TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 3ccc116c359933213aaeed7425917d2ed85a3ef9 / . / tests / suites / test_suite_mpi.function
blob: 76affd6add9a5a45fd27a5d0945b3dbe14b68418 [file] [log] [blame]
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1/* BEGIN_HEADER */
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]2#include "mbedtls/bignum.h"
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]3#include "mbedtls/entropy.h"
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]4
Chris Jonese64a46f2020-12-03 17:44:03 +0000[diff] [blame]5#if MBEDTLS_MPI_MAX_BITS > 792
6#define MPI_MAX_BITS_LARGER_THAN_792
Chris Jones4592bd82020-12-03 14:24:33 +0000[diff] [blame]7#endif
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]8
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]9/* Check the validity of the sign bit in an MPI object. Reject representations
10 * that are not supported by the rest of the library and indicate a bug when
11 * constructing the value. */
12static int sign_is_valid( const mbedtls_mpi *X )
13{
14 if( X->s != 1 && X->s != -1 )
15 return( 0 ); // invalid sign bit, e.g. 0
16 if( mbedtls_mpi_bitlen( X ) == 0 && X->s != 1 )
17 return( 0 ); // negative zero
18 return( 1 );
19}
20
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]21typedef struct mbedtls_test_mpi_random
22{
23 data_t *data;
24 size_t pos;
25 size_t chunk_len;
26} mbedtls_test_mpi_random;
27
28/*
29 * This function is called by the Miller-Rabin primality test each time it
30 * chooses a random witness. The witnesses (or non-witnesses as provided by the
31 * test) are stored in the data member of the state structure. Each number is in
32 * the format that mbedtls_mpi_read_string understands and is chunk_len long.
33 */
34int mbedtls_test_mpi_miller_rabin_determinizer( void* state,
35 unsigned char* buf,
36 size_t len )
37{
38 mbedtls_test_mpi_random *random = (mbedtls_test_mpi_random*) state;
39
40 if( random == NULL || random->data->x == NULL || buf == NULL )
41 return( -1 );
42
43 if( random->pos + random->chunk_len > random->data->len
44 || random->chunk_len > len )
45 {
46 return( -1 );
47 }
48
49 memset( buf, 0, len );
50
51 /* The witness is written to the end of the buffer, since the buffer is
52 * used as big endian, unsigned binary data in mbedtls_mpi_read_binary.
53 * Writing the witness to the start of the buffer would result in the
54 * buffer being 'witness 000...000', which would be treated as
55 * witness * 2^n for some n. */
56 memcpy( buf + len - random->chunk_len, &random->data->x[random->pos],
57 random->chunk_len );
58
59 random->pos += random->chunk_len;
60
61 return( 0 );
62}
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]63
64/* Random generator that is told how many bytes to return. */
65static int f_rng_bytes_left( void *state, unsigned char *buf, size_t len )
66{
67 size_t *bytes_left = state;
68 size_t i;
69 for( i = 0; i < len; i++ )
70 {
71 if( *bytes_left == 0 )
72 return( MBEDTLS_ERR_ENTROPY_SOURCE_FAILED );
73 buf[i] = *bytes_left & 0xff;
74 --( *bytes_left );
75 }
76 return( 0 );
77}
78
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]79/* Test whether bytes represents (in big-endian base 256) a number b that
80 * is significantly above a power of 2. That is, b must not have a long run
81 * of unset bits after the most significant bit.
82 *
83 * Let n be the bit-size of b, i.e. the integer such that 2^n <= b < 2^{n+1}.
84 * This function returns 1 if, when drawing a number between 0 and b,
85 * the probability that this number is at least 2^n is not negligible.
86 * This probability is (b - 2^n) / b and this function checks that this
87 * number is above some threshold A. The threshold value is heuristic and
88 * based on the needs of mpi_random_many().
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]89 */
90static int is_significantly_above_a_power_of_2( data_t *bytes )
91{
92 const uint8_t *p = bytes->x;
93 size_t len = bytes->len;
94 unsigned x;
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]95
96 /* Skip leading null bytes */
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]97 while( len > 0 && p[0] == 0 )
98 {
99 ++p;
100 --len;
101 }
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]102 /* 0 is not significantly above a power of 2 */
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]103 if( len == 0 )
104 return( 0 );
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]105 /* Extract the (up to) 2 most significant bytes */
106 if( len == 1 )
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]107 x = p[0];
108 else
109 x = ( p[0] << 8 ) | p[1];
110
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]111 /* Shift the most significant bit of x to position 8 and mask it out */
112 while( ( x & 0xfe00 ) != 0 )
113 x >>= 1;
114 x &= 0x00ff;
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]115
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]116 /* At this point, x = floor((b - 2^n) / 2^(n-8)). b is significantly above
117 * a power of 2 iff x is significantly above 0 compared to 2^8.
