TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 6ff3536de50907b71f77d2d6e46e4a30bc598e02 / . / tests / suites / test_suite_mpi.function
blob: 34710c430d2cf516a537211fcac0b56f73ab16a8 [file] [log] [blame]
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1/* BEGIN_HEADER */
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]2#include "mbedtls/bignum.h"
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]3#include "mbedtls/entropy.h"
Janos Follathf1d617d2022-07-21 09:29:32 +0100[diff] [blame]4#include "bignum_core.h"
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]5
Chris Jonese64a46f2020-12-03 17:44:03 +0000[diff] [blame]6#if MBEDTLS_MPI_MAX_BITS > 792
7#define MPI_MAX_BITS_LARGER_THAN_792
Chris Jones4592bd82020-12-03 14:24:33 +0000[diff] [blame]8#endif
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]9
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]10/* Check the validity of the sign bit in an MPI object. Reject representations
11 * that are not supported by the rest of the library and indicate a bug when
12 * constructing the value. */
13static int sign_is_valid( const mbedtls_mpi *X )
14{
15 if( X->s != 1 && X->s != -1 )
16 return( 0 ); // invalid sign bit, e.g. 0
17 if( mbedtls_mpi_bitlen( X ) == 0 && X->s != 1 )
18 return( 0 ); // negative zero
19 return( 1 );
20}
21
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]22typedef struct mbedtls_test_mpi_random
23{
24 data_t *data;
25 size_t pos;
26 size_t chunk_len;
27} mbedtls_test_mpi_random;
28
29/*
30 * This function is called by the Miller-Rabin primality test each time it
31 * chooses a random witness. The witnesses (or non-witnesses as provided by the
32 * test) are stored in the data member of the state structure. Each number is in
33 * the format that mbedtls_mpi_read_string understands and is chunk_len long.
34 */
35int mbedtls_test_mpi_miller_rabin_determinizer( void* state,
36 unsigned char* buf,
37 size_t len )
38{
39 mbedtls_test_mpi_random *random = (mbedtls_test_mpi_random*) state;
40
41 if( random == NULL || random->data->x == NULL || buf == NULL )
42 return( -1 );
43
44 if( random->pos + random->chunk_len > random->data->len
45 || random->chunk_len > len )
46 {
47 return( -1 );
48 }
49
50 memset( buf, 0, len );
51
52 /* The witness is written to the end of the buffer, since the buffer is
53 * used as big endian, unsigned binary data in mbedtls_mpi_read_binary.
54 * Writing the witness to the start of the buffer would result in the
55 * buffer being 'witness 000...000', which would be treated as
56 * witness * 2^n for some n. */
57 memcpy( buf + len - random->chunk_len, &random->data->x[random->pos],
58 random->chunk_len );
59
60 random->pos += random->chunk_len;
61
62 return( 0 );
63}
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]64
65/* Random generator that is told how many bytes to return. */
66static int f_rng_bytes_left( void *state, unsigned char *buf, size_t len )
67{
68 size_t *bytes_left = state;
69 size_t i;
70 for( i = 0; i < len; i++ )
71 {
72 if( *bytes_left == 0 )
73 return( MBEDTLS_ERR_ENTROPY_SOURCE_FAILED );
74 buf[i] = *bytes_left & 0xff;
75 --( *bytes_left );
76 }
77 return( 0 );
78}
79
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]80/* Test whether bytes represents (in big-endian base 256) a number b that
81 * is significantly above a power of 2. That is, b must not have a long run
82 * of unset bits after the most significant bit.
83 *
84 * Let n be the bit-size of b, i.e. the integer such that 2^n <= b < 2^{n+1}.
85 * This function returns 1 if, when drawing a number between 0 and b,
86 * the probability that this number is at least 2^n is not negligible.
87 * This probability is (b - 2^n) / b and this function checks that this
88 * number is above some threshold A. The threshold value is heuristic and
89 * based on the needs of mpi_random_many().
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]90 */
91static int is_significantly_above_a_power_of_2( data_t *bytes )
92{
93 const uint8_t *p = bytes->x;
94 size_t len = bytes->len;
95 unsigned x;
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]96
97 /* Skip leading null bytes */
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]98 while( len > 0 && p[0] == 0 )
99 {
100 ++p;
101 --len;
102 }
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]103 /* 0 is not significantly above a power of 2 */
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]104 if( len == 0 )
105 return( 0 );
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]106 /* Extract the (up to) 2 most significant bytes */
107 if( len == 1 )
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]108 x = p[0];
109 else
110 x = ( p[0] << 8 ) | p[1];
111
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]112 /* Shift the most significant bit of x to position 8 and mask it out */
113 while( ( x & 0xfe00 ) != 0 )
114 x >>= 1;
115 x &= 0x00ff;
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]116
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]117 /* At this point, x = floor((b - 2^n) / 2^(n-8)). b is significantly above
118 * a power of 2 iff x is significantly above 0 compared to 2^8.
119 * Testing x >= 2^4 amounts to picking A = 1/16 in the function
120 * description above. */
121 return( x >= 0x10 );
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]122}
123
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]124/* END_HEADER */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]125
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]126/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]127 * depends_on:MBEDTLS_BIGNUM_C
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]128 * END_DEPENDENCIES
129 */
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]130
Hanno Beckerb48e1aa2018-12-18 23:25:01 +0000[diff] [blame]131/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]132void mpi_null( )
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]133{
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]134 mbedtls_mpi X, Y, Z;
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]135
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]136 mbedtls_mpi_init( &X );
137 mbedtls_mpi_init( &Y );
138 mbedtls_mpi_init( &Z );
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]139
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]140 TEST_ASSERT( mbedtls_mpi_get_bit( &X, 42 ) == 0 );
141 TEST_ASSERT( mbedtls_mpi_lsb( &X ) == 0 );
Manuel Pégourié-Gonnardc0696c22015-06-18 16:47:17 +0200[diff] [blame]142 TEST_ASSERT( mbedtls_mpi_bitlen( &X ) == 0 );
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]143 TEST_ASSERT( mbedtls_mpi_size( &X ) == 0 );
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]144
145exit:
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]146 mbedtls_mpi_free( &X );
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]147}
148/* END_CASE */
149
150/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]151void mpi_read_write_string( int radix_X, char * input_X, int radix_A,
152 char * input_A, int output_size, int result_read,
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]153 int result_write )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]154{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]155 mbedtls_mpi X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]156 char str[1000];
Manuel Pégourié-Gonnardf79b4252015-06-02 15:41:48 +0100[diff] [blame]157 size_t len;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]158
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]159 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]160
Janos Follath04dadb72019-03-06 12:29:37 +0000[diff] [blame]161 memset( str, '!', sizeof( str ) );
162
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]163 TEST_ASSERT( mbedtls_mpi_read_string( &X, radix_X, input_X ) == result_read );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]164 if( result_read == 0 )
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]165 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]166 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnardf79b4252015-06-02 15:41:48 +0100[diff] [blame]167 TEST_ASSERT( mbedtls_mpi_write_string( &X, radix_A, str, output_size, &len ) == result_write );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]168 if( result_write == 0 )
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]169 {
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]170 TEST_ASSERT( strcasecmp( str, input_A ) == 0 );
Janos Follath04dadb72019-03-06 12:29:37 +0000[diff] [blame]171 TEST_ASSERT( str[len] == '!' );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]172 }
173 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]174
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]175exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]176 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]177}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]178/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]179
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]180/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]181void mbedtls_mpi_read_binary( data_t * buf, char * input_A )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]182{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]183 mbedtls_mpi X;
Janos Follathe5670f22019-02-25 16:11:58 +0000[diff] [blame]184 char str[1000];
Manuel Pégourié-Gonnardf79b4252015-06-02 15:41:48 +0100[diff] [blame]185 size_t len;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]186
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]187 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]188
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]189
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]190 TEST_ASSERT( mbedtls_mpi_read_binary( &X, buf->x, buf->len ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]191 TEST_ASSERT( sign_is_valid( &X ) );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]192 TEST_ASSERT( mbedtls_mpi_write_string( &X, 16, str, sizeof( str ), &len ) == 0 );
Werner Lewisdc47fe72022-08-01 13:55:41 +0100[diff] [blame]193 TEST_ASSERT( strcmp( (char *) str, input_A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]194
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]195exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]196 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]197}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]198/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]199
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]200/* BEGIN_CASE */
Janos Follathf1d617d2022-07-21 09:29:32 +0100[diff] [blame]201void mbedtls_mpi_core_io_be( data_t *input, int nb_int, int nx_64_int, int iret,
202 int oret )
203{
204 #define BMAX 1024
205 unsigned char buf[BMAX];
206 #define XMAX BMAX / sizeof( mbedtls_mpi_uint )
207 mbedtls_mpi_uint X[XMAX];
