dabaer
diff --git a/‎CHANGELOG.md
Lines changed: 0 additions & 4 deletions b/‎CHANGELOG.md
Lines changed: 0 additions & 4 deletions
diff --git a/‎bench/timing.erl
Lines changed: 23 additions & 23 deletions b/‎bench/timing.erl
Lines changed: 23 additions & 23 deletions
diff --git a/‎eqc_test/enacl_eqc.erl
Lines changed: 48 additions & 27 deletions b/‎eqc_test/enacl_eqc.erl
Lines changed: 48 additions & 27 deletions
@@ -11,10 +11,6 @@ and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.
   Pretty large change, but OTOH, this ought to happen before a 1.0 release as well.
   - Generichashes must support the finalized state
 
-- Implement missing EQC tests
-  - stream_chacha20...
-  - stream_xor...
-
 ## [Unreleased]
 
 ### Compatibility
 
@@ -20,7 +20,7 @@ test() ->
 
 randombytes() ->
     randombytes(100*1000).
-    
+
 randombytes(0) -> ok;
 randombytes(N) ->
     enacl:randombytes(1024),
@@ -29,15 +29,15 @@ randombytes(N) ->
 hash() ->
     B = binary:copy(<<0>>, 4096),
     hash(B, 10*1000).
-    
+
 hash(_B, 0) -> ok;
 hash(B, N) ->
     enacl:hash(B),
     hash(B, N-1).
 
 box_keypair() ->
     box_keypair(10*1000).
-    
+
 box_keypair(0) -> ok;
 box_keypair(N) ->
     enacl:box_keypair(),
@@ -47,9 +47,9 @@ box() ->
     #{ public := PK1} = enacl:box_keypair(),
     #{ secret := SK2} = enacl:box_keypair(),
     B = binary:copy(<<0>>, 1),
-    Nonce = binary:copy(<<0>>, enacl:box_nonce_size()),
+    Nonce = binary:copy(<<0>>, enacl:box_NONCEBYTES()()),
     box(B, Nonce, PK1, SK2, 10*1000).
-    
+
 box(_B, _Nonce, _PK1, _SK2, 0) -> ok;
 box(B, Nonce, PK1, SK2, N) ->
     enacl:box(B, Nonce, PK1, SK2),
@@ -62,23 +62,23 @@ box_before_after() ->
     box_beforenm(PK1, SK2, 10*1000),
     R = enacl:box_beforenm(PK1, SK2),
     B = binary:copy(<<0>>, 8192),
-    Nonce = binary:copy(<<0>>, enacl:box_nonce_size()),
+    Nonce = binary:copy(<<0>>, enacl:box_NONCEBYTES()()),
     box_afternm(B, Nonce, R, 10*1000),
     ok.
-    
+
 box_beforenm(_PK, _SK, 0) -> ok;
 box_beforenm(PK, SK, N) ->
     enacl:box_beforenm(PK, SK),
     box_beforenm(PK, SK, N-1).
-    
+
 box_afternm(_Msg, _Nonce, _Key, 0) -> ok;
 box_afternm(Msg, Nonce, Key, N) ->
     enacl:box_afternm(Msg, Nonce, Key),
     box_afternm(Msg, Nonce, Key, N-1).
 
 sign_keypair() ->
     sign_keypair(10*1000).
-    
+
 sign_keypair(0) -> ok;
 sign_keypair(N) ->
     enacl:sign_keypair(),
@@ -91,7 +91,7 @@ sign() ->
     Msg = binary:copy(<<0>>, 1024),
     #{ secret := SK } = enacl:sign_keypair(),
     sign(Msg, SK, 10*1000).
-    
+
 sign(_Msg, _SK, 0) -> ok;
 sign(Msg, SK, N) ->
     enacl:sign(Msg, SK),
@@ -100,51 +100,51 @@ sign(Msg, SK, N) ->
 
 secretbox() ->
     Msg = binary:copy(<<0>>, 8192),
-    Nonce = binary:copy(<<0>>, enacl:secretbox_nonce_size()),
-    Key = binary:copy(<<0>>, enacl:secretbox_key_size()),
+    Nonce = binary:copy(<<0>>, enacl:secretbox_NONCEBYTES()()),
+    Key = binary:copy(<<0>>, enacl:secretbox_KEYBYTES()),
     secretbox(Msg, Nonce, Key, 10*1000).
-    
+
 secretbox(_Msg, _Nonce, _Key, 0) -> ok;
 secretbox(Msg, Nonce, Key, N) ->
     enacl:secretbox(Msg, Nonce, Key),
     secretbox(Msg, Nonce, Key, N-1).
 
