/*
 *  KQEMU support
 * 
 *  Copyright (c) 2005 Fabrice Bellard
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 */
#include "config.h"
#ifdef _WIN32
#include <windows.h>
#include <winioctl.h>
#else
#include <sys/types.h>
#include <sys/mman.h>
#include <sys/ioctl.h>
#endif
#include <stdlib.h>
#include <stdio.h>
#include <stdarg.h>
#include <string.h>
#include <errno.h>
#include <unistd.h>
#include <inttypes.h>

#include "cpu.h"
#include "exec-all.h"

#ifdef USE_KQEMU

#define DEBUG
//#define PROFILE

#include <unistd.h>
#include <fcntl.h>
#include "kqemu.h"

/* compatibility stuff */
#ifndef KQEMU_RET_SYSCALL
#define KQEMU_RET_SYSCALL   0x0300 /* syscall insn */
#endif
#ifndef KQEMU_MAX_RAM_PAGES_TO_UPDATE
#define KQEMU_MAX_RAM_PAGES_TO_UPDATE 512
#define KQEMU_RAM_PAGES_UPDATE_ALL (KQEMU_MAX_RAM_PAGES_TO_UPDATE + 1)
#endif
#ifndef KQEMU_MAX_MODIFIED_RAM_PAGES
#define KQEMU_MAX_MODIFIED_RAM_PAGES 512
#endif

#ifdef _WIN32
#define KQEMU_DEVICE "\\\\.\\kqemu"
#else
#define KQEMU_DEVICE "/dev/kqemu"
#endif

#ifdef _WIN32
#define KQEMU_INVALID_FD INVALID_HANDLE_VALUE
HANDLE kqemu_fd = KQEMU_INVALID_FD;
#define kqemu_closefd(x) CloseHandle(x)
#else
#define KQEMU_INVALID_FD -1
int kqemu_fd = KQEMU_INVALID_FD;
#define kqemu_closefd(x) close(x)
#endif

/* 0 = not allowed
   1 = user kqemu
   2 = kernel kqemu
*/
int kqemu_allowed = 1;
unsigned long *pages_to_flush;
unsigned int nb_pages_to_flush;
unsigned long *ram_pages_to_update;
unsigned int nb_ram_pages_to_update;
unsigned long *modified_ram_pages;
unsigned int nb_modified_ram_pages;
uint8_t *modified_ram_pages_table;
extern uint32_t **l1_phys_map;

#define cpuid(index, eax, ebx, ecx, edx) \
  asm volatile ("cpuid" \
                : "=a" (eax), "=b" (ebx), "=c" (ecx), "=d" (edx) \
                : "0" (index))

#ifdef __x86_64__
static int is_cpuid_supported(void)
{
    return 1;
}
#else
static int is_cpuid_supported(void)
{
    int v0, v1;
    asm volatile ("pushf\n"
                  "popl %0\n"
                  "movl %0, %1\n"
                  "xorl $0x00200000, %0\n"
                  "pushl %0\n"
                  "popf\n"
                  "pushf\n"
                  "popl %0\n"
                  : "=a" (v0), "=d" (v1)
                  :
                  : "cc");
    return (v0 != v1);
}
#endif

static void kqemu_update_cpuid(CPUState *env)
{
    int critical_features_mask, features, ext_features, ext_features_mask;
    uint32_t eax, ebx, ecx, edx;

    /* the following features are kept identical on the host and
       target cpus because they are important for user code. Strictly
       speaking, only SSE really matters because the OS must support
       it if the user code uses it. */
    critical_features_mask = 
        CPUID_CMOV | CPUID_CX8 | 
        CPUID_FXSR | CPUID_MMX | CPUID_SSE | 
        CPUID_SSE2 | CPUID_SEP;
    ext_features_mask = CPUID_EXT_SSE3 | CPUID_EXT_MONITOR;
    if (!is_cpuid_supported()) {
        features = 0;
        ext_features = 0;
    } else {
        cpuid(1, eax, ebx, ecx, edx);
        features = edx;
        ext_features = ecx;
    }
#ifdef __x86_64__
    /* NOTE: on x86_64 CPUs, SYSENTER is not supported in
       compatibility mode, so in order to have the best performances
       it is better not to use it */
    features &= ~CPUID_SEP;
#endif
    env->cpuid_features = (env->cpuid_features & ~critical_features_mask) |
        (features & critical_features_mask);
    env->cpuid_ext_features = (env->cpuid_ext_features & ~ext_features_mask) |
        (ext_features & ext_features_mask);
    /* XXX: we could update more of the target CPUID state so that the
       non accelerated code sees exactly the same CPU features as the
       accelerated code */
}

int kqemu_init(CPUState *env)
{
    struct kqemu_init init;
    int ret, version;
#ifdef _WIN32
    DWORD temp;
#endif

    if (!kqemu_allowed)
        return -1;

#ifdef _WIN32
    kqemu_fd = CreateFile(KQEMU_DEVICE, GENERIC_WRITE | GENERIC_READ,
                          FILE_SHARE_READ | FILE_SHARE_WRITE,
                          NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL,
                          NULL);
#else
    kqemu_fd = open(KQEMU_DEVICE, O_RDWR);
#endif
    if (kqemu_fd == KQEMU_INVALID_FD) {
        fprintf(stderr, "Could not open '%s' - QEMU acceleration layer not activated\n", KQEMU_DEVICE);
        return -1;
    }
    version = 0;
#ifdef _WIN32
    DeviceIoControl(kqemu_fd, KQEMU_GET_VERSION, NULL, 0,
                    &version, sizeof(version), &temp, NULL);
#else
    ioctl(kqemu_fd, KQEMU_GET_VERSION, &version);
#endif
    if (version != KQEMU_VERSION) {
        fprintf(stderr, "Version mismatch between kqemu module and qemu (%08x %08x) - disabling kqemu use\n",
                version, KQEMU_VERSION);
        goto fail;
    }

    pages_to_flush = qemu_vmalloc(KQEMU_MAX_PAGES_TO_FLUSH * 
                                  sizeof(unsigned long));
    if (!pages_to_flush)
        goto fail;

    ram_pages_to_update = qemu_vmalloc(KQEMU_MAX_RAM_PAGES_TO_UPDATE * 
                                       sizeof(unsigned long));
    if (!ram_pages_to_update)
        goto fail;

    modified_ram_pages = qemu_vmalloc(KQEMU_MAX_MODIFIED_RAM_PAGES * 
                                      sizeof(unsigned long));
    if (!modified_ram_pages)
        goto fail;
    modified_ram_pages_table = qemu_mallocz(phys_ram_size >> TARGET_PAGE_BITS);
    if (!modified_ram_pages_table)
        goto fail;

    init.ram_base = phys_ram_base;
    init.ram_size = phys_ram_size;
    init.ram_dirty = phys_ram_dirty;
    init.phys_to_ram_map = l1_phys_map;
    init.pages_to_flush = pages_to_flush;
#if KQEMU_VERSION >= 0x010200
    init.ram_pages_to_update = ram_pages_to_update;
#endif
#if KQEMU_VERSION >= 0x010300
    init.modified_ram_pages = modified_ram_pages;
#endif
#ifdef _WIN32
    ret = DeviceIoControl(kqemu_fd, KQEMU_INIT, &init, sizeof(init),
                          NULL, 0, &temp, NULL) == TRUE ? 0 : -1;
#else
    ret = ioctl(kqemu_fd, KQEMU_INIT, &init);
#endif
    if (ret < 0) {
        fprintf(stderr, "Error %d while initializing QEMU acceleration layer - disabling it for now\n", ret);
    fail:
        kqemu_closefd(kqemu_fd);
        kqemu_fd = KQEMU_INVALID_FD;
        return -1;
    }
    kqemu_update_cpuid(env);
    env->kqemu_enabled = kqemu_allowed;
    nb_pages_to_flush = 0;
    nb_ram_pages_to_update = 0;
    return 0;
}

void kqemu_flush_page(CPUState *env, target_ulong addr)
{
#if defined(DEBUG)
    if (loglevel & CPU_LOG_INT) {
        fprintf(logfile, "kqemu_flush_page: addr=" TARGET_FMT_lx "\n", addr);
    }
#endif
    if (nb_pages_to_flush >= KQEMU_MAX_PAGES_TO_FLUSH)
        nb_pages_to_flush = KQEMU_FLUSH_ALL;
    else
        pages_to_flush[nb_pages_to_flush++] = addr;
}

void kqemu_flush(CPUState *env, int global)
{
#ifdef DEBUG
    if (loglevel & CPU_LOG_INT) {
        fprintf(logfile, "kqemu_flush:\n");
    }
#endif
    nb_pages_to_flush = KQEMU_FLUSH_ALL;
}

void kqemu_set_notdirty(CPUState *env, ram_addr_t ram_addr)
{
#ifdef DEBUG
    if (loglevel & CPU_LOG_INT) {
        fprintf(logfile, "kqemu_set_notdirty: addr=%08lx\n", ram_addr);
    }
#endif
    /* we only track transitions to dirty state */
    if (phys_ram_dirty[ram_addr >> TARGET_PAGE_BITS] != 0xff)
        return;
    if (nb_ram_pages_to_update >= KQEMU_MAX_RAM_PAGES_TO_UPDATE)
        nb_ram_pages_to_update = KQEMU_RAM_PAGES_UPDATE_ALL;
    else
        ram_pages_to_update[nb_ram_pages_to_update++] = ram_addr;
}

static void kqemu_reset_modified_ram_pages(void)
{
    int i;
    unsigned long page_index;
    
    for(i = 0; i < nb_modified_ram_pages; i++) {
        page_index = modified_ram_pages[i] >> TARGET_PAGE_BITS;
        modified_ram_pages_table[page_index] = 0;
    }
    nb_modified_ram_pages = 0;
}

void kqemu_modify_page(CPUState *env, ram_addr_t ram_addr)
{
    unsigned long page_index;
    int ret;
#ifdef _WIN32
    DWORD temp;
#endif

    page_index = ram_addr >> TARGET_PAGE_BITS;
    if (!modified_ram_pages_table[page_index]) {
#if 0
        printf("%d: modify_page=%08lx\n", nb_modified_ram_pages, ram_addr);
#endif
        modified_ram_pages_table[page_index] = 1;
        modified_ram_pages[nb_modified_ram_pages++] = ram_addr;
        if (nb_modified_ram_pages >= KQEMU_MAX_MODIFIED_RAM_PAGES) {
            /* flush */
#ifdef _WIN32
            ret = DeviceIoControl(kqemu_fd, KQEMU_MODIFY_RAM_PAGES, 
                                  &nb_modified_ram_pages, 
                                  sizeof(nb_modified_ram_pages),
                                  NULL, 0, &temp, NULL);
#else
            ret = ioctl(kqemu_fd, KQEMU_MODIFY_RAM_PAGES, 
                        &nb_modified_ram_pages);
#endif
            kqemu_reset_modified_ram_pages();
        }
    }
}

struct fpstate {
    uint16_t fpuc;
    uint16_t dummy1;
    uint16_t fpus;
    uint16_t dummy2;
    uint16_t fptag;
    uint16_t dummy3;

    uint32_t fpip;
    uint32_t fpcs;
    uint32_t fpoo;
    uint32_t fpos;
    uint8_t fpregs1[8 * 10];
};

struct fpxstate {
    uint16_t fpuc;
    uint16_t fpus;
    uint16_t fptag;
    uint16_t fop;
    uint32_t fpuip;
    uint16_t cs_sel;
    uint16_t dummy0;
    uint32_t fpudp;
    uint16_t ds_sel;
    uint16_t dummy1;
    uint32_t mxcsr;
    uint32_t mxcsr_mask;
    uint8_t fpregs1[8 * 16];
    uint8_t xmm_regs[16 * 16];
    uint8_t dummy2[96];
};

static struct fpxstate fpx1 __attribute__((aligned(16)));

static void restore_native_fp_frstor(CPUState *env)
{
    int fptag, i, j;
    struct fpstate fp1, *fp = &fp1;
    
    fp->fpuc = env->fpuc;
    fp->fpus = (env->fpus & ~0x3800) | (env->fpstt & 0x7) << 11;
    fptag = 0;
    for (i=7; i>=0; i--) {
	fptag <<= 2;
	if (env->fptags[i]) {
            fptag |= 3;
        } else {
            /* the FPU automatically computes it */
        }
    }
    fp->fptag = fptag;
    j = env->fpstt;
    for(i = 0;i < 8; i++) {
        memcpy(&fp->fpregs1[i * 10], &env->fpregs[j].d, 10);
        j = (j + 1) & 7;
    }
    asm volatile ("frstor %0" : "=m" (*fp));
}
 
static void save_native_fp_fsave(CPUState *env)
{
    int fptag, i, j;
    uint16_t fpuc;
    struct fpstate fp1, *fp = &fp1;

    asm volatile ("fsave %0" : : "m" (*fp));
    env->fpuc = fp->fpuc;
    env->fpstt = (fp->fpus >> 11) & 7;
    env->fpus = fp->fpus & ~0x3800;
    fptag = fp->fptag;
    for(i = 0;i < 8; i++) {
        env->fptags[i] = ((fptag & 3) == 3);
        fptag >>= 2;
    }
    j = env->fpstt;
    for(i = 0;i < 8; i++) {
        memcpy(&env->fpregs[j].d, &fp->fpregs1[i * 10], 10);
        j = (j + 1) & 7;
    }
    /* we must restore the default rounding state */
    fpuc = 0x037f | (env->fpuc & (3 << 10));
    asm volatile("fldcw %0" : : "m" (fpuc));
}

static void restore_native_fp_fxrstor(CPUState *env)
{
    struct fpxstate *fp = &fpx1;
    int i, j, fptag;

    fp->fpuc = env->fpuc;
    fp->fpus = (env->fpus & ~0x3800) | (env->fpstt & 0x7) << 11;
    fptag = 0;
    for(i = 0; i < 8; i++)
        fptag |= (env->fptags[i] << i);
    fp->fptag = fptag ^ 0xff;

    j = env->fpstt;
    for(i = 0;i < 8; i++) {
        memcpy(&fp->fpregs1[i * 16], &env->fpregs[j].d, 10);
        j = (j + 1) & 7;
    }
    if (env->cpuid_features & CPUID_SSE) {
        fp->mxcsr = env->mxcsr;
        /* XXX: check if DAZ is not available */
        fp->mxcsr_mask = 0xffff;
        memcpy(fp->xmm_regs, env->xmm_regs, CPU_NB_REGS * 16);
    }
    asm volatile ("fxrstor %0" : "=m" (*fp));
}

static void save_native_fp_fxsave(CPUState *env)
{
    struct fpxstate *fp = &fpx1;
    int fptag, i, j;
    uint16_t fpuc;

    asm volatile ("fxsave %0" : : "m" (*fp));
    env->fpuc = fp->fpuc;
    env->fpstt = (fp->fpus >> 11) & 7;
    env->fpus = fp->fpus & ~0x3800;
    fptag = fp->fptag ^ 0xff;
    for(i = 0;i < 8; i++) {
        env->fptags[i] = (fptag >> i) & 1;
    }
    j = env->fpstt;
    for(i = 0;i < 8; i++) {
        memcpy(&env->fpregs[j].d, &fp->fpregs1[i * 16], 10);
        j = (j + 1) & 7;
    }
    if (env->cpuid_features & CPUID_SSE) {
        env->mxcsr = fp->mxcsr;
        memcpy(env->xmm_regs, fp->xmm_regs, CPU_NB_REGS * 16);
    }

    /* we must restore the default rounding state */
    asm volatile ("fninit");
    fpuc = 0x037f | (env->fpuc & (3 << 10));
    asm volatile("fldcw %0" : : "m" (fpuc));
}

static int do_syscall(CPUState *env,
                      struct kqemu_cpu_state *kenv)
{
    int selector;
    
    selector = (env->star >> 32) & 0xffff;
#ifdef __x86_64__
    if (env->hflags & HF_LMA_MASK) {
        env->regs[R_ECX] = kenv->next_eip;
        env->regs[11] = env->eflags;

        cpu_x86_set_cpl(env, 0);
        cpu_x86_load_seg_cache(env, R_CS, selector & 0xfffc, 
                               0, 0xffffffff, 
                               DESC_G_MASK | DESC_B_MASK | DESC_P_MASK |
                               DESC_S_MASK |
                               DESC_CS_MASK | DESC_R_MASK | DESC_A_MASK | DESC_L_MASK);
        cpu_x86_load_seg_cache(env, R_SS, (selector + 8) & 0xfffc, 
                               0, 0xffffffff,
                               DESC_G_MASK | DESC_B_MASK | DESC_P_MASK |
                               DESC_S_MASK |
                               DESC_W_MASK | DESC_A_MASK);
        env->eflags &= ~env->fmask;
        if (env->hflags & HF_CS64_MASK)
            env->eip = env->lstar;
        else
            env->eip = env->cstar;
    } else 
#endif
    {
        env->regs[R_ECX] = (uint32_t)kenv->next_eip;
        
        cpu_x86_set_cpl(env, 0);
        cpu_x86_load_seg_cache(env, R_CS, selector & 0xfffc, 
                           0, 0xffffffff, 
                               DESC_G_MASK | DESC_B_MASK | DESC_P_MASK |
                               DESC_S_MASK |
                               DESC_CS_MASK | DESC_R_MASK | DESC_A_MASK);
        cpu_x86_load_seg_cache(env, R_SS, (selector + 8) & 0xfffc, 
                               0, 0xffffffff,
                               DESC_G_MASK | DESC_B_MASK | DESC_P_MASK |
                               DESC_S_MASK |
                               DESC_W_MASK | DESC_A_MASK);
        env->eflags &= ~(IF_MASK | RF_MASK | VM_MASK);
        env->eip = (uint32_t)env->star;
    }
    return 2;
}

#ifdef CONFIG_PROFILER

#define PC_REC_SIZE 1
#define PC_REC_HASH_BITS 16
#define PC_REC_HASH_SIZE (1 << PC_REC_HASH_BITS)

typedef struct PCRecord {
    unsigned long pc;
    int64_t count;
    struct PCRecord *next;
} PCRecord;

static PCRecord *pc_rec_hash[PC_REC_HASH_SIZE];
static int nb_pc_records;

static void kqemu_record_pc(unsigned long pc)
{
    unsigned long h;
    PCRecord **pr, *r;

    h = pc / PC_REC_SIZE;
    h = h ^ (h >> PC_REC_HASH_BITS);
    h &= (PC_REC_HASH_SIZE - 1);
    pr = &pc_rec_hash[h];
    for(;;) {
        r = *pr;
        if (r == NULL)
            break;
        if (r->pc == pc) {
            r->count++;
            return;
        }
        pr = &r->next;
    }
    r = malloc(sizeof(PCRecord));
    r->count = 1;
    r->pc = pc;
    r->next = NULL;
    *pr = r;
    nb_pc_records++;
}

static int pc_rec_cmp(const void *p1, const void *p2)
{
    PCRecord *r1 = *(PCRecord **)p1;
    PCRecord *r2 = *(PCRecord **)p2;
    if (r1->count < r2->count)
        return 1;
    else if (r1->count == r2->count)
        return 0;
    else
        return -1;
}

static void kqemu_record_flush(void)
{
    PCRecord *r, *r_next;
    int h;

    for(h = 0; h < PC_REC_HASH_SIZE; h++) {
        for(r = pc_rec_hash[h]; r != NULL; r = r_next) {
            r_next = r->next;
            free(r);
        }
        pc_rec_hash[h] = NULL;
    }
    nb_pc_records = 0;
}

void kqemu_record_dump(void)
{
    PCRecord **pr, *r;
    int i, h;
    FILE *f;
    int64_t total, sum;

    pr = malloc(sizeof(PCRecord *) * nb_pc_records);
    i = 0;
    total = 0;
    for(h = 0; h < PC_REC_HASH_SIZE; h++) {
        for(r = pc_rec_hash[h]; r != NULL; r = r->next) {
            pr[i++] = r;
            total += r->count;
        }
    }
    qsort(pr, nb_pc_records, sizeof(PCRecord *), pc_rec_cmp);
    
    f = fopen("/tmp/kqemu.stats", "w");
    if (!f) {
        perror("/tmp/kqemu.stats");
        exit(1);
    }
    fprintf(f, "total: %" PRId64 "\n", total);
    sum = 0;
    for(i = 0; i < nb_pc_records; i++) {
        r = pr[i];
        sum += r->count;
        fprintf(f, "%08lx: %" PRId64 " %0.2f%% %0.2f%%\n", 
                r->pc, 
                r->count, 
                (double)r->count / (double)total * 100.0,
                (double)sum / (double)total * 100.0);
    }
    fclose(f);
    free(pr);

    kqemu_record_flush();
}
#endif

int kqemu_cpu_exec(CPUState *env)
{
    struct kqemu_cpu_state kcpu_state, *kenv = &kcpu_state;
    int ret, cpl, i;
#ifdef CONFIG_PROFILER
    int64_t ti;
#endif

