gecko-dev/security/nss/gtests/pk11_gtest/pk11_rsapss_unittest.cc

/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
/* vim: set ts=2 et sw=2 tw=80: */
/* This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this file,
 * You can obtain one at http://mozilla.org/MPL/2.0/. */

#include <memory>
#include "nss.h"
#include "pk11pub.h"
#include "sechash.h"

#include "gtest/gtest.h"
#include "nss_scoped_ptrs.h"

#include "pk11_signature_test.h"
#include "pk11_rsapss_vectors.h"

namespace nss_test {

class Pkcs11RsaPssTest : public Pk11SignatureTest {
 public:
  Pkcs11RsaPssTest() : Pk11SignatureTest(CKM_RSA_PKCS_PSS, SEC_OID_SHA1) {
    rsaPssParams_.hashAlg = CKM_SHA_1;
    rsaPssParams_.mgf = CKG_MGF1_SHA1;
    rsaPssParams_.sLen = HASH_ResultLenByOidTag(SEC_OID_SHA1);

    params_.type = siBuffer;
    params_.data = reinterpret_cast<unsigned char*>(&rsaPssParams_);
    params_.len = sizeof(rsaPssParams_);
  }

 protected:
  const SECItem* parameters() const { return &params_; }

 private:
  CK_RSA_PKCS_PSS_PARAMS rsaPssParams_;
  SECItem params_;
};

TEST_F(Pkcs11RsaPssTest, GenerateAndSignAndVerify) {
  // Sign data with a 1024-bit RSA key, using PSS/SHA-256.
  SECOidTag hashOid = SEC_OID_SHA256;
  CK_MECHANISM_TYPE hashMech = CKM_SHA256;
  CK_RSA_PKCS_MGF_TYPE mgf = CKG_MGF1_SHA256;
  PK11RSAGenParams rsaGenParams = {1024, 0x10001};

  // Generate RSA key pair.
  ScopedPK11SlotInfo slot(PK11_GetInternalSlot());
  SECKEYPublicKey* pubKeyRaw = nullptr;
  ScopedSECKEYPrivateKey privKey(
      PK11_GenerateKeyPair(slot.get(), CKM_RSA_PKCS_KEY_PAIR_GEN, &rsaGenParams,
                           &pubKeyRaw, false, false, nullptr));
  ASSERT_TRUE(!!privKey && pubKeyRaw);
  ScopedSECKEYPublicKey pubKey(pubKeyRaw);

  // Generate random data to sign.
  uint8_t dataBuf[50];
  SECItem data = {siBuffer, dataBuf, sizeof(dataBuf)};
  unsigned int hLen = HASH_ResultLenByOidTag(hashOid);
  SECStatus rv = PK11_GenerateRandomOnSlot(slot.get(), data.data, data.len);
  EXPECT_EQ(rv, SECSuccess);

  // Allocate memory for the signature.
  std::vector<uint8_t> sigBuf(PK11_SignatureLen(privKey.get()));
  SECItem sig = {siBuffer, &sigBuf[0],
                 static_cast<unsigned int>(sigBuf.size())};

  // Set up PSS parameters.
  CK_RSA_PKCS_PSS_PARAMS rsaPssParams = {hashMech, mgf, hLen};
  SECItem params = {siBuffer, reinterpret_cast<unsigned char*>(&rsaPssParams),
                    sizeof(rsaPssParams)};

  // Sign.
  rv = PK11_SignWithMechanism(privKey.get(), mechanism(), &params, &sig, &data);
  EXPECT_EQ(rv, SECSuccess);

  // Verify.
  rv = PK11_VerifyWithMechanism(pubKey.get(), mechanism(), &params, &sig, &data,
                                nullptr);
  EXPECT_EQ(rv, SECSuccess);

  // Verification with modified data must fail.
  data.data[0] ^= 0xff;
  rv = PK11_VerifyWithMechanism(pubKey.get(), mechanism(), &params, &sig, &data,
                                nullptr);
  EXPECT_EQ(rv, SECFailure);

  // Verification with original data but the wrong signature must fail.
  data.data[0] ^= 0xff;  // Revert previous changes.
  sig.data[0] ^= 0xff;
  rv = PK11_VerifyWithMechanism(pubKey.get(), mechanism(), &params, &sig, &data,
                                nullptr);
  EXPECT_EQ(rv, SECFailure);
}