118 * Testing x >= 2^4 amounts to picking A = 1/16 in the function
119 * description above. */
120 return( x >= 0x10 );
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]121}
122
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]123/* END_HEADER */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]124
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]125/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]126 * depends_on:MBEDTLS_BIGNUM_C
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]127 * END_DEPENDENCIES
128 */
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]129
Hanno Beckerb48e1aa2018-12-18 23:25:01 +0000[diff] [blame]130/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]131void mpi_null( )
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]132{
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]133 mbedtls_mpi X, Y, Z;
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]134
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]135 mbedtls_mpi_init( &X );
136 mbedtls_mpi_init( &Y );
137 mbedtls_mpi_init( &Z );
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]138
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]139 TEST_ASSERT( mbedtls_mpi_get_bit( &X, 42 ) == 0 );
140 TEST_ASSERT( mbedtls_mpi_lsb( &X ) == 0 );
Manuel Pégourié-Gonnardc0696c22015-06-18 16:47:17 +0200[diff] [blame]141 TEST_ASSERT( mbedtls_mpi_bitlen( &X ) == 0 );
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]142 TEST_ASSERT( mbedtls_mpi_size( &X ) == 0 );
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]143
144exit:
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]145 mbedtls_mpi_free( &X );
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]146}
147/* END_CASE */
148
149/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]150void mpi_read_write_string( int radix_X, char * input_X, int radix_A,
151 char * input_A, int output_size, int result_read,
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]152 int result_write )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]153{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]154 mbedtls_mpi X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]155 char str[1000];
Manuel Pégourié-Gonnardf79b4252015-06-02 15:41:48 +0100[diff] [blame]156 size_t len;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]157
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]158 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]159
Janos Follath04dadb72019-03-06 12:29:37 +0000[diff] [blame]160 memset( str, '!', sizeof( str ) );
161
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]162 TEST_ASSERT( mbedtls_mpi_read_string( &X, radix_X, input_X ) == result_read );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]163 if( result_read == 0 )
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]164 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]165 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnardf79b4252015-06-02 15:41:48 +0100[diff] [blame]166 TEST_ASSERT( mbedtls_mpi_write_string( &X, radix_A, str, output_size, &len ) == result_write );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]167 if( result_write == 0 )
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]168 {
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]169 TEST_ASSERT( strcasecmp( str, input_A ) == 0 );
Janos Follath04dadb72019-03-06 12:29:37 +0000[diff] [blame]170 TEST_ASSERT( str[len] == '!' );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]171 }
172 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]173
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]174exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]175 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]176}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]177/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]178
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]179/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]180void mbedtls_mpi_read_binary( data_t * buf, char * input_A )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]181{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]182 mbedtls_mpi X;
Janos Follathe5670f22019-02-25 16:11:58 +0000[diff] [blame]183 char str[1000];
Manuel Pégourié-Gonnardf79b4252015-06-02 15:41:48 +0100[diff] [blame]184 size_t len;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]185
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]186 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]187
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]188
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]189 TEST_ASSERT( mbedtls_mpi_read_binary( &X, buf->x, buf->len ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]190 TEST_ASSERT( sign_is_valid( &X ) );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]191 TEST_ASSERT( mbedtls_mpi_write_string( &X, 16, str, sizeof( str ), &len ) == 0 );
192 TEST_ASSERT( strcasecmp( (char *) str, input_A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]193
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]194exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]195 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]196}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]197/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]198
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]199/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]200void mbedtls_mpi_read_binary_le( data_t * buf, char * input_A )
Janos Follatha778a942019-02-13 10:28:28 +0000[diff] [blame]201{
202 mbedtls_mpi X;
Janos Follathe5670f22019-02-25 16:11:58 +0000[diff] [blame]203 char str[1000];
Janos Follatha778a942019-02-13 10:28:28 +0000[diff] [blame]204 size_t len;
205
206 mbedtls_mpi_init( &X );
207
208
209 TEST_ASSERT( mbedtls_mpi_read_binary_le( &X, buf->x, buf->len ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]210 TEST_ASSERT( sign_is_valid( &X ) );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]211 TEST_ASSERT( mbedtls_mpi_write_string( &X, 16, str, sizeof( str ), &len ) == 0 );
212 TEST_ASSERT( strcasecmp( (char *) str, input_A ) == 0 );
Janos Follatha778a942019-02-13 10:28:28 +0000[diff] [blame]213
214exit:
215 mbedtls_mpi_free( &X );
216}
217/* END_CASE */
218
219/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]220void mbedtls_mpi_write_binary( char * input_X, data_t * input_A,
221 int output_size, int result )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]222{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]223 mbedtls_mpi X;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]224 unsigned char buf[1000];
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]225 size_t buflen;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]226
227 memset( buf, 0x00, 1000 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]228
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]229 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]230
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]231 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnarde670f902015-10-30 09:23:19 +0100[diff] [blame]232
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]233 buflen = mbedtls_mpi_size( &X );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]234 if( buflen > (size_t) output_size )
235 buflen = (size_t) output_size;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]236
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]237 TEST_ASSERT( mbedtls_mpi_write_binary( &X, buf, buflen ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]238 if( result == 0)
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]239 {
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]240
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]241 TEST_ASSERT( mbedtls_test_hexcmp( buf, input_A->x,
242 buflen, input_A->len ) == 0 );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]243 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]244
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]245exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]246 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]247}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]248/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]249
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]250/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]251void mbedtls_mpi_write_binary_le( char * input_X, data_t * input_A,
252 int output_size, int result )
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]253{
254 mbedtls_mpi X;
255 unsigned char buf[1000];
256 size_t buflen;
257
258 memset( buf, 0x00, 1000 );
259
260 mbedtls_mpi_init( &X );
261
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]262 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]263
264 buflen = mbedtls_mpi_size( &X );
265 if( buflen > (size_t) output_size )
266 buflen = (size_t) output_size;
267
268 TEST_ASSERT( mbedtls_mpi_write_binary_le( &X, buf, buflen ) == result );
269 if( result == 0)
270 {
271
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]272 TEST_ASSERT( mbedtls_test_hexcmp( buf, input_A->x,
273 buflen, input_A->len ) == 0 );
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]274 }
275
276exit:
277 mbedtls_mpi_free( &X );
278}
279/* END_CASE */
280
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]281/* BEGIN_CASE depends_on:MBEDTLS_FS_IO */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]282void mbedtls_mpi_read_file( char * input_file, data_t * input_A, int result )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]283{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]284 mbedtls_mpi X;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]285 unsigned char buf[1000];
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]286 size_t buflen;
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]287 FILE *file;
Manuel Pégourié-Gonnarde43187d2015-02-14 16:01:34 +0000[diff] [blame]288 int ret;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]289
290 memset( buf, 0x00, 1000 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]291
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]292 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]293
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]294 file = fopen( input_file, "r" );
Paul Bakker8a0c0a92014-04-17 16:08:20 +0200[diff] [blame]295 TEST_ASSERT( file != NULL );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]296 ret = mbedtls_mpi_read_file( &X, 16, file );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]297 fclose(file);
Manuel Pégourié-Gonnarde43187d2015-02-14 16:01:34 +0000[diff] [blame]298 TEST_ASSERT( ret == result );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]299
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]300 if( result == 0 )
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]301 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]302 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]303 buflen = mbedtls_mpi_size( &X );
304 TEST_ASSERT( mbedtls_mpi_write_binary( &X, buf, buflen ) == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]305
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]306
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]307 TEST_ASSERT( mbedtls_test_hexcmp( buf, input_A->x,
