TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / fb8d90a2db8c4c12ace2d4bb4adf22fb9a17add7 / . / tests / suites / test_suite_pkcs1_v21.function
blob: 2eece0a93a823d7252bf6586b26cdfe52bd30571 [file] [log] [blame]
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1/* BEGIN_HEADER */
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]2#include "mbedtls/rsa.h"
Manuel Pégourié-Gonnard07018f92022-09-15 11:29:35 +0200[diff] [blame]3#include "mbedtls/legacy_or_psa.h"
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]4/* END_HEADER */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]5
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]6/* BEGIN_DEPENDENCIES
Manuel Pégourié-Gonnarde741c612022-07-27 13:13:55 +0200[diff] [blame]7 * depends_on:MBEDTLS_PKCS1_V21:MBEDTLS_RSA_C
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]8 * END_DEPENDENCIES
9 */
Paul Bakker5690efc2011-05-26 13:16:06 +0000[diff] [blame]10
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]11/* BEGIN_CASE */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]12void pkcs1_rsaes_oaep_encrypt(int mod, data_t *input_N, data_t *input_E,
13 int hash, data_t *message_str, data_t *rnd_buf,
14 data_t *result_str, int result)
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]15{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]16 unsigned char output[256];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]17 mbedtls_rsa_context ctx;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]18 mbedtls_test_rnd_buf_info info;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]19 mbedtls_mpi N, E;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]20
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]21 MD_PSA_INIT();
22
Gilles Peskineecacc3c2021-03-24 00:48:57 +0100[diff] [blame]23 info.fallback_f_rng = mbedtls_test_rnd_std_rand;
24 info.fallback_p_rng = NULL;
Azim Khand30ca132017-06-09 04:32:58 +0100[diff] [blame]25 info.buf = rnd_buf->x;
26 info.length = rnd_buf->len;
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]27
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]28 mbedtls_mpi_init(&N); mbedtls_mpi_init(&E);
29 mbedtls_rsa_init(&ctx);
30 TEST_ASSERT(mbedtls_rsa_set_padding(&ctx,
31 MBEDTLS_RSA_PKCS_V21, hash) == 0);
32 memset(output, 0x00, sizeof(output));
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]33
Yanray Wang69bc8402023-03-17 20:33:03 +0800[diff] [blame]34 TEST_EQUAL(mbedtls_rsa_get_padding_mode(&ctx), MBEDTLS_RSA_PKCS_V21);
35 TEST_EQUAL(mbedtls_rsa_get_md_alg(&ctx), hash);
Yanray Wang15d3df72023-03-17 19:34:01 +0800[diff] [blame]36
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]37 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
38 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
39 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, NULL, NULL, NULL, &E) == 0);
40 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
41 TEST_ASSERT(mbedtls_rsa_check_pubkey(&ctx) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]42
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]43 if (message_str->len == 0) {
Gilles Peskine85a6dd42018-10-15 16:32:42 +0200[diff] [blame]44 message_str->x = NULL;
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]45 }
46 TEST_ASSERT(mbedtls_rsa_pkcs1_encrypt(&ctx,
47 &mbedtls_test_rnd_buffer_rand,
48 &info, message_str->len,
49 message_str->x,
50 output) == result);
51 if (result == 0) {
52 ASSERT_COMPARE(output, ctx.len, result_str->x, result_str->len);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]53 }
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]54
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]55exit:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]56 mbedtls_mpi_free(&N); mbedtls_mpi_free(&E);
57 mbedtls_rsa_free(&ctx);
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]58 MD_PSA_DONE();
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]59}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]60/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]61
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]62/* BEGIN_CASE */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]63void pkcs1_rsaes_oaep_decrypt(int mod, data_t *input_P, data_t *input_Q,
