blob: 78d806689af370791d6f212ff78fa06f7cd9727c [file] [log] [blame]
Paul Bakker33b43f12013-08-20 11:48:36 +02001/* BEGIN_HEADER */
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +00002#include "mbedtls/rsa.h"
3#include "mbedtls/md.h"
Paul Bakker33b43f12013-08-20 11:48:36 +02004/* END_HEADER */
Paul Bakker9dcc3222011-03-08 14:16:06 +00005
Paul Bakker33b43f12013-08-20 11:48:36 +02006/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +02007 * depends_on:MBEDTLS_PKCS1_V21:MBEDTLS_RSA_C:MBEDTLS_SHA1_C
Paul Bakker33b43f12013-08-20 11:48:36 +02008 * END_DEPENDENCIES
9 */
Paul Bakker5690efc2011-05-26 13:16:06 +000010
Paul Bakker33b43f12013-08-20 11:48:36 +020011/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +010012void pkcs1_rsaes_oaep_encrypt( int mod, int radix_N, char * input_N,
13 int radix_E, char * input_E, int hash,
Azim Khan5fcca462018-06-29 11:05:32 +010014 data_t * message_str, data_t * rnd_buf,
15 data_t * result_hex_str, int result )
Paul Bakker9dcc3222011-03-08 14:16:06 +000016{
Ron Eldor5d7254a2018-11-22 15:49:49 +020017 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020018 mbedtls_rsa_context ctx;
Paul Bakker4cce2bb2011-03-13 16:56:35 +000019 rnd_buf_info info;
Hanno Becker6326a6d2017-08-23 06:38:22 +010020 mbedtls_mpi N, E;
Paul Bakker9dcc3222011-03-08 14:16:06 +000021
Azim Khand30ca132017-06-09 04:32:58 +010022 info.buf = rnd_buf->x;
23 info.length = rnd_buf->len;
Paul Bakker9dcc3222011-03-08 14:16:06 +000024
Hanno Becker6326a6d2017-08-23 06:38:22 +010025 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020026 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, hash );
Ron Eldor5d7254a2018-11-22 15:49:49 +020027 memset( output, 0x00, sizeof( output ) );
Paul Bakker9dcc3222011-03-08 14:16:06 +000028
Hanno Becker6326a6d2017-08-23 06:38:22 +010029 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
30 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
31 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
32 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020033 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +000034
Paul Bakker9dcc3222011-03-08 14:16:06 +000035
Azim Khand30ca132017-06-09 04:32:58 +010036 TEST_ASSERT( mbedtls_rsa_pkcs1_encrypt( &ctx, &rnd_buffer_rand, &info, MBEDTLS_RSA_PUBLIC, message_str->len, message_str->x, output ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +020037 if( result == 0 )
Paul Bakker9dcc3222011-03-08 14:16:06 +000038 {
Paul Bakker9dcc3222011-03-08 14:16:06 +000039
Azim Khand30ca132017-06-09 04:32:58 +010040 TEST_ASSERT( hexcmp( output, result_hex_str->x, ctx.len, result_hex_str->len ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +000041 }
Paul Bakker58ef6ec2013-01-03 11:33:48 +010042
Paul Bakkerbd51b262014-07-10 15:26:12 +020043exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +010044 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020045 mbedtls_rsa_free( &ctx );
Paul Bakker9dcc3222011-03-08 14:16:06 +000046}
Paul Bakker33b43f12013-08-20 11:48:36 +020047/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +000048
Paul Bakker33b43f12013-08-20 11:48:36 +020049/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +010050void pkcs1_rsaes_oaep_decrypt( int mod, int radix_P, char * input_P,
51 int radix_Q, char * input_Q, int radix_N,
52 char * input_N, int radix_E, char * input_E,
Azim Khan5fcca462018-06-29 11:05:32 +010053 int hash, data_t * result_hex_str,
54 char * seed, data_t * message_str,
Azim Khand30ca132017-06-09 04:32:58 +010055 int result )
Paul Bakker9dcc3222011-03-08 14:16:06 +000056{
Ron Eldor5d7254a2018-11-22 15:49:49 +020057 unsigned char output[64];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020058 mbedtls_rsa_context ctx;
Paul Bakkerf4a3f302011-04-24 15:53:29 +000059 size_t output_len;
Paul Bakker548957d2013-08-30 10:30:02 +020060 rnd_pseudo_info rnd_info;
Hanno Becker6326a6d2017-08-23 06:38:22 +010061 mbedtls_mpi N, P, Q, E;
Paul Bakkerdbd443d2013-08-16 13:38:47 +020062 ((void) seed);
Paul Bakker9dcc3222011-03-08 14:16:06 +000063