308 buflen, input_A->len ) == 0 );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]309 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]310
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]311exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]312 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]313}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]314/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]315
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]316/* BEGIN_CASE depends_on:MBEDTLS_FS_IO */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]317void mbedtls_mpi_write_file( char * input_X, char * output_file )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]318{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]319 mbedtls_mpi X, Y;
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]320 FILE *file_out, *file_in;
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]321 int ret;
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]322
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]323 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]324
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]325 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]326
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]327 file_out = fopen( output_file, "w" );
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]328 TEST_ASSERT( file_out != NULL );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]329 ret = mbedtls_mpi_write_file( NULL, &X, 16, file_out );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]330 fclose(file_out);
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]331 TEST_ASSERT( ret == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]332
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]333 file_in = fopen( output_file, "r" );
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]334 TEST_ASSERT( file_in != NULL );
Werner Lewisf65a3272022-07-07 11:38:44 +0100[diff] [blame]335 ret = mbedtls_mpi_read_file( &Y, 16, file_in );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]336 fclose(file_in);
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]337 TEST_ASSERT( ret == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]338
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]339 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]340
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]341exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]342 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]343}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]344/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]345
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]346/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]347void mbedtls_mpi_get_bit( char * input_X, int pos, int val )
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]348{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]349 mbedtls_mpi X;
350 mbedtls_mpi_init( &X );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]351 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]352 TEST_ASSERT( mbedtls_mpi_get_bit( &X, pos ) == val );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]353
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]354exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]355 mbedtls_mpi_free( &X );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]356}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]357/* END_CASE */
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]358
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]359/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]360void mbedtls_mpi_set_bit( char * input_X, int pos, int val,
361 char * output_Y, int result )
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]362{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]363 mbedtls_mpi X, Y;
364 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]365
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]366 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
367 TEST_ASSERT( mbedtls_test_read_mpi( &Y, output_Y ) == 0 );
Paul Bakkerec5ceb62016-07-14 12:47:07 +0100[diff] [blame]368 TEST_ASSERT( mbedtls_mpi_set_bit( &X, pos, val ) == result );
369
370 if( result == 0 )
371 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]372 TEST_ASSERT( sign_is_valid( &X ) );
Paul Bakkerec5ceb62016-07-14 12:47:07 +0100[diff] [blame]373 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == 0 );
374 }
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]375
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]376exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]377 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]378}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]379/* END_CASE */
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]380
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]381/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]382void mbedtls_mpi_lsb( char * input_X, int nr_bits )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]383{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]384 mbedtls_mpi X;
385 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]386
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]387 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]388 TEST_ASSERT( mbedtls_mpi_lsb( &X ) == (size_t) nr_bits );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]389
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]390exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]391 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]392}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]393/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]394
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]395/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]396void mbedtls_mpi_bitlen( char * input_X, int nr_bits )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]397{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]398 mbedtls_mpi X;
399 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]400
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]401 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnardc0696c22015-06-18 16:47:17 +0200[diff] [blame]402 TEST_ASSERT( mbedtls_mpi_bitlen( &X ) == (size_t) nr_bits );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]403
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]404exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]405 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]406}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]407/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]408
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]409/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]410void mbedtls_mpi_gcd( char * input_X, char * input_Y,
411 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]412{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]413 mbedtls_mpi A, X, Y, Z;
414 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]415
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]416 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
417 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
418 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]419 TEST_ASSERT( mbedtls_mpi_gcd( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]420 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]421 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]422
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]423exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]424 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]425}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]426/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]427
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]428/* BEGIN_CASE */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]429void mbedtls_mpi_cmp_int( int input_X, int input_A, int result_CMP )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]430{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]431 mbedtls_mpi X;
432 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]433
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]434 TEST_ASSERT( mbedtls_mpi_lset( &X, input_X ) == 0);
435 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, input_A ) == result_CMP);
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]436
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]437exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]438 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]439}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]440/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]441
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]442/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]443void mbedtls_mpi_cmp_mpi( char * input_X, char * input_Y,
444 int input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]445{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]446 mbedtls_mpi X, Y;
447 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]448
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]449 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
450 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]451 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == input_A );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]452
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]453exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]454 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]455}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]456/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]457
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]458/* BEGIN_CASE */
Janos Follathb7e1b492019-10-14 09:21:49 +0100[diff] [blame]459void mbedtls_mpi_lt_mpi_ct( int size_X, char * input_X,
460 int size_Y, char * input_Y,
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]461 int input_ret, int input_err )
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]462{
Gilles Peskine0deccf12020-09-02 15:18:07 +0200[diff] [blame]463 unsigned ret = -1;
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]464 unsigned input_uret = input_ret;
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]465 mbedtls_mpi X, Y;
466 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
467
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]468 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
469 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]470
Gilles Peskine9018b112020-01-21 16:30:53 +0100[diff] [blame]471 TEST_ASSERT( mbedtls_mpi_grow( &X, size_X ) == 0 );
472 TEST_ASSERT( mbedtls_mpi_grow( &Y, size_Y ) == 0 );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]473
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]474 TEST_ASSERT( mbedtls_mpi_lt_mpi_ct( &X, &Y, &ret ) == input_err );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]475 if( input_err == 0 )
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]476 TEST_ASSERT( ret == input_uret );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]477
478exit:
479 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
480}
481/* END_CASE */
482
483/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]484void mbedtls_mpi_cmp_abs( char * input_X, char * input_Y,
