source-git / gnutls

Clone
Source Code
GIT

Blame lib/crypto-selftests-pk.c

c8 c8s master
  1.   a5833e423934687d0d6d9e22e45a4bb7a9ef30d1
  2.   lib
  3.   crypto-selftests-pk.c
Blob History Raw
Packit aea12f 
/*
Packit aea12f 
 * Copyright (C) 2013 Red Hat
Packit aea12f 
 *
Packit aea12f 
 * Author: Nikos Mavrogiannopoulos
Packit aea12f 
 *
Packit aea12f 
 * This file is part of GnuTLS.
Packit aea12f 
 *
Packit aea12f 
 * The GnuTLS is free software; you can redistribute it and/or
Packit aea12f 
 * modify it under the terms of the GNU Lesser General Public License
Packit aea12f 
 * as published by the Free Software Foundation; either version 2.1 of
Packit aea12f 
 * the License, or (at your option) any later version.
Packit aea12f 
 *
Packit aea12f 
 * This library is distributed in the hope that it will be useful, but
Packit aea12f 
 * WITHOUT ANY WARRANTY; without even the implied warranty of
Packit aea12f 
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
Packit aea12f 
 * Lesser General Public License for more details.
Packit aea12f 
 *
Packit aea12f 
 * You should have received a copy of the GNU Lesser General Public License
Packit aea12f 
 * along with this program.  If not, see <https://www.gnu.org/licenses/>
Packit aea12f 
 *
Packit aea12f 
 */
Packit aea12f
Packit aea12f 
#include "gnutls_int.h"
Packit aea12f 
#include "errors.h"
Packit Service 991b93 
#include "fips.h"
Packit aea12f 
#include <cipher_int.h>
Packit aea12f 
#include <datum.h>
Packit aea12f 
#include <gnutls/crypto.h>
Packit aea12f 
#include <gnutls/self-test.h>
Packit aea12f 
#include "errors.h"
Packit aea12f 
#include <gnutls/abstract.h>
Packit aea12f 
#include <pk.h>
Packit aea12f 
#include <debug.h>
Packit aea12f
Packit aea12f 
#define DATASTR "Hello there!"
Packit aea12f 
static const gnutls_datum_t signed_data = {
Packit aea12f 
	.data = (void *) DATASTR,
Packit aea12f 
	.size = sizeof(DATASTR) - 1
Packit aea12f 
};
Packit aea12f
Packit aea12f 
static const gnutls_datum_t bad_data = {
Packit aea12f 
	.data = (void *) DATASTR,
Packit aea12f 
	.size = sizeof(DATASTR) - 2
Packit aea12f 
};
Packit aea12f
Packit Service 991b93 
/* RSA 2048 private key and signature */
Packit Service 991b93 
static const char rsa_2048_privkey[] =
Packit Service 991b93 
	"-----BEGIN RSA PRIVATE KEY-----\n"
Packit Service 991b93 
	"MIIEogIBAAKCAQEA6yCv+BLrRP/dMPBXJWK21c0aqxIX6JkODL4K+zlyEURt8/Wp\n"
Packit Service 991b93 
	"nw37CJwHD3VrimSnk2SJvBfTNhzYhCsLShDOPvi4qBrLZ1WozjoVJ8tRE4VCcjQJ\n"
Packit Service 991b93 
	"snpJ7ldiV+Eos1Z3FkbV/uQcw5CYCb/TciSukaWlI+G/xas9EOOFt4aELbc1yDe0\n"
Packit Service 991b93 
	"hyfPDtoaKfek4GhT9qT1I8pTC40P9OrA9Jt8lblqxHWwqmdunLTjPjB5zJT6QgI+\n"
Packit Service 991b93 
	"j1xuq7ZOQhveNA/AOyzh574GIpgsuvPPLBQwsCQkscr7cFnCsyOPgYJrQW3De2+l\n"
Packit Service 991b93 
	"wjp2D7gZeeQcFQKazXcFoiqNpJWoBWmU0qqsgwIDAQABAoIBAAghNzRioxPdrO42\n"
Packit Service 991b93 
	"QS0fvqah0tw7Yew+7oduQr7w+4qxTQP0aIsBVr6zdmMIclF0rX6hKUoBoOHsGWho\n"
Packit Service 991b93 
	"fJlw/1CaFPhrBMFr6sxGodigZQtBvkxolDVBmTDOgK39MQUSZke0501K4du5MiiU\n"
Packit Service 991b93 
	"I2F89zQ9//m/onvZMeFVnJf95LAX5qHr/FLARQFtOpgWzcGVxdvJdJlYb1zMUril\n"
Packit Service 991b93 
	"PqyAZXo1j0vgHWwSd54k8mBLus7l8KT57VFce8+9nBPrOrqW4rDVXzs/go3S+kiI\n"
Packit Service 991b93 
	"OyzYeUs9czg1N1e3VhEaC+EdYUawc0ASuEkbsJ53L8pwDvS+2ly2ykYziJp95Fjv\n"
Packit Service 991b93 
	"bzyd1dECgYEA8FzGCxu7A6/ei9Dn0Fmi8Ns/QvEgbdlGw4v4MlXHjrGJYdOB0BwG\n"
Packit Service 991b93 
	"2D2k0ODNYKlUX2J4hi5x8aCH33y/v0EcOHyuqM33vOWBVbdcumCqcOmp341UebAO\n"
Packit Service 991b93 
	"uCPgDJNhjxXaeDVPnizqnOBA1B9sTxwmCOmFIiFRLbR+XluvDh3t8L0CgYEA+my6\n"
Packit Service 991b93 
	"124Rw7kcFx+9JoB/Z+bUJDYpefUT91gBUhhEdEMx5fujhMzAbLpIRjFQq+75Qb7v\n"
Packit Service 991b93 
	"0NyIS09B4oKOqQYzVEJwqKY7H71BTl7QuzJ8Qtuh/DMZsVIt6xpvdeuAKpEOqz44\n"
Packit Service 991b93 
	"ZD3fW1B59A3ja7kqZadCqq2b02UTk+gdeOrYBj8CgYACX3gZDfoHrEnPKY3QUcI5\n"
Packit Service 991b93 
	"DIEQYR8H1phLP+uAW7ZvozMPAy6J5mzu35Tr9vwwExvhITC9amH3l7UfsLSX58Wm\n"
Packit Service 991b93 
	"jRyQUBA9Dir7tKa2tFOab8Qcj+GgnetXSAtjNGVHK1kPzL7vedQLHm+laHYCRe3e\n"
Packit Service 991b93 
	"Mqf80UVi5SBGQDN3OTZrJQKBgEkj2oozDqMwfGDQl0kYfJ2XEFynKQQCrVsva+tT\n"
Packit Service 991b93 
	"RSMDwR4fmcmel5Dp81P08U/WExy9rIM+9duxAVgrs4jwU6uHYCoRqvEBMIK4NJSI\n"
Packit Service 991b93 
	"ETzhsvTa4+UjUF/7L5SsPJmyFiuzl3rHi2W7InNCXyrGQPjBmjoJTJq4SbiIMZtw\n"
Packit Service 991b93 
	"U7m3AoGACG2rE/Ud71kyOJcKwxzEt8kd+2CMuaZeE/xk+3zLSSjXJzKPficogM3I\n"
Packit Service 991b93 
	"K37/N7N0FjhdQ5hRuD3GH1fcjv9AKdGHsH7RuaG+jHTRUjS1glr17SSQzh6xXnWj\n"
Packit Service 991b93 
	"jG0M4UZm5P9STL09nZuWH0wfpr/eg+9+A6yOVfnADI13v+Ygk7k=\n"
Packit Service 991b93 
	"-----END RSA PRIVATE KEY-----\n";
Packit Service 991b93
Packit Service 991b93 
static const char rsa_2048_sig[] =
Packit Service 991b93 
	"\x7a\xb3\xf8\xb0\xf9\xf0\x52\x88\x37\x17\x97\x9f\xbe\x61\xb4\xd2"
Packit Service 991b93 
	"\x43\x78\x9f\x79\x92\xd0\xad\x08\xdb\xbd\x3c\x72\x7a\xb5\x51\x59"
Packit Service 991b93 
	"\x63\xd6\x7d\xf1\x9c\x1e\x10\x7b\x27\xab\xf8\xd4\x9d\xcd\xc5\xf9"
Packit Service 991b93 
	"\xae\xf7\x09\x6b\x40\x93\xc5\xe9\x1c\x0f\xb4\x82\xa1\x47\x86\x54"
Packit Service 991b93 
	"\x63\xd2\x4d\x40\x9a\x80\xb9\x38\x45\x69\xa2\xd6\x92\xb6\x69\x7f"
Packit Service 991b93 
	"\x3f\xf3\x5b\xa5\x1d\xac\x06\xad\xdf\x4e\xbb\xe6\xda\x68\x0d\xe5"
Packit Service 991b93 
	"\xab\xef\xd2\xf0\xc5\xd8\xc0\xed\x80\xe2\xd4\x76\x98\xec\x44\xa2"
Packit Service 991b93 
	"\xfc\x3f\xce\x2e\x8b\xc4\x4b\xab\xb0\x70\x24\x52\x85\x2a\x36\xcd"
Packit Service 991b93 
	"\x9a\xb5\x05\x00\xea\x98\x7c\x72\x06\x68\xb1\x38\x44\x16\x80\x6a"
Packit Service 991b93 
	"\x3b\x64\x72\xbb\xfd\x4b\xc9\xdd\xda\x2a\x68\xde\x7f\x6e\x48\x28"
Packit Service 991b93 
	"\xc1\x63\x57\x2b\xde\x83\xa3\x27\x34\xd7\xa6\x87\x18\x35\x10\xff"
Packit Service 991b93 
	"\x31\xd9\x47\xc9\x84\x35\xe1\xaa\xe2\xf7\x98\xfa\x19\xd3\xf1\x94"
Packit Service 991b93 
	"\x25\x2a\x96\xe4\xa8\xa7\x05\x10\x93\x87\xde\x96\x85\xe5\x68\xb8"
Packit Service 991b93 
	"\xe5\x4e\xbf\x66\x85\x91\xbd\x52\x5b\x3d\x9f\x1b\x79\xea\xe3\x8b"
Packit Service 991b93 
	"\xef\x62\x18\x39\x7a\x50\x01\x46\x1b\xde\x8d\x37\xbc\x90\x6c\x07"
Packit Service 991b93 
	"\xc0\x07\xed\x60\xce\x2e\x31\xd6\x8f\xe8\x75\xdb\x45\x21\xc6\xcb";
Packit Service 991b93
Packit Service 991b93 
/* DSA 2048 private key and signature */
Packit Service 991b93 
static const char dsa_2048_privkey[] =
Packit Service 991b93 
	"-----BEGIN DSA PRIVATE KEY-----\n"
Packit Service 991b93 
	"MIIDTQIBAAKCAQEAh60B6yPMRIT7udq2kKuwnQDohvT1U0w+RJcSr23C05cM/Ovn\n"
Packit Service 991b93 
	"UP/8Rrj6T8K+uYhMbKgLaZiJJW9q04jaPQk0cfUphbLvRjzVHwE/0Bkb+Y1Rv7ni\n"
