TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 668a78d9529a82eed0be36ecf49632f76391498a / . / tests / suites / test_suite_pkcs1_v21.function
blob: a0c5f51013240637e7eaf4df75858f35b548633d [file] [log] [blame]
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1/* BEGIN_HEADER */
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]2#include "mbedtls/rsa.h"
3#include "mbedtls/md.h"
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]4/* END_HEADER */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]5
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]6/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]7 * depends_on:MBEDTLS_PKCS1_V21:MBEDTLS_RSA_C:MBEDTLS_SHA1_C
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]8 * END_DEPENDENCIES
9 */
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]10
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]11/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]12void pkcs1_rsaes_oaep_encrypt( int mod, int radix_N, char * input_N,
13 int radix_E, char * input_E, int hash,
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]14 data_t * message_str, data_t * rnd_buf,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]15 data_t * result_str, int result )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]16{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]17 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]18 mbedtls_rsa_context ctx;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]19 mbedtls_test_rnd_buf_info info;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]20 mbedtls_mpi N, E;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]21
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]22 info.buf = rnd_buf->x;
23 info.length = rnd_buf->len;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]24
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]25 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]26 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, hash );
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]27 memset( output, 0x00, sizeof( output ) );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]28
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]29 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
30 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
31 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
32 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]33 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]34
Gilles Peskine85a6dd42018-10-15 16:32:42 +0200[diff] [blame]35 if( message_str->len == 0 )
36 message_str->x = NULL;
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]37 TEST_ASSERT( mbedtls_rsa_pkcs1_encrypt( &ctx,
38 &mbedtls_test_rnd_buffer_rand,
39 &info, MBEDTLS_RSA_PUBLIC,
40 message_str->len, message_str->x,
41 output ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]42 if( result == 0 )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]43 {
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]44 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
45 ctx.len, result_str->len ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]46 }
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]47
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]48exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]49 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]50 mbedtls_rsa_free( &ctx );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]51}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]52/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]53
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]54/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]55void pkcs1_rsaes_oaep_decrypt( int mod, int radix_P, char * input_P,
56 int radix_Q, char * input_Q, int radix_N,
57 char * input_N, int radix_E, char * input_E,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]58 int hash, data_t * result_str,
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]59 char * seed, data_t * message_str,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]60 int result )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]61{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]62 unsigned char output[64];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]63 mbedtls_rsa_context ctx;
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]64 size_t output_len;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]65 mbedtls_test_rnd_pseudo_info rnd_info;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]66 mbedtls_mpi N, P, Q, E;
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]67 ((void) seed);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]68
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]69 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &P );
70 mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &E );
71
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]72 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, hash );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]73
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]74 memset( output, 0x00, sizeof( output ) );
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]75 memset( &rnd_info, 0, sizeof( mbedtls_test_rnd_pseudo_info ) );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]76
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]77 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
78 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
79 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
80 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker548957d2013-08-30 10:30:02 +0200[diff] [blame]81
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]82 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, &P, &Q, NULL, &E ) == 0 );
83 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Hanno Becker7f25f852017-10-10 16:56:22 +0100[diff] [blame]84 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]85 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]86
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]87 if( result_str->len == 0 )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]88 {
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]89 TEST_ASSERT( mbedtls_rsa_pkcs1_decrypt( &ctx,
90 &mbedtls_test_rnd_pseudo_rand,
91 &rnd_info,
92 MBEDTLS_RSA_PRIVATE,
93 &output_len, message_str->x,
94 NULL, 0 ) == result );
Gilles Peskine85a6dd42018-10-15 16:32:42 +0200[diff] [blame]95 }
96 else
97 {
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]98 TEST_ASSERT( mbedtls_rsa_pkcs1_decrypt( &ctx,
99 &mbedtls_test_rnd_pseudo_rand,
100 &rnd_info,
101 MBEDTLS_RSA_PRIVATE,
102 &output_len, message_str->x,
103 output,
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]104 sizeof( output ) ) == result );
Gilles Peskine85a6dd42018-10-15 16:32:42 +0200[diff] [blame]105 if( result == 0 )
106 {
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]107 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]108 output_len,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]109 result_str->len ) == 0 );
Gilles Peskine85a6dd42018-10-15 16:32:42 +0200[diff] [blame]110 }
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]111 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]112
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]113exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]114 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &P );
115 mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]116 mbedtls_rsa_free( &ctx );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]117}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]118/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]119
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]120/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]121void pkcs1_rsassa_pss_sign( int mod, int radix_P, char * input_P, int radix_Q,
122 char * input_Q, int radix_N, char * input_N,
123 int radix_E, char * input_E, int digest, int hash,
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]124 data_t * message_str, data_t * rnd_buf,
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]125 data_t * result_str, int result )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]126{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]127 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
128 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]129 mbedtls_rsa_context ctx;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]130 mbedtls_test_rnd_buf_info info;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]131 mbedtls_mpi N, P, Q, E;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]132
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]133 info.buf = rnd_buf->x;
134 info.length = rnd_buf->len;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]135
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]136 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &P );
137 mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]138 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, hash );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]139
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]140 memset( hash_result, 0x00, sizeof( hash_result ) );
141 memset( output, 0x00, sizeof( output ) );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]142
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]143 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
144 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
145 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
146 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]147
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]148 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, &P, &Q, NULL, &E ) == 0 );
149 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Hanno Becker7f25f852017-10-10 16:56:22 +0100[diff] [blame]150 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]151 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]152