208 size_t nx, nb;
209 int ret;
210
211 if( iret != 0 )
212 TEST_ASSERT( oret == 0 );
213
214 TEST_ASSERT( 0 <= nb_int );
215 nb = nb_int;
216 TEST_ASSERT( nb <= BMAX );
217
218 TEST_ASSERT( 0 <= nx_64_int );
219 nx = nx_64_int;
220 /* nx_64_int is the number of 64 bit limbs, if we have 32 bit limbs we need
221 * to double the number of limbs to have the same size. */
222 if( sizeof( mbedtls_mpi_uint ) == 4 )
223 nx *= 2;
224 TEST_ASSERT( nx <= XMAX );
225
226 ret = mbedtls_mpi_core_read_be( X, nx, input->x, input->len );
227 TEST_ASSERT( ret == iret );
228
229 if( iret == 0 )
230 {
231 ret = mbedtls_mpi_core_write_be( X, nx, buf, nb );
232 TEST_ASSERT( ret == oret );
233 }
234
235 if( ( iret == 0 ) && ( oret == 0 ) )
236 {
237 if( nb > input->len )
238 {
239 size_t leading_zeroes = nb - input->len;
240 TEST_ASSERT( memcmp( buf + nb - input->len, input->x, input->len ) == 0 );
241 for( size_t i = 0; i < leading_zeroes; i++ )
242 TEST_ASSERT( buf[i] == 0 );
243 }
244 else
245 {
246 size_t leading_zeroes = input->len - nb;
247 TEST_ASSERT( memcmp( input->x + input->len - nb, buf, nb ) == 0 );
248 for( size_t i = 0; i < leading_zeroes; i++ )
249 TEST_ASSERT( input->x[i] == 0 );
250 }
251 }
252
253exit:
254 ;
255
256 #undef BMAX
257 #undef XMAX
258}
259/* END_CASE */
260
261/* BEGIN_CASE */
Janos Follath6ff35362022-07-21 15:27:21 +0100[diff] [blame^]262void mbedtls_mpi_core_io_le( data_t *input, int nb_int, int nx_64_int, int iret,
263 int oret )
264{
265 #define BMAX 1024
266 unsigned char buf[BMAX];
267 #define XMAX BMAX / sizeof( mbedtls_mpi_uint )
268 mbedtls_mpi_uint X[XMAX];
269 size_t nx, nb;
270 int ret;
271
272 if( iret != 0 )
273 TEST_ASSERT( oret == 0 );
274
275 TEST_ASSERT( 0 <= nb_int );
276 nb = nb_int;
277 TEST_ASSERT( nb <= BMAX );
278
279 TEST_ASSERT( 0 <= nx_64_int );
280 nx = nx_64_int;
281 /* nx_64_int is the number of 64 bit limbs, if we have 32 bit limbs we need
282 * to double the number of limbs to have the same size. */
283 if( sizeof( mbedtls_mpi_uint ) == 4 )
284 nx *= 2;
285 TEST_ASSERT( nx <= XMAX );
286
287 ret = mbedtls_mpi_core_read_le( X, nx, input->x, input->len );
288 TEST_ASSERT( ret == iret );
289
290 if( iret == 0 )
291 {
292 ret = mbedtls_mpi_core_write_le( X, nx, buf, nb );
293 TEST_ASSERT( ret == oret );
294 }
295
296 if( ( iret == 0 ) && ( oret == 0 ) )
297 {
298 if( nb > input->len )
299 {
300 TEST_ASSERT( memcmp( buf, input->x, input->len ) == 0 );
301 for( size_t i = input->len; i < nb; i++ )
302 TEST_ASSERT( buf[i] == 0 );
303 }
304 else
305 {
306 TEST_ASSERT( memcmp( input->x, buf, nb ) == 0 );
307 for( size_t i = nb; i < input->len; i++ )
308 TEST_ASSERT( input->x[i] == 0 );
309 }
310 }
311
312exit:
313 ;
314
315 #undef BMAX
316 #undef XMAX
317}
318/* END_CASE */
319
320/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]321void mbedtls_mpi_read_binary_le( data_t * buf, char * input_A )
Janos Follatha778a942019-02-13 10:28:28 +0000[diff] [blame]322{
323 mbedtls_mpi X;
Janos Follathe5670f22019-02-25 16:11:58 +0000[diff] [blame]324 char str[1000];
Janos Follatha778a942019-02-13 10:28:28 +0000[diff] [blame]325 size_t len;
326
327 mbedtls_mpi_init( &X );
328
329
330 TEST_ASSERT( mbedtls_mpi_read_binary_le( &X, buf->x, buf->len ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]331 TEST_ASSERT( sign_is_valid( &X ) );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]332 TEST_ASSERT( mbedtls_mpi_write_string( &X, 16, str, sizeof( str ), &len ) == 0 );
Werner Lewisdc47fe72022-08-01 13:55:41 +0100[diff] [blame]333 TEST_ASSERT( strcmp( (char *) str, input_A ) == 0 );
Janos Follatha778a942019-02-13 10:28:28 +0000[diff] [blame]334
335exit:
336 mbedtls_mpi_free( &X );
337}
338/* END_CASE */
339
340/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]341void mbedtls_mpi_write_binary( char * input_X, data_t * input_A,
342 int output_size, int result )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]343{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]344 mbedtls_mpi X;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]345 unsigned char buf[1000];
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]346 size_t buflen;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]347
348 memset( buf, 0x00, 1000 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]349
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]350 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]351
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]352 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnarde670f902015-10-30 09:23:19 +0100[diff] [blame]353
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]354 buflen = mbedtls_mpi_size( &X );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]355 if( buflen > (size_t) output_size )
356 buflen = (size_t) output_size;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]357
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]358 TEST_ASSERT( mbedtls_mpi_write_binary( &X, buf, buflen ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]359 if( result == 0)
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]360 {
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]361
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]362 TEST_ASSERT( mbedtls_test_hexcmp( buf, input_A->x,
363 buflen, input_A->len ) == 0 );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]364 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]365
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]366exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]367 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]368}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]369/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]370
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]371/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]372void mbedtls_mpi_write_binary_le( char * input_X, data_t * input_A,
373 int output_size, int result )
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]374{
375 mbedtls_mpi X;
376 unsigned char buf[1000];
377 size_t buflen;
378
379 memset( buf, 0x00, 1000 );
380
381 mbedtls_mpi_init( &X );
382
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]383 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]384
385 buflen = mbedtls_mpi_size( &X );
386 if( buflen > (size_t) output_size )
387 buflen = (size_t) output_size;
388
389 TEST_ASSERT( mbedtls_mpi_write_binary_le( &X, buf, buflen ) == result );
390 if( result == 0)
391 {
392
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]393 TEST_ASSERT( mbedtls_test_hexcmp( buf, input_A->x,
394 buflen, input_A->len ) == 0 );
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]395 }
396
397exit:
398 mbedtls_mpi_free( &X );
399}
400/* END_CASE */
401
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]402/* BEGIN_CASE depends_on:MBEDTLS_FS_IO */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]403void mbedtls_mpi_read_file( char * input_file, data_t * input_A, int result )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]404{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]405 mbedtls_mpi X;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]406 unsigned char buf[1000];
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]407 size_t buflen;
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]408 FILE *file;
Manuel Pégourié-Gonnarde43187d2015-02-14 16:01:34 +0000[diff] [blame]409 int ret;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]410
411 memset( buf, 0x00, 1000 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]412
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]413 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]414
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]415 file = fopen( input_file, "r" );
Paul Bakker8a0c0a92014-04-17 16:08:20 +0200[diff] [blame]416 TEST_ASSERT( file != NULL );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]417 ret = mbedtls_mpi_read_file( &X, 16, file );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]418 fclose(file);
Manuel Pégourié-Gonnarde43187d2015-02-14 16:01:34 +0000[diff] [blame]419 TEST_ASSERT( ret == result );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]420
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]421 if( result == 0 )
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]422 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]423 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]424 buflen = mbedtls_mpi_size( &X );
425 TEST_ASSERT( mbedtls_mpi_write_binary( &X, buf, buflen ) == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]426
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]427
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]428 TEST_ASSERT( mbedtls_test_hexcmp( buf, input_A->x,
429 buflen, input_A->len ) == 0 );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]430 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]431
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]432exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]433 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]434}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]435/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]436
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]437/* BEGIN_CASE depends_on:MBEDTLS_FS_IO */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]438void mbedtls_mpi_write_file( char * input_X, char * output_file )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]439{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]440 mbedtls_mpi X, Y;
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]441 FILE *file_out, *file_in;
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]442 int ret;
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]443
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]444 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]445
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]446 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]447
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]448 file_out = fopen( output_file, "w" );
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]449 TEST_ASSERT( file_out != NULL );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]450 ret = mbedtls_mpi_write_file( NULL, &X, 16, file_out );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]451 fclose(file_out);
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]452 TEST_ASSERT( ret == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]453
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]454 file_in = fopen( output_file, "r" );
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]455 TEST_ASSERT( file_in != NULL );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]456 ret = mbedtls_mpi_read_file( &Y, 16, file_in );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]457 fclose(file_in);