485 int input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]486{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]487 mbedtls_mpi X, Y;
488 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]489
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]490 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
491 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]492 TEST_ASSERT( mbedtls_mpi_cmp_abs( &X, &Y ) == input_A );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]493
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]494exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]495 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]496}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]497/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]498
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]499/* BEGIN_CASE */
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]500void mbedtls_mpi_copy( char *src_hex, char *dst_hex )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]501{
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]502 mbedtls_mpi src, dst, ref;
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]503 mbedtls_mpi_init( &src );
504 mbedtls_mpi_init( &dst );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]505 mbedtls_mpi_init( &ref );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]506
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]507 TEST_ASSERT( mbedtls_test_read_mpi( &src, src_hex ) == 0 );
508 TEST_ASSERT( mbedtls_test_read_mpi( &ref, dst_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]509
510 /* mbedtls_mpi_copy() */
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]511 TEST_ASSERT( mbedtls_test_read_mpi( &dst, dst_hex ) == 0 );
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]512 TEST_ASSERT( mbedtls_mpi_copy( &dst, &src ) == 0 );
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]513 TEST_ASSERT( sign_is_valid( &dst ) );
514 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &dst, &src ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]515
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]516 /* mbedtls_mpi_safe_cond_assign(), assignment done */
517 mbedtls_mpi_free( &dst );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]518 TEST_ASSERT( mbedtls_test_read_mpi( &dst, dst_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]519 TEST_ASSERT( mbedtls_mpi_safe_cond_assign( &dst, &src, 1 ) == 0 );
520 TEST_ASSERT( sign_is_valid( &dst ) );
521 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &dst, &src ) == 0 );
522
523 /* mbedtls_mpi_safe_cond_assign(), assignment not done */
524 mbedtls_mpi_free( &dst );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]525 TEST_ASSERT( mbedtls_test_read_mpi( &dst, dst_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]526 TEST_ASSERT( mbedtls_mpi_safe_cond_assign( &dst, &src, 0 ) == 0 );
527 TEST_ASSERT( sign_is_valid( &dst ) );
528 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &dst, &ref ) == 0 );
529
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]530exit:
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]531 mbedtls_mpi_free( &src );
532 mbedtls_mpi_free( &dst );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]533 mbedtls_mpi_free( &ref );
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]534}
535/* END_CASE */
536
537/* BEGIN_CASE */
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]538void mpi_copy_self( char *input_X )
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]539{
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]540 mbedtls_mpi X, A;
541 mbedtls_mpi_init( &A );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]542 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]543
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]544 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]545 TEST_ASSERT( mbedtls_mpi_copy( &X, &X ) == 0 );
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]546
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]547 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_X ) == 0 );
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]548 TEST_ASSERT( sign_is_valid( &X ) );
549 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]550
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]551exit:
Gilles Peskine90ec8e82021-06-10 15:17:30 +0200[diff] [blame]552 mbedtls_mpi_free( &A );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]553 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]554}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]555/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]556
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]557/* BEGIN_CASE */
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]558void mbedtls_mpi_swap( char *X_hex, char *Y_hex )
559{
560 mbedtls_mpi X, Y, X0, Y0;
561 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
562 mbedtls_mpi_init( &X0 ); mbedtls_mpi_init( &Y0 );
563
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]564 TEST_ASSERT( mbedtls_test_read_mpi( &X0, X_hex ) == 0 );
565 TEST_ASSERT( mbedtls_test_read_mpi( &Y0, Y_hex ) == 0 );
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]566
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]567 /* mbedtls_mpi_swap() */
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]568 TEST_ASSERT( mbedtls_test_read_mpi( &X, X_hex ) == 0 );
569 TEST_ASSERT( mbedtls_test_read_mpi( &Y, Y_hex ) == 0 );
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]570 mbedtls_mpi_swap( &X, &Y );
571 TEST_ASSERT( sign_is_valid( &X ) );
572 TEST_ASSERT( sign_is_valid( &Y ) );
573 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y0 ) == 0 );
574 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &X0 ) == 0 );
575
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]576 /* mbedtls_mpi_safe_cond_swap(), swap done */
577 mbedtls_mpi_free( &X );
578 mbedtls_mpi_free( &Y );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]579 TEST_ASSERT( mbedtls_test_read_mpi( &X, X_hex ) == 0 );
580 TEST_ASSERT( mbedtls_test_read_mpi( &Y, Y_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]581 TEST_ASSERT( mbedtls_mpi_safe_cond_swap( &X, &Y, 1 ) == 0 );
582 TEST_ASSERT( sign_is_valid( &X ) );
583 TEST_ASSERT( sign_is_valid( &Y ) );
584 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y0 ) == 0 );
585 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &X0 ) == 0 );
586
587 /* mbedtls_mpi_safe_cond_swap(), swap not done */
588 mbedtls_mpi_free( &X );
589 mbedtls_mpi_free( &Y );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]590 TEST_ASSERT( mbedtls_test_read_mpi( &X, X_hex ) == 0 );
591 TEST_ASSERT( mbedtls_test_read_mpi( &Y, Y_hex ) == 0 );
Gilles Peskined0722f82021-06-10 23:00:33 +0200[diff] [blame]592 TEST_ASSERT( mbedtls_mpi_safe_cond_swap( &X, &Y, 0 ) == 0 );
593 TEST_ASSERT( sign_is_valid( &X ) );
594 TEST_ASSERT( sign_is_valid( &Y ) );
595 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &X0 ) == 0 );
596 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &Y0 ) == 0 );
597
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]598exit:
599 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
600 mbedtls_mpi_free( &X0 ); mbedtls_mpi_free( &Y0 );
601}
602/* END_CASE */
603
604/* BEGIN_CASE */
605void mpi_swap_self( char *X_hex )
606{
607 mbedtls_mpi X, X0;
608 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &X0 );
609
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]610 TEST_ASSERT( mbedtls_test_read_mpi( &X, X_hex ) == 0 );
611 TEST_ASSERT( mbedtls_test_read_mpi( &X0, X_hex ) == 0 );
Gilles Peskinefc1eeef2021-06-10 22:29:57 +0200[diff] [blame]612
613 mbedtls_mpi_swap( &X, &X );
614 TEST_ASSERT( sign_is_valid( &X ) );
615 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &X0 ) == 0 );
616
617exit:
618 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &X0 );
619}
620/* END_CASE */
621
622/* BEGIN_CASE */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]623void mbedtls_mpi_shrink( int before, int used, int min, int after )
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]624{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]625 mbedtls_mpi X;
626 mbedtls_mpi_init( &X );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]627
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]628 TEST_ASSERT( mbedtls_mpi_grow( &X, before ) == 0 );
Gilles Peskinee1091752021-06-15 21:19:18 +0200[diff] [blame]629 if( used > 0 )
630 {
631 size_t used_bit_count = used * 8 * sizeof( mbedtls_mpi_uint );
632 TEST_ASSERT( mbedtls_mpi_set_bit( &X, used_bit_count - 1, 1 ) == 0 );
633 }
634 TEST_EQUAL( X.n, (size_t) before );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]635 TEST_ASSERT( mbedtls_mpi_shrink( &X, min ) == 0 );
Gilles Peskinee1091752021-06-15 21:19:18 +0200[diff] [blame]636 TEST_EQUAL( X.n, (size_t) after );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]637
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]638exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]639 mbedtls_mpi_free( &X );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]640}
641/* END_CASE */
642
643/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]644void mbedtls_mpi_add_mpi( char * input_X, char * input_Y,
645 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]646{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]647 mbedtls_mpi X, Y, Z, A;
648 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]649
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]650 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
651 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
652 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]653 TEST_ASSERT( mbedtls_mpi_add_mpi( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]654 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]655 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]656
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]657 /* result == first operand */
658 TEST_ASSERT( mbedtls_mpi_add_mpi( &X, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]659 TEST_ASSERT( sign_is_valid( &X ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]660 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]661 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]662
663 /* result == second operand */
664 TEST_ASSERT( mbedtls_mpi_add_mpi( &Y, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]665 TEST_ASSERT( sign_is_valid( &Y ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]666 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
667
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]668exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]669 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]670}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]671/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]672
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]673/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]674void mbedtls_mpi_add_mpi_inplace( char * input_X, char * input_A )
Janos Follath044a86b2015-10-25 10:58:03 +0100[diff] [blame]675{
676 mbedtls_mpi X, A;
677 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &A );
678
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]679 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]680
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]681 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]682 TEST_ASSERT( mbedtls_mpi_sub_abs( &X, &X, &X ) == 0 );