TEST_F(Pkcs11RsaPssTest, NoLeakWithInvalidExponent) {
  // Attempt to generate an RSA key with a public exponent of 1. This should
  // fail, but it shouldn't leak memory.
  PK11RSAGenParams rsaGenParams = {1024, 0x01};

  // Generate RSA key pair.
  ScopedPK11SlotInfo slot(PK11_GetInternalSlot());
  SECKEYPublicKey* pubKey = nullptr;
  SECKEYPrivateKey* privKey =
      PK11_GenerateKeyPair(slot.get(), CKM_RSA_PKCS_KEY_PAIR_GEN, &rsaGenParams,
                           &pubKey, false, false, nullptr);
  EXPECT_FALSE(privKey);
  EXPECT_FALSE(pubKey);
}
class Pkcs11RsaPssVectorTest
    : public Pkcs11RsaPssTest,
      public ::testing::WithParamInterface<Pkcs11SignatureTestParams> {};

TEST_P(Pkcs11RsaPssVectorTest, Verify) { Verify(GetParam()); }

TEST_P(Pkcs11RsaPssVectorTest, SignAndVerify) { SignAndVerify(GetParam()); }

#define VECTOR(pkcs8, spki, data, sig)                                \
  {                                                                   \
    DataBuffer(pkcs8, sizeof(pkcs8)), DataBuffer(spki, sizeof(spki)), \
        DataBuffer(data, sizeof(data)), DataBuffer(sig, sizeof(sig))  \
  }
#define VECTOR_N(n)                                                         \
  VECTOR(kTestVector##n##Pkcs8, kTestVector##n##Spki, kTestVector##n##Data, \
         kTestVector##n##Sig)

static const Pkcs11SignatureTestParams kRsaPssVectors[] = {
    // RSA-PSS test vectors, pss-vect.txt, Example 1.1: A 1024-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(1),
    // RSA-PSS test vectors, pss-vect.txt, Example 2.1: A 1025-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(2),
    // RSA-PSS test vectors, pss-vect.txt, Example 3.1: A 1026-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(3),
    // RSA-PSS test vectors, pss-vect.txt, Example 4.1: A 1027-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(4),
    // RSA-PSS test vectors, pss-vect.txt, Example 5.1: A 1028-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(5),
    // RSA-PSS test vectors, pss-vect.txt, Example 6.1: A 1029-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(6),
    // RSA-PSS test vectors, pss-vect.txt, Example 7.1: A 1030-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(7),
    // RSA-PSS test vectors, pss-vect.txt, Example 8.1: A 1031-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(8),
    // RSA-PSS test vectors, pss-vect.txt, Example 9.1: A 1536-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(9),
    // RSA-PSS test vectors, pss-vect.txt, Example 10.1: A 2048-bit RSA Key Pair
    // <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>
    VECTOR_N(10)};

INSTANTIATE_TEST_CASE_P(RsaPssSignVerify, Pkcs11RsaPssVectorTest,
                        ::testing::ValuesIn(kRsaPssVectors));

}  // namespace nss_test
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`/* -- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -- */`
			`/* vim: set ts=2 et sw=2 tw=80: */`
			`/* This Source Code Form is subject to the terms of the Mozilla Public`
			`* License, v. 2.0. If a copy of the MPL was not distributed with this file,`
			`* You can obtain one at http://mozilla.org/MPL/2.0/. */`

Bug 1296266 - Land NSS_3_27_BETA1, r=kaie --HG-- extra : amend_source : 1408228c898d6683a384508ca2154fc9d8895e81 2016-08-19 12:20:21 +03:00			`#include <memory>`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`#include "nss.h"`
			`#include "pk11pub.h"`
			`#include "sechash.h"`