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]458 TEST_ASSERT( ret == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]459
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]460 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]461
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]462exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]463 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]464}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]465/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]466
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]467/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]468void mbedtls_mpi_get_bit( char * input_X, int pos, int val )
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]469{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]470 mbedtls_mpi X;
471 mbedtls_mpi_init( &X );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]472 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]473 TEST_ASSERT( mbedtls_mpi_get_bit( &X, pos ) == val );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]474
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]475exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]476 mbedtls_mpi_free( &X );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]477}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]478/* END_CASE */
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]479
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]480/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]481void mbedtls_mpi_set_bit( char * input_X, int pos, int val,
482 char * output_Y, int result )
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]483{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]484 mbedtls_mpi X, Y;
485 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]486
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]487 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
488 TEST_ASSERT( mbedtls_test_read_mpi( &Y, output_Y ) == 0 );
Paul Bakkerec5ceb62016-07-14 12:47:07 +0100[diff] [blame]489 TEST_ASSERT( mbedtls_mpi_set_bit( &X, pos, val ) == result );
490
491 if( result == 0 )
492 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]493 TEST_ASSERT( sign_is_valid( &X ) );
Paul Bakkerec5ceb62016-07-14 12:47:07 +0100[diff] [blame]494 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == 0 );
495 }
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]496
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]497exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]498 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]499}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]500/* END_CASE */
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]501
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]502/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]503void mbedtls_mpi_lsb( char * input_X, int nr_bits )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]504{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]505 mbedtls_mpi X;
506 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]507
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]508 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]509 TEST_ASSERT( mbedtls_mpi_lsb( &X ) == (size_t) nr_bits );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]510
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]511exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]512 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]513}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]514/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]515
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]516/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]517void mbedtls_mpi_bitlen( char * input_X, int nr_bits )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]518{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]519 mbedtls_mpi X;
520 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]521
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]522 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnardc0696c22015-06-18 16:47:17 +0200[diff] [blame]523 TEST_ASSERT( mbedtls_mpi_bitlen( &X ) == (size_t) nr_bits );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]524
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]525exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]526 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]527}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]528/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]529
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]530/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]531void mbedtls_mpi_gcd( char * input_X, char * input_Y,
532 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]533{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]534 mbedtls_mpi A, X, Y, Z;
535 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]536
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]537 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
538 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
539 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]540 TEST_ASSERT( mbedtls_mpi_gcd( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]541 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]542 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]543
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]544exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]545 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]546}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]547/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]548
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]549/* BEGIN_CASE */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]550void mbedtls_mpi_cmp_int( int input_X, int input_A, int result_CMP )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]551{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]552 mbedtls_mpi X;
553 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]554
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]555 TEST_ASSERT( mbedtls_mpi_lset( &X, input_X ) == 0);
556 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, input_A ) == result_CMP);
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]557
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]558exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]559 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]560}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]561/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]562
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]563/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]564void mbedtls_mpi_cmp_mpi( char * input_X, char * input_Y,
565 int input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]566{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]567 mbedtls_mpi X, Y;
568 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]569
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]570 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
571 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]572 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == input_A );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]573
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]574exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]575 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]576}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]577/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]578
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]579/* BEGIN_CASE */
Janos Follathb7e1b492019-10-14 09:21:49 +0100[diff] [blame]580void mbedtls_mpi_lt_mpi_ct( int size_X, char * input_X,
581 int size_Y, char * input_Y,
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]582 int input_ret, int input_err )
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]583{
Gilles Peskine0deccf12020-09-02 15:18:07 +0200[diff] [blame]584 unsigned ret = -1;
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]585 unsigned input_uret = input_ret;
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]586 mbedtls_mpi X, Y;
587 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
588
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]589 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
590 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]591
Gilles Peskine9018b112020-01-21 16:30:53 +0100[diff] [blame]592 TEST_ASSERT( mbedtls_mpi_grow( &X, size_X ) == 0 );
593 TEST_ASSERT( mbedtls_mpi_grow( &Y, size_Y ) == 0 );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]594
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]595 TEST_ASSERT( mbedtls_mpi_lt_mpi_ct( &X, &Y, &ret ) == input_err );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]596 if( input_err == 0 )
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]597 TEST_ASSERT( ret == input_uret );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]598
599exit:
600 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
601}
602/* END_CASE */
603
604/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]605void mbedtls_mpi_cmp_abs( char * input_X, char * input_Y,
606 int input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]607{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]608 mbedtls_mpi X, Y;
609 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]610
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]611 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
612 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]613 TEST_ASSERT( mbedtls_mpi_cmp_abs( &X, &Y ) == input_A );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]614
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]615exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]616 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]617}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]618/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]619
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]620/* BEGIN_CASE */
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]621void mbedtls_mpi_copy( char *src_hex, char *dst_hex )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]622{
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]623 mbedtls_mpi src, dst, ref;
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]624 mbedtls_mpi_init( &src );
625 mbedtls_mpi_init( &dst );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]626 mbedtls_mpi_init( &ref );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]627
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]628 TEST_ASSERT( mbedtls_test_read_mpi( &src, src_hex ) == 0 );
629 TEST_ASSERT( mbedtls_test_read_mpi( &ref, dst_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]630
631 /* mbedtls_mpi_copy() */
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]632 TEST_ASSERT( mbedtls_test_read_mpi( &dst, dst_hex ) == 0 );