64 data_t *input_N, data_t *input_E, int hash,
65 data_t *result_str, char *seed, data_t *message_str,
66 int result)
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]67{
Ron Eldor5b8f1202018-11-22 15:49:49 +0200[diff] [blame]68 unsigned char output[64];
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]69 mbedtls_rsa_context ctx;
Paul Bakkerf4a3f302011-04-24 15:53:29 +0000[diff] [blame]70 size_t output_len;
Ronald Cron351f0ee2020-06-10 12:12:18 +0200[diff] [blame]71 mbedtls_test_rnd_pseudo_info rnd_info;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]72 mbedtls_mpi N, P, Q, E;
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]73 ((void) seed);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]74
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]75 MD_PSA_INIT();
76
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]77 mbedtls_mpi_init(&N); mbedtls_mpi_init(&P);
78 mbedtls_mpi_init(&Q); mbedtls_mpi_init(&E);
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]79
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]80 mbedtls_rsa_init(&ctx);
81 TEST_ASSERT(mbedtls_rsa_set_padding(&ctx,
82 MBEDTLS_RSA_PKCS_V21, hash) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]83
Yanray Wang69bc8402023-03-17 20:33:03 +0800[diff] [blame]84 TEST_EQUAL(mbedtls_rsa_get_padding_mode(&ctx), MBEDTLS_RSA_PKCS_V21);
85 TEST_EQUAL(mbedtls_rsa_get_md_alg(&ctx), hash);
Yanray Wang15d3df72023-03-17 19:34:01 +0800[diff] [blame]86
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]87 memset(output, 0x00, sizeof(output));
88 memset(&rnd_info, 0, sizeof(mbedtls_test_rnd_pseudo_info));
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]89
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]90 TEST_ASSERT(mbedtls_mpi_read_binary(&P, input_P->x, input_P->len) == 0);
91 TEST_ASSERT(mbedtls_mpi_read_binary(&Q, input_Q->x, input_Q->len) == 0);
92 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
93 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
Paul Bakker548957d2013-08-30 10:30:02 +0200[diff] [blame]94
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]95 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, &P, &Q, NULL, &E) == 0);
96 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
97 TEST_ASSERT(mbedtls_rsa_complete(&ctx) == 0);
98 TEST_ASSERT(mbedtls_rsa_check_privkey(&ctx) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]99
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]100 if (result_str->len == 0) {
101 TEST_ASSERT(mbedtls_rsa_pkcs1_decrypt(&ctx,
102 &mbedtls_test_rnd_pseudo_rand,
103 &rnd_info,
104 &output_len, message_str->x,
105 NULL, 0) == result);
106 } else {
107 TEST_ASSERT(mbedtls_rsa_pkcs1_decrypt(&ctx,
108 &mbedtls_test_rnd_pseudo_rand,
109 &rnd_info,
110 &output_len, message_str->x,
111 output,
112 sizeof(output)) == result);
113 if (result == 0) {
114 ASSERT_COMPARE(output, output_len, result_str->x, result_str->len);
Gilles Peskine85a6dd42018-10-15 16:32:42 +0200[diff] [blame]115 }
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]116 }
Paul Bakker6c591fa2011-05-05 11:49:20 +0000[diff] [blame]117
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]118exit:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]119 mbedtls_mpi_free(&N); mbedtls_mpi_free(&P);
120 mbedtls_mpi_free(&Q); mbedtls_mpi_free(&E);
121 mbedtls_rsa_free(&ctx);
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]122 MD_PSA_DONE();
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]123}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]124/* END_CASE */
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]125
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]126/* BEGIN_CASE */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]127void pkcs1_rsassa_pss_sign(int mod, data_t *input_P, data_t *input_Q,
128 data_t *input_N, data_t *input_E, int digest,
129 int hash, data_t *hash_digest, data_t *rnd_buf,
130 data_t *result_str, int fixed_salt_length,
131 int result)
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]132{
