files changed, 62 insertions(+), 2 deletions(-)

diff --git a/src/tasks/mod.rs b/src/tasks/mod.rs
index aeca1c7..d48952d 100644
--- a/src/tasks/mod.rs
+++ b/src/tasks/mod.rs
@@ -179,7 +179,7 @@ pub fn task_deploy(testcase: &Testcase) -> Result<Value> {
         }
         "gcm_crack" => {
             let result = gcm_crack(args)?;
-            let json = json!({"factors" : result});
+            let json = json!(result);
 
             Ok(json)
         }
diff --git a/src/tasks/tasks01/gcm_crack.rs b/src/tasks/tasks01/gcm_crack.rs
index 05d8886..cce3df6 100644
--- a/src/tasks/tasks01/gcm_crack.rs
+++ b/src/tasks/tasks01/gcm_crack.rs
@@ -54,6 +54,7 @@ fn parse_message(val: &Value) -> Result<(Message, Polynomial)> {
     if ad_bytes.len() % 16 != 0 || ad_bytes.is_empty() {
         ad_bytes.append(vec![0u8; 16 - (ad_bytes.len() % 16)].as_mut());
     }
+
     let ad_chunks: Vec<FieldElement> = ad_bytes
         .chunks(16)
         .into_iter()
@@ -128,7 +129,6 @@ pub fn gcm_crack(args: &Value) -> Result<CrackAnswer> {
     for candidate in combine_edf {
         if candidate.degree() == 1 {
             h_candidate = candidate.extract_component(0);
-            eprintln!("H candidate: {:02X?}", h_candidate.to_b64());
             let m1_ghash = ghash(
                 reverse_bits_in_bytevec(h_candidate.to_vec()),
                 m1_data.ad.clone(),
@@ -170,6 +170,7 @@ pub fn gcm_crack(args: &Value) -> Result<CrackAnswer> {
     );
 
     if m3_auth_tag.is_empty() {
+        assert!(false);
         eprintln!("No valid candidate found");
     }
 
@@ -195,3 +196,62 @@ pub fn gcm_crack(args: &Value) -> Result<CrackAnswer> {
         mask: BASE64_STANDARD.encode(eky0),
     })
 }
+
+#[cfg(test)]
+mod tests {
+
+    use anyhow::Result;
+
+    use rand::Rng;
+
+    use serde_json::json;
+    use utils::ciphers::{aes_128_encrypt, gcm_encrypt_aes};
+    // Note this useful idiom: importing names from outer (for mod tests) scope.
+    use super::*;
+
+    #[test]
+    fn test_random() -> Result<()> {
+        let key = vec![1, 1, 1, 1];
+        let nonce = BASE64_STANDARD.decode("4gF+BtR3ku/PUQci")?;
+        let ad = vec![0];
+
+        let input: Vec<u8> = Vec::with_capacity(rand::thread_rng().gen_range(0..=60));
+        let plain1 = gcm_encrypt_aes(nonce.clone(), key.clone(), input, ad.clone())?;
+        let input: Vec<u8> = Vec::with_capacity(rand::thread_rng().gen_range(0..=60));
+        let plain2 = gcm_encrypt_aes(nonce.clone(), key.clone(), input, ad.clone())?;
+        let input: Vec<u8> = Vec::with_capacity(rand::thread_rng().gen_range(0..=60));
+        let plain3 = gcm_encrypt_aes(nonce.clone(), key.clone(), input, ad.clone())?;
+
+        let crack_input = json!({
+          "testcases": {
+            "gcm_crack46": {
+              "action": "gcm_crack",
+              "arguments": {
+                "nonce": "4gF+BtR3ku/PUQci",
+                "m1": {
+                  "ciphertext": BASE64_STANDARD.encode(plain1.0),
+                  "associated_data": "",
+                  "tag": BASE64_STANDARD.encode(plain1.1)
+                },
+                "m2": {
+                  "ciphertext": BASE64_STANDARD.encode(plain2.0),
+                  "associated_data": "",
+                  "tag": BASE64_STANDARD.encode(plain2.1)
+                },
+                "m3": {
+                  "ciphertext": BASE64_STANDARD.encode(plain3.0),
+                  "associated_data": "",
+                  "tag": BASE64_STANDARD.encode(plain3.1)
+                },
+                "forgery": {
+                  "ciphertext": "AXe/ZQ==",
+                  "associated_data": ""
+                }
+              }
+            }
+          }
+        });
+
+        todo!();
+    }
+}