Restore P>Q in RSA key generation (#558) The PKCS#1 standard says nothing about the relation between P and Q but many libraries guarantee P>Q and mbed TLS did so too in earlier versions. This commit restores this behaviour.

commit: bfcd032f9d784394b74999a34f8d8c68d35c71e4 [log] [tgz]
author: Janos Follath <janos.follath@arm.com> Wed Sep 21 13:18:12 2016 +0100
committer: Simon Butcher <simon.butcher@arm.com> Thu Oct 13 12:54:33 2016 +0100
tree: ca4d708f38aba6a86f73d6a1f2a366199931d01f
parent: e337ee647f9b98a34e144d24e722eacf2f1704b7 [diff] [blame]
diff --git a/tests/suites/test_suite_rsa.function b/tests/suites/test_suite_rsa.function
index 45d5723..d4f3308 100644
--- a/tests/suites/test_suite_rsa.function
+++ b/tests/suites/test_suite_rsa.function

@@ -668,14 +668,17 @@
 
     entropy_init( &entropy );
     TEST_ASSERT( ctr_drbg_init( &ctr_drbg, entropy_func, &entropy,
-                                (const unsigned char *) pers, strlen( pers ) ) == 0 );
+                                (const unsigned char *) pers,
+                                strlen( pers ) ) == 0 );
 
     rsa_init( &ctx, 0, 0 );
 
-    TEST_ASSERT( rsa_gen_key( &ctx, ctr_drbg_random, &ctr_drbg, nrbits, exponent ) == result );
+    TEST_ASSERT( rsa_gen_key( &ctx, ctr_drbg_random, &ctr_drbg, nrbits,
+                 exponent ) == result );
     if( result == 0 )
     {
         TEST_ASSERT( rsa_check_privkey( &ctx ) == 0 );
+        TEST_ASSERT( mpi_cmp_mpi( &ctx.P, &ctx.Q ) > 0 );
     }
 
 exit:
commit	bfcd032f9d784394b74999a34f8d8c68d35c71e4	[log] [tgz]
author	Janos Follath <janos.follath@arm.com>	Wed Sep 21 13:18:12 2016 +0100
committer	Simon Butcher <simon.butcher@arm.com>	Thu Oct 13 12:54:33 2016 +0100
tree	ca4d708f38aba6a86f73d6a1f2a366199931d01f
parent	e337ee647f9b98a34e144d24e722eacf2f1704b7 [diff] [blame]