TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 141700f0573fc2711709dfc05b97b1c44280545c / . / tests / suites / test_suite_rsa.function
blob: 1bf1850027786194aa01ccfa58182fec9bc7a038 [file] [log] [blame]
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1/* BEGIN_HEADER */
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]2#include "mbedtls/rsa.h"
Chris Jones66a4cd42021-03-09 16:04:12 +0000[diff] [blame]3#include "rsa_alt_helpers.h"
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]4#include "mbedtls/md2.h"
5#include "mbedtls/md4.h"
6#include "mbedtls/md5.h"
7#include "mbedtls/sha1.h"
8#include "mbedtls/sha256.h"
9#include "mbedtls/sha512.h"
10#include "mbedtls/entropy.h"
11#include "mbedtls/ctr_drbg.h"
Hanno Becker47deec42017-07-24 12:27:09 +0100[diff] [blame]12
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]13/* END_HEADER */
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]14
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]15/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]16 * depends_on:MBEDTLS_RSA_C:MBEDTLS_BIGNUM_C:MBEDTLS_GENPRIME
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]17 * END_DEPENDENCIES
18 */
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]19
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]20/* BEGIN_CASE depends_on:MBEDTLS_CHECK_PARAMS:!MBEDTLS_PARAM_FAILED_ALT */
21void rsa_invalid_param( )
22{
23 mbedtls_rsa_context ctx;
24 const int valid_padding = MBEDTLS_RSA_PKCS_V21;
25 const int invalid_padding = 42;
26 const int valid_mode = MBEDTLS_RSA_PRIVATE;
27 const int invalid_mode = 42;
28 unsigned char buf[42] = { 0 };
29 size_t olen;
30
31 TEST_INVALID_PARAM( mbedtls_rsa_init( NULL, valid_padding, 0 ) );
32 TEST_INVALID_PARAM( mbedtls_rsa_init( &ctx, invalid_padding, 0 ) );
33 TEST_VALID_PARAM( mbedtls_rsa_free( NULL ) );
34
35 /* No more variants because only the first argument must be non-NULL. */
36 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
37 mbedtls_rsa_import( NULL, NULL, NULL,
38 NULL, NULL, NULL ) );
39 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
40 mbedtls_rsa_import_raw( NULL,
41 NULL, 0,
42 NULL, 0,
43 NULL, 0,
44 NULL, 0,
45 NULL, 0 ) );
46
47 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
48 mbedtls_rsa_complete( NULL ) );
49
50 /* No more variants because only the first argument must be non-NULL. */
51 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
52 mbedtls_rsa_export( NULL, NULL, NULL,
53 NULL, NULL, NULL ) );
54 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
55 mbedtls_rsa_export_raw( NULL,
56 NULL, 0,
57 NULL, 0,
58 NULL, 0,
59 NULL, 0,
60 NULL, 0 ) );
61 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
62 mbedtls_rsa_export_crt( NULL, NULL, NULL, NULL ) );
63
64 TEST_INVALID_PARAM( mbedtls_rsa_set_padding( NULL,
65 valid_padding, 0 ) );
66 TEST_INVALID_PARAM( mbedtls_rsa_set_padding( &ctx,
67 invalid_padding, 0 ) );
68
69 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]70 mbedtls_rsa_gen_key( NULL,
71 mbedtls_test_rnd_std_rand,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]72 NULL, 0, 0 ) );
73 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
74 mbedtls_rsa_gen_key( &ctx, NULL,
75 NULL, 0, 0 ) );
76
77 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
78 mbedtls_rsa_check_pubkey( NULL ) );
79 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
80 mbedtls_rsa_check_privkey( NULL ) );
81
82 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
83 mbedtls_rsa_check_pub_priv( NULL, &ctx ) );
84 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
85 mbedtls_rsa_check_pub_priv( &ctx, NULL ) );
86
87 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
88 mbedtls_rsa_public( NULL, buf, buf ) );
89 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
90 mbedtls_rsa_public( &ctx, NULL, buf ) );
91 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
92 mbedtls_rsa_public( &ctx, buf, NULL ) );
93
94 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
95 mbedtls_rsa_private( NULL, NULL, NULL,
96 buf, buf ) );
97 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
98 mbedtls_rsa_private( &ctx, NULL, NULL,
99 NULL, buf ) );
100 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
101 mbedtls_rsa_private( &ctx, NULL, NULL,
102 buf, NULL ) );
103
104 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
105 mbedtls_rsa_pkcs1_encrypt( NULL, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]106 sizeof( buf ), buf,
107 buf ) );
108 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
109 mbedtls_rsa_pkcs1_encrypt( &ctx, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]110 sizeof( buf ), NULL,
111 buf ) );
112 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
113 mbedtls_rsa_pkcs1_encrypt( &ctx, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]114 sizeof( buf ), buf,
115 NULL ) );
116
117 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
118 mbedtls_rsa_rsaes_pkcs1_v15_encrypt( NULL, NULL,
Thomas Daubney53e4ac62021-05-13 18:26:49 +0100[diff] [blame]119 NULL, sizeof( buf ),
120 buf, buf ) );
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]121 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
122 mbedtls_rsa_rsaes_pkcs1_v15_encrypt( &ctx, NULL,
Thomas Daubney53e4ac62021-05-13 18:26:49 +0100[diff] [blame]123 NULL, sizeof( buf ),
124 NULL, buf ) );
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]125 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
126 mbedtls_rsa_rsaes_pkcs1_v15_encrypt( &ctx, NULL,
Thomas Daubney53e4ac62021-05-13 18:26:49 +0100[diff] [blame]127 NULL, sizeof( buf ),
128 buf, NULL ) );
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]129
130 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
131 mbedtls_rsa_rsaes_oaep_encrypt( NULL, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]132 buf, sizeof( buf ),
133 sizeof( buf ), buf,
134 buf ) );
135 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
136 mbedtls_rsa_rsaes_oaep_encrypt( &ctx, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]137 NULL, sizeof( buf ),
138 sizeof( buf ), buf,
139 buf ) );
140 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
141 mbedtls_rsa_rsaes_oaep_encrypt( &ctx, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]142 buf, sizeof( buf ),
143 sizeof( buf ), NULL,
144 buf ) );
145 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
146 mbedtls_rsa_rsaes_oaep_encrypt( &ctx, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]147 buf, sizeof( buf ),
148 sizeof( buf ), buf,
149 NULL ) );
150
151 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
152 mbedtls_rsa_pkcs1_decrypt( NULL, NULL, NULL,
Thomas Daubneyc7feaf32021-05-07 14:02:43 +0100[diff] [blame]153 &olen,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]154 buf, buf, 42 ) );
155 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
156 mbedtls_rsa_pkcs1_decrypt( &ctx, NULL, NULL,
Thomas Daubneyc7feaf32021-05-07 14:02:43 +0100[diff] [blame]157 NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]158 buf, buf, 42 ) );
159 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
160 mbedtls_rsa_pkcs1_decrypt( &ctx, NULL, NULL,
Thomas Daubneyc7feaf32021-05-07 14:02:43 +0100[diff] [blame]161 &olen,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]162 NULL, buf, 42 ) );
163 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
164 mbedtls_rsa_pkcs1_decrypt( &ctx, NULL, NULL,
Thomas Daubneyc7feaf32021-05-07 14:02:43 +0100[diff] [blame]165 &olen,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]166 buf, NULL, 42 ) );
167
168 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
169 mbedtls_rsa_rsaes_pkcs1_v15_decrypt( NULL, NULL,
Thomas Daubney34733082021-05-12 09:24:29 +0100[diff] [blame]170 NULL, &olen,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]171 buf, buf, 42 ) );
172 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
173 mbedtls_rsa_rsaes_pkcs1_v15_decrypt( &ctx, NULL,
Thomas Daubney34733082021-05-12 09:24:29 +0100[diff] [blame]174 NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]175 buf, buf, 42 ) );
176 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
177 mbedtls_rsa_rsaes_pkcs1_v15_decrypt( &ctx, NULL,
Thomas Daubney34733082021-05-12 09:24:29 +0100[diff] [blame]178 NULL, &olen,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]179 NULL, buf, 42 ) );
180 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
181 mbedtls_rsa_rsaes_pkcs1_v15_decrypt( &ctx, NULL,
Thomas Daubney34733082021-05-12 09:24:29 +0100[diff] [blame]182 NULL, &olen,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]183 buf, NULL, 42 ) );
184
185 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
186 mbedtls_rsa_rsaes_oaep_decrypt( NULL, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]187 buf, sizeof( buf ),
188 &olen,
189 buf, buf, 42 ) );
190 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
191 mbedtls_rsa_rsaes_oaep_decrypt( &ctx, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]192 NULL, sizeof( buf ),
193 NULL,
194 buf, buf, 42 ) );
195 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
196 mbedtls_rsa_rsaes_oaep_decrypt( &ctx, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]197 buf, sizeof( buf ),
198 &olen,
199 NULL, buf, 42 ) );
200 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
201 mbedtls_rsa_rsaes_oaep_decrypt( &ctx, NULL, NULL,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]202 buf, sizeof( buf ),
203 &olen,
204 buf, NULL, 42 ) );
205
206 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
207 mbedtls_rsa_pkcs1_sign( NULL, NULL, NULL,
208 valid_mode,
209 0, sizeof( buf ), buf,
210 buf ) );
211 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
212 mbedtls_rsa_pkcs1_sign( &ctx, NULL, NULL,
213 invalid_mode,
214 0, sizeof( buf ), buf,
215 buf ) );
216 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
217 mbedtls_rsa_pkcs1_sign( &ctx, NULL, NULL,
218 valid_mode,
219 0, sizeof( buf ), NULL,
220 buf ) );
221 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
222 mbedtls_rsa_pkcs1_sign( &ctx, NULL, NULL,
223 valid_mode,
224 0, sizeof( buf ), buf,
225 NULL ) );
226 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
227 mbedtls_rsa_pkcs1_sign( &ctx, NULL, NULL,
228 valid_mode,
229 MBEDTLS_MD_SHA1,
230 0, NULL,
231 buf ) );
232
233 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
234 mbedtls_rsa_rsassa_pkcs1_v15_sign( NULL, NULL, NULL,
235 valid_mode,
236 0, sizeof( buf ), buf,
237 buf ) );
238 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
239 mbedtls_rsa_rsassa_pkcs1_v15_sign( &ctx, NULL, NULL,
240 invalid_mode,
241 0, sizeof( buf ), buf,
242 buf ) );
243 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
244 mbedtls_rsa_rsassa_pkcs1_v15_sign( &ctx, NULL, NULL,
245 valid_mode,
246 0, sizeof( buf ), NULL,
247 buf ) );
248 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
249 mbedtls_rsa_rsassa_pkcs1_v15_sign( &ctx, NULL, NULL,
250 valid_mode,
251 0, sizeof( buf ), buf,
252 NULL ) );
253 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
254 mbedtls_rsa_rsassa_pkcs1_v15_sign( &ctx, NULL, NULL,
255 valid_mode,
256 MBEDTLS_MD_SHA1,
257 0, NULL,
258 buf ) );
259
260 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
261 mbedtls_rsa_rsassa_pss_sign( NULL, NULL, NULL,
262 valid_mode,
263 0, sizeof( buf ), buf,
264 buf ) );
265 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
266 mbedtls_rsa_rsassa_pss_sign( &ctx, NULL, NULL,
267 invalid_mode,
268 0, sizeof( buf ), buf,
269 buf ) );
270 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
271 mbedtls_rsa_rsassa_pss_sign( &ctx, NULL, NULL,
272 valid_mode,
273 0, sizeof( buf ), NULL,
274 buf ) );
275 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
276 mbedtls_rsa_rsassa_pss_sign( &ctx, NULL, NULL,
277 valid_mode,
278 0, sizeof( buf ), buf,
279 NULL ) );
280 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
281 mbedtls_rsa_rsassa_pss_sign( &ctx, NULL, NULL,
282 valid_mode,
283 MBEDTLS_MD_SHA1,
284 0, NULL,
285 buf ) );
286
287 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
Cédric Meutera05cbec2020-04-25 15:02:34 +0200[diff] [blame]288 mbedtls_rsa_rsassa_pss_sign_ext( NULL, NULL, NULL,
289 0, sizeof( buf ), buf,
290 MBEDTLS_RSA_SALT_LEN_ANY,
291 buf ) );
292 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
293 mbedtls_rsa_rsassa_pss_sign_ext( &ctx, NULL, NULL,
294 0, sizeof( buf ), NULL,
295 MBEDTLS_RSA_SALT_LEN_ANY,
296 buf ) );
297 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
298 mbedtls_rsa_rsassa_pss_sign_ext( &ctx, NULL, NULL,
299 0, sizeof( buf ), buf,
300 MBEDTLS_RSA_SALT_LEN_ANY,
301 NULL ) );
302 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
303 mbedtls_rsa_rsassa_pss_sign_ext( &ctx, NULL, NULL,
304 MBEDTLS_MD_SHA1,
305 0, NULL,
306 MBEDTLS_RSA_SALT_LEN_ANY,
307 buf ) );
308
309 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
Andrzej Kurekc470b6b2019-01-31 08:20:20 -0500[diff] [blame]310 mbedtls_rsa_pkcs1_verify( NULL, NULL, NULL,