#ifdef _WIN32
    DWORD temp;
#endif

#ifdef CONFIG_PROFILER
    ti = profile_getclock();
#endif
#ifdef DEBUG
    if (loglevel & CPU_LOG_INT) {
        fprintf(logfile, "kqemu: cpu_exec: enter\n");
        cpu_dump_state(env, logfile, fprintf, 0);
    }
#endif
    memcpy(kenv->regs, env->regs, sizeof(kenv->regs));
    kenv->eip = env->eip;
    kenv->eflags = env->eflags;
    memcpy(&kenv->segs, &env->segs, sizeof(env->segs));
    memcpy(&kenv->ldt, &env->ldt, sizeof(env->ldt));
    memcpy(&kenv->tr, &env->tr, sizeof(env->tr));
    memcpy(&kenv->gdt, &env->gdt, sizeof(env->gdt));
    memcpy(&kenv->idt, &env->idt, sizeof(env->idt));
    kenv->cr0 = env->cr[0];
    kenv->cr2 = env->cr[2];
    kenv->cr3 = env->cr[3];
    kenv->cr4 = env->cr[4];
    kenv->a20_mask = env->a20_mask;
#if KQEMU_VERSION >= 0x010100
    kenv->efer = env->efer;
#endif
#if KQEMU_VERSION >= 0x010300
    kenv->tsc_offset = 0;
    kenv->star = env->star;
    kenv->sysenter_cs = env->sysenter_cs;
    kenv->sysenter_esp = env->sysenter_esp;
    kenv->sysenter_eip = env->sysenter_eip;
#ifdef __x86_64__
    kenv->lstar = env->lstar;
    kenv->cstar = env->cstar;
    kenv->fmask = env->fmask;
    kenv->kernelgsbase = env->kernelgsbase;
#endif
#endif
    if (env->dr[7] & 0xff) {
        kenv->dr7 = env->dr[7];
        kenv->dr0 = env->dr[0];
        kenv->dr1 = env->dr[1];
        kenv->dr2 = env->dr[2];
        kenv->dr3 = env->dr[3];
    } else {
        kenv->dr7 = 0;
    }
    kenv->dr6 = env->dr[6];
    cpl = (env->hflags & HF_CPL_MASK);
    kenv->cpl = cpl;
    kenv->nb_pages_to_flush = nb_pages_to_flush;
#if KQEMU_VERSION >= 0x010200
    kenv->user_only = (env->kqemu_enabled == 1);
    kenv->nb_ram_pages_to_update = nb_ram_pages_to_update;
#endif
    nb_ram_pages_to_update = 0;
    
#if KQEMU_VERSION >= 0x010300
    kenv->nb_modified_ram_pages = nb_modified_ram_pages;
#endif
    kqemu_reset_modified_ram_pages();

    if (env->cpuid_features & CPUID_FXSR)
        restore_native_fp_fxrstor(env);
    else
        restore_native_fp_frstor(env);

#ifdef _WIN32
    if (DeviceIoControl(kqemu_fd, KQEMU_EXEC,
                        kenv, sizeof(struct kqemu_cpu_state),
                        kenv, sizeof(struct kqemu_cpu_state),
                        &temp, NULL)) {
        ret = kenv->retval;
    } else {
        ret = -1;
    }
#else
#if KQEMU_VERSION >= 0x010100
    ioctl(kqemu_fd, KQEMU_EXEC, kenv);
    ret = kenv->retval;
#else
    ret = ioctl(kqemu_fd, KQEMU_EXEC, kenv);
#endif
#endif
    if (env->cpuid_features & CPUID_FXSR)
        save_native_fp_fxsave(env);
    else
        save_native_fp_fsave(env);

    memcpy(env->regs, kenv->regs, sizeof(env->regs));
    env->eip = kenv->eip;
    env->eflags = kenv->eflags;
    memcpy(env->segs, kenv->segs, sizeof(env->segs));
    cpu_x86_set_cpl(env, kenv->cpl);
    memcpy(&env->ldt, &kenv->ldt, sizeof(env->ldt));
#if 0
    /* no need to restore that */
    memcpy(env->tr, kenv->tr, sizeof(env->tr));
    memcpy(env->gdt, kenv->gdt, sizeof(env->gdt));
    memcpy(env->idt, kenv->idt, sizeof(env->idt));
    env->a20_mask = kenv->a20_mask;
#endif
    env->cr[0] = kenv->cr0;
    env->cr[4] = kenv->cr4;
    env->cr[3] = kenv->cr3;
    env->cr[2] = kenv->cr2;
    env->dr[6] = kenv->dr6;
#if KQEMU_VERSION >= 0x010300
#ifdef __x86_64__
    env->kernelgsbase = kenv->kernelgsbase;
#endif
#endif

    /* flush pages as indicated by kqemu */
    if (kenv->nb_pages_to_flush >= KQEMU_FLUSH_ALL) {
        tlb_flush(env, 1);
    } else {
        for(i = 0; i < kenv->nb_pages_to_flush; i++) {
            tlb_flush_page(env, pages_to_flush[i]);
        }
    }
    nb_pages_to_flush = 0;

#ifdef CONFIG_PROFILER
    kqemu_time += profile_getclock() - ti;
    kqemu_exec_count++;
#endif

#if KQEMU_VERSION >= 0x010200
    if (kenv->nb_ram_pages_to_update > 0) {
        cpu_tlb_update_dirty(env);
    }
#endif

#if KQEMU_VERSION >= 0x010300
    if (kenv->nb_modified_ram_pages > 0) {
        for(i = 0; i < kenv->nb_modified_ram_pages; i++) {
            unsigned long addr;
            addr = modified_ram_pages[i];
            tb_invalidate_phys_page_range(addr, addr + TARGET_PAGE_SIZE, 0);
        }
    }
#endif

    /* restore the hidden flags */
    {
        unsigned int new_hflags;
#ifdef TARGET_X86_64
        if ((env->hflags & HF_LMA_MASK) && 
            (env->segs[R_CS].flags & DESC_L_MASK)) {
            /* long mode */
            new_hflags = HF_CS32_MASK | HF_SS32_MASK | HF_CS64_MASK;
        } else
#endif
        {
            /* legacy / compatibility case */
            new_hflags = (env->segs[R_CS].flags & DESC_B_MASK)
                >> (DESC_B_SHIFT - HF_CS32_SHIFT);
            new_hflags |= (env->segs[R_SS].flags & DESC_B_MASK)
                >> (DESC_B_SHIFT - HF_SS32_SHIFT);
            if (!(env->cr[0] & CR0_PE_MASK) || 
                   (env->eflags & VM_MASK) ||
                   !(env->hflags & HF_CS32_MASK)) {
                /* XXX: try to avoid this test. The problem comes from the
                   fact that is real mode or vm86 mode we only modify the
                   'base' and 'selector' fields of the segment cache to go
                   faster. A solution may be to force addseg to one in
                   translate-i386.c. */
                new_hflags |= HF_ADDSEG_MASK;
            } else {
                new_hflags |= ((env->segs[R_DS].base | 
                                env->segs[R_ES].base |
                                env->segs[R_SS].base) != 0) << 
                    HF_ADDSEG_SHIFT;
            }
        }
        env->hflags = (env->hflags & 
           ~(HF_CS32_MASK | HF_SS32_MASK | HF_CS64_MASK | HF_ADDSEG_MASK)) |
            new_hflags;
    }
    /* update FPU flags */
    env->hflags = (env->hflags & ~(HF_MP_MASK | HF_EM_MASK | HF_TS_MASK)) |
        ((env->cr[0] << (HF_MP_SHIFT - 1)) & (HF_MP_MASK | HF_EM_MASK | HF_TS_MASK));
    if (env->cr[4] & CR4_OSFXSR_MASK)
        env->hflags |= HF_OSFXSR_MASK;
    else
        env->hflags &= ~HF_OSFXSR_MASK;
        
#ifdef DEBUG
    if (loglevel & CPU_LOG_INT) {
        fprintf(logfile, "kqemu: kqemu_cpu_exec: ret=0x%x\n", ret);
    }
#endif
    if (ret == KQEMU_RET_SYSCALL) {
        /* syscall instruction */
        return do_syscall(env, kenv);
    } else 
    if ((ret & 0xff00) == KQEMU_RET_INT) {
        env->exception_index = ret & 0xff;
        env->error_code = 0;
        env->exception_is_int = 1;
        env->exception_next_eip = kenv->next_eip;
#ifdef CONFIG_PROFILER
        kqemu_ret_int_count++;
#endif
#ifdef DEBUG
        if (loglevel & CPU_LOG_INT) {
            fprintf(logfile, "kqemu: interrupt v=%02x:\n", 
                    env->exception_index);
            cpu_dump_state(env, logfile, fprintf, 0);
        }
#endif
        return 1;
    } else if ((ret & 0xff00) == KQEMU_RET_EXCEPTION) {
        env->exception_index = ret & 0xff;
        env->error_code = kenv->error_code;
        env->exception_is_int = 0;
        env->exception_next_eip = 0;
#ifdef CONFIG_PROFILER
        kqemu_ret_excp_count++;
#endif
#ifdef DEBUG
        if (loglevel & CPU_LOG_INT) {
            fprintf(logfile, "kqemu: exception v=%02x e=%04x:\n",
                    env->exception_index, env->error_code);
            cpu_dump_state(env, logfile, fprintf, 0);
        }
#endif
        return 1;
    } else if (ret == KQEMU_RET_INTR) {
#ifdef CONFIG_PROFILER
        kqemu_ret_intr_count++;
#endif
#ifdef DEBUG
        if (loglevel & CPU_LOG_INT) {
            cpu_dump_state(env, logfile, fprintf, 0);
        }
#endif
        return 0;
    } else if (ret == KQEMU_RET_SOFTMMU) { 
#ifdef CONFIG_PROFILER
        {
            unsigned long pc = env->eip + env->segs[R_CS].base;
            kqemu_record_pc(pc);
        }
#endif
#ifdef DEBUG
        if (loglevel & CPU_LOG_INT) {
            cpu_dump_state(env, logfile, fprintf, 0);
        }
#endif
        return 2;
    } else {
        cpu_dump_state(env, stderr, fprintf, 0);
        fprintf(stderr, "Unsupported return value: 0x%x\n", ret);
        exit(1);
    }
    return 0;
}

void kqemu_cpu_interrupt(CPUState *env)
{
#if defined(_WIN32) && KQEMU_VERSION >= 0x010101
    /* cancelling the I/O request causes KQEMU to finish executing the 
       current block and successfully returning. */
    CancelIo(kqemu_fd);
#endif
}

