lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-07-30 22:43:08 +03:00
Code Activity

test_suite_pk: add comment for pk_copy_from_psa_builtin_fail

Browse Source 
Explain why this kind of test is possible for RSA keys, while
it is not possible for EC ones.

Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
This commit is contained in:
Valerio Setti
2024-03-12 06:05:03 +01:00
parent d286491ed7
commit 8b3c6fffa7
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
tests/suites/test_suite_pk.data
View File

@ -1459,6 +1459,15 @@ pk_import_into_psa_opaque:PSA_KEY_TYPE_ECC_KEY_PAIR(MBEDTLS_TEST_PSA_ECC_ONE_FAM
Copy from PSA: use wrong parameters Copy from PSA: use wrong parameters
pk_copy_from_psa_fail: pk_copy_from_psa_fail:
# The following test is only possible for RSA keys and not for EC ones:
# - for the former it is possible to have an accelerated RSA key in PSA while
# having RSA_C disabled. Since RSA path is guarded by RSA_C in mbedtls_pk_copy_from_psa(),
# any attempt to copy that key will fail.
# - for the latter instead the guard is PK_HAVE_ECC_KEYS which is enabled as soon
# as there is any curve supported either builtin or in a driver. In a scenario
# in which a certain EC key is only available through a driver and not as
# builtin mbedtls_pk_copy_from_psa() uses functions that will all succeed
# and therefore it will succeed.
Copy from PSA: accelerated key only, not available as built-in Copy from PSA: accelerated key only, not available as built-in
pk_copy_from_psa_builtin_fail: pk_copy_from_psa_builtin_fail: