TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls.git / ae59c5232274df36b1b58dd52eb74cb153829a1a / . / tests / suites / test_suite_pkcs1_v21.function
blob: 0ecd4a7bf77ff68669db7766344d40d590cebbdf [file] [log] [blame]
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1/* BEGIN_HEADER */
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]2#include "mbedtls/rsa.h"
3#include "mbedtls/md.h"
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]4/* END_HEADER */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]5
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]6/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7 * depends_on:MBEDTLS_PKCS1_V21:MBEDTLS_RSA_C:MBEDTLS_SHA1_C
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]8 * END_DEPENDENCIES
9 */
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]10
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]11/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]12void pkcs1_rsaes_oaep_encrypt(int mod, data_t *input_N, data_t *input_E,
13 int hash, data_t *message_str, data_t *rnd_buf,
14 data_t *result_str, int result)
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]15{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]16 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]17 mbedtls_rsa_context ctx;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]18 mbedtls_test_rnd_buf_info info;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]19 mbedtls_mpi N, E;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]20
Gilles Peskinebef30192021-03-24 00:48:57 +0100[diff] [blame]21 info.fallback_f_rng = mbedtls_test_rnd_std_rand;
22 info.fallback_p_rng = NULL;
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]23 info.buf = rnd_buf->x;
24 info.length = rnd_buf->len;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]25
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]26 mbedtls_mpi_init(&N); mbedtls_mpi_init(&E);
27 mbedtls_rsa_init(&ctx, MBEDTLS_RSA_PKCS_V21, hash);
28 memset(output, 0x00, sizeof(output));
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]29
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]30 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
31 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
32 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, NULL, NULL, NULL, &E) == 0);
33 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
34 TEST_ASSERT(mbedtls_rsa_check_pubkey(&ctx) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]35
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]36 if (message_str->len == 0) {
Gilles Peskine85a6dd42018-10-15 16:32:42 +0200[diff] [blame]37 message_str->x = NULL;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]38 }
39 TEST_ASSERT(mbedtls_rsa_pkcs1_encrypt(&ctx,
40 &mbedtls_test_rnd_buffer_rand,
41 &info, MBEDTLS_RSA_PUBLIC,
42 message_str->len, message_str->x,
43 output) == result);
44 if (result == 0) {
Tom Cosgroveba3b14d2023-09-04 11:23:02 +0100[diff] [blame]45 TEST_MEMORY_COMPARE(output, ctx.len, result_str->x, result_str->len);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]46 }
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]47
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]48exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]49 mbedtls_mpi_free(&N); mbedtls_mpi_free(&E);
50 mbedtls_rsa_free(&ctx);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]51}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]52/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]53
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]54/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]55void pkcs1_rsaes_oaep_decrypt(int mod, data_t *input_P, data_t *input_Q,
56 data_t *input_N, data_t *input_E, int hash,
57 data_t *result_str, char *seed, data_t *message_str,
58 int result)
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]59{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]60 unsigned char output[64];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]61 mbedtls_rsa_context ctx;
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]62 size_t output_len;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]63 mbedtls_test_rnd_pseudo_info rnd_info;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]64 mbedtls_mpi N, P, Q, E;
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]65 ((void) seed);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]66
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]67 mbedtls_mpi_init(&N); mbedtls_mpi_init(&P);
68 mbedtls_mpi_init(&Q); mbedtls_mpi_init(&E);
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]69
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]70 mbedtls_rsa_init(&ctx, MBEDTLS_RSA_PKCS_V21, hash);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]71
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]72 memset(output, 0x00, sizeof(output));
73 memset(&rnd_info, 0, sizeof(mbedtls_test_rnd_pseudo_info));
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]74
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]75 TEST_ASSERT(mbedtls_mpi_read_binary(&P, input_P->x, input_P->len) == 0);
76 TEST_ASSERT(mbedtls_mpi_read_binary(&Q, input_Q->x, input_Q->len) == 0);
77 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