683 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, 0 ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]684 TEST_ASSERT( sign_is_valid( &X ) );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]685
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]686 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]687 TEST_ASSERT( mbedtls_mpi_add_abs( &X, &X, &X ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]688 TEST_ASSERT( sign_is_valid( &X ) );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]689 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
690
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]691 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Janos Follath044a86b2015-10-25 10:58:03 +0100[diff] [blame]692 TEST_ASSERT( mbedtls_mpi_add_mpi( &X, &X, &X ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]693 TEST_ASSERT( sign_is_valid( &X ) );
Janos Follath044a86b2015-10-25 10:58:03 +0100[diff] [blame]694 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
695
696exit:
697 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &A );
698}
699/* END_CASE */
700
701
702/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]703void mbedtls_mpi_add_abs( char * input_X, char * input_Y,
704 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]705{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]706 mbedtls_mpi X, Y, Z, A;
707 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]708
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]709 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
710 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
711 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]712 TEST_ASSERT( mbedtls_mpi_add_abs( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]713 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]714 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]715
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]716 /* result == first operand */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]717 TEST_ASSERT( mbedtls_mpi_add_abs( &X, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]718 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]719 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]720 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]721
722 /* result == second operand */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]723 TEST_ASSERT( mbedtls_mpi_add_abs( &Y, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]724 TEST_ASSERT( sign_is_valid( &Y ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]725 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]726
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]727exit:
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]728 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]729}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]730/* END_CASE */
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]731
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]732/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]733void mbedtls_mpi_add_int( char * input_X, int input_Y,
734 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]735{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]736 mbedtls_mpi X, Z, A;
737 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]738
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]739 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
740 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]741 TEST_ASSERT( mbedtls_mpi_add_int( &Z, &X, input_Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]742 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]743 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]744
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]745exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]746 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]747}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]748/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]749
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]750/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]751void mbedtls_mpi_sub_mpi( char * input_X, char * input_Y,
752 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]753{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]754 mbedtls_mpi X, Y, Z, A;
755 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]756
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]757 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
758 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
759 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]760 TEST_ASSERT( mbedtls_mpi_sub_mpi( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]761 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]762 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]763
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]764 /* result == first operand */
765 TEST_ASSERT( mbedtls_mpi_sub_mpi( &X, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]766 TEST_ASSERT( sign_is_valid( &X ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]767 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]768 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]769
770 /* result == second operand */
771 TEST_ASSERT( mbedtls_mpi_sub_mpi( &Y, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]772 TEST_ASSERT( sign_is_valid( &Y ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]773 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
774
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]775exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]776 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]777}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]778/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]779
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]780/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]781void mbedtls_mpi_sub_abs( char * input_X, char * input_Y,
782 char * input_A, int sub_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]783{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]784 mbedtls_mpi X, Y, Z, A;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]785 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]786 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]787
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]788 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
789 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
790 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnarde670f902015-10-30 09:23:19 +0100[diff] [blame]791
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]792 res = mbedtls_mpi_sub_abs( &Z, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]793 TEST_ASSERT( res == sub_result );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]794 TEST_ASSERT( sign_is_valid( &Z ) );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]795 if( res == 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]796 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]797
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]798 /* result == first operand */
799 TEST_ASSERT( mbedtls_mpi_sub_abs( &X, &X, &Y ) == sub_result );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]800 TEST_ASSERT( sign_is_valid( &X ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]801 if( sub_result == 0 )
802 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]803 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]804
805 /* result == second operand */
806 TEST_ASSERT( mbedtls_mpi_sub_abs( &Y, &X, &Y ) == sub_result );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]807 TEST_ASSERT( sign_is_valid( &Y ) );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]808 if( sub_result == 0 )
809 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
810
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]811exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]812 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]813}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]814/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]815
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]816/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]817void mbedtls_mpi_sub_int( char * input_X, int input_Y,
818 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]819{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]820 mbedtls_mpi X, Z, A;
821 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]822
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]823 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
824 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]825 TEST_ASSERT( mbedtls_mpi_sub_int( &Z, &X, input_Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]826 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]827 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]828
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]829exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]830 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]831}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]832/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]833
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]834/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]835void mbedtls_mpi_mul_mpi( char * input_X, char * input_Y,
836 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]837{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]838 mbedtls_mpi X, Y, Z, A;
839 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]840
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]841 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
842 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
843 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]844 TEST_ASSERT( mbedtls_mpi_mul_mpi( &Z, &X, &Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]845 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]846 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]847
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]848exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]849 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]850}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]851/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]852
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]853/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]854void mbedtls_mpi_mul_int( char * input_X, int input_Y,
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]855 char * input_A, char * result_comparison )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]856{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]857 mbedtls_mpi X, Z, A;
858 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]859
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]860 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
861 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]862 TEST_ASSERT( mbedtls_mpi_mul_int( &Z, &X, input_Y ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]863 TEST_ASSERT( sign_is_valid( &Z ) );
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]864 if( strcmp( result_comparison, "==" ) == 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]865 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]866 else if( strcmp( result_comparison, "!=" ) == 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]867 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) != 0 );
