Blame - tests/suites/test_suite_rsa.function - mirror/mbed-tls

blob: a01b21710899ac7c4029fd2f5cc941df96886f3e [file] [log] [blame]

Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	1	/* BEGIN_HEADER */
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	2	#include <polarssl/rsa.h>
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	3	#include <polarssl/md2.h>
				4	#include <polarssl/md4.h>
				5	#include <polarssl/md5.h>
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	6	#include <polarssl/sha1.h>
Paul Bakker	d2681d8	2013-06-30 14:49:12 +0200	[diff] [blame]	7	#include <polarssl/sha256.h>
				8	#include <polarssl/sha512.h>
Paul Bakker	c0a1a31	2011-12-04 17:12:15 +0000	[diff] [blame]	9	#include <polarssl/entropy.h>
				10	#include <polarssl/ctr_drbg.h>
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	11	/* END_HEADER */
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	12
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	13	/* BEGIN_DEPENDENCIES
				14	* depends_on:POLARSSL_RSA_C:POLARSSL_BIGNUM_C:POLARSSL_GENPRIME
				15	* END_DEPENDENCIES
				16	*/
Paul Bakker	5690efc	2011-05-26 13:16:06 +0000	[diff] [blame]	17
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	18	/* BEGIN_CASE */
				19	void rsa_pkcs1_sign( char *message_hex_string, int padding_mode, int digest,
				20	int mod, int radix_P, char *input_P, int radix_Q,
				21	char input_Q, int radix_N, char input_N, int radix_E,
				22	char input_E, char result_hex_str, int result )
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	23	{
				24	unsigned char message_str[1000];
				25	unsigned char hash_result[1000];
				26	unsigned char output[1000];
				27	unsigned char output_str[1000];
				28	rsa_context ctx;
				29	mpi P1, Q1, H, G;
Paul Bakker	69998dd	2009-07-11 19:15:20 +0000	[diff] [blame]	30	int msg_len;
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	31	rnd_pseudo_info rnd_info;
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	32
Paul Bakker	6c591fa	2011-05-05 11:49:20 +0000	[diff] [blame]	33	mpi_init( &P1 ); mpi_init( &Q1 ); mpi_init( &H ); mpi_init( &G );
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	34	rsa_init( &ctx, padding_mode, 0 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	35
				36	memset( message_str, 0x00, 1000 );
				37	memset( hash_result, 0x00, 1000 );
				38	memset( output, 0x00, 1000 );
				39	memset( output_str, 0x00, 1000 );
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	40	memset( &rnd_info, 0, sizeof( rnd_pseudo_info ) );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	41
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	42	ctx.len = mod / 8;
				43	TEST_ASSERT( mpi_read_string( &ctx.P, radix_P, input_P ) == 0 );
				44	TEST_ASSERT( mpi_read_string( &ctx.Q, radix_Q, input_Q ) == 0 );
				45	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
				46	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	47
				48	TEST_ASSERT( mpi_sub_int( &P1, &ctx.P, 1 ) == 0 );
				49	TEST_ASSERT( mpi_sub_int( &Q1, &ctx.Q, 1 ) == 0 );
				50	TEST_ASSERT( mpi_mul_mpi( &H, &P1, &Q1 ) == 0 );
				51	TEST_ASSERT( mpi_gcd( &G, &ctx.E, &H ) == 0 );
				52	TEST_ASSERT( mpi_inv_mod( &ctx.D , &ctx.E, &H ) == 0 );
				53	TEST_ASSERT( mpi_mod_mpi( &ctx.DP, &ctx.D, &P1 ) == 0 );
				54	TEST_ASSERT( mpi_mod_mpi( &ctx.DQ, &ctx.D, &Q1 ) == 0 );
				55	TEST_ASSERT( mpi_inv_mod( &ctx.QP, &ctx.Q, &ctx.P ) == 0 );
				56
				57	TEST_ASSERT( rsa_check_privkey( &ctx ) == 0 );
				58
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	59	msg_len = unhexify( message_str, message_hex_string );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	60
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	61	if( md_info_from_type( digest ) != NULL )
				62	TEST_ASSERT( md( md_info_from_type( digest ), message_str, msg_len, hash_result ) == 0 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	63
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	64	TEST_ASSERT( rsa_pkcs1_sign( &ctx, &rnd_pseudo_rand, &rnd_info, RSA_PRIVATE, digest, 0, hash_result, output ) == result );
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	65	if( result == 0 )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	66	{
				67	hexify( output_str, output, ctx.len );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	68
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	69	TEST_ASSERT( strcasecmp( (char *) output_str, result_hex_str ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	70	}
Paul Bakker	6c591fa	2011-05-05 11:49:20 +0000	[diff] [blame]	71
				72	mpi_free( &P1 ); mpi_free( &Q1 ); mpi_free( &H ); mpi_free( &G );