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]153
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]154 if( mbedtls_md_info_from_type( digest ) != NULL )
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]155 TEST_ASSERT( mbedtls_md( mbedtls_md_info_from_type( digest ), message_str->x, message_str->len, hash_result ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]156
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]157 TEST_ASSERT( mbedtls_rsa_pkcs1_sign( &ctx, &mbedtls_test_rnd_buffer_rand,
158 &info, MBEDTLS_RSA_PRIVATE, digest, 0,
159 hash_result, output ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]160 if( result == 0 )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]161 {
Cédric Meutera05cbec2020-04-25 15:02:34 +0200[diff] [blame]162 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
163 ctx.len, result_str->len ) == 0 );
164 }
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]165
Cédric Meutera05cbec2020-04-25 15:02:34 +0200[diff] [blame]166 info.buf = rnd_buf->x;
167 info.length = rnd_buf->len;
168
169 TEST_ASSERT( mbedtls_rsa_rsassa_pss_sign_ext( &ctx, &mbedtls_test_rnd_buffer_rand,
170 &info, digest, 0, hash_result,
171 MBEDTLS_RSA_SALT_LEN_ANY, output ) == result );
172 if( result == 0 )
173 {
Ronald Cronac6ae352020-06-26 14:33:03 +0200[diff] [blame]174 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
175 ctx.len, result_str->len ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]176 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]177
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]178exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]179 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &P );
180 mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]181 mbedtls_rsa_free( &ctx );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]182}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]183/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]184
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]185/* BEGIN_CASE */
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame^]186void pkcs1_rsassa_pss_sign_ext( int mod, int radix_P, char * input_P, int radix_Q,
187 char * input_Q, int radix_N, char * input_N,
188 int radix_E, char * input_E, int digest, int hash,
189 data_t * message_str, data_t * rnd_buf,
190 data_t * result_str, int fixed_salt_length,
191 int result )
192{
193 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
194 unsigned char output[512];
195 mbedtls_rsa_context ctx;
196 mbedtls_test_rnd_buf_info info;
197 mbedtls_mpi N, P, Q, E;
198
199 info.buf = rnd_buf->x;
200 info.length = rnd_buf->len;
201
202 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &P );
203 mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &E );
204 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, hash );
205
206 memset( hash_result, 0x00, sizeof( hash_result ) );
207 memset( output, 0x00, sizeof( output ) );
208
209 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
210 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
211 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
212 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
213
214 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, &P, &Q, NULL, &E ) == 0 );
215 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
216 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
217 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
218
219
220 if( mbedtls_md_info_from_type( digest ) != NULL )
221 TEST_ASSERT( mbedtls_md( mbedtls_md_info_from_type( digest ), message_str->x, message_str->len, hash_result ) == 0 );
222
223 TEST_ASSERT( mbedtls_rsa_rsassa_pss_sign_ext( &ctx, &mbedtls_test_rnd_buffer_rand, &info, digest,
224 0, hash_result, fixed_salt_length, output ) == result );
225 if( result == 0 )
226 {
227 TEST_ASSERT( mbedtls_test_hexcmp( output, result_str->x,
228 ctx.len, result_str->len ) == 0 );
229 }
230
231exit:
232 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &P );
233 mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &E );
234 mbedtls_rsa_free( &ctx );
235}
236/* END_CASE */
237
238/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]239void pkcs1_rsassa_pss_verify( int mod, int radix_N, char * input_N,
240 int radix_E, char * input_E, int digest,
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]241 int hash, data_t * message_str, char * salt,
242 data_t * result_str, int result )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]243{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]244 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]245 mbedtls_rsa_context ctx;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]246 mbedtls_mpi N, E;
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]247 ((void) salt);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]248
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]249 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]250 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, hash );
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]251 memset( hash_result, 0x00, sizeof( hash_result ) );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]252
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]253 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
254 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]255
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]256 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
257 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]258 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]259
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]260
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]261 if( mbedtls_md_info_from_type( digest ) != NULL )
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]262 TEST_ASSERT( mbedtls_md( mbedtls_md_info_from_type( digest ), message_str->x, message_str->len, hash_result ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]263
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]264 TEST_ASSERT( mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC, digest, 0, hash_result, result_str->x ) == result );
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]265
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]266exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]267 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]268 mbedtls_rsa_free( &ctx );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]269}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]270/* END_CASE */
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]271
272/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]273void pkcs1_rsassa_pss_verify_ext( int mod, int radix_N, char * input_N,
274 int radix_E, char * input_E,
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]275 int msg_digest_id, int ctx_hash,
276 int mgf_hash, int salt_len,
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]277 data_t * message_str,
278 data_t * result_str, int result_simple,
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]279 int result_full )
280{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]281 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]282 mbedtls_rsa_context ctx;
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]283 size_t hash_len;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]284 mbedtls_mpi N, E;
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]285
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]286 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]287 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, ctx_hash );
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]288 memset( hash_result, 0x00, sizeof( hash_result ) );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]289
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]290 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
291 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]292
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]293 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
294 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]295 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]296
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]297
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]298 if( msg_digest_id != MBEDTLS_MD_NONE )
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]299 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]300 TEST_ASSERT( mbedtls_md( mbedtls_md_info_from_type( msg_digest_id ),
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]301 message_str->x, message_str->len, hash_result ) == 0 );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]302 hash_len = 0;
303 }
304 else
305 {
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]306 memcpy( hash_result, message_str->x, message_str->len );
307 hash_len = message_str->len;
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]308 }
309
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]310 TEST_ASSERT( mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC,
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]311 msg_digest_id, hash_len, hash_result,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]312 result_str->x ) == result_simple );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]313
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]314 TEST_ASSERT( mbedtls_rsa_rsassa_pss_verify_ext( &ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC,
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]315 msg_digest_id, hash_len, hash_result,
316 mgf_hash, salt_len,
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]317 result_str->x ) == result_full );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]318
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]319exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]320 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]321 mbedtls_rsa_free( &ctx );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]322}
323/* END_CASE */