311 valid_mode,
312 0, sizeof( buf ), buf,
313 buf ) );
314 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
315 mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL,
316 invalid_mode,
317 0, sizeof( buf ), buf,
318 buf ) );
319 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
320 mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL,
321 valid_mode,
322 0, sizeof( buf ), NULL,
323 buf ) );
324 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
325 mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL,
326 valid_mode,
327 0, sizeof( buf ), buf,
328 NULL ) );
329 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
330 mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL,
331 valid_mode,
332 MBEDTLS_MD_SHA1, 0, NULL,
333 buf ) );
334
335 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
336 mbedtls_rsa_rsassa_pkcs1_v15_verify( NULL, NULL,
337 NULL,
338 valid_mode,
339 0, sizeof( buf ), buf,
340 buf ) );
341 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
342 mbedtls_rsa_rsassa_pkcs1_v15_verify( &ctx, NULL,
343 NULL,
344 invalid_mode,
345 0, sizeof( buf ), buf,
346 buf ) );
347 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
348 mbedtls_rsa_rsassa_pkcs1_v15_verify( &ctx, NULL,
349 NULL,
350 valid_mode,
351 0, sizeof( buf ),
352 NULL, buf ) );
353 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
354 mbedtls_rsa_rsassa_pkcs1_v15_verify( &ctx, NULL,
355 NULL,
356 valid_mode,
357 0, sizeof( buf ), buf,
358 NULL ) );
359 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
360 mbedtls_rsa_rsassa_pkcs1_v15_verify( &ctx, NULL,
361 NULL,
362 valid_mode,
363 MBEDTLS_MD_SHA1,
364 0, NULL,
365 buf ) );
366
367 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
368 mbedtls_rsa_rsassa_pss_verify( NULL, NULL, NULL,
369 valid_mode,
370 0, sizeof( buf ),
371 buf, buf ) );
372 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
373 mbedtls_rsa_rsassa_pss_verify( &ctx, NULL, NULL,
374 invalid_mode,
375 0, sizeof( buf ),
376 buf, buf ) );
377 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
378 mbedtls_rsa_rsassa_pss_verify( &ctx, NULL, NULL,
379 valid_mode,
380 0, sizeof( buf ),
381 NULL, buf ) );
382 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
383 mbedtls_rsa_rsassa_pss_verify( &ctx, NULL, NULL,
384 valid_mode,
385 0, sizeof( buf ),
386 buf, NULL ) );
387 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
388 mbedtls_rsa_rsassa_pss_verify( &ctx, NULL, NULL,
389 valid_mode,
390 MBEDTLS_MD_SHA1,
391 0, NULL,
392 buf ) );
393
394 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
395 mbedtls_rsa_rsassa_pss_verify_ext( NULL, NULL, NULL,
396 valid_mode,
397 0, sizeof( buf ),
398 buf,
399 0, 0,
400 buf ) );
401 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
402 mbedtls_rsa_rsassa_pss_verify_ext( &ctx, NULL, NULL,
403 invalid_mode,
404 0, sizeof( buf ),
405 buf,
406 0, 0,
407 buf ) );
408 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
409 mbedtls_rsa_rsassa_pss_verify_ext( &ctx, NULL, NULL,
410 valid_mode,
411 0, sizeof( buf ),
412 NULL, 0, 0,
413 buf ) );
414 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
415 mbedtls_rsa_rsassa_pss_verify_ext( &ctx, NULL, NULL,
416 valid_mode,
417 0, sizeof( buf ),
418 buf, 0, 0,
419 NULL ) );
420 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
421 mbedtls_rsa_rsassa_pss_verify_ext( &ctx, NULL, NULL,
422 valid_mode,
423 MBEDTLS_MD_SHA1,
424 0, NULL,
425 0, 0,
426 buf ) );
427
428 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
429 mbedtls_rsa_copy( NULL, &ctx ) );
430 TEST_INVALID_PARAM_RET( MBEDTLS_ERR_RSA_BAD_INPUT_DATA,
431 mbedtls_rsa_copy( &ctx, NULL ) );
432
433exit:
434 return;
435}
436/* END_CASE */
437
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]438/* BEGIN_CASE */
Gilles Peskine914afe12021-02-01 17:55:24 +0100[diff] [blame]439void rsa_init_free( int reinit )
440{
441 mbedtls_rsa_context ctx;
442
443 /* Double free is not explicitly documented to work, but we rely on it
444 * even inside the library so that you can call mbedtls_rsa_free()
445 * unconditionally on an error path without checking whether it has
446 * already been called in the success path. */
447
448 mbedtls_rsa_init( &ctx, 0, 0 );
449 mbedtls_rsa_free( &ctx );
450
451 if( reinit )
452 mbedtls_rsa_init( &ctx, 0, 0 );
453 mbedtls_rsa_free( &ctx );
454
455 /* This test case always succeeds, functionally speaking. A plausible
456 * bug might trigger an invalid pointer dereference or a memory leak. */
457 goto exit;
458}
459/* END_CASE */
460
461/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]462void mbedtls_rsa_pkcs1_sign( data_t * message_str, int padding_mode,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]463 int digest, int mod, int radix_P, char * input_P,
464 int radix_Q, char * input_Q, int radix_N,
465 char * input_N, int radix_E, char * input_E,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]466 data_t * result_str, int result )
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]467{
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]468 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
469 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]470 mbedtls_rsa_context ctx;
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]471 mbedtls_mpi N, P, Q, E;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]472 mbedtls_test_rnd_pseudo_info rnd_info;
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]473
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]474 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &P );
475 mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]476 mbedtls_rsa_init( &ctx, padding_mode, 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]477
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]478 memset( hash_result, 0x00, sizeof( hash_result ) );
479 memset( output, 0x00, sizeof( output ) );
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]480 memset( &rnd_info, 0, sizeof( mbedtls_test_rnd_pseudo_info ) );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]481
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]482 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
483 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
484 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
485 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]486
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]487 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, &P, &Q, NULL, &E ) == 0 );
488 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( mod / 8 ) );
Hanno Becker7f25f852017-10-10 16:56:22 +0100[diff] [blame]489 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]490 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]491
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]492
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]493 if( mbedtls_md_info_from_type( digest ) != NULL )
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]494 TEST_ASSERT( mbedtls_md( mbedtls_md_info_from_type( digest ), message_str->x, message_str->len, hash_result ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]495
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]496 TEST_ASSERT( mbedtls_rsa_pkcs1_sign( &ctx, &mbedtls_test_rnd_pseudo_rand,
497 &rnd_info, MBEDTLS_RSA_PRIVATE, digest,
498 0, hash_result, output ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]499 if( result == 0 )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]500 {
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]501
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]502 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
503 ctx.len, result_str->len ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]504 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]505
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]506exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]507 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &P );
508 mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]509 mbedtls_rsa_free( &ctx );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]510}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]511/* END_CASE */
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]512
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]513/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]514void mbedtls_rsa_pkcs1_verify( data_t * message_str, int padding_mode,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]515 int digest, int mod, int radix_N,
516 char * input_N, int radix_E, char * input_E,
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]517 data_t * result_str, int result )
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]518{
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]519 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]520 mbedtls_rsa_context ctx;
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]521
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]522 mbedtls_mpi N, E;
523
524 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]525 mbedtls_rsa_init( &ctx, padding_mode, 0 );
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]526 memset( hash_result, 0x00, sizeof( hash_result ) );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]527
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]528 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
529 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
530 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
531 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( mod / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]532 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]533
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]534
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]535 if( mbedtls_md_info_from_type( digest ) != NULL )
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]536 TEST_ASSERT( mbedtls_md( mbedtls_md_info_from_type( digest ), message_str->x, message_str->len, hash_result ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]537
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]538 TEST_ASSERT( mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC, digest, 0, hash_result, result_str->x ) == result );
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]539
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]540exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]541 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]542 mbedtls_rsa_free( &ctx );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]543}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]544/* END_CASE */
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]545
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]546
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]547/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]548void rsa_pkcs1_sign_raw( data_t * hash_result,
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]549 int padding_mode, int mod, int radix_P,
550 char * input_P, int radix_Q, char * input_Q,
551 int radix_N, char * input_N, int radix_E,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]552 char * input_E, data_t * result_str )
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]553{
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]554 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]555 mbedtls_rsa_context ctx;
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]556 mbedtls_mpi N, P, Q, E;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]557 mbedtls_test_rnd_pseudo_info rnd_info;
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]558
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]559 mbedtls_rsa_init( &ctx, padding_mode, 0 );
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]560 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &P );
561 mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &E );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]562
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]563 memset( output, 0x00, sizeof( output ) );
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]564 memset( &rnd_info, 0, sizeof( mbedtls_test_rnd_pseudo_info ) );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]565
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]566 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
567 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
568 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
569 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]570
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]571 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, &P, &Q, NULL, &E ) == 0 );
572 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( mod / 8 ) );
Hanno Becker7f25f852017-10-10 16:56:22 +0100[diff] [blame]573 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]574 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]575