#endif
' href='#n662'>662</a>
<a id='n663' href='#n663'>663</a>
<a id='n664' href='#n664'>664</a>
<a id='n665' href='#n665'>665</a>
<a id='n666' href='#n666'>666</a>
<a id='n667' href='#n667'>667</a>
<a id='n668' href='#n668'>668</a>
<a id='n669' href='#n669'>669</a>
<a id='n670' href='#n670'>670</a>
<a id='n671' href='#n671'>671</a>
<a id='n672' href='#n672'>672</a>
<a id='n673' href='#n673'>673</a>
<a id='n674' href='#n674'>674</a>
<a id='n675' href='#n675'>675</a>
<a id='n676' href='#n676'>676</a>
<a id='n677' href='#n677'>677</a>
<a id='n678' href='#n678'>678</a>
<a id='n679' href='#n679'>679</a>
<a id='n680' href='#n680'>680</a>
<a id='n681' href='#n681'>681</a>
<a id='n682' href='#n682'>682</a>
<a id='n683' href='#n683'>683</a>
<a id='n684' href='#n684'>684</a>
<a id='n685' href='#n685'>685</a>
<a id='n686' href='#n686'>686</a>
<a id='n687' href='#n687'>687</a>
<a id='n688' href='#n688'>688</a>
<a id='n689' href='#n689'>689</a>
<a id='n690' href='#n690'>690</a>
<a id='n691' href='#n691'>691</a>
<a id='n692' href='#n692'>692</a>
<a id='n693' href='#n693'>693</a>
<a id='n694' href='#n694'>694</a>
<a id='n695' href='#n695'>695</a>
<a id='n696' href='#n696'>696</a>
<a id='n697' href='#n697'>697</a>
<a id='n698' href='#n698'>698</a>
<a id='n699' href='#n699'>699</a>
<a id='n700' href='#n700'>700</a>
<a id='n701' href='#n701'>701</a>
<a id='n702' href='#n702'>702</a>
<a id='n703' href='#n703'>703</a>
<a id='n704' href='#n704'>704</a>
<a id='n705' href='#n705'>705</a>
<a id='n706' href='#n706'>706</a>
<a id='n707' href='#n707'>707</a>
<a id='n708' href='#n708'>708</a>
<a id='n709' href='#n709'>709</a>
<a id='n710' href='#n710'>710</a>
<a id='n711' href='#n711'>711</a>
<a id='n712' href='#n712'>712</a>
<a id='n713' href='#n713'>713</a>
<a id='n714' href='#n714'>714</a>
<a id='n715' href='#n715'>715</a>
<a id='n716' href='#n716'>716</a>
<a id='n717' href='#n717'>717</a>
<a id='n718' href='#n718'>718</a>
<a id='n719' href='#n719'>719</a>
<a id='n720' href='#n720'>720</a>
<a id='n721' href='#n721'>721</a>
<a id='n722' href='#n722'>722</a>
<a id='n723' href='#n723'>723</a>
<a id='n724' href='#n724'>724</a>
<a id='n725' href='#n725'>725</a>
<a id='n726' href='#n726'>726</a>
<a id='n727' href='#n727'>727</a>
<a id='n728' href='#n728'>728</a>
<a id='n729' href='#n729'>729</a>
<a id='n730' href='#n730'>730</a>
<a id='n731' href='#n731'>731</a>
<a id='n732' href='#n732'>732</a>
<a id='n733' href='#n733'>733</a>
<a id='n734' href='#n734'>734</a>
<a id='n735' href='#n735'>735</a>
<a id='n736' href='#n736'>736</a>
<a id='n737' href='#n737'>737</a>
<a id='n738' href='#n738'>738</a>
<a id='n739' href='#n739'>739</a>
<a id='n740' href='#n740'>740</a>
<a id='n741' href='#n741'>741</a>
<a id='n742' href='#n742'>742</a>
<a id='n743' href='#n743'>743</a>
<a id='n744' href='#n744'>744</a>
<a id='n745' href='#n745'>745</a>
<a id='n746' href='#n746'>746</a>
<a id='n747' href='#n747'>747</a>
<a id='n748' href='#n748'>748</a>
<a id='n749' href='#n749'>749</a>
<a id='n750' href='#n750'>750</a>
<a id='n751' href='#n751'>751</a>
<a id='n752' href='#n752'>752</a>
<a id='n753' href='#n753'>753</a>
<a id='n754' href='#n754'>754</a>
<a id='n755' href='#n755'>755</a>
<a id='n756' href='#n756'>756</a>
<a id='n757' href='#n757'>757</a>
<a id='n758' href='#n758'>758</a>
<a id='n759' href='#n759'>759</a>
<a id='n760' href='#n760'>760</a>
<a id='n761' href='#n761'>761</a>
<a id='n762' href='#n762'>762</a>
<a id='n763' href='#n763'>763</a>
<a id='n764' href='#n764'>764</a>
<a id='n765' href='#n765'>765</a>
<a id='n766' href='#n766'>766</a>
<a id='n767' href='#n767'>767</a>
<a id='n768' href='#n768'>768</a>
<a id='n769' href='#n769'>769</a>
<a id='n770' href='#n770'>770</a>
<a id='n771' href='#n771'>771</a>
<a id='n772' href='#n772'>772</a>
<a id='n773' href='#n773'>773</a>
<a id='n774' href='#n774'>774</a>
<a id='n775' href='#n775'>775</a>
<a id='n776' href='#n776'>776</a>
<a id='n777' href='#n777'>777</a>
<a id='n778' href='#n778'>778</a>
<a id='n779' href='#n779'>779</a>
<a id='n780' href='#n780'>780</a>
<a id='n781' href='#n781'>781</a>
<a id='n782' href='#n782'>782</a>
<a id='n783' href='#n783'>783</a>
<a id='n784' href='#n784'>784</a>
<a id='n785' href='#n785'>785</a>
<a id='n786' href='#n786'>786</a>
<a id='n787' href='#n787'>787</a>
<a id='n788' href='#n788'>788</a>
<a id='n789' href='#n789'>789</a>
<a id='n790' href='#n790'>790</a>
<a id='n791' href='#n791'>791</a>
<a id='n792' href='#n792'>792</a>
<a id='n793' href='#n793'>793</a>
<a id='n794' href='#n794'>794</a>
<a id='n795' href='#n795'>795</a>
<a id='n796' href='#n796'>796</a>
<a id='n797' href='#n797'>797</a>
<a id='n798' href='#n798'>798</a>
<a id='n799' href='#n799'>799</a>
<a id='n800' href='#n800'>800</a>
<a id='n801' href='#n801'>801</a>
<a id='n802' href='#n802'>802</a>
<a id='n803' href='#n803'>803</a>
<a id='n804' href='#n804'>804</a>
<a id='n805' href='#n805'>805</a>
<a id='n806' href='#n806'>806</a>
<a id='n807' href='#n807'>807</a>
<a id='n808' href='#n808'>808</a>
<a id='n809' href='#n809'>809</a>
<a id='n810' href='#n810'>810</a>
<a id='n811' href='#n811'>811</a>
<a id='n812' href='#n812'>812</a>
<a id='n813' href='#n813'>813</a>
<a id='n814' href='#n814'>814</a>
<a id='n815' href='#n815'>815</a>
<a id='n816' href='#n816'>816</a>
<a id='n817' href='#n817'>817</a>
<a id='n818' href='#n818'>818</a>
<a id='n819' href='#n819'>819</a>
<a id='n820' href='#n820'>820</a>
<a id='n821' href='#n821'>821</a>
<a id='n822' href='#n822'>822</a>
<a id='n823' href='#n823'>823</a>
<a id='n824' href='#n824'>824</a>
<a id='n825' href='#n825'>825</a>
<a id='n826' href='#n826'>826</a>
<a id='n827' href='#n827'>827</a>
<a id='n828' href='#n828'>828</a>
<a id='n829' href='#n829'>829</a>
<a id='n830' href='#n830'>830</a>
<a id='n831' href='#n831'>831</a>
<a id='n832' href='#n832'>832</a>
<a id='n833' href='#n833'>833</a>
<a id='n834' href='#n834'>834</a>
<a id='n835' href='#n835'>835</a>
<a id='n836' href='#n836'>836</a>
<a id='n837' href='#n837'>837</a>
<a id='n838' href='#n838'>838</a>
<a id='n839' href='#n839'>839</a>
<a id='n840' href='#n840'>840</a>
<a id='n841' href='#n841'>841</a>
<a id='n842' href='#n842'>842</a>
<a id='n843' href='#n843'>843</a>
<a id='n844' href='#n844'>844</a>
<a id='n845' href='#n845'>845</a>
<a id='n846' href='#n846'>846</a>
<a id='n847' href='#n847'>847</a>
<a id='n848' href='#n848'>848</a>
<a id='n849' href='#n849'>849</a>
<a id='n850' href='#n850'>850</a>
<a id='n851' href='#n851'>851</a>
<a id='n852' href='#n852'>852</a>
<a id='n853' href='#n853'>853</a>
<a id='n854' href='#n854'>854</a>
<a id='n855' href='#n855'>855</a>
<a id='n856' href='#n856'>856</a>
<a id='n857' href='#n857'>857</a>
<a id='n858' href='#n858'>858</a>
<a id='n859' href='#n859'>859</a>
<a id='n860' href='#n860'>860</a>
<a id='n861' href='#n861'>861</a>
<a id='n862' href='#n862'>862</a>
<a id='n863' href='#n863'>863</a>
<a id='n864' href='#n864'>864</a>
<a id='n865' href='#n865'>865</a>
<a id='n866' href='#n866'>866</a>
<a id='n867' href='#n867'>867</a>
<a id='n868' href='#n868'>868</a>
<a id='n869' href='#n869'>869</a>
<a id='n870' href='#n870'>870</a>
<a id='n871' href='#n871'>871</a>
<a id='n872' href='#n872'>872</a>
<a id='n873' href='#n873'>873</a>
<a id='n874' href='#n874'>874</a>
<a id='n875' href='#n875'>875</a>
<a id='n876' href='#n876'>876</a>
<a id='n877' href='#n877'>877</a>
<a id='n878' href='#n878'>878</a>
<a id='n879' href='#n879'>879</a>
<a id='n880' href='#n880'>880</a>
<a id='n881' href='#n881'>881</a>
<a id='n882' href='#n882'>882</a>
<a id='n883' href='#n883'>883</a>
<a id='n884' href='#n884'>884</a>
<a id='n885' href='#n885'>885</a>
<a id='n886' href='#n886'>886</a>
<a id='n887' href='#n887'>887</a>
<a id='n888' href='#n888'>888</a>
<a id='n889' href='#n889'>889</a>
<a id='n890' href='#n890'>890</a>
<a id='n891' href='#n891'>891</a>
<a id='n892' href='#n892'>892</a>
<a id='n893' href='#n893'>893</a>
<a id='n894' href='#n894'>894</a>
<a id='n895' href='#n895'>895</a>
<a id='n896' href='#n896'>896</a>
<a id='n897' href='#n897'>897</a>
<a id='n898' href='#n898'>898</a>
<a id='n899' href='#n899'>899</a>
<a id='n900' href='#n900'>900</a>
<a id='n901' href='#n901'>901</a>
<a id='n902' href='#n902'>902</a>
<a id='n903' href='#n903'>903</a>
<a id='n904' href='#n904'>904</a>
<a id='n905' href='#n905'>905</a>
<a id='n906' href='#n906'>906</a>
<a id='n907' href='#n907'>907</a>
<a id='n908' href='#n908'>908</a>
<a id='n909' href='#n909'>909</a>
<a id='n910' href='#n910'>910</a>
<a id='n911' href='#n911'>911</a>
<a id='n912' href='#n912'>912</a>
<a id='n913' href='#n913'>913</a>
<a id='n914' href='#n914'>914</a>
<a id='n915' href='#n915'>915</a>
<a id='n916' href='#n916'>916</a>
<a id='n917' href='#n917'>917</a>
<a id='n918' href='#n918'>918</a>
<a id='n919' href='#n919'>919</a>
<a id='n920' href='#n920'>920</a>
<a id='n921' href='#n921'>921</a>
<a id='n922' href='#n922'>922</a>
<a id='n923' href='#n923'>923</a>
<a id='n924' href='#n924'>924</a>
<a id='n925' href='#n925'>925</a>
<a id='n926' href='#n926'>926</a>
<a id='n927' href='#n927'>927</a>
<a id='n928' href='#n928'>928</a>
<a id='n929' href='#n929'>929</a>
<a id='n930' href='#n930'>930</a>
<a id='n931' href='#n931'>931</a>
<a id='n932' href='#n932'>932</a>
<a id='n933' href='#n933'>933</a>
<a id='n934' href='#n934'>934</a>
<a id='n935' href='#n935'>935</a>
<a id='n936' href='#n936'>936</a>
<a id='n937' href='#n937'>937</a>
<a id='n938' href='#n938'>938</a>
<a id='n939' href='#n939'>939</a>
<a id='n940' href='#n940'>940</a>
<a id='n941' href='#n941'>941</a>
<a id='n942' href='#n942'>942</a>
<a id='n943' href='#n943'>943</a>
<a id='n944' href='#n944'>944</a>
<a id='n945' href='#n945'>945</a>
<a id='n946' href='#n946'>946</a>
<a id='n947' href='#n947'>947</a>
<a id='n948' href='#n948'>948</a>
<a id='n949' href='#n949'>949</a>
<a id='n950' href='#n950'>950</a>
<a id='n951' href='#n951'>951</a>
<a id='n952' href='#n952'>952</a>
<a id='n953' href='#n953'>953</a>
<a id='n954' href='#n954'>954</a>
<a id='n955' href='#n955'>955</a>
<a id='n956' href='#n956'>956</a>
<a id='n957' href='#n957'>957</a>
<a id='n958' href='#n958'>958</a>
<a id='n959' href='#n959'>959</a>
<a id='n960' href='#n960'>960</a>
<a id='n961' href='#n961'>961</a>
<a id='n962' href='#n962'>962</a>
<a id='n963' href='#n963'>963</a>
<a id='n964' href='#n964'>964</a>
<a id='n965' href='#n965'>965</a>
<a id='n966' href='#n966'>966</a>
<a id='n967' href='#n967'>967</a>
<a id='n968' href='#n968'>968</a>
<a id='n969' href='#n969'>969</a>
<a id='n970' href='#n970'>970</a>
<a id='n971' href='#n971'>971</a>
<a id='n972' href='#n972'>972</a>
<a id='n973' href='#n973'>973</a>
<a id='n974' href='#n974'>974</a>
<a id='n975' href='#n975'>975</a>
<a id='n976' href='#n976'>976</a>
<a id='n977' href='#n977'>977</a>
<a id='n978' href='#n978'>978</a>
<a id='n979' href='#n979'>979</a>
<a id='n980' href='#n980'>980</a>
<a id='n981' href='#n981'>981</a>
<a id='n982' href='#n982'>982</a>
<a id='n983' href='#n983'>983</a>
<a id='n984' href='#n984'>984</a>
<a id='n985' href='#n985'>985</a>
<a id='n986' href='#n986'>986</a>
<a id='n987' href='#n987'>987</a>
<a id='n988' href='#n988'>988</a>
<a id='n989' href='#n989'>989</a>
<a id='n990' href='#n990'>990</a>
<a id='n991' href='#n991'>991</a>
<a id='n992' href='#n992'>992</a>
<a id='n993' href='#n993'>993</a>
<a id='n994' href='#n994'>994</a>
<a id='n995' href='#n995'>995</a>
<a id='n996' href='#n996'>996</a>
<a id='n997' href='#n997'>997</a>
<a id='n998' href='#n998'>998</a>
<a id='n999' href='#n999'>999</a>
<a id='n1000' href='#n1000'>1000</a>
<a id='n1001' href='#n1001'>1001</a>
<a id='n1002' href='#n1002'>1002</a>
<a id='n1003' href='#n1003'>1003</a>
<a id='n1004' href='#n1004'>1004</a>
<a id='n1005' href='#n1005'>1005</a>
<a id='n1006' href='#n1006'>1006</a>
<a id='n1007' href='#n1007'>1007</a>
<a id='n1008' href='#n1008'>1008</a>
<a id='n1009' href='#n1009'>1009</a>
<a id='n1010' href='#n1010'>1010</a>
<a id='n1011' href='#n1011'>1011</a>
<a id='n1012' href='#n1012'>1012</a>
<a id='n1013' href='#n1013'>1013</a>
<a id='n1014' href='#n1014'>1014</a>
<a id='n1015' href='#n1015'>1015</a>
<a id='n1016' href='#n1016'>1016</a>
<a id='n1017' href='#n1017'>1017</a>
<a id='n1018' href='#n1018'>1018</a>
<a id='n1019' href='#n1019'>1019</a>
<a id='n1020' href='#n1020'>1020</a>
<a id='n1021' href='#n1021'>1021</a>
<a id='n1022' href='#n1022'>1022</a>
<a id='n1023' href='#n1023'>1023</a>
<a id='n1024' href='#n1024'>1024</a>
<a id='n1025' href='#n1025'>1025</a>
<a id='n1026' href='#n1026'>1026</a>
<a id='n1027' href='#n1027'>1027</a>
<a id='n1028' href='#n1028'>1028</a>
<a id='n1029' href='#n1029'>1029</a>
<a id='n1030' href='#n1030'>1030</a>
<a id='n1031' href='#n1031'>1031</a>
<a id='n1032' href='#n1032'>1032</a>
<a id='n1033' href='#n1033'>1033</a>
<a id='n1034' href='#n1034'>1034</a>
<a id='n1035' href='#n1035'>1035</a>
<a id='n1036' href='#n1036'>1036</a>
<a id='n1037' href='#n1037'>1037</a>
<a id='n1038' href='#n1038'>1038</a>
<a id='n1039' href='#n1039'>1039</a>
<a id='n1040' href='#n1040'>1040</a>
<a id='n1041' href='#n1041'>1041</a>
<a id='n1042' href='#n1042'>1042</a>
<a id='n1043' href='#n1043'>1043</a>
<a id='n1044' href='#n1044'>1044</a>
<a id='n1045' href='#n1045'>1045</a>
<a id='n1046' href='#n1046'>1046</a>
<a id='n1047' href='#n1047'>1047</a>
<a id='n1048' href='#n1048'>1048</a>
<a id='n1049' href='#n1049'>1049</a>
<a id='n1050' href='#n1050'>1050</a>
<a id='n1051' href='#n1051'>1051</a>
<a id='n1052' href='#n1052'>1052</a>
<a id='n1053' href='#n1053'>1053</a>
<a id='n1054' href='#n1054'>1054</a>
<a id='n1055' href='#n1055'>1055</a>
<a id='n1056' href='#n1056'>1056</a>
<a id='n1057' href='#n1057'>1057</a>
<a id='n1058' href='#n1058'>1058</a>
<a id='n1059' href='#n1059'>1059</a>
<a id='n1060' href='#n1060'>1060</a>
<a id='n1061' href='#n1061'>1061</a>
<a id='n1062' href='#n1062'>1062</a>
<a id='n1063' href='#n1063'>1063</a>
<a id='n1064' href='#n1064'>1064</a>
<a id='n1065' href='#n1065'>1065</a>
<a id='n1066' href='#n1066'>1066</a>
<a id='n1067' href='#n1067'>1067</a>
<a id='n1068' href='#n1068'>1068</a>
<a id='n1069' href='#n1069'>1069</a>
<a id='n1070' href='#n1070'>1070</a>
<a id='n1071' href='#n1071'>1071</a>
<a id='n1072' href='#n1072'>1072</a>
<a id='n1073' href='#n1073'>1073</a>
<a id='n1074' href='#n1074'>1074</a>
<a id='n1075' href='#n1075'>1075</a>
<a id='n1076' href='#n1076'>1076</a>
<a id='n1077' href='#n1077'>1077</a>
<a id='n1078' href='#n1078'>1078</a>
<a id='n1079' href='#n1079'>1079</a>
<a id='n1080' href='#n1080'>1080</a>
<a id='n1081' href='#n1081'>1081</a>
<a id='n1082' href='#n1082'>1082</a>
<a id='n1083' href='#n1083'>1083</a>
<a id='n1084' href='#n1084'>1084</a>
<a id='n1085' href='#n1085'>1085</a>
<a id='n1086' href='#n1086'>1086</a>
<a id='n1087' href='#n1087'>1087</a>
<a id='n1088' href='#n1088'>1088</a>
<a id='n1089' href='#n1089'>1089</a>
<a id='n1090' href='#n1090'>1090</a>
<a id='n1091' href='#n1091'>1091</a>
<a id='n1092' href='#n1092'>1092</a>
<a id='n1093' href='#n1093'>1093</a>
<a id='n1094' href='#n1094'>1094</a>
<a id='n1095' href='#n1095'>1095</a>
<a id='n1096' href='#n1096'>1096</a>
<a id='n1097' href='#n1097'>1097</a>
<a id='n1098' href='#n1098'>1098</a>
<a id='n1099' href='#n1099'>1099</a>
<a id='n1100' href='#n1100'>1100</a>
<a id='n1101' href='#n1101'>1101</a>
<a id='n1102' href='#n1102'>1102</a>
<a id='n1103' href='#n1103'>1103</a>
<a id='n1104' href='#n1104'>1104</a>
<a id='n1105' href='#n1105'>1105</a>
<a id='n1106' href='#n1106'>1106</a>
<a id='n1107' href='#n1107'>1107</a>
<a id='n1108' href='#n1108'>1108</a>
<a id='n1109' href='#n1109'>1109</a>
<a id='n1110' href='#n1110'>1110</a>
<a id='n1111' href='#n1111'>1111</a>
<a id='n1112' href='#n1112'>1112</a>
<a id='n1113' href='#n1113'>1113</a>
<a id='n1114' href='#n1114'>1114</a>
<a id='n1115' href='#n1115'>1115</a>
<a id='n1116' href='#n1116'>1116</a>
<a id='n1117' href='#n1117'>1117</a>
<a id='n1118' href='#n1118'>1118</a>
<a id='n1119' href='#n1119'>1119</a>
<a id='n1120' href='#n1120'>1120</a>
<a id='n1121' href='#n1121'>1121</a>
<a id='n1122' href='#n1122'>1122</a>
<a id='n1123' href='#n1123'>1123</a>
<a id='n1124' href='#n1124'>1124</a>
<a id='n1125' href='#n1125'>1125</a>
<a id='n1126' href='#n1126'>1126</a>
<a id='n1127' href='#n1127'>1127</a>
<a id='n1128' href='#n1128'>1128</a>
<a id='n1129' href='#n1129'>1129</a>
<a id='n1130' href='#n1130'>1130</a>
<a id='n1131' href='#n1131'>1131</a>
<a id='n1132' href='#n1132'>1132</a>
<a id='n1133' href='#n1133'>1133</a>
<a id='n1134' href='#n1134'>1134</a>
<a id='n1135' href='#n1135'>1135</a>
<a id='n1136' href='#n1136'>1136</a>
<a id='n1137' href='#n1137'>1137</a>
<a id='n1138' href='#n1138'>1138</a>
<a id='n1139' href='#n1139'>1139</a>
<a id='n1140' href='#n1140'>1140</a>
<a id='n1141' href='#n1141'>1141</a>
<a id='n1142' href='#n1142'>1142</a>
<a id='n1143' href='#n1143'>1143</a>
<a id='n1144' href='#n1144'>1144</a>
<a id='n1145' href='#n1145'>1145</a>
<a id='n1146' href='#n1146'>1146</a>
<a id='n1147' href='#n1147'>1147</a>
<a id='n1148' href='#n1148'>1148</a>
<a id='n1149' href='#n1149'>1149</a>
<a id='n1150' href='#n1150'>1150</a>
<a id='n1151' href='#n1151'>1151</a>
<a id='n1152' href='#n1152'>1152</a>
<a id='n1153' href='#n1153'>1153</a>
<a id='n1154' href='#n1154'>1154</a>
<a id='n1155' href='#n1155'>1155</a>
<a id='n1156' href='#n1156'>1156</a>
<a id='n1157' href='#n1157'>1157</a>
<a id='n1158' href='#n1158'>1158</a>
<a id='n1159' href='#n1159'>1159</a>
<a id='n1160' href='#n1160'>1160</a>
<a id='n1161' href='#n1161'>1161</a>
<a id='n1162' href='#n1162'>1162</a>
<a id='n1163' href='#n1163'>1163</a>
<a id='n1164' href='#n1164'>1164</a>
<a id='n1165' href='#n1165'>1165</a>
<a id='n1166' href='#n1166'>1166</a>
<a id='n1167' href='#n1167'>1167</a>
<a id='n1168' href='#n1168'>1168</a>
<a id='n1169' href='#n1169'>1169</a>
<a id='n1170' href='#n1170'>1170</a>
<a id='n1171' href='#n1171'>1171</a>