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	73	rsa_free( &ctx );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	74	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	75	/* END_CASE */
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	76
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	77	/* BEGIN_CASE */
				78	void rsa_pkcs1_verify( char *message_hex_string, int padding_mode, int digest,
				79	int mod, int radix_N, char *input_N, int radix_E,
				80	char input_E, char result_hex_str, int result )
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	81	{
				82	unsigned char message_str[1000];
				83	unsigned char hash_result[1000];
				84	unsigned char result_str[1000];
				85	rsa_context ctx;
Paul Bakker	69998dd	2009-07-11 19:15:20 +0000	[diff] [blame]	86	int msg_len;
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	87
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	88	rsa_init( &ctx, padding_mode, 0 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	89	memset( message_str, 0x00, 1000 );
				90	memset( hash_result, 0x00, 1000 );
				91	memset( result_str, 0x00, 1000 );
				92
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	93	ctx.len = mod / 8;
				94	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
				95	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	96
				97	TEST_ASSERT( rsa_check_pubkey( &ctx ) == 0 );
				98
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	99	msg_len = unhexify( message_str, message_hex_string );
				100	unhexify( result_str, result_hex_str );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	101
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	102	if( md_info_from_type( digest ) != NULL )
				103	TEST_ASSERT( md( md_info_from_type( digest ), message_str, msg_len, hash_result ) == 0 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	104
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	105	TEST_ASSERT( rsa_pkcs1_verify( &ctx, NULL, NULL, RSA_PUBLIC, digest, 0, hash_result, result_str ) == result );
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	106
				107	rsa_free( &ctx );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	108	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	109	/* END_CASE */
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	110
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	111
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	112	/* BEGIN_CASE */
				113	void rsa_pkcs1_sign_raw( char message_hex_string, char hash_result_string,
				114	int padding_mode, int mod, int radix_P, char *input_P,
				115	int radix_Q, char *input_Q, int radix_N,
				116	char input_N, int radix_E, char input_E,
				117	char *result_hex_str )
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	118	{
				119	unsigned char message_str[1000];
				120	unsigned char hash_result[1000];
				121	unsigned char output[1000];
				122	unsigned char output_str[1000];
				123	rsa_context ctx;
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	124	mpi P1, Q1, H, G;
Paul Bakker	eaf90d9	2011-07-13 14:21:52 +0000	[diff] [blame]	125	int hash_len;
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	126	rnd_pseudo_info rnd_info;
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	127
Paul Bakker	6c591fa	2011-05-05 11:49:20 +0000	[diff] [blame]	128	mpi_init( &P1 ); mpi_init( &Q1 ); mpi_init( &H ); mpi_init( &G );
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	129	rsa_init( &ctx, padding_mode, 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	130
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	131	memset( message_str, 0x00, 1000 );
				132	memset( hash_result, 0x00, 1000 );
				133	memset( output, 0x00, 1000 );
				134	memset( output_str, 0x00, 1000 );
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	135	memset( &rnd_info, 0, sizeof( rnd_pseudo_info ) );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	136
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	137	ctx.len = mod / 8;
				138	TEST_ASSERT( mpi_read_string( &ctx.P, radix_P, input_P ) == 0 );
				139	TEST_ASSERT( mpi_read_string( &ctx.Q, radix_Q, input_Q ) == 0 );
				140	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
				141	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	142
				143	TEST_ASSERT( mpi_sub_int( &P1, &ctx.P, 1 ) == 0 );
				144	TEST_ASSERT( mpi_sub_int( &Q1, &ctx.Q, 1 ) == 0 );
				145	TEST_ASSERT( mpi_mul_mpi( &H, &P1, &Q1 ) == 0 );
				146	TEST_ASSERT( mpi_gcd( &G, &ctx.E, &H ) == 0 );
				147	TEST_ASSERT( mpi_inv_mod( &ctx.D , &ctx.E, &H ) == 0 );
				148	TEST_ASSERT( mpi_mod_mpi( &ctx.DP, &ctx.D, &P1 ) == 0 );
				149	TEST_ASSERT( mpi_mod_mpi( &ctx.DQ, &ctx.D, &Q1 ) == 0 );
				150	TEST_ASSERT( mpi_inv_mod( &ctx.QP, &ctx.Q, &ctx.P ) == 0 );