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]576
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]577 TEST_ASSERT( mbedtls_rsa_pkcs1_sign( &ctx, &mbedtls_test_rnd_pseudo_rand,
578 &rnd_info, MBEDTLS_RSA_PRIVATE,
579 MBEDTLS_MD_NONE, hash_result->len,
580 hash_result->x, output ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]581
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]582
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]583 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
584 ctx.len, result_str->len ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]585
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]586exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]587 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &P );
588 mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &E );
589
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]590 mbedtls_rsa_free( &ctx );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]591}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]592/* END_CASE */
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]593
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]594/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]595void rsa_pkcs1_verify_raw( data_t * hash_result,
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]596 int padding_mode, int mod, int radix_N,
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]597 char * input_N, int radix_E, char * input_E,
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]598 data_t * result_str, int correct )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]599{
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]600 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]601 mbedtls_rsa_context ctx;
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]602
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]603 mbedtls_mpi N, E;
604 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
605
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]606 mbedtls_rsa_init( &ctx, padding_mode, 0 );
Manuel Pégourié-Gonnardfbf09152014-02-03 11:58:55 +0100[diff] [blame]607 memset( output, 0x00, sizeof( output ) );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]608
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]609 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
610 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]611
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]612 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
613 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( mod / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]614 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]615
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]616
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]617 TEST_ASSERT( mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC, MBEDTLS_MD_NONE, hash_result->len, hash_result->x, result_str->x ) == correct );
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]618
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]619exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]620 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]621 mbedtls_rsa_free( &ctx );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]622}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]623/* END_CASE */
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]624
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]625/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]626void mbedtls_rsa_pkcs1_encrypt( data_t * message_str, int padding_mode,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]627 int mod, int radix_N, char * input_N,
628 int radix_E, char * input_E,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]629 data_t * result_str, int result )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]630{
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]631 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]632 mbedtls_rsa_context ctx;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]633 mbedtls_test_rnd_pseudo_info rnd_info;
Paul Bakker997bbd12011-03-13 15:45:42 +0000[diff] [blame]634
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]635 mbedtls_mpi N, E;
636 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
637
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]638 memset( &rnd_info, 0, sizeof( mbedtls_test_rnd_pseudo_info ) );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]639
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]640 mbedtls_rsa_init( &ctx, padding_mode, 0 );
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]641 memset( output, 0x00, sizeof( output ) );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]642
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]643 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
644 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]645
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]646 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
647 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( mod / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]648 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]649
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]650
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]651 TEST_ASSERT( mbedtls_rsa_pkcs1_encrypt( &ctx,
652 &mbedtls_test_rnd_pseudo_rand,
Thomas Daubney21772772021-05-13 17:30:32 +0100[diff] [blame]653 &rnd_info, message_str->len,
654 message_str->x,
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]655 output ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]656 if( result == 0 )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]657 {
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]658
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]659 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
660 ctx.len, result_str->len ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]661 }
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]662
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]663exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]664 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]665 mbedtls_rsa_free( &ctx );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]666}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]667/* END_CASE */
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]668
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]669/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]670void rsa_pkcs1_encrypt_bad_rng( data_t * message_str, int padding_mode,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]671 int mod, int radix_N, char * input_N,
672 int radix_E, char * input_E,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]673 data_t * result_str, int result )
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]674{
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]675 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]676 mbedtls_rsa_context ctx;
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]677
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]678 mbedtls_mpi N, E;
679
680 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]681 mbedtls_rsa_init( &ctx, padding_mode, 0 );
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]682 memset( output, 0x00, sizeof( output ) );
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]683
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]684 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
685 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]686
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]687 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
688 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( mod / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]689 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]690
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]691
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]692 TEST_ASSERT( mbedtls_rsa_pkcs1_encrypt( &ctx, &mbedtls_test_rnd_zero_rand,
Thomas Daubney21772772021-05-13 17:30:32 +0100[diff] [blame]693 NULL, message_str->len,
694 message_str->x,
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]695 output ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]696 if( result == 0 )
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]697 {
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]698
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]699 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
700 ctx.len, result_str->len ) == 0 );
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]701 }
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]702
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]703exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]704 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]705 mbedtls_rsa_free( &ctx );
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]706}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]707/* END_CASE */
Paul Bakkera6656852010-07-18 19:47:14 +0000[diff] [blame]708
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]709/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]710void mbedtls_rsa_pkcs1_decrypt( data_t * message_str, int padding_mode,
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]711 int mod, int radix_P, char * input_P,
712 int radix_Q, char * input_Q, int radix_N,
713 char * input_N, int radix_E, char * input_E,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]714 int max_output, data_t * result_str,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]715 int result )
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]716{
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]717 unsigned char output[32];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]718 mbedtls_rsa_context ctx;
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]719 size_t output_len;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]720 mbedtls_test_rnd_pseudo_info rnd_info;
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]721 mbedtls_mpi N, P, Q, E;
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]722
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]723 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &P );
724 mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &E );
725
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]726 mbedtls_rsa_init( &ctx, padding_mode, 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]727
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]728 memset( output, 0x00, sizeof( output ) );
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]729 memset( &rnd_info, 0, sizeof( mbedtls_test_rnd_pseudo_info ) );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]730
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]731
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]732 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
733 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
734 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
735 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]736
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]737 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, &P, &Q, NULL, &E ) == 0 );
738 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( mod / 8 ) );
Hanno Becker7f25f852017-10-10 16:56:22 +0100[diff] [blame]739 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]740 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]741
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]742 output_len = 0;
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]743
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]744 TEST_ASSERT( mbedtls_rsa_pkcs1_decrypt( &ctx, mbedtls_test_rnd_pseudo_rand,
Thomas Daubneyc7feaf32021-05-07 14:02:43 +0100[diff] [blame]745 &rnd_info,
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]746 &output_len, message_str->x, output,
747 max_output ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]748 if( result == 0 )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]749 {
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]750
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]751 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]752 output_len,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]753 result_str->len ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]754 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]755
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]756exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]757 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &P );
758 mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]759 mbedtls_rsa_free( &ctx );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]760}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]761/* END_CASE */