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]868 else
869 TEST_ASSERT( "unknown operator" == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]870
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]871exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]872 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]873}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]874/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]875
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]876/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]877void mbedtls_mpi_div_mpi( char * input_X, char * input_Y,
878 char * input_A, char * input_B,
879 int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]880{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]881 mbedtls_mpi X, Y, Q, R, A, B;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]882 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]883 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &R );
884 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]885
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]886 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
887 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
888 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
889 TEST_ASSERT( mbedtls_test_read_mpi( &B, input_B ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]890 res = mbedtls_mpi_div_mpi( &Q, &R, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]891 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]892 if( res == 0 )
893 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]894 TEST_ASSERT( sign_is_valid( &Q ) );
895 TEST_ASSERT( sign_is_valid( &R ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]896 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Q, &A ) == 0 );
897 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &R, &B ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]898 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]899
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]900exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]901 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &R );
902 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]903}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]904/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]905
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]906/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]907void mbedtls_mpi_div_int( char * input_X, int input_Y,
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]908 char * input_A, char * input_B,
909 int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]910{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]911 mbedtls_mpi X, Q, R, A, B;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]912 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]913 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &R ); mbedtls_mpi_init( &A );
914 mbedtls_mpi_init( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]915
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]916 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
917 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
918 TEST_ASSERT( mbedtls_test_read_mpi( &B, input_B ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]919 res = mbedtls_mpi_div_int( &Q, &R, &X, input_Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]920 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]921 if( res == 0 )
922 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]923 TEST_ASSERT( sign_is_valid( &Q ) );
924 TEST_ASSERT( sign_is_valid( &R ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]925 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Q, &A ) == 0 );
926 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &R, &B ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]927 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]928
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]929exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]930 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &R ); mbedtls_mpi_free( &A );
931 mbedtls_mpi_free( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]932}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]933/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]934
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]935/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]936void mbedtls_mpi_mod_mpi( char * input_X, char * input_Y,
937 char * input_A, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]938{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]939 mbedtls_mpi X, Y, A;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]940 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]941 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]942
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]943 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
944 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
945 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]946 res = mbedtls_mpi_mod_mpi( &X, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]947 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]948 if( res == 0 )
949 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]950 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]951 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]952 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]953
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]954exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]955 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]956}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]957/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]958
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]959/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]960void mbedtls_mpi_mod_int( char * input_X, int input_Y,
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]961 int input_A, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]962{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]963 mbedtls_mpi X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]964 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]965 mbedtls_mpi_uint r;
966 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]967
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]968 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]969 res = mbedtls_mpi_mod_int( &r, &X, input_Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]970 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]971 if( res == 0 )
972 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]973 TEST_ASSERT( r == (mbedtls_mpi_uint) input_A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]974 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]975
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]976exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]977 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]978}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]979/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]980
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]981/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]982void mbedtls_mpi_exp_mod( char * input_A, char * input_E,
983 char * input_N, char * input_X,
984 int exp_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]985{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]986 mbedtls_mpi A, E, N, RR, Z, X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]987 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]988 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &E ); mbedtls_mpi_init( &N );
989 mbedtls_mpi_init( &RR ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]990
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]991 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
992 TEST_ASSERT( mbedtls_test_read_mpi( &E, input_E ) == 0 );
993 TEST_ASSERT( mbedtls_test_read_mpi( &N, input_N ) == 0 );
994 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]995
Gilles Peskine342f71b2021-06-09 18:31:35 +0200[diff] [blame]996 res = mbedtls_mpi_exp_mod( &Z, &A, &E, &N, NULL );
Gilles Peskine722c62c2021-06-15 21:55:05 +0200[diff] [blame]997 TEST_ASSERT( res == exp_result );
Gilles Peskine342f71b2021-06-09 18:31:35 +0200[diff] [blame]998 if( res == 0 )
999 {
1000 TEST_ASSERT( sign_is_valid( &Z ) );
1001 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &X ) == 0 );
1002 }
1003
1004 /* Now test again with the speed-up parameter supplied as an output. */
1005 res = mbedtls_mpi_exp_mod( &Z, &A, &E, &N, &RR );
Gilles Peskine722c62c2021-06-15 21:55:05 +0200[diff] [blame]1006 TEST_ASSERT( res == exp_result );
Gilles Peskine342f71b2021-06-09 18:31:35 +0200[diff] [blame]1007 if( res == 0 )
1008 {
1009 TEST_ASSERT( sign_is_valid( &Z ) );
1010 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &X ) == 0 );
1011 }
1012
1013 /* Now test again with the speed-up parameter supplied in calculated form. */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1014 res = mbedtls_mpi_exp_mod( &Z, &A, &E, &N, &RR );
Gilles Peskine722c62c2021-06-15 21:55:05 +0200[diff] [blame]1015 TEST_ASSERT( res == exp_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1016 if( res == 0 )
1017 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1018 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1019 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &X ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1020 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1021
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1022exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1023 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &E ); mbedtls_mpi_free( &N );
1024 mbedtls_mpi_free( &RR ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1025}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1026/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1027
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1028/* BEGIN_CASE */
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1029void mbedtls_mpi_exp_mod_size( int A_bytes, int E_bytes, int N_bytes,
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1030 char * input_RR, int exp_result )
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1031{
1032 mbedtls_mpi A, E, N, RR, Z;
1033 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &E ); mbedtls_mpi_init( &N );
1034 mbedtls_mpi_init( &RR ); mbedtls_mpi_init( &Z );
1035
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1036 /* Set A to 2^(A_bytes - 1) + 1 */
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1037 TEST_ASSERT( mbedtls_mpi_lset( &A, 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1038 TEST_ASSERT( mbedtls_mpi_shift_l( &A, ( A_bytes * 8 ) - 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1039 TEST_ASSERT( mbedtls_mpi_set_bit( &A, 0, 1 ) == 0 );
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1040
1041 /* Set E to 2^(E_bytes - 1) + 1 */
1042 TEST_ASSERT( mbedtls_mpi_lset( &E, 1 ) == 0 );
1043 TEST_ASSERT( mbedtls_mpi_shift_l( &E, ( E_bytes * 8 ) - 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1044 TEST_ASSERT( mbedtls_mpi_set_bit( &E, 0, 1 ) == 0 );
