TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 20edee7b177c99907efd76612c57c6f827409d38 / . / tests / suites / test_suite_mpi.function
blob: eaede01b49f68f7358ffb39024d95decac0789a1 [file] [log] [blame]
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1/* BEGIN_HEADER */
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]2#include "mbedtls/bignum.h"
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]3#include "mbedtls/entropy.h"
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]4
Chris Jonese64a46f2020-12-03 17:44:03 +0000[diff] [blame]5#if MBEDTLS_MPI_MAX_BITS > 792
6#define MPI_MAX_BITS_LARGER_THAN_792
Chris Jones4592bd82020-12-03 14:24:33 +0000[diff] [blame]7#endif
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]8
9typedef struct mbedtls_test_mpi_random
10{
11 data_t *data;
12 size_t pos;
13 size_t chunk_len;
14} mbedtls_test_mpi_random;
15
16/*
17 * This function is called by the Miller-Rabin primality test each time it
18 * chooses a random witness. The witnesses (or non-witnesses as provided by the
19 * test) are stored in the data member of the state structure. Each number is in
20 * the format that mbedtls_mpi_read_string understands and is chunk_len long.
21 */
22int mbedtls_test_mpi_miller_rabin_determinizer( void* state,
23 unsigned char* buf,
24 size_t len )
25{
26 mbedtls_test_mpi_random *random = (mbedtls_test_mpi_random*) state;
27
28 if( random == NULL || random->data->x == NULL || buf == NULL )
29 return( -1 );
30
31 if( random->pos + random->chunk_len > random->data->len
32 || random->chunk_len > len )
33 {
34 return( -1 );
35 }
36
37 memset( buf, 0, len );
38
39 /* The witness is written to the end of the buffer, since the buffer is
40 * used as big endian, unsigned binary data in mbedtls_mpi_read_binary.
41 * Writing the witness to the start of the buffer would result in the
42 * buffer being 'witness 000...000', which would be treated as
43 * witness * 2^n for some n. */
44 memcpy( buf + len - random->chunk_len, &random->data->x[random->pos],
45 random->chunk_len );
46
47 random->pos += random->chunk_len;
48
49 return( 0 );
50}
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]51
52/* Random generator that is told how many bytes to return. */
53static int f_rng_bytes_left( void *state, unsigned char *buf, size_t len )
54{
55 size_t *bytes_left = state;
56 size_t i;
57 for( i = 0; i < len; i++ )
58 {
59 if( *bytes_left == 0 )
60 return( MBEDTLS_ERR_ENTROPY_SOURCE_FAILED );
61 buf[i] = *bytes_left & 0xff;
62 --( *bytes_left );
63 }
64 return( 0 );
65}
66
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]67/* Test whether bytes represents (in big-endian base 256) a number b that
68 * is significantly above a power of 2. That is, b must not have a long run
69 * of unset bits after the most significant bit.
70 *
71 * Let n be the bit-size of b, i.e. the integer such that 2^n <= b < 2^{n+1}.
72 * This function returns 1 if, when drawing a number between 0 and b,
73 * the probability that this number is at least 2^n is not negligible.
74 * This probability is (b - 2^n) / b and this function checks that this
75 * number is above some threshold A. The threshold value is heuristic and
76 * based on the needs of mpi_random_many().
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]77 */
78static int is_significantly_above_a_power_of_2( data_t *bytes )
79{
80 const uint8_t *p = bytes->x;
81 size_t len = bytes->len;
82 unsigned x;
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]83
84 /* Skip leading null bytes */
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]85 while( len > 0 && p[0] == 0 )
86 {
87 ++p;
88 --len;
89 }
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]90 /* 0 is not significantly above a power of 2 */
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]91 if( len == 0 )
92 return( 0 );
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]93 /* Extract the (up to) 2 most significant bytes */
94 if( len == 1 )
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]95 x = p[0];
96 else
97 x = ( p[0] << 8 ) | p[1];
98
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]99 /* Shift the most significant bit of x to position 8 and mask it out */
100 while( ( x & 0xfe00 ) != 0 )
101 x >>= 1;
102 x &= 0x00ff;
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]103
Gilles Peskineeedefa52021-04-13 19:50:04 +0200[diff] [blame]104 /* At this point, x = floor((b - 2^n) / 2^(n-8)). b is significantly above
105 * a power of 2 iff x is significantly above 0 compared to 2^8.
106 * Testing x >= 2^4 amounts to picking A = 1/16 in the function
107 * description above. */
108 return( x >= 0x10 );
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]109}
110
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]111/* END_HEADER */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]112
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]113/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]114 * depends_on:MBEDTLS_BIGNUM_C
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]115 * END_DEPENDENCIES
116 */
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]117
Hanno Beckerb48e1aa2018-12-18 23:25:01 +0000[diff] [blame]118/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]119void mpi_null( )
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]120{
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]121 mbedtls_mpi X, Y, Z;
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]122
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]123 mbedtls_mpi_init( &X );
124 mbedtls_mpi_init( &Y );
125 mbedtls_mpi_init( &Z );
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]126
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]127 TEST_ASSERT( mbedtls_mpi_get_bit( &X, 42 ) == 0 );
128 TEST_ASSERT( mbedtls_mpi_lsb( &X ) == 0 );
Manuel Pégourié-Gonnardc0696c22015-06-18 16:47:17 +0200[diff] [blame]129 TEST_ASSERT( mbedtls_mpi_bitlen( &X ) == 0 );
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]130 TEST_ASSERT( mbedtls_mpi_size( &X ) == 0 );
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]131
132exit:
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]133 mbedtls_mpi_free( &X );
Manuel Pégourié-Gonnard770b5e12015-04-29 17:02:01 +0200[diff] [blame]134}
135/* END_CASE */
136
137/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]138void mpi_read_write_string( int radix_X, char * input_X, int radix_A,
139 char * input_A, int output_size, int result_read,
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]140 int result_write )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]141{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]142 mbedtls_mpi X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]143 char str[1000];
Manuel Pégourié-Gonnardf79b4252015-06-02 15:41:48 +0100[diff] [blame]144 size_t len;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]145
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]146 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]147
Janos Follath04dadb72019-03-06 12:29:37 +0000[diff] [blame]148 memset( str, '!', sizeof( str ) );
149
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]150 TEST_ASSERT( mbedtls_mpi_read_string( &X, radix_X, input_X ) == result_read );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]151 if( result_read == 0 )
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]152 {
Manuel Pégourié-Gonnardf79b4252015-06-02 15:41:48 +0100[diff] [blame]153 TEST_ASSERT( mbedtls_mpi_write_string( &X, radix_A, str, output_size, &len ) == result_write );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]154 if( result_write == 0 )
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]155 {
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]156 TEST_ASSERT( strcasecmp( str, input_A ) == 0 );
Janos Follath04dadb72019-03-06 12:29:37 +0000[diff] [blame]157 TEST_ASSERT( str[len] == '!' );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]158 }
159 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]160
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]161exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]162 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]163}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]164/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]165
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]166/* BEGIN_CASE */
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]167void mbedtls_mpi_read_binary( data_t * buf, int radix_A, char * input_A )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]168{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]169 mbedtls_mpi X;
Janos Follathe5670f22019-02-25 16:11:58 +0000[diff] [blame]170 char str[1000];
Manuel Pégourié-Gonnardf79b4252015-06-02 15:41:48 +0100[diff] [blame]171 size_t len;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]172
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]173 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]174
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]175
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]176 TEST_ASSERT( mbedtls_mpi_read_binary( &X, buf->x, buf->len ) == 0 );
Janos Follathe5670f22019-02-25 16:11:58 +0000[diff] [blame]177 TEST_ASSERT( mbedtls_mpi_write_string( &X, radix_A, str, sizeof( str ), &len ) == 0 );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]178 TEST_ASSERT( strcmp( (char *) str, input_A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]179
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]180exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]181 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]182}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]183/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]184
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]185/* BEGIN_CASE */
Janos Follatha778a942019-02-13 10:28:28 +0000[diff] [blame]186void mbedtls_mpi_read_binary_le( data_t * buf, int radix_A, char * input_A )
187{
188 mbedtls_mpi X;
Janos Follathe5670f22019-02-25 16:11:58 +0000[diff] [blame]189 char str[1000];
Janos Follatha778a942019-02-13 10:28:28 +0000[diff] [blame]190 size_t len;
191
192 mbedtls_mpi_init( &X );
193
194
195 TEST_ASSERT( mbedtls_mpi_read_binary_le( &X, buf->x, buf->len ) == 0 );
Janos Follathe5670f22019-02-25 16:11:58 +0000[diff] [blame]196 TEST_ASSERT( mbedtls_mpi_write_string( &X, radix_A, str, sizeof( str ), &len ) == 0 );
