123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123 |
- #! /usr/bin/env perl
- # Copyright 2017-2020 The OpenSSL Project Authors. All Rights Reserved.
- # Copyright 2017 BaishanCloud. All rights reserved.
- #
- # Licensed under the Apache License 2.0 (the "License"). You may not use
- # this file except in compliance with the License. You can obtain a copy
- # in the file LICENSE in the source distribution or at
- # https://www.openssl.org/source/license.html
- use strict;
- use warnings;
- use File::Spec;
- use OpenSSL::Test qw/:DEFAULT data_file/;
- use OpenSSL::Test::Utils;
- setup("test_mp_rsa");
- my @test_param = (
- # 3 primes, 2048-bit
- {
- primes => '3',
- bits => '2048',
- },
- # 4 primes, 4096-bit
- {
- primes => '4',
- bits => '4096',
- },
- # 5 primes, 8192-bit
- {
- primes => '5',
- bits => '8192',
- },
- );
- plan tests => 1 + scalar(@test_param) * 5 * 2;
- ok(run(test(["rsa_mp_test"])), "running rsa multi prime test");
- my $cleartext = data_file("plain_text");
- # genrsa
- run_mp_tests(0);
- # evp
- run_mp_tests(1);
- sub run_mp_tests {
- my $evp = shift;
- foreach my $param (@test_param) {
- my $primes = $param->{primes};
- my $bits = $param->{bits};
- my $name = ($evp ? "evp" : "") . "${bits}p${primes}";
- if ($evp) {
- ok(run(app([ 'openssl', 'genpkey', '-out', "rsamptest-$name.pem",
- '-algorithm', 'RSA',
- '-pkeyopt', "rsa_keygen_primes:$primes",
- '-pkeyopt', "rsa_keygen_bits:$bits"])),
- "genrsa $name");
- ok(run(app([ 'openssl', 'pkey', '-check',
- '-in', "rsamptest-$name.pem", '-noout'])),
- "rsa -check $name");
- ok(run(app([ 'openssl', 'pkeyutl', '-inkey', "rsamptest-$name.pem",
- '-encrypt', '-in', $cleartext,
- '-out', "rsamptest-$name.enc" ])),
- "rsa $name encrypt");
- ok(run(app([ 'openssl', 'pkeyutl', '-inkey', "rsamptest-$name.pem",
- '-decrypt', '-in', "rsamptest-$name.enc",
- '-out', "rsamptest-$name.dec" ])),
- "rsa $name decrypt");
- } else {
- ok(run(app([ 'openssl', 'genrsa', '-out', "rsamptest-$name.pem",
- '-primes', $primes, $bits])), "genrsa $name");
- ok(run(app([ 'openssl', 'rsa', '-check',
- '-in', "rsamptest-$name.pem", '-noout'])),
- "rsa -check $name");
- if (!disabled('deprecated-3.0')) {
- ok(run(app([ 'openssl', 'rsautl', '-inkey', "rsamptest-$name.pem",
- '-encrypt', '-in', $cleartext,
- '-out', "rsamptest-$name.enc" ])),
- "rsa $name encrypt");
- ok(run(app([ 'openssl', 'rsautl', '-inkey', "rsamptest-$name.pem",
- '-decrypt', '-in', "rsamptest-$name.enc",
- '-out', "rsamptest-$name.dec" ])),
- "rsa $name decrypt");
- } else {
- ok(run(app([ 'openssl', 'pkeyutl', '-inkey', "rsamptest-$name.pem",
- '-encrypt', '-in', $cleartext,
- '-out', "rsamptest-$name.enc" ])),
- "rsa $name encrypt");
- ok(run(app([ 'openssl', 'pkeyutl', '-inkey', "rsamptest-$name.pem",
- '-decrypt', '-in', "rsamptest-$name.enc",
- '-out', "rsamptest-$name.dec" ])),
- "rsa $name decrypt");
- }
- }
- ok(check_msg("rsamptest-$name.dec"), "rsa $name check result");
- }
- }
- sub check_msg {
- my $decrypted = shift;
- my $msg;
- my $dec;
- open(my $fh, "<", $cleartext) or return 0;
- binmode $fh;
- read($fh, $msg, 10240);
- close $fh;
- open($fh, "<", $decrypted ) or return 0;
- binmode $fh;
- read($fh, $dec, 10240);
- close $fh;
- if ($msg ne $dec) {
- print STDERR "cleartext and decrypted are not the same";
- return 0;
- }
- return 1;
- }
|