Packit Service 991b93 
	"Jot2IFMq5iuNraf889PC0WREvFCcIkSFY2Ac4WT7mCcBtfx/raGFXDUjcUrJ0HwZ\n"
Packit Service 991b93 
	"IOhjQDfcXUsztuyYsYA75ociEY8kyDZq/ixyr5++R1VjNf30Re8AbQlXOEGxEN5t\n"
Packit Service 991b93 
	"t+Tvpq8K5L3prQs2KNSzyOUmedjb/ojH4T4qe/RL9EVjjeuIGHDNUT6F197yZ91y\n"
Packit Service 991b93 
	"qLLTf1WjnUyZcKij5rryX0LJBBWawEZjNSHZawIdAMQlyycia4NigCdiDR+QptUn\n"
Packit Service 991b93 
	"2xrj9o14fXkIrXcCggEAXRZm1rbPhsjSTo6cpCVrmDzO1grv83EHiBH4MvRQQnP8\n"
Packit Service 991b93 
	"FpAREsBA5cYju97XvLaLhioZeMjLn08kU7TUbHRUB+ULTuVvE2dQbBpGuKiLRRt9\n"
Packit Service 991b93 
	"6U2T0eD3xGLoM+o8EY/kpqaWGEpZv7hzM9xuo4vy55+viAZgFWULqmltwfG/7w7V\n"
Packit Service 991b93 
	"NXUHNv5H4Ipw//fSDLTPqzUlNqSSswDLz6pCjWEs0rWAqNAMaOiLTz4id9pL48Oe\n"
Packit Service 991b93 
	"oAfpcQR9tgTEnwyXfZBnrJVclHhkHKGeXvU05IgCzpKO76Z5R+By50T0i/JV7vzM\n"
Packit Service 991b93 
	"l2yS9aAl/cprT6U7yI3oU/blldCVNpMcFAFb+fO8DAKCAQBVMo8xptyvQOJeSvbO\n"
Packit Service 991b93 
	"SSYdJ3IiI/0GdkcGWXblWg9z7mrPaWEnT7OquEm/+vYtWd3GHDtyNM+jzsN4Xgjc\n"
Packit Service 991b93 
	"TL3AEd2hLiozJQ1BFKw25VU08UHAYTzUxZhO4Vwtmp46Kwj8YLDQ3NHRWCBxpDQR\n"
Packit Service 991b93 
	"fbiFvyXP+qXap6plMfrydnUD1mae/JSOWOYgdB7tFIehstLxVXx/cAnjwgFU03Df\n"
Packit Service 991b93 
	"grjsad92zA1Hc9wIjbsgAQdTR5DWnFRkRt3UtayBwoyqm6QceZHsv1NAGvkQ4ion\n"
Packit Service 991b93 
	"bEjkHkjF9YCkR9/rspR8cLghRIXMjOpypuSbaRPeeWq0gP2UOxFL/d3iWH0ETr/L\n"
Packit Service 991b93 
	"kTlCAhxYGpVgtfB96qmJukyl9GOGvfkwFTgEyIDoV84M\n"
Packit Service 991b93 
	"-----END DSA PRIVATE KEY-----\n";
Packit Service 991b93
Packit Service 991b93 
static const char dsa_2048_sig[] =
Packit Service 991b93 
	"\x30\x3d\x02\x1d\x00\xbe\x87\x2f\xcf\xa1\xe4\x86\x5c\x72\x58\x4a"
Packit Service 991b93 
	"\x7b\x8f\x32\x7f\xa5\x1b\xdc\x5c\xae\xda\x98\xea\x15\x32\xed\x0c"
Packit Service 991b93 
	"\x4e\x02\x1c\x4c\x76\x01\x2b\xcd\xb9\x33\x95\xf2\xfa\xde\x56\x01"
Packit Service 991b93 
	"\xb7\xaa\xe4\x5a\x4a\x2e\xf1\x24\x5a\xd1\xb5\x83\x9a\x93\x61";
Packit Service 991b93
Packit Service 991b93 
/* secp256r1 private key and signature */
Packit Service 991b93 
static const char ecdsa_secp256r1_privkey[] =
Packit Service 991b93 
	"-----BEGIN EC PRIVATE KEY-----\n"
Packit Service 991b93 
	"MHcCAQEEIPAKWV7+pZe9c5EubMNfAEKWRQtP/MvlO9HehwHmJssNoAoGCCqGSM49\n"
Packit Service 991b93 
	"AwEHoUQDQgAE2CNONRio3ciuXtoomJKs3MdbzLbd44VPhtzJN30VLFm5gvnfiCj2\n"
Packit Service 991b93 
	"zzz7pl9Cv0ECHl6yedNI8QEKdcwCDgEmkQ==\n"
Packit Service 991b93 
	"-----END EC PRIVATE KEY-----\n";
Packit Service 991b93
Packit Service 991b93 
static const char ecdsa_secp256r1_sig[] =
Packit Service 991b93 
	"\x30\x45\x02\x21\x00\x80\x67\x18\xb9\x72\xc6\x0b\xe1\xc9\x89\x9b"
Packit Service 991b93 
	"\x85\x11\x49\x29\x08\xd9\x86\x76\xcc\xfb\xc1\xf4\xd0\xa2\x5e\xa7"
Packit Service 991b93 
	"\xb9\x12\xfb\x1a\x68\x02\x20\x67\x12\xb1\x89\x9e\x1d\x9d\x5c\x0f"
Packit Service 991b93 
	"\xef\x6e\xa7\x2a\x95\x8c\xfa\x54\x20\x80\xc8\x30\x7c\xff\x06\xbc"
Packit Service 991b93 
	"\xc8\xe2\x9a\x2f\x05\x2f\x67";
Packit Service 991b93
Packit Service 991b93 
#ifdef ENABLE_NON_SUITEB_CURVES
Packit Service 991b93 
/* secp192r1 private key and signature */
Packit Service 991b93 
static const char ecdsa_secp192r1_privkey[] =
Packit Service 991b93 
	"-----BEGIN EC PRIVATE KEY-----"
Packit Service 991b93 
	"MF8CAQEEGLjezFcbgDMeApVrdtZHvu/k1a8/tVZ41KAKBggqhkjOPQMBAaE0AzIA"
Packit Service 991b93 
	"BO1lciKdgxeRH8k64vxcaV1OYIK9akVrW02Dw21MXhRLP0l0wzCw6LGSr5rS6AaL"
Packit Service 991b93 
	"Fg==" "-----END EC PRIVATE KEY-----";
Packit Service 991b93
Packit Service 991b93 
static const char ecdsa_secp192r1_sig[] =
Packit Service 991b93 
	"\x30\x34\x02\x18\x7c\x43\xe3\xb7\x26\x90\x43\xb5\xf5\x63\x8f\xee"
Packit Service 991b93 
	"\xac\x78\x3d\xac\x35\x35\xd0\x1e\x83\x17\x2b\x64\x02\x18\x14\x6e"
Packit Service 991b93 
	"\x94\xd5\x7e\xac\x43\x42\x0b\x71\x7a\xc8\x29\xe6\xe3\xda\xf2\x95"
Packit Service 991b93 
	"\x0e\xe0\x63\x24\xed\xf2";
Packit Service 991b93
Packit Service 991b93 
/* secp224r1 private key and signature */
Packit Service 991b93 
static const char ecdsa_secp224r1_privkey[] =
Packit Service 991b93 
	"-----BEGIN EC PRIVATE KEY-----"
Packit Service 991b93 
	"MGgCAQEEHOKWJFdWdrR/CgVrUeTeawOrJ9GozE9KKx2a8PmgBwYFK4EEACGhPAM6"
Packit Service 991b93 
	"AAQKQj3YpenWT7lFR41SnBvmj/+Bj+kgzQnaF65qWAtPRJsZXFlLTu3/IUNqSRu9"
Packit Service 991b93 
	"DqPsk8xBHAB7pA==" "-----END EC PRIVATE KEY-----";
Packit Service 991b93
Packit Service 991b93 
static const char ecdsa_secp224r1_sig[] =
Packit Service 991b93 
	"\x30\x3d\x02\x1c\x14\x22\x09\xa1\x51\x33\x37\xfd\x78\x73\xbd\x84"
Packit Service 991b93 
	"\x6e\x76\xa8\x60\x90\xf5\xb6\x57\x34\x25\xe0\x79\xe3\x01\x61\xa9"
Packit Service 991b93 
	"\x02\x1d\x00\xb1\xee\xdb\xae\xb3\xe6\x9c\x04\x68\xd5\xe1\x0d\xb6"
Packit Service 991b93 
	"\xfc\x5c\x45\xc3\x4f\xbf\x2b\xa5\xe0\x89\x37\x84\x04\x82\x5f";
Packit Service 991b93 
#endif
Packit Service 991b93
Packit Service 991b93 
/* secp384r1 private key and signature */
Packit Service 991b93 
static const char ecdsa_secp384r1_privkey[] =
Packit Service 991b93 
	"-----BEGIN EC PRIVATE KEY-----"
Packit Service 991b93 
	"MIGkAgEBBDDevshD6gb+4rZpC9vwFcIwNs4KmGzdqCxyyN40a8uOWRbyf7aHdiSS"
Packit Service 991b93 
	"03oAyKtc4JCgBwYFK4EEACKhZANiAARO1KkPMno2tnNXx1S9EZkp8SOpDCZ4aobH"
Packit Service 991b93 
	"IYv8RHnSmKf8I3OKD6TaoeR+1MwJmNJUH90Bj45WXla68/vsPiFcfVKboxsZYe/n"
Packit Service 991b93 
	"pv8e4ugXagVQVBXNZJ859iYPdJR24vo=" "-----END EC PRIVATE KEY-----";
Packit Service 991b93
Packit Service 991b93 
static const char ecdsa_secp384r1_sig[] =
Packit Service 991b93 
	"\x30\x65\x02\x31\x00\xa7\x73\x60\x16\xdb\xf9\x1f\xfc\x9e\xd2\x12"
Packit Service 991b93 
	"\x23\xd4\x04\xa7\x31\x1f\x15\x28\xfd\x87\x9c\x2c\xb1\xf3\x38\x35"
Packit Service 991b93 
	"\x23\x3b\x6e\xfe\x6a\x5d\x89\x34\xbe\x02\x82\xc6\x27\xea\x45\x53"
Packit Service 991b93 
	"\xa9\x87\xc5\x31\x0a\x02\x30\x76\x32\x80\x6b\x43\x3c\xb4\xfd\x90"
Packit Service 991b93 
	"\x03\xe0\x1d\x5d\x77\x18\x45\xf6\x71\x29\xa9\x05\x87\x49\x75\x3a"
Packit Service 991b93 
	"\x78\x9c\x49\xe5\x6c\x8e\x18\xcd\x5d\xee\x2c\x6f\x92\xf7\x15\xd3"
Packit Service 991b93 
	"\x38\xd5\xf9\x9b\x9d\x1a\xf4";
Packit Service 991b93
Packit Service 991b93 
/* secp521r1 private key and signature */
Packit Service 991b93 
static const char ecdsa_secp521r1_privkey[] =
Packit Service 991b93 
	"-----BEGIN EC PRIVATE KEY-----"
Packit Service 991b93 
	"MIHbAgEBBEGO2n7NN363qSCvJVdlQtCvudtaW4o0fEufXRjE1AsCrle+VXX0Zh0w"
Packit Service 991b93 
	"Y1slSeDHMndpakoiF+XkQ+bhcB867UV6aKAHBgUrgQQAI6GBiQOBhgAEAQb6jDpo"
Packit Service 991b93 
	"byy1tF8Zucg0TMGUzIN2DK+RZJ3QQRdWdirO25OIC3FoFi1Yird6rpoB6HlNyJ7R"