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]633 TEST_ASSERT( mbedtls_mpi_copy( &dst, &src ) == 0 );
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]634 TEST_ASSERT( sign_is_valid( &dst ) );
635 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &dst, &src ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]636
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]637 /* mbedtls_mpi_safe_cond_assign(), assignment done */
638 mbedtls_mpi_free( &dst );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]639 TEST_ASSERT( mbedtls_test_read_mpi( &dst, dst_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]640 TEST_ASSERT( mbedtls_mpi_safe_cond_assign( &dst, &src, 1 ) == 0 );
641 TEST_ASSERT( sign_is_valid( &dst ) );
642 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &dst, &src ) == 0 );
643
644 /* mbedtls_mpi_safe_cond_assign(), assignment not done */
645 mbedtls_mpi_free( &dst );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]646 TEST_ASSERT( mbedtls_test_read_mpi( &dst, dst_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]647 TEST_ASSERT( mbedtls_mpi_safe_cond_assign( &dst, &src, 0 ) == 0 );
648 TEST_ASSERT( sign_is_valid( &dst ) );
649 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &dst, &ref ) == 0 );
650
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]651exit:
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]652 mbedtls_mpi_free( &src );
653 mbedtls_mpi_free( &dst );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]654 mbedtls_mpi_free( &ref );
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]655}
656/* END_CASE */
657
658/* BEGIN_CASE */
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]659void mpi_copy_self( char *input_X )
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]660{
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]661 mbedtls_mpi X, A;
662 mbedtls_mpi_init( &A );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]663 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]664
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]665 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]666 TEST_ASSERT( mbedtls_mpi_copy( &X, &X ) == 0 );
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]667
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]668 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_X ) == 0 );
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]669 TEST_ASSERT( sign_is_valid( &X ) );
670 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]671
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]672exit:
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]673 mbedtls_mpi_free( &A );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]674 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]675}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]676/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]677
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]678/* BEGIN_CASE */
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]679void mbedtls_mpi_swap( char *X_hex, char *Y_hex )
680{
681 mbedtls_mpi X, Y, X0, Y0;
682 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
683 mbedtls_mpi_init( &X0 ); mbedtls_mpi_init( &Y0 );
684
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]685 TEST_ASSERT( mbedtls_test_read_mpi( &X0, X_hex ) == 0 );
686 TEST_ASSERT( mbedtls_test_read_mpi( &Y0, Y_hex ) == 0 );
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]687
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]688 /* mbedtls_mpi_swap() */
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]689 TEST_ASSERT( mbedtls_test_read_mpi( &X, X_hex ) == 0 );
690 TEST_ASSERT( mbedtls_test_read_mpi( &Y, Y_hex ) == 0 );
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]691 mbedtls_mpi_swap( &X, &Y );
692 TEST_ASSERT( sign_is_valid( &X ) );
693 TEST_ASSERT( sign_is_valid( &Y ) );
694 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y0 ) == 0 );
695 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &X0 ) == 0 );
696
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]697 /* mbedtls_mpi_safe_cond_swap(), swap done */
698 mbedtls_mpi_free( &X );
699 mbedtls_mpi_free( &Y );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]700 TEST_ASSERT( mbedtls_test_read_mpi( &X, X_hex ) == 0 );
701 TEST_ASSERT( mbedtls_test_read_mpi( &Y, Y_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]702 TEST_ASSERT( mbedtls_mpi_safe_cond_swap( &X, &Y, 1 ) == 0 );
703 TEST_ASSERT( sign_is_valid( &X ) );
704 TEST_ASSERT( sign_is_valid( &Y ) );
705 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y0 ) == 0 );
706 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &X0 ) == 0 );
707
708 /* mbedtls_mpi_safe_cond_swap(), swap not done */
709 mbedtls_mpi_free( &X );
710 mbedtls_mpi_free( &Y );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]711 TEST_ASSERT( mbedtls_test_read_mpi( &X, X_hex ) == 0 );
712 TEST_ASSERT( mbedtls_test_read_mpi( &Y, Y_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]713 TEST_ASSERT( mbedtls_mpi_safe_cond_swap( &X, &Y, 0 ) == 0 );
714 TEST_ASSERT( sign_is_valid( &X ) );
715 TEST_ASSERT( sign_is_valid( &Y ) );
716 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &X0 ) == 0 );
717 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &Y0 ) == 0 );
718
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]719exit:
720 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
721 mbedtls_mpi_free( &X0 ); mbedtls_mpi_free( &Y0 );
722}
723/* END_CASE */
724
725/* BEGIN_CASE */
726void mpi_swap_self( char *X_hex )
727{
728 mbedtls_mpi X, X0;
729 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &X0 );
730
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]731 TEST_ASSERT( mbedtls_test_read_mpi( &X, X_hex ) == 0 );
732 TEST_ASSERT( mbedtls_test_read_mpi( &X0, X_hex ) == 0 );
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]733
734 mbedtls_mpi_swap( &X, &X );
735 TEST_ASSERT( sign_is_valid( &X ) );
736 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &X0 ) == 0 );
737
738exit:
739 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &X0 );
740}
741/* END_CASE */
742
743/* BEGIN_CASE */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]744void mbedtls_mpi_shrink( int before, int used, int min, int after )
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]745{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]746 mbedtls_mpi X;
747 mbedtls_mpi_init( &X );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]748
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]749 TEST_ASSERT( mbedtls_mpi_grow( &X, before ) == 0 );
Gilles Peskinee1091752021-06-15 21:19:18 +0200[diff] [blame]750 if( used > 0 )
751 {
752 size_t used_bit_count = used * 8 * sizeof( mbedtls_mpi_uint );
753 TEST_ASSERT( mbedtls_mpi_set_bit( &X, used_bit_count - 1, 1 ) == 0 );
754 }
755 TEST_EQUAL( X.n, (size_t) before );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]756 TEST_ASSERT( mbedtls_mpi_shrink( &X, min ) == 0 );
Gilles Peskinee1091752021-06-15 21:19:18 +0200[diff] [blame]757 TEST_EQUAL( X.n, (size_t) after );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]758
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]759exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]760 mbedtls_mpi_free( &X );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]761}
762/* END_CASE */
763
764/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]765void mbedtls_mpi_add_mpi( char * input_X, char * input_Y,
766 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]767{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]768 mbedtls_mpi X, Y, Z, A;
769 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]770
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]771 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
772 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
773 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]774 TEST_ASSERT( mbedtls_mpi_add_mpi( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]775 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]776 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]777
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]778 /* result == first operand */
779 TEST_ASSERT( mbedtls_mpi_add_mpi( &X, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]780 TEST_ASSERT( sign_is_valid( &X ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]781 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]782 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]783
784 /* result == second operand */
785 TEST_ASSERT( mbedtls_mpi_add_mpi( &Y, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]786 TEST_ASSERT( sign_is_valid( &Y ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]787 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
788
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]789exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]790 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]791}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]792/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]793
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]794/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]795void mbedtls_mpi_add_mpi_inplace( char * input_X, char * input_A )
Janos Follath044a86b2015-10-25 10:58:03 +0100[diff] [blame]796{
797 mbedtls_mpi X, A;
798 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &A );
799
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]800 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]801
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]802 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]803 TEST_ASSERT( mbedtls_mpi_sub_abs( &X, &X, &X ) == 0 );
804 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, 0 ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]805 TEST_ASSERT( sign_is_valid( &X ) );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]806
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]807 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]808 TEST_ASSERT( mbedtls_mpi_add_abs( &X, &X, &X ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]809 TEST_ASSERT( sign_is_valid( &X ) );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]810 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
811
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]812 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Janos Follath044a86b2015-10-25 10:58:03 +0100[diff] [blame]813 TEST_ASSERT( mbedtls_mpi_add_mpi( &X, &X, &X ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]814 TEST_ASSERT( sign_is_valid( &X ) );
Janos Follath044a86b2015-10-25 10:58:03 +0100[diff] [blame]815 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
816
817exit:
818 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &A );
819}
820/* END_CASE */
821
822
