| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 1 | /* BEGIN_HEADER */ |
| Manuel Pégourié-Gonnard | 7f80997 | 2015-03-09 17:05:11 +0000 | [diff] [blame] | 2 | #include "mbedtls/pk.h" |
| 3 | #include "mbedtls/pem.h" |
| 4 | #include "mbedtls/oid.h" |
| Valerio Setti | fa49a8e | 2023-01-26 10:00:55 +0100 | [diff] [blame] | 5 | #include "mbedtls/ecp.h" |
| Valerio Setti | aed8799 | 2023-07-04 19:58:43 +0200 | [diff] [blame] | 6 | #include "mbedtls/psa_util.h" |
| Valerio Setti | 77a7568 | 2023-05-15 11:18:46 +0200 | [diff] [blame] | 7 | #include "pk_internal.h" |
| Waleed Elmelegy | 38202a2 | 2023-09-21 15:21:10 +0100 | [diff] [blame] | 8 | |
| 9 | #if defined(MBEDTLS_PKCS12_C) || defined(MBEDTLS_PKCS5_C) |
| 10 | #define HAVE_mbedtls_pk_parse_key_pkcs8_encrypted_der |
| 11 | #endif |
| 12 | |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 13 | /* END_HEADER */ |
| 14 | |
| 15 | /* BEGIN_DEPENDENCIES |
| Valerio Setti | c5d85e5 | 2023-07-26 18:12:23 +0200 | [diff] [blame] | 16 | * depends_on:MBEDTLS_PK_PARSE_C |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 17 | * END_DEPENDENCIES |
| 18 | */ |
| 19 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 20 | /* BEGIN_CASE depends_on:MBEDTLS_RSA_C:MBEDTLS_FS_IO */ |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 21 | void pk_parse_keyfile_rsa(char *key_file, char *password, int result) |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 22 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 23 | mbedtls_pk_context ctx; |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 24 | int res; |
| 25 | char *pwd = password; |
| 26 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 27 | mbedtls_pk_init(&ctx); |
| Valerio Setti | 14bfdbf | 2023-04-24 13:53:21 +0200 | [diff] [blame] | 28 | MD_PSA_INIT(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 29 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 30 | if (strcmp(pwd, "NULL") == 0) { |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 31 | pwd = NULL; |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 32 | } |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 33 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 34 | res = mbedtls_pk_parse_keyfile(&ctx, key_file, pwd, |
| 35 | mbedtls_test_rnd_std_rand, NULL); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 36 | |
| Gilles Peskine | 799befd | 2023-11-15 11:04:08 +0100 | [diff] [blame] | 37 | TEST_EQUAL(res, result); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 38 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 39 | if (res == 0) { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 40 | mbedtls_rsa_context *rsa; |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 41 | TEST_ASSERT(mbedtls_pk_can_do(&ctx, MBEDTLS_PK_RSA)); |
| 42 | rsa = mbedtls_pk_rsa(ctx); |
| Gilles Peskine | 799befd | 2023-11-15 11:04:08 +0100 | [diff] [blame] | 43 | TEST_EQUAL(mbedtls_rsa_check_privkey(rsa), 0); |
| Gilles Peskine | d078386 | 2024-02-02 13:13:34 +0100 | [diff] [blame] | 44 | |
| Gilles Peskine | 92fb604 | 2024-02-01 22:33:06 +0100 | [diff] [blame^] | 45 | size_t bitlen = mbedtls_rsa_get_bitlen(rsa); |
| 46 | TEST_EQUAL(mbedtls_pk_get_bitlen(&ctx), bitlen); |
| 47 | TEST_EQUAL(mbedtls_pk_get_len(&ctx), (bitlen + 7) / 8); |
| 48 | |
| Gilles Peskine | d078386 | 2024-02-02 13:13:34 +0100 | [diff] [blame] | 49 | #if defined(MBEDTLS_PSA_CRYPTO_C) |
| 50 | psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT; |
| 51 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 52 | PSA_KEY_USAGE_SIGN_HASH, |
| 53 | &attributes), 0); |
| 54 | psa_reset_key_attributes(&attributes); |