Janos Follatha778a942019-02-13 10:28:28 +0000[diff] [blame]197 TEST_ASSERT( strcmp( (char *) str, input_A ) == 0 );
198
199exit:
200 mbedtls_mpi_free( &X );
201}
202/* END_CASE */
203
204/* BEGIN_CASE */
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]205void mbedtls_mpi_write_binary( int radix_X, char * input_X,
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]206 data_t * input_A, int output_size,
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]207 int result )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]208{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]209 mbedtls_mpi X;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]210 unsigned char buf[1000];
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]211 size_t buflen;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]212
213 memset( buf, 0x00, 1000 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]214
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]215 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]216
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]217 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Manuel Pégourié-Gonnarde670f902015-10-30 09:23:19 +0100[diff] [blame]218
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]219 buflen = mbedtls_mpi_size( &X );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]220 if( buflen > (size_t) output_size )
221 buflen = (size_t) output_size;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]222
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]223 TEST_ASSERT( mbedtls_mpi_write_binary( &X, buf, buflen ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]224 if( result == 0)
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]225 {
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]226
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]227 TEST_ASSERT( mbedtls_test_hexcmp( buf, input_A->x,
228 buflen, input_A->len ) == 0 );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]229 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]230
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]231exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]232 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]233}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]234/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]235
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]236/* BEGIN_CASE */
237void mbedtls_mpi_write_binary_le( int radix_X, char * input_X,
238 data_t * input_A, int output_size,
239 int result )
240{
241 mbedtls_mpi X;
242 unsigned char buf[1000];
243 size_t buflen;
244
245 memset( buf, 0x00, 1000 );
246
247 mbedtls_mpi_init( &X );
248
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]249 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]250
251 buflen = mbedtls_mpi_size( &X );
252 if( buflen > (size_t) output_size )
253 buflen = (size_t) output_size;
254
255 TEST_ASSERT( mbedtls_mpi_write_binary_le( &X, buf, buflen ) == result );
256 if( result == 0)
257 {
258
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]259 TEST_ASSERT( mbedtls_test_hexcmp( buf, input_A->x,
260 buflen, input_A->len ) == 0 );
Janos Follathe344d0f2019-02-19 16:17:40 +0000[diff] [blame]261 }
262
263exit:
264 mbedtls_mpi_free( &X );
265}
266/* END_CASE */
267
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]268/* BEGIN_CASE depends_on:MBEDTLS_FS_IO */
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]269void mbedtls_mpi_read_file( int radix_X, char * input_file,
Azim Khan5fcca462018-06-29 11:05:32 +0100[diff] [blame]270 data_t * input_A, int result )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]271{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]272 mbedtls_mpi X;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]273 unsigned char buf[1000];
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]274 size_t buflen;
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]275 FILE *file;
Manuel Pégourié-Gonnarde43187d2015-02-14 16:01:34 +0000[diff] [blame]276 int ret;
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]277
278 memset( buf, 0x00, 1000 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]279
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]280 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]281
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]282 file = fopen( input_file, "r" );
Paul Bakker8a0c0a92014-04-17 16:08:20 +0200[diff] [blame]283 TEST_ASSERT( file != NULL );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]284 ret = mbedtls_mpi_read_file( &X, radix_X, file );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]285 fclose(file);
Manuel Pégourié-Gonnarde43187d2015-02-14 16:01:34 +0000[diff] [blame]286 TEST_ASSERT( ret == result );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]287
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]288 if( result == 0 )
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]289 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]290 buflen = mbedtls_mpi_size( &X );
291 TEST_ASSERT( mbedtls_mpi_write_binary( &X, buf, buflen ) == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]292
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]293
Ronald Cron2dbba992020-06-10 11:42:32 +0200[diff] [blame]294 TEST_ASSERT( mbedtls_test_hexcmp( buf, input_A->x,
295 buflen, input_A->len ) == 0 );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]296 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]297
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]298exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]299 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]300}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]301/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]302
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]303/* BEGIN_CASE depends_on:MBEDTLS_FS_IO */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]304void mbedtls_mpi_write_file( int radix_X, char * input_X, int output_radix,
305 char * output_file )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]306{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]307 mbedtls_mpi X, Y;
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]308 FILE *file_out, *file_in;
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]309 int ret;
Paul Bakker69998dd2009-07-11 19:15:20 +0000[diff] [blame]310
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]311 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]312
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]313 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]314
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]315 file_out = fopen( output_file, "w" );
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]316 TEST_ASSERT( file_out != NULL );
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]317 ret = mbedtls_mpi_write_file( NULL, &X, output_radix, file_out );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]318 fclose(file_out);
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]319 TEST_ASSERT( ret == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]320
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]321 file_in = fopen( output_file, "r" );
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]322 TEST_ASSERT( file_in != NULL );
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]323 ret = mbedtls_mpi_read_file( &Y, output_radix, file_in );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]324 fclose(file_in);
Manuel Pégourié-Gonnardac5361f2015-06-24 01:08:09 +0200[diff] [blame]325 TEST_ASSERT( ret == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]326
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]327 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]328
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]329exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]330 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]331}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]332/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]333
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]334/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]335void mbedtls_mpi_get_bit( int radix_X, char * input_X, int pos, int val )
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]336{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]337 mbedtls_mpi X;
338 mbedtls_mpi_init( &X );
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]339 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]340 TEST_ASSERT( mbedtls_mpi_get_bit( &X, pos ) == val );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]341
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]342exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]343 mbedtls_mpi_free( &X );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]344}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]345/* END_CASE */
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]346
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]347/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]348void mbedtls_mpi_set_bit( int radix_X, char * input_X, int pos, int val,
349 int radix_Y, char * output_Y, int result )
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]350{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]351 mbedtls_mpi X, Y;
352 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]353
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]354 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
355 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, output_Y ) == 0 );
Paul Bakkerec5ceb62016-07-14 12:47:07 +0100[diff] [blame]356 TEST_ASSERT( mbedtls_mpi_set_bit( &X, pos, val ) == result );
357
358 if( result == 0 )
359 {
360 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == 0 );
361 }
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]362
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]363exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]364 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]365}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]366/* END_CASE */
Paul Bakker2f5947e2011-05-18 15:47:11 +0000[diff] [blame]367
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]368/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]369void mbedtls_mpi_lsb( int radix_X, char * input_X, int nr_bits )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]370{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]371 mbedtls_mpi X;