<a id='n1172' href='#n1172'>1172</a>
<a id='n1173' href='#n1173'>1173</a>
<a id='n1174' href='#n1174'>1174</a>
<a id='n1175' href='#n1175'>1175</a>
<a id='n1176' href='#n1176'>1176</a>
<a id='n1177' href='#n1177'>1177</a>
<a id='n1178' href='#n1178'>1178</a>
<a id='n1179' href='#n1179'>1179</a>
<a id='n1180' href='#n1180'>1180</a>
<a id='n1181' href='#n1181'>1181</a>
<a id='n1182' href='#n1182'>1182</a>
<a id='n1183' href='#n1183'>1183</a>
<a id='n1184' href='#n1184'>1184</a>
<a id='n1185' href='#n1185'>1185</a>
<a id='n1186' href='#n1186'>1186</a>
<a id='n1187' href='#n1187'>1187</a>
<a id='n1188' href='#n1188'>1188</a>
<a id='n1189' href='#n1189'>1189</a>
<a id='n1190' href='#n1190'>1190</a>
<a id='n1191' href='#n1191'>1191</a>
<a id='n1192' href='#n1192'>1192</a>
<a id='n1193' href='#n1193'>1193</a>
<a id='n1194' href='#n1194'>1194</a>
<a id='n1195' href='#n1195'>1195</a>
<a id='n1196' href='#n1196'>1196</a>
<a id='n1197' href='#n1197'>1197</a>
<a id='n1198' href='#n1198'>1198</a>
<a id='n1199' href='#n1199'>1199</a>
<a id='n1200' href='#n1200'>1200</a>
<a id='n1201' href='#n1201'>1201</a>
<a id='n1202' href='#n1202'>1202</a>
<a id='n1203' href='#n1203'>1203</a>
<a id='n1204' href='#n1204'>1204</a>
<a id='n1205' href='#n1205'>1205</a>
<a id='n1206' href='#n1206'>1206</a>
<a id='n1207' href='#n1207'>1207</a>
<a id='n1208' href='#n1208'>1208</a>
<a id='n1209' href='#n1209'>1209</a>
<a id='n1210' href='#n1210'>1210</a>
<a id='n1211' href='#n1211'>1211</a>
<a id='n1212' href='#n1212'>1212</a>
<a id='n1213' href='#n1213'>1213</a>
<a id='n1214' href='#n1214'>1214</a>
<a id='n1215' href='#n1215'>1215</a>
<a id='n1216' href='#n1216'>1216</a>
<a id='n1217' href='#n1217'>1217</a>
<a id='n1218' href='#n1218'>1218</a>
<a id='n1219' href='#n1219'>1219</a>
<a id='n1220' href='#n1220'>1220</a>
<a id='n1221' href='#n1221'>1221</a>
<a id='n1222' href='#n1222'>1222</a>
<a id='n1223' href='#n1223'>1223</a>
<a id='n1224' href='#n1224'>1224</a>
<a id='n1225' href='#n1225'>1225</a>
<a id='n1226' href='#n1226'>1226</a>
<a id='n1227' href='#n1227'>1227</a>
<a id='n1228' href='#n1228'>1228</a>
<a id='n1229' href='#n1229'>1229</a>
<a id='n1230' href='#n1230'>1230</a>
<a id='n1231' href='#n1231'>1231</a>
<a id='n1232' href='#n1232'>1232</a>
<a id='n1233' href='#n1233'>1233</a>
<a id='n1234' href='#n1234'>1234</a>
<a id='n1235' href='#n1235'>1235</a>
<a id='n1236' href='#n1236'>1236</a>
<a id='n1237' href='#n1237'>1237</a>
<a id='n1238' href='#n1238'>1238</a>
<a id='n1239' href='#n1239'>1239</a>
<a id='n1240' href='#n1240'>1240</a>
<a id='n1241' href='#n1241'>1241</a>
<a id='n1242' href='#n1242'>1242</a>
<a id='n1243' href='#n1243'>1243</a>
<a id='n1244' href='#n1244'>1244</a>
<a id='n1245' href='#n1245'>1245</a>
<a id='n1246' href='#n1246'>1246</a>
<a id='n1247' href='#n1247'>1247</a>
<a id='n1248' href='#n1248'>1248</a>
<a id='n1249' href='#n1249'>1249</a>
<a id='n1250' href='#n1250'>1250</a>
<a id='n1251' href='#n1251'>1251</a>
<a id='n1252' href='#n1252'>1252</a>
<a id='n1253' href='#n1253'>1253</a>
<a id='n1254' href='#n1254'>1254</a>
<a id='n1255' href='#n1255'>1255</a>
<a id='n1256' href='#n1256'>1256</a>
<a id='n1257' href='#n1257'>1257</a>
<a id='n1258' href='#n1258'>1258</a>
<a id='n1259' href='#n1259'>1259</a>
<a id='n1260' href='#n1260'>1260</a>
<a id='n1261' href='#n1261'>1261</a>
<a id='n1262' href='#n1262'>1262</a>
<a id='n1263' href='#n1263'>1263</a>
<a id='n1264' href='#n1264'>1264</a>
<a id='n1265' href='#n1265'>1265</a>
<a id='n1266' href='#n1266'>1266</a>
<a id='n1267' href='#n1267'>1267</a>
<a id='n1268' href='#n1268'>1268</a>
<a id='n1269' href='#n1269'>1269</a>
<a id='n1270' href='#n1270'>1270</a>
<a id='n1271' href='#n1271'>1271</a>
<a id='n1272' href='#n1272'>1272</a>
<a id='n1273' href='#n1273'>1273</a>
<a id='n1274' href='#n1274'>1274</a>
<a id='n1275' href='#n1275'>1275</a>
<a id='n1276' href='#n1276'>1276</a>
<a id='n1277' href='#n1277'>1277</a>
<a id='n1278' href='#n1278'>1278</a>
<a id='n1279' href='#n1279'>1279</a>
<a id='n1280' href='#n1280'>1280</a>
<a id='n1281' href='#n1281'>1281</a>
<a id='n1282' href='#n1282'>1282</a>
<a id='n1283' href='#n1283'>1283</a>
<a id='n1284' href='#n1284'>1284</a>
<a id='n1285' href='#n1285'>1285</a>
<a id='n1286' href='#n1286'>1286</a>
<a id='n1287' href='#n1287'>1287</a>
<a id='n1288' href='#n1288'>1288</a>
<a id='n1289' href='#n1289'>1289</a>
<a id='n1290' href='#n1290'>1290</a>
<a id='n1291' href='#n1291'>1291</a>
<a id='n1292' href='#n1292'>1292</a>
<a id='n1293' href='#n1293'>1293</a>
<a id='n1294' href='#n1294'>1294</a>
<a id='n1295' href='#n1295'>1295</a>
<a id='n1296' href='#n1296'>1296</a>
<a id='n1297' href='#n1297'>1297</a>
<a id='n1298' href='#n1298'>1298</a>
<a id='n1299' href='#n1299'>1299</a>
<a id='n1300' href='#n1300'>1300</a>
<a id='n1301' href='#n1301'>1301</a>
<a id='n1302' href='#n1302'>1302</a>
<a id='n1303' href='#n1303'>1303</a>
<a id='n1304' href='#n1304'>1304</a>
<a id='n1305' href='#n1305'>1305</a>
<a id='n1306' href='#n1306'>1306</a>
<a id='n1307' href='#n1307'>1307</a>
<a id='n1308' href='#n1308'>1308</a>
<a id='n1309' href='#n1309'>1309</a>
<a id='n1310' href='#n1310'>1310</a>
<a id='n1311' href='#n1311'>1311</a>
<a id='n1312' href='#n1312'>1312</a>
<a id='n1313' href='#n1313'>1313</a>
<a id='n1314' href='#n1314'>1314</a>
<a id='n1315' href='#n1315'>1315</a>
<a id='n1316' href='#n1316'>1316</a>
<a id='n1317' href='#n1317'>1317</a>
<a id='n1318' href='#n1318'>1318</a>
<a id='n1319' href='#n1319'>1319</a>
<a id='n1320' href='#n1320'>1320</a>
<a id='n1321' href='#n1321'>1321</a>
<a id='n1322' href='#n1322'>1322</a>
<a id='n1323' href='#n1323'>1323</a>
<a id='n1324' href='#n1324'>1324</a>
<a id='n1325' href='#n1325'>1325</a>
<a id='n1326' href='#n1326'>1326</a>
<a id='n1327' href='#n1327'>1327</a>
<a id='n1328' href='#n1328'>1328</a>
<a id='n1329' href='#n1329'>1329</a>
<a id='n1330' href='#n1330'>1330</a>
<a id='n1331' href='#n1331'>1331</a>
<a id='n1332' href='#n1332'>1332</a>
<a id='n1333' href='#n1333'>1333</a>
<a id='n1334' href='#n1334'>1334</a>
<a id='n1335' href='#n1335'>1335</a>
<a id='n1336' href='#n1336'>1336</a>
<a id='n1337' href='#n1337'>1337</a>
<a id='n1338' href='#n1338'>1338</a>
<a id='n1339' href='#n1339'>1339</a>
<a id='n1340' href='#n1340'>1340</a>
<a id='n1341' href='#n1341'>1341</a>
<a id='n1342' href='#n1342'>1342</a>
<a id='n1343' href='#n1343'>1343</a>
<a id='n1344' href='#n1344'>1344</a>
<a id='n1345' href='#n1345'>1345</a>
<a id='n1346' href='#n1346'>1346</a>
<a id='n1347' href='#n1347'>1347</a>
<a id='n1348' href='#n1348'>1348</a>
<a id='n1349' href='#n1349'>1349</a>
<a id='n1350' href='#n1350'>1350</a>
<a id='n1351' href='#n1351'>1351</a>
<a id='n1352' href='#n1352'>1352</a>
<a id='n1353' href='#n1353'>1353</a>
<a id='n1354' href='#n1354'>1354</a>
<a id='n1355' href='#n1355'>1355</a>
<a id='n1356' href='#n1356'>1356</a>
<a id='n1357' href='#n1357'>1357</a>
<a id='n1358' href='#n1358'>1358</a>
<a id='n1359' href='#n1359'>1359</a>
<a id='n1360' href='#n1360'>1360</a>
<a id='n1361' href='#n1361'>1361</a>
<a id='n1362' href='#n1362'>1362</a>
<a id='n1363' href='#n1363'>1363</a>
<a id='n1364' href='#n1364'>1364</a>
<a id='n1365' href='#n1365'>1365</a>
<a id='n1366' href='#n1366'>1366</a>
<a id='n1367' href='#n1367'>1367</a>
<a id='n1368' href='#n1368'>1368</a>
<a id='n1369' href='#n1369'>1369</a>
<a id='n1370' href='#n1370'>1370</a>
<a id='n1371' href='#n1371'>1371</a>
<a id='n1372' href='#n1372'>1372</a>
<a id='n1373' href='#n1373'>1373</a>
<a id='n1374' href='#n1374'>1374</a>
<a id='n1375' href='#n1375'>1375</a>
<a id='n1376' href='#n1376'>1376</a>
<a id='n1377' href='#n1377'>1377</a>
<a id='n1378' href='#n1378'>1378</a>
<a id='n1379' href='#n1379'>1379</a>
<a id='n1380' href='#n1380'>1380</a>
<a id='n1381' href='#n1381'>1381</a>
<a id='n1382' href='#n1382'>1382</a>
<a id='n1383' href='#n1383'>1383</a>
<a id='n1384' href='#n1384'>1384</a>
<a id='n1385' href='#n1385'>1385</a>
<a id='n1386' href='#n1386'>1386</a>
<a id='n1387' href='#n1387'>1387</a>
<a id='n1388' href='#n1388'>1388</a>
<a id='n1389' href='#n1389'>1389</a>
<a id='n1390' href='#n1390'>1390</a>
<a id='n1391' href='#n1391'>1391</a>
<a id='n1392' href='#n1392'>1392</a>
<a id='n1393' href='#n1393'>1393</a>
<a id='n1394' href='#n1394'>1394</a>
<a id='n1395' href='#n1395'>1395</a>
<a id='n1396' href='#n1396'>1396</a>
<a id='n1397' href='#n1397'>1397</a>
<a id='n1398' href='#n1398'>1398</a>
<a id='n1399' href='#n1399'>1399</a>
<a id='n1400' href='#n1400'>1400</a>
<a id='n1401' href='#n1401'>1401</a>
<a id='n1402' href='#n1402'>1402</a>
<a id='n1403' href='#n1403'>1403</a>
<a id='n1404' href='#n1404'>1404</a>
<a id='n1405' href='#n1405'>1405</a>
<a id='n1406' href='#n1406'>1406</a>
<a id='n1407' href='#n1407'>1407</a>
<a id='n1408' href='#n1408'>1408</a>
<a id='n1409' href='#n1409'>1409</a>
<a id='n1410' href='#n1410'>1410</a>
<a id='n1411' href='#n1411'>1411</a>
<a id='n1412' href='#n1412'>1412</a>
<a id='n1413' href='#n1413'>1413</a>
<a id='n1414' href='#n1414'>1414</a>
<a id='n1415' href='#n1415'>1415</a>
<a id='n1416' href='#n1416'>1416</a>
<a id='n1417' href='#n1417'>1417</a>
<a id='n1418' href='#n1418'>1418</a>
<a id='n1419' href='#n1419'>1419</a>
<a id='n1420' href='#n1420'>1420</a>
<a id='n1421' href='#n1421'>1421</a>
<a id='n1422' href='#n1422'>1422</a>
<a id='n1423' href='#n1423'>1423</a>
<a id='n1424' href='#n1424'>1424</a>
<a id='n1425' href='#n1425'>1425</a>
<a id='n1426' href='#n1426'>1426</a>
<a id='n1427' href='#n1427'>1427</a>
<a id='n1428' href='#n1428'>1428</a>
<a id='n1429' href='#n1429'>1429</a>
<a id='n1430' href='#n1430'>1430</a>
<a id='n1431' href='#n1431'>1431</a>
<a id='n1432' href='#n1432'>1432</a>
<a id='n1433' href='#n1433'>1433</a>
<a id='n1434' href='#n1434'>1434</a>
<a id='n1435' href='#n1435'>1435</a>
<a id='n1436' href='#n1436'>1436</a>
<a id='n1437' href='#n1437'>1437</a>
<a id='n1438' href='#n1438'>1438</a>
<a id='n1439' href='#n1439'>1439</a>
<a id='n1440' href='#n1440'>1440</a>
<a id='n1441' href='#n1441'>1441</a>
<a id='n1442' href='#n1442'>1442</a>
<a id='n1443' href='#n1443'>1443</a>
<a id='n1444' href='#n1444'>1444</a>
<a id='n1445' href='#n1445'>1445</a>
<a id='n1446' href='#n1446'>1446</a>
<a id='n1447' href='#n1447'>1447</a>
<a id='n1448' href='#n1448'>1448</a>
<a id='n1449' href='#n1449'>1449</a>
<a id='n1450' href='#n1450'>1450</a>
<a id='n1451' href='#n1451'>1451</a>
<a id='n1452' href='#n1452'>1452</a>
<a id='n1453' href='#n1453'>1453</a>
<a id='n1454' href='#n1454'>1454</a>
<a id='n1455' href='#n1455'>1455</a>
<a id='n1456' href='#n1456'>1456</a>
<a id='n1457' href='#n1457'>1457</a>
<a id='n1458' href='#n1458'>1458</a>
<a id='n1459' href='#n1459'>1459</a>
<a id='n1460' href='#n1460'>1460</a>
<a id='n1461' href='#n1461'>1461</a>
<a id='n1462' href='#n1462'>1462</a>
<a id='n1463' href='#n1463'>1463</a>
<a id='n1464' href='#n1464'>1464</a>
<a id='n1465' href='#n1465'>1465</a>
<a id='n1466' href='#n1466'>1466</a>
<a id='n1467' href='#n1467'>1467</a>
<a id='n1468' href='#n1468'>1468</a>
<a id='n1469' href='#n1469'>1469</a>
<a id='n1470' href='#n1470'>1470</a>
<a id='n1471' href='#n1471'>1471</a>
<a id='n1472' href='#n1472'>1472</a>
<a id='n1473' href='#n1473'>1473</a>
<a id='n1474' href='#n1474'>1474</a>
<a id='n1475' href='#n1475'>1475</a>
<a id='n1476' href='#n1476'>1476</a>
<a id='n1477' href='#n1477'>1477</a>
<a id='n1478' href='#n1478'>1478</a>
<a id='n1479' href='#n1479'>1479</a>
<a id='n1480' href='#n1480'>1480</a>
<a id='n1481' href='#n1481'>1481</a>
<a id='n1482' href='#n1482'>1482</a>
<a id='n1483' href='#n1483'>1483</a>
<a id='n1484' href='#n1484'>1484</a>
<a id='n1485' href='#n1485'>1485</a>
<a id='n1486' href='#n1486'>1486</a>
<a id='n1487' href='#n1487'>1487</a>
<a id='n1488' href='#n1488'>1488</a>
<a id='n1489' href='#n1489'>1489</a>
<a id='n1490' href='#n1490'>1490</a>
<a id='n1491' href='#n1491'>1491</a>
<a id='n1492' href='#n1492'>1492</a>
<a id='n1493' href='#n1493'>1493</a>
<a id='n1494' href='#n1494'>1494</a>
<a id='n1495' href='#n1495'>1495</a>
<a id='n1496' href='#n1496'>1496</a>
<a id='n1497' href='#n1497'>1497</a>
<a id='n1498' href='#n1498'>1498</a>
<a id='n1499' href='#n1499'>1499</a>
<a id='n1500' href='#n1500'>1500</a>
<a id='n1501' href='#n1501'>1501</a>
<a id='n1502' href='#n1502'>1502</a>
<a id='n1503' href='#n1503'>1503</a>
<a id='n1504' href='#n1504'>1504</a>
<a id='n1505' href='#n1505'>1505</a>
<a id='n1506' href='#n1506'>1506</a>
<a id='n1507' href='#n1507'>1507</a>
<a id='n1508' href='#n1508'>1508</a>
<a id='n1509' href='#n1509'>1509</a>
<a id='n1510' href='#n1510'>1510</a>
<a id='n1511' href='#n1511'>1511</a>
<a id='n1512' href='#n1512'>1512</a>
<a id='n1513' href='#n1513'>1513</a>
<a id='n1514' href='#n1514'>1514</a>
<a id='n1515' href='#n1515'>1515</a>
<a id='n1516' href='#n1516'>1516</a>
<a id='n1517' href='#n1517'>1517</a>
<a id='n1518' href='#n1518'>1518</a>
<a id='n1519' href='#n1519'>1519</a>
<a id='n1520' href='#n1520'>1520</a>
<a id='n1521' href='#n1521'>1521</a>
<a id='n1522' href='#n1522'>1522</a>
<a id='n1523' href='#n1523'>1523</a>
<a id='n1524' href='#n1524'>1524</a>
<a id='n1525' href='#n1525'>1525</a>
<a id='n1526' href='#n1526'>1526</a>
<a id='n1527' href='#n1527'>1527</a>
<a id='n1528' href='#n1528'>1528</a>
<a id='n1529' href='#n1529'>1529</a>
<a id='n1530' href='#n1530'>1530</a>
<a id='n1531' href='#n1531'>1531</a>
<a id='n1532' href='#n1532'>1532</a>
<a id='n1533' href='#n1533'>1533</a>
<a id='n1534' href='#n1534'>1534</a>
<a id='n1535' href='#n1535'>1535</a>
<a id='n1536' href='#n1536'>1536</a>
<a id='n1537' href='#n1537'>1537</a>
<a id='n1538' href='#n1538'>1538</a>
<a id='n1539' href='#n1539'>1539</a>
<a id='n1540' href='#n1540'>1540</a>
<a id='n1541' href='#n1541'>1541</a>
<a id='n1542' href='#n1542'>1542</a>
<a id='n1543' href='#n1543'>1543</a>
<a id='n1544' href='#n1544'>1544</a>
<a id='n1545' href='#n1545'>1545</a>
<a id='n1546' href='#n1546'>1546</a>
<a id='n1547' href='#n1547'>1547</a>
<a id='n1548' href='#n1548'>1548</a>
<a id='n1549' href='#n1549'>1549</a>
<a id='n1550' href='#n1550'>1550</a>
<a id='n1551' href='#n1551'>1551</a>
<a id='n1552' href='#n1552'>1552</a>
<a id='n1553' href='#n1553'>1553</a>
<a id='n1554' href='#n1554'>1554</a>
<a id='n1555' href='#n1555'>1555</a>
<a id='n1556' href='#n1556'>1556</a>
<a id='n1557' href='#n1557'>1557</a>
<a id='n1558' href='#n1558'>1558</a>
<a id='n1559' href='#n1559'>1559</a>
<a id='n1560' href='#n1560'>1560</a>
<a id='n1561' href='#n1561'>1561</a>
<a id='n1562' href='#n1562'>1562</a>
<a id='n1563' href='#n1563'>1563</a>
<a id='n1564' href='#n1564'>1564</a>
<a id='n1565' href='#n1565'>1565</a>
<a id='n1566' href='#n1566'>1566</a>
<a id='n1567' href='#n1567'>1567</a>
<a id='n1568' href='#n1568'>1568</a>
<a id='n1569' href='#n1569'>1569</a>
<a id='n1570' href='#n1570'>1570</a>
<a id='n1571' href='#n1571'>1571</a>
<a id='n1572' href='#n1572'>1572</a>
<a id='n1573' href='#n1573'>1573</a>
<a id='n1574' href='#n1574'>1574</a>
<a id='n1575' href='#n1575'>1575</a>
<a id='n1576' href='#n1576'>1576</a>
<a id='n1577' href='#n1577'>1577</a>
<a id='n1578' href='#n1578'>1578</a>
<a id='n1579' href='#n1579'>1579</a>
<a id='n1580' href='#n1580'>1580</a>
<a id='n1581' href='#n1581'>1581</a>
<a id='n1582' href='#n1582'>1582</a>
<a id='n1583' href='#n1583'>1583</a>
<a id='n1584' href='#n1584'>1584</a>
<a id='n1585' href='#n1585'>1585</a>
<a id='n1586' href='#n1586'>1586</a>
<a id='n1587' href='#n1587'>1587</a>
<a id='n1588' href='#n1588'>1588</a>
<a id='n1589' href='#n1589'>1589</a>
<a id='n1590' href='#n1590'>1590</a>
<a id='n1591' href='#n1591'>1591</a>
<a id='n1592' href='#n1592'>1592</a>
<a id='n1593' href='#n1593'>1593</a>
<a id='n1594' href='#n1594'>1594</a>
<a id='n1595' href='#n1595'>1595</a>
<a id='n1596' href='#n1596'>1596</a>
<a id='n1597' href='#n1597'>1597</a>
<a id='n1598' href='#n1598'>1598</a>
<a id='n1599' href='#n1599'>1599</a>
<a id='n1600' href='#n1600'>1600</a>
<a id='n1601' href='#n1601'>1601</a>
<a id='n1602' href='#n1602'>1602</a>
<a id='n1603' href='#n1603'>1603</a>
<a id='n1604' href='#n1604'>1604</a>
<a id='n1605' href='#n1605'>1605</a>
<a id='n1606' href='#n1606'>1606</a>
<a id='n1607' href='#n1607'>1607</a>
<a id='n1608' href='#n1608'>1608</a>
<a id='n1609' href='#n1609'>1609</a>
<a id='n1610' href='#n1610'>1610</a>
<a id='n1611' href='#n1611'>1611</a>
<a id='n1612' href='#n1612'>1612</a>
<a id='n1613' href='#n1613'>1613</a>
<a id='n1614' href='#n1614'>1614</a>
<a id='n1615' href='#n1615'>1615</a>
<a id='n1616' href='#n1616'>1616</a>
<a id='n1617' href='#n1617'>1617</a>
<a id='n1618' href='#n1618'>1618</a>
<a id='n1619' href='#n1619'>1619</a>
<a id='n1620' href='#n1620'>1620</a>
<a id='n1621' href='#n1621'>1621</a>
<a id='n1622' href='#n1622'>1622</a>
<a id='n1623' href='#n1623'>1623</a>
<a id='n1624' href='#n1624'>1624</a>
<a id='n1625' href='#n1625'>1625</a>
<a id='n1626' href='#n1626'>1626</a>
<a id='n1627' href='#n1627'>1627</a>
<a id='n1628' href='#n1628'>1628</a>
<a id='n1629' href='#n1629'>1629</a>
<a id='n1630' href='#n1630'>1630</a>
<a id='n1631' href='#n1631'>1631</a>
<a id='n1632' href='#n1632'>1632</a>
<a id='n1633' href='#n1633'>1633</a>
<a id='n1634' href='#n1634'>1634</a>
<a id='n1635' href='#n1635'>1635</a>
<a id='n1636' href='#n1636'>1636</a>
<a id='n1637' href='#n1637'>1637</a>
<a id='n1638' href='#n1638'>1638</a>
<a id='n1639' href='#n1639'>1639</a>
<a id='n1640' href='#n1640'>1640</a>
<a id='n1641' href='#n1641'>1641</a>
<a id='n1642' href='#n1642'>1642</a>
<a id='n1643' href='#n1643'>1643</a>
<a id='n1644' href='#n1644'>1644</a>
<a id='n1645' href='#n1645'>1645</a>
<a id='n1646' href='#n1646'>1646</a>
<a id='n1647' href='#n1647'>1647</a>
<a id='n1648' href='#n1648'>1648</a>
<a id='n1649' href='#n1649'>1649</a>
<a id='n1650' href='#n1650'>1650</a>
<a id='n1651' href='#n1651'>1651</a>
<a id='n1652' href='#n1652'>1652</a>
<a id='n1653' href='#n1653'>1653</a>
<a id='n1654' href='#n1654'>1654</a>