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]762
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]763/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]764void mbedtls_rsa_public( data_t * message_str, int mod, int radix_N,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]765 char * input_N, int radix_E, char * input_E,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]766 data_t * result_str, int result )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]767{
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]768 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]769 mbedtls_rsa_context ctx, ctx2; /* Also test mbedtls_rsa_copy() while at it */
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]770
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]771 mbedtls_mpi N, E;
772
773 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]774 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V15, 0 );
775 mbedtls_rsa_init( &ctx2, MBEDTLS_RSA_PKCS_V15, 0 );
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]776 memset( output, 0x00, sizeof( output ) );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]777
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]778 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
779 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]780
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]781 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
782 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( mod / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]783 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]784
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]785
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]786 TEST_ASSERT( mbedtls_rsa_public( &ctx, message_str->x, output ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]787 if( result == 0 )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]788 {
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]789
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]790 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
791 ctx.len, result_str->len ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]792 }
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]793
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]794 /* And now with the copy */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]795 TEST_ASSERT( mbedtls_rsa_copy( &ctx2, &ctx ) == 0 );
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]796 /* clear the original to be sure */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]797 mbedtls_rsa_free( &ctx );
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]798
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]799 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx2 ) == 0 );
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]800
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]801 memset( output, 0x00, sizeof( output ) );
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]802 TEST_ASSERT( mbedtls_rsa_public( &ctx2, message_str->x, output ) == result );
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]803 if( result == 0 )
804 {
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]805
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]806 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
807 ctx.len, result_str->len ) == 0 );
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]808 }
809
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]810exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]811 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]812 mbedtls_rsa_free( &ctx );
813 mbedtls_rsa_free( &ctx2 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]814}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]815/* END_CASE */
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]816
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]817/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]818void mbedtls_rsa_private( data_t * message_str, int mod, int radix_P,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]819 char * input_P, int radix_Q, char * input_Q,
820 int radix_N, char * input_N, int radix_E,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]821 char * input_E, data_t * result_str,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]822 int result )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]823{
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]824 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]825 mbedtls_rsa_context ctx, ctx2; /* Also test mbedtls_rsa_copy() while at it */
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]826 mbedtls_mpi N, P, Q, E;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]827 mbedtls_test_rnd_pseudo_info rnd_info;
Manuel Pégourié-Gonnard735b8fc2013-09-13 12:57:23 +0200[diff] [blame]828 int i;
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]829
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]830 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &P );
831 mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]832 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V15, 0 );
833 mbedtls_rsa_init( &ctx2, MBEDTLS_RSA_PKCS_V15, 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]834
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]835 memset( &rnd_info, 0, sizeof( mbedtls_test_rnd_pseudo_info ) );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]836
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]837 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
838 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
839 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
840 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]841
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]842 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, &P, &Q, NULL, &E ) == 0 );
843 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( mod / 8 ) );
Hanno Becker7f25f852017-10-10 16:56:22 +0100[diff] [blame]844 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]845 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]846
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]847
Manuel Pégourié-Gonnard735b8fc2013-09-13 12:57:23 +0200[diff] [blame]848 /* repeat three times to test updating of blinding values */
849 for( i = 0; i < 3; i++ )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]850 {
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]851 memset( output, 0x00, sizeof( output ) );
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]852 TEST_ASSERT( mbedtls_rsa_private( &ctx, mbedtls_test_rnd_pseudo_rand,
853 &rnd_info, message_str->x,
854 output ) == result );
Manuel Pégourié-Gonnard735b8fc2013-09-13 12:57:23 +0200[diff] [blame]855 if( result == 0 )
856 {
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]857
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]858 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]859 ctx.len,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]860 result_str->len ) == 0 );
Manuel Pégourié-Gonnard735b8fc2013-09-13 12:57:23 +0200[diff] [blame]861 }
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]862 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]863
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]864 /* And now one more time with the copy */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]865 TEST_ASSERT( mbedtls_rsa_copy( &ctx2, &ctx ) == 0 );
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]866 /* clear the original to be sure */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]867 mbedtls_rsa_free( &ctx );
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]868
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]869 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx2 ) == 0 );
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]870
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]871 memset( output, 0x00, sizeof( output ) );
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]872 TEST_ASSERT( mbedtls_rsa_private( &ctx2, mbedtls_test_rnd_pseudo_rand,
873 &rnd_info, message_str->x,
874 output ) == result );
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]875 if( result == 0 )
876 {
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]877
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]878 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]879 ctx2.len,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]880 result_str->len ) == 0 );
Manuel Pégourié-Gonnardc4919bc2014-02-03 11:16:44 +0100[diff] [blame]881 }
882
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]883exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]884 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &P );
885 mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &E );
886
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]887 mbedtls_rsa_free( &ctx ); mbedtls_rsa_free( &ctx2 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]888}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]889/* END_CASE */
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]890
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]891/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]892void rsa_check_privkey_null( )
Paul Bakker37940d9f2009-07-10 22:38:58 +0000[diff] [blame]893{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]894 mbedtls_rsa_context ctx;
895 memset( &ctx, 0x00, sizeof( mbedtls_rsa_context ) );
Paul Bakker37940d9f2009-07-10 22:38:58 +0000[diff] [blame]896
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]897 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == MBEDTLS_ERR_RSA_KEY_CHECK_FAILED );
Paul Bakker37940d9f2009-07-10 22:38:58 +0000[diff] [blame]898}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]899/* END_CASE */
Paul Bakker37940d9f2009-07-10 22:38:58 +0000[diff] [blame]900
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]901/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]902void mbedtls_rsa_check_pubkey( int radix_N, char * input_N, int radix_E,
903 char * input_E, int result )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]904{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]905 mbedtls_rsa_context ctx;
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]906 mbedtls_mpi N, E;
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]907
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]908 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]909 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V15, 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]910
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]911 if( strlen( input_N ) )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]912 {
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]913 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]914 }
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]915 if( strlen( input_E ) )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]916 {
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]917 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]918 }
919
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]920 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]921 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == result );
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]922
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]923exit:
Hanno Beckerceb7a9d2017-08-23 08:33:08 +0100[diff] [blame]924 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]925 mbedtls_rsa_free( &ctx );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]926}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]927/* END_CASE */
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]928
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]929/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]930void mbedtls_rsa_check_privkey( int mod, int radix_P, char * input_P,
931 int radix_Q, char * input_Q, int radix_N,
932 char * input_N, int radix_E, char * input_E,
933 int radix_D, char * input_D, int radix_DP,
934 char * input_DP, int radix_DQ,
935 char * input_DQ, int radix_QP,
936 char * input_QP, int result )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]937{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]938 mbedtls_rsa_context ctx;
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]939
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]940 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V15, 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]941
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]942 ctx.len = mod / 8;
943 if( strlen( input_P ) )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]944 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]945 TEST_ASSERT( mbedtls_mpi_read_string( &ctx.P, radix_P, input_P ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]946 }