 
 stream() ->
-    stream(16384, binary:copy(<<0>>, enacl:stream_nonce_size()), binary:copy(<<0>>, enacl:stream_key_size()), 10*1000).
-    
+    stream(16384, binary:copy(<<0>>, enacl:stream_NONCEBYTES()), binary:copy(<<0>>, enacl:stream_KEYBYTES()), 10*1000).
+
 stream(_L, _Nonce, _K, 0) -> ok;
 stream(L, Nonce, K, N) ->
     enacl:stream(L, Nonce, K),
     stream(L, Nonce, K, N-1).
 
 auth() ->
     Msg = binary:copy(<<0>>, 4096),
-    Key = binary:copy(<<0>>, enacl:auth_key_size()),
+    Key = binary:copy(<<0>>, enacl:auth_KEYBYTES()),
     auth(Msg, Key, 10*1000).
-    
+
 auth(_Msg, _Key, 0) -> ok;
 auth(Msg, Key, N) ->
     enacl:auth(Msg, Key),
     auth(Msg, Key, N-1).
-    
+
 onetime_auth() ->
     Msg = binary:copy(<<0>>, 16384),
-    Key = binary:copy(<<0>>, enacl:onetime_auth_key_size()),
+    Key = binary:copy(<<0>>, enacl:onetime_auth_KEYBYTES()),
     onetime_auth(Msg, Key, 10*1000).
-    
+
 onetime_auth(_Msg, _Key, 0) -> ok;
 onetime_auth(Msg, Key, N) ->
     enacl:onetime_auth(Msg, Key),
     onetime_auth(Msg, Key, N-1).
-    
+
 scalarmult() ->
     Secret = binary:copy(<<0>>, 32),
     BasePoint = binary:copy(<<1>>, 32),
     scalarmult(Secret, BasePoint, 10*1000).
-    
+
 scalarmult(_S, _B, 0) -> ok;
 scalarmult(S, B, N) ->
     enacl:curve25519_scalarmult(S, B),
     scalarmult(S, B, N-1).
-    
+
@@ -83,8 +83,8 @@ v_binary(_, _) -> false.
 
 
 %% Typical generators based on the binaries
-nonce() -> g_binary(enacl:box_nonce_size()).
-nonce_valid(N) -> v_binary(enacl:box_nonce_size(), N).
+nonce() -> g_binary(enacl:box_NONCEBYTES()).
+nonce_valid(N) -> v_binary(enacl:box_NONCEBYTES(), N).
 
 %% Generator of natural numbers
 g_nat() ->
@@ -111,10 +111,10 @@ keypair_bad() ->
         #{ public := PK, secret := SK} = enacl:box_keypair(),
         case X of
             pk ->
-              PKBytes = enacl:box_public_key_bytes(),
+              PKBytes = enacl:box_PUBLICKEYBYTES(),
               {oneof([return(a), nat(), ?SUCHTHAT(B, binary(), byte_size(B) /= PKBytes)]), SK};
             sk ->
-              SKBytes = enacl:box_secret_key_bytes(),
+              SKBytes = enacl:box_SECRETKEYBYTES(),
               {PK, oneof([return(a), nat(), ?SUCHTHAT(B, binary(), byte_size(B) /= SKBytes)])}
         end
       end).
@@ -159,8 +159,8 @@ g_generichash_size() ->
 %% * box_afternm/3
 %% * box_open_afternm/3
 keypair_valid(PK, SK) when is_binary(PK), is_binary(SK) ->
-    PKBytes = enacl:box_public_key_bytes(),
-    SKBytes = enacl:box_secret_key_bytes(),
+    PKBytes = enacl:box_PUBLICKEYBYTES(),
+    SKBytes = enacl:box_SECRETKEYBYTES(),
     byte_size(PK) == PKBytes andalso byte_size(SK) == SKBytes;
 keypair_valid(_PK, _SK) -> false.
 