			`#include "gtest/gtest.h"`
Bug 1488622 - land NSS 94bcc2706b98 UPGRADE_NSS_RELEASE, r=me --HG-- extra : rebase_source : 761520ca901dabbf0a908a886732155d0d40d468 2018-10-01 17:44:32 +03:00			`#include "nss_scoped_ptrs.h"`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00
Bug 1334127 - land NSS 0a7ba014dbb3, r=me 2017-02-03 08:00:56 +03:00			`#include "pk11_signature_test.h"`
Bug 1401594 - land NSS 4bf658832d89 UPGRADE_NSS_RELEASE, r=me 2017-10-12 16:34:02 +03:00			`#include "pk11_rsapss_vectors.h"`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00
Bug 1334127 - land NSS 87188da8b352, r=me --HG-- extra : rebase_source : 6b38e725b6663df981fccdb0fe00991734775cfb 2017-01-30 16:20:42 +03:00			`namespace nss_test {`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00
Bug 1401594 - land NSS 4bf658832d89 UPGRADE_NSS_RELEASE, r=me 2017-10-12 16:34:02 +03:00			`class Pkcs11RsaPssTest : public Pk11SignatureTest {`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`public:`
Bug 1401594 - land NSS 4bf658832d89 UPGRADE_NSS_RELEASE, r=me 2017-10-12 16:34:02 +03:00			`Pkcs11RsaPssTest() : Pk11SignatureTest(CKM_RSA_PKCS_PSS, SEC_OID_SHA1) {`
Bug 1334127 - land NSS 0a7ba014dbb3, r=me 2017-02-03 08:00:56 +03:00			`rsaPssParams_.hashAlg = CKM_SHA_1;`
			`rsaPssParams_.mgf = CKG_MGF1_SHA1;`
			`rsaPssParams_.sLen = HASH_ResultLenByOidTag(SEC_OID_SHA1);`

			`params_.type = siBuffer;`
			`params_.data = reinterpret_cast<unsigned char*>(&rsaPssParams_);`
			`params_.len = sizeof(rsaPssParams_);`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`}`
Bug 1334127 - land NSS 87188da8b352, r=me --HG-- extra : rebase_source : 6b38e725b6663df981fccdb0fe00991734775cfb 2017-01-30 16:20:42 +03:00
Bug 1334127 - land NSS 0a7ba014dbb3, r=me 2017-02-03 08:00:56 +03:00			`protected:`
Bug 1401594 - land NSS 4bf658832d89 UPGRADE_NSS_RELEASE, r=me 2017-10-12 16:34:02 +03:00			`const SECItem* parameters() const { return &params_; }`
Bug 1334127 - land NSS 87188da8b352, r=me --HG-- extra : rebase_source : 6b38e725b6663df981fccdb0fe00991734775cfb 2017-01-30 16:20:42 +03:00
Bug 1334127 - land NSS 0a7ba014dbb3, r=me 2017-02-03 08:00:56 +03:00			`private:`
			`CK_RSA_PKCS_PSS_PARAMS rsaPssParams_;`
			`SECItem params_;`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`};`

Bug 1401594 - land NSS 4bf658832d89 UPGRADE_NSS_RELEASE, r=me 2017-10-12 16:34:02 +03:00			`TEST_F(Pkcs11RsaPssTest, GenerateAndSignAndVerify) {`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`// Sign data with a 1024-bit RSA key, using PSS/SHA-256.`
			`SECOidTag hashOid = SEC_OID_SHA256;`
			`CK_MECHANISM_TYPE hashMech = CKM_SHA256;`
			`CK_RSA_PKCS_MGF_TYPE mgf = CKG_MGF1_SHA256;`
Bug 1296266 - Land NSS_3_27_BETA1, r=kaie --HG-- extra : amend_source : 1408228c898d6683a384508ca2154fc9d8895e81 2016-08-19 12:20:21 +03:00			`PK11RSAGenParams rsaGenParams = {1024, 0x10001};`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00
			`// Generate RSA key pair.`
			`ScopedPK11SlotInfo slot(PK11_GetInternalSlot());`
			`SECKEYPublicKey* pubKeyRaw = nullptr;`
Bug 1296266 - Land NSS_3_27_BETA1, r=kaie --HG-- extra : amend_source : 1408228c898d6683a384508ca2154fc9d8895e81 2016-08-19 12:20:21 +03:00			`ScopedSECKEYPrivateKey privKey(`
			`PK11_GenerateKeyPair(slot.get(), CKM_RSA_PKCS_KEY_PAIR_GEN, &rsaGenParams,`
			`&pubKeyRaw, false, false, nullptr));`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`ASSERT_TRUE(!!privKey && pubKeyRaw);`
			`ScopedSECKEYPublicKey pubKey(pubKeyRaw);`