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]947 if( strlen( input_Q ) )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]948 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]949 TEST_ASSERT( mbedtls_mpi_read_string( &ctx.Q, radix_Q, input_Q ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]950 }
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]951 if( strlen( input_N ) )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]952 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]953 TEST_ASSERT( mbedtls_mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]954 }
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]955 if( strlen( input_E ) )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]956 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]957 TEST_ASSERT( mbedtls_mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]958 }
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]959 if( strlen( input_D ) )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]960 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]961 TEST_ASSERT( mbedtls_mpi_read_string( &ctx.D, radix_D, input_D ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]962 }
Hanno Becker131134f2017-08-23 08:31:07 +0100[diff] [blame]963#if !defined(MBEDTLS_RSA_NO_CRT)
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]964 if( strlen( input_DP ) )
Paul Bakker31417a72012-09-27 20:41:37 +0000[diff] [blame]965 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]966 TEST_ASSERT( mbedtls_mpi_read_string( &ctx.DP, radix_DP, input_DP ) == 0 );
Paul Bakker31417a72012-09-27 20:41:37 +0000[diff] [blame]967 }
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]968 if( strlen( input_DQ ) )
Paul Bakker31417a72012-09-27 20:41:37 +0000[diff] [blame]969 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]970 TEST_ASSERT( mbedtls_mpi_read_string( &ctx.DQ, radix_DQ, input_DQ ) == 0 );
Paul Bakker31417a72012-09-27 20:41:37 +0000[diff] [blame]971 }
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]972 if( strlen( input_QP ) )
Paul Bakker31417a72012-09-27 20:41:37 +0000[diff] [blame]973 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]974 TEST_ASSERT( mbedtls_mpi_read_string( &ctx.QP, radix_QP, input_QP ) == 0 );
Paul Bakker31417a72012-09-27 20:41:37 +0000[diff] [blame]975 }
Hanno Becker131134f2017-08-23 08:31:07 +0100[diff] [blame]976#else
977 ((void) radix_DP); ((void) input_DP);
978 ((void) radix_DQ); ((void) input_DQ);
979 ((void) radix_QP); ((void) input_QP);
980#endif
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]981
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]982 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == result );
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]983
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]984exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]985 mbedtls_rsa_free( &ctx );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]986}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]987/* END_CASE */
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]988
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]989/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]990void rsa_check_pubpriv( int mod, int radix_Npub, char * input_Npub,
991 int radix_Epub, char * input_Epub, int radix_P,
992 char * input_P, int radix_Q, char * input_Q,
993 int radix_N, char * input_N, int radix_E,
994 char * input_E, int radix_D, char * input_D,
995 int radix_DP, char * input_DP, int radix_DQ,
996 char * input_DQ, int radix_QP, char * input_QP,
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]997 int result )
998{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]999 mbedtls_rsa_context pub, prv;
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1000
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1001 mbedtls_rsa_init( &pub, MBEDTLS_RSA_PKCS_V15, 0 );
1002 mbedtls_rsa_init( &prv, MBEDTLS_RSA_PKCS_V15, 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1003
1004 pub.len = mod / 8;
1005 prv.len = mod / 8;
1006
1007 if( strlen( input_Npub ) )
1008 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1009 TEST_ASSERT( mbedtls_mpi_read_string( &pub.N, radix_Npub, input_Npub ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1010 }
1011 if( strlen( input_Epub ) )
1012 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1013 TEST_ASSERT( mbedtls_mpi_read_string( &pub.E, radix_Epub, input_Epub ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1014 }
1015
1016 if( strlen( input_P ) )
1017 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1018 TEST_ASSERT( mbedtls_mpi_read_string( &prv.P, radix_P, input_P ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1019 }
1020 if( strlen( input_Q ) )
1021 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1022 TEST_ASSERT( mbedtls_mpi_read_string( &prv.Q, radix_Q, input_Q ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1023 }
1024 if( strlen( input_N ) )
1025 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1026 TEST_ASSERT( mbedtls_mpi_read_string( &prv.N, radix_N, input_N ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1027 }
1028 if( strlen( input_E ) )
1029 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1030 TEST_ASSERT( mbedtls_mpi_read_string( &prv.E, radix_E, input_E ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1031 }
1032 if( strlen( input_D ) )
1033 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1034 TEST_ASSERT( mbedtls_mpi_read_string( &prv.D, radix_D, input_D ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1035 }
Hanno Becker131134f2017-08-23 08:31:07 +0100[diff] [blame]1036#if !defined(MBEDTLS_RSA_NO_CRT)
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1037 if( strlen( input_DP ) )
1038 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1039 TEST_ASSERT( mbedtls_mpi_read_string( &prv.DP, radix_DP, input_DP ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1040 }
1041 if( strlen( input_DQ ) )
1042 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1043 TEST_ASSERT( mbedtls_mpi_read_string( &prv.DQ, radix_DQ, input_DQ ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1044 }
1045 if( strlen( input_QP ) )
1046 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1047 TEST_ASSERT( mbedtls_mpi_read_string( &prv.QP, radix_QP, input_QP ) == 0 );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1048 }
Hanno Becker131134f2017-08-23 08:31:07 +0100[diff] [blame]1049#else
1050 ((void) radix_DP); ((void) input_DP);
1051 ((void) radix_DQ); ((void) input_DQ);
1052 ((void) radix_QP); ((void) input_QP);
1053#endif
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1054
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1055 TEST_ASSERT( mbedtls_rsa_check_pub_priv( &pub, &prv ) == result );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1056
1057exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1058 mbedtls_rsa_free( &pub );
1059 mbedtls_rsa_free( &prv );
Manuel Pégourié-Gonnard2f8d1f92014-11-06 14:02:51 +0100[diff] [blame]1060}
1061/* END_CASE */
1062
Hanno Beckerd4a872e2017-09-07 08:09:33 +0100[diff] [blame]1063/* BEGIN_CASE depends_on:MBEDTLS_CTR_DRBG_C:MBEDTLS_ENTROPY_C:ENTROPY_HAVE_STRONG */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1064void mbedtls_rsa_gen_key( int nrbits, int exponent, int result)
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]1065{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1066 mbedtls_rsa_context ctx;
1067 mbedtls_entropy_context entropy;
1068 mbedtls_ctr_drbg_context ctr_drbg;
Paul Bakkeref3f8c72013-06-24 13:01:08 +0200[diff] [blame]1069 const char *pers = "test_suite_rsa";
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]1070
Manuel Pégourié-Gonnard8d128ef2015-04-28 22:38:08 +0200[diff] [blame]1071 mbedtls_ctr_drbg_init( &ctr_drbg );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1072 mbedtls_entropy_init( &entropy );
Hanno Becker7e8e57c2017-07-23 10:19:29 +0100[diff] [blame]1073 mbedtls_rsa_init ( &ctx, 0, 0 );
Paul Bakkerc0a1a312011-12-04 17:12:15 +0000[diff] [blame]1074
Hanno Beckera47023e2017-12-22 17:08:03 +0000[diff] [blame]1075 TEST_ASSERT( mbedtls_ctr_drbg_seed( &ctr_drbg, mbedtls_entropy_func,
1076 &entropy, (const unsigned char *) pers,
1077 strlen( pers ) ) == 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]1078
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1079 TEST_ASSERT( mbedtls_rsa_gen_key( &ctx, mbedtls_ctr_drbg_random, &ctr_drbg, nrbits, exponent ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1080 if( result == 0 )
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]1081 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1082 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
Janos Follathef441782016-09-21 13:18:12 +0100[diff] [blame]1083 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &ctx.P, &ctx.Q ) > 0 );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]1084 }
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]1085
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1086exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1087 mbedtls_rsa_free( &ctx );
1088 mbedtls_ctr_drbg_free( &ctr_drbg );
1089 mbedtls_entropy_free( &entropy );
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]1090}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1091/* END_CASE */
Paul Bakker821fb082009-07-12 13:26:42 +0000[diff] [blame]1092
Hanno Beckere78fd8d2017-08-23 11:00:44 +0100[diff] [blame]1093/* BEGIN_CASE depends_on:MBEDTLS_CTR_DRBG_C:MBEDTLS_ENTROPY_C */
Hanno Becker0f65e0c2017-10-03 14:39:16 +0100[diff] [blame]1094void mbedtls_rsa_deduce_primes( int radix_N, char *input_N,
Hanno Beckere78fd8d2017-08-23 11:00:44 +0100[diff] [blame]1095 int radix_D, char *input_D,
1096 int radix_E, char *input_E,
1097 int radix_P, char *output_P,
1098 int radix_Q, char *output_Q,
1099 int corrupt, int result )
1100{
1101 mbedtls_mpi N, P, Pp, Q, Qp, D, E;
1102
Hanno Beckere78fd8d2017-08-23 11:00:44 +0100[diff] [blame]1103 mbedtls_mpi_init( &N );
1104 mbedtls_mpi_init( &P ); mbedtls_mpi_init( &Q );
1105 mbedtls_mpi_init( &Pp ); mbedtls_mpi_init( &Qp );
1106 mbedtls_mpi_init( &D ); mbedtls_mpi_init( &E );
1107
Hanno Beckere78fd8d2017-08-23 11:00:44 +0100[diff] [blame]1108 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
1109 TEST_ASSERT( mbedtls_mpi_read_string( &D, radix_D, input_D ) == 0 );
1110 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
1111 TEST_ASSERT( mbedtls_mpi_read_string( &Qp, radix_P, output_P ) == 0 );
1112 TEST_ASSERT( mbedtls_mpi_read_string( &Pp, radix_Q, output_Q ) == 0 );
1113
1114 if( corrupt )
1115 TEST_ASSERT( mbedtls_mpi_add_int( &D, &D, 2 ) == 0 );
1116
1117 /* Try to deduce P, Q from N, D, E only. */
Hanno Beckerf9e184b2017-10-10 16:49:26 +0100[diff] [blame]1118 TEST_ASSERT( mbedtls_rsa_deduce_primes( &N, &D, &E, &P, &Q ) == result );
Hanno Beckere78fd8d2017-08-23 11:00:44 +0100[diff] [blame]1119
1120 if( !corrupt )
1121 {
1122 /* Check if (P,Q) = (Pp, Qp) or (P,Q) = (Qp, Pp) */
1123 TEST_ASSERT( ( mbedtls_mpi_cmp_mpi( &P, &Pp ) == 0 && mbedtls_mpi_cmp_mpi( &Q, &Qp ) == 0 ) ||
1124 ( mbedtls_mpi_cmp_mpi( &P, &Qp ) == 0 && mbedtls_mpi_cmp_mpi( &Q, &Pp ) == 0 ) );
1125 }
1126
1127exit:
Hanno Beckere78fd8d2017-08-23 11:00:44 +0100[diff] [blame]1128 mbedtls_mpi_free( &N );
1129 mbedtls_mpi_free( &P ); mbedtls_mpi_free( &Q );
1130 mbedtls_mpi_free( &Pp ); mbedtls_mpi_free( &Qp );
1131 mbedtls_mpi_free( &D ); mbedtls_mpi_free( &E );
Hanno Beckere78fd8d2017-08-23 11:00:44 +0100[diff] [blame]1132}
1133/* END_CASE */
1134
Hanno Becker6b4ce492017-08-23 11:00:21 +0100[diff] [blame]1135/* BEGIN_CASE */
Hanno Becker8ba6ce42017-10-03 14:36:26 +0100[diff] [blame]1136void mbedtls_rsa_deduce_private_exponent( int radix_P, char *input_P,
1137 int radix_Q, char *input_Q,
1138 int radix_E, char *input_E,
1139 int radix_D, char *output_D,
1140 int corrupt, int result )
Hanno Becker6b4ce492017-08-23 11:00:21 +0100[diff] [blame]1141{
1142 mbedtls_mpi P, Q, D, Dp, E, R, Rp;
1143
1144 mbedtls_mpi_init( &P ); mbedtls_mpi_init( &Q );
1145 mbedtls_mpi_init( &D ); mbedtls_mpi_init( &Dp );
1146 mbedtls_mpi_init( &E );
1147 mbedtls_mpi_init( &R ); mbedtls_mpi_init( &Rp );
1148
1149 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
1150 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
1151 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
1152 TEST_ASSERT( mbedtls_mpi_read_string( &Dp, radix_D, output_D ) == 0 );
1153
1154 if( corrupt )
1155 {
1156 /* Make E even */
1157 TEST_ASSERT( mbedtls_mpi_set_bit( &E, 0, 0 ) == 0 );
1158 }
1159
1160 /* Try to deduce D from N, P, Q, E. */
Hanno Becker8ba6ce42017-10-03 14:36:26 +0100[diff] [blame]1161 TEST_ASSERT( mbedtls_rsa_deduce_private_exponent( &P, &Q,
1162 &E, &D ) == result );
Hanno Becker6b4ce492017-08-23 11:00:21 +0100[diff] [blame]1163
1164 if( !corrupt )
1165 {
1166 /*
1167 * Check that D and Dp agree modulo LCM(P-1, Q-1).