Hanno Becker6326a6d2017-08-23 06:38:22 +010064 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &P );
65 mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &E );
66
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020067 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, hash );
Paul Bakker9dcc3222011-03-08 14:16:06 +000068
Ron Eldor5d7254a2018-11-22 15:49:49 +020069 memset( output, 0x00, sizeof( output ) );
Paul Bakker548957d2013-08-30 10:30:02 +020070 memset( &rnd_info, 0, sizeof( rnd_pseudo_info ) );
Paul Bakker9dcc3222011-03-08 14:16:06 +000071
Hanno Becker6326a6d2017-08-23 06:38:22 +010072 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
73 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
74 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
75 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker548957d2013-08-30 10:30:02 +020076
Hanno Becker6326a6d2017-08-23 06:38:22 +010077 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, &P, &Q, NULL, &E ) == 0 );
78 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Hanno Becker7f25f852017-10-10 16:56:22 +010079 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020080 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +000081
Ron Eldor5d7254a2018-11-22 15:49:49 +020082 TEST_ASSERT( mbedtls_rsa_pkcs1_decrypt( &ctx, &rnd_pseudo_rand, &rnd_info,
83 MBEDTLS_RSA_PRIVATE, &output_len,
84 message_str->x, output,
85 sizeof( output ) ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +020086 if( result == 0 )
Paul Bakker9dcc3222011-03-08 14:16:06 +000087 {
Azim Khand30ca132017-06-09 04:32:58 +010088 TEST_ASSERT( hexcmp( output, result_hex_str->x, output_len, result_hex_str->len ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +000089 }
Paul Bakker6c591fa2011-05-05 11:49:20 +000090
Paul Bakkerbd51b262014-07-10 15:26:12 +020091exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +010092 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &P );
93 mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +020094 mbedtls_rsa_free( &ctx );
Paul Bakker9dcc3222011-03-08 14:16:06 +000095}
Paul Bakker33b43f12013-08-20 11:48:36 +020096/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +000097
Paul Bakker33b43f12013-08-20 11:48:36 +020098/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +010099void pkcs1_rsassa_pss_sign( int mod, int radix_P, char * input_P, int radix_Q,
100 char * input_Q, int radix_N, char * input_N,
101 int radix_E, char * input_E, int digest, int hash,
Azim Khan5fcca462018-06-29 11:05:32 +0100102 data_t * message_str, data_t * rnd_buf,
103 data_t * result_hex_str, int result )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000104{
Ron Eldor5d7254a2018-11-22 15:49:49 +0200105 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
106 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200107 mbedtls_rsa_context ctx;
Paul Bakker4cce2bb2011-03-13 16:56:35 +0000108 rnd_buf_info info;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100109 mbedtls_mpi N, P, Q, E;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000110
Azim Khand30ca132017-06-09 04:32:58 +0100111 info.buf = rnd_buf->x;
112 info.length = rnd_buf->len;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000113
Hanno Becker6326a6d2017-08-23 06:38:22 +0100114 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &P );
115 mbedtls_mpi_init( &Q ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200116 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, hash );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000117
Ron Eldor5d7254a2018-11-22 15:49:49 +0200118 memset( hash_result, 0x00, sizeof( hash_result ) );
119 memset( output, 0x00, sizeof( output ) );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000120
Hanno Becker6326a6d2017-08-23 06:38:22 +0100121 TEST_ASSERT( mbedtls_mpi_read_string( &P, radix_P, input_P ) == 0 );
122 TEST_ASSERT( mbedtls_mpi_read_string( &Q, radix_Q, input_Q ) == 0 );
123 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
124 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000125
