diff options
| author | Paul Kehrer <paul.l.kehrer@gmail.com> | 2014-05-27 08:07:31 -0500 |
|---|---|---|
| committer | Paul Kehrer <paul.l.kehrer@gmail.com> | 2014-05-27 08:07:31 -0500 |
| commit | 2f7f5e9691d8c61e042b4a7e6762c5982984fdca (patch) | |
| tree | 5c87cc578d4b677f41a518f4c16891ce9a9d81c5 /tests/hazmat/backends/test_openssl.py | |
| parent | fd3572923816d3bf89b5a57671ce21ee9959f222 (diff) | |
| download | cryptography-2f7f5e9691d8c61e042b4a7e6762c5982984fdca.tar.gz cryptography-2f7f5e9691d8c61e042b4a7e6762c5982984fdca.tar.bz2 cryptography-2f7f5e9691d8c61e042b4a7e6762c5982984fdca.zip | |
add RSA private key generation restrictions to primitive layer
Diffstat (limited to 'tests/hazmat/backends/test_openssl.py')
| -rw-r--r-- | tests/hazmat/backends/test_openssl.py | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/tests/hazmat/backends/test_openssl.py b/tests/hazmat/backends/test_openssl.py index 0ccf7286..bfcdf14a 100644 --- a/tests/hazmat/backends/test_openssl.py +++ b/tests/hazmat/backends/test_openssl.py @@ -277,6 +277,22 @@ class TestOpenSSLRSA(object): assert backend.generate_rsa_parameters_supported(3, 1024) is True assert backend.generate_rsa_parameters_supported(3, 511) is False + def test_generate_bad_public_exponent(self): + with pytest.raises(ValueError): + backend.generate_rsa_private_key(public_exponent=1, key_size=2048) + + with pytest.raises(ValueError): + backend.generate_rsa_private_key(public_exponent=4, key_size=2048) + + def test_cant_generate_insecure_tiny_key(self): + with pytest.raises(ValueError): + backend.generate_rsa_private_key(public_exponent=65537, + key_size=511) + + with pytest.raises(ValueError): + backend.generate_rsa_private_key(public_exponent=65537, + key_size=256) + @pytest.mark.skipif( backend._lib.OPENSSL_VERSION_NUMBER >= 0x1000100f, reason="Requires an older OpenSSL. Must be < 1.0.1" |