78 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
Paul Bakker548957d2013-08-30 10:30:02 +0200[diff] [blame]79
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]80 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, &P, &Q, NULL, &E) == 0);
81 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
82 TEST_ASSERT(mbedtls_rsa_complete(&ctx) == 0);
83 TEST_ASSERT(mbedtls_rsa_check_privkey(&ctx) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]84
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]85 if (result_str->len == 0) {
86 TEST_ASSERT(mbedtls_rsa_pkcs1_decrypt(&ctx,
87 &mbedtls_test_rnd_pseudo_rand,
88 &rnd_info,
89 MBEDTLS_RSA_PRIVATE,
90 &output_len, message_str->x,
91 NULL, 0) == result);
92 } else {
93 TEST_ASSERT(mbedtls_rsa_pkcs1_decrypt(&ctx,
94 &mbedtls_test_rnd_pseudo_rand,
95 &rnd_info,
96 MBEDTLS_RSA_PRIVATE,
97 &output_len, message_str->x,
98 output,
99 sizeof(output)) == result);
100 if (result == 0) {
Tom Cosgroveba3b14d2023-09-04 11:23:02 +0100[diff] [blame]101 TEST_MEMORY_COMPARE(output, output_len, result_str->x, result_str->len);
Gilles Peskine85a6dd42018-10-15 16:32:42 +0200[diff] [blame]102 }
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]103 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]104
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]105exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]106 mbedtls_mpi_free(&N); mbedtls_mpi_free(&P);
107 mbedtls_mpi_free(&Q); mbedtls_mpi_free(&E);
108 mbedtls_rsa_free(&ctx);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]109}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]110/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]111
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]112/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]113void pkcs1_rsassa_pss_sign(int mod, data_t *input_P, data_t *input_Q,
114 data_t *input_N, data_t *input_E, int digest,
115 int hash, data_t *message_str, data_t *rnd_buf,
116 data_t *result_str, int fixed_salt_length,
117 int result)
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]118{
119 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
120 unsigned char output[512];
121 mbedtls_rsa_context ctx;
122 mbedtls_test_rnd_buf_info info;
123 mbedtls_mpi N, P, Q, E;
124
Gilles Peskinebef30192021-03-24 00:48:57 +0100[diff] [blame]125 info.fallback_f_rng = mbedtls_test_rnd_std_rand;
126 info.fallback_p_rng = NULL;
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]127 info.buf = rnd_buf->x;
128 info.length = rnd_buf->len;
129
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]130 mbedtls_mpi_init(&N); mbedtls_mpi_init(&P);
131 mbedtls_mpi_init(&Q); mbedtls_mpi_init(&E);
132 mbedtls_rsa_init(&ctx, MBEDTLS_RSA_PKCS_V21, hash);
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]133
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]134 memset(hash_result, 0x00, sizeof(hash_result));
135 memset(output, 0x00, sizeof(output));
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]136
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]137 TEST_ASSERT(mbedtls_mpi_read_binary(&P, input_P->x, input_P->len) == 0);
138 TEST_ASSERT(mbedtls_mpi_read_binary(&Q, input_Q->x, input_Q->len) == 0);
139 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
140 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]141
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]142 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, &P, &Q, NULL, &E) == 0);
143 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
144 TEST_ASSERT(mbedtls_rsa_complete(&ctx) == 0);
145 TEST_ASSERT(mbedtls_rsa_check_privkey(&ctx) == 0);
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]146
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]147 if (mbedtls_md_info_from_type(digest) != NULL) {
148 TEST_ASSERT(mbedtls_md(mbedtls_md_info_from_type(digest), message_str->x, message_str->len,
149 hash_result) == 0);
150 }
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]151
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]152 if (fixed_salt_length == MBEDTLS_RSA_SALT_LEN_ANY) {
153 TEST_ASSERT(mbedtls_rsa_pkcs1_sign(&ctx, &mbedtls_test_rnd_buffer_rand,
154 &info, MBEDTLS_RSA_PRIVATE, digest, 0,
155 hash_result, output) == result);
156 if (result == 0) {
Tom Cosgroveba3b14d2023-09-04 11:23:02 +0100[diff] [blame]157 TEST_MEMORY_COMPARE(output, ctx.len, result_str->x, result_str->len);
Cédric Meuter61adfd62021-01-10 11:52:39 +0100[diff] [blame]158 }
159
160 info.buf = rnd_buf->x;
161 info.length = rnd_buf->len;
162 }
163
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]164 TEST_ASSERT(mbedtls_rsa_rsassa_pss_sign_ext(&ctx, &mbedtls_test_rnd_buffer_rand,
165 &info, digest, 0, hash_result,
166 fixed_salt_length, output) == result);
167 if (result == 0) {
Tom Cosgroveba3b14d2023-09-04 11:23:02 +0100[diff] [blame]168 TEST_MEMORY_COMPARE(output, ctx.len, result_str->x, result_str->len);
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]169 }
170
171exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]172 mbedtls_mpi_free(&N); mbedtls_mpi_free(&P);
173 mbedtls_mpi_free(&Q); mbedtls_mpi_free(&E);
174 mbedtls_rsa_free(&ctx);
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]175}
176/* END_CASE */
177