			`// Generate random data to sign.`
			`uint8_t dataBuf[50];`
Bug 1296266 - Land NSS_3_27_BETA1, r=kaie --HG-- extra : amend_source : 1408228c898d6683a384508ca2154fc9d8895e81 2016-08-19 12:20:21 +03:00			`SECItem data = {siBuffer, dataBuf, sizeof(dataBuf)};`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`unsigned int hLen = HASH_ResultLenByOidTag(hashOid);`
			`SECStatus rv = PK11_GenerateRandomOnSlot(slot.get(), data.data, data.len);`
			`EXPECT_EQ(rv, SECSuccess);`

			`// Allocate memory for the signature.`
			`std::vector<uint8_t> sigBuf(PK11_SignatureLen(privKey.get()));`
Bug 1296266 - Land NSS_3_27_BETA1, r=kaie --HG-- extra : amend_source : 1408228c898d6683a384508ca2154fc9d8895e81 2016-08-19 12:20:21 +03:00			`SECItem sig = {siBuffer, &sigBuf[0],`
			`static_cast<unsigned int>(sigBuf.size())};`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00
			`// Set up PSS parameters.`
Bug 1296266 - Land NSS_3_27_BETA1, r=kaie --HG-- extra : amend_source : 1408228c898d6683a384508ca2154fc9d8895e81 2016-08-19 12:20:21 +03:00			`CK_RSA_PKCS_PSS_PARAMS rsaPssParams = {hashMech, mgf, hLen};`
			`SECItem params = {siBuffer, reinterpret_cast<unsigned char*>(&rsaPssParams),`
			`sizeof(rsaPssParams)};`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00
			`// Sign.`
Bug 1334127 - land NSS 0a7ba014dbb3, r=me 2017-02-03 08:00:56 +03:00			`rv = PK11_SignWithMechanism(privKey.get(), mechanism(), &params, &sig, &data);`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`EXPECT_EQ(rv, SECSuccess);`

			`// Verify.`
Bug 1334127 - land NSS 0a7ba014dbb3, r=me 2017-02-03 08:00:56 +03:00			`rv = PK11_VerifyWithMechanism(pubKey.get(), mechanism(), &params, &sig, &data,`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`nullptr);`
			`EXPECT_EQ(rv, SECSuccess);`

			`// Verification with modified data must fail.`
			`data.data[0] ^= 0xff;`
Bug 1334127 - land NSS 0a7ba014dbb3, r=me 2017-02-03 08:00:56 +03:00			`rv = PK11_VerifyWithMechanism(pubKey.get(), mechanism(), &params, &sig, &data,`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`nullptr);`
			`EXPECT_EQ(rv, SECFailure);`

			`// Verification with original data but the wrong signature must fail.`
Bug 1296266 - Land NSS_3_27_BETA1, r=kaie --HG-- extra : amend_source : 1408228c898d6683a384508ca2154fc9d8895e81 2016-08-19 12:20:21 +03:00			`data.data[0] ^= 0xff; // Revert previous changes.`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`sig.data[0] ^= 0xff;`
Bug 1334127 - land NSS 0a7ba014dbb3, r=me 2017-02-03 08:00:56 +03:00			`rv = PK11_VerifyWithMechanism(pubKey.get(), mechanism(), &params, &sig, &data,`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00			`nullptr);`
			`EXPECT_EQ(rv, SECFailure);`
			`}`

Bug 1523175 - land NSS 794984bb1169 UPGRADE_NSS_RELEASE, r=me --HG-- extra : rebase_source : 5b86719e1f801522367afb5296d66ff843d5ad79 2019-02-08 03:04:23 +03:00			`TEST_F(Pkcs11RsaPssTest, NoLeakWithInvalidExponent) {`
			`// Attempt to generate an RSA key with a public exponent of 1. This should`
			`// fail, but it shouldn't leak memory.`
			`PK11RSAGenParams rsaGenParams = {1024, 0x01};`