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]133 unsigned char output[512];
134 mbedtls_rsa_context ctx;
135 mbedtls_test_rnd_buf_info info;
136 mbedtls_mpi N, P, Q, E;
137
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]138 MD_PSA_INIT();
139
Gilles Peskineecacc3c2021-03-24 00:48:57 +0100[diff] [blame]140 info.fallback_f_rng = mbedtls_test_rnd_std_rand;
141 info.fallback_p_rng = NULL;
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]142 info.buf = rnd_buf->x;
143 info.length = rnd_buf->len;
144
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]145 mbedtls_mpi_init(&N); mbedtls_mpi_init(&P);
146 mbedtls_mpi_init(&Q); mbedtls_mpi_init(&E);
147 mbedtls_rsa_init(&ctx);
148 TEST_ASSERT(mbedtls_rsa_set_padding(&ctx,
149 MBEDTLS_RSA_PKCS_V21, hash) == 0);
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]150
Yanray Wang69bc8402023-03-17 20:33:03 +0800[diff] [blame]151 TEST_EQUAL(mbedtls_rsa_get_padding_mode(&ctx), MBEDTLS_RSA_PKCS_V21);
152 TEST_EQUAL(mbedtls_rsa_get_md_alg(&ctx), hash);
Yanray Wang15d3df72023-03-17 19:34:01 +0800[diff] [blame]153
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]154 memset(output, 0x00, sizeof(output));
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]155
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]156 TEST_ASSERT(mbedtls_mpi_read_binary(&P, input_P->x, input_P->len) == 0);
157 TEST_ASSERT(mbedtls_mpi_read_binary(&Q, input_Q->x, input_Q->len) == 0);
158 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
159 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]160
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]161 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, &P, &Q, NULL, &E) == 0);
162 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
163 TEST_ASSERT(mbedtls_rsa_complete(&ctx) == 0);
164 TEST_ASSERT(mbedtls_rsa_check_privkey(&ctx) == 0);
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]165
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]166 if (fixed_salt_length == MBEDTLS_RSA_SALT_LEN_ANY) {
167 TEST_ASSERT(mbedtls_rsa_pkcs1_sign(
168 &ctx, &mbedtls_test_rnd_buffer_rand, &info,
169 digest, hash_digest->len, hash_digest->x, output) == result);
170 if (result == 0) {
171 ASSERT_COMPARE(output, ctx.len, result_str->x, result_str->len);
Cédric Meuter61adfd62021-01-10 11:52:39 +0100[diff] [blame]172 }
173
174 info.buf = rnd_buf->x;
175 info.length = rnd_buf->len;
176 }
177
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]178 TEST_ASSERT(mbedtls_rsa_rsassa_pss_sign_ext(
179 &ctx, &mbedtls_test_rnd_buffer_rand, &info,
180 digest, hash_digest->len, hash_digest->x,
181 fixed_salt_length, output) == result);
182 if (result == 0) {
183 ASSERT_COMPARE(output, ctx.len, result_str->x, result_str->len);
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]184 }
185
186exit:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]187 mbedtls_mpi_free(&N); mbedtls_mpi_free(&P);
188 mbedtls_mpi_free(&Q); mbedtls_mpi_free(&E);
189 mbedtls_rsa_free(&ctx);
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]190 MD_PSA_DONE();
Cédric Meuter668a78d2020-04-30 11:57:04 +0200[diff] [blame]191}
192/* END_CASE */
193
194/* BEGIN_CASE */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]195void pkcs1_rsassa_pss_verify(int mod, data_t *input_N, data_t *input_E,
196 int digest, int hash, data_t *hash_digest,
197 char *salt, data_t *result_str, int result)
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]198{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]199 mbedtls_rsa_context ctx;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]200 mbedtls_mpi N, E;
Paul Bakkerdbd443d2013-08-16 13:38:47 +0200[diff] [blame]201 ((void) salt);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]202
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]203 MD_PSA_INIT();
204
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]205 mbedtls_mpi_init(&N); mbedtls_mpi_init(&E);
206 mbedtls_rsa_init(&ctx);
207 TEST_ASSERT(mbedtls_rsa_set_padding(&ctx,
208 MBEDTLS_RSA_PKCS_V21, hash) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]209