178/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]179void pkcs1_rsassa_pss_verify(int mod, data_t *input_N, data_t *input_E,
180 int digest, int hash, data_t *message_str,
181 char *salt, data_t *result_str, int result)
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]182{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]183 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]184 mbedtls_rsa_context ctx;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]185 mbedtls_mpi N, E;
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]186 ((void) salt);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]187
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]188 mbedtls_mpi_init(&N); mbedtls_mpi_init(&E);
189 mbedtls_rsa_init(&ctx, MBEDTLS_RSA_PKCS_V21, hash);
190 memset(hash_result, 0x00, sizeof(hash_result));
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]191
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]192 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
193 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]194
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]195 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, NULL, NULL, NULL, &E) == 0);
196 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
197 TEST_ASSERT(mbedtls_rsa_check_pubkey(&ctx) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]198
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]199
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]200 if (mbedtls_md_info_from_type(digest) != NULL) {
201 TEST_ASSERT(mbedtls_md(mbedtls_md_info_from_type(digest), message_str->x, message_str->len,
202 hash_result) == 0);
203 }
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]204
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]205 TEST_ASSERT(mbedtls_rsa_pkcs1_verify(&ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC, digest, 0,
206 hash_result, result_str->x) == result);
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]207
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]208exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]209 mbedtls_mpi_free(&N); mbedtls_mpi_free(&E);
210 mbedtls_rsa_free(&ctx);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]211}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]212/* END_CASE */
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]213
214/* BEGIN_CASE */
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]215void pkcs1_rsassa_pss_verify_ext(int mod, data_t *input_N, data_t *input_E,
216 int msg_digest_id, int ctx_hash,
217 int mgf_hash, int salt_len,
218 data_t *message_str,
219 data_t *result_str, int result_simple,
220 int result_full)
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]221{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]222 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]223 mbedtls_rsa_context ctx;
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]224 size_t hash_len;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]225 mbedtls_mpi N, E;
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]226
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]227 mbedtls_mpi_init(&N); mbedtls_mpi_init(&E);
228 mbedtls_rsa_init(&ctx, MBEDTLS_RSA_PKCS_V21, ctx_hash);
229 memset(hash_result, 0x00, sizeof(hash_result));
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]230
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]231 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
232 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]233
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]234 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, NULL, NULL, NULL, &E) == 0);
235 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
236 TEST_ASSERT(mbedtls_rsa_check_pubkey(&ctx) == 0);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]237
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]238
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]239 if (msg_digest_id != MBEDTLS_MD_NONE) {
240 TEST_ASSERT(mbedtls_md(mbedtls_md_info_from_type(msg_digest_id),
241 message_str->x, message_str->len, hash_result) == 0);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]242 hash_len = 0;
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]243 } else {
244 memcpy(hash_result, message_str->x, message_str->len);
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]245 hash_len = message_str->len;
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]246 }
247
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]248 TEST_ASSERT(mbedtls_rsa_pkcs1_verify(&ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC,
249 msg_digest_id, hash_len, hash_result,
250 result_str->x) == result_simple);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]251
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]252 TEST_ASSERT(mbedtls_rsa_rsassa_pss_verify_ext(&ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC,
253 msg_digest_id, hash_len, hash_result,
254 mgf_hash, salt_len,
255 result_str->x) == result_full);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]256
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]257exit:
Gilles Peskine1b6c09a2023-01-11 14:52:35 +0100[diff] [blame]258 mbedtls_mpi_free(&N); mbedtls_mpi_free(&E);
259 mbedtls_rsa_free(&ctx);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]260}
261/* END_CASE */