<a id='n1655' href='#n1655'>1655</a>
<a id='n1656' href='#n1656'>1656</a>
<a id='n1657' href='#n1657'>1657</a>
<a id='n1658' href='#n1658'>1658</a>
<a id='n1659' href='#n1659'>1659</a>
<a id='n1660' href='#n1660'>1660</a>
<a id='n1661' href='#n1661'>1661</a>
<a id='n1662' href='#n1662'>1662</a>
<a id='n1663' href='#n1663'>1663</a>
<a id='n1664' href='#n1664'>1664</a>
<a id='n1665' href='#n1665'>1665</a>
<a id='n1666' href='#n1666'>1666</a>
<a id='n1667' href='#n1667'>1667</a>
<a id='n1668' href='#n1668'>1668</a>
<a id='n1669' href='#n1669'>1669</a>
<a id='n1670' href='#n1670'>1670</a>
<a id='n1671' href='#n1671'>1671</a>
<a id='n1672' href='#n1672'>1672</a>
<a id='n1673' href='#n1673'>1673</a>
<a id='n1674' href='#n1674'>1674</a>
<a id='n1675' href='#n1675'>1675</a>
<a id='n1676' href='#n1676'>1676</a>
<a id='n1677' href='#n1677'>1677</a>
<a id='n1678' href='#n1678'>1678</a>
<a id='n1679' href='#n1679'>1679</a>
<a id='n1680' href='#n1680'>1680</a>
<a id='n1681' href='#n1681'>1681</a>
<a id='n1682' href='#n1682'>1682</a>
<a id='n1683' href='#n1683'>1683</a>
<a id='n1684' href='#n1684'>1684</a>
<a id='n1685' href='#n1685'>1685</a>
<a id='n1686' href='#n1686'>1686</a>
<a id='n1687' href='#n1687'>1687</a>
<a id='n1688' href='#n1688'>1688</a>
<a id='n1689' href='#n1689'>1689</a>
<a id='n1690' href='#n1690'>1690</a>
<a id='n1691' href='#n1691'>1691</a>
<a id='n1692' href='#n1692'>1692</a>
<a id='n1693' href='#n1693'>1693</a>
<a id='n1694' href='#n1694'>1694</a>
<a id='n1695' href='#n1695'>1695</a>
<a id='n1696' href='#n1696'>1696</a>
<a id='n1697' href='#n1697'>1697</a>
<a id='n1698' href='#n1698'>1698</a>
<a id='n1699' href='#n1699'>1699</a>
<a id='n1700' href='#n1700'>1700</a>
<a id='n1701' href='#n1701'>1701</a>
<a id='n1702' href='#n1702'>1702</a>
<a id='n1703' href='#n1703'>1703</a>
<a id='n1704' href='#n1704'>1704</a>
<a id='n1705' href='#n1705'>1705</a>
<a id='n1706' href='#n1706'>1706</a>
<a id='n1707' href='#n1707'>1707</a>
<a id='n1708' href='#n1708'>1708</a>
<a id='n1709' href='#n1709'>1709</a>
<a id='n1710' href='#n1710'>1710</a>
<a id='n1711' href='#n1711'>1711</a>
<a id='n1712' href='#n1712'>1712</a>
<a id='n1713' href='#n1713'>1713</a>
<a id='n1714' href='#n1714'>1714</a>
<a id='n1715' href='#n1715'>1715</a>
<a id='n1716' href='#n1716'>1716</a>
<a id='n1717' href='#n1717'>1717</a>
<a id='n1718' href='#n1718'>1718</a>
<a id='n1719' href='#n1719'>1719</a>
<a id='n1720' href='#n1720'>1720</a>
<a id='n1721' href='#n1721'>1721</a>
<a id='n1722' href='#n1722'>1722</a>
<a id='n1723' href='#n1723'>1723</a>
<a id='n1724' href='#n1724'>1724</a>
<a id='n1725' href='#n1725'>1725</a>
<a id='n1726' href='#n1726'>1726</a>
<a id='n1727' href='#n1727'>1727</a>
<a id='n1728' href='#n1728'>1728</a>
<a id='n1729' href='#n1729'>1729</a>
<a id='n1730' href='#n1730'>1730</a>
<a id='n1731' href='#n1731'>1731</a>
<a id='n1732' href='#n1732'>1732</a>
<a id='n1733' href='#n1733'>1733</a>
<a id='n1734' href='#n1734'>1734</a>
<a id='n1735' href='#n1735'>1735</a>
<a id='n1736' href='#n1736'>1736</a>
<a id='n1737' href='#n1737'>1737</a>
<a id='n1738' href='#n1738'>1738</a>
<a id='n1739' href='#n1739'>1739</a>
<a id='n1740' href='#n1740'>1740</a>
<a id='n1741' href='#n1741'>1741</a>
<a id='n1742' href='#n1742'>1742</a>
<a id='n1743' href='#n1743'>1743</a>
<a id='n1744' href='#n1744'>1744</a>
<a id='n1745' href='#n1745'>1745</a>
<a id='n1746' href='#n1746'>1746</a>
<a id='n1747' href='#n1747'>1747</a>
<a id='n1748' href='#n1748'>1748</a>
<a id='n1749' href='#n1749'>1749</a>
<a id='n1750' href='#n1750'>1750</a>
<a id='n1751' href='#n1751'>1751</a>
<a id='n1752' href='#n1752'>1752</a>
<a id='n1753' href='#n1753'>1753</a>
<a id='n1754' href='#n1754'>1754</a>
<a id='n1755' href='#n1755'>1755</a>
<a id='n1756' href='#n1756'>1756</a>
<a id='n1757' href='#n1757'>1757</a>
<a id='n1758' href='#n1758'>1758</a>
<a id='n1759' href='#n1759'>1759</a>
<a id='n1760' href='#n1760'>1760</a>
<a id='n1761' href='#n1761'>1761</a>
<a id='n1762' href='#n1762'>1762</a>
<a id='n1763' href='#n1763'>1763</a>
<a id='n1764' href='#n1764'>1764</a>
<a id='n1765' href='#n1765'>1765</a>
<a id='n1766' href='#n1766'>1766</a>
<a id='n1767' href='#n1767'>1767</a>
<a id='n1768' href='#n1768'>1768</a>
<a id='n1769' href='#n1769'>1769</a>
<a id='n1770' href='#n1770'>1770</a>
<a id='n1771' href='#n1771'>1771</a>
<a id='n1772' href='#n1772'>1772</a>
<a id='n1773' href='#n1773'>1773</a>
<a id='n1774' href='#n1774'>1774</a>
<a id='n1775' href='#n1775'>1775</a>
<a id='n1776' href='#n1776'>1776</a>
<a id='n1777' href='#n1777'>1777</a>
<a id='n1778' href='#n1778'>1778</a>
<a id='n1779' href='#n1779'>1779</a>
<a id='n1780' href='#n1780'>1780</a>
<a id='n1781' href='#n1781'>1781</a>
<a id='n1782' href='#n1782'>1782</a>
<a id='n1783' href='#n1783'>1783</a>
<a id='n1784' href='#n1784'>1784</a>
<a id='n1785' href='#n1785'>1785</a>
<a id='n1786' href='#n1786'>1786</a>
<a id='n1787' href='#n1787'>1787</a>
<a id='n1788' href='#n1788'>1788</a>
<a id='n1789' href='#n1789'>1789</a>
<a id='n1790' href='#n1790'>1790</a>
<a id='n1791' href='#n1791'>1791</a>
<a id='n1792' href='#n1792'>1792</a>
<a id='n1793' href='#n1793'>1793</a>
<a id='n1794' href='#n1794'>1794</a>
<a id='n1795' href='#n1795'>1795</a>
<a id='n1796' href='#n1796'>1796</a>
<a id='n1797' href='#n1797'>1797</a>
<a id='n1798' href='#n1798'>1798</a>
<a id='n1799' href='#n1799'>1799</a>
<a id='n1800' href='#n1800'>1800</a>
<a id='n1801' href='#n1801'>1801</a>
<a id='n1802' href='#n1802'>1802</a>
<a id='n1803' href='#n1803'>1803</a>
<a id='n1804' href='#n1804'>1804</a>
<a id='n1805' href='#n1805'>1805</a>
<a id='n1806' href='#n1806'>1806</a>
<a id='n1807' href='#n1807'>1807</a>
<a id='n1808' href='#n1808'>1808</a>
<a id='n1809' href='#n1809'>1809</a>
<a id='n1810' href='#n1810'>1810</a>
<a id='n1811' href='#n1811'>1811</a>
<a id='n1812' href='#n1812'>1812</a>
<a id='n1813' href='#n1813'>1813</a>
<a id='n1814' href='#n1814'>1814</a>
<a id='n1815' href='#n1815'>1815</a>
<a id='n1816' href='#n1816'>1816</a>
<a id='n1817' href='#n1817'>1817</a>
<a id='n1818' href='#n1818'>1818</a>
<a id='n1819' href='#n1819'>1819</a>
<a id='n1820' href='#n1820'>1820</a>
<a id='n1821' href='#n1821'>1821</a>
<a id='n1822' href='#n1822'>1822</a>
<a id='n1823' href='#n1823'>1823</a>
<a id='n1824' href='#n1824'>1824</a>
<a id='n1825' href='#n1825'>1825</a>
<a id='n1826' href='#n1826'>1826</a>
<a id='n1827' href='#n1827'>1827</a>
<a id='n1828' href='#n1828'>1828</a>
<a id='n1829' href='#n1829'>1829</a>
<a id='n1830' href='#n1830'>1830</a>
<a id='n1831' href='#n1831'>1831</a>
<a id='n1832' href='#n1832'>1832</a>
<a id='n1833' href='#n1833'>1833</a>
<a id='n1834' href='#n1834'>1834</a>
<a id='n1835' href='#n1835'>1835</a>
<a id='n1836' href='#n1836'>1836</a>
<a id='n1837' href='#n1837'>1837</a>
<a id='n1838' href='#n1838'>1838</a>
<a id='n1839' href='#n1839'>1839</a>
<a id='n1840' href='#n1840'>1840</a>
<a id='n1841' href='#n1841'>1841</a>
<a id='n1842' href='#n1842'>1842</a>
<a id='n1843' href='#n1843'>1843</a>
<a id='n1844' href='#n1844'>1844</a>
<a id='n1845' href='#n1845'>1845</a>
<a id='n1846' href='#n1846'>1846</a>
<a id='n1847' href='#n1847'>1847</a>
<a id='n1848' href='#n1848'>1848</a>
<a id='n1849' href='#n1849'>1849</a>
<a id='n1850' href='#n1850'>1850</a>
<a id='n1851' href='#n1851'>1851</a>
<a id='n1852' href='#n1852'>1852</a>
<a id='n1853' href='#n1853'>1853</a>
<a id='n1854' href='#n1854'>1854</a>
<a id='n1855' href='#n1855'>1855</a>
<a id='n1856' href='#n1856'>1856</a>
<a id='n1857' href='#n1857'>1857</a>
<a id='n1858' href='#n1858'>1858</a>
<a id='n1859' href='#n1859'>1859</a>
<a id='n1860' href='#n1860'>1860</a>
<a id='n1861' href='#n1861'>1861</a>
<a id='n1862' href='#n1862'>1862</a>
<a id='n1863' href='#n1863'>1863</a>
<a id='n1864' href='#n1864'>1864</a>
<a id='n1865' href='#n1865'>1865</a>
<a id='n1866' href='#n1866'>1866</a>
<a id='n1867' href='#n1867'>1867</a>
<a id='n1868' href='#n1868'>1868</a>
<a id='n1869' href='#n1869'>1869</a>
<a id='n1870' href='#n1870'>1870</a>
<a id='n1871' href='#n1871'>1871</a>
<a id='n1872' href='#n1872'>1872</a>
<a id='n1873' href='#n1873'>1873</a>
<a id='n1874' href='#n1874'>1874</a>
<a id='n1875' href='#n1875'>1875</a>
<a id='n1876' href='#n1876'>1876</a>
<a id='n1877' href='#n1877'>1877</a>
<a id='n1878' href='#n1878'>1878</a>
<a id='n1879' href='#n1879'>1879</a>
<a id='n1880' href='#n1880'>1880</a>
<a id='n1881' href='#n1881'>1881</a>
<a id='n1882' href='#n1882'>1882</a>
<a id='n1883' href='#n1883'>1883</a>
<a id='n1884' href='#n1884'>1884</a>
<a id='n1885' href='#n1885'>1885</a>
<a id='n1886' href='#n1886'>1886</a>
<a id='n1887' href='#n1887'>1887</a>
<a id='n1888' href='#n1888'>1888</a>
<a id='n1889' href='#n1889'>1889</a>
<a id='n1890' href='#n1890'>1890</a>
<a id='n1891' href='#n1891'>1891</a>
<a id='n1892' href='#n1892'>1892</a>
<a id='n1893' href='#n1893'>1893</a>
<a id='n1894' href='#n1894'>1894</a>
<a id='n1895' href='#n1895'>1895</a>
<a id='n1896' href='#n1896'>1896</a>
<a id='n1897' href='#n1897'>1897</a>
<a id='n1898' href='#n1898'>1898</a>
<a id='n1899' href='#n1899'>1899</a>
<a id='n1900' href='#n1900'>1900</a>
<a id='n1901' href='#n1901'>1901</a>
<a id='n1902' href='#n1902'>1902</a>
<a id='n1903' href='#n1903'>1903</a>
<a id='n1904' href='#n1904'>1904</a>
<a id='n1905' href='#n1905'>1905</a>
<a id='n1906' href='#n1906'>1906</a>
<a id='n1907' href='#n1907'>1907</a>
<a id='n1908' href='#n1908'>1908</a>
<a id='n1909' href='#n1909'>1909</a>
<a id='n1910' href='#n1910'>1910</a>
<a id='n1911' href='#n1911'>1911</a>
<a id='n1912' href='#n1912'>1912</a>
<a id='n1913' href='#n1913'>1913</a>
<a id='n1914' href='#n1914'>1914</a>
<a id='n1915' href='#n1915'>1915</a>
<a id='n1916' href='#n1916'>1916</a>
<a id='n1917' href='#n1917'>1917</a>
<a id='n1918' href='#n1918'>1918</a>
<a id='n1919' href='#n1919'>1919</a>
<a id='n1920' href='#n1920'>1920</a>
<a id='n1921' href='#n1921'>1921</a>
<a id='n1922' href='#n1922'>1922</a>
<a id='n1923' href='#n1923'>1923</a>
<a id='n1924' href='#n1924'>1924</a>
<a id='n1925' href='#n1925'>1925</a>
<a id='n1926' href='#n1926'>1926</a>
<a id='n1927' href='#n1927'>1927</a>
<a id='n1928' href='#n1928'>1928</a>
<a id='n1929' href='#n1929'>1929</a>
<a id='n1930' href='#n1930'>1930</a>
<a id='n1931' href='#n1931'>1931</a>
<a id='n1932' href='#n1932'>1932</a>
<a id='n1933' href='#n1933'>1933</a>
<a id='n1934' href='#n1934'>1934</a>
<a id='n1935' href='#n1935'>1935</a>
<a id='n1936' href='#n1936'>1936</a>
<a id='n1937' href='#n1937'>1937</a>
<a id='n1938' href='#n1938'>1938</a>
<a id='n1939' href='#n1939'>1939</a>
<a id='n1940' href='#n1940'>1940</a>
<a id='n1941' href='#n1941'>1941</a>
<a id='n1942' href='#n1942'>1942</a>
<a id='n1943' href='#n1943'>1943</a>
<a id='n1944' href='#n1944'>1944</a>
<a id='n1945' href='#n1945'>1945</a>
<a id='n1946' href='#n1946'>1946</a>
<a id='n1947' href='#n1947'>1947</a>
<a id='n1948' href='#n1948'>1948</a>
<a id='n1949' href='#n1949'>1949</a>
<a id='n1950' href='#n1950'>1950</a>
<a id='n1951' href='#n1951'>1951</a>
<a id='n1952' href='#n1952'>1952</a>
<a id='n1953' href='#n1953'>1953</a>
<a id='n1954' href='#n1954'>1954</a>
<a id='n1955' href='#n1955'>1955</a>
<a id='n1956' href='#n1956'>1956</a>
<a id='n1957' href='#n1957'>1957</a>
<a id='n1958' href='#n1958'>1958</a>
<a id='n1959' href='#n1959'>1959</a>
<a id='n1960' href='#n1960'>1960</a>
<a id='n1961' href='#n1961'>1961</a>
<a id='n1962' href='#n1962'>1962</a>
<a id='n1963' href='#n1963'>1963</a>
<a id='n1964' href='#n1964'>1964</a>
<a id='n1965' href='#n1965'>1965</a>
<a id='n1966' href='#n1966'>1966</a>
<a id='n1967' href='#n1967'>1967</a>
<a id='n1968' href='#n1968'>1968</a>
<a id='n1969' href='#n1969'>1969</a>
<a id='n1970' href='#n1970'>1970</a>
<a id='n1971' href='#n1971'>1971</a>
<a id='n1972' href='#n1972'>1972</a>
<a id='n1973' href='#n1973'>1973</a>
<a id='n1974' href='#n1974'>1974</a>
<a id='n1975' href='#n1975'>1975</a>
<a id='n1976' href='#n1976'>1976</a>
<a id='n1977' href='#n1977'>1977</a>
<a id='n1978' href='#n1978'>1978</a>
<a id='n1979' href='#n1979'>1979</a>
<a id='n1980' href='#n1980'>1980</a>
<a id='n1981' href='#n1981'>1981</a>
<a id='n1982' href='#n1982'>1982</a>
<a id='n1983' href='#n1983'>1983</a>
<a id='n1984' href='#n1984'>1984</a>
<a id='n1985' href='#n1985'>1985</a>
<a id='n1986' href='#n1986'>1986</a>
<a id='n1987' href='#n1987'>1987</a>
<a id='n1988' href='#n1988'>1988</a>
<a id='n1989' href='#n1989'>1989</a>
</pre></td>
<td class='lines'><pre><code><style>pre { line-height: 125%; margin: 0; }
td.linenos pre { color: #000000; background-color: #f0f0f0; padding: 0 5px 0 5px; }
span.linenos { color: #000000; background-color: #f0f0f0; padding: 0 5px 0 5px; }
td.linenos pre.special { color: #000000; background-color: #ffffc0; padding: 0 5px 0 5px; }
span.linenos.special { color: #000000; background-color: #ffffc0; padding: 0 5px 0 5px; }
.highlight .hll { background-color: #ffffcc }
.highlight { background: #ffffff; }
.highlight .c { color: #888888 } /* Comment */
.highlight .err { color: #a61717; background-color: #e3d2d2 } /* Error */
.highlight .k { color: #008800; font-weight: bold } /* Keyword */
.highlight .ch { color: #888888 } /* Comment.Hashbang */
.highlight .cm { color: #888888 } /* Comment.Multiline */
.highlight .cp { color: #cc0000; font-weight: bold } /* Comment.Preproc */
.highlight .cpf { color: #888888 } /* Comment.PreprocFile */
.highlight .c1 { color: #888888 } /* Comment.Single */
.highlight .cs { color: #cc0000; font-weight: bold; background-color: #fff0f0 } /* Comment.Special */
.highlight .gd { color: #000000; background-color: #ffdddd } /* Generic.Deleted */
.highlight .ge { font-style: italic } /* Generic.Emph */
.highlight .gr { color: #aa0000 } /* Generic.Error */
.highlight .gh { color: #333333 } /* Generic.Heading */
.highlight .gi { color: #000000; background-color: #ddffdd } /* Generic.Inserted */
.highlight .go { color: #888888 } /* Generic.Output */
.highlight .gp { color: #555555 } /* Generic.Prompt */
.highlight .gs { font-weight: bold } /* Generic.Strong */
.highlight .gu { color: #666666 } /* Generic.Subheading */
.highlight .gt { color: #aa0000 } /* Generic.Traceback */
.highlight .kc { color: #008800; font-weight: bold } /* Keyword.Constant */
.highlight .kd { color: #008800; font-weight: bold } /* Keyword.Declaration */
.highlight .kn { color: #008800; font-weight: bold } /* Keyword.Namespace */
.highlight .kp { color: #008800 } /* Keyword.Pseudo */
.highlight .kr { color: #008800; font-weight: bold } /* Keyword.Reserved */
.highlight .kt { color: #888888; font-weight: bold } /* Keyword.Type */
.highlight .m { color: #0000DD; font-weight: bold } /* Literal.Number */
.highlight .s { color: #dd2200; background-color: #fff0f0 } /* Literal.String */
.highlight .na { color: #336699 } /* Name.Attribute */
.highlight .nb { color: #003388 } /* Name.Builtin */
.highlight .nc { color: #bb0066; font-weight: bold } /* Name.Class */
.highlight .no { color: #003366; font-weight: bold } /* Name.Constant */
.highlight .nd { color: #555555 } /* Name.Decorator */
.highlight .ne { color: #bb0066; font-weight: bold } /* Name.Exception */
.highlight .nf { color: #0066bb; font-weight: bold } /* Name.Function */
.highlight .nl { color: #336699; font-style: italic } /* Name.Label */
.highlight .nn { color: #bb0066; font-weight: bold } /* Name.Namespace */
.highlight .py { color: #336699; font-weight: bold } /* Name.Property */
.highlight .nt { color: #bb0066; font-weight: bold } /* Name.Tag */
.highlight .nv { color: #336699 } /* Name.Variable */
.highlight .ow { color: #008800 } /* Operator.Word */
.highlight .w { color: #bbbbbb } /* Text.Whitespace */
.highlight .mb { color: #0000DD; font-weight: bold } /* Literal.Number.Bin */
.highlight .mf { color: #0000DD; font-weight: bold } /* Literal.Number.Float */
.highlight .mh { color: #0000DD; font-weight: bold } /* Literal.Number.Hex */
.highlight .mi { color: #0000DD; font-weight: bold } /* Literal.Number.Integer */
.highlight .mo { color: #0000DD; font-weight: bold } /* Literal.Number.Oct */
.highlight .sa { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Affix */
.highlight .sb { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Backtick */
.highlight .sc { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Char */
.highlight .dl { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Delimiter */
.highlight .sd { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Doc */
.highlight .s2 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Double */
.highlight .se { color: #0044dd; background-color: #fff0f0 } /* Literal.String.Escape */
.highlight .sh { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Heredoc */
.highlight .si { color: #3333bb; background-color: #fff0f0 } /* Literal.String.Interpol */
.highlight .sx { color: #22bb22; background-color: #f0fff0 } /* Literal.String.Other */
.highlight .sr { color: #008800; background-color: #fff0ff } /* Literal.String.Regex */
.highlight .s1 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Single */
.highlight .ss { color: #aa6600; background-color: #fff0f0 } /* Literal.String.Symbol */
.highlight .bp { color: #003388 } /* Name.Builtin.Pseudo */
.highlight .fm { color: #0066bb; font-weight: bold } /* Name.Function.Magic */
.highlight .vc { color: #336699 } /* Name.Variable.Class */
.highlight .vg { color: #dd7700 } /* Name.Variable.Global */
.highlight .vi { color: #3333bb } /* Name.Variable.Instance */
.highlight .vm { color: #336699 } /* Name.Variable.Magic */
.highlight .il { color: #0000DD; font-weight: bold } /* Literal.Number.Integer.Long */</style><div class="highlight"><pre><span></span><span class="c1"># This file is dual licensed under the terms of the Apache License, Version</span>
<span class="c1"># 2.0, and the BSD License. See the LICENSE file in the root of this repository</span>
<span class="c1"># for complete details.</span>