372 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]373
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]374 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]375 TEST_ASSERT( mbedtls_mpi_lsb( &X ) == (size_t) nr_bits );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]376
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]377exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]378 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]379}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]380/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]381
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]382/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]383void mbedtls_mpi_bitlen( int radix_X, char * input_X, int nr_bits )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]384{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]385 mbedtls_mpi X;
386 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]387
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]388 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Manuel Pégourié-Gonnardc0696c22015-06-18 16:47:17 +0200[diff] [blame]389 TEST_ASSERT( mbedtls_mpi_bitlen( &X ) == (size_t) nr_bits );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]390
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]391exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]392 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]393}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]394/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]395
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]396/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]397void mbedtls_mpi_gcd( int radix_X, char * input_X, int radix_Y,
398 char * input_Y, int radix_A, char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]399{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]400 mbedtls_mpi A, X, Y, Z;
401 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]402
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]403 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
404 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
405 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]406 TEST_ASSERT( mbedtls_mpi_gcd( &Z, &X, &Y ) == 0 );
407 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]408
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]409exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]410 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]411}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]412/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]413
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]414/* BEGIN_CASE */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]415void mbedtls_mpi_cmp_int( int input_X, int input_A, int result_CMP )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]416{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]417 mbedtls_mpi X;
418 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]419
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]420 TEST_ASSERT( mbedtls_mpi_lset( &X, input_X ) == 0);
421 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, input_A ) == result_CMP);
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]422
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]423exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]424 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]425}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]426/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]427
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]428/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]429void mbedtls_mpi_cmp_mpi( int radix_X, char * input_X, int radix_Y,
430 char * input_Y, int input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]431{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]432 mbedtls_mpi X, Y;
433 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]434
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]435 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
436 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]437 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == input_A );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]438
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]439exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]440 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]441}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]442/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]443
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]444/* BEGIN_CASE */
Janos Follathb7e1b492019-10-14 09:21:49 +0100[diff] [blame]445void mbedtls_mpi_lt_mpi_ct( int size_X, char * input_X,
446 int size_Y, char * input_Y,
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]447 int input_ret, int input_err )
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]448{
Gilles Peskine0deccf12020-09-02 15:18:07 +0200[diff] [blame]449 unsigned ret = -1;
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]450 unsigned input_uret = input_ret;
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]451 mbedtls_mpi X, Y;
452 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
453
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]454 TEST_ASSERT( mbedtls_test_read_mpi( &X, 16, input_X ) == 0 );
455 TEST_ASSERT( mbedtls_test_read_mpi( &Y, 16, input_Y ) == 0 );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]456
Gilles Peskine9018b112020-01-21 16:30:53 +0100[diff] [blame]457 TEST_ASSERT( mbedtls_mpi_grow( &X, size_X ) == 0 );
458 TEST_ASSERT( mbedtls_mpi_grow( &Y, size_Y ) == 0 );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]459
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]460 TEST_ASSERT( mbedtls_mpi_lt_mpi_ct( &X, &Y, &ret ) == input_err );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]461 if( input_err == 0 )
Janos Follath0e5532d2019-10-11 14:21:53 +0100[diff] [blame]462 TEST_ASSERT( ret == input_uret );
Janos Follath385d5b82019-09-11 16:07:14 +0100[diff] [blame]463
464exit:
465 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
466}
467/* END_CASE */
468
469/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]470void mbedtls_mpi_cmp_abs( int radix_X, char * input_X, int radix_Y,
471 char * input_Y, int input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]472{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]473 mbedtls_mpi X, Y;
474 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]475
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]476 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
477 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]478 TEST_ASSERT( mbedtls_mpi_cmp_abs( &X, &Y ) == input_A );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]479
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]480exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]481 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]482}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]483/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]484
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]485/* BEGIN_CASE */
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]486void mbedtls_mpi_copy_sint( int input_X, int input_Y )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]487{
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]488 mbedtls_mpi X, Y;
489 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]490
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]491 TEST_ASSERT( mbedtls_mpi_lset( &X, input_X ) == 0 );
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]492 TEST_ASSERT( mbedtls_mpi_lset( &Y, input_Y ) == 0 );
493
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]494 TEST_ASSERT( mbedtls_mpi_copy( &Y, &X ) == 0 );
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]495 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, input_X ) == 0 );
496 TEST_ASSERT( mbedtls_mpi_cmp_int( &Y, input_X ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]497
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]498exit:
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]499 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
500}
501/* END_CASE */
502
503/* BEGIN_CASE */
504void mbedtls_mpi_copy_binary( data_t *input_X, data_t *input_Y )
505{
506 mbedtls_mpi X, Y, X0;
507 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &X0 );
508
Gilles Peskine9a6ecee2020-02-03 16:15:47 +0100[diff] [blame]509 TEST_ASSERT( mbedtls_mpi_read_binary( &X, input_X->x, input_X->len ) == 0 );
510 TEST_ASSERT( mbedtls_mpi_read_binary( &Y, input_Y->x, input_Y->len ) == 0 );
511 TEST_ASSERT( mbedtls_mpi_read_binary( &X0, input_X->x, input_X->len ) == 0 );
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]512 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &X0 ) == 0 );
513
514 TEST_ASSERT( mbedtls_mpi_copy( &Y, &X ) == 0 );
515 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &X0 ) == 0 );
516 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &X0 ) == 0 );
517
518exit:
519 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &X0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]520}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]521/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]522
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]523/* BEGIN_CASE */
524void mpi_copy_self( int input_X )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]525{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]526 mbedtls_mpi X;
527 mbedtls_mpi_init( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]528
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]529 TEST_ASSERT( mbedtls_mpi_lset( &X, input_X ) == 0 );
530 TEST_ASSERT( mbedtls_mpi_copy( &X, &X ) == 0 );
531 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, input_X ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]532
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]533exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]534 mbedtls_mpi_free( &X );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]535}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]536/* END_CASE */
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]537
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]538/* BEGIN_CASE */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]539void mbedtls_mpi_shrink( int before, int used, int min, int after )