| 55 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 56 | PSA_KEY_USAGE_SIGN_MESSAGE, |
| 57 | &attributes), 0); |
| 58 | psa_reset_key_attributes(&attributes); |
| 59 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 60 | PSA_KEY_USAGE_DECRYPT, |
| 61 | &attributes), 0); |
| 62 | psa_reset_key_attributes(&attributes); |
| 63 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 64 | PSA_KEY_USAGE_VERIFY_HASH, |
| 65 | &attributes), 0); |
| 66 | psa_reset_key_attributes(&attributes); |
| 67 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 68 | PSA_KEY_USAGE_VERIFY_MESSAGE, |
| 69 | &attributes), 0); |
| 70 | psa_reset_key_attributes(&attributes); |
| 71 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 72 | PSA_KEY_USAGE_ENCRYPT, |
| 73 | &attributes), 0); |
| 74 | #endif |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 75 | } |
| 76 | |
| Paul Bakker | bd51b26 | 2014-07-10 15:26:12 +0200 | [diff] [blame] | 77 | exit: |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 78 | mbedtls_pk_free(&ctx); |
| Manuel Pégourié-Gonnard | fa99afa | 2023-03-17 11:59:12 +0100 | [diff] [blame] | 79 | MD_PSA_DONE(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 80 | } |
| Manuel Pégourié-Gonnard | fa99afa | 2023-03-17 11:59:12 +0100 | [diff] [blame] | 81 | |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 82 | /* END_CASE */ |
| 83 | |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 84 | /* BEGIN_CASE depends_on:MBEDTLS_RSA_C:MBEDTLS_FS_IO */ |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 85 | void pk_parse_public_keyfile_rsa(char *key_file, int result) |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 86 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 87 | mbedtls_pk_context ctx; |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 88 | int res; |
| 89 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 90 | mbedtls_pk_init(&ctx); |
| Valerio Setti | 14bfdbf | 2023-04-24 13:53:21 +0200 | [diff] [blame] | 91 | MD_PSA_INIT(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 92 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 93 | res = mbedtls_pk_parse_public_keyfile(&ctx, key_file); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 94 | |
| Gilles Peskine | 799befd | 2023-11-15 11:04:08 +0100 | [diff] [blame] | 95 | TEST_EQUAL(res, result); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 96 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 97 | if (res == 0) { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 98 | mbedtls_rsa_context *rsa; |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 99 | TEST_ASSERT(mbedtls_pk_can_do(&ctx, MBEDTLS_PK_RSA)); |
| 100 | rsa = mbedtls_pk_rsa(ctx); |
| Gilles Peskine | 799befd | 2023-11-15 11:04:08 +0100 | [diff] [blame] | 101 | TEST_EQUAL(mbedtls_rsa_check_pubkey(rsa), 0); |
| Gilles Peskine | d078386 | 2024-02-02 13:13:34 +0100 | [diff] [blame] | 102 | |
| 103 | #if defined(MBEDTLS_PSA_CRYPTO_C) |
| 104 | psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT; |
| 105 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 106 | PSA_KEY_USAGE_ENCRYPT, |
| 107 | &attributes), 0); |
| 108 | psa_reset_key_attributes(&attributes); |
| 109 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 110 | PSA_KEY_USAGE_VERIFY_HASH, |
| 111 | &attributes), 0); |
| 112 | psa_reset_key_attributes(&attributes); |
| 113 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 114 | PSA_KEY_USAGE_VERIFY_MESSAGE, |
| 115 | &attributes), 0); |
| 116 | #endif |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 117 | } |
| 118 | |
| Paul Bakker | bd51b26 | 2014-07-10 15:26:12 +0200 | [diff] [blame] | 119 | exit: |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 120 | mbedtls_pk_free(&ctx); |