<span class="kn">from</span> <span class="nn">__future__</span> <span class="kn">import</span> <span class="n">absolute_import</span><span class="p">,</span> <span class="n">division</span><span class="p">,</span> <span class="n">print_function</span>

<span class="kn">import</span> <span class="nn">binascii</span>
<span class="kn">import</span> <span class="nn">itertools</span>
<span class="kn">import</span> <span class="nn">math</span>
<span class="kn">import</span> <span class="nn">os</span>

<span class="kn">import</span> <span class="nn">pytest</span>

<span class="kn">from</span> <span class="nn">cryptography</span> <span class="kn">import</span> <span class="n">utils</span>
<span class="kn">from</span> <span class="nn">cryptography.exceptions</span> <span class="kn">import</span> <span class="p">(</span>
    <span class="n">AlreadyFinalized</span><span class="p">,</span> <span class="n">InvalidSignature</span><span class="p">,</span> <span class="n">_Reasons</span>
<span class="p">)</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.backends.interfaces</span> <span class="kn">import</span> <span class="p">(</span>
    <span class="n">PEMSerializationBackend</span><span class="p">,</span> <span class="n">RSABackend</span>
<span class="p">)</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.primitives</span> <span class="kn">import</span> <span class="n">hashes</span><span class="p">,</span> <span class="n">serialization</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.primitives.asymmetric</span> <span class="kn">import</span> <span class="n">padding</span><span class="p">,</span> <span class="n">rsa</span>
<span class="kn">from</span> <span class="nn">cryptography.hazmat.primitives.asymmetric.rsa</span> <span class="kn">import</span> <span class="p">(</span>
    <span class="n">RSAPrivateNumbers</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span>
<span class="p">)</span>

<span class="kn">from</span> <span class="nn">.fixtures_rsa</span> <span class="kn">import</span> <span class="p">(</span>
    <span class="n">RSA_KEY_1024</span><span class="p">,</span> <span class="n">RSA_KEY_1025</span><span class="p">,</span> <span class="n">RSA_KEY_1026</span><span class="p">,</span> <span class="n">RSA_KEY_1027</span><span class="p">,</span> <span class="n">RSA_KEY_1028</span><span class="p">,</span>
    <span class="n">RSA_KEY_1029</span><span class="p">,</span> <span class="n">RSA_KEY_1030</span><span class="p">,</span> <span class="n">RSA_KEY_1031</span><span class="p">,</span> <span class="n">RSA_KEY_1536</span><span class="p">,</span> <span class="n">RSA_KEY_2048</span><span class="p">,</span>
    <span class="n">RSA_KEY_512</span><span class="p">,</span> <span class="n">RSA_KEY_512_ALT</span><span class="p">,</span> <span class="n">RSA_KEY_522</span><span class="p">,</span> <span class="n">RSA_KEY_599</span><span class="p">,</span> <span class="n">RSA_KEY_745</span><span class="p">,</span>
    <span class="n">RSA_KEY_768</span><span class="p">,</span>
<span class="p">)</span>
<span class="kn">from</span> <span class="nn">.utils</span> <span class="kn">import</span> <span class="p">(</span>
    <span class="n">_check_rsa_private_numbers</span><span class="p">,</span> <span class="n">generate_rsa_verification_test</span>
<span class="p">)</span>
<span class="kn">from</span> <span class="nn">...utils</span> <span class="kn">import</span> <span class="p">(</span>
    <span class="n">load_pkcs1_vectors</span><span class="p">,</span> <span class="n">load_rsa_nist_vectors</span><span class="p">,</span> <span class="n">load_vectors_from_file</span><span class="p">,</span>
    <span class="n">raises_unsupported_algorithm</span>
<span class="p">)</span>


<span class="nd">@utils</span><span class="o">.</span><span class="n">register_interface</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">AsymmetricPadding</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">DummyPadding</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="n">name</span> <span class="o">=</span> <span class="s2">&quot;UNSUPPORTED-PADDING&quot;</span>


<span class="k">class</span> <span class="nc">DummyMGF</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="n">_salt_length</span> <span class="o">=</span> <span class="mi">0</span>


<span class="nd">@utils</span><span class="o">.</span><span class="n">register_interface</span><span class="p">(</span><span class="n">serialization</span><span class="o">.</span><span class="n">KeySerializationEncryption</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">DummyKeyEncryption</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">pass</span>


<span class="k">def</span> <span class="nf">_flatten_pkcs1_examples</span><span class="p">(</span><span class="n">vectors</span><span class="p">):</span>
    <span class="n">flattened_vectors</span> <span class="o">=</span> <span class="p">[]</span>
    <span class="k">for</span> <span class="n">vector</span> <span class="ow">in</span> <span class="n">vectors</span><span class="p">:</span>
        <span class="n">examples</span> <span class="o">=</span> <span class="n">vector</span><span class="p">[</span><span class="mi">0</span><span class="p">]</span><span class="o">.</span><span class="n">pop</span><span class="p">(</span><span class="s2">&quot;examples&quot;</span><span class="p">)</span>
        <span class="k">for</span> <span class="n">example</span> <span class="ow">in</span> <span class="n">examples</span><span class="p">:</span>
            <span class="n">merged_vector</span> <span class="o">=</span> <span class="p">(</span><span class="n">vector</span><span class="p">[</span><span class="mi">0</span><span class="p">],</span> <span class="n">vector</span><span class="p">[</span><span class="mi">1</span><span class="p">],</span> <span class="n">example</span><span class="p">)</span>
            <span class="n">flattened_vectors</span><span class="o">.</span><span class="n">append</span><span class="p">(</span><span class="n">merged_vector</span><span class="p">)</span>

    <span class="k">return</span> <span class="n">flattened_vectors</span>


<span class="k">def</span> <span class="nf">test_modular_inverse</span><span class="p">():</span>
    <span class="n">p</span> <span class="o">=</span> <span class="nb">int</span><span class="p">(</span>
        <span class="s2">&quot;d1f9f6c09fd3d38987f7970247b85a6da84907753d42ec52bc23b745093f4fff5cff3&quot;</span>
        <span class="s2">&quot;617ce43d00121a9accc0051f519c76e08cf02fc18acfe4c9e6aea18da470a2b611d2e&quot;</span>
        <span class="s2">&quot;56a7b35caa2c0239bc041a53cc5875ca0b668ae6377d4b23e932d8c995fd1e58ecfd8&quot;</span>
        <span class="s2">&quot;c4b73259c0d8a54d691cca3f6fb85c8a5c1baf588e898d481&quot;</span><span class="p">,</span> <span class="mi">16</span>
    <span class="p">)</span>
    <span class="n">q</span> <span class="o">=</span> <span class="nb">int</span><span class="p">(</span>
        <span class="s2">&quot;d1519255eb8f678c86cfd06802d1fbef8b664441ac46b73d33d13a8404580a33a8e74&quot;</span>
        <span class="s2">&quot;cb2ea2e2963125b3d454d7a922cef24dd13e55f989cbabf64255a736671f4629a47b5&quot;</span>
        <span class="s2">&quot;b2347cfcd669133088d1c159518531025297c2d67c9da856a12e80222cd03b4c6ec0f&quot;</span>
        <span class="s2">&quot;86c957cb7bb8de7a127b645ec9e820aa94581e4762e209f01&quot;</span><span class="p">,</span> <span class="mi">16</span>
    <span class="p">)</span>
    <span class="k">assert</span> <span class="n">rsa</span><span class="o">.</span><span class="n">_modinv</span><span class="p">(</span><span class="n">q</span><span class="p">,</span> <span class="n">p</span><span class="p">)</span> <span class="o">==</span> <span class="nb">int</span><span class="p">(</span>
        <span class="s2">&quot;0275e06afa722999315f8f322275483e15e2fb46d827b17800f99110b269a6732748f&quot;</span>
        <span class="s2">&quot;624a382fa2ed1ec68c99f7fc56fb60e76eea51614881f497ba7034c17dde955f92f15&quot;</span>
        <span class="s2">&quot;772f8b2b41f3e56d88b1e096cdd293eba4eae1e82db815e0fadea0c4ec971bc6fd875&quot;</span>
        <span class="s2">&quot;c20e67e48c31a611e98d32c6213ae4c4d7b53023b2f80c538&quot;</span><span class="p">,</span> <span class="mi">16</span>
    <span class="p">)</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSA</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="p">(</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">,</span> <span class="s2">&quot;key_size&quot;</span><span class="p">),</span>
        <span class="n">itertools</span><span class="o">.</span><span class="n">product</span><span class="p">(</span>
            <span class="p">(</span><span class="mi">3</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">65537</span><span class="p">),</span>
            <span class="p">(</span><span class="mi">1024</span><span class="p">,</span> <span class="mi">1025</span><span class="p">,</span> <span class="mi">1026</span><span class="p">,</span> <span class="mi">1027</span><span class="p">,</span> <span class="mi">1028</span><span class="p">,</span> <span class="mi">1029</span><span class="p">,</span> <span class="mi">1030</span><span class="p">,</span> <span class="mi">1031</span><span class="p">,</span> <span class="mi">1536</span><span class="p">,</span> <span class="mi">2048</span><span class="p">)</span>
        <span class="p">)</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_generate_rsa_keys</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">,</span> <span class="n">public_exponent</span><span class="p">,</span> <span class="n">key_size</span><span class="p">):</span>
        <span class="n">skey</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">generate_private_key</span><span class="p">(</span><span class="n">public_exponent</span><span class="p">,</span> <span class="n">key_size</span><span class="p">,</span> <span class="n">backend</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">skey</span><span class="o">.</span><span class="n">key_size</span> <span class="o">==</span> <span class="n">key_size</span>

        <span class="n">_check_rsa_private_numbers</span><span class="p">(</span><span class="n">skey</span><span class="o">.</span><span class="n">private_numbers</span><span class="p">())</span>
        <span class="n">pkey</span> <span class="o">=</span> <span class="n">skey</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="k">assert</span> <span class="nb">isinstance</span><span class="p">(</span><span class="n">pkey</span><span class="o">.</span><span class="n">public_numbers</span><span class="p">(),</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_generate_bad_public_exponent</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">generate_private_key</span><span class="p">(</span><span class="n">public_exponent</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                                     <span class="n">key_size</span><span class="o">=</span><span class="mi">2048</span><span class="p">,</span>
                                     <span class="n">backend</span><span class="o">=</span><span class="n">backend</span><span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">generate_private_key</span><span class="p">(</span><span class="n">public_exponent</span><span class="o">=</span><span class="mi">4</span><span class="p">,</span>
                                     <span class="n">key_size</span><span class="o">=</span><span class="mi">2048</span><span class="p">,</span>
                                     <span class="n">backend</span><span class="o">=</span><span class="n">backend</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_cant_generate_insecure_tiny_key</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">generate_private_key</span><span class="p">(</span><span class="n">public_exponent</span><span class="o">=</span><span class="mi">65537</span><span class="p">,</span>
                                     <span class="n">key_size</span><span class="o">=</span><span class="mi">511</span><span class="p">,</span>
                                     <span class="n">backend</span><span class="o">=</span><span class="n">backend</span><span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">generate_private_key</span><span class="p">(</span><span class="n">public_exponent</span><span class="o">=</span><span class="mi">65537</span><span class="p">,</span>
                                     <span class="n">key_size</span><span class="o">=</span><span class="mi">256</span><span class="p">,</span>
                                     <span class="n">backend</span><span class="o">=</span><span class="n">backend</span><span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="s2">&quot;pkcs1_example&quot;</span><span class="p">,</span>
        <span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;pkcs-1v2-1d2-vec&quot;</span><span class="p">,</span> <span class="s2">&quot;pss-vect.txt&quot;</span><span class="p">),</span>
            <span class="n">load_pkcs1_vectors</span>
        <span class="p">)</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_load_pss_vect_example_keys</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">pkcs1_example</span><span class="p">):</span>
        <span class="n">secret</span><span class="p">,</span> <span class="n">public</span> <span class="o">=</span> <span class="n">pkcs1_example</span>

        <span class="n">private_num</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="n">p</span><span class="o">=</span><span class="n">secret</span><span class="p">[</span><span class="s2">&quot;p&quot;</span><span class="p">],</span>
            <span class="n">q</span><span class="o">=</span><span class="n">secret</span><span class="p">[</span><span class="s2">&quot;q&quot;</span><span class="p">],</span>
            <span class="n">d</span><span class="o">=</span><span class="n">secret</span><span class="p">[</span><span class="s2">&quot;private_exponent&quot;</span><span class="p">],</span>
            <span class="n">dmp1</span><span class="o">=</span><span class="n">secret</span><span class="p">[</span><span class="s2">&quot;dmp1&quot;</span><span class="p">],</span>
            <span class="n">dmq1</span><span class="o">=</span><span class="n">secret</span><span class="p">[</span><span class="s2">&quot;dmq1&quot;</span><span class="p">],</span>
            <span class="n">iqmp</span><span class="o">=</span><span class="n">secret</span><span class="p">[</span><span class="s2">&quot;iqmp&quot;</span><span class="p">],</span>
            <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                <span class="n">e</span><span class="o">=</span><span class="n">secret</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
                <span class="n">n</span><span class="o">=</span><span class="n">secret</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">]</span>
            <span class="p">)</span>
        <span class="p">)</span>
        <span class="n">_check_rsa_private_numbers</span><span class="p">(</span><span class="n">private_num</span><span class="p">)</span>

        <span class="n">public_num</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
            <span class="n">e</span><span class="o">=</span><span class="n">public</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
            <span class="n">n</span><span class="o">=</span><span class="n">public</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">]</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">public_num</span>

        <span class="n">public_num2</span> <span class="o">=</span> <span class="n">private_num</span><span class="o">.</span><span class="n">public_numbers</span>
        <span class="k">assert</span> <span class="n">public_num2</span>

        <span class="k">assert</span> <span class="n">public_num</span><span class="o">.</span><span class="n">n</span> <span class="o">==</span> <span class="n">public_num2</span><span class="o">.</span><span class="n">n</span>
        <span class="k">assert</span> <span class="n">public_num</span><span class="o">.</span><span class="n">e</span> <span class="o">==</span> <span class="n">public_num2</span><span class="o">.</span><span class="n">e</span>


<span class="k">def</span> <span class="nf">test_rsa_generate_invalid_backend</span><span class="p">():</span>
    <span class="n">pretend_backend</span> <span class="o">=</span> <span class="nb">object</span><span class="p">()</span>

    <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">BACKEND_MISSING_INTERFACE</span><span class="p">):</span>
        <span class="n">rsa</span><span class="o">.</span><span class="n">generate_private_key</span><span class="p">(</span><span class="mi">65537</span><span class="p">,</span> <span class="mi">2048</span><span class="p">,</span> <span class="n">pretend_backend</span><span class="p">)</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSASignature</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="s2">&quot;pkcs1_example&quot;</span><span class="p">,</span>
        <span class="n">_flatten_pkcs1_examples</span><span class="p">(</span><span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;pkcs1v15sign-vectors.txt&quot;</span><span class="p">),</span>
            <span class="n">load_pkcs1_vectors</span>
        <span class="p">))</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pkcs1v15_signing</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">pkcs1_example</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private</span><span class="p">,</span> <span class="n">public</span><span class="p">,</span> <span class="n">example</span> <span class="o">=</span> <span class="n">pkcs1_example</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="n">p</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;p&quot;</span><span class="p">],</span>
            <span class="n">q</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;q&quot;</span><span class="p">],</span>
            <span class="n">d</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;private_exponent&quot;</span><span class="p">],</span>
            <span class="n">dmp1</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;dmp1&quot;</span><span class="p">],</span>
            <span class="n">dmq1</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;dmq1&quot;</span><span class="p">],</span>
            <span class="n">iqmp</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;iqmp&quot;</span><span class="p">],</span>
            <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                <span class="n">e</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
                <span class="n">n</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">]</span>
            <span class="p">)</span>
        <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;message&quot;</span><span class="p">]))</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">binascii</span><span class="o">.</span><span class="n">hexlify</span><span class="p">(</span><span class="n">signature</span><span class="p">)</span> <span class="o">==</span> <span class="n">example</span><span class="p">[</span><span class="s2">&quot;signature&quot;</span><span class="p">]</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="s2">&quot;pkcs1_example&quot;</span><span class="p">,</span>
        <span class="n">_flatten_pkcs1_examples</span><span class="p">(</span><span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;pkcs-1v2-1d2-vec&quot;</span><span class="p">,</span> <span class="s2">&quot;pss-vect.txt&quot;</span><span class="p">),</span>
            <span class="n">load_pkcs1_vectors</span>
        <span class="p">))</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pss_signing</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">pkcs1_example</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private</span><span class="p">,</span> <span class="n">public</span><span class="p">,</span> <span class="n">example</span> <span class="o">=</span> <span class="n">pkcs1_example</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="n">p</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;p&quot;</span><span class="p">],</span>
            <span class="n">q</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;q&quot;</span><span class="p">],</span>
            <span class="n">d</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;private_exponent&quot;</span><span class="p">],</span>
            <span class="n">dmp1</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;dmp1&quot;</span><span class="p">],</span>
            <span class="n">dmq1</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;dmq1&quot;</span><span class="p">],</span>
            <span class="n">iqmp</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;iqmp&quot;</span><span class="p">],</span>
            <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                <span class="n">e</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
                <span class="n">n</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">]</span>
            <span class="p">)</span>
        <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
            <span class="n">e</span><span class="o">=</span><span class="n">public</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
            <span class="n">n</span><span class="o">=</span><span class="n">public</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">]</span>
        <span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;message&quot;</span><span class="p">]))</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>
        <span class="k">assert</span> <span class="nb">len</span><span class="p">(</span><span class="n">signature</span><span class="p">)</span> <span class="o">==</span> <span class="n">math</span><span class="o">.</span><span class="n">ceil</span><span class="p">(</span><span class="n">private_key</span><span class="o">.</span><span class="n">key_size</span> <span class="o">/</span> <span class="mf">8.0</span><span class="p">)</span>
        <span class="c1"># PSS signatures contain randomness so we can&#39;t do an exact</span>
        <span class="c1"># signature check. Instead we&#39;ll verify that the signature created</span>
        <span class="c1"># successfully verifies.</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">signature</span><span class="p">,</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;message&quot;</span><span class="p">]))</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="s2">&quot;hash_alg&quot;</span><span class="p">,</span>
        <span class="p">[</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA224</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA384</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">()]</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pss_signing_sha2</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="k">if</span> <span class="ow">not</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hash_alg</span><span class="p">),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">):</span>
            <span class="n">pytest</span><span class="o">.</span><span class="n">skip</span><span class="p">(</span>
                <span class="s2">&quot;Does not support </span><span class="si">{0}</span><span class="s2"> in MGF1 using PSS.&quot;</span><span class="o">.</span><span class="n">format</span><span class="p">(</span><span class="n">hash_alg</span><span class="o">.</span><span class="n">name</span><span class="p">)</span>
            <span class="p">)</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_768</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="n">pss</span> <span class="o">=</span> <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
            <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hash_alg</span><span class="p">),</span>
            <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
        <span class="p">)</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span><span class="n">pss</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">)</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;testing signature&quot;</span><span class="p">)</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span><span class="n">signature</span><span class="p">,</span> <span class="n">pss</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;testing signature&quot;</span><span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="p">(</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">hash_supported</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">())</span> <span class="ow">and</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                    <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
                <span class="p">)</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support SHA512.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pss_minimum_key_size_for_digest</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_522</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;no failure&quot;</span><span class="p">)</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">hash_supported</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">()),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support SHA512.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pss_signing_digest_too_large_for_key_size</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                    <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
                <span class="p">),</span>
                <span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pss_signing_salt_length_too_long</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="mi">1000000</span>
            <span class="p">),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;failure coming&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_use_after_finalize</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sign me&quot;</span><span class="p">)</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">AlreadyFinalized</span><span class="p">):</span>
            <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">AlreadyFinalized</span><span class="p">):</span>
            <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;more data&quot;</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_unsupported_padding</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_PADDING</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span><span class="n">DummyPadding</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>