Packit Service 991b93 
	"0bNG9Uv34bSHMn8yAFoiqxUCdJZQbEenMoZsi6COaePe3e0QqvDMr0hEWT23Sr3t"
Packit Service 991b93 
	"LpEV7eZGFfFIJw5wSUp2KOcs+O9WjmoukTWtDKNV"
Packit Service 991b93 
	"-----END EC PRIVATE KEY-----";
Packit Service 991b93
Packit Service 991b93 
static const char ecdsa_secp521r1_sig[] =
Packit Service 991b93 
	"\x30\x81\x88\x02\x42\x01\x9d\x13\x2e\xc9\x75\x1b\x60\x10\x62\xc5"
Packit Service 991b93 
	"\x0d\xcb\x08\x9e\x86\x01\xd3\xc9\x8c\xee\x2e\x16\x3d\x8c\xc2\x65"
Packit Service 991b93 
	"\x80\xe1\x32\x56\xc3\x02\x9d\xf0\x4a\x89\x8d\x2e\x33\x2a\x90\x4e"
Packit Service 991b93 
	"\x72\x1d\xaa\x84\x14\xe8\xcb\xdf\x7a\x4a\xc9\x67\x2e\xba\xa3\xf2"
Packit Service 991b93 
	"\xc2\x07\xf7\x1b\xa5\x91\xbd\x02\x42\x01\xe3\x32\xd2\x25\xeb\x2e"
Packit Service 991b93 
	"\xaf\xb4\x6c\xc0\xaa\x5c\xc1\x56\x14\x13\x23\x7f\x62\xcf\x4c\xb8"
Packit Service 991b93 
	"\xd1\x96\xe0\x29\x6d\xed\x74\xdd\x23\x64\xf9\x29\x86\x40\x22\x2f"
Packit Service 991b93 
	"\xb6\x8d\x4c\x8e\x0b\x7a\xda\xdb\x03\x44\x01\x9b\x81\x1c\x3c\xab"
Packit Service 991b93 
	"\x78\xee\xf2\xc5\x24\x33\x61\x65\x01\x87\x66";
Packit Service 991b93
Packit Service 991b93 
/* GOST01 private key */
Packit Service 991b93 
static const char gost01_privkey[] =
Packit Service 991b93 
	"-----BEGIN PRIVATE KEY-----\n"
Packit Service 991b93 
	"MEUCAQAwHAYGKoUDAgITMBIGByqFAwICIwEGByqFAwICHgEEIgQgdNfuHGmmTdPm\n"
Packit Service 991b93 
	"p5dAa3ea9UYxpdYQPP9lbDwzQwG2bJM=\n"
Packit Service 991b93 
	"-----END PRIVATE KEY-----\n";
Packit Service 991b93
Packit Service 991b93 
/* GOST12 256 private key */
Packit Service 991b93 
static const char gost12_256_privkey[] =
Packit Service 991b93 
	"-----BEGIN PRIVATE KEY-----\n"
Packit Service 991b93 
	"MEgCAQAwHwYIKoUDBwEBAQEwEwYHKoUDAgIjAQYIKoUDBwEBAgIEIgQgKOF96tom\n"
Packit Service 991b93 
	"D61rhSnzKjyrmO3fv0gdlHei+6ovrc8SnBk=\n"
Packit Service 991b93 
	"-----END PRIVATE KEY-----\n";
Packit Service 991b93
Packit Service 991b93 
/* GOST12 512 private key */
Packit Service 991b93 
static const char gost12_512_privkey[] =
Packit Service 991b93 
	"-----BEGIN PRIVATE KEY-----\n"
Packit Service 991b93 
	"MGoCAQAwIQYIKoUDBwEBAQIwFQYJKoUDBwECAQIBBggqhQMHAQECAwRCBECjFpvp\n"
Packit Service 991b93 
	"B0vdc7u59b99TCNXhHiB69JJtUjvieNkGYJpoaaIvoKZTNCjpSZASsZcQZCHOTof\n"
Packit Service 991b93 
	"hsQ3JCCy4xnd5jWT\n"
Packit Service 991b93 
	"-----END PRIVATE KEY-----\n";
Packit aea12f
Packit aea12f 
static int test_rsa_enc(gnutls_pk_algorithm_t pk,
Packit aea12f 
			unsigned bits, gnutls_digest_algorithm_t ign)
Packit aea12f 
{
Packit aea12f 
	int ret;
Packit aea12f 
	gnutls_datum_t enc = { NULL, 0 };
Packit aea12f 
	gnutls_datum_t dec = { NULL, 0 };
Packit Service 991b93 
	gnutls_datum_t raw_rsa_key = { (void*)rsa_2048_privkey, sizeof(rsa_2048_privkey)-1 };
Packit aea12f 
	gnutls_privkey_t key;
Packit aea12f 
	gnutls_pubkey_t pub = NULL;
Packit aea12f 
	unsigned char plaintext2[sizeof(DATASTR) - 1];
Packit aea12f
Packit aea12f 
	ret = gnutls_privkey_init(&key);
Packit aea12f 
	if (ret < 0)
Packit aea12f 
		return gnutls_assert_val(ret);
Packit aea12f
Packit aea12f 
	ret = gnutls_pubkey_init(&pub;;
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = gnutls_privkey_import_x509_raw(key, &raw_rsa_key, GNUTLS_X509_FMT_PEM, NULL, 0);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = gnutls_pubkey_import_privkey(pub, key, 0, 0);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = gnutls_pubkey_encrypt_data(pub, 0, &signed_data, &enc;;
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	if (enc.size == signed_data.size && memcmp(signed_data.data, enc.data,
Packit aea12f 
		enc.size) == 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = gnutls_privkey_decrypt_data(key, 0, &enc, &dec;;
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	if (dec.size != signed_data.size
Packit aea12f 
	    || memcmp(dec.data, signed_data.data, dec.size) != 0) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = gnutls_privkey_decrypt_data2(key, 0, &enc, plaintext2,
Packit aea12f 
					   signed_data.size);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f 
	if (memcmp(plaintext2, signed_data.data, signed_data.size) != 0) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = 0;
Packit aea12f 
      cleanup:
Packit aea12f 
	if (pub != NULL)
Packit aea12f 
		gnutls_pubkey_deinit(pub);
Packit aea12f 
	gnutls_privkey_deinit(key);
Packit aea12f 
	gnutls_free(enc.data);
Packit aea12f 
	gnutls_free(dec.data);
Packit aea12f
Packit aea12f 
	if (ret == 0)
Packit aea12f 
		_gnutls_debug_log("%s-%u-enc self test succeeded\n",
Packit aea12f 
				  gnutls_pk_get_name(pk), bits);
Packit aea12f 
	else
Packit aea12f 
		_gnutls_debug_log("%s-%u-enc self test failed\n",
Packit aea12f 
				  gnutls_pk_get_name(pk), bits);
Packit aea12f
Packit aea12f 
	return ret;
Packit aea12f 
}
Packit aea12f
Packit aea12f 
static int test_sig(gnutls_pk_algorithm_t pk,
Packit aea12f 
		    unsigned bits, gnutls_sign_algorithm_t sigalgo)
Packit aea12f 
{
Packit aea12f 
	int ret;
Packit aea12f 
	gnutls_privkey_t key;
Packit Service 991b93 
	gnutls_datum_t raw_key;
Packit Service 991b93 
	gnutls_datum_t sig = { NULL, 0 };
Packit aea12f 
	gnutls_pubkey_t pub = NULL;
Packit Service 2066cf 
	char param_name[32];
Packit aea12f
Packit aea12f 
	ret = gnutls_privkey_init(&key);
Packit aea12f 
	if (ret < 0)
Packit aea12f 
		return gnutls_assert_val(ret);
Packit aea12f
Packit aea12f 
	ret = gnutls_pubkey_init(&pub;;
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit Service 991b93 
	switch(pk) {
Packit Service 991b93 
		case GNUTLS_PK_RSA:
Packit Service 991b93 
				raw_key.data = (void*)rsa_2048_privkey;
Packit Service 991b93 
				raw_key.size = sizeof(rsa_2048_privkey) - 1;
Packit Service 991b93 
				snprintf(param_name, sizeof(param_name), "%u", bits);
Packit Service 991b93 
			break;
Packit Service 991b93 
		case GNUTLS_PK_RSA_PSS:
Packit Service 991b93 
				raw_key.data = (void*)rsa_2048_privkey;
Packit Service 991b93 
				raw_key.size = sizeof(rsa_2048_privkey) - 1;
Packit Service 991b93 
				snprintf(param_name, sizeof(param_name), "%u", bits);
Packit Service 991b93 
			break;
Packit Service 991b93 
		case GNUTLS_PK_DSA:
Packit Service 991b93 
				raw_key.data = (void*)dsa_2048_privkey;
Packit Service 991b93 
				raw_key.size = sizeof(dsa_2048_privkey) - 1;
Packit Service 991b93 
				snprintf(param_name, sizeof(param_name), "%u", bits);
Packit Service 991b93 
			break;
Packit Service 991b93 
		case GNUTLS_PK_ECC:
Packit Service 991b93 
			switch(bits) {
Packit Service 991b93 
#ifdef ENABLE_NON_SUITEB_CURVES
Packit Service 991b93 
