mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-11-30 00:04:14 +01:00
2baae9ef71
This is intended to test transcoding the signature to the format expected by
PSA (fixed-length encoding of r, s) when r and s have respectively:
- full length with initial null byte
- full length without initial null byte
- non-full length with initial null byte
- non-full length without initial null byte
The signatures were generated using:
programs/pkey/pk_sign tests/data_files/server5.key foo
where foo is an empty file, and with a variant of one of the following patches
applied:
diff --git a/library/ecdsa.c b/library/ecdsa.c
index abac015cebc6..e4a27b044516 100644
--- a/library/ecdsa.c
+++ b/library/ecdsa.c
@@ -305,7 +305,9 @@ static int ecdsa_sign_restartable( mbedtls_ecp_group *grp,
ret = MBEDTLS_ERR_ECP_RANDOM_FAILED;
goto cleanup;
}
+ printf("\ngenerating r...\n");
+gen:
MBEDTLS_MPI_CHK( mbedtls_ecp_gen_privkey( grp, pk, f_rng, p_rng ) );
#if defined(MBEDTLS_ECP_RESTARTABLE)
@@ -317,6 +319,11 @@ mul:
MBEDTLS_MPI_CHK( mbedtls_ecp_mul_restartable( grp, &R, pk, &grp->G,
f_rng, p_rng, ECDSA_RS_ECP ) );
MBEDTLS_MPI_CHK( mbedtls_mpi_mod_mpi( pr, &R.X, &grp->N ) );
+
+ size_t bits = mbedtls_mpi_bitlen( pr );
+ printf("%zu ", bits);
+ if( bits != 255 )
+ goto gen;
}
while( mbedtls_mpi_cmp_int( pr, 0 ) == 0 );
or:
diff --git a/library/ecdsa.c b/library/ecdsa.c
index abac015cebc6..d704376e0c42 100644
--- a/library/ecdsa.c
+++ b/library/ecdsa.c
@@ -305,7 +305,9 @@ static int ecdsa_sign_restartable( mbedtls_ecp_group *grp,
ret = MBEDTLS_ERR_ECP_RANDOM_FAILED;
goto cleanup;
}
+ printf("\ngenerating r...\n");
+gen:
MBEDTLS_MPI_CHK( mbedtls_ecp_gen_privkey( grp, pk, f_rng, p_rng ) );
#if defined(MBEDTLS_ECP_RESTARTABLE)
@@ -353,6 +355,11 @@ modn:
MBEDTLS_MPI_CHK( mbedtls_mpi_inv_mod( s, pk, &grp->N ) );
MBEDTLS_MPI_CHK( mbedtls_mpi_mul_mpi( s, s, &e ) );
MBEDTLS_MPI_CHK( mbedtls_mpi_mod_mpi( s, s, &grp->N ) );
+
+ size_t bits = mbedtls_mpi_bitlen( s );
+ printf("%zu ", bits);
+ if( bits != 247 )
+ goto gen;
}
while( mbedtls_mpi_cmp_int( s, 0 ) == 0 );
with the value edited manually between each run to get the desired bit length.