				151
				152	TEST_ASSERT( rsa_check_privkey( &ctx ) == 0 );
				153
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	154	unhexify( message_str, message_hex_string );
				155	hash_len = unhexify( hash_result, hash_result_string );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	156
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	157	TEST_ASSERT( rsa_pkcs1_sign( &ctx, &rnd_pseudo_rand, &rnd_info, RSA_PRIVATE, POLARSSL_MD_NONE, hash_len, hash_result, output ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	158
				159	hexify( output_str, output, ctx.len );
				160
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	161	TEST_ASSERT( strcasecmp( (char *) output_str, result_hex_str ) == 0 );
Paul Bakker	6c591fa	2011-05-05 11:49:20 +0000	[diff] [blame]	162
Manuel Pégourié-Gonnard	fbf0915	2014-02-03 11:58:55 +0100	[diff] [blame^]	163	/* For PKCS#1 v1.5, there is an alternative way to generate signatures */
				164	if( padding_mode == RSA_PKCS_V15 )
				165	{
				166	memset( output, 0x00, 1000 );
				167	memset( output_str, 0x00, 1000 );
				168
				169	TEST_ASSERT( rsa_rsaes_pkcs1_v15_encrypt( &ctx,
				170	&rnd_pseudo_rand, &rnd_info, RSA_PRIVATE,
				171	hash_len, hash_result, output ) == 0 );
				172
				173	hexify( output_str, output, ctx.len );
				174
				175	TEST_ASSERT( strcasecmp( (char *) output_str, result_hex_str ) == 0 );
				176	}
				177
Paul Bakker	6c591fa	2011-05-05 11:49:20 +0000	[diff] [blame]	178	mpi_free( &P1 ); mpi_free( &Q1 ); mpi_free( &H ); mpi_free( &G );
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	179	rsa_free( &ctx );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	180	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	181	/* END_CASE */
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	182
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	183	/* BEGIN_CASE */
				184	void rsa_pkcs1_verify_raw( char message_hex_string, char hash_result_string,
				185	int padding_mode, int mod, int radix_N,
				186	char input_N, int radix_E, char input_E,
				187	char *result_hex_str, int correct )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	188	{
				189	unsigned char message_str[1000];
				190	unsigned char hash_result[1000];
				191	unsigned char result_str[1000];
Manuel Pégourié-Gonnard	fbf0915	2014-02-03 11:58:55 +0100	[diff] [blame^]	192	unsigned char output[1000];
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	193	rsa_context ctx;
Manuel Pégourié-Gonnard	fbf0915	2014-02-03 11:58:55 +0100	[diff] [blame^]	194	size_t hash_len, olen;
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	195
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	196	rsa_init( &ctx, padding_mode, 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	197	memset( message_str, 0x00, 1000 );
				198	memset( hash_result, 0x00, 1000 );
				199	memset( result_str, 0x00, 1000 );
Manuel Pégourié-Gonnard	fbf0915	2014-02-03 11:58:55 +0100	[diff] [blame^]	200	memset( output, 0x00, sizeof( output ) );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	201
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	202	ctx.len = mod / 8;
				203	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
				204	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	205
				206	TEST_ASSERT( rsa_check_pubkey( &ctx ) == 0 );
				207
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	208	unhexify( message_str, message_hex_string );
				209	hash_len = unhexify( hash_result, hash_result_string );
				210	unhexify( result_str, result_hex_str );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	211
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	212	TEST_ASSERT( rsa_pkcs1_verify( &ctx, NULL, NULL, RSA_PUBLIC, POLARSSL_MD_NONE, hash_len, hash_result, result_str ) == correct );
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	213
Manuel Pégourié-Gonnard	fbf0915	2014-02-03 11:58:55 +0100	[diff] [blame^]	214	/* For PKCS#1 v1.5, there is an alternative way to verify signatures */
				215	if( padding_mode == RSA_PKCS_V15 )
				216	{
				217	int ok;
				218
				219	TEST_ASSERT( rsa_rsaes_pkcs1_v15_decrypt( &ctx,
				220	NULL, NULL, RSA_PUBLIC,
				221	&olen, result_str, output, sizeof( output ) ) == 0 );
				222
				223	ok = olen == hash_len && memcmp( output, hash_result, olen ) == 0;
				224	if( correct == 0 )
				225	TEST_ASSERT( ok == 1 );
				226	else
				227	TEST_ASSERT( ok == 0 );
				228	}
				229
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	230	rsa_free( &ctx );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	231	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	232	/* END_CASE */