Hanno Becker6326a6d2017-08-23 06:38:22 +0100126 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, &P, &Q, NULL, &E ) == 0 );
127 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Hanno Becker7f25f852017-10-10 16:56:22 +0100128 TEST_ASSERT( mbedtls_rsa_complete( &ctx ) == 0 );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200129 TEST_ASSERT( mbedtls_rsa_check_privkey( &ctx ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000130
Paul Bakker9dcc3222011-03-08 14:16:06 +0000131
Hanno Beckera5cedbc2019-07-17 11:21:02 +0100132 if( mbedtls_md_info_from_type( digest ) != MBEDTLS_MD_INVALID_HANDLE )
133 {
Azim Khand30ca132017-06-09 04:32:58 +0100134 TEST_ASSERT( mbedtls_md( mbedtls_md_info_from_type( digest ), message_str->x, message_str->len, hash_result ) == 0 );
Hanno Beckera5cedbc2019-07-17 11:21:02 +0100135 }
Paul Bakker9dcc3222011-03-08 14:16:06 +0000136
Hanno Becker6326a6d2017-08-23 06:38:22 +0100137 TEST_ASSERT( mbedtls_rsa_pkcs1_sign( &ctx, &rnd_buffer_rand, &info, MBEDTLS_RSA_PRIVATE,
138 digest, 0, hash_result, output ) == result );
Paul Bakker33b43f12013-08-20 11:48:36 +0200139 if( result == 0 )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000140 {
Paul Bakker9dcc3222011-03-08 14:16:06 +0000141
Azim Khand30ca132017-06-09 04:32:58 +0100142 TEST_ASSERT( hexcmp( output, result_hex_str->x, ctx.len, result_hex_str->len ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000143 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000144
Paul Bakkerbd51b262014-07-10 15:26:12 +0200145exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +0100146 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &P );
147 mbedtls_mpi_free( &Q ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200148 mbedtls_rsa_free( &ctx );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000149}
Paul Bakker33b43f12013-08-20 11:48:36 +0200150/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000151
Paul Bakker33b43f12013-08-20 11:48:36 +0200152/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100153void pkcs1_rsassa_pss_verify( int mod, int radix_N, char * input_N,
154 int radix_E, char * input_E, int digest,
Azim Khan5fcca462018-06-29 11:05:32 +0100155 int hash, data_t * message_str, char * salt,
156 data_t * result_str, int result )
Paul Bakker9dcc3222011-03-08 14:16:06 +0000157{
Ron Eldor5d7254a2018-11-22 15:49:49 +0200158 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200159 mbedtls_rsa_context ctx;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100160 mbedtls_mpi N, E;
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200161 ((void) salt);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000162
Hanno Becker6326a6d2017-08-23 06:38:22 +0100163 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200164 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, hash );
Ron Eldor5d7254a2018-11-22 15:49:49 +0200165 memset( hash_result, 0x00, sizeof( hash_result ) );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000166
Hanno Becker6326a6d2017-08-23 06:38:22 +0100167 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
168 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000169
Hanno Becker6326a6d2017-08-23 06:38:22 +0100170 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
171 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200172 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000173
Paul Bakker9dcc3222011-03-08 14:16:06 +0000174
Hanno Beckera5cedbc2019-07-17 11:21:02 +0100175 if( mbedtls_md_info_from_type( digest ) != MBEDTLS_MD_INVALID_HANDLE )
176 {
Azim Khand30ca132017-06-09 04:32:58 +0100177 TEST_ASSERT( mbedtls_md( mbedtls_md_info_from_type( digest ), message_str->x, message_str->len, hash_result ) == 0 );
Hanno Beckera5cedbc2019-07-17 11:21:02 +0100178 }
Paul Bakker9dcc3222011-03-08 14:16:06 +0000179
Azim Khand30ca132017-06-09 04:32:58 +0100180 TEST_ASSERT( mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC, digest, 0, hash_result, result_str->x ) == result );
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100181