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]540{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]541 mbedtls_mpi X;
542 mbedtls_mpi_init( &X );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]543
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]544 TEST_ASSERT( mbedtls_mpi_grow( &X, before ) == 0 );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]545 TEST_ASSERT( used <= before );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]546 memset( X.p, 0x2a, used * sizeof( mbedtls_mpi_uint ) );
547 TEST_ASSERT( mbedtls_mpi_shrink( &X, min ) == 0 );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]548 TEST_ASSERT( X.n == (size_t) after );
549
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]550exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]551 mbedtls_mpi_free( &X );
Manuel Pégourié-Gonnard58681632013-11-21 10:39:37 +0100[diff] [blame]552}
553/* END_CASE */
554
555/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]556void mbedtls_mpi_safe_cond_assign( int x_sign, char * x_str, int y_sign,
557 char * y_str )
Manuel Pégourié-Gonnard71c2c212013-11-21 16:56:39 +0100[diff] [blame]558{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]559 mbedtls_mpi X, Y, XX;
560 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &XX );
Manuel Pégourié-Gonnard71c2c212013-11-21 16:56:39 +0100[diff] [blame]561
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]562 TEST_ASSERT( mbedtls_test_read_mpi( &X, 16, x_str ) == 0 );
Manuel Pégourié-Gonnard3e3d2b82013-11-21 21:12:26 +0100[diff] [blame]563 X.s = x_sign;
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]564 TEST_ASSERT( mbedtls_test_read_mpi( &Y, 16, y_str ) == 0 );
Manuel Pégourié-Gonnard3e3d2b82013-11-21 21:12:26 +0100[diff] [blame]565 Y.s = y_sign;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]566 TEST_ASSERT( mbedtls_mpi_copy( &XX, &X ) == 0 );
Manuel Pégourié-Gonnard71c2c212013-11-21 16:56:39 +0100[diff] [blame]567
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]568 TEST_ASSERT( mbedtls_mpi_safe_cond_assign( &X, &Y, 0 ) == 0 );
569 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &XX ) == 0 );
Manuel Pégourié-Gonnard71c2c212013-11-21 16:56:39 +0100[diff] [blame]570
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]571 TEST_ASSERT( mbedtls_mpi_safe_cond_assign( &X, &Y, 1 ) == 0 );
572 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y ) == 0 );
Manuel Pégourié-Gonnard71c2c212013-11-21 16:56:39 +0100[diff] [blame]573
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]574exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]575 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &XX );
Manuel Pégourié-Gonnard71c2c212013-11-21 16:56:39 +0100[diff] [blame]576}
577/* END_CASE */
578
579/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]580void mbedtls_mpi_safe_cond_swap( int x_sign, char * x_str, int y_sign,
581 char * y_str )
Manuel Pégourié-Gonnarda60fe892013-12-04 21:41:50 +0100[diff] [blame]582{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]583 mbedtls_mpi X, Y, XX, YY;
Manuel Pégourié-Gonnarda60fe892013-12-04 21:41:50 +0100[diff] [blame]584
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]585 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
586 mbedtls_mpi_init( &XX ); mbedtls_mpi_init( &YY );
Manuel Pégourié-Gonnarda60fe892013-12-04 21:41:50 +0100[diff] [blame]587
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]588 TEST_ASSERT( mbedtls_test_read_mpi( &X, 16, x_str ) == 0 );
Manuel Pégourié-Gonnarda60fe892013-12-04 21:41:50 +0100[diff] [blame]589 X.s = x_sign;
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]590 TEST_ASSERT( mbedtls_test_read_mpi( &Y, 16, y_str ) == 0 );
Manuel Pégourié-Gonnarda60fe892013-12-04 21:41:50 +0100[diff] [blame]591 Y.s = y_sign;
592
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]593 TEST_ASSERT( mbedtls_mpi_copy( &XX, &X ) == 0 );
594 TEST_ASSERT( mbedtls_mpi_copy( &YY, &Y ) == 0 );
Manuel Pégourié-Gonnarda60fe892013-12-04 21:41:50 +0100[diff] [blame]595
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]596 TEST_ASSERT( mbedtls_mpi_safe_cond_swap( &X, &Y, 0 ) == 0 );
597 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &XX ) == 0 );
598 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &YY ) == 0 );
Manuel Pégourié-Gonnarda60fe892013-12-04 21:41:50 +0100[diff] [blame]599
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]600 TEST_ASSERT( mbedtls_mpi_safe_cond_swap( &X, &Y, 1 ) == 0 );
601 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &XX ) == 0 );
602 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &YY ) == 0 );
Manuel Pégourié-Gonnarda60fe892013-12-04 21:41:50 +0100[diff] [blame]603
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]604exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]605 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
606 mbedtls_mpi_free( &XX ); mbedtls_mpi_free( &YY );
Manuel Pégourié-Gonnarda60fe892013-12-04 21:41:50 +0100[diff] [blame]607}
608/* END_CASE */
609
610/* BEGIN_CASE */
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]611void mbedtls_mpi_swap_sint( int input_X, int input_Y )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]612{
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]613 mbedtls_mpi X, Y;
614 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]615
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]616 TEST_ASSERT( mbedtls_mpi_lset( &X, input_X ) == 0 );
617 TEST_ASSERT( mbedtls_mpi_lset( &Y, input_Y ) == 0 );
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]618 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, input_X ) == 0 );
619 TEST_ASSERT( mbedtls_mpi_cmp_int( &Y, input_Y ) == 0 );
620
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]621 mbedtls_mpi_swap( &X, &Y );
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]622 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, input_Y ) == 0 );
623 TEST_ASSERT( mbedtls_mpi_cmp_int( &Y, input_X ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]624
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]625exit:
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]626 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
627}
628/* END_CASE */
629
630/* BEGIN_CASE */
631void mbedtls_mpi_swap_binary( data_t *input_X, data_t *input_Y )
632{
633 mbedtls_mpi X, Y, X0, Y0;
634 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y );
635 mbedtls_mpi_init( &X0 ); mbedtls_mpi_init( &Y0 );
636
Gilles Peskine9a6ecee2020-02-03 16:15:47 +0100[diff] [blame]637 TEST_ASSERT( mbedtls_mpi_read_binary( &X, input_X->x, input_X->len ) == 0 );
638 TEST_ASSERT( mbedtls_mpi_read_binary( &Y, input_Y->x, input_Y->len ) == 0 );
639 TEST_ASSERT( mbedtls_mpi_read_binary( &X0, input_X->x, input_X->len ) == 0 );
640 TEST_ASSERT( mbedtls_mpi_read_binary( &Y0, input_Y->x, input_Y->len ) == 0 );
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]641
642 mbedtls_mpi_swap( &X, &Y );
643 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &Y0 ) == 0 );
644 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &X0 ) == 0 );
645
646exit:
647 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y );
648 mbedtls_mpi_free( &X0 ); mbedtls_mpi_free( &Y0 );
649}
650/* END_CASE */
651
652/* BEGIN_CASE */
653void mpi_swap_self( data_t *input_X )
654{
655 mbedtls_mpi X, X0;
656 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &X0 );
657
Gilles Peskine9a6ecee2020-02-03 16:15:47 +0100[diff] [blame]658 TEST_ASSERT( mbedtls_mpi_read_binary( &X, input_X->x, input_X->len ) == 0 );
659 TEST_ASSERT( mbedtls_mpi_read_binary( &X0, input_X->x, input_X->len ) == 0 );
Gilles Peskine7428b452020-01-20 21:01:51 +0100[diff] [blame]660
661 mbedtls_mpi_swap( &X, &X );
662 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &X0 ) == 0 );
663
664exit:
665 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &X0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]666}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]667/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]668
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]669/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]670void mbedtls_mpi_add_mpi( int radix_X, char * input_X, int radix_Y,
671 char * input_Y, int radix_A, char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]672{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]673 mbedtls_mpi X, Y, Z, A;
674 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]675
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]676 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
677 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
678 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]679 TEST_ASSERT( mbedtls_mpi_add_mpi( &Z, &X, &Y ) == 0 );
680 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]681
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]682 /* result == first operand */
683 TEST_ASSERT( mbedtls_mpi_add_mpi( &X, &X, &Y ) == 0 );
684 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]685 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]686
687 /* result == second operand */
688 TEST_ASSERT( mbedtls_mpi_add_mpi( &Y, &X, &Y ) == 0 );
689 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
690
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]691exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]692 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]693}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]694/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]695
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]696/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]697void mbedtls_mpi_add_mpi_inplace( int radix_X, char * input_X, int radix_A,
698 char * input_A )
Janos Follath044a86b2015-10-25 10:58:03 +0100[diff] [blame]699{
700 mbedtls_mpi X, A;
701 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &A );
702
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]703 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]704
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]705 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]706 TEST_ASSERT( mbedtls_mpi_sub_abs( &X, &X, &X ) == 0 );
707 TEST_ASSERT( mbedtls_mpi_cmp_int( &X, 0 ) == 0 );
708
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]709 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Janos Follath6cbacec2015-10-25 12:29:13 +0100[diff] [blame]710 TEST_ASSERT( mbedtls_mpi_add_abs( &X, &X, &X ) == 0 );