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	233
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	234	/* BEGIN_CASE */
				235	void rsa_pkcs1_encrypt( char *message_hex_string, int padding_mode, int mod,
				236	int radix_N, char input_N, int radix_E, char input_E,
				237	char *result_hex_str, int result )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	238	{
				239	unsigned char message_str[1000];
				240	unsigned char output[1000];
				241	unsigned char output_str[1000];
				242	rsa_context ctx;
Paul Bakker	f4a3f30	2011-04-24 15:53:29 +0000	[diff] [blame]	243	size_t msg_len;
Paul Bakker	997bbd1	2011-03-13 15:45:42 +0000	[diff] [blame]	244	rnd_pseudo_info rnd_info;
				245
				246	memset( &rnd_info, 0, sizeof( rnd_pseudo_info ) );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	247
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	248	rsa_init( &ctx, padding_mode, 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	249	memset( message_str, 0x00, 1000 );
				250	memset( output, 0x00, 1000 );
				251	memset( output_str, 0x00, 1000 );
				252
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	253	ctx.len = mod / 8;
				254	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
				255	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	256
				257	TEST_ASSERT( rsa_check_pubkey( &ctx ) == 0 );
				258
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	259	msg_len = unhexify( message_str, message_hex_string );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	260
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	261	TEST_ASSERT( rsa_pkcs1_encrypt( &ctx, &rnd_pseudo_rand, &rnd_info, RSA_PUBLIC, msg_len, message_str, output ) == result );
				262	if( result == 0 )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	263	{
				264	hexify( output_str, output, ctx.len );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	265
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	266	TEST_ASSERT( strcasecmp( (char *) output_str, result_hex_str ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	267	}
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	268
				269	rsa_free( &ctx );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	270	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	271	/* END_CASE */
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	272
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	273	/* BEGIN_CASE */
				274	void rsa_pkcs1_encrypt_bad_rng( char *message_hex_string, int padding_mode,
				275	int mod, int radix_N, char *input_N,
				276	int radix_E, char *input_E,
				277	char *result_hex_str, int result )
Paul Bakker	a665685	2010-07-18 19:47:14 +0000	[diff] [blame]	278	{
				279	unsigned char message_str[1000];
				280	unsigned char output[1000];
				281	unsigned char output_str[1000];
				282	rsa_context ctx;
Paul Bakker	f4a3f30	2011-04-24 15:53:29 +0000	[diff] [blame]	283	size_t msg_len;
Paul Bakker	a665685	2010-07-18 19:47:14 +0000	[diff] [blame]	284
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	285	rsa_init( &ctx, padding_mode, 0 );
Paul Bakker	a665685	2010-07-18 19:47:14 +0000	[diff] [blame]	286	memset( message_str, 0x00, 1000 );
				287	memset( output, 0x00, 1000 );
				288	memset( output_str, 0x00, 1000 );
				289
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	290	ctx.len = mod / 8;
				291	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
				292	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	a665685	2010-07-18 19:47:14 +0000	[diff] [blame]	293
				294	TEST_ASSERT( rsa_check_pubkey( &ctx ) == 0 );
				295
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	296	msg_len = unhexify( message_str, message_hex_string );
Paul Bakker	a665685	2010-07-18 19:47:14 +0000	[diff] [blame]	297
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	298	TEST_ASSERT( rsa_pkcs1_encrypt( &ctx, &rnd_zero_rand, NULL, RSA_PUBLIC, msg_len, message_str, output ) == result );
				299	if( result == 0 )
Paul Bakker	a665685	2010-07-18 19:47:14 +0000	[diff] [blame]	300	{
				301	hexify( output_str, output, ctx.len );
				302
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	303	TEST_ASSERT( strcasecmp( (char *) output_str, result_hex_str ) == 0 );
Paul Bakker	a665685	2010-07-18 19:47:14 +0000	[diff] [blame]	304	}
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	305
				306	rsa_free( &ctx );
Paul Bakker	a665685	2010-07-18 19:47:14 +0000	[diff] [blame]	307	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	308	/* END_CASE */
Paul Bakker	a665685	2010-07-18 19:47:14 +0000	[diff] [blame]	309
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	310	/* BEGIN_CASE */
				311	void rsa_pkcs1_decrypt( char *message_hex_string, int padding_mode, int mod,