823/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]824void mbedtls_mpi_add_abs( char * input_X, char * input_Y,
825 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]826{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]827 mbedtls_mpi X, Y, Z, A;
828 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]829
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]830 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
831 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
832 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]833 TEST_ASSERT( mbedtls_mpi_add_abs( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]834 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]835 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]836
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]837 /* result == first operand */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]838 TEST_ASSERT( mbedtls_mpi_add_abs( &X, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]839 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]840 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]841 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]842
843 /* result == second operand */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]844 TEST_ASSERT( mbedtls_mpi_add_abs( &Y, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]845 TEST_ASSERT( sign_is_valid( &Y ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]846 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]847
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]848exit:
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]849 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]850}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]851/* END_CASE */
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]852
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]853/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]854void mbedtls_mpi_add_int( char * input_X, int input_Y,
855 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]856{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]857 mbedtls_mpi X, Z, A;
858 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]859
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]860 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
861 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]862 TEST_ASSERT( mbedtls_mpi_add_int( &Z, &X, input_Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]863 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]864 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]865
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]866exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]867 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]868}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]869/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]870
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]871/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]872void mbedtls_mpi_sub_mpi( char * input_X, char * input_Y,
873 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]874{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]875 mbedtls_mpi X, Y, Z, A;
876 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]877
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]878 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
879 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
880 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]881 TEST_ASSERT( mbedtls_mpi_sub_mpi( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]882 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]883 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]884
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]885 /* result == first operand */
886 TEST_ASSERT( mbedtls_mpi_sub_mpi( &X, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]887 TEST_ASSERT( sign_is_valid( &X ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]888 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]889 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]890
891 /* result == second operand */
892 TEST_ASSERT( mbedtls_mpi_sub_mpi( &Y, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]893 TEST_ASSERT( sign_is_valid( &Y ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]894 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
895
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]896exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]897 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]898}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]899/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]900
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]901/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]902void mbedtls_mpi_sub_abs( char * input_X, char * input_Y,
903 char * input_A, int sub_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]904{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]905 mbedtls_mpi X, Y, Z, A;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]906 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]907 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]908
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]909 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
910 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
911 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnarde670f902015-10-30 09:23:19 +0100[diff] [blame]912
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]913 res = mbedtls_mpi_sub_abs( &Z, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]914 TEST_ASSERT( res == sub_result );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]915 TEST_ASSERT( sign_is_valid( &Z ) );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]916 if( res == 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]917 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]918
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]919 /* result == first operand */
920 TEST_ASSERT( mbedtls_mpi_sub_abs( &X, &X, &Y ) == sub_result );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]921 TEST_ASSERT( sign_is_valid( &X ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]922 if( sub_result == 0 )
923 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]924 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]925
926 /* result == second operand */
927 TEST_ASSERT( mbedtls_mpi_sub_abs( &Y, &X, &Y ) == sub_result );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]928 TEST_ASSERT( sign_is_valid( &Y ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]929 if( sub_result == 0 )
930 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
931
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]932exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]933 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]934}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]935/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]936
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]937/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]938void mbedtls_mpi_sub_int( char * input_X, int input_Y,
939 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]940{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]941 mbedtls_mpi X, Z, A;
942 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]943
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]944 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
945 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]946 TEST_ASSERT( mbedtls_mpi_sub_int( &Z, &X, input_Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]947 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]948 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]949
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]950exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]951 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]952}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]953/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]954
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]955/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]956void mbedtls_mpi_mul_mpi( char * input_X, char * input_Y,
957 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]958{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]959 mbedtls_mpi X, Y, Z, A;
960 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]961
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]962 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
963 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
964 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]965 TEST_ASSERT( mbedtls_mpi_mul_mpi( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]966 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]967 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]968
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]969exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]970 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]971}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]972/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]973
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]974/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]975void mbedtls_mpi_mul_int( char * input_X, int input_Y,
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]976 char * input_A, char * result_comparison )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]977{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]978 mbedtls_mpi X, Z, A;
979 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]980
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]981 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
982 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]983 TEST_ASSERT( mbedtls_mpi_mul_int( &Z, &X, input_Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]984 TEST_ASSERT( sign_is_valid( &Z ) );
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]985 if( strcmp( result_comparison, "==" ) == 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]986 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]987 else if( strcmp( result_comparison, "!=" ) == 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]988 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) != 0 );
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]989 else
990 TEST_ASSERT( "unknown operator" == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]991
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]992exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]993 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]994}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]995/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]996
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]997/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]998void mbedtls_mpi_div_mpi( char * input_X, char * input_Y,