1168 */
1169
1170 /* Replace P,Q by P-1, Q-1 */
1171 TEST_ASSERT( mbedtls_mpi_sub_int( &P, &P, 1 ) == 0 );
1172 TEST_ASSERT( mbedtls_mpi_sub_int( &Q, &Q, 1 ) == 0 );
1173
1174 /* Check D == Dp modulo P-1 */
1175 TEST_ASSERT( mbedtls_mpi_mod_mpi( &R, &D, &P ) == 0 );
1176 TEST_ASSERT( mbedtls_mpi_mod_mpi( &Rp, &Dp, &P ) == 0 );
1177 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &R, &Rp ) == 0 );
1178
1179 /* Check D == Dp modulo Q-1 */
1180 TEST_ASSERT( mbedtls_mpi_mod_mpi( &R, &D, &Q ) == 0 );
1181 TEST_ASSERT( mbedtls_mpi_mod_mpi( &Rp, &Dp, &Q ) == 0 );
1182 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &R, &Rp ) == 0 );
1183 }
1184
1185exit:
1186
1187 mbedtls_mpi_free( &P ); mbedtls_mpi_free( &Q );
1188 mbedtls_mpi_free( &D ); mbedtls_mpi_free( &Dp );
1189 mbedtls_mpi_free( &E );
1190 mbedtls_mpi_free( &R ); mbedtls_mpi_free( &Rp );
1191}
1192/* END_CASE */
1193
Hanno Beckerf40cdf92017-12-22 11:03:27 +0000[diff] [blame]1194/* BEGIN_CASE depends_on:MBEDTLS_CTR_DRBG_C:MBEDTLS_ENTROPY_C:ENTROPY_HAVE_STRONG */
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1195void mbedtls_rsa_import( int radix_N, char *input_N,
1196 int radix_P, char *input_P,
1197 int radix_Q, char *input_Q,
1198 int radix_D, char *input_D,
1199 int radix_E, char *input_E,
1200 int successive,
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1201 int is_priv,
Hanno Becker04877a42017-10-11 10:01:33 +0100[diff] [blame]1202 int res_check,
1203 int res_complete )
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1204{
1205 mbedtls_mpi N, P, Q, D, E;
1206 mbedtls_rsa_context ctx;
1207
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1208 /* Buffers used for encryption-decryption test */
1209 unsigned char *buf_orig = NULL;
1210 unsigned char *buf_enc = NULL;
1211 unsigned char *buf_dec = NULL;
1212
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1213 mbedtls_entropy_context entropy;
1214 mbedtls_ctr_drbg_context ctr_drbg;
1215 const char *pers = "test_suite_rsa";
1216
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1217 const int have_N = ( strlen( input_N ) > 0 );
1218 const int have_P = ( strlen( input_P ) > 0 );
1219 const int have_Q = ( strlen( input_Q ) > 0 );
1220 const int have_D = ( strlen( input_D ) > 0 );
1221 const int have_E = ( strlen( input_E ) > 0 );
1222
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1223 mbedtls_ctr_drbg_init( &ctr_drbg );
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1224 mbedtls_entropy_init( &entropy );
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1225 mbedtls_rsa_init( &ctx, 0, 0 );
1226
1227 mbedtls_mpi_init( &N );
1228 mbedtls_mpi_init( &P ); mbedtls_mpi_init( &Q );
1229 mbedtls_mpi_init( &D ); mbedtls_mpi_init( &E );
1230
Hanno Beckerd4d60572018-01-10 07:12:01 +0000[diff] [blame]1231 TEST_ASSERT( mbedtls_ctr_drbg_seed( &ctr_drbg, mbedtls_entropy_func, &entropy,
1232 (const unsigned char *) pers, strlen( pers ) ) == 0 );
1233
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1234 if( have_N )
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1235 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
1236
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1237 if( have_P )
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1238 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
1239
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1240 if( have_Q )
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1241 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
1242
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1243 if( have_D )
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1244 TEST_ASSERT( mbedtls_mpi_read_string( &D, radix_D, input_D ) == 0 );
1245
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1246 if( have_E )
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1247 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
1248
1249 if( !successive )
1250 {
1251 TEST_ASSERT( mbedtls_rsa_import( &ctx,
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1252 have_N ? &N : NULL,
1253 have_P ? &P : NULL,
1254 have_Q ? &Q : NULL,
1255 have_D ? &D : NULL,
1256 have_E ? &E : NULL ) == 0 );
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1257 }
1258 else
1259 {
1260 /* Import N, P, Q, D, E separately.
1261 * This should make no functional difference. */
1262
1263 TEST_ASSERT( mbedtls_rsa_import( &ctx,
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1264 have_N ? &N : NULL,
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1265 NULL, NULL, NULL, NULL ) == 0 );
1266
1267 TEST_ASSERT( mbedtls_rsa_import( &ctx,
1268 NULL,
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1269 have_P ? &P : NULL,
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1270 NULL, NULL, NULL ) == 0 );
1271
1272 TEST_ASSERT( mbedtls_rsa_import( &ctx,
1273 NULL, NULL,
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1274 have_Q ? &Q : NULL,
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1275 NULL, NULL ) == 0 );
1276
1277 TEST_ASSERT( mbedtls_rsa_import( &ctx,
1278 NULL, NULL, NULL,
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1279 have_D ? &D : NULL,
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1280 NULL ) == 0 );
1281
1282 TEST_ASSERT( mbedtls_rsa_import( &ctx,
1283 NULL, NULL, NULL, NULL,
Hanno Becker4d6e8342017-09-29 11:50:18 +0100[diff] [blame]1284 have_E ? &E : NULL ) == 0 );
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1285 }
1286
Hanno Becker04877a42017-10-11 10:01:33 +0100[diff] [blame]1287 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == res_complete );
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1288
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1289 /* On expected success, perform some public and private
1290 * key operations to check if the key is working properly. */
Hanno Becker04877a42017-10-11 10:01:33 +0100[diff] [blame]1291 if( res_complete == 0 )
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1292 {
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1293 if( is_priv )
Hanno Becker04877a42017-10-11 10:01:33 +0100[diff] [blame]1294 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == res_check );
1295 else
1296 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == res_check );
1297
1298 if( res_check != 0 )
1299 goto exit;
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1300
1301 buf_orig = mbedtls_calloc( 1, mbedtls_rsa_get_len( &ctx ) );
1302 buf_enc = mbedtls_calloc( 1, mbedtls_rsa_get_len( &ctx ) );
1303 buf_dec = mbedtls_calloc( 1, mbedtls_rsa_get_len( &ctx ) );
1304 if( buf_orig == NULL || buf_enc == NULL || buf_dec == NULL )
1305 goto exit;
1306
1307 TEST_ASSERT( mbedtls_ctr_drbg_random( &ctr_drbg,
1308 buf_orig, mbedtls_rsa_get_len( &ctx ) ) == 0 );
1309
1310 /* Make sure the number we're generating is smaller than the modulus */
1311 buf_orig[0] = 0x00;
1312
1313 TEST_ASSERT( mbedtls_rsa_public( &ctx, buf_orig, buf_enc ) == 0 );
1314
1315 if( is_priv )
1316 {
1317 TEST_ASSERT( mbedtls_rsa_private( &ctx, mbedtls_ctr_drbg_random,
1318 &ctr_drbg, buf_enc,
1319 buf_dec ) == 0 );
1320
1321 TEST_ASSERT( memcmp( buf_orig, buf_dec,
1322 mbedtls_rsa_get_len( &ctx ) ) == 0 );
1323 }
1324 }
1325
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1326exit:
1327
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1328 mbedtls_free( buf_orig );
1329 mbedtls_free( buf_enc );
1330 mbedtls_free( buf_dec );
1331
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1332 mbedtls_rsa_free( &ctx );
1333
1334 mbedtls_ctr_drbg_free( &ctr_drbg );
1335 mbedtls_entropy_free( &entropy );
1336
1337 mbedtls_mpi_free( &N );
1338 mbedtls_mpi_free( &P ); mbedtls_mpi_free( &Q );
1339 mbedtls_mpi_free( &D ); mbedtls_mpi_free( &E );
1340}
1341/* END_CASE */
1342
Hanno Becker417f2d62017-08-23 11:44:51 +0100[diff] [blame]1343/* BEGIN_CASE */
1344void mbedtls_rsa_export( int radix_N, char *input_N,
1345 int radix_P, char *input_P,
1346 int radix_Q, char *input_Q,
1347 int radix_D, char *input_D,
1348 int radix_E, char *input_E,
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1349 int is_priv,
Hanno Becker417f2d62017-08-23 11:44:51 +0100[diff] [blame]1350 int successive )
1351{
1352 /* Original MPI's with which we set up the RSA context */
1353 mbedtls_mpi N, P, Q, D, E;
1354
1355 /* Exported MPI's */
1356 mbedtls_mpi Ne, Pe, Qe, De, Ee;
1357
1358 const int have_N = ( strlen( input_N ) > 0 );
1359 const int have_P = ( strlen( input_P ) > 0 );
1360 const int have_Q = ( strlen( input_Q ) > 0 );
1361 const int have_D = ( strlen( input_D ) > 0 );
1362 const int have_E = ( strlen( input_E ) > 0 );
1363
Hanno Becker417f2d62017-08-23 11:44:51 +0100[diff] [blame]1364 mbedtls_rsa_context ctx;
1365
1366 mbedtls_rsa_init( &ctx, 0, 0 );
1367
1368 mbedtls_mpi_init( &N );
1369 mbedtls_mpi_init( &P ); mbedtls_mpi_init( &Q );
1370 mbedtls_mpi_init( &D ); mbedtls_mpi_init( &E );
1371
1372 mbedtls_mpi_init( &Ne );
1373 mbedtls_mpi_init( &Pe ); mbedtls_mpi_init( &Qe );
1374 mbedtls_mpi_init( &De ); mbedtls_mpi_init( &Ee );
1375
1376 /* Setup RSA context */
1377
1378 if( have_N )
1379 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
1380
1381 if( have_P )
1382 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
1383
1384 if( have_Q )
1385 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
1386
1387 if( have_D )
1388 TEST_ASSERT( mbedtls_mpi_read_string( &D, radix_D, input_D ) == 0 );
1389
1390 if( have_E )
1391 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
1392
1393 TEST_ASSERT( mbedtls_rsa_import( &ctx,
1394 strlen( input_N ) ? &N : NULL,
1395 strlen( input_P ) ? &P : NULL,
1396 strlen( input_Q ) ? &Q : NULL,
1397 strlen( input_D ) ? &D : NULL,
1398 strlen( input_E ) ? &E : NULL ) == 0 );
1399
Hanno Becker7f25f852017-10-10 16:56:22 +0100[diff] [blame]1400 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Hanno Becker417f2d62017-08-23 11:44:51 +0100[diff] [blame]1401
1402 /*
1403 * Export parameters and compare to original ones.