				312	int radix_P, char input_P, int radix_Q, char input_Q,
				313	int radix_N, char input_N, int radix_E, char input_E,
				314	int max_output, char *result_hex_str, int result )
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	315	{
				316	unsigned char message_str[1000];
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	317	unsigned char output[1000];
				318	unsigned char output_str[1000];
				319	rsa_context ctx;
				320	mpi P1, Q1, H, G;
Paul Bakker	f4a3f30	2011-04-24 15:53:29 +0000	[diff] [blame]	321	size_t output_len;
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	322	rnd_pseudo_info rnd_info;
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	323
Paul Bakker	6c591fa	2011-05-05 11:49:20 +0000	[diff] [blame]	324	mpi_init( &P1 ); mpi_init( &Q1 ); mpi_init( &H ); mpi_init( &G );
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	325	rsa_init( &ctx, padding_mode, 0 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	326
				327	memset( message_str, 0x00, 1000 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	328	memset( output, 0x00, 1000 );
				329	memset( output_str, 0x00, 1000 );
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	330	memset( &rnd_info, 0, sizeof( rnd_pseudo_info ) );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	331
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	332	ctx.len = mod / 8;
				333	TEST_ASSERT( mpi_read_string( &ctx.P, radix_P, input_P ) == 0 );
				334	TEST_ASSERT( mpi_read_string( &ctx.Q, radix_Q, input_Q ) == 0 );
				335	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
				336	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	337
				338	TEST_ASSERT( mpi_sub_int( &P1, &ctx.P, 1 ) == 0 );
				339	TEST_ASSERT( mpi_sub_int( &Q1, &ctx.Q, 1 ) == 0 );
				340	TEST_ASSERT( mpi_mul_mpi( &H, &P1, &Q1 ) == 0 );
				341	TEST_ASSERT( mpi_gcd( &G, &ctx.E, &H ) == 0 );
				342	TEST_ASSERT( mpi_inv_mod( &ctx.D , &ctx.E, &H ) == 0 );
				343	TEST_ASSERT( mpi_mod_mpi( &ctx.DP, &ctx.D, &P1 ) == 0 );
				344	TEST_ASSERT( mpi_mod_mpi( &ctx.DQ, &ctx.D, &Q1 ) == 0 );
				345	TEST_ASSERT( mpi_inv_mod( &ctx.QP, &ctx.Q, &ctx.P ) == 0 );
				346
				347	TEST_ASSERT( rsa_check_privkey( &ctx ) == 0 );
				348
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	349	unhexify( message_str, message_hex_string );
Paul Bakker	69998dd	2009-07-11 19:15:20 +0000	[diff] [blame]	350	output_len = 0;
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	351
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	352	TEST_ASSERT( rsa_pkcs1_decrypt( &ctx, rnd_pseudo_rand, &rnd_info, RSA_PRIVATE, &output_len, message_str, output, max_output ) == result );
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	353	if( result == 0 )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	354	{
				355	hexify( output_str, output, ctx.len );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	356
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	357	TEST_ASSERT( strncasecmp( (char *) output_str, result_hex_str, strlen( result_hex_str ) ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	358	}
Paul Bakker	6c591fa	2011-05-05 11:49:20 +0000	[diff] [blame]	359
				360	mpi_free( &P1 ); mpi_free( &Q1 ); mpi_free( &H ); mpi_free( &G );
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	361	rsa_free( &ctx );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	362	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	363	/* END_CASE */
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	364
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	365	/* BEGIN_CASE */
				366	void rsa_public( char message_hex_string, int mod, int radix_N, char input_N,
				367	int radix_E, char input_E, char result_hex_str, int result )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	368	{
				369	unsigned char message_str[1000];
				370	unsigned char output[1000];
				371	unsigned char output_str[1000];
Manuel Pégourié-Gonnard	c4919bc	2014-02-03 11:16:44 +0100	[diff] [blame]	372	rsa_context ctx, ctx2; /* Also test rsa_copy() while at it */
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	373
Paul Bakker	ebcef6d	2010-08-16 11:10:49 +0000	[diff] [blame]	374	rsa_init( &ctx, RSA_PKCS_V15, 0 );
Manuel Pégourié-Gonnard	c4919bc	2014-02-03 11:16:44 +0100	[diff] [blame]	375	rsa_init( &ctx2, RSA_PKCS_V15, 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	376	memset( message_str, 0x00, 1000 );
				377	memset( output, 0x00, 1000 );
				378	memset( output_str, 0x00, 1000 );
				379
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	380	ctx.len = mod / 8;
				381	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