| Manuel Pégourié-Gonnard | fa99afa | 2023-03-17 11:59:12 +0100 | [diff] [blame] | 121 | MD_PSA_DONE(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 122 | } |
| 123 | /* END_CASE */ |
| 124 | |
| Valerio Setti | 545a0d6 | 2023-06-14 14:56:48 +0200 | [diff] [blame] | 125 | /* BEGIN_CASE depends_on:MBEDTLS_FS_IO:MBEDTLS_PK_HAVE_ECC_KEYS */ |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 126 | void pk_parse_public_keyfile_ec(char *key_file, int result) |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 127 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 128 | mbedtls_pk_context ctx; |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 129 | int res; |
| 130 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 131 | mbedtls_pk_init(&ctx); |
| Pengyu Lv | c5d4c46 | 2023-11-15 14:20:07 +0800 | [diff] [blame] | 132 | MD_OR_USE_PSA_INIT(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 133 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 134 | res = mbedtls_pk_parse_public_keyfile(&ctx, key_file); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 135 | |
| Gilles Peskine | 799befd | 2023-11-15 11:04:08 +0100 | [diff] [blame] | 136 | TEST_EQUAL(res, result); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 137 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 138 | if (res == 0) { |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 139 | TEST_ASSERT(mbedtls_pk_can_do(&ctx, MBEDTLS_PK_ECKEY)); |
| Valerio Setti | 483738e | 2023-05-17 15:37:29 +0200 | [diff] [blame] | 140 | #if defined(MBEDTLS_PK_USE_PSA_EC_DATA) |
| 141 | /* No need to check whether the parsed public point is on the curve or |
| 142 | * not because this is already done by the internal "pk_get_ecpubkey()" |
| 143 | * function */ |
| 144 | #else |
| 145 | const mbedtls_ecp_keypair *eckey; |
| Valerio Setti | 77a7568 | 2023-05-15 11:18:46 +0200 | [diff] [blame] | 146 | eckey = mbedtls_pk_ec_ro(ctx); |
| Gilles Peskine | 799befd | 2023-11-15 11:04:08 +0100 | [diff] [blame] | 147 | TEST_EQUAL(mbedtls_ecp_check_pubkey(&eckey->grp, &eckey->Q), 0); |
| Valerio Setti | 483738e | 2023-05-17 15:37:29 +0200 | [diff] [blame] | 148 | #endif |
| Gilles Peskine | d078386 | 2024-02-02 13:13:34 +0100 | [diff] [blame] | 149 | |
| 150 | #if defined(MBEDTLS_PSA_CRYPTO_C) |
| 151 | psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT; |
| 152 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 153 | PSA_KEY_USAGE_VERIFY_HASH, |
| 154 | &attributes), 0); |
| 155 | psa_reset_key_attributes(&attributes); |
| 156 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 157 | PSA_KEY_USAGE_VERIFY_MESSAGE, |
| 158 | &attributes), 0); |
| 159 | #endif |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 160 | } |
| 161 | |
| Paul Bakker | bd51b26 | 2014-07-10 15:26:12 +0200 | [diff] [blame] | 162 | exit: |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 163 | mbedtls_pk_free(&ctx); |
| Pengyu Lv | c5d4c46 | 2023-11-15 14:20:07 +0800 | [diff] [blame] | 164 | MD_OR_USE_PSA_DONE(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 165 | } |
| 166 | /* END_CASE */ |
| 167 | |
| Valerio Setti | 545a0d6 | 2023-06-14 14:56:48 +0200 | [diff] [blame] | 168 | /* BEGIN_CASE depends_on:MBEDTLS_FS_IO:MBEDTLS_PK_HAVE_ECC_KEYS */ |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 169 | void pk_parse_keyfile_ec(char *key_file, char *password, int result) |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 170 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 171 | mbedtls_pk_context ctx; |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 172 | int res; |