1404 */
1405
1406 /* N and E must always be present. */
1407 if( !successive )
1408 {
1409 TEST_ASSERT( mbedtls_rsa_export( &ctx, &Ne, NULL, NULL, NULL, &Ee ) == 0 );
1410 }
1411 else
1412 {
1413 TEST_ASSERT( mbedtls_rsa_export( &ctx, &Ne, NULL, NULL, NULL, NULL ) == 0 );
1414 TEST_ASSERT( mbedtls_rsa_export( &ctx, NULL, NULL, NULL, NULL, &Ee ) == 0 );
1415 }
1416 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &N, &Ne ) == 0 );
1417 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &E, &Ee ) == 0 );
1418
1419 /* If we were providing enough information to setup a complete private context,
1420 * we expect to be able to export all core parameters. */
1421
1422 if( is_priv )
1423 {
1424 if( !successive )
1425 {
1426 TEST_ASSERT( mbedtls_rsa_export( &ctx, NULL, &Pe, &Qe,
1427 &De, NULL ) == 0 );
1428 }
1429 else
1430 {
1431 TEST_ASSERT( mbedtls_rsa_export( &ctx, NULL, &Pe, NULL,
1432 NULL, NULL ) == 0 );
1433 TEST_ASSERT( mbedtls_rsa_export( &ctx, NULL, NULL, &Qe,
1434 NULL, NULL ) == 0 );
1435 TEST_ASSERT( mbedtls_rsa_export( &ctx, NULL, NULL, NULL,
1436 &De, NULL ) == 0 );
1437 }
1438
1439 if( have_P )
1440 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &P, &Pe ) == 0 );
1441
1442 if( have_Q )
1443 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Q, &Qe ) == 0 );
1444
1445 if( have_D )
1446 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &D, &De ) == 0 );
1447
1448 /* While at it, perform a sanity check */
Hanno Becker750e8b42017-08-25 07:54:27 +0100[diff] [blame]1449 TEST_ASSERT( mbedtls_rsa_validate_params( &Ne, &Pe, &Qe, &De, &Ee,
1450 NULL, NULL ) == 0 );
Hanno Becker417f2d62017-08-23 11:44:51 +0100[diff] [blame]1451 }
1452
1453exit:
1454
1455 mbedtls_rsa_free( &ctx );
1456
1457 mbedtls_mpi_free( &N );
1458 mbedtls_mpi_free( &P ); mbedtls_mpi_free( &Q );
1459 mbedtls_mpi_free( &D ); mbedtls_mpi_free( &E );
1460
1461 mbedtls_mpi_free( &Ne );
1462 mbedtls_mpi_free( &Pe ); mbedtls_mpi_free( &Qe );
1463 mbedtls_mpi_free( &De ); mbedtls_mpi_free( &Ee );
1464}
1465/* END_CASE */
1466
Manuel Pégourié-Gonnardd12402f2020-05-20 10:34:25 +0200[diff] [blame]1467/* BEGIN_CASE depends_on:MBEDTLS_ENTROPY_C:ENTROPY_HAVE_STRONG:MBEDTLS_ENTROPY_C:MBEDTLS_CTR_DRBG_C */
Hanno Becker750e8b42017-08-25 07:54:27 +0100[diff] [blame]1468void mbedtls_rsa_validate_params( int radix_N, char *input_N,
1469 int radix_P, char *input_P,
1470 int radix_Q, char *input_Q,
1471 int radix_D, char *input_D,
1472 int radix_E, char *input_E,
1473 int prng, int result )
Hanno Beckerce002632017-08-23 13:22:36 +0100[diff] [blame]1474{
1475 /* Original MPI's with which we set up the RSA context */
1476 mbedtls_mpi N, P, Q, D, E;
1477
1478 const int have_N = ( strlen( input_N ) > 0 );
1479 const int have_P = ( strlen( input_P ) > 0 );
1480 const int have_Q = ( strlen( input_Q ) > 0 );
1481 const int have_D = ( strlen( input_D ) > 0 );
1482 const int have_E = ( strlen( input_E ) > 0 );
1483
1484 mbedtls_entropy_context entropy;
1485 mbedtls_ctr_drbg_context ctr_drbg;
1486 const char *pers = "test_suite_rsa";
1487
1488 mbedtls_mpi_init( &N );
1489 mbedtls_mpi_init( &P ); mbedtls_mpi_init( &Q );
1490 mbedtls_mpi_init( &D ); mbedtls_mpi_init( &E );
1491
1492 mbedtls_ctr_drbg_init( &ctr_drbg );
1493 mbedtls_entropy_init( &entropy );
1494 TEST_ASSERT( mbedtls_ctr_drbg_seed( &ctr_drbg, mbedtls_entropy_func,
1495 &entropy, (const unsigned char *) pers,
1496 strlen( pers ) ) == 0 );
1497
1498 if( have_N )
1499 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
1500
1501 if( have_P )
1502 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
1503
1504 if( have_Q )
1505 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
1506
1507 if( have_D )
1508 TEST_ASSERT( mbedtls_mpi_read_string( &D, radix_D, input_D ) == 0 );
1509
1510 if( have_E )
1511 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
1512
Hanno Becker750e8b42017-08-25 07:54:27 +0100[diff] [blame]1513 TEST_ASSERT( mbedtls_rsa_validate_params( have_N ? &N : NULL,
1514 have_P ? &P : NULL,
1515 have_Q ? &Q : NULL,
1516 have_D ? &D : NULL,
1517 have_E ? &E : NULL,
1518 prng ? mbedtls_ctr_drbg_random : NULL,
1519 prng ? &ctr_drbg : NULL ) == result );
Hanno Beckerce002632017-08-23 13:22:36 +0100[diff] [blame]1520exit:
1521
1522 mbedtls_ctr_drbg_free( &ctr_drbg );
1523 mbedtls_entropy_free( &entropy );
1524
1525 mbedtls_mpi_free( &N );
1526 mbedtls_mpi_free( &P ); mbedtls_mpi_free( &Q );
1527 mbedtls_mpi_free( &D ); mbedtls_mpi_free( &E );
1528}
1529/* END_CASE */
1530
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1531/* BEGIN_CASE depends_on:MBEDTLS_CTR_DRBG_C:MBEDTLS_ENTROPY_C */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]1532void mbedtls_rsa_export_raw( data_t *input_N, data_t *input_P,
1533 data_t *input_Q, data_t *input_D,
1534 data_t *input_E, int is_priv,
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1535 int successive )
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1536{
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1537 /* Exported buffers */
Ron Eldorfdc15bd2018-11-22 15:47:51 +0200[diff] [blame]1538 unsigned char bufNe[256];
1539 unsigned char bufPe[128];
1540 unsigned char bufQe[128];
1541 unsigned char bufDe[256];
1542 unsigned char bufEe[1];
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1543
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1544 mbedtls_rsa_context ctx;
1545
1546 mbedtls_rsa_init( &ctx, 0, 0 );
1547
1548 /* Setup RSA context */
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1549 TEST_ASSERT( mbedtls_rsa_import_raw( &ctx,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1550 input_N->len ? input_N->x : NULL, input_N->len,
1551 input_P->len ? input_P->x : NULL, input_P->len,
1552 input_Q->len ? input_Q->x : NULL, input_Q->len,
1553 input_D->len ? input_D->x : NULL, input_D->len,
1554 input_E->len ? input_E->x : NULL, input_E->len ) == 0 );
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1555
Hanno Becker7f25f852017-10-10 16:56:22 +0100[diff] [blame]1556 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1557
1558 /*
1559 * Export parameters and compare to original ones.