				case GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP192R1):
Packit Service 991b93 
					raw_key.data = (void*)ecdsa_secp192r1_privkey;
Packit Service 991b93 
					raw_key.size = sizeof(ecdsa_secp192r1_privkey) - 1;
Packit Service 991b93 
					break;
Packit Service 991b93 
				case GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP224R1):
Packit Service 991b93 
					raw_key.data = (void*)ecdsa_secp224r1_privkey;
Packit Service 991b93 
					raw_key.size = sizeof(ecdsa_secp224r1_privkey) - 1;
Packit Service 991b93 
					break;
Packit Service 991b93 
#endif
Packit Service 991b93 
				case GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP256R1):
Packit Service 991b93 
					raw_key.data = (void*)ecdsa_secp256r1_privkey;
Packit Service 991b93 
					raw_key.size = sizeof(ecdsa_secp256r1_privkey) - 1;
Packit Service 991b93 
					break;
Packit Service 991b93 
				case GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP384R1):
Packit Service 991b93 
					raw_key.data = (void*)ecdsa_secp384r1_privkey;
Packit Service 991b93 
					raw_key.size = sizeof(ecdsa_secp384r1_privkey) - 1;
Packit Service 991b93 
					break;
Packit Service 991b93 
				case GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP521R1):
Packit Service 991b93 
					raw_key.data = (void*)ecdsa_secp521r1_privkey;
Packit Service 991b93 
					raw_key.size = sizeof(ecdsa_secp521r1_privkey) - 1;
Packit Service 991b93 
					break;
Packit Service 991b93 
				default:
Packit Service 991b93 
					gnutls_assert();
Packit Service 991b93 
					ret = GNUTLS_E_INTERNAL_ERROR;
Packit Service 991b93 
					goto cleanup;
Packit Service 991b93 
			}
Packit Service 991b93 
			snprintf(param_name, sizeof(param_name), "%s",
Packit Service 991b93 
					 gnutls_ecc_curve_get_name(GNUTLS_BITS_TO_CURVE
Packit Service 991b93 
					 (bits)));
Packit Service 991b93 
			break;
Packit Service 991b93 
		case GNUTLS_PK_GOST_01:
Packit Service 991b93 
			raw_key.data = (void*)gost01_privkey;
Packit Service 991b93 
			raw_key.size = sizeof(gost01_privkey) - 1;
Packit Service 991b93 
			snprintf(param_name, sizeof(param_name), "%s",
Packit Service 991b93 
					 gnutls_ecc_curve_get_name(GNUTLS_BITS_TO_CURVE
Packit Service 991b93 
					 (bits)));
Packit Service 991b93 
			break;
Packit Service 991b93 
		case GNUTLS_PK_GOST_12_256:
Packit Service 991b93 
			raw_key.data = (void*)gost12_256_privkey;
Packit Service 991b93 
			raw_key.size = sizeof(gost12_256_privkey) - 1;
Packit Service 991b93 
			snprintf(param_name, sizeof(param_name), "%s",
Packit Service 991b93 
					 gnutls_ecc_curve_get_name(GNUTLS_BITS_TO_CURVE
Packit Service 991b93 
					 (bits)));
Packit Service 991b93 
			break;
Packit Service 991b93 
		case GNUTLS_PK_GOST_12_512:
Packit Service 991b93 
			raw_key.data = (void*)gost12_512_privkey;
Packit Service 991b93 
			raw_key.size = sizeof(gost12_512_privkey) - 1;
Packit Service 991b93 
			snprintf(param_name, sizeof(param_name), "%s",
Packit Service 991b93 
					 gnutls_ecc_curve_get_name(GNUTLS_BITS_TO_CURVE
Packit Service 991b93 
					 (bits)));
Packit Service 991b93 
			break;
Packit Service 991b93 
		default:
Packit Service 991b93 
			gnutls_assert();
Packit Service 991b93 
			ret = GNUTLS_E_INTERNAL_ERROR;
Packit Service 991b93 
			goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit Service 991b93 
	ret = gnutls_privkey_import_x509_raw(key, &raw_key, GNUTLS_X509_FMT_PEM, NULL, 0);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = gnutls_pubkey_import_privkey(pub, key, 0, 0);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = gnutls_privkey_sign_data2(key, sigalgo, 0, &signed_data, &sig);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret =
Packit aea12f 
	    gnutls_pubkey_verify_data2(pub, sigalgo, 0,
Packit aea12f 
				       &signed_data, &sig);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret =
Packit aea12f 
	    gnutls_pubkey_verify_data2(pub, sigalgo, 0,
Packit aea12f 
				       &bad_data, &sig);
Packit aea12f
Packit aea12f 
	if (ret != GNUTLS_E_PK_SIG_VERIFY_FAILED) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = 0;
Packit Service 991b93
Packit Service 991b93 
cleanup:
Packit aea12f 
	if (pub != NULL)
Packit aea12f 
		gnutls_pubkey_deinit(pub);
Packit aea12f 
	gnutls_privkey_deinit(key);
Packit aea12f 
	gnutls_free(sig.data);
Packit aea12f
Packit aea12f 
	if (ret == 0)
Packit Service 2066cf 
		_gnutls_debug_log("%s-%s-sig self test succeeded\n",
Packit aea12f 
				  gnutls_pk_get_name(pk), param_name);
Packit aea12f 
	else
Packit Service 2066cf 
		_gnutls_debug_log("%s-%s-sig self test failed\n",
Packit aea12f 
				  gnutls_pk_get_name(pk), param_name);
Packit aea12f
Packit aea12f 
	return ret;
Packit aea12f 
}
Packit aea12f
Packit aea12f 
static int test_known_sig(gnutls_pk_algorithm_t pk, unsigned bits,
Packit aea12f 
			  gnutls_digest_algorithm_t dig,
Packit aea12f 
			  const void *privkey, size_t privkey_size,
Packit aea12f 
			  const void *stored_sig, size_t stored_sig_size,
Packit Service 991b93 
			  gnutls_privkey_flags_t flags)
Packit aea12f 
{
Packit aea12f 
	int ret;
Packit aea12f 
	gnutls_datum_t sig = { NULL, 0 };
Packit aea12f 
	gnutls_datum_t t, ssig;
Packit aea12f 
	gnutls_pubkey_t pub = NULL;
Packit aea12f 
	gnutls_privkey_t key;
Packit aea12f 
	char param_name[32];
Packit aea12f
Packit Service 991b93 
	if (pk == GNUTLS_PK_EC ||
Packit Service 991b93 
	    pk == GNUTLS_PK_GOST_01 ||
Packit Service 991b93 
	    pk == GNUTLS_PK_GOST_12_256 ||
Packit Service 991b93 
	    pk == GNUTLS_PK_GOST_12_512)
Packit Service 991b93 
	{
Packit aea12f 
		snprintf(param_name, sizeof(param_name), "%s",
Packit aea12f 
			 gnutls_ecc_curve_get_name(GNUTLS_BITS_TO_CURVE
Packit aea12f 
						   (bits)));
Packit aea12f 
	} else {
Packit aea12f 
		snprintf(param_name, sizeof(param_name), "%u", bits);
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = gnutls_privkey_init(&key);
Packit aea12f 
	if (ret < 0)
Packit aea12f 
		return gnutls_assert_val(ret);
Packit aea12f
Packit aea12f 
	ret = gnutls_pubkey_init(&pub;;
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		return ret;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	t.data = (void *) privkey;
Packit aea12f 
	t.size = privkey_size;
Packit aea12f
Packit aea12f 
	ret =
Packit aea12f 
	    gnutls_privkey_import_x509_raw(key, &t, GNUTLS_X509_FMT_PEM,
Packit aea12f 
					   NULL, 0);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	if (pk != (unsigned) gnutls_privkey_get_pk_algorithm(key, NULL)) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit Service 991b93 
	ret = gnutls_privkey_sign_data(key, dig, flags, &signed_data, &sig);