| 173 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 174 | mbedtls_pk_init(&ctx); |
| Pengyu Lv | c5d4c46 | 2023-11-15 14:20:07 +0800 | [diff] [blame] | 175 | MD_OR_USE_PSA_INIT(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 176 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 177 | res = mbedtls_pk_parse_keyfile(&ctx, key_file, password, |
| 178 | mbedtls_test_rnd_std_rand, NULL); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 179 | |
| Gilles Peskine | 799befd | 2023-11-15 11:04:08 +0100 | [diff] [blame] | 180 | TEST_EQUAL(res, result); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 181 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 182 | if (res == 0) { |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 183 | TEST_ASSERT(mbedtls_pk_can_do(&ctx, MBEDTLS_PK_ECKEY)); |
| Gilles Peskine | d078386 | 2024-02-02 13:13:34 +0100 | [diff] [blame] | 184 | #if defined(MBEDTLS_PK_USE_PSA_EC_DATA) |
| 185 | /* PSA keys are already checked on import so nothing to do here. */ |
| 186 | #else |
| Valerio Setti | 7237d5f | 2023-05-18 19:00:22 +0200 | [diff] [blame] | 187 | const mbedtls_ecp_keypair *eckey = mbedtls_pk_ec_ro(ctx); |
| Gilles Peskine | 799befd | 2023-11-15 11:04:08 +0100 | [diff] [blame] | 188 | TEST_EQUAL(mbedtls_ecp_check_privkey(&eckey->grp, &eckey->d), 0); |
| Gilles Peskine | d078386 | 2024-02-02 13:13:34 +0100 | [diff] [blame] | 189 | #endif |
| 190 | |
| 191 | #if defined(MBEDTLS_PSA_CRYPTO_C) |
| 192 | psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT; |
| 193 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 194 | PSA_KEY_USAGE_SIGN_HASH, |
| 195 | &attributes), 0); |
| 196 | psa_reset_key_attributes(&attributes); |
| 197 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 198 | PSA_KEY_USAGE_SIGN_MESSAGE, |
| 199 | &attributes), 0); |
| 200 | psa_reset_key_attributes(&attributes); |
| 201 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 202 | PSA_KEY_USAGE_DERIVE, |
| 203 | &attributes), 0); |
| 204 | psa_reset_key_attributes(&attributes); |
| 205 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 206 | PSA_KEY_USAGE_VERIFY_HASH, |
| 207 | &attributes), 0); |
| 208 | psa_reset_key_attributes(&attributes); |
| 209 | TEST_EQUAL(mbedtls_pk_get_psa_attributes(&ctx, |
| 210 | PSA_KEY_USAGE_VERIFY_MESSAGE, |
| 211 | &attributes), 0); |
| Valerio Setti | 7237d5f | 2023-05-18 19:00:22 +0200 | [diff] [blame] | 212 | #endif |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 213 | } |
| 214 | |
| Paul Bakker | bd51b26 | 2014-07-10 15:26:12 +0200 | [diff] [blame] | 215 | exit: |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 216 | mbedtls_pk_free(&ctx); |
| Pengyu Lv | c5d4c46 | 2023-11-15 14:20:07 +0800 | [diff] [blame] | 217 | MD_OR_USE_PSA_DONE(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 218 | } |
| 219 | /* END_CASE */ |
| 220 | |
| Manuel Pégourié-Gonnard | b65370f | 2020-02-10 10:50:16 +0100 | [diff] [blame] | 221 | /* BEGIN_CASE */ |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 222 | void pk_parse_key(data_t *buf, int result) |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 223 | { |
| Manuel Pégourié-Gonnard | 2cf5a7c | 2015-04-08 12:49:31 +0200 | [diff] [blame] | 224 | mbedtls_pk_context pk; |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 225 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 226 | mbedtls_pk_init(&pk); |
| Valerio Setti | 14bfdbf | 2023-04-24 13:53:21 +0200 | [diff] [blame] | 227 | USE_PSA_INIT(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 228 | |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 229 | TEST_ASSERT(mbedtls_pk_parse_key(&pk, buf->x, buf->len, NULL, 0, |