711 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
712
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]713 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Janos Follath044a86b2015-10-25 10:58:03 +0100[diff] [blame]714 TEST_ASSERT( mbedtls_mpi_add_mpi( &X, &X, &X ) == 0 );
715 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
716
717exit:
718 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &A );
719}
720/* END_CASE */
721
722
723/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]724void mbedtls_mpi_add_abs( int radix_X, char * input_X, int radix_Y,
725 char * input_Y, int radix_A, char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]726{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]727 mbedtls_mpi X, Y, Z, A;
728 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]729
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]730 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
731 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
732 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]733 TEST_ASSERT( mbedtls_mpi_add_abs( &Z, &X, &Y ) == 0 );
734 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]735
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]736 /* result == first operand */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]737 TEST_ASSERT( mbedtls_mpi_add_abs( &X, &X, &Y ) == 0 );
738 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]739 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]740
741 /* result == second operand */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]742 TEST_ASSERT( mbedtls_mpi_add_abs( &Y, &X, &Y ) == 0 );
743 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]744
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]745exit:
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]746 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]747}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]748/* END_CASE */
Paul Bakkerba48cb22009-07-12 11:01:32 +0000[diff] [blame]749
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]750/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]751void mbedtls_mpi_add_int( int radix_X, char * input_X, int input_Y,
752 int radix_A, char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]753{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]754 mbedtls_mpi X, Z, A;
755 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]756
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]757 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
758 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]759 TEST_ASSERT( mbedtls_mpi_add_int( &Z, &X, input_Y ) == 0 );
760 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]761
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]762exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]763 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]764}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]765/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]766
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]767/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]768void mbedtls_mpi_sub_mpi( int radix_X, char * input_X, int radix_Y,
769 char * input_Y, int radix_A, char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]770{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]771 mbedtls_mpi X, Y, Z, A;
772 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]773
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]774 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
775 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
776 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]777 TEST_ASSERT( mbedtls_mpi_sub_mpi( &Z, &X, &Y ) == 0 );
778 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]779
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]780 /* result == first operand */
781 TEST_ASSERT( mbedtls_mpi_sub_mpi( &X, &X, &Y ) == 0 );
782 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]783 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]784
785 /* result == second operand */
786 TEST_ASSERT( mbedtls_mpi_sub_mpi( &Y, &X, &Y ) == 0 );
787 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
788
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]789exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]790 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]791}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]792/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]793
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]794/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]795void mbedtls_mpi_sub_abs( int radix_X, char * input_X, int radix_Y,
796 char * input_Y, int radix_A, char * input_A,
797 int sub_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]798{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]799 mbedtls_mpi X, Y, Z, A;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]800 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]801 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]802
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]803 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
804 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
805 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnarde670f902015-10-30 09:23:19 +0100[diff] [blame]806
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]807 res = mbedtls_mpi_sub_abs( &Z, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]808 TEST_ASSERT( res == sub_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]809 if( res == 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]810 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]811
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]812 /* result == first operand */
813 TEST_ASSERT( mbedtls_mpi_sub_abs( &X, &X, &Y ) == sub_result );
814 if( sub_result == 0 )
815 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]816 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Gilles Peskine56f943a2020-07-23 01:18:11 +0200[diff] [blame]817
818 /* result == second operand */
819 TEST_ASSERT( mbedtls_mpi_sub_abs( &Y, &X, &Y ) == sub_result );
820 if( sub_result == 0 )
821 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Y, &A ) == 0 );
822
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]823exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]824 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]825}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]826/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]827
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]828/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]829void mbedtls_mpi_sub_int( int radix_X, char * input_X, int input_Y,
830 int radix_A, char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]831{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]832 mbedtls_mpi X, Z, A;
833 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]834
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]835 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
836 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]837 TEST_ASSERT( mbedtls_mpi_sub_int( &Z, &X, input_Y ) == 0 );
838 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]839
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]840exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]841 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]842}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]843/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]844
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]845/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]846void mbedtls_mpi_mul_mpi( int radix_X, char * input_X, int radix_Y,
847 char * input_Y, int radix_A, char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]848{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]849 mbedtls_mpi X, Y, Z, A;
850 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]851
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]852 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
853 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
854 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]855 TEST_ASSERT( mbedtls_mpi_mul_mpi( &Z, &X, &Y ) == 0 );
856 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]857
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]858exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]859 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]860}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]861/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]862
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]863/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]864void mbedtls_mpi_mul_int( int radix_X, char * input_X, int input_Y,
865 int radix_A, char * input_A,
866 char * result_comparison )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]867{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]868 mbedtls_mpi X, Z, A;
869 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]870
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]871 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
872 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]873 TEST_ASSERT( mbedtls_mpi_mul_int( &Z, &X, input_Y ) == 0 );
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]874 if( strcmp( result_comparison, "==" ) == 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]875 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]876 else if( strcmp( result_comparison, "!=" ) == 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]877 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) != 0 );
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]878 else
879 TEST_ASSERT( "unknown operator" == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]880
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]881exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]882 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]883}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]884/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]885
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]886/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]887void mbedtls_mpi_div_mpi( int radix_X, char * input_X, int radix_Y,
888 char * input_Y, int radix_A, char * input_A,