999 char * input_A, char * input_B,
1000 int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1001{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1002 mbedtls_mpi X, Y, Q, R, A, B;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1003 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1004 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &R );
1005 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1006
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1007 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
1008 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
1009 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
1010 TEST_ASSERT( mbedtls_test_read_mpi( &B, input_B ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1011 res = mbedtls_mpi_div_mpi( &Q, &R, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1012 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1013 if( res == 0 )
1014 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1015 TEST_ASSERT( sign_is_valid( &Q ) );
1016 TEST_ASSERT( sign_is_valid( &R ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1017 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Q, &A ) == 0 );
1018 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &R, &B ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1019 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1020
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1021exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1022 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &R );
1023 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1024}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1025/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1026
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1027/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1028void mbedtls_mpi_div_int( char * input_X, int input_Y,
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]1029 char * input_A, char * input_B,
1030 int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1031{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1032 mbedtls_mpi X, Q, R, A, B;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1033 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1034 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &R ); mbedtls_mpi_init( &A );
1035 mbedtls_mpi_init( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1036
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1037 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
1038 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
1039 TEST_ASSERT( mbedtls_test_read_mpi( &B, input_B ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1040 res = mbedtls_mpi_div_int( &Q, &R, &X, input_Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1041 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1042 if( res == 0 )
1043 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1044 TEST_ASSERT( sign_is_valid( &Q ) );
1045 TEST_ASSERT( sign_is_valid( &R ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1046 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Q, &A ) == 0 );
1047 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &R, &B ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1048 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1049
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1050exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1051 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &R ); mbedtls_mpi_free( &A );
1052 mbedtls_mpi_free( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1053}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1054/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1055
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1056/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]1057void mbedtls_mpi_mod_mpi( char * input_X, char * input_Y,
1058 char * input_A, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1059{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1060 mbedtls_mpi X, Y, A;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1061 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1062 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1063
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1064 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
1065 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
1066 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1067 res = mbedtls_mpi_mod_mpi( &X, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1068 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1069 if( res == 0 )
1070 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1071 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1072 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1073 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1074
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1075exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1076 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1077}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1078/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1079
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1080/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1081void mbedtls_mpi_mod_int( char * input_X, int input_Y,
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]1082 int input_A, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1083{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1084 mbedtls_mpi X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1085 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1086 mbedtls_mpi_uint r;
1087 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1088
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1089 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1090 res = mbedtls_mpi_mod_int( &r, &X, input_Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1091 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1092 if( res == 0 )
1093 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1094 TEST_ASSERT( r == (mbedtls_mpi_uint) input_A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1095 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1096
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1097exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1098 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1099}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1100/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1101
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1102/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]1103void mbedtls_mpi_exp_mod( char * input_A, char * input_E,
1104 char * input_N, char * input_X,
1105 int exp_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1106{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1107 mbedtls_mpi A, E, N, RR, Z, X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1108 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1109 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &E ); mbedtls_mpi_init( &N );
1110 mbedtls_mpi_init( &RR ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1111
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1112 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
1113 TEST_ASSERT( mbedtls_test_read_mpi( &E, input_E ) == 0 );
1114 TEST_ASSERT( mbedtls_test_read_mpi( &N, input_N ) == 0 );
1115 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1116
Gilles Peskine342f71b2021-06-09 18:31:35 +0200[diff] [blame]1117 res = mbedtls_mpi_exp_mod( &Z, &A, &E, &N, NULL );
Gilles Peskine722c62c2021-06-15 21:55:05 +0200[diff] [blame]1118 TEST_ASSERT( res == exp_result );
Gilles Peskine342f71b2021-06-09 18:31:35 +0200[diff] [blame]1119 if( res == 0 )
1120 {
1121 TEST_ASSERT( sign_is_valid( &Z ) );
1122 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &X ) == 0 );
1123 }
1124
1125 /* Now test again with the speed-up parameter supplied as an output. */
1126 res = mbedtls_mpi_exp_mod( &Z, &A, &E, &N, &RR );
Gilles Peskine722c62c2021-06-15 21:55:05 +0200[diff] [blame]1127 TEST_ASSERT( res == exp_result );
Gilles Peskine342f71b2021-06-09 18:31:35 +0200[diff] [blame]1128 if( res == 0 )
1129 {
1130 TEST_ASSERT( sign_is_valid( &Z ) );
1131 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &X ) == 0 );
1132 }
1133
1134 /* Now test again with the speed-up parameter supplied in calculated form. */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1135 res = mbedtls_mpi_exp_mod( &Z, &A, &E, &N, &RR );
Gilles Peskine722c62c2021-06-15 21:55:05 +0200[diff] [blame]1136 TEST_ASSERT( res == exp_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1137 if( res == 0 )
1138 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1139 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1140 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &X ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1141 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1142
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1143exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1144 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &E ); mbedtls_mpi_free( &N );
1145 mbedtls_mpi_free( &RR ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1146}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1147/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1148
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1149/* BEGIN_CASE */
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1150void mbedtls_mpi_exp_mod_size( int A_bytes, int E_bytes, int N_bytes,
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1151 char * input_RR, int exp_result )
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1152{
1153 mbedtls_mpi A, E, N, RR, Z;
1154 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &E ); mbedtls_mpi_init( &N );
1155 mbedtls_mpi_init( &RR ); mbedtls_mpi_init( &Z );
1156
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1157 /* Set A to 2^(A_bytes - 1) + 1 */
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1158 TEST_ASSERT( mbedtls_mpi_lset( &A, 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1159 TEST_ASSERT( mbedtls_mpi_shift_l( &A, ( A_bytes * 8 ) - 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1160 TEST_ASSERT( mbedtls_mpi_set_bit( &A, 0, 1 ) == 0 );
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1161
1162 /* Set E to 2^(E_bytes - 1) + 1 */
1163 TEST_ASSERT( mbedtls_mpi_lset( &E, 1 ) == 0 );
1164 TEST_ASSERT( mbedtls_mpi_shift_l( &E, ( E_bytes * 8 ) - 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1165 TEST_ASSERT( mbedtls_mpi_set_bit( &E, 0, 1 ) == 0 );
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1166
1167 /* Set N to 2^(N_bytes - 1) + 1 */
1168 TEST_ASSERT( mbedtls_mpi_lset( &N, 1 ) == 0 );
