Skip to content

rsa key validation test and additions to rsa fromdata test #339

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
sebastian-carpenter wants to merge 1 commit into
base: master
Choose a base branch
from
Draft

rsa key validation test and additions to rsa fromdata test #339

sebastian-carpenter wants to merge 1 commit into from
+511 −17

Conversation

@sebastian-carpenter
Copy link
Contributor

@sebastian-carpenter sebastian-carpenter commented Dec 17, 2025
edited
Loading

Adding tests for rsa key validation as well as adding some more cases to the rsa fromdata test.

Bugs:

  • WP segfaults when NULL is provided for param->data field (fixed)
  • General failure of rsa key validation (mostly fixed)
    • public key should have a few other tests
  • WP accepts any type of parameter value for rsa fields (fixed)
  • Storing param->data value: OSSL accepts negative values, so changed WP to accept negative values but store them as 0.
  • The 'selection' variable used for rsa key importing was unused, adding section to make use of it
  • Added check that all CRT parameters are provided

@sebastian-carpenter sebastian-carpenter self-assigned this Dec 17, 2025
SparkiDev
SparkiDev reviewed Jan 7, 2026
View reviewed changes
src/wp_rsa_kmgmt.c
}

if (ok) {
for(prime = 0; prime < VALIDATE_PRIMES_SIZE; prime++) {
Copy link
Contributor

@SparkiDev SparkiDev Jan 7, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Can you not use mp_prime_is_prime() with 0 trials?

Copy link
Contributor Author

@sebastian-carpenter sebastian-carpenter Jan 7, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That would fail before it tests primes because you can't have 0 trials (as far as I know).
OpenSSL does 5 rounds of miller-rabin anyway so I'd like to use mp_prime_is_prime() but I get different results between OpenSSL and wolfProvider.

@sebastian-carpenter sebastian-carpenter force-pushed the rsa-validate-tests branch 3 times, most recently from 07258fc to 3323f29 Compare January 9, 2026 21:15
@sebastian-carpenter
rsa key validation test and additions to rsa fromdata test
6dd7067 
updated rsa_key_import / validate to survive new tests
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@SparkiDev SparkiDev SparkiDev left review comments

At least 1 approving review is required to merge this pull request.

Assignees

@sebastian-carpenter sebastian-carpenter

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sebastian-carpenter @SparkiDev