Paul Bakkerbd51b262014-07-10 15:26:12 +0200182exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +0100183 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200184 mbedtls_rsa_free( &ctx );
Paul Bakker9dcc3222011-03-08 14:16:06 +0000185}
Paul Bakker33b43f12013-08-20 11:48:36 +0200186/* END_CASE */
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200187
188/* BEGIN_CASE */
Azim Khanf1aaec92017-05-30 14:23:15 +0100189void pkcs1_rsassa_pss_verify_ext( int mod, int radix_N, char * input_N,
190 int radix_E, char * input_E,
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200191 int msg_digest_id, int ctx_hash,
192 int mgf_hash, int salt_len,
Azim Khan5fcca462018-06-29 11:05:32 +0100193 data_t * message_str,
194 data_t * result_str, int result_simple,
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200195 int result_full )
196{
Ron Eldor5d7254a2018-11-22 15:49:49 +0200197 unsigned char hash_result[MBEDTLS_MD_MAX_SIZE];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200198 mbedtls_rsa_context ctx;
Azim Khanf1aaec92017-05-30 14:23:15 +0100199 size_t hash_len;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100200 mbedtls_mpi N, E;
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200201
Hanno Becker6326a6d2017-08-23 06:38:22 +0100202 mbedtls_mpi_init( &N ); mbedtls_mpi_init( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200203 mbedtls_rsa_init( &ctx, MBEDTLS_RSA_PKCS_V21, ctx_hash );
Ron Eldor5d7254a2018-11-22 15:49:49 +0200204 memset( hash_result, 0x00, sizeof( hash_result ) );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200205
Hanno Becker6326a6d2017-08-23 06:38:22 +0100206 TEST_ASSERT( mbedtls_mpi_read_string( &N, radix_N, input_N ) == 0 );
207 TEST_ASSERT( mbedtls_mpi_read_string( &E, radix_E, input_E ) == 0 );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200208
Hanno Becker6326a6d2017-08-23 06:38:22 +0100209 TEST_ASSERT( mbedtls_rsa_import( &ctx, &N, NULL, NULL, NULL, &E ) == 0 );
210 TEST_ASSERT( mbedtls_rsa_get_len( &ctx ) == (size_t) ( ( mod + 7 ) / 8 ) );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200211 TEST_ASSERT( mbedtls_rsa_check_pubkey( &ctx ) == 0 );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200212
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200213
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200214 if( msg_digest_id != MBEDTLS_MD_NONE )
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200215 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200216 TEST_ASSERT( mbedtls_md( mbedtls_md_info_from_type( msg_digest_id ),
Azim Khand30ca132017-06-09 04:32:58 +0100217 message_str->x, message_str->len, hash_result ) == 0 );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200218 hash_len = 0;
219 }
220 else
221 {
Azim Khand30ca132017-06-09 04:32:58 +0100222 memcpy( hash_result, message_str->x, message_str->len );
223 hash_len = message_str->len;
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200224 }
225
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200226 TEST_ASSERT( mbedtls_rsa_pkcs1_verify( &ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC,
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200227 msg_digest_id, hash_len, hash_result,
Azim Khand30ca132017-06-09 04:32:58 +0100228 result_str->x ) == result_simple );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200229
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200230 TEST_ASSERT( mbedtls_rsa_rsassa_pss_verify_ext( &ctx, NULL, NULL, MBEDTLS_RSA_PUBLIC,
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200231 msg_digest_id, hash_len, hash_result,
232 mgf_hash, salt_len,
Azim Khand30ca132017-06-09 04:32:58 +0100233 result_str->x ) == result_full );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200234
Paul Bakkerbd51b262014-07-10 15:26:12 +0200235exit:
Hanno Becker6326a6d2017-08-23 06:38:22 +0100236 mbedtls_mpi_free( &N ); mbedtls_mpi_free( &E );
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200237 mbedtls_rsa_free( &ctx );
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200238}
239/* END_CASE */