@@ -264,11 +264,11 @@ beforenm_key() ->
                 oneof([
                   elements([a,b,c]),
                   real(),
-                  ?SUCHTHAT(X, binary(), byte_size(X) /= enacl:box_beforenm_bytes())
+                  ?SUCHTHAT(X, binary(), byte_size(X) /= enacl:box_BEFORENMBYTES())
                   ])
         end).
 
-v_key(K) when is_binary(K) -> byte_size(K) == enacl:box_beforenm_bytes();
+v_key(K) when is_binary(K) -> byte_size(K) == enacl:box_BEFORENMBYTES();
 v_key(_) -> false.
 
 prop_beforenm_correct() ->
@@ -324,11 +324,11 @@ sign_keypair_bad() ->
       KP = enacl:sign_keypair(),
       case X of
         pk ->
-          Sz = enacl:sign_keypair_public_size(),
+          Sz = enacl:sign_PUBLICBYTES(),
           ?LET(Wrong, oneof([a, int(), ?SUCHTHAT(B, binary(), byte_size(B) /= Sz)]),
             KP#{ public := Wrong });
         sk ->
-          Sz = enacl:sign_keypair_secret_size(),
+          Sz = enacl:sign_SECRETBYTES(),
           ?LET(Wrong, oneof([a, int(), ?SUCHTHAT(B, binary(), byte_size(B) /= Sz)]),
             KP#{ secret := Wrong })
       end
@@ -342,12 +342,12 @@ sign_keypair() ->
 
 sign_keypair_public_valid(#{ public := Public })
   when is_binary(Public) ->
-    byte_size(Public) == enacl:sign_keypair_public_size();
+    byte_size(Public) == enacl:sign_PUBLICBYTES();
 sign_keypair_public_valid(_) -> false.
 
 sign_keypair_secret_valid(#{ secret := Secret })
   when is_binary(Secret) ->
-    byte_size(Secret) == enacl:sign_keypair_secret_size();
+    byte_size(Secret) == enacl:sign_SECRETBYTES();
 sign_keypair_secret_valid(_) -> false.
 
 sign_keypair_valid(KP) ->
@@ -408,11 +408,11 @@ signed_message_good_d(M) ->
                end)}]).
 
 signed_message_bad() ->
-    Sz = enacl:sign_keypair_public_size(),
+    Sz = enacl:sign_PUBLICBYTES(),
     {binary(), oneof([a, int(), ?SUCHTHAT(B, binary(Sz), byte_size(B) /= Sz)])}.
 
 signed_message_bad_d() ->
-    Sz = enacl:sign_keypair_public_size(),
+    Sz = enacl:sign_PUBLICBYTES(),
     {binary(), oneof([a, int(), ?SUCHTHAT(B, binary(Sz), byte_size(B) /= Sz)])}.
 
 signed_message(M) ->
@@ -496,19 +496,19 @@ prop_seal_box_correct() ->
 %% * secretbox/3
 %% * secretbo_open/3
 secret_key_good() ->
-	Sz = enacl:secretbox_key_size(),
+	Sz = enacl:secretbox_KEYBYTES(),
 	binary(Sz).
 
 secret_key_bad() ->
 	oneof([return(a),
 	       nat(),
-	       ?SUCHTHAT(B, binary(), byte_size(B) /= enacl:secretbox_key_size())]).
+	       ?SUCHTHAT(B, binary(), byte_size(B) /= enacl:secretbox_KEYBYTES())]).
 
 secret_key() ->
 	?FAULT(secret_key_bad(), secret_key_good()).
 
 secret_key_valid(SK) when is_binary(SK) ->
-	Sz = enacl:secretbox_key_size(),
+	Sz = enacl:secretbox_KEYBYTES(),
 	byte_size(SK) == Sz;
 secret_key_valid(_SK) -> false.
 