1169 TEST_ASSERT( mbedtls_mpi_shift_l( &N, ( N_bytes * 8 ) - 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1170 TEST_ASSERT( mbedtls_mpi_set_bit( &N, 0, 1 ) == 0 );
1171
1172 if( strlen( input_RR ) )
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1173 TEST_ASSERT( mbedtls_test_read_mpi( &RR, input_RR ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1174
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1175 TEST_ASSERT( mbedtls_mpi_exp_mod( &Z, &A, &E, &N, &RR ) == exp_result );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1176
1177exit:
1178 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &E ); mbedtls_mpi_free( &N );
1179 mbedtls_mpi_free( &RR ); mbedtls_mpi_free( &Z );
1180}
1181/* END_CASE */
1182
1183/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]1184void mbedtls_mpi_inv_mod( char * input_X, char * input_Y,
1185 char * input_A, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1186{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1187 mbedtls_mpi X, Y, Z, A;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1188 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1189 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1190
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1191 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
1192 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
1193 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1194 res = mbedtls_mpi_inv_mod( &Z, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1195 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1196 if( res == 0 )
1197 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1198 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1199 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1200 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1201
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1202exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1203 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1204}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1205/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1206
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1207/* BEGIN_CASE depends_on:MBEDTLS_GENPRIME */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1208void mbedtls_mpi_is_prime( char * input_X, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1209{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1210 mbedtls_mpi X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1211 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1212 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1213
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1214 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]1215 res = mbedtls_mpi_is_prime_ext( &X, 40, mbedtls_test_rnd_std_rand, NULL );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1216 TEST_ASSERT( res == div_result );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1217
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1218exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1219 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1220}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1221/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1222
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1223/* BEGIN_CASE depends_on:MBEDTLS_GENPRIME */
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1224void mbedtls_mpi_is_prime_det( data_t * input_X, data_t * witnesses,
Darryl Greenac2ead02018-10-02 15:30:39 +0100[diff] [blame]1225 int chunk_len, int rounds )
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1226{
1227 mbedtls_mpi X;
1228 int res;
1229 mbedtls_test_mpi_random rand;
1230
1231 mbedtls_mpi_init( &X );
1232 rand.data = witnesses;
1233 rand.pos = 0;
1234 rand.chunk_len = chunk_len;
1235
1236 TEST_ASSERT( mbedtls_mpi_read_binary( &X, input_X->x, input_X->len ) == 0 );
Darryl Greenac2ead02018-10-02 15:30:39 +0100[diff] [blame]1237 res = mbedtls_mpi_is_prime_ext( &X, rounds - 1,
1238 mbedtls_test_mpi_miller_rabin_determinizer,
1239 &rand );
1240 TEST_ASSERT( res == 0 );
1241
1242 rand.data = witnesses;
1243 rand.pos = 0;
1244 rand.chunk_len = chunk_len;
1245
Janos Follatha0b67c22018-09-18 14:48:23 +0100[diff] [blame]1246 res = mbedtls_mpi_is_prime_ext( &X, rounds,
1247 mbedtls_test_mpi_miller_rabin_determinizer,
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1248 &rand );
Darryl Greenac2ead02018-10-02 15:30:39 +0100[diff] [blame]1249 TEST_ASSERT( res == MBEDTLS_ERR_MPI_NOT_ACCEPTABLE );
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1250
1251exit:
1252 mbedtls_mpi_free( &X );
1253}
1254/* END_CASE */
1255
1256/* BEGIN_CASE depends_on:MBEDTLS_GENPRIME */
Janos Follatha3cb7eb2018-08-14 15:31:54 +0100[diff] [blame]1257void mbedtls_mpi_gen_prime( int bits, int flags, int ref_ret )
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1258{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1259 mbedtls_mpi X;
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1260 int my_ret;
1261
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1262 mbedtls_mpi_init( &X );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1263
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]1264 my_ret = mbedtls_mpi_gen_prime( &X, bits, flags,
1265 mbedtls_test_rnd_std_rand, NULL );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1266 TEST_ASSERT( my_ret == ref_ret );
1267
1268 if( ref_ret == 0 )
1269 {
Manuel Pégourié-Gonnardc0696c22015-06-18 16:47:17 +0200[diff] [blame]1270 size_t actual_bits = mbedtls_mpi_bitlen( &X );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1271
1272 TEST_ASSERT( actual_bits >= (size_t) bits );
1273 TEST_ASSERT( actual_bits <= (size_t) bits + 1 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1274 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1275
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]1276 TEST_ASSERT( mbedtls_mpi_is_prime_ext( &X, 40,
1277 mbedtls_test_rnd_std_rand,
1278 NULL ) == 0 );
Janos Follatha3cb7eb2018-08-14 15:31:54 +0100[diff] [blame]1279 if( flags & MBEDTLS_MPI_GEN_PRIME_FLAG_DH )
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1280 {
Hanno Beckerd4d60572018-01-10 07:12:01 +0000[diff] [blame]1281 /* X = ( X - 1 ) / 2 */
1282 TEST_ASSERT( mbedtls_mpi_shift_r( &X, 1 ) == 0 );
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]1283 TEST_ASSERT( mbedtls_mpi_is_prime_ext( &X, 40,
1284 mbedtls_test_rnd_std_rand,
1285 NULL ) == 0 );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1286 }
1287 }
1288
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1289exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1290 mbedtls_mpi_free( &X );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1291}
1292/* END_CASE */
1293
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1294/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1295void mbedtls_mpi_shift_l( char * input_X, int shift_X,
1296 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1297{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1298 mbedtls_mpi X, A;
1299 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1300
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1301 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
1302 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1303 TEST_ASSERT( mbedtls_mpi_shift_l( &X, shift_X ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1304 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1305 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1306
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1307exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1308 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1309}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1310/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1311
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1312/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1313void mbedtls_mpi_shift_r( char * input_X, int shift_X,
1314 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1315{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1316 mbedtls_mpi X, A;
1317 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1318
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1319 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
1320 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1321 TEST_ASSERT( mbedtls_mpi_shift_r( &X, shift_X ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1322 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1323 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1324
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1325exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1326 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1327}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1328/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1329
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1330/* BEGIN_CASE */
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1331void mpi_fill_random( int wanted_bytes, int rng_bytes,
1332 int before, int expected_ret )
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1333{
1334 mbedtls_mpi X;
1335 int ret;
1336 size_t bytes_left = rng_bytes;
1337 mbedtls_mpi_init( &X );
1338
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1339 if( before != 0 )
1340 {
1341 /* Set X to sign(before) * 2^(|before|-1) */
1342 TEST_ASSERT( mbedtls_mpi_lset( &X, before > 0 ? 1 : -1 ) == 0 );
1343 if( before < 0 )
1344 before = - before;
1345 TEST_ASSERT( mbedtls_mpi_shift_l( &X, before - 1 ) == 0 );
1346 }
1347
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1348 ret = mbedtls_mpi_fill_random( &X, wanted_bytes,
1349 f_rng_bytes_left, &bytes_left );
1350 TEST_ASSERT( ret == expected_ret );
1351
1352 if( expected_ret == 0 )
1353 {
1354 /* mbedtls_mpi_fill_random is documented to use bytes from the RNG
1355 * as a big-endian representation of the number. We know when
1356 * our RNG function returns null bytes, so we know how many
1357 * leading zero bytes the number has. */
1358 size_t leading_zeros = 0;
1359 if( wanted_bytes > 0 && rng_bytes % 256 == 0 )
1360 leading_zeros = 1;
1361 TEST_ASSERT( mbedtls_mpi_size( &X ) + leading_zeros ==
1362 (size_t) wanted_bytes );
1363 TEST_ASSERT( (int) bytes_left == rng_bytes - wanted_bytes );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1364 TEST_ASSERT( sign_is_valid( &X ) );
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1365 }
1366
1367exit:
1368 mbedtls_mpi_free( &X );
1369}
1370/* END_CASE */
1371
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1372/* BEGIN_CASE */
1373void mpi_random_many( int min, data_t *bound_bytes, int iterations )
1374{
1375 /* Generate numbers in the range 1..bound-1. Do it iterations times.
1376 * This function assumes that the value of bound is at least 2 and
1377 * that iterations is large enough that a one-in-2^iterations chance
1378 * effectively never occurs.
