docs, tests, general huge improvements to RSA decryption

author: Paul Kehrer <paul.l.kehrer@gmail.com> 2014-04-05 19:51:00 -0500
committer: Paul Kehrer <paul.l.kehrer@gmail.com> 2014-04-20 16:53:02 -0500
commit: 4c0a374dd90cd48c21267e4d8be1ddef8288b29c (patch)
tree: e78af314d7d64e9eb00a624465cbeedbc37dd469 /tests/hazmat/backends
parent: 16b953a22abf2092f6d428f04141f3e5c9513ce9 (diff)
download: cryptography-4c0a374dd90cd48c21267e4d8be1ddef8288b29c.tar.gz
cryptography-4c0a374dd90cd48c21267e4d8be1ddef8288b29c.tar.bz2
cryptography-4c0a374dd90cd48c21267e4d8be1ddef8288b29c.zip
1 files changed, 53 insertions, 2 deletions
diff --git a/tests/hazmat/backends/test_openssl.py b/tests/hazmat/backends/test_openssl.py
index 43d28c33..46feae46 100644
--- a/tests/hazmat/backends/test_openssl.py
+++ b/tests/hazmat/backends/test_openssl.py
@@ -143,8 +143,8 @@ class TestOpenSSL(object):
         with raises_unsupported_algorithm(_Reasons.UNSUPPORTED_HASH):
             backend.derive_pbkdf2_hmac(hashes.SHA256(), 10, b"", 1000, b"")
 
-    # This test is not in the next class because to check if it's really
-    # default we don't want to run the setup_method before it
+    # This test is not in the TestOpenSSLRandomEngine class because to check
+    # if it's really default we don't want to run the setup_method before it
     def test_osrandom_engine_is_default(self):
         e = backend._lib.ENGINE_get_default_RAND()
         name = backend._lib.ENGINE_get_name(e)
@@ -291,3 +291,54 @@ class TestOpenSSLRSA(object):
 
     def test_unsupported_mgf1_hash_algorithm(self):
         assert backend.mgf1_hash_supported(DummyHash()) is False
+
+    def test_unsupported_mgf1_hash_algorithm_decrypt(self):
+        private_key = rsa.RSAPrivateKey.generate(
+            public_exponent=65537,
+            key_size=512,
+            backend=backend
+        )
+        with raises_unsupported_algorithm(_Reasons.UNSUPPORTED_HASH):
+            private_key.decrypt(
+                b"ciphertext",
+                padding.OAEP(
+                    mgf=padding.MGF1(algorithm=hashes.SHA256()),
+                    algorithm=hashes.SHA1(),
+                    label=None
+                ),
+                backend
+            )
+
+    def test_unsupported_oaep_hash_algorithm_decrypt(self):
+        private_key = rsa.RSAPrivateKey.generate(
+            public_exponent=65537,
+            key_size=512,
+            backend=backend
+        )
+        with raises_unsupported_algorithm(_Reasons.UNSUPPORTED_HASH):
+            private_key.decrypt(
+                b"ciphertext",
+                padding.OAEP(
+                    mgf=padding.MGF1(algorithm=hashes.SHA1()),
+                    algorithm=hashes.SHA256(),
+                    label=None
+                ),
+                backend
+            )
+
+    def test_unsupported_oaep_label_decrypt(self):
+        private_key = rsa.RSAPrivateKey.generate(
+            public_exponent=65537,
+            key_size=512,
+            backend=backend
+        )
+        with pytest.raises(ValueError):
+            private_key.decrypt(
+                b"ciphertext",
+                padding.OAEP(
+                    mgf=padding.MGF1(algorithm=hashes.SHA1()),
+                    algorithm=hashes.SHA1(),
+                    label=b"label"
+                ),
+                backend
+            )
author	Paul Kehrer <paul.l.kehrer@gmail.com>	2014-04-05 19:51:00 -0500
committer	Paul Kehrer <paul.l.kehrer@gmail.com>	2014-04-20 16:53:02 -0500
commit	4c0a374dd90cd48c21267e4d8be1ddef8288b29c (patch)
tree	e78af314d7d64e9eb00a624465cbeedbc37dd469 /tests/hazmat/backends
parent	16b953a22abf2092f6d428f04141f3e5c9513ce9 (diff)
download	cryptography-4c0a374dd90cd48c21267e4d8be1ddef8288b29c.tar.gz cryptography-4c0a374dd90cd48c21267e4d8be1ddef8288b29c.tar.bz2 cryptography-4c0a374dd90cd48c21267e4d8be1ddef8288b29c.zip