Yanray Wang69bc8402023-03-17 20:33:03 +0800[diff] [blame]210 TEST_EQUAL(mbedtls_rsa_get_padding_mode(&ctx), MBEDTLS_RSA_PKCS_V21);
211 TEST_EQUAL(mbedtls_rsa_get_md_alg(&ctx), hash);
Yanray Wang15d3df72023-03-17 19:34:01 +0800[diff] [blame]212
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]213 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
214 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]215
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]216 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, NULL, NULL, NULL, &E) == 0);
217 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
218 TEST_ASSERT(mbedtls_rsa_check_pubkey(&ctx) == 0);
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]219
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]220
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]221 TEST_ASSERT(mbedtls_rsa_pkcs1_verify(&ctx, digest, hash_digest->len, hash_digest->x,
222 result_str->x) == result);
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]223
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]224exit:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]225 mbedtls_mpi_free(&N); mbedtls_mpi_free(&E);
226 mbedtls_rsa_free(&ctx);
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]227 MD_PSA_DONE();
Paul Bakker9dcc3222011-03-08 14:16:06 +0000[diff] [blame]228}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]229/* END_CASE */
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]230
231/* BEGIN_CASE */
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]232void pkcs1_rsassa_pss_verify_ext(int mod, data_t *input_N, data_t *input_E,
233 int msg_digest_id, int ctx_hash,
234 int mgf_hash, int salt_len,
235 data_t *hash_digest,
236 data_t *result_str, int result_simple,
237 int result_full)
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]238{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]239 mbedtls_rsa_context ctx;
Hanno Becker6326a6d2017-08-23 06:38:22 +0100[diff] [blame]240 mbedtls_mpi N, E;
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]241
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]242 MD_PSA_INIT();
243
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]244 mbedtls_mpi_init(&N); mbedtls_mpi_init(&E);
245 mbedtls_rsa_init(&ctx);
246 TEST_ASSERT(mbedtls_rsa_set_padding(&ctx,
247 MBEDTLS_RSA_PKCS_V21, ctx_hash) == 0);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]248
Yanray Wang69bc8402023-03-17 20:33:03 +0800[diff] [blame]249 TEST_EQUAL(mbedtls_rsa_get_padding_mode(&ctx), MBEDTLS_RSA_PKCS_V21);
250 TEST_EQUAL(mbedtls_rsa_get_md_alg(&ctx), ctx_hash);
Yanray Wang15d3df72023-03-17 19:34:01 +0800[diff] [blame]251
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]252 TEST_ASSERT(mbedtls_mpi_read_binary(&N, input_N->x, input_N->len) == 0);
253 TEST_ASSERT(mbedtls_mpi_read_binary(&E, input_E->x, input_E->len) == 0);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]254
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]255 TEST_ASSERT(mbedtls_rsa_import(&ctx, &N, NULL, NULL, NULL, &E) == 0);
256 TEST_ASSERT(mbedtls_rsa_get_len(&ctx) == (size_t) ((mod + 7) / 8));
257 TEST_ASSERT(mbedtls_rsa_check_pubkey(&ctx) == 0);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]258
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]259
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]260 TEST_ASSERT(mbedtls_rsa_pkcs1_verify(&ctx, msg_digest_id,
261 hash_digest->len, hash_digest->x,
262 result_str->x) == result_simple);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]263
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]264 TEST_ASSERT(mbedtls_rsa_rsassa_pss_verify_ext(&ctx, msg_digest_id, hash_digest->len,
265 hash_digest->x, mgf_hash, salt_len,
266 result_str->x) == result_full);
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]267
Paul Bakkerbd51b262014-07-10 15:26:12 +0200[diff] [blame]268exit:
Gilles Peskine449bd832023-01-11 14:50:10 +0100[diff] [blame]269 mbedtls_mpi_free(&N); mbedtls_mpi_free(&E);
270 mbedtls_rsa_free(&ctx);
Manuel Pégourié-Gonnardfb8d90a2023-03-16 10:47:59 +0100[diff] [blame^]271 MD_PSA_DONE();
Manuel Pégourié-Gonnard5ec628a2014-06-03 11:44:06 +0200[diff] [blame]272}
273/* END_CASE */