			`// Generate RSA key pair.`
			`ScopedPK11SlotInfo slot(PK11_GetInternalSlot());`
			`SECKEYPublicKey* pubKey = nullptr;`
			`SECKEYPrivateKey* privKey =`
			`PK11_GenerateKeyPair(slot.get(), CKM_RSA_PKCS_KEY_PAIR_GEN, &rsaGenParams,`
			`&pubKey, false, false, nullptr);`
			`EXPECT_FALSE(privKey);`
			`EXPECT_FALSE(pubKey);`
			`}`
Bug 1401594 - land NSS 4bf658832d89 UPGRADE_NSS_RELEASE, r=me 2017-10-12 16:34:02 +03:00			`class Pkcs11RsaPssVectorTest`
			`: public Pkcs11RsaPssTest,`
			`public ::testing::WithParamInterface<Pkcs11SignatureTestParams> {};`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00
Bug 1401594 - land NSS 4bf658832d89 UPGRADE_NSS_RELEASE, r=me 2017-10-12 16:34:02 +03:00			`TEST_P(Pkcs11RsaPssVectorTest, Verify) { Verify(GetParam()); }`
Bug 1334127 - land NSS 87188da8b352, r=me --HG-- extra : rebase_source : 6b38e725b6663df981fccdb0fe00991734775cfb 2017-01-30 16:20:42 +03:00
Bug 1401594 - land NSS 4bf658832d89 UPGRADE_NSS_RELEASE, r=me 2017-10-12 16:34:02 +03:00			`TEST_P(Pkcs11RsaPssVectorTest, SignAndVerify) { SignAndVerify(GetParam()); }`
Bug 1334127 - land NSS 87188da8b352, r=me --HG-- extra : rebase_source : 6b38e725b6663df981fccdb0fe00991734775cfb 2017-01-30 16:20:42 +03:00
Bug 1401594 - land NSS 4bf658832d89 UPGRADE_NSS_RELEASE, r=me 2017-10-12 16:34:02 +03:00			`#define VECTOR(pkcs8, spki, data, sig) \`
			`{ \`
			`DataBuffer(pkcs8, sizeof(pkcs8)), DataBuffer(spki, sizeof(spki)), \`
			`DataBuffer(data, sizeof(data)), DataBuffer(sig, sizeof(sig)) \`
			`}`
			`#define VECTOR_N(n) \`
			`VECTOR(kTestVector##n##Pkcs8, kTestVector##n##Spki, kTestVector##n##Data, \`
			`kTestVector##n##Sig)`

			`static const Pkcs11SignatureTestParams kRsaPssVectors[] = {`
			`// RSA-PSS test vectors, pss-vect.txt, Example 1.1: A 1024-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(1),`
			`// RSA-PSS test vectors, pss-vect.txt, Example 2.1: A 1025-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(2),`
			`// RSA-PSS test vectors, pss-vect.txt, Example 3.1: A 1026-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(3),`
			`// RSA-PSS test vectors, pss-vect.txt, Example 4.1: A 1027-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(4),`
			`// RSA-PSS test vectors, pss-vect.txt, Example 5.1: A 1028-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(5),`
			`// RSA-PSS test vectors, pss-vect.txt, Example 6.1: A 1029-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(6),`
			`// RSA-PSS test vectors, pss-vect.txt, Example 7.1: A 1030-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(7),`
			`// RSA-PSS test vectors, pss-vect.txt, Example 8.1: A 1031-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(8),`
			`// RSA-PSS test vectors, pss-vect.txt, Example 9.1: A 1536-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(9),`
			`// RSA-PSS test vectors, pss-vect.txt, Example 10.1: A 2048-bit RSA Key Pair`
			`// <ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-1/pkcs-1v2-1-vec.zip>`
			`VECTOR_N(10)};`

			`INSTANTIATE_TEST_CASE_P(RsaPssSignVerify, Pkcs11RsaPssVectorTest,`
			`::testing::ValuesIn(kRsaPssVectors));`
Bug 1228410, land NSS 3.22 Beta 2, r=nss-confcall --HG-- rename : security/nss/tests/ssl_gtests/parsereport.sed => security/nss/tests/common/parsegtestreport.sed 2016-01-25 18:14:18 +03:00
			`} // namespace nss_test`