1379 */
1380
1381 mbedtls_mpi upper_bound;
1382 size_t n_bits;
1383 mbedtls_mpi result;
1384 size_t b;
1385 /* If upper_bound is small, stats[b] is the number of times the value b
1386 * has been generated. Otherwise stats[b] is the number of times a
1387 * value with bit b set has been generated. */
1388 size_t *stats = NULL;
1389 size_t stats_len;
1390 int full_stats;
1391 size_t i;
1392
1393 mbedtls_mpi_init( &upper_bound );
1394 mbedtls_mpi_init( &result );
1395
1396 TEST_EQUAL( 0, mbedtls_mpi_read_binary( &upper_bound,
1397 bound_bytes->x, bound_bytes->len ) );
1398 n_bits = mbedtls_mpi_bitlen( &upper_bound );
1399 /* Consider a bound "small" if it's less than 2^5. This value is chosen
1400 * to be small enough that the probability of missing one value is
1401 * negligible given the number of iterations. It must be less than
1402 * 256 because some of the code below assumes that "small" values
1403 * fit in a byte. */
1404 if( n_bits <= 5 )
1405 {
1406 full_stats = 1;
1407 stats_len = bound_bytes->x[bound_bytes->len - 1];
1408 }
1409 else
1410 {
1411 full_stats = 0;
1412 stats_len = n_bits;
1413 }
1414 ASSERT_ALLOC( stats, stats_len );
1415
1416 for( i = 0; i < (size_t) iterations; i++ )
1417 {
1418 mbedtls_test_set_step( i );
1419 TEST_EQUAL( 0, mbedtls_mpi_random( &result, min, &upper_bound,
1420 mbedtls_test_rnd_std_rand, NULL ) );
1421
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1422 TEST_ASSERT( sign_is_valid( &result ) );
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1423 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &result, &upper_bound ) < 0 );
1424 TEST_ASSERT( mbedtls_mpi_cmp_int( &result, min ) >= 0 );
1425 if( full_stats )
1426 {
1427 uint8_t value;
1428 TEST_EQUAL( 0, mbedtls_mpi_write_binary( &result, &value, 1 ) );
1429 TEST_ASSERT( value < stats_len );
1430 ++stats[value];
1431 }
1432 else
1433 {
1434 for( b = 0; b < n_bits; b++ )
1435 stats[b] += mbedtls_mpi_get_bit( &result, b );
1436 }
1437 }
1438
1439 if( full_stats )
1440 {
Gilles Peskined463edf2021-04-13 20:45:05 +0200[diff] [blame]1441 for( b = min; b < stats_len; b++ )
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1442 {
1443 mbedtls_test_set_step( 1000000 + b );
1444 /* Assert that each value has been reached at least once.
1445 * This is almost guaranteed if the iteration count is large
1446 * enough. This is a very crude way of checking the distribution.
1447 */
1448 TEST_ASSERT( stats[b] > 0 );
1449 }
1450 }
1451 else
1452 {
Gilles Peskineceefe5d2021-06-02 21:24:04 +0200[diff] [blame]1453 int statistically_safe_all_the_way =
1454 is_significantly_above_a_power_of_2( bound_bytes );
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1455 for( b = 0; b < n_bits; b++ )
1456 {
1457 mbedtls_test_set_step( 1000000 + b );
1458 /* Assert that each bit has been set in at least one result and
1459 * clear in at least one result. Provided that iterations is not
1460 * too small, it would be extremely unlikely for this not to be
1461 * the case if the results are uniformly distributed.
1462 *
1463 * As an exception, the top bit may legitimately never be set
1464 * if bound is a power of 2 or only slightly above.
1465 */
Gilles Peskineceefe5d2021-06-02 21:24:04 +0200[diff] [blame]1466 if( statistically_safe_all_the_way || b != n_bits - 1 )
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1467 {
1468 TEST_ASSERT( stats[b] > 0 );
1469 }
1470 TEST_ASSERT( stats[b] < (size_t) iterations );
1471 }
1472 }
1473
1474exit:
1475 mbedtls_mpi_free( &upper_bound );
1476 mbedtls_mpi_free( &result );
1477 mbedtls_free( stats );
1478}
1479/* END_CASE */
1480
Gilles Peskine1e918f42021-03-29 22:14:51 +0200[diff] [blame]1481/* BEGIN_CASE */
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1482void mpi_random_sizes( int min, data_t *bound_bytes, int nlimbs, int before )
Gilles Peskine1a7df4e2021-04-01 15:57:18 +0200[diff] [blame]1483{
1484 mbedtls_mpi upper_bound;
1485 mbedtls_mpi result;
1486
1487 mbedtls_mpi_init( &upper_bound );
1488 mbedtls_mpi_init( &result );
1489
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1490 if( before != 0 )
1491 {
1492 /* Set result to sign(before) * 2^(|before|-1) */
1493 TEST_ASSERT( mbedtls_mpi_lset( &result, before > 0 ? 1 : -1 ) == 0 );
1494 if( before < 0 )
1495 before = - before;
1496 TEST_ASSERT( mbedtls_mpi_shift_l( &result, before - 1 ) == 0 );
1497 }
1498
Gilles Peskine1a7df4e2021-04-01 15:57:18 +0200[diff] [blame]1499 TEST_EQUAL( 0, mbedtls_mpi_grow( &result, nlimbs ) );
1500 TEST_EQUAL( 0, mbedtls_mpi_read_binary( &upper_bound,
1501 bound_bytes->x, bound_bytes->len ) );
1502 TEST_EQUAL( 0, mbedtls_mpi_random( &result, min, &upper_bound,
1503 mbedtls_test_rnd_std_rand, NULL ) );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1504 TEST_ASSERT( sign_is_valid( &result ) );
Gilles Peskine1a7df4e2021-04-01 15:57:18 +0200[diff] [blame]1505 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &result, &upper_bound ) < 0 );
1506 TEST_ASSERT( mbedtls_mpi_cmp_int( &result, min ) >= 0 );
1507
1508exit:
1509 mbedtls_mpi_free( &upper_bound );
1510 mbedtls_mpi_free( &result );
1511}
1512/* END_CASE */
1513
1514/* BEGIN_CASE */
Gilles Peskine1e918f42021-03-29 22:14:51 +0200[diff] [blame]1515void mpi_random_fail( int min, data_t *bound_bytes, int expected_ret )
1516{
1517 mbedtls_mpi upper_bound;
1518 mbedtls_mpi result;
1519 int actual_ret;
1520
1521 mbedtls_mpi_init( &upper_bound );
1522 mbedtls_mpi_init( &result );
1523
1524 TEST_EQUAL( 0, mbedtls_mpi_read_binary( &upper_bound,
1525 bound_bytes->x, bound_bytes->len ) );
1526 actual_ret = mbedtls_mpi_random( &result, min, &upper_bound,
1527 mbedtls_test_rnd_std_rand, NULL );
1528 TEST_EQUAL( expected_ret, actual_ret );
1529
1530exit:
1531 mbedtls_mpi_free( &upper_bound );
1532 mbedtls_mpi_free( &result );
1533}
1534/* END_CASE */
1535
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1536/* BEGIN_CASE depends_on:MBEDTLS_SELF_TEST */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]1537void mpi_selftest( )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]1538{
Andres AG93012e82016-09-09 09:10:28 +0100[diff] [blame]1539 TEST_ASSERT( mbedtls_mpi_self_test( 1 ) == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]1540}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1541/* END_CASE */