    <span class="k">def</span> <span class="nf">test_padding_incorrect_type</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span><span class="s2">&quot;notpadding&quot;</span><span class="p">,</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span><span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span> <span class="n">salt_length</span><span class="o">=</span><span class="mi">0</span><span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_unsupported_pss_mgf</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_MGF</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">DummyMGF</span><span class="p">(),</span>
                    <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
                <span class="p">),</span>
                <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pkcs1_digest_too_large_for_key_size</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_599</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;failure coming&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pkcs1_minimum_key_size</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_745</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;no failure&quot;</span><span class="p">)</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSAVerification</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="s2">&quot;pkcs1_example&quot;</span><span class="p">,</span>
        <span class="n">_flatten_pkcs1_examples</span><span class="p">(</span><span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;pkcs1v15sign-vectors.txt&quot;</span><span class="p">),</span>
            <span class="n">load_pkcs1_vectors</span>
        <span class="p">))</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pkcs1v15_verification</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">pkcs1_example</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private</span><span class="p">,</span> <span class="n">public</span><span class="p">,</span> <span class="n">example</span> <span class="o">=</span> <span class="n">pkcs1_example</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
            <span class="n">e</span><span class="o">=</span><span class="n">public</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
            <span class="n">n</span><span class="o">=</span><span class="n">public</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">]</span>
        <span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;signature&quot;</span><span class="p">]),</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;message&quot;</span><span class="p">]))</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_invalid_pkcs1v15_signature_wrong_data</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sign me&quot;</span><span class="p">)</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">signature</span><span class="p">,</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;incorrect data&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">InvalidSignature</span><span class="p">):</span>
            <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_invalid_pkcs1v15_signature_wrong_key</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">private_key2</span> <span class="o">=</span> <span class="n">RSA_KEY_512_ALT</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key2</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sign me&quot;</span><span class="p">)</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">signature</span><span class="p">,</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sign me&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">InvalidSignature</span><span class="p">):</span>
            <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="mi">20</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="s2">&quot;pkcs1_example&quot;</span><span class="p">,</span>
        <span class="n">_flatten_pkcs1_examples</span><span class="p">(</span><span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;pkcs-1v2-1d2-vec&quot;</span><span class="p">,</span> <span class="s2">&quot;pss-vect.txt&quot;</span><span class="p">),</span>
            <span class="n">load_pkcs1_vectors</span>
        <span class="p">))</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pss_verification</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">pkcs1_example</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private</span><span class="p">,</span> <span class="n">public</span><span class="p">,</span> <span class="n">example</span> <span class="o">=</span> <span class="n">pkcs1_example</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
            <span class="n">e</span><span class="o">=</span><span class="n">public</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
            <span class="n">n</span><span class="o">=</span><span class="n">public</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">]</span>
        <span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;signature&quot;</span><span class="p">]),</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="mi">20</span>
            <span class="p">),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;message&quot;</span><span class="p">]))</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_invalid_pss_signature_wrong_data</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
            <span class="n">n</span><span class="o">=</span><span class="nb">int</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;dffc2137d5e810cde9e4b4612f5796447218bab913b3fa98bdf7982e4fa6&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;ec4d6653ef2b29fb1642b095befcbea6decc178fb4bed243d3c3592c6854&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;6af2d3f3&quot;</span><span class="p">,</span> <span class="mi">16</span>
            <span class="p">),</span>
            <span class="n">e</span><span class="o">=</span><span class="mi">65537</span>
        <span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span>
            <span class="sa">b</span><span class="s2">&quot;0e68c3649df91c5bc3665f96e157efa75b71934aaa514d91e94ca8418d100f45&quot;</span>
            <span class="sa">b</span><span class="s2">&quot;6f05288e58525f99666bab052adcffdf7186eb40f583bd38d98c97d3d524808b&quot;</span>
        <span class="p">)</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">signature</span><span class="p">,</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;incorrect data&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">InvalidSignature</span><span class="p">):</span>
            <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_invalid_pss_signature_wrong_key</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span>
            <span class="sa">b</span><span class="s2">&quot;3a1880165014ba6eb53cc1449d13e5132ebcc0cfd9ade6d7a2494a0503bd0826&quot;</span>
            <span class="sa">b</span><span class="s2">&quot;f8a46c431e0d7be0ca3e453f8b2b009e2733764da7927cc6dbe7a021437a242e&quot;</span>
        <span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
            <span class="n">n</span><span class="o">=</span><span class="nb">int</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;381201f4905d67dfeb3dec131a0fbea773489227ec7a1448c3109189ac68&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;5a95441be90866a14c4d2e139cd16db540ec6c7abab13ffff91443fd46a8&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;960cbb7658ded26a5c95c86f6e40384e1c1239c63e541ba221191c4dd303&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;231b42e33c6dbddf5ec9a746f09bf0c25d0f8d27f93ee0ae5c0d723348f4&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;030d3581e13522e1&quot;</span><span class="p">,</span> <span class="mi">16</span>
            <span class="p">),</span>
            <span class="n">e</span><span class="o">=</span><span class="mi">65537</span>
        <span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">signature</span><span class="p">,</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sign me&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">InvalidSignature</span><span class="p">):</span>
            <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_invalid_pss_signature_data_too_large_for_modulus</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span>
            <span class="sa">b</span><span class="s2">&quot;cb43bde4f7ab89eb4a79c6e8dd67e0d1af60715da64429d90c716a490b799c29&quot;</span>
            <span class="sa">b</span><span class="s2">&quot;194cf8046509c6ed851052367a74e2e92d9b38947ed74332acb115a03fcc0222&quot;</span>
        <span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
            <span class="n">n</span><span class="o">=</span><span class="nb">int</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;381201f4905d67dfeb3dec131a0fbea773489227ec7a1448c3109189ac68&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;5a95441be90866a14c4d2e139cd16db540ec6c7abab13ffff91443fd46a8&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;960cbb7658ded26a5c95c86f6e40384e1c1239c63e541ba221191c4dd303&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;231b42e33c6dbddf5ec9a746f09bf0c25d0f8d27f93ee0ae5c0d723348f4&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;030d3581e13522&quot;</span><span class="p">,</span> <span class="mi">16</span>
            <span class="p">),</span>
            <span class="n">e</span><span class="o">=</span><span class="mi">65537</span>
        <span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">signature</span><span class="p">,</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sign me&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">InvalidSignature</span><span class="p">):</span>
            <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_use_after_finalize</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="n">signer</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">signer</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>
        <span class="n">signer</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sign me&quot;</span><span class="p">)</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">signer</span><span class="o">.</span><span class="n">finalize</span><span class="p">()</span>

        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">signature</span><span class="p">,</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sign me&quot;</span><span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">AlreadyFinalized</span><span class="p">):</span>
            <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">AlreadyFinalized</span><span class="p">):</span>
            <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;more data&quot;</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_unsupported_padding</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_PADDING</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sig&quot;</span><span class="p">,</span> <span class="n">DummyPadding</span><span class="p">(),</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_signature_not_bytes</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">public_numbers</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="mi">1234</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
                <span class="n">signature</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">(),</span>
                <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_padding_incorrect_type</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sig&quot;</span><span class="p">,</span> <span class="s2">&quot;notpadding&quot;</span><span class="p">,</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span><span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span> <span class="n">salt_length</span><span class="o">=</span><span class="mi">0</span><span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_unsupported_pss_mgf</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_MGF</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;sig&quot;</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">DummyMGF</span><span class="p">(),</span>
                    <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
                <span class="p">),</span>
                <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">hash_supported</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">()),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support SHA512.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pss_verify_digest_too_large_for_key_size</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span>
            <span class="sa">b</span><span class="s2">&quot;8b9a3ae9fb3b64158f3476dd8d8a1f1425444e98940e0926378baa9944d219d8&quot;</span>
            <span class="sa">b</span><span class="s2">&quot;534c050ef6b19b1bdc6eb4da422e89161106a6f5b5cc16135b11eb6439b646bd&quot;</span>
        <span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
                <span class="n">signature</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                    <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
                <span class="p">),</span>
                <span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_pss_verify_salt_length_too_long</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">signature</span> <span class="o">=</span> <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span>
            <span class="sa">b</span><span class="s2">&quot;8b9a3ae9fb3b64158f3476dd8d8a1f1425444e98940e0926378baa9944d219d8&quot;</span>
            <span class="sa">b</span><span class="s2">&quot;534c050ef6b19b1bdc6eb4da422e89161106a6f5b5cc16135b11eb6439b646bd&quot;</span>
        <span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
            <span class="n">n</span><span class="o">=</span><span class="nb">int</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;d309e4612809437548b747d7f9eb9cd3340f54fe42bb3f84a36933b0839c&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;11b0c8b7f67e11f7252370161e31159c49c784d4bc41c42a78ce0f0b40a3&quot;</span>
                <span class="sa">b</span><span class="s2">&quot;ca8ffb91&quot;</span><span class="p">,</span> <span class="mi">16</span>
            <span class="p">),</span>
            <span class="n">e</span><span class="o">=</span><span class="mi">65537</span>
        <span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">verifier</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">verifier</span><span class="p">(</span>
            <span class="n">signature</span><span class="p">,</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                    <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                <span class="p">),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="mi">1000000</span>
            <span class="p">),</span>
            <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">verifier</span><span class="o">.</span><span class="n">update</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;sign me&quot;</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="n">InvalidSignature</span><span class="p">):</span>
            <span class="n">verifier</span><span class="o">.</span><span class="n">verify</span><span class="p">()</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSAPSSMGF1Verification</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="n">test_rsa_pss_mgf1_sha1</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS using MGF1 with SHA1.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGenPSS_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGenPSS_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVerPSS_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
            <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hash_alg</span><span class="p">,</span>
            <span class="p">),</span>
            <span class="n">salt_length</span><span class="o">=</span><span class="n">params</span><span class="p">[</span><span class="s2">&quot;salt_length&quot;</span><span class="p">]</span>
        <span class="p">)</span>
    <span class="p">))</span>

    <span class="n">test_rsa_pss_mgf1_sha224</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA224</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS using MGF1 with SHA224.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGenPSS_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGenPSS_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVerPSS_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA224</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
            <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hash_alg</span><span class="p">,</span>
            <span class="p">),</span>
            <span class="n">salt_length</span><span class="o">=</span><span class="n">params</span><span class="p">[</span><span class="s2">&quot;salt_length&quot;</span><span class="p">]</span>
        <span class="p">)</span>
    <span class="p">))</span>

    <span class="n">test_rsa_pss_mgf1_sha256</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS using MGF1 with SHA256.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGenPSS_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGenPSS_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVerPSS_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
            <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hash_alg</span><span class="p">,</span>
            <span class="p">),</span>
            <span class="n">salt_length</span><span class="o">=</span><span class="n">params</span><span class="p">[</span><span class="s2">&quot;salt_length&quot;</span><span class="p">]</span>
        <span class="p">)</span>
    <span class="p">))</span>

    <span class="n">test_rsa_pss_mgf1_sha384</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA384</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS using MGF1 with SHA384.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGenPSS_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGenPSS_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVerPSS_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA384</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
            <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hash_alg</span><span class="p">,</span>
            <span class="p">),</span>
            <span class="n">salt_length</span><span class="o">=</span><span class="n">params</span><span class="p">[</span><span class="s2">&quot;salt_length&quot;</span><span class="p">]</span>
        <span class="p">)</span>
    <span class="p">))</span>

    <span class="n">test_rsa_pss_mgf1_sha512</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">()),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PSS using MGF1 with SHA512.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGenPSS_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGenPSS_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVerPSS_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
            <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hash_alg</span><span class="p">,</span>
            <span class="p">),</span>
            <span class="n">salt_length</span><span class="o">=</span><span class="n">params</span><span class="p">[</span><span class="s2">&quot;salt_length&quot;</span><span class="p">]</span>
        <span class="p">)</span>
    <span class="p">))</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSAPKCS1Verification</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="n">test_rsa_pkcs1v15_verify_sha1</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="p">(</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">hash_supported</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span> <span class="ow">and</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">())</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support SHA1 and PKCS1v1.5.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGen15_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGen15_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVer15_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
    <span class="p">))</span>

    <span class="n">test_rsa_pkcs1v15_verify_sha224</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="p">(</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">hash_supported</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA224</span><span class="p">())</span> <span class="ow">and</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">())</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support SHA224 and PKCS1v1.5.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGen15_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGen15_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVer15_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA224</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
    <span class="p">))</span>

    <span class="n">test_rsa_pkcs1v15_verify_sha256</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="p">(</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">hash_supported</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">())</span> <span class="ow">and</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">())</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support SHA256 and PKCS1v1.5.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGen15_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGen15_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVer15_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA256</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
    <span class="p">))</span>

    <span class="n">test_rsa_pkcs1v15_verify_sha384</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="p">(</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">hash_supported</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA384</span><span class="p">())</span> <span class="ow">and</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">())</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support SHA384 and PKCS1v1.5.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGen15_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGen15_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVer15_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA384</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
    <span class="p">))</span>

    <span class="n">test_rsa_pkcs1v15_verify_sha512</span> <span class="o">=</span> <span class="n">pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="p">(</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">hash_supported</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">())</span> <span class="ow">and</span>
            <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">())</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support SHA512 and PKCS1v1.5.&quot;</span>
    <span class="p">)(</span><span class="n">generate_rsa_verification_test</span><span class="p">(</span>
        <span class="n">load_rsa_nist_vectors</span><span class="p">,</span>
        <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;FIPS_186-2&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="s2">&quot;SigGen15_186-2.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigGen15_186-3.rsp&quot;</span><span class="p">,</span>
            <span class="s2">&quot;SigVer15_186-3.rsp&quot;</span><span class="p">,</span>
        <span class="p">],</span>
        <span class="n">hashes</span><span class="o">.</span><span class="n">SHA512</span><span class="p">(),</span>
        <span class="k">lambda</span> <span class="n">params</span><span class="p">,</span> <span class="n">hash_alg</span><span class="p">:</span> <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
    <span class="p">))</span>


<span class="k">class</span> <span class="nc">TestPSS</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_invalid_salt_length_not_integer</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                    <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
                <span class="p">),</span>
                <span class="n">salt_length</span><span class="o">=</span><span class="sa">b</span><span class="s2">&quot;not_a_length&quot;</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_invalid_salt_length_negative_integer</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span>
                    <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
                <span class="p">),</span>
                <span class="n">salt_length</span><span class="o">=-</span><span class="mi">1</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_valid_pss_parameters</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">algorithm</span> <span class="o">=</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="n">salt_length</span> <span class="o">=</span> <span class="n">algorithm</span><span class="o">.</span><span class="n">digest_size</span>
        <span class="n">mgf</span> <span class="o">=</span> <span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="p">)</span>
        <span class="n">pss</span> <span class="o">=</span> <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span><span class="n">mgf</span><span class="o">=</span><span class="n">mgf</span><span class="p">,</span> <span class="n">salt_length</span><span class="o">=</span><span class="n">salt_length</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">pss</span><span class="o">.</span><span class="n">_mgf</span> <span class="o">==</span> <span class="n">mgf</span>
        <span class="k">assert</span> <span class="n">pss</span><span class="o">.</span><span class="n">_salt_length</span> <span class="o">==</span> <span class="n">salt_length</span>

    <span class="k">def</span> <span class="nf">test_valid_pss_parameters_maximum</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">algorithm</span> <span class="o">=</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="n">mgf</span> <span class="o">=</span> <span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="p">)</span>
        <span class="n">pss</span> <span class="o">=</span> <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="p">(</span><span class="n">mgf</span><span class="o">=</span><span class="n">mgf</span><span class="p">,</span> <span class="n">salt_length</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">pss</span><span class="o">.</span><span class="n">_mgf</span> <span class="o">==</span> <span class="n">mgf</span>
        <span class="k">assert</span> <span class="n">pss</span><span class="o">.</span><span class="n">_salt_length</span> <span class="o">==</span> <span class="n">padding</span><span class="o">.</span><span class="n">PSS</span><span class="o">.</span><span class="n">MAX_LENGTH</span>


<span class="k">class</span> <span class="nc">TestMGF1</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_invalid_hash_algorithm</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;not_a_hash&quot;</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_valid_mgf1_parameters</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">algorithm</span> <span class="o">=</span> <span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()</span>
        <span class="n">mgf</span> <span class="o">=</span> <span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">mgf</span><span class="o">.</span><span class="n">_algorithm</span> <span class="o">==</span> <span class="n">algorithm</span>


<span class="k">class</span> <span class="nc">TestOAEP</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_invalid_algorithm</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">mgf</span> <span class="o">=</span> <span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">())</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">mgf</span><span class="p">,</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="sa">b</span><span class="s2">&quot;&quot;</span><span class="p">,</span>
                <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
            <span class="p">)</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSADecryption</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="s2">&quot;vector&quot;</span><span class="p">,</span>
        <span class="n">_flatten_pkcs1_examples</span><span class="p">(</span><span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;pkcs1v15crypt-vectors.txt&quot;</span><span class="p">),</span>
            <span class="n">load_pkcs1_vectors</span>
        <span class="p">))</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_decrypt_pkcs1v15_vectors</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">vector</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private</span><span class="p">,</span> <span class="n">public</span><span class="p">,</span> <span class="n">example</span> <span class="o">=</span> <span class="n">vector</span>
        <span class="n">skey</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="n">p</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;p&quot;</span><span class="p">],</span>
            <span class="n">q</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;q&quot;</span><span class="p">],</span>
            <span class="n">d</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;private_exponent&quot;</span><span class="p">],</span>
            <span class="n">dmp1</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;dmp1&quot;</span><span class="p">],</span>
            <span class="n">dmq1</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;dmq1&quot;</span><span class="p">],</span>
            <span class="n">iqmp</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;iqmp&quot;</span><span class="p">],</span>
            <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                <span class="n">e</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
                <span class="n">n</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">]</span>
            <span class="p">)</span>
        <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">ciphertext</span> <span class="o">=</span> <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;encryption&quot;</span><span class="p">])</span>
        <span class="k">assert</span> <span class="nb">len</span><span class="p">(</span><span class="n">ciphertext</span><span class="p">)</span> <span class="o">==</span> <span class="n">math</span><span class="o">.</span><span class="n">ceil</span><span class="p">(</span><span class="n">skey</span><span class="o">.</span><span class="n">key_size</span> <span class="o">/</span> <span class="mf">8.0</span><span class="p">)</span>
        <span class="n">message</span> <span class="o">=</span> <span class="n">skey</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span><span class="n">ciphertext</span><span class="p">,</span> <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">())</span>
        <span class="k">assert</span> <span class="n">message</span> <span class="o">==</span> <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;message&quot;</span><span class="p">])</span>

    <span class="k">def</span> <span class="nf">test_unsupported_padding</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_PADDING</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;0&quot;</span> <span class="o">*</span> <span class="mi">64</span><span class="p">,</span> <span class="n">DummyPadding</span><span class="p">())</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_decrypt_invalid_decrypt</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;</span><span class="se">\x00</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="mi">64</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_decrypt_ciphertext_too_large</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;</span><span class="se">\x00</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="mi">65</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_decrypt_ciphertext_too_small</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">ct</span> <span class="o">=</span> <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span>
            <span class="sa">b</span><span class="s2">&quot;50b4c14136bd198c2f3c3ed243fce036e168d56517984a263cd66492b80804f1&quot;</span>
            <span class="sa">b</span><span class="s2">&quot;69d210f2b9bdfb48b12f9ea05009c77da257cc600ccefe3a6283789d8ea0&quot;</span>
        <span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span>
                <span class="n">ct</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support OAEP.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="s2">&quot;vector&quot;</span><span class="p">,</span>
        <span class="n">_flatten_pkcs1_examples</span><span class="p">(</span><span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;pkcs-1v2-1d2-vec&quot;</span><span class="p">,</span> <span class="s2">&quot;oaep-vect.txt&quot;</span><span class="p">),</span>
            <span class="n">load_pkcs1_vectors</span>
        <span class="p">))</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_decrypt_oaep_vectors</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">vector</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private</span><span class="p">,</span> <span class="n">public</span><span class="p">,</span> <span class="n">example</span> <span class="o">=</span> <span class="n">vector</span>
        <span class="n">skey</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="n">p</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;p&quot;</span><span class="p">],</span>
            <span class="n">q</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;q&quot;</span><span class="p">],</span>
            <span class="n">d</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;private_exponent&quot;</span><span class="p">],</span>
            <span class="n">dmp1</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;dmp1&quot;</span><span class="p">],</span>
            <span class="n">dmq1</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;dmq1&quot;</span><span class="p">],</span>
            <span class="n">iqmp</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;iqmp&quot;</span><span class="p">],</span>
            <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                <span class="n">e</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
                <span class="n">n</span><span class="o">=</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">]</span>
            <span class="p">)</span>
        <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">message</span> <span class="o">=</span> <span class="n">skey</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span>
            <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;encryption&quot;</span><span class="p">]),</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
            <span class="p">)</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">message</span> <span class="o">==</span> <span class="n">binascii</span><span class="o">.</span><span class="n">unhexlify</span><span class="p">(</span><span class="n">example</span><span class="p">[</span><span class="s2">&quot;message&quot;</span><span class="p">])</span>