1560 */
1561
1562 /* N and E must always be present. */
1563 if( !successive )
1564 {
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1565 TEST_ASSERT( mbedtls_rsa_export_raw( &ctx, bufNe, input_N->len,
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1566 NULL, 0, NULL, 0, NULL, 0,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1567 bufEe, input_E->len ) == 0 );
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1568 }
1569 else
1570 {
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1571 TEST_ASSERT( mbedtls_rsa_export_raw( &ctx, bufNe, input_N->len,
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1572 NULL, 0, NULL, 0, NULL, 0,
1573 NULL, 0 ) == 0 );
1574 TEST_ASSERT( mbedtls_rsa_export_raw( &ctx, NULL, 0,
1575 NULL, 0, NULL, 0, NULL, 0,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1576 bufEe, input_E->len ) == 0 );
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1577 }
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1578 TEST_ASSERT( memcmp( input_N->x, bufNe, input_N->len ) == 0 );
1579 TEST_ASSERT( memcmp( input_E->x, bufEe, input_E->len ) == 0 );
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1580
1581 /* If we were providing enough information to setup a complete private context,
1582 * we expect to be able to export all core parameters. */
1583
1584 if( is_priv )
1585 {
1586 if( !successive )
1587 {
1588 TEST_ASSERT( mbedtls_rsa_export_raw( &ctx, NULL, 0,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1589 bufPe, input_P->len ? input_P->len : sizeof( bufPe ),
1590 bufQe, input_Q->len ? input_Q->len : sizeof( bufQe ),
1591 bufDe, input_D->len ? input_D->len : sizeof( bufDe ),
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1592 NULL, 0 ) == 0 );
1593 }
1594 else
1595 {
1596 TEST_ASSERT( mbedtls_rsa_export_raw( &ctx, NULL, 0,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1597 bufPe, input_P->len ? input_P->len : sizeof( bufPe ),
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1598 NULL, 0, NULL, 0,
1599 NULL, 0 ) == 0 );
1600
1601 TEST_ASSERT( mbedtls_rsa_export_raw( &ctx, NULL, 0, NULL, 0,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1602 bufQe, input_Q->len ? input_Q->len : sizeof( bufQe ),
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1603 NULL, 0, NULL, 0 ) == 0 );
1604
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1605 TEST_ASSERT( mbedtls_rsa_export_raw( &ctx, NULL, 0, NULL, 0, NULL, 0,
1606 bufDe, input_D->len ? input_D->len : sizeof( bufDe ),
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1607 NULL, 0 ) == 0 );
1608 }
1609
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1610 if( input_P->len )
1611 TEST_ASSERT( memcmp( input_P->x, bufPe, input_P->len ) == 0 );
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1612
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1613 if( input_Q->len )
1614 TEST_ASSERT( memcmp( input_Q->x, bufQe, input_Q->len ) == 0 );
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1615
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1616 if( input_D->len )
1617 TEST_ASSERT( memcmp( input_D->x, bufDe, input_D->len ) == 0 );
Hanno Beckerf1b9a2c2017-08-23 11:49:22 +0100[diff] [blame]1618
1619 }
1620
1621exit:
1622 mbedtls_rsa_free( &ctx );
1623}
1624/* END_CASE */
1625
Hanno Beckerf40cdf92017-12-22 11:03:27 +0000[diff] [blame]1626/* BEGIN_CASE depends_on:MBEDTLS_CTR_DRBG_C:MBEDTLS_ENTROPY_C:ENTROPY_HAVE_STRONG */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]1627void mbedtls_rsa_import_raw( data_t *input_N,
1628 data_t *input_P, data_t *input_Q,
1629 data_t *input_D, data_t *input_E,
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1630 int successive,
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1631 int is_priv,
Hanno Becker04877a42017-10-11 10:01:33 +0100[diff] [blame]1632 int res_check,
1633 int res_complete )
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1634{
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1635 /* Buffers used for encryption-decryption test */
1636 unsigned char *buf_orig = NULL;
1637 unsigned char *buf_enc = NULL;
1638 unsigned char *buf_dec = NULL;
1639
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1640 mbedtls_rsa_context ctx;
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1641 mbedtls_entropy_context entropy;
1642 mbedtls_ctr_drbg_context ctr_drbg;
Hanno Becker3f3ae852017-10-02 10:08:39 +0100[diff] [blame]1643
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1644 const char *pers = "test_suite_rsa";
1645
1646 mbedtls_ctr_drbg_init( &ctr_drbg );
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1647 mbedtls_entropy_init( &entropy );
Hanno Becker3f3ae852017-10-02 10:08:39 +0100[diff] [blame]1648 mbedtls_rsa_init( &ctx, 0, 0 );
1649
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1650 TEST_ASSERT( mbedtls_ctr_drbg_seed( &ctr_drbg, mbedtls_entropy_func,
1651 &entropy, (const unsigned char *) pers,
1652 strlen( pers ) ) == 0 );
1653
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1654 if( !successive )
1655 {
1656 TEST_ASSERT( mbedtls_rsa_import_raw( &ctx,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1657 ( input_N->len > 0 ) ? input_N->x : NULL, input_N->len,
1658 ( input_P->len > 0 ) ? input_P->x : NULL, input_P->len,
1659 ( input_Q->len > 0 ) ? input_Q->x : NULL, input_Q->len,
1660 ( input_D->len > 0 ) ? input_D->x : NULL, input_D->len,
1661 ( input_E->len > 0 ) ? input_E->x : NULL, input_E->len ) == 0 );
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1662 }
1663 else
1664 {
1665 /* Import N, P, Q, D, E separately.
1666 * This should make no functional difference. */
1667
1668 TEST_ASSERT( mbedtls_rsa_import_raw( &ctx,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1669 ( input_N->len > 0 ) ? input_N->x : NULL, input_N->len,
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1670 NULL, 0, NULL, 0, NULL, 0, NULL, 0 ) == 0 );
1671
1672 TEST_ASSERT( mbedtls_rsa_import_raw( &ctx,
1673 NULL, 0,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1674 ( input_P->len > 0 ) ? input_P->x : NULL, input_P->len,
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1675 NULL, 0, NULL, 0, NULL, 0 ) == 0 );
1676
1677 TEST_ASSERT( mbedtls_rsa_import_raw( &ctx,
1678 NULL, 0, NULL, 0,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1679 ( input_Q->len > 0 ) ? input_Q->x : NULL, input_Q->len,
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1680 NULL, 0, NULL, 0 ) == 0 );
1681
1682 TEST_ASSERT( mbedtls_rsa_import_raw( &ctx,
1683 NULL, 0, NULL, 0, NULL, 0,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1684 ( input_D->len > 0 ) ? input_D->x : NULL, input_D->len,
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1685 NULL, 0 ) == 0 );
1686
1687 TEST_ASSERT( mbedtls_rsa_import_raw( &ctx,
1688 NULL, 0, NULL, 0, NULL, 0, NULL, 0,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]1689 ( input_E->len > 0 ) ? input_E->x : NULL, input_E->len ) == 0 );
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1690 }
1691
Hanno Becker04877a42017-10-11 10:01:33 +0100[diff] [blame]1692 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == res_complete );
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1693
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1694 /* On expected success, perform some public and private
1695 * key operations to check if the key is working properly. */
Hanno Becker04877a42017-10-11 10:01:33 +0100[diff] [blame]1696 if( res_complete == 0 )
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1697 {
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1698 if( is_priv )
Hanno Becker04877a42017-10-11 10:01:33 +0100[diff] [blame]1699 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == res_check );
1700 else
1701 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == res_check );
1702
1703 if( res_check != 0 )
1704 goto exit;
Hanno Beckere1582a82017-09-29 11:51:05 +0100[diff] [blame]1705
1706 buf_orig = mbedtls_calloc( 1, mbedtls_rsa_get_len( &ctx ) );
1707 buf_enc = mbedtls_calloc( 1, mbedtls_rsa_get_len( &ctx ) );
1708 buf_dec = mbedtls_calloc( 1, mbedtls_rsa_get_len( &ctx ) );
1709 if( buf_orig == NULL || buf_enc == NULL || buf_dec == NULL )
1710 goto exit;
1711
1712 TEST_ASSERT( mbedtls_ctr_drbg_random( &ctr_drbg,
1713 buf_orig, mbedtls_rsa_get_len( &ctx ) ) == 0 );
1714
1715 /* Make sure the number we're generating is smaller than the modulus */
1716 buf_orig[0] = 0x00;
1717
1718 TEST_ASSERT( mbedtls_rsa_public( &ctx, buf_orig, buf_enc ) == 0 );
1719
1720 if( is_priv )
1721 {
1722 TEST_ASSERT( mbedtls_rsa_private( &ctx, mbedtls_ctr_drbg_random,
1723 &ctr_drbg, buf_enc,
1724 buf_dec ) == 0 );
1725
1726 TEST_ASSERT( memcmp( buf_orig, buf_dec,
1727 mbedtls_rsa_get_len( &ctx ) ) == 0 );
1728 }
1729 }
1730
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1731exit:
1732
Hanno Becker3f3ae852017-10-02 10:08:39 +0100[diff] [blame]1733 mbedtls_free( buf_orig );
1734 mbedtls_free( buf_enc );
1735 mbedtls_free( buf_dec );
1736
Hanno Beckerc77ab892017-08-23 11:01:06 +0100[diff] [blame]1737 mbedtls_rsa_free( &ctx );
1738
1739 mbedtls_ctr_drbg_free( &ctr_drbg );
1740 mbedtls_entropy_free( &entropy );
1741
1742}
1743/* END_CASE */
1744
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1745/* BEGIN_CASE depends_on:MBEDTLS_SELF_TEST */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]1746void rsa_selftest( )
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]1747{
Andres AG93012e82016-09-09 09:10:28 +0100[diff] [blame]1748 TEST_ASSERT( mbedtls_rsa_self_test( 1 ) == 0 );
Paul Bakker42a29bf2009-07-07 20:18:41 +0000[diff] [blame]1749}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1750/* END_CASE */