Packit Service 991b93 
	if (ret < 0) {
Packit Service 991b93 
		gnutls_assert();
Packit Service 991b93 
		goto cleanup;
Packit Service 991b93 
	}
Packit Service 991b93
Packit Service 991b93 
	/* Test if the generated signature matches the stored */
Packit aea12f 
	ssig.data = (void *) stored_sig;
Packit aea12f 
	ssig.size = stored_sig_size;
Packit aea12f
Packit Service 991b93 
	if (sig.size != ssig.size
Packit Service 991b93 
		|| memcmp(sig.data, ssig.data, sig.size) != 0) {
Packit Service 991b93 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
#if 0
Packit Service 991b93 
		unsigned i;
Packit Service 991b93 
		fprintf(stderr, "Algorithm: %s-%s\n",
Packit Service 991b93 
				  gnutls_pk_get_name(pk), param_name);
Packit Service 991b93 
		fprintf(stderr, "\nstored[%d]: ", ssig.size);
Packit Service 991b93 
		for (i = 0; i < ssig.size; i++)
Packit Service 991b93 
			fprintf(stderr, "\\x%.2x", ssig.data[i]);
Packit Service 991b93
Packit Service 991b93 
		fprintf(stderr, "\ngenerated[%d]: ", sig.size);
Packit Service 991b93 
		for (i = 0; i < sig.size; i++)
Packit Service 991b93 
			fprintf(stderr, "\\x%.2x", sig.data[i]);
Packit Service 991b93 
		fprintf(stderr, "\n");
Packit aea12f 
#endif
Packit Service 991b93 
		gnutls_assert();
Packit Service 991b93 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit Service 991b93 
	/* Test if we can verify the generated signature */
Packit aea12f
Packit aea12f 
	ret = gnutls_pubkey_import_privkey(pub, key, 0, 0);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret =
Packit aea12f 
	    gnutls_pubkey_verify_data2(pub, gnutls_pk_to_sign(pk, dig), 0,
Packit Service 991b93 
				       &signed_data, &sig);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	/* Test if a broken signature will cause verification error */
Packit aea12f
Packit aea12f 
	ret =
Packit aea12f 
	    gnutls_pubkey_verify_data2(pub, gnutls_pk_to_sign(pk, dig), 0,
Packit Service 991b93 
				       &bad_data, &sig);
Packit aea12f
Packit aea12f 
	if (ret != GNUTLS_E_PK_SIG_VERIFY_FAILED) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = 0;
Packit aea12f
Packit aea12f 
      cleanup:
Packit aea12f 
	gnutls_free(sig.data);
Packit aea12f 
	if (pub != 0)
Packit aea12f 
		gnutls_pubkey_deinit(pub);
Packit aea12f 
	gnutls_privkey_deinit(key);
Packit aea12f
Packit aea12f 
	if (ret == 0)
Packit aea12f 
		_gnutls_debug_log("%s-%s-known-sig self test succeeded\n",
Packit aea12f 
				  gnutls_pk_get_name(pk), param_name);
Packit aea12f 
	else
Packit aea12f 
		_gnutls_debug_log("%s-%s-known-sig self test failed\n",
Packit aea12f 
				  gnutls_pk_get_name(pk), param_name);
Packit aea12f
Packit aea12f 
	return ret;
Packit aea12f 
}
Packit aea12f
Packit aea12f 
#define PK_TEST(pk, func, bits, sigalgo) \
Packit aea12f 
			ret = func(pk, bits, sigalgo); \
Packit aea12f 
			if (ret < 0) { \
Packit aea12f 
				gnutls_assert(); \
Packit aea12f 
				goto cleanup; \
Packit Service 991b93 
			}
Packit aea12f
Packit Service 991b93 
#define PK_KNOWN_TEST(pk, bits, dig, pkey, sig, flags) \
Packit Service 991b93 
			ret = test_known_sig(pk, bits, dig, pkey, sizeof(pkey)-1, sig, sizeof(sig)-1, flags); \
Packit aea12f 
			if (ret < 0) { \
Packit aea12f 
				gnutls_assert(); \
Packit aea12f 
				goto cleanup; \
Packit Service 991b93 
			}
Packit aea12f
Packit aea12f
Packit aea12f 
/* Known answer tests for DH */
Packit aea12f 
static int test_dh(void)
Packit aea12f 
{
Packit aea12f 
	int ret;
Packit aea12f 
	gnutls_pk_params_st priv;
Packit aea12f 
	gnutls_pk_params_st pub;
Packit aea12f 
	gnutls_datum_t out = {NULL, 0};
Packit Service 24d4dc
Packit Service 24d4dc 
	/* FFDHE 3072 test vector provided by Stephan Mueller in:
Packit Service 24d4dc 
	 * https://gitlab.com/gnutls/gnutls/-/merge_requests/1342#note_424430996
Packit Service 24d4dc 
	 */
Packit aea12f 
	static const uint8_t known_dh_k[] = {
Packit Service 24d4dc 
		0xec, 0xb3, 0x85, 0x0c, 0x72, 0x55, 0x55, 0xc2, 0x98, 0x36,
Packit Service 24d4dc 
		0xbe, 0x75, 0x9e, 0xc9, 0x9d, 0x8b, 0x16, 0xa6, 0xe6, 0x84,
Packit Service 24d4dc 
		0x33, 0x12, 0x80, 0x1d, 0xac, 0xde, 0x6a, 0xd7, 0x3b, 0x1e,
Packit Service 24d4dc 
		0x15, 0xca, 0x5d, 0x26, 0xb3, 0x0a, 0x35, 0xf4, 0xbb, 0xad,
Packit Service 24d4dc 
		0x71, 0xcb, 0x03, 0x1a, 0xcb, 0xfb, 0x83, 0xf0, 0xa8, 0xde,
Packit Service 24d4dc 
		0xed, 0x5e, 0x3d, 0x98, 0xd2, 0xb0, 0xef, 0xad, 0xdf, 0x32,
Packit Service 24d4dc 
		0xa0, 0x16, 0x7d, 0x0e, 0x29, 0xd8, 0x85, 0xca, 0x12, 0x97,
Packit Service 24d4dc 
		0x56, 0xab, 0x6a, 0x26, 0xa4, 0x46, 0x3d, 0x87, 0xd7, 0xe0,
Packit Service 24d4dc 
		0xb4, 0x3e, 0x28, 0x75, 0xac, 0x59, 0xc5, 0x71, 0x3a, 0x24,
Packit Service 24d4dc 
		0x15, 0x76, 0x98, 0x72, 0x94, 0x2d, 0xd0, 0x0e, 0xbc, 0x9a,
Packit Service 24d4dc 
		0x77, 0xd4, 0xe2, 0xb2, 0x76, 0x54, 0x4a, 0x56, 0xbe, 0x0b,
Packit Service 24d4dc 
		0x43, 0xf8, 0x21, 0x6f, 0x54, 0x32, 0xde, 0xb7, 0xd5, 0xb7,
Packit Service 24d4dc 
		0x08, 0x00, 0xd2, 0x57, 0x8c, 0x0b, 0x8b, 0x02, 0x3e, 0xdb,
Packit Service 24d4dc 
		0x72, 0x54, 0x3a, 0xc0, 0x50, 0x66, 0xbc, 0xc9, 0x67, 0xf5,
Packit Service 24d4dc 
		0x22, 0x28, 0xf2, 0x3c, 0x51, 0x94, 0x61, 0x26, 0x9a, 0xc6,
Packit Service 24d4dc 
		0x42, 0x0e, 0x8b, 0x42, 0xad, 0x79, 0x40, 0xa9, 0x0b, 0xdc,
Packit Service 24d4dc 
		0x84, 0xd5, 0x71, 0x83, 0x94, 0xd9, 0x83, 0x2f, 0x08, 0x74,
Packit Service 24d4dc 
		0xbc, 0x37, 0x6a, 0x3e, 0x1e, 0xbc, 0xcc, 0x09, 0x23, 0x30,
Packit Service 24d4dc 
		0x79, 0x01, 0x39, 0xf6, 0xe3, 0xa8, 0xc0, 0xfa, 0x7e, 0xdb,
Packit Service 24d4dc 
		0x0b, 0x71, 0x3e, 0x4f, 0x1f, 0x69, 0x84, 0xa6, 0x58, 0x6c,
Packit Service 24d4dc 
		0x36, 0x2c, 0xcc, 0xb4, 0x7c, 0x94, 0xec, 0x06, 0x0b, 0x11,
Packit Service 24d4dc 
		0x53, 0x95, 0xe6, 0x05, 0x43, 0xa4, 0xe4, 0xea, 0x1d, 0x4f,
Packit Service 24d4dc 
		0xdc, 0xd0, 0x38, 0x0e, 0x32, 0xa1, 0xde, 0xd9, 0x8d, 0xd8,
Packit Service 24d4dc 
		0x20, 0xac, 0x04, 0x83, 0xf8, 0x1b, 0x55, 0x52, 0x16, 0x20,
Packit Service 24d4dc 
		0xe3, 0x2e, 0x6d, 0x11, 0x15, 0x29, 0x2f, 0x3a, 0x7c, 0x80,
Packit Service 24d4dc 
		0x0a, 0x71, 0x3d, 0x31, 0x9c, 0x1b, 0x73, 0x59, 0xe1, 0x0d,
Packit Service 24d4dc 
		0x27, 0xc5, 0xc0, 0x6a, 0x72, 0x3a, 0x5b, 0xd6, 0xf6, 0x50,
Packit Service 24d4dc 
		0xe6, 0x69, 0x48, 0x1e, 0xfd, 0xeb, 0x4a, 0x47, 0x73, 0xfb,
Packit Service 24d4dc 
		0x88, 0x14, 0xea, 0x6d, 0x36, 0xe1, 0x4c, 0x2c, 0xf9, 0x04,
Packit Service 24d4dc 
		0xc1, 0xb7, 0x29, 0xfc, 0x5d, 0x02, 0x5d, 0x1c, 0x4d, 0x31,
Packit Service 24d4dc 
		0x4a, 0x51, 0x3f, 0xa4, 0x45, 0x19, 0x29, 0xc4, 0x32, 0xa6,
Packit Service 24d4dc 
		0x45, 0xdb, 0x94, 0x3a, 0xbd, 0x76, 0x2c, 0xd6, 0x1a, 0xb1,
