generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

RT 3493: fix RSA test

Browse Source 
- Pass in the right ciphertext length to ensure we're indeed testing
  ciphertext corruption (and not truncation).
- Only test one mutation per byte to not make the test too slow.
- Add a separate test for truncated ciphertexts.

Reviewed-by: Richard Levitte <levitte@openssl.org>
This commit is contained in:
Emilia Kasper 2015-09-01 13:19:15 +02:00
parent 8db7878106
commit 25d6b3401c
1 changed files with 20 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
test/rsa_test.c
View File

@ -297,22 +297,30 @@ int main(int argc, char *argv[])
} else } else
printf("OAEP encryption/decryption ok\n"); printf("OAEP encryption/decryption ok\n");
/* Try decrypting corrupted ciphertexts */ /* Try decrypting corrupted ciphertexts. */
for (n = 0; n < clen; ++n) { for (n = 0; n < clen; ++n) {
int b; ctext[n] ^= 1;
unsigned char saved = ctext[n]; num = RSA_private_decrypt(clen, ctext, ptext, key,
for (b = 0; b < 256; ++b) {
if (b == saved)
continue;
ctext[n] = b;
num = RSA_private_decrypt(num, ctext, ptext, key,
RSA_PKCS1_OAEP_PADDING); RSA_PKCS1_OAEP_PADDING);
if (num > 0) { if (num > 0) {
printf("Corrupt data decrypted!\n"); printf("Corrupt data decrypted!\n");
err = 1; err = 1;
} break;
}
ctext[n] ^= 1;
}
/* Test truncated ciphertexts, as well as negative length. */
for (n = -1; n < clen; ++n) {
num = RSA_private_decrypt(n, ctext, ptext, key,
RSA_PKCS1_OAEP_PADDING);
if (num > 0) {
printf("Truncated data decrypted!\n");
err = 1;
break;
} }
} }
next: next:
RSA_free(key); RSA_free(key);
} }