lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-05-17 17:41:17 +03:00
Code

Add key_destroyable parameter to exercise_signature_key

Browse Source 
Signed-off-by: Ryan Everett <ryan.everett@arm.com>
This commit is contained in:
Ryan Everett 2024-03-12 16:11:01 +00:00
parent fbe703de2a
commit 6edd40819e
1 changed files with 37 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

54
tests/src/psa_exercise_key.c
View File

@ -337,7 +337,8 @@ static int can_sign_or_verify_message(psa_key_usage_t usage,
static int exercise_signature_key(mbedtls_svc_key_id_t key, static int exercise_signature_key(mbedtls_svc_key_id_t key,
psa_key_usage_t usage, psa_key_usage_t usage,
psa_algorithm_t alg) psa_algorithm_t alg,
int key_destroyable)
{ {
/* If the policy allows signing with any hash, just pick one. */ /* If the policy allows signing with any hash, just pick one. */
psa_algorithm_t hash_alg = PSA_ALG_SIGN_GET_HASH(alg); psa_algorithm_t hash_alg = PSA_ALG_SIGN_GET_HASH(alg);
@ -351,6 +352,7 @@ static int exercise_signature_key(mbedtls_svc_key_id_t key,
TEST_FAIL("No hash algorithm for hash-and-sign testing"); TEST_FAIL("No hash algorithm for hash-and-sign testing");
#endif #endif
} }
psa_status_t status = PSA_SUCCESS;
if (usage & (PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH) && if (usage & (PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH) &&
PSA_ALG_IS_SIGN_HASH(alg)) { PSA_ALG_IS_SIGN_HASH(alg)) {
@ -367,10 +369,15 @@ static int exercise_signature_key(mbedtls_svc_key_id_t key,
} }
if (usage & PSA_KEY_USAGE_SIGN_HASH) { if (usage & PSA_KEY_USAGE_SIGN_HASH) {
PSA_ASSERT(psa_sign_hash(key, alg, status = psa_sign_hash(key, alg,
payload, payload_length, payload, payload_length,
signature, sizeof(signature), signature, sizeof(signature),
&signature_length)); &signature_length);
if (key_destroyable && status == PSA_ERROR_INVALID_HANDLE) {
/* The key has been destroyed. */
return 1;
}
PSA_ASSERT(status);
} }
if (usage & PSA_KEY_USAGE_VERIFY_HASH) { if (usage & PSA_KEY_USAGE_VERIFY_HASH) {
@ -378,10 +385,14 @@ static int exercise_signature_key(mbedtls_svc_key_id_t key,
(usage & PSA_KEY_USAGE_SIGN_HASH ? (usage & PSA_KEY_USAGE_SIGN_HASH ?
PSA_SUCCESS : PSA_SUCCESS :
PSA_ERROR_INVALID_SIGNATURE); PSA_ERROR_INVALID_SIGNATURE);
TEST_EQUAL(psa_verify_hash(key, alg, status = psa_verify_hash(key, alg,
payload, payload_length, payload, payload_length,
signature, signature_length), signature, signature_length);
verify_status); if (key_destroyable && status == PSA_ERROR_INVALID_HANDLE) {
/* The key has been destroyed. */
return 1;
}
TEST_ASSERT(status == verify_status);
} }
} }
@ -392,10 +403,15 @@ static int exercise_signature_key(mbedtls_svc_key_id_t key,
size_t signature_length = sizeof(signature); size_t signature_length = sizeof(signature);
if (usage & PSA_KEY_USAGE_SIGN_MESSAGE) { if (usage & PSA_KEY_USAGE_SIGN_MESSAGE) {
PSA_ASSERT(psa_sign_message(key, alg, status = psa_sign_message(key, alg,
message, message_length, message, message_length,
signature, sizeof(signature), signature, sizeof(signature),
&signature_length)); &signature_length);
if (key_destroyable && status == PSA_ERROR_INVALID_HANDLE) {
/* The key has been destroyed. */
return 1;
}
PSA_ASSERT(status);
} }
if (usage & PSA_KEY_USAGE_VERIFY_MESSAGE) { if (usage & PSA_KEY_USAGE_VERIFY_MESSAGE) {
@ -403,10 +419,14 @@ static int exercise_signature_key(mbedtls_svc_key_id_t key,
(usage & PSA_KEY_USAGE_SIGN_MESSAGE ? (usage & PSA_KEY_USAGE_SIGN_MESSAGE ?
PSA_SUCCESS : PSA_SUCCESS :
PSA_ERROR_INVALID_SIGNATURE); PSA_ERROR_INVALID_SIGNATURE);
TEST_EQUAL(psa_verify_message(key, alg, status = psa_verify_message(key, alg,
message, message_length, message, message_length,
signature, signature_length), signature, signature_length);
verify_status); if (key_destroyable && status == PSA_ERROR_INVALID_HANDLE) {
/* The key has been destroyed. */
return 1;
}
TEST_ASSERT(status == verify_status);
} }
} }