|
||
|---|---|---|
| .. | ||
| helpers.function | ||
| host_test.function | ||
| main_test.function | ||
| target_test.function | ||
| test_suite_aes.cbc.data | ||
| test_suite_aes.cfb.data | ||
| test_suite_aes.ecb.data | ||
| test_suite_aes.function | ||
| test_suite_aes.ofb.data | ||
| test_suite_aes.rest.data | ||
| test_suite_aes.xts.data | ||
| test_suite_arc4.data | ||
| test_suite_arc4.function | ||
| test_suite_aria.data | ||
| test_suite_aria.function | ||
| test_suite_asn1write.data | ||
| test_suite_asn1write.function | ||
| test_suite_base64.data | ||
| test_suite_base64.function | ||
| test_suite_blowfish.data | ||
| test_suite_blowfish.function | ||
| test_suite_camellia.data | ||
| test_suite_camellia.function | ||
| test_suite_ccm.data | ||
| test_suite_ccm.function | ||
| test_suite_chacha20.data | ||
| test_suite_chacha20.function | ||
| test_suite_chachapoly.data | ||
| test_suite_chachapoly.function | ||
| test_suite_cipher.aes.data | ||
| test_suite_cipher.arc4.data | ||
| test_suite_cipher.blowfish.data | ||
| test_suite_cipher.camellia.data | ||
| test_suite_cipher.ccm.data | ||
| test_suite_cipher.chacha20.data | ||
| test_suite_cipher.chachapoly.data | ||
| test_suite_cipher.des.data | ||
| test_suite_cipher.function | ||
| test_suite_cipher.gcm.data | ||
| test_suite_cipher.null.data | ||
| test_suite_cipher.padding.data | ||
| test_suite_cmac.data | ||
| test_suite_cmac.function | ||
| test_suite_ctr_drbg.data | ||
| test_suite_ctr_drbg.function | ||
| test_suite_debug.data | ||
| test_suite_debug.function | ||
| test_suite_des.data | ||
| test_suite_des.function | ||
| test_suite_dhm.data | ||
| test_suite_dhm.function | ||
| test_suite_ecdh.data | ||
| test_suite_ecdh.function | ||
| test_suite_ecdsa.data | ||
| test_suite_ecdsa.function | ||
| test_suite_ecjpake.data | ||
| test_suite_ecjpake.function | ||
| test_suite_ecp.data | ||
| test_suite_ecp.function | ||
| test_suite_entropy.data | ||
| test_suite_entropy.function | ||
| test_suite_error.data | ||
| test_suite_error.function | ||
| test_suite_gcm.aes128_de.data | ||
| test_suite_gcm.aes128_en.data | ||
| test_suite_gcm.aes192_de.data | ||
| test_suite_gcm.aes192_en.data | ||
| test_suite_gcm.aes256_de.data | ||
| test_suite_gcm.aes256_en.data | ||
| test_suite_gcm.camellia.data | ||
| test_suite_gcm.function | ||
| test_suite_hkdf.data | ||
| test_suite_hkdf.function | ||
| test_suite_hmac_drbg.function | ||
| test_suite_hmac_drbg.misc.data | ||
| test_suite_hmac_drbg.no_reseed.data | ||
| test_suite_hmac_drbg.nopr.data | ||
| test_suite_hmac_drbg.pr.data | ||
| test_suite_md.data | ||
| test_suite_md.function | ||
| test_suite_mdx.data | ||
| test_suite_mdx.function | ||
| test_suite_memory_buffer_alloc.data | ||
| test_suite_memory_buffer_alloc.function | ||
| test_suite_mpi.data | ||
| test_suite_mpi.function | ||
| test_suite_nist_kw.data | ||
| test_suite_nist_kw.function | ||
| test_suite_pem.data | ||
| test_suite_pem.function | ||
| test_suite_pk.data | ||
| test_suite_pk.function | ||
| test_suite_pkcs1_v15.data | ||
| test_suite_pkcs1_v15.function | ||
| test_suite_pkcs1_v21.data | ||
| test_suite_pkcs1_v21.function | ||
| test_suite_pkcs5.data | ||
| test_suite_pkcs5.function | ||
| test_suite_pkparse.data | ||
| test_suite_pkparse.function | ||
| test_suite_pkwrite.data | ||
| test_suite_pkwrite.function | ||
| test_suite_poly1305.data | ||
| test_suite_poly1305.function | ||
| test_suite_rsa.data | ||
| test_suite_rsa.function | ||
| test_suite_shax.data | ||
| test_suite_shax.function | ||
| test_suite_ssl.data | ||
| test_suite_ssl.function | ||
| test_suite_timing.data | ||
| test_suite_timing.function | ||
| test_suite_version.data | ||
| test_suite_version.function | ||
| test_suite_x509parse.data | ||
| test_suite_x509parse.function | ||
| test_suite_x509write.data | ||
| test_suite_x509write.function | ||
| test_suite_xtea.data | ||
| test_suite_xtea.function | ||