				382	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	383
				384	TEST_ASSERT( rsa_check_pubkey( &ctx ) == 0 );
				385
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	386	unhexify( message_str, message_hex_string );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	387
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	388	TEST_ASSERT( rsa_public( &ctx, message_str, output ) == result );
				389	if( result == 0 )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	390	{
				391	hexify( output_str, output, ctx.len );
				392
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	393	TEST_ASSERT( strcasecmp( (char *) output_str, result_hex_str ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	394	}
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	395
Manuel Pégourié-Gonnard	c4919bc	2014-02-03 11:16:44 +0100	[diff] [blame]	396	/* And now with the copy */
				397	TEST_ASSERT( rsa_copy( &ctx2, &ctx ) == 0 );
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	398	rsa_free( &ctx );
Manuel Pégourié-Gonnard	c4919bc	2014-02-03 11:16:44 +0100	[diff] [blame]	399
				400	TEST_ASSERT( rsa_check_pubkey( &ctx2 ) == 0 );
				401
				402	memset( output, 0x00, 1000 );
				403	memset( output_str, 0x00, 1000 );
				404	TEST_ASSERT( rsa_public( &ctx2, message_str, output ) == result );
				405	if( result == 0 )
				406	{
				407	hexify( output_str, output, ctx2.len );
				408
				409	TEST_ASSERT( strcasecmp( (char *) output_str, result_hex_str ) == 0 );
				410	}
				411
				412	rsa_free( &ctx2 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	413	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	414	/* END_CASE */
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	415
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	416	/* BEGIN_CASE */
				417	void rsa_private( char message_hex_string, int mod, int radix_P, char input_P,
				418	int radix_Q, char input_Q, int radix_N, char input_N,
				419	int radix_E, char input_E, char result_hex_str, int result )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	420	{
				421	unsigned char message_str[1000];
				422	unsigned char output[1000];
				423	unsigned char output_str[1000];
Manuel Pégourié-Gonnard	c4919bc	2014-02-03 11:16:44 +0100	[diff] [blame]	424	rsa_context ctx, ctx2; /* Also test rsa_copy() while at it */
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	425	mpi P1, Q1, H, G;
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	426	rnd_pseudo_info rnd_info;
Manuel Pégourié-Gonnard	735b8fc	2013-09-13 12:57:23 +0200	[diff] [blame]	427	int i;
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	428
Paul Bakker	6c591fa	2011-05-05 11:49:20 +0000	[diff] [blame]	429	mpi_init( &P1 ); mpi_init( &Q1 ); mpi_init( &H ); mpi_init( &G );
Paul Bakker	ebcef6d	2010-08-16 11:10:49 +0000	[diff] [blame]	430	rsa_init( &ctx, RSA_PKCS_V15, 0 );
Manuel Pégourié-Gonnard	c4919bc	2014-02-03 11:16:44 +0100	[diff] [blame]	431	rsa_init( &ctx2, RSA_PKCS_V15, 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	432
				433	memset( message_str, 0x00, 1000 );
Paul Bakker	548957d	2013-08-30 10:30:02 +0200	[diff] [blame]	434	memset( &rnd_info, 0, sizeof( rnd_pseudo_info ) );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	435
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	436	ctx.len = mod / 8;
				437	TEST_ASSERT( mpi_read_string( &ctx.P, radix_P, input_P ) == 0 );
				438	TEST_ASSERT( mpi_read_string( &ctx.Q, radix_Q, input_Q ) == 0 );
				439	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
				440	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	441
				442	TEST_ASSERT( mpi_sub_int( &P1, &ctx.P, 1 ) == 0 );
				443	TEST_ASSERT( mpi_sub_int( &Q1, &ctx.Q, 1 ) == 0 );
				444	TEST_ASSERT( mpi_mul_mpi( &H, &P1, &Q1 ) == 0 );
				445	TEST_ASSERT( mpi_gcd( &G, &ctx.E, &H ) == 0 );
				446	TEST_ASSERT( mpi_inv_mod( &ctx.D , &ctx.E, &H ) == 0 );
				447	TEST_ASSERT( mpi_mod_mpi( &ctx.DP, &ctx.D, &P1 ) == 0 );
				448	TEST_ASSERT( mpi_mod_mpi( &ctx.DQ, &ctx.D, &Q1 ) == 0 );
				449	TEST_ASSERT( mpi_inv_mod( &ctx.QP, &ctx.Q, &ctx.P ) == 0 );
				450
				451	TEST_ASSERT( rsa_check_privkey( &ctx ) == 0 );
				452
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	453	unhexify( message_str, message_hex_string );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	454
Manuel Pégourié-Gonnard	735b8fc	2013-09-13 12:57:23 +0200	[diff] [blame]	455	/* repeat three times to test updating of blinding values */
				456	for( i = 0; i < 3; i++ )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	457	{
Manuel Pégourié-Gonnard	735b8fc	2013-09-13 12:57:23 +0200	[diff] [blame]	458	memset( output, 0x00, 1000 );
				459	memset( output_str, 0x00, 1000 );