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1045
1046 /* Set N to 2^(N_bytes - 1) + 1 */
1047 TEST_ASSERT( mbedtls_mpi_lset( &N, 1 ) == 0 );
1048 TEST_ASSERT( mbedtls_mpi_shift_l( &N, ( N_bytes * 8 ) - 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1049 TEST_ASSERT( mbedtls_mpi_set_bit( &N, 0, 1 ) == 0 );
1050
1051 if( strlen( input_RR ) )
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1052 TEST_ASSERT( mbedtls_test_read_mpi( &RR, input_RR ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1053
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1054 TEST_ASSERT( mbedtls_mpi_exp_mod( &Z, &A, &E, &N, &RR ) == exp_result );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1055
1056exit:
1057 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &E ); mbedtls_mpi_free( &N );
1058 mbedtls_mpi_free( &RR ); mbedtls_mpi_free( &Z );
1059}
1060/* END_CASE */
1061
1062/* BEGIN_CASE */
Werner Lewisefda01f2022-07-06 13:03:36 +0100[diff] [blame]1063void mbedtls_mpi_inv_mod( char * input_X, char * input_Y,
1064 char * input_A, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1065{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1066 mbedtls_mpi X, Y, Z, A;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1067 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1068 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1069
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1070 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
1071 TEST_ASSERT( mbedtls_test_read_mpi( &Y, input_Y ) == 0 );
1072 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1073 res = mbedtls_mpi_inv_mod( &Z, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1074 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1075 if( res == 0 )
1076 {
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1077 TEST_ASSERT( sign_is_valid( &Z ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1078 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1079 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1080
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1081exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1082 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1083}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1084/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1085
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1086/* BEGIN_CASE depends_on:MBEDTLS_GENPRIME */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1087void mbedtls_mpi_is_prime( char * input_X, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1088{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1089 mbedtls_mpi X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1090 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1091 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1092
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1093 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]1094 res = mbedtls_mpi_is_prime_ext( &X, 40, mbedtls_test_rnd_std_rand, NULL );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1095 TEST_ASSERT( res == div_result );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1096
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1097exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1098 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1099}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1100/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1101
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1102/* BEGIN_CASE depends_on:MBEDTLS_GENPRIME */
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1103void mbedtls_mpi_is_prime_det( data_t * input_X, data_t * witnesses,
Darryl Greenac2ead02018-10-02 15:30:39 +0100[diff] [blame]1104 int chunk_len, int rounds )
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1105{
1106 mbedtls_mpi X;
1107 int res;
1108 mbedtls_test_mpi_random rand;
1109
1110 mbedtls_mpi_init( &X );
1111 rand.data = witnesses;
1112 rand.pos = 0;
1113 rand.chunk_len = chunk_len;
1114
1115 TEST_ASSERT( mbedtls_mpi_read_binary( &X, input_X->x, input_X->len ) == 0 );
Darryl Greenac2ead02018-10-02 15:30:39 +0100[diff] [blame]1116 res = mbedtls_mpi_is_prime_ext( &X, rounds - 1,
1117 mbedtls_test_mpi_miller_rabin_determinizer,
1118 &rand );
1119 TEST_ASSERT( res == 0 );
1120
1121 rand.data = witnesses;
1122 rand.pos = 0;
1123 rand.chunk_len = chunk_len;
1124
Janos Follatha0b67c22018-09-18 14:48:23 +0100[diff] [blame]1125 res = mbedtls_mpi_is_prime_ext( &X, rounds,
1126 mbedtls_test_mpi_miller_rabin_determinizer,
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1127 &rand );
Darryl Greenac2ead02018-10-02 15:30:39 +0100[diff] [blame]1128 TEST_ASSERT( res == MBEDTLS_ERR_MPI_NOT_ACCEPTABLE );
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1129
1130exit:
1131 mbedtls_mpi_free( &X );
1132}
1133/* END_CASE */
1134
1135/* BEGIN_CASE depends_on:MBEDTLS_GENPRIME */
Janos Follatha3cb7eb2018-08-14 15:31:54 +0100[diff] [blame]1136void mbedtls_mpi_gen_prime( int bits, int flags, int ref_ret )
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1137{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1138 mbedtls_mpi X;
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1139 int my_ret;
1140
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1141 mbedtls_mpi_init( &X );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1142
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]1143 my_ret = mbedtls_mpi_gen_prime( &X, bits, flags,
1144 mbedtls_test_rnd_std_rand, NULL );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1145 TEST_ASSERT( my_ret == ref_ret );
1146
1147 if( ref_ret == 0 )
1148 {
Manuel Pégourié-Gonnardc0696c22015-06-18 16:47:17 +0200[diff] [blame]1149 size_t actual_bits = mbedtls_mpi_bitlen( &X );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1150
1151 TEST_ASSERT( actual_bits >= (size_t) bits );
1152 TEST_ASSERT( actual_bits <= (size_t) bits + 1 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1153 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1154
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]1155 TEST_ASSERT( mbedtls_mpi_is_prime_ext( &X, 40,
1156 mbedtls_test_rnd_std_rand,
1157 NULL ) == 0 );
Janos Follatha3cb7eb2018-08-14 15:31:54 +0100[diff] [blame]1158 if( flags & MBEDTLS_MPI_GEN_PRIME_FLAG_DH )
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1159 {
Hanno Beckerd4d60572018-01-10 07:12:01 +0000[diff] [blame]1160 /* X = ( X - 1 ) / 2 */
1161 TEST_ASSERT( mbedtls_mpi_shift_r( &X, 1 ) == 0 );
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]1162 TEST_ASSERT( mbedtls_mpi_is_prime_ext( &X, 40,
1163 mbedtls_test_rnd_std_rand,
1164 NULL ) == 0 );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1165 }
1166 }
1167
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1168exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1169 mbedtls_mpi_free( &X );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1170}
1171/* END_CASE */
1172
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1173/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1174void mbedtls_mpi_shift_l( char * input_X, int shift_X,
1175 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1176{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1177 mbedtls_mpi X, A;
1178 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1179
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1180 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
1181 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1182 TEST_ASSERT( mbedtls_mpi_shift_l( &X, shift_X ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1183 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1184 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1185
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1186exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1187 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1188}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1189/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1190
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1191/* BEGIN_CASE */
Werner Lewis9802d362022-07-07 11:37:24 +0100[diff] [blame]1192void mbedtls_mpi_shift_r( char * input_X, int shift_X,
1193 char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1194{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1195 mbedtls_mpi X, A;
1196 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1197
Werner Lewis19b4cd82022-07-07 11:02:27 +0100[diff] [blame]1198 TEST_ASSERT( mbedtls_test_read_mpi( &X, input_X ) == 0 );
1199 TEST_ASSERT( mbedtls_test_read_mpi( &A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1200 TEST_ASSERT( mbedtls_mpi_shift_r( &X, shift_X ) == 0 );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1201 TEST_ASSERT( sign_is_valid( &X ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1202 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1203
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1204exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1205 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1206}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1207/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1208
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1209/* BEGIN_CASE */
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1210void mpi_fill_random( int wanted_bytes, int rng_bytes,
1211 int before, int expected_ret )
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1212{
1213 mbedtls_mpi X;
1214 int ret;
1215 size_t bytes_left = rng_bytes;
1216 mbedtls_mpi_init( &X );
1217
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1218 if( before != 0 )
1219 {
1220 /* Set X to sign(before) * 2^(|before|-1) */
1221 TEST_ASSERT( mbedtls_mpi_lset( &X, before > 0 ? 1 : -1 ) == 0 );
1222 if( before < 0 )
1223 before = - before;
1224 TEST_ASSERT( mbedtls_mpi_shift_l( &X, before - 1 ) == 0 );
1225 }
1226
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1227 ret = mbedtls_mpi_fill_random( &X, wanted_bytes,
1228 f_rng_bytes_left, &bytes_left );
1229 TEST_ASSERT( ret == expected_ret );
1230
1231 if( expected_ret == 0 )
1232 {
1233 /* mbedtls_mpi_fill_random is documented to use bytes from the RNG
1234 * as a big-endian representation of the number. We know when
1235 * our RNG function returns null bytes, so we know how many
1236 * leading zero bytes the number has. */
1237 size_t leading_zeros = 0;
1238 if( wanted_bytes > 0 && rng_bytes % 256 == 0 )
1239 leading_zeros = 1;
1240 TEST_ASSERT( mbedtls_mpi_size( &X ) + leading_zeros ==
1241 (size_t) wanted_bytes );
1242 TEST_ASSERT( (int) bytes_left == rng_bytes - wanted_bytes );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1243 TEST_ASSERT( sign_is_valid( &X ) );
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1244 }
1245
1246exit:
1247 mbedtls_mpi_free( &X );
1248}
1249/* END_CASE */
1250
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1251/* BEGIN_CASE */
1252void mpi_random_many( int min, data_t *bound_bytes, int iterations )
1253{
1254 /* Generate numbers in the range 1..bound-1. Do it iterations times.
1255 * This function assumes that the value of bound is at least 2 and
1256 * that iterations is large enough that a one-in-2^iterations chance
1257 * effectively never occurs.