889 int radix_B, char * input_B, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]890{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]891 mbedtls_mpi X, Y, Q, R, A, B;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]892 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]893 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &R );
894 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]895
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]896 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
897 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
898 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
899 TEST_ASSERT( mbedtls_test_read_mpi( &B, radix_B, input_B ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]900 res = mbedtls_mpi_div_mpi( &Q, &R, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]901 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]902 if( res == 0 )
903 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]904 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Q, &A ) == 0 );
905 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &R, &B ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]906 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]907
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]908exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]909 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &R );
910 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]911}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]912/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]913
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]914/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]915void mbedtls_mpi_div_int( int radix_X, char * input_X, int input_Y,
916 int radix_A, char * input_A, int radix_B,
917 char * input_B, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]918{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]919 mbedtls_mpi X, Q, R, A, B;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]920 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]921 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &R ); mbedtls_mpi_init( &A );
922 mbedtls_mpi_init( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]923
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]924 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
925 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
926 TEST_ASSERT( mbedtls_test_read_mpi( &B, radix_B, input_B ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]927 res = mbedtls_mpi_div_int( &Q, &R, &X, input_Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]928 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]929 if( res == 0 )
930 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]931 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Q, &A ) == 0 );
932 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &R, &B ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]933 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]934
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]935exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]936 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &R ); mbedtls_mpi_free( &A );
937 mbedtls_mpi_free( &B );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]938}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]939/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]940
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]941/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]942void mbedtls_mpi_mod_mpi( int radix_X, char * input_X, int radix_Y,
943 char * input_Y, int radix_A, char * input_A,
944 int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]945{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]946 mbedtls_mpi X, Y, A;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]947 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]948 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]949
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]950 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
951 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
952 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]953 res = mbedtls_mpi_mod_mpi( &X, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]954 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]955 if( res == 0 )
956 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]957 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]958 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]959
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]960exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]961 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]962}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]963/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]964
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]965/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]966void mbedtls_mpi_mod_int( int radix_X, char * input_X, int input_Y,
967 int input_A, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]968{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]969 mbedtls_mpi X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]970 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]971 mbedtls_mpi_uint r;
972 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]973
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]974 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]975 res = mbedtls_mpi_mod_int( &r, &X, input_Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]976 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]977 if( res == 0 )
978 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]979 TEST_ASSERT( r == (mbedtls_mpi_uint) input_A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]980 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]981
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]982exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]983 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]984}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]985/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]986
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]987/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]988void mbedtls_mpi_exp_mod( int radix_A, char * input_A, int radix_E,
989 char * input_E, int radix_N, char * input_N,
990 int radix_RR, char * input_RR, int radix_X,
991 char * input_X, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]992{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]993 mbedtls_mpi A, E, N, RR, Z, X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]994 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]995 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &E ); mbedtls_mpi_init( &N );
996 mbedtls_mpi_init( &RR ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]997
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]998 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
999 TEST_ASSERT( mbedtls_test_read_mpi( &E, radix_E, input_E ) == 0 );
1000 TEST_ASSERT( mbedtls_test_read_mpi( &N, radix_N, input_N ) == 0 );
1001 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1002
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1003 if( strlen( input_RR ) )
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]1004 TEST_ASSERT( mbedtls_test_read_mpi( &RR, radix_RR, input_RR ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1005
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1006 res = mbedtls_mpi_exp_mod( &Z, &A, &E, &N, &RR );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1007 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1008 if( res == 0 )
1009 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1010 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &X ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1011 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1012
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1013exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1014 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &E ); mbedtls_mpi_free( &N );
1015 mbedtls_mpi_free( &RR ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1016}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1017/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1018
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1019/* BEGIN_CASE */
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1020void mbedtls_mpi_exp_mod_size( int A_bytes, int E_bytes, int N_bytes,
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1021 int radix_RR, char * input_RR, int exp_result )
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1022{
1023 mbedtls_mpi A, E, N, RR, Z;
1024 mbedtls_mpi_init( &A ); mbedtls_mpi_init( &E ); mbedtls_mpi_init( &N );
1025 mbedtls_mpi_init( &RR ); mbedtls_mpi_init( &Z );
1026
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1027 /* Set A to 2^(A_bytes - 1) + 1 */
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1028 TEST_ASSERT( mbedtls_mpi_lset( &A, 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1029 TEST_ASSERT( mbedtls_mpi_shift_l( &A, ( A_bytes * 8 ) - 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1030 TEST_ASSERT( mbedtls_mpi_set_bit( &A, 0, 1 ) == 0 );
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1031
1032 /* Set E to 2^(E_bytes - 1) + 1 */
1033 TEST_ASSERT( mbedtls_mpi_lset( &E, 1 ) == 0 );
1034 TEST_ASSERT( mbedtls_mpi_shift_l( &E, ( E_bytes * 8 ) - 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1035 TEST_ASSERT( mbedtls_mpi_set_bit( &E, 0, 1 ) == 0 );
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1036
1037 /* Set N to 2^(N_bytes - 1) + 1 */
1038 TEST_ASSERT( mbedtls_mpi_lset( &N, 1 ) == 0 );
1039 TEST_ASSERT( mbedtls_mpi_shift_l( &N, ( N_bytes * 8 ) - 1 ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1040 TEST_ASSERT( mbedtls_mpi_set_bit( &N, 0, 1 ) == 0 );
1041
1042 if( strlen( input_RR ) )
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]1043 TEST_ASSERT( mbedtls_test_read_mpi( &RR, radix_RR, input_RR ) == 0 );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1044
Chris Jonesaa850cd2020-12-03 11:35:41 +0000[diff] [blame]1045 TEST_ASSERT( mbedtls_mpi_exp_mod( &Z, &A, &E, &N, &RR ) == exp_result );
Chris Jonesd10b3312020-12-02 10:41:50 +0000[diff] [blame]1046
1047exit:
1048 mbedtls_mpi_free( &A ); mbedtls_mpi_free( &E ); mbedtls_mpi_free( &N );
1049 mbedtls_mpi_free( &RR ); mbedtls_mpi_free( &Z );
1050}
1051/* END_CASE */
1052