				460	TEST_ASSERT( rsa_private( &ctx, rnd_pseudo_rand, &rnd_info,
				461	message_str, output ) == result );
				462	if( result == 0 )
				463	{
				464	hexify( output_str, output, ctx.len );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	465
Manuel Pégourié-Gonnard	735b8fc	2013-09-13 12:57:23 +0200	[diff] [blame]	466	TEST_ASSERT( strcasecmp( (char *) output_str,
				467	result_hex_str ) == 0 );
				468	}
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	469	}
Paul Bakker	6c591fa	2011-05-05 11:49:20 +0000	[diff] [blame]	470
Manuel Pégourié-Gonnard	c4919bc	2014-02-03 11:16:44 +0100	[diff] [blame]	471	/* And now one more time with the copy */
				472	TEST_ASSERT( rsa_copy( &ctx2, &ctx ) == 0 );
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	473	rsa_free( &ctx );
Manuel Pégourié-Gonnard	c4919bc	2014-02-03 11:16:44 +0100	[diff] [blame]	474
				475	TEST_ASSERT( rsa_check_privkey( &ctx2 ) == 0 );
				476
				477	memset( output, 0x00, 1000 );
				478	memset( output_str, 0x00, 1000 );
				479	TEST_ASSERT( rsa_private( &ctx2, rnd_pseudo_rand, &rnd_info,
				480	message_str, output ) == result );
				481	if( result == 0 )
				482	{
				483	hexify( output_str, output, ctx2.len );
				484
				485	TEST_ASSERT( strcasecmp( (char *) output_str,
				486	result_hex_str ) == 0 );
				487	}
				488
				489	mpi_free( &P1 ); mpi_free( &Q1 ); mpi_free( &H ); mpi_free( &G );
				490	rsa_free( &ctx2 );
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	491	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	492	/* END_CASE */
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	493
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	494	/* BEGIN_CASE */
				495	void rsa_check_privkey_null()
Paul Bakker	37940d9f	2009-07-10 22:38:58 +0000	[diff] [blame]	496	{
				497	rsa_context ctx;
				498	memset( &ctx, 0x00, sizeof( rsa_context ) );
				499
				500	TEST_ASSERT( rsa_check_privkey( &ctx ) == POLARSSL_ERR_RSA_KEY_CHECK_FAILED );
				501	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	502	/* END_CASE */
Paul Bakker	37940d9f	2009-07-10 22:38:58 +0000	[diff] [blame]	503
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	504	/* BEGIN_CASE */
				505	void rsa_check_pubkey( int radix_N, char input_N, int radix_E, char input_E,
				506	int result )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	507	{
				508	rsa_context ctx;
				509
Paul Bakker	ebcef6d	2010-08-16 11:10:49 +0000	[diff] [blame]	510	rsa_init( &ctx, RSA_PKCS_V15, 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	511
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	512	if( strlen( input_N ) )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	513	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	514	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	515	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	516	if( strlen( input_E ) )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	517	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	518	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	519	}
				520
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	521	TEST_ASSERT( rsa_check_pubkey( &ctx ) == result );
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	522
				523	rsa_free( &ctx );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	524	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	525	/* END_CASE */
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	526
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	527	/* BEGIN_CASE */
				528	void rsa_check_privkey( int mod, int radix_P, char *input_P, int radix_Q,
				529	char input_Q, int radix_N, char input_N,
				530	int radix_E, char input_E, int radix_D, char input_D,
				531	int radix_DP, char *input_DP, int radix_DQ,
				532	char input_DQ, int radix_QP, char input_QP,
				533	int result )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	534	{
				535	rsa_context ctx;
				536
Paul Bakker	ebcef6d	2010-08-16 11:10:49 +0000	[diff] [blame]	537	rsa_init( &ctx, RSA_PKCS_V15, 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	538
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	539	ctx.len = mod / 8;
