mbedtls/tests
Janos Follath 05a708f7e2 Add negative tests for Curve25519
If we provide low order element as a public key and the implementation
maps the point in infinity to the origin, we can force the common secret
to be zero.

According to the standard (RFC 7748) this is allowed but in this case
the primitive must not be used in a protocol that requires contributory
behaviour.

Mbed Crypto returns an error when the result is the point in the
infinity and does not map it to the origin. This is safe even if used in
protocols that require contributory behaviour.

This commit adds test cases that verify that Mbed Crypto returns an
error when low order public keys are processed.

The low order elements in the test cases were taken from this website:
https://cr.yp.to/ecdh.html
2019-04-30 14:58:15 +01:00
..
.jenkins Add a Jenkinsfile for PR job testing 2018-10-19 16:41:54 +01:00
data_files Merge remote-tracking branch 'origin/pr/2477' into development 2019-04-16 14:38:58 +01:00
git-scripts Merge development commit 8e76332 into development-psa 2019-01-31 08:20:20 -05:00
scripts Merge remote-tracking branch 'tls/development' into development 2019-04-17 12:12:24 +01:00
suites Add negative tests for Curve25519 2019-04-30 14:58:15 +01:00
.gitignore Move some ignore patterns to subdirectories 2015-01-28 15:33:23 +00:00
CMakeLists.txt Merge remote-tracking branch 'tls/development' into development 2019-04-17 12:12:24 +01:00
Descriptions.txt Remove tests that depend on TLS or X.509 2019-03-11 16:49:26 +00:00
Makefile Merge remote-tracking branch 'origin/pr/2531' into development 2019-03-27 16:52:08 +00:00