1053/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]1054void mbedtls_mpi_inv_mod( int radix_X, char * input_X, int radix_Y,
1055 char * input_Y, int radix_A, char * input_A,
1056 int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1057{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1058 mbedtls_mpi X, Y, Z, A;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1059 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1060 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &Y ); mbedtls_mpi_init( &Z ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1061
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]1062 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
1063 TEST_ASSERT( mbedtls_test_read_mpi( &Y, radix_Y, input_Y ) == 0 );
1064 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1065 res = mbedtls_mpi_inv_mod( &Z, &X, &Y );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1066 TEST_ASSERT( res == div_result );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1067 if( res == 0 )
1068 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1069 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &Z, &A ) == 0 );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1070 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1071
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1072exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1073 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &Y ); mbedtls_mpi_free( &Z ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1074}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1075/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1076
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1077/* BEGIN_CASE depends_on:MBEDTLS_GENPRIME */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]1078void mbedtls_mpi_is_prime( int radix_X, char * input_X, int div_result )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1079{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1080 mbedtls_mpi X;
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1081 int res;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1082 mbedtls_mpi_init( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1083
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]1084 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]1085 res = mbedtls_mpi_is_prime_ext( &X, 40, mbedtls_test_rnd_std_rand, NULL );
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1086 TEST_ASSERT( res == div_result );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1087
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1088exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1089 mbedtls_mpi_free( &X );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1090}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1091/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1092
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1093/* BEGIN_CASE depends_on:MBEDTLS_GENPRIME */
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1094void mbedtls_mpi_is_prime_det( data_t * input_X, data_t * witnesses,
Darryl Greenac2ead02018-10-02 15:30:39 +0100[diff] [blame]1095 int chunk_len, int rounds )
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1096{
1097 mbedtls_mpi X;
1098 int res;
1099 mbedtls_test_mpi_random rand;
1100
1101 mbedtls_mpi_init( &X );
1102 rand.data = witnesses;
1103 rand.pos = 0;
1104 rand.chunk_len = chunk_len;
1105
1106 TEST_ASSERT( mbedtls_mpi_read_binary( &X, input_X->x, input_X->len ) == 0 );
Darryl Greenac2ead02018-10-02 15:30:39 +0100[diff] [blame]1107 res = mbedtls_mpi_is_prime_ext( &X, rounds - 1,
1108 mbedtls_test_mpi_miller_rabin_determinizer,
1109 &rand );
1110 TEST_ASSERT( res == 0 );
1111
1112 rand.data = witnesses;
1113 rand.pos = 0;
1114 rand.chunk_len = chunk_len;
1115
Janos Follatha0b67c22018-09-18 14:48:23 +0100[diff] [blame]1116 res = mbedtls_mpi_is_prime_ext( &X, rounds,
1117 mbedtls_test_mpi_miller_rabin_determinizer,
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1118 &rand );
Darryl Greenac2ead02018-10-02 15:30:39 +0100[diff] [blame]1119 TEST_ASSERT( res == MBEDTLS_ERR_MPI_NOT_ACCEPTABLE );
Janos Follath64eca052018-09-05 17:04:49 +0100[diff] [blame]1120
1121exit:
1122 mbedtls_mpi_free( &X );
1123}
1124/* END_CASE */
1125
1126/* BEGIN_CASE depends_on:MBEDTLS_GENPRIME */
Janos Follatha3cb7eb2018-08-14 15:31:54 +0100[diff] [blame]1127void mbedtls_mpi_gen_prime( int bits, int flags, int ref_ret )
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1128{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1129 mbedtls_mpi X;
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1130 int my_ret;
1131
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1132 mbedtls_mpi_init( &X );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1133
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]1134 my_ret = mbedtls_mpi_gen_prime( &X, bits, flags,
1135 mbedtls_test_rnd_std_rand, NULL );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1136 TEST_ASSERT( my_ret == ref_ret );
1137
1138 if( ref_ret == 0 )
1139 {
Manuel Pégourié-Gonnardc0696c22015-06-18 16:47:17 +0200[diff] [blame]1140 size_t actual_bits = mbedtls_mpi_bitlen( &X );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1141
1142 TEST_ASSERT( actual_bits >= (size_t) bits );
1143 TEST_ASSERT( actual_bits <= (size_t) bits + 1 );
1144
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]1145 TEST_ASSERT( mbedtls_mpi_is_prime_ext( &X, 40,
1146 mbedtls_test_rnd_std_rand,
1147 NULL ) == 0 );
Janos Follatha3cb7eb2018-08-14 15:31:54 +0100[diff] [blame]1148 if( flags & MBEDTLS_MPI_GEN_PRIME_FLAG_DH )
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1149 {
Hanno Beckerd4d60572018-01-10 07:12:01 +0000[diff] [blame]1150 /* X = ( X - 1 ) / 2 */
1151 TEST_ASSERT( mbedtls_mpi_shift_r( &X, 1 ) == 0 );
Ronald Cron6c5bd7f2020-06-10 14:08:26 +0200[diff] [blame]1152 TEST_ASSERT( mbedtls_mpi_is_prime_ext( &X, 40,
1153 mbedtls_test_rnd_std_rand,
1154 NULL ) == 0 );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1155 }
1156 }
1157
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1158exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1159 mbedtls_mpi_free( &X );
Manuel Pégourié-Gonnard15f58a82014-06-16 17:12:40 +0200[diff] [blame]1160}
1161/* END_CASE */
1162
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1163/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]1164void mbedtls_mpi_shift_l( int radix_X, char * input_X, int shift_X,
1165 int radix_A, char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1166{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1167 mbedtls_mpi X, A;
1168 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1169
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]1170 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
1171 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1172 TEST_ASSERT( mbedtls_mpi_shift_l( &X, shift_X ) == 0 );
1173 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1174
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1175exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1176 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1177}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1178/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1179
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1180/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]1181void mbedtls_mpi_shift_r( int radix_X, char * input_X, int shift_X,
1182 int radix_A, char * input_A )
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1183{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1184 mbedtls_mpi X, A;
1185 mbedtls_mpi_init( &X ); mbedtls_mpi_init( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1186
Gilles Peskine20edee72021-06-10 23:18:39 +0200[diff] [blame^]1187 TEST_ASSERT( mbedtls_test_read_mpi( &X, radix_X, input_X ) == 0 );
1188 TEST_ASSERT( mbedtls_test_read_mpi( &A, radix_A, input_A ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1189 TEST_ASSERT( mbedtls_mpi_shift_r( &X, shift_X ) == 0 );
1190 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &X, &A ) == 0 );
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]1191
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]1192exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1193 mbedtls_mpi_free( &X ); mbedtls_mpi_free( &A );
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1194}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1195/* END_CASE */
Paul Bakker367dae42009-06-28 21:50:27 +0000[diff] [blame]1196
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1197/* BEGIN_CASE */
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1198void mpi_fill_random( int wanted_bytes, int rng_bytes,
1199 int before, int expected_ret )
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1200{
1201 mbedtls_mpi X;
1202 int ret;
1203 size_t bytes_left = rng_bytes;
1204 mbedtls_mpi_init( &X );
1205
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1206 if( before != 0 )
1207 {
1208 /* Set X to sign(before) * 2^(|before|-1) */
1209 TEST_ASSERT( mbedtls_mpi_lset( &X, before > 0 ? 1 : -1 ) == 0 );
1210 if( before < 0 )
1211 before = - before;
1212 TEST_ASSERT( mbedtls_mpi_shift_l( &X, before - 1 ) == 0 );
1213 }
1214
Gilles Peskine3cb1e292020-11-25 15:37:20 +0100[diff] [blame]1215 ret = mbedtls_mpi_fill_random( &X, wanted_bytes,
1216 f_rng_bytes_left, &bytes_left );
1217 TEST_ASSERT( ret == expected_ret );
1218
1219 if( expected_ret == 0 )
1220 {
1221 /* mbedtls_mpi_fill_random is documented to use bytes from the RNG
1222 * as a big-endian representation of the number. We know when
1223 * our RNG function returns null bytes, so we know how many
1224 * leading zero bytes the number has. */
1225 size_t leading_zeros = 0;
1226 if( wanted_bytes > 0 && rng_bytes % 256 == 0 )
1227 leading_zeros = 1;
1228 TEST_ASSERT( mbedtls_mpi_size( &X ) + leading_zeros ==
1229 (size_t) wanted_bytes );
1230 TEST_ASSERT( (int) bytes_left == rng_bytes - wanted_bytes );
1231 }
1232
1233exit:
1234 mbedtls_mpi_free( &X );
1235}
1236/* END_CASE */
1237
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1238/* BEGIN_CASE */
1239void mpi_random_many( int min, data_t *bound_bytes, int iterations )
1240{
1241 /* Generate numbers in the range 1..bound-1. Do it iterations times.
1242 * This function assumes that the value of bound is at least 2 and
1243 * that iterations is large enough that a one-in-2^iterations chance
1244 * effectively never occurs.