1258 */
1259
1260 mbedtls_mpi upper_bound;
1261 size_t n_bits;
1262 mbedtls_mpi result;
1263 size_t b;
1264 /* If upper_bound is small, stats[b] is the number of times the value b
1265 * has been generated. Otherwise stats[b] is the number of times a
1266 * value with bit b set has been generated. */
1267 size_t *stats = NULL;
1268 size_t stats_len;
1269 int full_stats;
1270 size_t i;
1271
1272 mbedtls_mpi_init( &upper_bound );
1273 mbedtls_mpi_init( &result );
1274
1275 TEST_EQUAL( 0, mbedtls_mpi_read_binary( &upper_bound,
1276 bound_bytes->x, bound_bytes->len ) );
1277 n_bits = mbedtls_mpi_bitlen( &upper_bound );
1278 /* Consider a bound "small" if it's less than 2^5. This value is chosen
1279 * to be small enough that the probability of missing one value is
1280 * negligible given the number of iterations. It must be less than
1281 * 256 because some of the code below assumes that "small" values
1282 * fit in a byte. */
1283 if( n_bits <= 5 )
1284 {
1285 full_stats = 1;
1286 stats_len = bound_bytes->x[bound_bytes->len - 1];
1287 }
1288 else
1289 {
1290 full_stats = 0;
1291 stats_len = n_bits;
1292 }
1293 ASSERT_ALLOC( stats, stats_len );
1294
1295 for( i = 0; i < (size_t) iterations; i++ )
1296 {
1297 mbedtls_test_set_step( i );
1298 TEST_EQUAL( 0, mbedtls_mpi_random( &result, min, &upper_bound,
1299 mbedtls_test_rnd_std_rand, NULL ) );
1300
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1301 TEST_ASSERT( sign_is_valid( &result ) );
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1302 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &result, &upper_bound ) < 0 );
1303 TEST_ASSERT( mbedtls_mpi_cmp_int( &result, min ) >= 0 );
1304 if( full_stats )
1305 {
1306 uint8_t value;
1307 TEST_EQUAL( 0, mbedtls_mpi_write_binary( &result, &value, 1 ) );
1308 TEST_ASSERT( value < stats_len );
1309 ++stats[value];
1310 }
1311 else
1312 {
1313 for( b = 0; b < n_bits; b++ )
1314 stats[b] += mbedtls_mpi_get_bit( &result, b );
1315 }
1316 }
1317
1318 if( full_stats )
1319 {
Gilles Peskined463edf2021-04-13 20:45:05 +0200[diff] [blame]1320 for( b = min; b < stats_len; b++ )
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1321 {
1322 mbedtls_test_set_step( 1000000 + b );
1323 /* Assert that each value has been reached at least once.
1324 * This is almost guaranteed if the iteration count is large
1325 * enough. This is a very crude way of checking the distribution.
1326 */
1327 TEST_ASSERT( stats[b] > 0 );
1328 }
1329 }
1330 else
1331 {
Gilles Peskineceefe5d2021-06-02 21:24:04 +0200[diff] [blame]1332 int statistically_safe_all_the_way =
1333 is_significantly_above_a_power_of_2( bound_bytes );
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1334 for( b = 0; b < n_bits; b++ )
1335 {
1336 mbedtls_test_set_step( 1000000 + b );
1337 /* Assert that each bit has been set in at least one result and
1338 * clear in at least one result. Provided that iterations is not
1339 * too small, it would be extremely unlikely for this not to be
1340 * the case if the results are uniformly distributed.
1341 *
1342 * As an exception, the top bit may legitimately never be set
1343 * if bound is a power of 2 or only slightly above.
1344 */
Gilles Peskineceefe5d2021-06-02 21:24:04 +0200[diff] [blame]1345 if( statistically_safe_all_the_way || b != n_bits - 1 )
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1346 {
1347 TEST_ASSERT( stats[b] > 0 );
1348 }
1349 TEST_ASSERT( stats[b] < (size_t) iterations );
1350 }
1351 }
1352
1353exit:
1354 mbedtls_mpi_free( &upper_bound );
1355 mbedtls_mpi_free( &result );
1356 mbedtls_free( stats );
1357}
1358/* END_CASE */
1359
Gilles Peskine1e918f42021-03-29 22:14:51 +0200[diff] [blame]1360/* BEGIN_CASE */
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1361void mpi_random_sizes( int min, data_t *bound_bytes, int nlimbs, int before )
Gilles Peskine1a7df4e2021-04-01 15:57:18 +0200[diff] [blame]1362{
1363 mbedtls_mpi upper_bound;
1364 mbedtls_mpi result;
1365
1366 mbedtls_mpi_init( &upper_bound );
1367 mbedtls_mpi_init( &result );
1368
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1369 if( before != 0 )
1370 {
1371 /* Set result to sign(before) * 2^(|before|-1) */
1372 TEST_ASSERT( mbedtls_mpi_lset( &result, before > 0 ? 1 : -1 ) == 0 );
1373 if( before < 0 )
1374 before = - before;
1375 TEST_ASSERT( mbedtls_mpi_shift_l( &result, before - 1 ) == 0 );
1376 }
1377
Gilles Peskine1a7df4e2021-04-01 15:57:18 +0200[diff] [blame]1378 TEST_EQUAL( 0, mbedtls_mpi_grow( &result, nlimbs ) );
1379 TEST_EQUAL( 0, mbedtls_mpi_read_binary( &upper_bound,
1380 bound_bytes->x, bound_bytes->len ) );
1381 TEST_EQUAL( 0, mbedtls_mpi_random( &result, min, &upper_bound,
1382 mbedtls_test_rnd_std_rand, NULL ) );
Gilles Peskinedffc7102021-06-10 15:34:15 +0200[diff] [blame]1383 TEST_ASSERT( sign_is_valid( &result ) );
Gilles Peskine1a7df4e2021-04-01 15:57:18 +0200[diff] [blame]1384 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &result, &upper_bound ) < 0 );
1385 TEST_ASSERT( mbedtls_mpi_cmp_int( &result, min ) >= 0 );
1386
1387exit:
1388 mbedtls_mpi_free( &upper_bound );
1389 mbedtls_mpi_free( &result );
1390}
1391/* END_CASE */
1392
1393/* BEGIN_CASE */
Gilles Peskine1e918f42021-03-29 22:14:51 +0200[diff] [blame]1394void mpi_random_fail( int min, data_t *bound_bytes, int expected_ret )
1395{
1396 mbedtls_mpi upper_bound;
1397 mbedtls_mpi result;
1398 int actual_ret;
1399
1400 mbedtls_mpi_init( &upper_bound );
1401 mbedtls_mpi_init( &result );
1402
1403 TEST_EQUAL( 0, mbedtls_mpi_read_binary( &upper_bound,
1404 bound_bytes->x, bound_bytes->len ) );
1405 actual_ret = mbedtls_mpi_random( &result, min, &upper_bound,
1406 mbedtls_test_rnd_std_rand, NULL );
1407 TEST_EQUAL( expected_ret, actual_ret );
1408
1409exit:
1410 mbedtls_mpi_free( &upper_bound );
1411 mbedtls_mpi_free( &result );
1412}
1413/* END_CASE */
1414
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1415/* BEGIN_CASE depends_on:MBEDTLS_SELF_TEST */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]1416void mpi_selftest( )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]1417{
Andres AG93012e82016-09-09 09:10:28 +0100[diff] [blame]1418 TEST_ASSERT( mbedtls_mpi_self_test( 1 ) == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]1419}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1420/* END_CASE */