				540	if( strlen( input_P ) )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	541	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	542	TEST_ASSERT( mpi_read_string( &ctx.P, radix_P, input_P ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	543	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	544	if( strlen( input_Q ) )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	545	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	546	TEST_ASSERT( mpi_read_string( &ctx.Q, radix_Q, input_Q ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	547	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	548	if( strlen( input_N ) )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	549	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	550	TEST_ASSERT( mpi_read_string( &ctx.N, radix_N, input_N ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	551	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	552	if( strlen( input_E ) )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	553	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	554	TEST_ASSERT( mpi_read_string( &ctx.E, radix_E, input_E ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	555	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	556	if( strlen( input_D ) )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	557	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	558	TEST_ASSERT( mpi_read_string( &ctx.D, radix_D, input_D ) == 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	559	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	560	if( strlen( input_DP ) )
Paul Bakker	31417a7	2012-09-27 20:41:37 +0000	[diff] [blame]	561	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	562	TEST_ASSERT( mpi_read_string( &ctx.DP, radix_DP, input_DP ) == 0 );
Paul Bakker	31417a7	2012-09-27 20:41:37 +0000	[diff] [blame]	563	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	564	if( strlen( input_DQ ) )
Paul Bakker	31417a7	2012-09-27 20:41:37 +0000	[diff] [blame]	565	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	566	TEST_ASSERT( mpi_read_string( &ctx.DQ, radix_DQ, input_DQ ) == 0 );
Paul Bakker	31417a7	2012-09-27 20:41:37 +0000	[diff] [blame]	567	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	568	if( strlen( input_QP ) )
Paul Bakker	31417a7	2012-09-27 20:41:37 +0000	[diff] [blame]	569	{
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	570	TEST_ASSERT( mpi_read_string( &ctx.QP, radix_QP, input_QP ) == 0 );
Paul Bakker	31417a7	2012-09-27 20:41:37 +0000	[diff] [blame]	571	}
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	572
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	573	TEST_ASSERT( rsa_check_privkey( &ctx ) == result );
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	574
				575	rsa_free( &ctx );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	576	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	577	/* END_CASE */
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	578
Manuel Pégourié-Gonnard	a0d758b	2013-12-01 16:27:00 +0100	[diff] [blame]	579	/* BEGIN_CASE depends_on:POLARSSL_CTR_DRBG_C:POLARSSL_ENTROPY_C */
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	580	void rsa_gen_key( int nrbits, int exponent, int result)
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	581	{
				582	rsa_context ctx;
Paul Bakker	c0a1a31	2011-12-04 17:12:15 +0000	[diff] [blame]	583	entropy_context entropy;
				584	ctr_drbg_context ctr_drbg;
Paul Bakker	ef3f8c7	2013-06-24 13:01:08 +0200	[diff] [blame]	585	const char *pers = "test_suite_rsa";
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	586
Paul Bakker	c0a1a31	2011-12-04 17:12:15 +0000	[diff] [blame]	587	entropy_init( &entropy );
				588	TEST_ASSERT( ctr_drbg_init( &ctr_drbg, entropy_func, &entropy,
Paul Bakker	ef3f8c7	2013-06-24 13:01:08 +0200	[diff] [blame]	589	(const unsigned char *) pers, strlen( pers ) ) == 0 );
Paul Bakker	c0a1a31	2011-12-04 17:12:15 +0000	[diff] [blame]	590
Paul Bakker	ebcef6d	2010-08-16 11:10:49 +0000	[diff] [blame]	591	rsa_init( &ctx, 0, 0 );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	592
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	593	TEST_ASSERT( rsa_gen_key( &ctx, ctr_drbg_random, &ctr_drbg, nrbits, exponent ) == result );
				594	if( result == 0 )
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	595	{
				596	TEST_ASSERT( rsa_check_privkey( &ctx ) == 0 );
				597	}
Paul Bakker	58ef6ec	2013-01-03 11:33:48 +0100	[diff] [blame]	598
				599	rsa_free( &ctx );
Paul Bakker	1ffefac	2013-09-28 15:23:03 +0200	[diff] [blame]	600	entropy_free( &entropy );
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	601	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	602	/* END_CASE */
Paul Bakker	821fb08	2009-07-12 13:26:42 +0000	[diff] [blame]	603
Manuel Pégourié-Gonnard	2014016	2013-10-10 12:48:03 +0200	[diff] [blame]	604	/* BEGIN_CASE depends_on:POLARSSL_SELF_TEST */
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	605	void rsa_selftest()
Paul Bakker	42a29bf	2009-07-07 20:18:41 +0000	[diff] [blame]	606	{
				607	TEST_ASSERT( rsa_self_test( 0 ) == 0 );
				608	}
Paul Bakker	33b43f1	2013-08-20 11:48:36 +0200	[diff] [blame]	609	/* END_CASE */