Packit Service 24d4dc 
		0xff, 0xe7, 0x62, 0x75, 0x16, 0xe5, 0x0b, 0xa3, 0x3a, 0x93,
Packit Service 24d4dc 
		0x84, 0xd6, 0xad, 0xc2, 0x24, 0x68, 0x3d, 0xd6, 0x07, 0xe4,
Packit Service 24d4dc 
		0xbe, 0x5a, 0x49, 0x31, 0x06, 0xad, 0x3f, 0x31, 0x4a, 0x1c,
Packit Service 24d4dc 
		0xf7, 0x58, 0xdf, 0x34, 0xcb, 0xc8, 0xa9, 0x07, 0x24, 0x42,
Packit Service 24d4dc 
		0x63, 0xa5, 0x8e, 0xdd, 0x37, 0x78, 0x92, 0x68, 0x3f, 0xd8,
Packit Service 24d4dc 
		0x2f, 0xea, 0x8c, 0xf1, 0x8e, 0xd4, 0x8b, 0xa7, 0x3f, 0xa0,
Packit Service 24d4dc 
		0xfa, 0xaf, 0xf0, 0x35,
Packit Service 24d4dc 
	};
Packit aea12f 
	static const uint8_t test_x[] = {
Packit Service 24d4dc 
		0x16, 0x5c, 0xa6, 0xe0, 0x9b, 0x87, 0xfa, 0x2d, 0xbc, 0x13,
Packit Service 24d4dc 
		0x20, 0xcd, 0xac, 0x4e, 0xcc, 0x60, 0x1e, 0x48, 0xec, 0xbe,
Packit Service 24d4dc 
		0x73, 0x0c, 0xa8, 0x6b, 0x6e, 0x2a, 0xee, 0xdd, 0xd8, 0xf3,
Packit Service 24d4dc 
		0x2d, 0x5f, 0x75, 0xf3, 0x07, 0x94, 0x88, 0x3d, 0xb1, 0x38,
Packit Service 24d4dc 
		0xcf, 0xae, 0x4a, 0xcc, 0xcb, 0x6a, 0x80, 0xbc, 0xeb, 0x3b,
Packit Service 24d4dc 
		0xaa, 0x0b, 0x18, 0x74, 0x58, 0x7c, 0x3e, 0x74, 0xef, 0xb6,
Packit Service 24d4dc 
		0xd3, 0x15, 0xee, 0x73, 0x29, 0x88, 0x7b, 0x65, 0x02, 0x39,
Packit Service 24d4dc 
		0x33, 0xec, 0x22, 0x06, 0x8c, 0x5b, 0xd6, 0x2f, 0x4c, 0xf7,
Packit Service 24d4dc 
		0xe0, 0x97, 0x6d, 0x2a, 0x90, 0x36, 0xfe, 0x1a, 0x44, 0x4d,
Packit Service 24d4dc 
		0x9d, 0x41, 0x4b, 0xcb, 0xec, 0x25, 0xf4, 0xc3, 0xa5, 0x91,
Packit Service 24d4dc 
		0xd0, 0x90, 0xc9, 0x34, 0x7b, 0xba, 0x27, 0x30, 0x5a, 0xa2,
Packit Service 24d4dc 
		0x21, 0x58, 0xce, 0x88, 0x25, 0x39, 0xaf, 0xf1, 0x17, 0x02,
Packit Service 24d4dc 
		0x12, 0xf8, 0x55, 0xdc, 0xd2, 0x08, 0x5b, 0xd3, 0xc7, 0x8e,
Packit Service 24d4dc 
		0xcf, 0x29, 0x85, 0x85, 0xdb, 0x5c, 0x08, 0xc2, 0xd7, 0xb0,
Packit Service 24d4dc 
		0x33, 0x0e, 0xe3, 0xb9, 0x2c, 0x1a, 0x1d, 0x4b, 0xe5, 0x76,
Packit Service 24d4dc 
		0x8f, 0xd3, 0x14, 0xb6, 0x8c, 0xdc, 0x9a, 0xe8, 0x15, 0x60,
Packit Service 24d4dc 
		0x60, 0x5e, 0xaa, 0xf9, 0xfa, 0xa6, 0xb2, 0x4f, 0xff, 0x46,
Packit Service 24d4dc 
		0xc1, 0x5e, 0x93, 0x50, 0x90, 0x7e, 0x4c, 0x26, 0xd7, 0xbb,
Packit Service 24d4dc 
		0x21, 0x05, 0x3d, 0x27, 0xc5, 0x9b, 0x0d, 0x46, 0x69, 0xe4,
Packit Service 24d4dc 
		0x74, 0x87, 0x74, 0x55, 0xee, 0x5f, 0xe5, 0x72, 0x04, 0x46,
Packit Service 24d4dc 
		0x1f, 0x2e, 0x55, 0xc7, 0xcc, 0x2b, 0x2b, 0x39, 0x6d, 0x90,
Packit Service 24d4dc 
		0x60, 0x31, 0x37, 0x5b, 0x44, 0xde, 0xfd, 0xf2, 0xd1, 0xc6,
Packit Service 24d4dc 
		0x9c, 0x12, 0x82, 0xcc, 0x7c, 0xb1, 0x0e, 0xa9, 0x95, 0x9d,
Packit Service 24d4dc 
		0xe0, 0xa8, 0x3e, 0xc1, 0xa3, 0x4a, 0x6a, 0x37, 0x59, 0x17,
Packit Service 24d4dc 
		0x93, 0x63, 0x1e, 0xbf, 0x04, 0xa3, 0xaa, 0xc0, 0x1d, 0xc4,
Packit Service 24d4dc 
		0x6d, 0x7a, 0xdc, 0x69, 0x9c, 0xb0, 0x22, 0x56, 0xd9, 0x76,
Packit Service 24d4dc 
		0x92, 0x2d, 0x1e, 0x62, 0xae, 0xfd, 0xd6, 0x9b, 0xfd, 0x08,
Packit Service 24d4dc 
		0x2c, 0x95, 0xec, 0xe7, 0x02, 0x43, 0x62, 0x68, 0x1a, 0xaf,
Packit Service 24d4dc 
		0x46, 0x59, 0xb7, 0xce, 0x8e, 0x42, 0x24, 0xae, 0xf7, 0x0e,
Packit Service 24d4dc 
		0x9a, 0x3b, 0xf8, 0x77, 0xdf, 0x26, 0x85, 0x9f, 0x45, 0xad,
Packit Service 24d4dc 
		0x8c, 0xa9, 0x54, 0x9c, 0x46, 0x44, 0xd5, 0x8a, 0xe9, 0xcc,
Packit Service 24d4dc 
		0x34, 0x5e, 0xc5, 0xd1, 0x42, 0x6f, 0x44, 0xf3, 0x0f, 0x90,
Packit Service 24d4dc 
		0x3a, 0x32, 0x1a, 0x9c, 0x2a, 0x63, 0xec, 0x21, 0xb4, 0xfc,
Packit Service 24d4dc 
		0xfa, 0xa5, 0xcf, 0xe7, 0x9e, 0x43, 0xc7, 0x49, 0x56, 0xbc,
Packit Service 24d4dc 
		0x50, 0xc5, 0x84, 0xf0, 0x42, 0xc8, 0x6a, 0xf1, 0x78, 0xe4,
Packit Service 24d4dc 
		0xaa, 0x06, 0x37, 0xe1, 0x30, 0xf7, 0x65, 0x97, 0xca, 0xfd,
Packit Service 24d4dc 
		0x35, 0xfa, 0xeb, 0x48, 0x6d, 0xaa, 0x45, 0x46, 0x9d, 0xbc,
Packit Service 24d4dc 
		0x1d, 0x98, 0x17, 0x45, 0xa3, 0xee, 0x21, 0xa0, 0x97, 0x38,
Packit Service 24d4dc 
		0x80, 0xc5, 0x28, 0x1f,
Packit Service 24d4dc 
	};
Packit aea12f 
	static const uint8_t test_y[] = { /* y=g^x mod p */
Packit Service 24d4dc 
		0x93, 0xeb, 0x5c, 0x37, 0x1d, 0x3c, 0x06, 0x6f, 0xbf, 0xbe,
Packit Service 24d4dc 
		0x96, 0x51, 0x26, 0x58, 0x81, 0x36, 0xc6, 0x4f, 0x9a, 0x34,
Packit Service 24d4dc 
		0xc4, 0xc5, 0xa8, 0xa3, 0x2c, 0x41, 0x76, 0xa8, 0xc6, 0xc0,
Packit Service 24d4dc 
		0xa0, 0xc8, 0x51, 0x36, 0xc4, 0x40, 0x4e, 0x2c, 0x69, 0xf7,
Packit Service 24d4dc 
		0x51, 0xbb, 0xb0, 0xd6, 0xf5, 0xdb, 0x40, 0x29, 0x50, 0x3b,
Packit Service 24d4dc 
		0x8a, 0xf9, 0xf3, 0x53, 0x78, 0xfc, 0x86, 0xe9, 0xf1, 0xe9,
Packit Service 24d4dc 
		0xac, 0x85, 0x13, 0x65, 0x62, 0x22, 0x04, 0x1b, 0x14, 0x2a,
Packit Service 24d4dc 
		0xf4, 0x8f, 0x2f, 0xf1, 0x2f, 0x81, 0xd6, 0x18, 0x0e, 0x76,
Packit Service 24d4dc 
		0x91, 0x43, 0xb2, 0xfc, 0x7c, 0x6f, 0x0c, 0x45, 0x37, 0x31,
Packit Service 24d4dc 
		0x31, 0x58, 0x5c, 0xdf, 0x42, 0x24, 0x7a, 0xba, 0x8b, 0x7f,
Packit Service 24d4dc 
		0x79, 0x06, 0x07, 0xef, 0xd6, 0x06, 0xeb, 0xcb, 0x3c, 0xbd,
Packit Service 24d4dc 
		0xbc, 0xe5, 0xff, 0xfd, 0x62, 0x15, 0x0c, 0x40, 0x46, 0x37,
Packit Service 24d4dc 
		0xef, 0xd0, 0xa1, 0xde, 0x63, 0x4f, 0x20, 0x0b, 0x45, 0x7d,
Packit Service 24d4dc 
		0x06, 0x77, 0xfd, 0x23, 0xc1, 0x32, 0x8a, 0x89, 0x65, 0x16,
Packit Service 24d4dc 
		0xe8, 0x48, 0x12, 0x1c, 0x25, 0x33, 0x2d, 0xbd, 0xd8, 0x9f,
Packit Service 24d4dc 
		0x1c, 0x9d, 0xbc, 0xe3, 0x08, 0x60, 0x87, 0x1a, 0xc6, 0x06,
Packit Service 24d4dc 
		0x36, 0xd2, 0xac, 0x09, 0x6d, 0x99, 0x02, 0x89, 0xc6, 0x12,
Packit Service 24d4dc 
		0x93, 0x8c, 0x4b, 0xd0, 0x7e, 0x36, 0x8a, 0xd6, 0xa0, 0x97,
Packit Service 24d4dc 
		0x4f, 0x97, 0x3f, 0x97, 0x0b, 0xfe, 0x05, 0xfc, 0xc8, 0xef,
Packit Service 24d4dc 
		0x21, 0x4d, 0x4a, 0x06, 0x6e, 0xb4, 0xa6, 0x4f, 0xe1, 0xdd,
Packit Service 24d4dc 
		0x44, 0x06, 0xfa, 0xd5, 0x0e, 0x54, 0xf5, 0x54, 0x3e, 0x8c,
Packit Service 24d4dc 
		0xb9, 0x85, 0x86, 0x00, 0x40, 0x98, 0xe7, 0x01, 0xdd, 0x93,
Packit Service 24d4dc 
		0x9d, 0x95, 0xea, 0xf0, 0xd3, 0x99, 0x4b, 0xeb, 0xd5, 0x79,
Packit Service 24d4dc 
		0x47, 0xa4, 0xad, 0x2a, 0xe0, 0x4d, 0x36, 0x3b, 0x46, 0x10,
Packit Service 24d4dc 
		0x96, 0xbb, 0x48, 0xe9, 0xa1, 0x78, 0x01, 0x35, 0x0a, 0x5c,
Packit Service 24d4dc 
		0x7b, 0x3f, 0xf5, 0xf7, 0xb1, 0xe3, 0x97, 0x17, 0x4d, 0x76,
Packit Service 24d4dc 
		0x10, 0x8d, 0x68, 0x4c, 0x94, 0x7d, 0xee, 0x0e, 0x20, 0x8b,
Packit Service 24d4dc 
		0xce, 0x7d, 0x0a, 0xa3, 0x51, 0xfb, 0xe6, 0xcf, 0xf0, 0x0e,
Packit Service 24d4dc 
		0x7f, 0x3c, 0xd4, 0xef, 0x56, 0x31, 0xb2, 0x95, 0xf0, 0x5f,
Packit Service 24d4dc 
		0x4b, 0x9c, 0x03, 0x9e, 0xae, 0xb1, 0xc1, 0x46, 0xd7, 0xc0,
Packit Service 24d4dc 