1245 */
1246
1247 mbedtls_mpi upper_bound;
1248 size_t n_bits;
1249 mbedtls_mpi result;
1250 size_t b;
1251 /* If upper_bound is small, stats[b] is the number of times the value b
1252 * has been generated. Otherwise stats[b] is the number of times a
1253 * value with bit b set has been generated. */
1254 size_t *stats = NULL;
1255 size_t stats_len;
1256 int full_stats;
1257 size_t i;
1258
1259 mbedtls_mpi_init( &upper_bound );
1260 mbedtls_mpi_init( &result );
1261
1262 TEST_EQUAL( 0, mbedtls_mpi_read_binary( &upper_bound,
1263 bound_bytes->x, bound_bytes->len ) );
1264 n_bits = mbedtls_mpi_bitlen( &upper_bound );
1265 /* Consider a bound "small" if it's less than 2^5. This value is chosen
1266 * to be small enough that the probability of missing one value is
1267 * negligible given the number of iterations. It must be less than
1268 * 256 because some of the code below assumes that "small" values
1269 * fit in a byte. */
1270 if( n_bits <= 5 )
1271 {
1272 full_stats = 1;
1273 stats_len = bound_bytes->x[bound_bytes->len - 1];
1274 }
1275 else
1276 {
1277 full_stats = 0;
1278 stats_len = n_bits;
1279 }
1280 ASSERT_ALLOC( stats, stats_len );
1281
1282 for( i = 0; i < (size_t) iterations; i++ )
1283 {
1284 mbedtls_test_set_step( i );
1285 TEST_EQUAL( 0, mbedtls_mpi_random( &result, min, &upper_bound,
1286 mbedtls_test_rnd_std_rand, NULL ) );
1287
1288 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &result, &upper_bound ) < 0 );
1289 TEST_ASSERT( mbedtls_mpi_cmp_int( &result, min ) >= 0 );
1290 if( full_stats )
1291 {
1292 uint8_t value;
1293 TEST_EQUAL( 0, mbedtls_mpi_write_binary( &result, &value, 1 ) );
1294 TEST_ASSERT( value < stats_len );
1295 ++stats[value];
1296 }
1297 else
1298 {
1299 for( b = 0; b < n_bits; b++ )
1300 stats[b] += mbedtls_mpi_get_bit( &result, b );
1301 }
1302 }
1303
1304 if( full_stats )
1305 {
Gilles Peskined463edf2021-04-13 20:45:05 +0200[diff] [blame]1306 for( b = min; b < stats_len; b++ )
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1307 {
1308 mbedtls_test_set_step( 1000000 + b );
1309 /* Assert that each value has been reached at least once.
1310 * This is almost guaranteed if the iteration count is large
1311 * enough. This is a very crude way of checking the distribution.
1312 */
1313 TEST_ASSERT( stats[b] > 0 );
1314 }
1315 }
1316 else
1317 {
Gilles Peskineceefe5d2021-06-02 21:24:04 +0200[diff] [blame]1318 int statistically_safe_all_the_way =
1319 is_significantly_above_a_power_of_2( bound_bytes );
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1320 for( b = 0; b < n_bits; b++ )
1321 {
1322 mbedtls_test_set_step( 1000000 + b );
1323 /* Assert that each bit has been set in at least one result and
1324 * clear in at least one result. Provided that iterations is not
1325 * too small, it would be extremely unlikely for this not to be
1326 * the case if the results are uniformly distributed.
1327 *
1328 * As an exception, the top bit may legitimately never be set
1329 * if bound is a power of 2 or only slightly above.
1330 */
Gilles Peskineceefe5d2021-06-02 21:24:04 +0200[diff] [blame]1331 if( statistically_safe_all_the_way || b != n_bits - 1 )
Gilles Peskine02ac93a2021-03-29 22:02:55 +0200[diff] [blame]1332 {
1333 TEST_ASSERT( stats[b] > 0 );
1334 }
1335 TEST_ASSERT( stats[b] < (size_t) iterations );
1336 }
1337 }
1338
1339exit:
1340 mbedtls_mpi_free( &upper_bound );
1341 mbedtls_mpi_free( &result );
1342 mbedtls_free( stats );
1343}
1344/* END_CASE */
1345
Gilles Peskine1e918f42021-03-29 22:14:51 +0200[diff] [blame]1346/* BEGIN_CASE */
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1347void mpi_random_sizes( int min, data_t *bound_bytes, int nlimbs, int before )
Gilles Peskine1a7df4e2021-04-01 15:57:18 +0200[diff] [blame]1348{
1349 mbedtls_mpi upper_bound;
1350 mbedtls_mpi result;
1351
1352 mbedtls_mpi_init( &upper_bound );
1353 mbedtls_mpi_init( &result );
1354
Gilles Peskine422e8672021-04-02 00:02:27 +0200[diff] [blame]1355 if( before != 0 )
1356 {
1357 /* Set result to sign(before) * 2^(|before|-1) */
1358 TEST_ASSERT( mbedtls_mpi_lset( &result, before > 0 ? 1 : -1 ) == 0 );
1359 if( before < 0 )
1360 before = - before;
1361 TEST_ASSERT( mbedtls_mpi_shift_l( &result, before - 1 ) == 0 );
1362 }
1363
Gilles Peskine1a7df4e2021-04-01 15:57:18 +0200[diff] [blame]1364 TEST_EQUAL( 0, mbedtls_mpi_grow( &result, nlimbs ) );
1365 TEST_EQUAL( 0, mbedtls_mpi_read_binary( &upper_bound,
1366 bound_bytes->x, bound_bytes->len ) );
1367 TEST_EQUAL( 0, mbedtls_mpi_random( &result, min, &upper_bound,
1368 mbedtls_test_rnd_std_rand, NULL ) );
1369 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &result, &upper_bound ) < 0 );
1370 TEST_ASSERT( mbedtls_mpi_cmp_int( &result, min ) >= 0 );
1371
1372exit:
1373 mbedtls_mpi_free( &upper_bound );
1374 mbedtls_mpi_free( &result );
1375}
1376/* END_CASE */
1377
1378/* BEGIN_CASE */
Gilles Peskine1e918f42021-03-29 22:14:51 +0200[diff] [blame]1379void mpi_random_fail( int min, data_t *bound_bytes, int expected_ret )
1380{
1381 mbedtls_mpi upper_bound;
1382 mbedtls_mpi result;
1383 int actual_ret;
1384
1385 mbedtls_mpi_init( &upper_bound );
1386 mbedtls_mpi_init( &result );
1387
1388 TEST_EQUAL( 0, mbedtls_mpi_read_binary( &upper_bound,
1389 bound_bytes->x, bound_bytes->len ) );
1390 actual_ret = mbedtls_mpi_random( &result, min, &upper_bound,
1391 mbedtls_test_rnd_std_rand, NULL );
1392 TEST_EQUAL( expected_ret, actual_ret );
1393
1394exit:
1395 mbedtls_mpi_free( &upper_bound );
1396 mbedtls_mpi_free( &result );
1397}
1398/* END_CASE */
1399
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]1400/* BEGIN_CASE depends_on:MBEDTLS_SELF_TEST */
Azim Khanf1aaec92017-05-30 14:23:15 +0100[diff] [blame]1401void mpi_selftest( )
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]1402{
Andres AG93012e82016-09-09 09:10:28 +0100[diff] [blame]1403 TEST_ASSERT( mbedtls_mpi_self_test( 1 ) == 0 );
Paul Bakkere896fea2009-07-06 06:40:23 +0000[diff] [blame]1404}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1405/* END_CASE */