| 230 | mbedtls_test_rnd_std_rand, NULL) == result); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 231 | |
| Paul Bakker | bd51b26 | 2014-07-10 15:26:12 +0200 | [diff] [blame] | 232 | exit: |
| Gilles Peskine | 449bd83 | 2023-01-11 14:50:10 +0100 | [diff] [blame] | 233 | mbedtls_pk_free(&pk); |
| Valerio Setti | 14bfdbf | 2023-04-24 13:53:21 +0200 | [diff] [blame] | 234 | USE_PSA_DONE(); |
| Paul Bakker | 1a7550a | 2013-09-15 13:01:22 +0200 | [diff] [blame] | 235 | } |
| 236 | /* END_CASE */ |
| Valerio Setti | aed8799 | 2023-07-04 19:58:43 +0200 | [diff] [blame] | 237 | |
| Waleed Elmelegy | 38202a2 | 2023-09-21 15:21:10 +0100 | [diff] [blame] | 238 | /* BEGIN_CASE depends_on:MBEDTLS_TEST_HOOKS:HAVE_mbedtls_pk_parse_key_pkcs8_encrypted_der */ |
| Waleed Elmelegy | 1db5cda | 2023-09-20 18:00:48 +0100 | [diff] [blame] | 239 | void pk_parse_key_encrypted(data_t *buf, data_t *pass, int result) |
| 240 | { |
| 241 | mbedtls_pk_context pk; |
| 242 | |
| 243 | mbedtls_pk_init(&pk); |
| 244 | USE_PSA_INIT(); |
| Waleed Elmelegy | 38202a2 | 2023-09-21 15:21:10 +0100 | [diff] [blame] | 245 | |
| Waleed Elmelegy | 9d4d8eb | 2023-09-21 08:27:39 +0100 | [diff] [blame] | 246 | TEST_EQUAL(mbedtls_pk_parse_key_pkcs8_encrypted_der(&pk, buf->x, buf->len, |
| Waleed Elmelegy | 556a079 | 2023-09-21 09:19:56 +0100 | [diff] [blame] | 247 | pass->x, pass->len, |
| 248 | mbedtls_test_rnd_std_rand, |
| 249 | NULL), result); |
| Waleed Elmelegy | 1db5cda | 2023-09-20 18:00:48 +0100 | [diff] [blame] | 250 | exit: |
| 251 | mbedtls_pk_free(&pk); |
| 252 | USE_PSA_DONE(); |
| 253 | } |
| 254 | /* END_CASE */ |
| 255 | |
| Valerio Setti | d476faa | 2023-07-05 10:33:53 +0200 | [diff] [blame] | 256 | /* BEGIN_CASE depends_on:MBEDTLS_PK_HAVE_ECC_KEYS:MBEDTLS_PK_WRITE_C */ |
| 257 | void pk_parse_fix_montgomery(data_t *input_key, data_t *exp_output) |
| Valerio Setti | aed8799 | 2023-07-04 19:58:43 +0200 | [diff] [blame] | 258 | { |
| 259 | /* Montgomery keys have specific bits set to either 0 or 1 depending on |
| 260 | * their position. This is enforced during parsing (please see the implementation |
| 261 | * of mbedtls_ecp_read_key() for more details). The scope of this function |
| 262 | * is to verify this enforcing by feeding the parse algorithm with a x25519 |
| 263 | * key which does not have those bits set properly. */ |
| 264 | mbedtls_pk_context pk; |
| 265 | unsigned char *output_key = NULL; |
| 266 | size_t output_key_len = 0; |
| 267 | |
| 268 | mbedtls_pk_init(&pk); |
| 269 | USE_PSA_INIT(); |
| 270 | |
| 271 | TEST_EQUAL(mbedtls_pk_parse_key(&pk, input_key->x, input_key->len, NULL, 0, |
| 272 | mbedtls_test_rnd_std_rand, NULL), 0); |
| 273 | |
| 274 | output_key_len = input_key->len; |
| Tom Cosgrove | 05b2a87 | 2023-07-21 11:31:13 +0100 | [diff] [blame] | 275 | TEST_CALLOC(output_key, output_key_len); |
| Valerio Setti | aed8799 | 2023-07-04 19:58:43 +0200 | [diff] [blame] | 276 | /* output_key_len is updated with the real amount of data written to |
| 277 | * output_key buffer. */ |
| 278 | output_key_len = mbedtls_pk_write_key_der(&pk, output_key, output_key_len); |
| 279 | TEST_ASSERT(output_key_len > 0); |
| 280 | |
| Tom Cosgrove | e4e9e7d | 2023-07-21 11:40:20 +0100 | [diff] [blame] | 281 | TEST_MEMORY_COMPARE(exp_output->x, exp_output->len, output_key, output_key_len); |
| Valerio Setti | aed8799 | 2023-07-04 19:58:43 +0200 | [diff] [blame] | 282 | |
| 283 | exit: |
| 284 | if (output_key != NULL) { |
| 285 | mbedtls_free(output_key); |
| 286 | } |
| 287 | mbedtls_pk_free(&pk); |
| 288 | USE_PSA_DONE(); |
| 289 | } |
| 290 | /* END_CASE */ |