		0x4f, 0xb0, 0xf6, 0x6c, 0xe1, 0xe9, 0x2a, 0x97, 0xe0, 0x3f,
Packit Service 24d4dc 
		0x3a, 0x93, 0x04, 0xcd, 0x41, 0x7d, 0x45, 0x03, 0xb3, 0x40,
Packit Service 24d4dc 
		0x20, 0xe6, 0xad, 0x2d, 0xd3, 0xf7, 0x32, 0x7b, 0xcc, 0x4f,
Packit Service 24d4dc 
		0x81, 0x18, 0x4c, 0x50, 0x77, 0xc4, 0xb7, 0x6a, 0x4d, 0x05,
Packit Service 24d4dc 
		0xd8, 0x6d, 0xbf, 0x6f, 0xba, 0x1d, 0x38, 0x78, 0x87, 0xd2,
Packit Service 24d4dc 
		0x8e, 0xc2, 0x6d, 0xb6, 0xed, 0x66, 0x61, 0xa8, 0xb9, 0x19,
Packit Service 24d4dc 
		0x0e, 0x93, 0xd1, 0xcd, 0x5b, 0xbe, 0x19, 0x05, 0x52, 0x43,
Packit Service 24d4dc 
		0xd6, 0xc1, 0x07, 0x3c, 0x6a, 0x62, 0xbd, 0x33, 0x9b, 0x1b,
Packit Service 24d4dc 
		0x02, 0x42, 0x61, 0x14,
Packit Service 24d4dc 
	};
Packit aea12f
Packit aea12f 
	gnutls_pk_params_init(&priv;;
Packit aea12f 
	gnutls_pk_params_init(&pub;;
Packit aea12f
Packit aea12f 
	priv.algo = pub.algo = GNUTLS_PK_DH;
Packit aea12f
Packit Service 24d4dc 
	ret = _gnutls_mpi_init_scan(&priv.params[DH_P],
Packit Service 24d4dc 
				    gnutls_ffdhe_3072_group_prime.data,
Packit Service 24d4dc 
				    gnutls_ffdhe_3072_group_prime.size);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit Service 24d4dc 
	ret = _gnutls_mpi_init_scan(&priv.params[DH_G],
Packit Service 24d4dc 
				    gnutls_ffdhe_3072_group_generator.data,
Packit Service 24d4dc 
				    gnutls_ffdhe_3072_group_generator.size);
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = _gnutls_mpi_init_scan(&priv.params[DH_X], test_x, sizeof(test_x));
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = _gnutls_mpi_init_scan(&pub.params[DH_Y], test_y, sizeof(test_y));
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	/* check whether Y^X mod p is the expected value */
Packit aea12f 
	ret = _gnutls_pk_derive(GNUTLS_PK_DH, &out, &priv, &pub;;
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	if (sizeof(known_dh_k) != out.size) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	if (memcmp(out.data, known_dh_k, out.size) != 0) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f
Packit aea12f 
	ret = 0;
Packit aea12f 
cleanup:
Packit aea12f 
	_gnutls_mpi_release(&pub.params[DH_Y]);
Packit aea12f 
	_gnutls_mpi_release(&priv.params[DH_G]);
Packit aea12f 
	_gnutls_mpi_release(&priv.params[DH_P]);
Packit aea12f 
	_gnutls_mpi_release(&priv.params[DH_X]);
Packit aea12f 
	gnutls_free(out.data);
Packit aea12f
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		_gnutls_debug_log("DH self test failed\n");
Packit aea12f 
	} else {
Packit aea12f 
		_gnutls_debug_log("DH self test succeeded\n");
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	return ret;
Packit aea12f 
}
Packit aea12f
Packit aea12f 
/* Known answer tests for DH */
Packit aea12f 
static int test_ecdh(void)
Packit aea12f 
{
Packit aea12f 
	int ret;
Packit aea12f 
	gnutls_pk_params_st priv;
Packit aea12f 
	gnutls_pk_params_st pub;
Packit aea12f 
	gnutls_datum_t out = {NULL, 0};
Packit aea12f 
	static const uint8_t known_key[] = {
Packit aea12f 
		0x22, 0x7a, 0x95, 0x98, 0x5f, 0xb1, 0x25, 0x79,
Packit aea12f 
		0xee, 0x07, 0xe3, 0x8b, 0x1a, 0x97, 0x1d, 0x63,
Packit aea12f 
		0x53, 0xa8, 0xbd, 0xde, 0x67, 0x4b, 0xcf, 0xa4,
Packit aea12f 
		0x5f, 0x5e, 0x67, 0x27, 0x6d, 0x86, 0x27, 0x26 };
Packit aea12f 
	static const uint8_t test_k[] = { /* priv */
Packit aea12f 
		0x52, 0x9c, 0x30, 0xac, 0x6b, 0xce, 0x71, 0x9a,
Packit aea12f 
		0x37, 0xcd, 0x40, 0x93, 0xbf, 0xf0, 0x36, 0x89,
Packit aea12f 
		0x53, 0xcc, 0x0e, 0x17, 0xc6, 0xb6, 0xe2, 0x6a,
Packit aea12f 
		0x3c, 0x2c, 0x51, 0xdb, 0xa6, 0x69, 0x8c, 0xb1 };
Packit aea12f 
	static const uint8_t test_x[] = {
Packit aea12f 
		0x51, 0x35, 0xd1, 0xd2, 0xb6, 0xad, 0x13, 0xf4,
Packit aea12f 
		0xa2, 0x25, 0xd3, 0x85, 0x83, 0xbe, 0x42, 0x1e,
Packit aea12f 
		0x19, 0x09, 0x54, 0x39, 0x00, 0x46, 0x91, 0x49,
Packit aea12f 
		0x0f, 0x3f, 0xaf, 0x3f, 0x67, 0xda, 0x10, 0x6f };
Packit aea12f 
	static const uint8_t test_y[] = { /* y=g^x mod p */
Packit aea12f 
		0x07, 0x3a, 0xa1, 0xa2, 0x47, 0x3d, 0xa2, 0x74,
Packit aea12f 
		0x74, 0xc2, 0xde, 0x62, 0xb6, 0xb9, 0x59, 0xc9,
Packit aea12f 
		0x56, 0xf6, 0x9e, 0x17, 0xea, 0xbf, 0x7d, 0xa1,
Packit aea12f 
		0xd7, 0x65, 0xd6, 0x7b, 0xac, 0xca, 0xd5, 0xe3 };
Packit aea12f 
	gnutls_pk_params_init(&priv;;
Packit aea12f 
	gnutls_pk_params_init(&pub;;
Packit aea12f
Packit aea12f 
	priv.curve = GNUTLS_ECC_CURVE_SECP256R1;
Packit aea12f 
	pub.curve = GNUTLS_ECC_CURVE_SECP256R1;
Packit aea12f
Packit aea12f 
	priv.algo = pub.algo = GNUTLS_PK_EC;
Packit aea12f
Packit aea12f 
	ret = _gnutls_mpi_init_scan(&priv.params[ECC_K], test_k, sizeof(test_k));
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = _gnutls_mpi_init_scan(&priv.params[ECC_X], test_x, sizeof(test_x));
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = _gnutls_mpi_init_scan(&priv.params[ECC_Y], test_y, sizeof(test_y));
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = _gnutls_mpi_init_scan(&pub.params[ECC_X], test_x, sizeof(test_x));
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = _gnutls_mpi_init_scan(&pub.params[ECC_Y], test_y, sizeof(test_y));
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	/* check whether Y^X mod p is the expected value */
Packit aea12f 
	ret = _gnutls_pk_derive(GNUTLS_PK_EC, &out, &priv, &pub;;
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	if (sizeof(known_key) != out.size) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	if (memcmp(out.data, known_key, out.size) != 0) {
Packit aea12f 
		ret = GNUTLS_E_SELF_TEST_ERROR;
Packit aea12f 
		gnutls_assert();
Packit aea12f 
		goto cleanup;
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = 0;
Packit aea12f 
cleanup:
Packit aea12f 
	_gnutls_mpi_release(&pub.params[ECC_Y]);
Packit aea12f 
	_gnutls_mpi_release(&pub.params[ECC_X]);
Packit aea12f 
	_gnutls_mpi_release(&priv.params[ECC_K]);
Packit aea12f 
	_gnutls_mpi_release(&priv.params[ECC_X]);
Packit aea12f 
	_gnutls_mpi_release(&priv.params[ECC_Y]);
Packit aea12f 
	gnutls_free(out.data);
Packit aea12f
Packit aea12f 
	if (ret < 0) {
Packit aea12f 
		_gnutls_debug_log("ECDH self test failed\n");
Packit aea12f 
	} else {
Packit aea12f 
		_gnutls_debug_log("ECDH self test succeeded\n");
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	return ret;
Packit aea12f 
}
Packit aea12f
Packit aea12f 
/*-
Packit aea12f 
 * gnutls_pk_self_test:
Packit aea12f 
 * @flags: GNUTLS_SELF_TEST_FLAG flags
Packit aea12f 
 * @pk: the algorithm to use
Packit aea12f 
 *
Packit aea12f 
 * This function will run self tests on the provided public key algorithm.
Packit aea12f 
 *
Packit aea12f 
 * Returns: Zero or a negative error code on error.