@@ -618,6 +618,27 @@ xor_bytes(<<A, As/binary>>, <<B, Bs/binary>>) ->
     [A bxor B | xor_bytes(As, Bs)];
 xor_bytes(<<>>, <<>>) -> [].
 
+positive() ->
+  ?LET(N, nat(), N+1).
+
+chacha20_nonce() ->
+  Sz = enacl:stream_chacha20_NONCEBYTES(),
+  binary(Sz).
+
+chacha20_key() ->
+  Sz = enacl:stream_chacha20_KEYBYTES(),
+  binary(Sz).
+
+prop_stream_chacha20_correct() ->
+  ?FORALL(Len, positive(),
+    ?FORALL({Msg, Nonce, Key}, {binary(Len), chacha20_nonce(), chacha20_key()},
+      begin
+        CT = enacl:stream_chacha20_xor(Msg, Nonce, Key),
+        Stream = enacl:stream_chacha20(Len, Nonce, Key),
+        CT2 = list_to_binary(xor_bytes(Stream, Msg)),
+        equals(CT, CT2)
+      end)).
+
 %% CRYPTO AUTH
 %% ------------------------------------------------------------
 %% * auth/2
@@ -635,19 +656,19 @@ prop_auth_correct() ->
        end).
 
 authenticator_bad() ->
-    oneof([a, int(), ?SUCHTHAT(X, binary(), byte_size(X) /= enacl:auth_size())]).
+    oneof([a, int(), ?SUCHTHAT(X, binary(), byte_size(X) /= enacl:auth_BYTES())]).
 
 authenticator_good(Msg, Key) when is_binary(Key) ->
-    Sz = enacl:secretbox_key_size(),
+    Sz = enacl:secretbox_KEYBYTES(),
     case v_iodata(Msg) andalso byte_size(Key) == Sz of
       true ->
-        frequency([{1, ?LAZY({invalid, binary(enacl:auth_size())})},
+        frequency([{1, ?LAZY({invalid, binary(enacl:auth_BYTES())})},
                    {3, return({valid, enacl:auth(Msg, Key)})}]);
       false ->
-        binary(enacl:auth_size())
+        binary(enacl:auth_BYTES())
     end;
 authenticator_good(_Msg, _Key) ->
-    binary(enacl:auth_size()).
+    binary(enacl:auth_BYTES()).
 
 authenticator(Msg, Key) ->
   ?FAULT(authenticator_bad(), authenticator_good(Msg, Key)).
@@ -690,19 +711,19 @@ prop_onetimeauth_correct() ->
        end).
 
 ot_authenticator_bad() ->
-    oneof([a, int(), ?SUCHTHAT(X, binary(), byte_size(X) /= enacl:onetime_auth_size())]).
+    oneof([a, int(), ?SUCHTHAT(X, binary(), byte_size(X) /= enacl:onetime_auth_BYTES())]).
 
 ot_authenticator_good(Msg, Key) when is_binary(Key) ->
-    Sz = enacl:secretbox_key_size(),
+    Sz = enacl:secretbox_KEYBYTES(),
     case v_iodata(Msg) andalso byte_size(Key) == Sz of
       true ->
-        frequency([{1, ?LAZY({invalid, binary(enacl:onetime_auth_size())})},
+        frequency([{1, ?LAZY({invalid, binary(enacl:onetime_auth_BYTES())})},
                    {3, return({valid, enacl:onetime_auth(Msg, Key)})}]);
       false ->
-        binary(enacl:onetime_auth_size())
+        binary(enacl:onetime_auth_BYTES())
     end;
 ot_authenticator_good(_Msg, _Key) ->
-    binary(enacl:auth_size()).
+    binary(enacl:auth_BYTES()).
 
 ot_authenticator(Msg, Key) ->
   ?FAULT(ot_authenticator_bad(), ot_authenticator_good(Msg, Key)).