Test that we generate a short private key for known DH prime

author Tomas Mraz <tomas@openssl.org>

Wed, 13 Jul 2022 14:04:09 +0000 (16:04 +0200)

committer Hugo Landau <hlandau@openssl.org>

Mon, 18 Jul 2022 07:06:17 +0000 (08:06 +0100)
author Tomas Mraz <tomas@openssl.org>
Wed, 13 Jul 2022 14:04:09 +0000 (16:04 +0200)
committer Hugo Landau <hlandau@openssl.org>
Mon, 18 Jul 2022 07:06:17 +0000 (08:06 +0100)
diff --git a/test/evp_extra_test2.c b/test/evp_extra_test2.c

index bdadc30a7e9dadcf79733f817fbcd54542723ea5..b2ffe1d7928564a406588981ab2f62f852d3c402 100644 (file)
--- a/test/evp_extra_test2.c
+++ b/test/evp_extra_test2.c
@@ -333,6 +333,10 @@ static int test_dh_tofrom_data_select(void)
      OSSL_PARAM params[2];
      EVP_PKEY *key = NULL;
      EVP_PKEY_CTX *gctx = NULL;
+# ifndef OPENSSL_NO_DEPRECATED_3_0
+    const DH *dhkey;
+    const BIGNUM *privkey;
+# endif
  
      params[0] = OSSL_PARAM_construct_utf8_string("group", "ffdhe2048", 0);
      params[1] = OSSL_PARAM_construct_end();
@@ -341,6 +345,12 @@ static int test_dh_tofrom_data_select(void)
            && TEST_true(EVP_PKEY_CTX_set_params(gctx, params))
            && TEST_int_gt(EVP_PKEY_generate(gctx, &key), 0)
            && TEST_true(do_pkey_tofrom_data_select(key, "DHX"));
+# ifndef OPENSSL_NO_DEPRECATED_3_0
+    dhkey = EVP_PKEY_get0_DH(key);
+    ret = ret && TEST_ptr(dhkey);
+    ret = ret && TEST_ptr(privkey = DH_get0_priv_key(dhkey))
+              && TEST_int_le(BN_num_bits(privkey), 225);
+# endif
      EVP_PKEY_free(key);
      EVP_PKEY_CTX_free(gctx);
      return ret;
author	Tomas Mraz <tomas@openssl.org>
	Wed, 13 Jul 2022 14:04:09 +0000 (16:04 +0200)
committer	Hugo Landau <hlandau@openssl.org>
	Mon, 18 Jul 2022 07:06:17 +0000 (08:06 +0100)