Packit aea12f 
 *
Packit aea12f 
 * Since: 3.3.0-FIPS140
Packit aea12f 
 -*/
Packit aea12f 
int gnutls_pk_self_test(unsigned flags, gnutls_pk_algorithm_t pk)
Packit aea12f 
{
Packit aea12f 
	int ret;
Packit aea12f
Packit Service 991b93 
	bool is_post = false;
Packit Service 991b93 
	bool is_fips140_mode_enabled = false;
Packit Service 991b93
Packit aea12f 
	if (flags & GNUTLS_SELF_TEST_FLAG_ALL)
Packit aea12f 
		pk = GNUTLS_PK_UNKNOWN;
Packit aea12f
Packit Service 991b93 
	if (_gnutls_get_lib_state() == LIB_STATE_SELFTEST)
Packit Service 991b93 
		is_post = true;
Packit Service 991b93
Packit Service 991b93 
	if (gnutls_fips140_mode_enabled())
Packit Service 991b93 
		is_fips140_mode_enabled = true;
Packit Service 991b93
Packit aea12f 
	switch (pk) {
Packit aea12f 
	case GNUTLS_PK_UNKNOWN:
Packit aea12f 
		FALLTHROUGH;
Packit aea12f 
	case GNUTLS_PK_DH:
Packit aea12f 
		ret = test_dh();
Packit aea12f 
		if (ret < 0) {
Packit aea12f 
			gnutls_assert();
Packit aea12f 
			goto cleanup;
Packit aea12f 
		}
Packit aea12f
Packit aea12f 
		if (!(flags & GNUTLS_SELF_TEST_FLAG_ALL))
Packit aea12f 
			return 0;
Packit aea12f 
		FALLTHROUGH;
Packit aea12f 
	case GNUTLS_PK_RSA:
Packit Service 991b93 
		PK_KNOWN_TEST(GNUTLS_PK_RSA, 2048, GNUTLS_DIG_SHA256,
Packit Service 991b93 
			      rsa_2048_privkey, rsa_2048_sig, 0);
Packit Service 991b93
Packit aea12f 
		PK_TEST(GNUTLS_PK_RSA, test_rsa_enc, 2048, 0);
Packit aea12f
Packit aea12f 
		if (!(flags & GNUTLS_SELF_TEST_FLAG_ALL))
Packit aea12f 
			return 0;
Packit aea12f
Packit aea12f 
		FALLTHROUGH;
Packit aea12f 
	case GNUTLS_PK_RSA_PSS:
Packit Service 991b93 
		PK_TEST(GNUTLS_PK_RSA_PSS, test_sig, 2048,
Packit Service 991b93 
			GNUTLS_SIGN_RSA_PSS_RSAE_SHA256);
Packit aea12f
Packit aea12f 
		if (!(flags & GNUTLS_SELF_TEST_FLAG_ALL))
Packit aea12f 
			return 0;
Packit aea12f
Packit aea12f 
		FALLTHROUGH;
Packit aea12f 
	case GNUTLS_PK_DSA:
Packit Service 991b93 
		if (is_post || !is_fips140_mode_enabled) {
Packit Service 991b93 
			PK_KNOWN_TEST(GNUTLS_PK_DSA, 2048, GNUTLS_DIG_SHA256,
Packit Service 991b93 
				      dsa_2048_privkey, dsa_2048_sig,
Packit Service 991b93 
				      GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE);
Packit Service 991b93 
		} else {
Packit Service 991b93 
			PK_TEST(GNUTLS_PK_DSA, test_sig, 2048,
Packit Service 991b93 
				GNUTLS_SIGN_DSA_SHA256);
Packit Service 991b93 
		}
Packit aea12f
Packit aea12f 
		if (!(flags & GNUTLS_SELF_TEST_FLAG_ALL))
Packit aea12f 
			return 0;
Packit aea12f
Packit aea12f 
		FALLTHROUGH;
Packit aea12f 
	case GNUTLS_PK_EC:
Packit aea12f 
		/* Test ECDH and ECDSA */
Packit aea12f 
		ret = test_ecdh();
Packit aea12f 
		if (ret < 0) {
Packit aea12f 
			gnutls_assert();
Packit aea12f 
			goto cleanup;
Packit aea12f 
		}
Packit aea12f
Packit aea12f 
		/* Test ECDSA */
Packit Service 991b93 
		if (is_post || !is_fips140_mode_enabled) {
Packit Service 991b93 
			PK_KNOWN_TEST(GNUTLS_PK_EC,
Packit Service 991b93 
					  GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP256R1),
Packit Service 991b93 
					  GNUTLS_DIG_SHA256, ecdsa_secp256r1_privkey,
Packit Service 991b93 
					  ecdsa_secp256r1_sig, GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE);
Packit Service 991b93 
		} else {
Packit Service 991b93 
			PK_TEST(GNUTLS_PK_EC, test_sig,
Packit Service 991b93 
				GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP256R1),
Packit Service 991b93 
				GNUTLS_SIGN_ECDSA_SHA256);
Packit Service 991b93 
		}
Packit 956de9
Packit Service 2066cf 
		if (!(flags & GNUTLS_SELF_TEST_FLAG_ALL))
Packit Service 2066cf 
			return 0;
Packit Service 2066cf
Packit Service 991b93 
		if (is_post || !is_fips140_mode_enabled) {
Packit Service 991b93 
			PK_KNOWN_TEST(GNUTLS_PK_EC,
Packit Service 991b93 
					  GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP384R1),
Packit Service 991b93 
					  GNUTLS_DIG_SHA384, ecdsa_secp384r1_privkey,
Packit Service 991b93 
					  ecdsa_secp384r1_sig, GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE);
Packit Service 991b93 
		} else {
Packit Service 991b93 
			PK_TEST(GNUTLS_PK_EC, test_sig,
Packit Service 991b93 
				GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP384R1),
Packit Service 991b93 
				GNUTLS_SIGN_ECDSA_SHA384);
Packit Service 991b93 
		}
Packit Service 991b93
Packit Service 991b93 
		if (is_post || !is_fips140_mode_enabled) {
Packit Service 991b93 
			PK_KNOWN_TEST(GNUTLS_PK_EC,
Packit Service 991b93 
					  GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP521R1),
Packit Service 991b93 
					  GNUTLS_DIG_SHA512, ecdsa_secp521r1_privkey,
Packit Service 991b93 
					  ecdsa_secp521r1_sig, GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE);
Packit Service 991b93 
		} else {
Packit Service 991b93 
			PK_TEST(GNUTLS_PK_EC, test_sig,
Packit Service 991b93 
				GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP521R1),
Packit Service 991b93 
				GNUTLS_SIGN_ECDSA_SHA512);
Packit Service 991b93 
		}
Packit aea12f
Packit aea12f 
#ifdef ENABLE_NON_SUITEB_CURVES
Packit Service 991b93 
		if (is_post || !is_fips140_mode_enabled) {
Packit Service 991b93 
			PK_KNOWN_TEST(GNUTLS_PK_EC,
Packit Service 991b93 
					  GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP192R1),
Packit Service 991b93 
					  GNUTLS_DIG_SHA256, ecdsa_secp192r1_privkey,
Packit Service 991b93 
					  ecdsa_secp192r1_sig, GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE);
Packit Service 991b93 
		} else {
Packit Service 991b93 
			PK_TEST(GNUTLS_PK_EC, test_sig,
Packit Service 991b93 
				GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP192R1),
Packit Service 991b93 
				GNUTLS_SIGN_ECDSA_SHA256);
Packit Service 991b93 
		}
Packit Service 991b93
Packit Service 991b93 
		if (is_post || !is_fips140_mode_enabled) {
Packit Service 991b93 
			PK_KNOWN_TEST(GNUTLS_PK_EC,
Packit Service 991b93 
					  GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP224R1),
Packit Service 991b93 
					  GNUTLS_DIG_SHA256, ecdsa_secp224r1_privkey,
Packit Service 991b93 
					  ecdsa_secp224r1_sig, GNUTLS_PRIVKEY_FLAG_REPRODUCIBLE);
Packit Service 991b93 
		} else {
Packit Service 991b93 
			PK_TEST(GNUTLS_PK_EC, test_sig,
Packit Service 991b93 
				GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_SECP224R1),
Packit Service 991b93 
				GNUTLS_SIGN_ECDSA_SHA256);
Packit Service 991b93 
		}
Packit aea12f 
#endif
Packit aea12f
Packit Service 991b93
Packit aea12f 
#if ENABLE_GOST
Packit aea12f 
		FALLTHROUGH;
Packit aea12f 
	case GNUTLS_PK_GOST_01:
Packit Service 991b93 
		PK_TEST(GNUTLS_PK_GOST_01, test_sig,
Packit Service 991b93 
			GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_GOST256CPA),
Packit Service 2066cf 
			GNUTLS_SIGN_GOST_94);
Packit aea12f
Packit aea12f 
		if (!(flags & GNUTLS_SELF_TEST_FLAG_ALL))
Packit aea12f 
			return 0;
Packit aea12f
Packit aea12f 
		FALLTHROUGH;
Packit aea12f 
	case GNUTLS_PK_GOST_12_256:
Packit Service 991b93 
		PK_TEST(GNUTLS_PK_GOST_12_256, test_sig,
Packit Service 991b93 
			GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_GOST256CPA),
Packit Service 2066cf 
			GNUTLS_SIGN_GOST_256);
Packit aea12f
Packit aea12f 
		if (!(flags & GNUTLS_SELF_TEST_FLAG_ALL))
Packit aea12f 
			return 0;
Packit aea12f
Packit aea12f 
		FALLTHROUGH;
Packit aea12f 
	case GNUTLS_PK_GOST_12_512:
Packit Service 991b93 
		PK_TEST(GNUTLS_PK_GOST_12_512, test_sig,
Packit Service 991b93 
			GNUTLS_CURVE_TO_BITS(GNUTLS_ECC_CURVE_GOST512A),
Packit 956de9 
			GNUTLS_SIGN_GOST_512);
Packit 956de9
Packit Service 2066cf 
		if (!(flags & GNUTLS_SELF_TEST_FLAG_ALL))
Packit Service 2066cf 
			return 0;
Packit aea12f 
#endif
Packit aea12f 
		break;
Packit aea12f 
	default:
Packit aea12f 
		return gnutls_assert_val(GNUTLS_E_NO_SELF_TEST);
Packit aea12f 
	}
Packit aea12f
Packit aea12f 
	ret = 0;
Packit aea12f
Packit aea12f 
      cleanup:
Packit aea12f 
	return ret;
Packit aea12f 
}

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation