From a3bb335b2bfec37b0a37be1f5525d70945d4d815 Mon Sep 17 00:00:00 2001
From: Paul Kehrer <paul.l.kehrer@gmail.com>
Date: Wed, 19 Mar 2014 13:23:33 -0400
Subject: never trust openssl

Turns out you can't trust it to safely compute the max salt length
allowed for PSS, so now we get to do it ourselves. We also check for
whether the key size is large enough for the selected hash function
(PSS only for now, PKCS1 coming in another PR)
---
 tests/hazmat/primitives/utils.py | 30 ++++++++++++++++++++++++++++++
 1 file changed, 30 insertions(+)

(limited to 'tests/hazmat/primitives/utils.py')

diff --git a/tests/hazmat/primitives/utils.py b/tests/hazmat/primitives/utils.py
index 31491023..5d3b4d15 100644
--- a/tests/hazmat/primitives/utils.py
+++ b/tests/hazmat/primitives/utils.py
@@ -406,3 +406,33 @@ def rsa_pss_test(backend, params, hash_alg):
     )
     verifier.update(binascii.unhexlify(params["msg"]))
     verifier.verify()
+
+
+def rsa_pss_signing_test(backend, hash_alg):
+    private_key = rsa.RSAPrivateKey.generate(
+        public_exponent=65537,
+        key_size=768,
+        backend=backend
+    )
+    public_key = private_key.public_key()
+    pss = padding.PSS(
+        mgf=padding.MGF1(
+            algorithm=hash_alg,
+            salt_length=padding.MGF1.MAX_LENGTH
+        )
+    )
+    signer = private_key.signer(
+        pss,
+        hash_alg,
+        backend
+    )
+    signer.update(b"testing signature")
+    signature = signer.finalize()
+    verifier = public_key.verifier(
+        signature,
+        pss,
+        hash_alg,
+        backend
+    )
+    verifier.update(b"testing signature")
+    verifier.verify()
-- 
cgit v1.2.3