mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-01-08 13:03:39 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

More explanation of what we do and do not test

Browse Source 
Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
Gilles Peskine 2024-10-30 13:44:02 +01:00
parent 18e8389452
commit dc7d7875ac
1 changed files with 8 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
tests/suites/test_suite_psa_crypto_ecp.function
View File

@ -52,7 +52,8 @@ static int check_ecc_private_key(psa_ecc_family_t family, size_t bits,
TEST_EQUAL(top_byte & mask, 0);
}
/* Check masked bits on Curve25519 and Curve448. */
/* Check masked bits on Curve25519 and Curve448 scalars.
* See RFC 7748 §4.1 (we expect the "decoded" form here). */
#if defined(MBEDTLS_PSA_BUILTIN_ECC_MONTGOMERY_255)
if (family == PSA_ECC_FAMILY_MONTGOMERY && bits == 255) {
TEST_EQUAL(key[0] & 0xf8, key[0]);
@ -66,6 +67,12 @@ static int check_ecc_private_key(psa_ecc_family_t family, size_t bits,
}
#endif /* MBEDTLS_PSA_BUILTIN_ECC_MONTGOMERY_448 */
/* Don't bother to check that the value is in the exact permitted range
* (1 to p-1 for Weierstrass curves, 2^{n-1} to p-1 for Montgomery curves).
* We would need to bring in bignum machinery, and on most curves
* the probability of a number being out of range is negligible.
*/
/* Collect statistics on random-valued bits */
/* Defaults for big-endian numbers */
uint8_t bit_bot_mask = 0x01;