    <span class="k">def</span> <span class="nf">test_unsupported_oaep_mgf</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_MGF</span><span class="p">):</span>
            <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;0&quot;</span> <span class="o">*</span> <span class="mi">64</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">DummyMGF</span><span class="p">(),</span>
                    <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                    <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
                <span class="p">)</span>
            <span class="p">)</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSAEncryption</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
            <span class="p">)</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support OAEP.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="p">(</span><span class="s2">&quot;key_data&quot;</span><span class="p">,</span> <span class="s2">&quot;pad&quot;</span><span class="p">),</span>
        <span class="n">itertools</span><span class="o">.</span><span class="n">product</span><span class="p">(</span>
            <span class="p">(</span><span class="n">RSA_KEY_1024</span><span class="p">,</span> <span class="n">RSA_KEY_1025</span><span class="p">,</span> <span class="n">RSA_KEY_1026</span><span class="p">,</span> <span class="n">RSA_KEY_1027</span><span class="p">,</span>
             <span class="n">RSA_KEY_1028</span><span class="p">,</span> <span class="n">RSA_KEY_1029</span><span class="p">,</span> <span class="n">RSA_KEY_1030</span><span class="p">,</span> <span class="n">RSA_KEY_1031</span><span class="p">,</span>
             <span class="n">RSA_KEY_1536</span><span class="p">,</span> <span class="n">RSA_KEY_2048</span><span class="p">),</span>
            <span class="p">[</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                    <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                    <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
                <span class="p">)</span>
            <span class="p">]</span>
        <span class="p">)</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_rsa_encrypt_oaep</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">key_data</span><span class="p">,</span> <span class="n">pad</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">key_data</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">pt</span> <span class="o">=</span> <span class="sa">b</span><span class="s2">&quot;encrypt me!&quot;</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="n">ct</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">encrypt</span><span class="p">(</span><span class="n">pt</span><span class="p">,</span> <span class="n">pad</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">ct</span> <span class="o">!=</span> <span class="n">pt</span>
        <span class="k">assert</span> <span class="nb">len</span><span class="p">(</span><span class="n">ct</span><span class="p">)</span> <span class="o">==</span> <span class="n">math</span><span class="o">.</span><span class="n">ceil</span><span class="p">(</span><span class="n">public_key</span><span class="o">.</span><span class="n">key_size</span> <span class="o">/</span> <span class="mf">8.0</span><span class="p">)</span>
        <span class="n">recovered_pt</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span><span class="n">ct</span><span class="p">,</span> <span class="n">pad</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">recovered_pt</span> <span class="o">==</span> <span class="n">pt</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">supported</span><span class="p">(</span>
        <span class="n">only_if</span><span class="o">=</span><span class="k">lambda</span> <span class="n">backend</span><span class="p">:</span> <span class="n">backend</span><span class="o">.</span><span class="n">rsa_padding_supported</span><span class="p">(</span>
            <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
        <span class="p">),</span>
        <span class="n">skip_message</span><span class="o">=</span><span class="s2">&quot;Does not support PKCS1v1.5.&quot;</span>
    <span class="p">)</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="p">(</span><span class="s2">&quot;key_data&quot;</span><span class="p">,</span> <span class="s2">&quot;pad&quot;</span><span class="p">),</span>
        <span class="n">itertools</span><span class="o">.</span><span class="n">product</span><span class="p">(</span>
            <span class="p">(</span><span class="n">RSA_KEY_1024</span><span class="p">,</span> <span class="n">RSA_KEY_1025</span><span class="p">,</span> <span class="n">RSA_KEY_1026</span><span class="p">,</span> <span class="n">RSA_KEY_1027</span><span class="p">,</span>
             <span class="n">RSA_KEY_1028</span><span class="p">,</span> <span class="n">RSA_KEY_1029</span><span class="p">,</span> <span class="n">RSA_KEY_1030</span><span class="p">,</span> <span class="n">RSA_KEY_1031</span><span class="p">,</span>
             <span class="n">RSA_KEY_1536</span><span class="p">,</span> <span class="n">RSA_KEY_2048</span><span class="p">),</span>
            <span class="p">[</span><span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()]</span>
        <span class="p">)</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_rsa_encrypt_pkcs1v15</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">key_data</span><span class="p">,</span> <span class="n">pad</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">key_data</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">pt</span> <span class="o">=</span> <span class="sa">b</span><span class="s2">&quot;encrypt me!&quot;</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="n">ct</span> <span class="o">=</span> <span class="n">public_key</span><span class="o">.</span><span class="n">encrypt</span><span class="p">(</span><span class="n">pt</span><span class="p">,</span> <span class="n">pad</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">ct</span> <span class="o">!=</span> <span class="n">pt</span>
        <span class="k">assert</span> <span class="nb">len</span><span class="p">(</span><span class="n">ct</span><span class="p">)</span> <span class="o">==</span> <span class="n">math</span><span class="o">.</span><span class="n">ceil</span><span class="p">(</span><span class="n">public_key</span><span class="o">.</span><span class="n">key_size</span> <span class="o">/</span> <span class="mf">8.0</span><span class="p">)</span>
        <span class="n">recovered_pt</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">decrypt</span><span class="p">(</span><span class="n">ct</span><span class="p">,</span> <span class="n">pad</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">recovered_pt</span> <span class="o">==</span> <span class="n">pt</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="p">(</span><span class="s2">&quot;key_data&quot;</span><span class="p">,</span> <span class="s2">&quot;pad&quot;</span><span class="p">),</span>
        <span class="n">itertools</span><span class="o">.</span><span class="n">product</span><span class="p">(</span>
            <span class="p">(</span><span class="n">RSA_KEY_1024</span><span class="p">,</span> <span class="n">RSA_KEY_1025</span><span class="p">,</span> <span class="n">RSA_KEY_1026</span><span class="p">,</span> <span class="n">RSA_KEY_1027</span><span class="p">,</span>
             <span class="n">RSA_KEY_1028</span><span class="p">,</span> <span class="n">RSA_KEY_1029</span><span class="p">,</span> <span class="n">RSA_KEY_1030</span><span class="p">,</span> <span class="n">RSA_KEY_1031</span><span class="p">,</span>
             <span class="n">RSA_KEY_1536</span><span class="p">,</span> <span class="n">RSA_KEY_2048</span><span class="p">),</span>
            <span class="p">(</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">padding</span><span class="o">.</span><span class="n">MGF1</span><span class="p">(</span><span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">()),</span>
                    <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                    <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
                <span class="p">),</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">PKCS1v15</span><span class="p">()</span>
            <span class="p">)</span>
        <span class="p">)</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_rsa_encrypt_key_too_small</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">key_data</span><span class="p">,</span> <span class="n">pad</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">key_data</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="c1"># Slightly smaller than the key size but not enough for padding.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">encrypt</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;</span><span class="se">\x00</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="p">(</span><span class="n">private_key</span><span class="o">.</span><span class="n">key_size</span> <span class="o">//</span> <span class="mi">8</span> <span class="o">-</span> <span class="mi">1</span><span class="p">),</span>
                <span class="n">pad</span>
            <span class="p">)</span>

        <span class="c1"># Larger than the key size.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">encrypt</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;</span><span class="se">\x00</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="p">(</span><span class="n">private_key</span><span class="o">.</span><span class="n">key_size</span> <span class="o">//</span> <span class="mi">8</span> <span class="o">+</span> <span class="mi">5</span><span class="p">),</span>
                <span class="n">pad</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_unsupported_padding</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>

        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_PADDING</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">encrypt</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;somedata&quot;</span><span class="p">,</span> <span class="n">DummyPadding</span><span class="p">())</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">encrypt</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;somedata&quot;</span><span class="p">,</span> <span class="n">padding</span><span class="o">=</span><span class="nb">object</span><span class="p">())</span>

    <span class="k">def</span> <span class="nf">test_unsupported_oaep_mgf</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_512</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">private_key</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>

        <span class="k">with</span> <span class="n">raises_unsupported_algorithm</span><span class="p">(</span><span class="n">_Reasons</span><span class="o">.</span><span class="n">UNSUPPORTED_MGF</span><span class="p">):</span>
            <span class="n">public_key</span><span class="o">.</span><span class="n">encrypt</span><span class="p">(</span>
                <span class="sa">b</span><span class="s2">&quot;ciphertext&quot;</span><span class="p">,</span>
                <span class="n">padding</span><span class="o">.</span><span class="n">OAEP</span><span class="p">(</span>
                    <span class="n">mgf</span><span class="o">=</span><span class="n">DummyMGF</span><span class="p">(),</span>
                    <span class="n">algorithm</span><span class="o">=</span><span class="n">hashes</span><span class="o">.</span><span class="n">SHA1</span><span class="p">(),</span>
                    <span class="n">label</span><span class="o">=</span><span class="kc">None</span>
                <span class="p">)</span>
            <span class="p">)</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSANumbers</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_rsa_public_numbers</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">public_numbers</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="n">e</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span> <span class="n">n</span><span class="o">=</span><span class="mi">15</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">public_numbers</span><span class="o">.</span><span class="n">e</span> <span class="o">==</span> <span class="mi">1</span>
        <span class="k">assert</span> <span class="n">public_numbers</span><span class="o">.</span><span class="n">n</span> <span class="o">==</span> <span class="mi">15</span>

    <span class="k">def</span> <span class="nf">test_rsa_private_numbers</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">public_numbers</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="n">e</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span> <span class="n">n</span><span class="o">=</span><span class="mi">15</span><span class="p">)</span>
        <span class="n">private_numbers</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
            <span class="n">q</span><span class="o">=</span><span class="mi">5</span><span class="p">,</span>
            <span class="n">d</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
            <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
            <span class="n">dmq1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
            <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
            <span class="n">public_numbers</span><span class="o">=</span><span class="n">public_numbers</span>
        <span class="p">)</span>

        <span class="k">assert</span> <span class="n">private_numbers</span><span class="o">.</span><span class="n">p</span> <span class="o">==</span> <span class="mi">3</span>
        <span class="k">assert</span> <span class="n">private_numbers</span><span class="o">.</span><span class="n">q</span> <span class="o">==</span> <span class="mi">5</span>
        <span class="k">assert</span> <span class="n">private_numbers</span><span class="o">.</span><span class="n">d</span> <span class="o">==</span> <span class="mi">1</span>
        <span class="k">assert</span> <span class="n">private_numbers</span><span class="o">.</span><span class="n">dmp1</span> <span class="o">==</span> <span class="mi">1</span>
        <span class="k">assert</span> <span class="n">private_numbers</span><span class="o">.</span><span class="n">dmq1</span> <span class="o">==</span> <span class="mi">1</span>
        <span class="k">assert</span> <span class="n">private_numbers</span><span class="o">.</span><span class="n">iqmp</span> <span class="o">==</span> <span class="mi">2</span>
        <span class="k">assert</span> <span class="n">private_numbers</span><span class="o">.</span><span class="n">public_numbers</span> <span class="o">==</span> <span class="n">public_numbers</span>

    <span class="k">def</span> <span class="nf">test_rsa_private_numbers_create_key</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">private_key</span> <span class="o">=</span> <span class="n">RSA_KEY_1024</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">private_key</span>

    <span class="k">def</span> <span class="nf">test_rsa_public_numbers_create_key</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">public_key</span> <span class="o">=</span> <span class="n">RSA_KEY_1024</span><span class="o">.</span><span class="n">public_numbers</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">public_key</span>

    <span class="k">def</span> <span class="nf">test_public_numbers_invalid_types</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="n">e</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span> <span class="n">n</span><span class="o">=</span><span class="mi">15</span><span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="n">e</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span> <span class="n">n</span><span class="o">=</span><span class="kc">None</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_private_numbers_invalid_types</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">public_numbers</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="n">e</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span> <span class="n">n</span><span class="o">=</span><span class="mi">15</span><span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">5</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">public_numbers</span>
            <span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">public_numbers</span>
            <span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">5</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">public_numbers</span>
            <span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">5</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">public_numbers</span>
            <span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">5</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">public_numbers</span>
            <span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">5</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="kc">None</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">public_numbers</span>
            <span class="p">)</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">5</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="kc">None</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_invalid_public_numbers_argument_values</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="c1"># Start with public_exponent=7, modulus=15. Then change one value at a</span>
        <span class="c1"># time to test the bounds.</span>

        <span class="c1"># Test a modulus &lt; 3.</span>

        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span> <span class="n">n</span><span class="o">=</span><span class="mi">2</span><span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a public_exponent &lt; 3</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="n">e</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span> <span class="n">n</span><span class="o">=</span><span class="mi">15</span><span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a public_exponent &gt; modulus</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="n">e</span><span class="o">=</span><span class="mi">17</span><span class="p">,</span> <span class="n">n</span><span class="o">=</span><span class="mi">15</span><span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a public_exponent that is not odd.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="n">e</span><span class="o">=</span><span class="mi">14</span><span class="p">,</span> <span class="n">n</span><span class="o">=</span><span class="mi">15</span><span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_invalid_private_numbers_argument_values</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="c1"># Start with p=3, q=11, private_exponent=3, public_exponent=7,</span>
        <span class="c1"># modulus=33, dmp1=1, dmq1=3, iqmp=2. Then change one value at</span>
        <span class="c1"># a time to test the bounds.</span>

        <span class="c1"># Test a modulus &lt; 3.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">2</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a modulus != p * q.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">35</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a p &gt; modulus.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">37</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a q &gt; modulus.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">37</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a dmp1 &gt; modulus.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">35</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a dmq1 &gt; modulus.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">35</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test an iqmp &gt; modulus.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">35</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a private_exponent &gt; modulus</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">37</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a public_exponent &lt; 3</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a public_exponent &gt; modulus</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">35</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">65537</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a public_exponent that is not odd.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">6</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a dmp1 that is not odd.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

        <span class="c1"># Test a dmq1 that is not odd.</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">RSAPrivateNumbers</span><span class="p">(</span>
                <span class="n">p</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">q</span><span class="o">=</span><span class="mi">11</span><span class="p">,</span>
                <span class="n">d</span><span class="o">=</span><span class="mi">3</span><span class="p">,</span>
                <span class="n">dmp1</span><span class="o">=</span><span class="mi">1</span><span class="p">,</span>
                <span class="n">dmq1</span><span class="o">=</span><span class="mi">4</span><span class="p">,</span>
                <span class="n">iqmp</span><span class="o">=</span><span class="mi">2</span><span class="p">,</span>
                <span class="n">public_numbers</span><span class="o">=</span><span class="n">rsa</span><span class="o">.</span><span class="n">RSAPublicNumbers</span><span class="p">(</span>
                    <span class="n">e</span><span class="o">=</span><span class="mi">7</span><span class="p">,</span>
                    <span class="n">n</span><span class="o">=</span><span class="mi">33</span>
                <span class="p">)</span>
            <span class="p">)</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_public_number_repr</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">num</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">1</span><span class="p">)</span>
        <span class="k">assert</span> <span class="nb">repr</span><span class="p">(</span><span class="n">num</span><span class="p">)</span> <span class="o">==</span> <span class="s2">&quot;&lt;RSAPublicNumbers(e=1, n=1)&gt;&quot;</span>


<span class="k">class</span> <span class="nc">TestRSANumbersEquality</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="k">def</span> <span class="nf">test_public_numbers_eq</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">num</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="n">num2</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">==</span> <span class="n">num2</span>

    <span class="k">def</span> <span class="nf">test_public_numbers_ne</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">num</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">2</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">3</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="nb">object</span><span class="p">()</span>

    <span class="k">def</span> <span class="nf">test_private_numbers_eq</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">pub</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="n">num</span> <span class="o">=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">pub</span><span class="p">)</span>
        <span class="n">pub2</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="n">num2</span> <span class="o">=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">pub2</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">==</span> <span class="n">num2</span>

    <span class="k">def</span> <span class="nf">test_private_numbers_ne</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">pub</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="n">num</span> <span class="o">=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">pub</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">7</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="mi">1</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="mi">2</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">2</span><span class="p">,</span> <span class="mi">2</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span>
            <span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">3</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">num</span> <span class="o">!=</span> <span class="nb">object</span><span class="p">()</span>

    <span class="k">def</span> <span class="nf">test_public_numbers_hash</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">pub1</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">3</span><span class="p">,</span> <span class="mi">17</span><span class="p">)</span>
        <span class="n">pub2</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">3</span><span class="p">,</span> <span class="mi">17</span><span class="p">)</span>
        <span class="n">pub3</span> <span class="o">=</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">7</span><span class="p">,</span> <span class="mi">21</span><span class="p">)</span>

        <span class="k">assert</span> <span class="nb">hash</span><span class="p">(</span><span class="n">pub1</span><span class="p">)</span> <span class="o">==</span> <span class="nb">hash</span><span class="p">(</span><span class="n">pub2</span><span class="p">)</span>
        <span class="k">assert</span> <span class="nb">hash</span><span class="p">(</span><span class="n">pub1</span><span class="p">)</span> <span class="o">!=</span> <span class="nb">hash</span><span class="p">(</span><span class="n">pub3</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_private_numbers_hash</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="n">priv1</span> <span class="o">=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">))</span>
        <span class="n">priv2</span> <span class="o">=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">))</span>
        <span class="n">priv3</span> <span class="o">=</span> <span class="n">RSAPrivateNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">2</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">4</span><span class="p">,</span> <span class="mi">5</span><span class="p">,</span> <span class="mi">6</span><span class="p">,</span> <span class="n">RSAPublicNumbers</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="mi">3</span><span class="p">))</span>

        <span class="k">assert</span> <span class="nb">hash</span><span class="p">(</span><span class="n">priv1</span><span class="p">)</span> <span class="o">==</span> <span class="nb">hash</span><span class="p">(</span><span class="n">priv2</span><span class="p">)</span>
        <span class="k">assert</span> <span class="nb">hash</span><span class="p">(</span><span class="n">priv1</span><span class="p">)</span> <span class="o">!=</span> <span class="nb">hash</span><span class="p">(</span><span class="n">priv3</span><span class="p">)</span>


<span class="k">class</span> <span class="nc">TestRSAPrimeFactorRecovery</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="s2">&quot;vector&quot;</span><span class="p">,</span>
        <span class="n">_flatten_pkcs1_examples</span><span class="p">(</span><span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;RSA&quot;</span><span class="p">,</span> <span class="s2">&quot;pkcs1v15crypt-vectors.txt&quot;</span><span class="p">),</span>
            <span class="n">load_pkcs1_vectors</span>
        <span class="p">))</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_recover_prime_factors</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">vector</span><span class="p">):</span>
        <span class="n">private</span><span class="p">,</span> <span class="n">public</span><span class="p">,</span> <span class="n">example</span> <span class="o">=</span> <span class="n">vector</span>
        <span class="n">p</span><span class="p">,</span> <span class="n">q</span> <span class="o">=</span> <span class="n">rsa</span><span class="o">.</span><span class="n">rsa_recover_prime_factors</span><span class="p">(</span>
            <span class="n">private</span><span class="p">[</span><span class="s2">&quot;modulus&quot;</span><span class="p">],</span>
            <span class="n">private</span><span class="p">[</span><span class="s2">&quot;public_exponent&quot;</span><span class="p">],</span>
            <span class="n">private</span><span class="p">[</span><span class="s2">&quot;private_exponent&quot;</span><span class="p">]</span>
        <span class="p">)</span>
        <span class="c1"># Unfortunately there is no convention on which prime should be p</span>
        <span class="c1"># and which one q. The function we use always makes p &lt; q, but the</span>
        <span class="c1"># NIST vectors are not so consistent. Accordingly we verify we&#39;ve</span>
        <span class="c1"># recovered the proper (p, q) by sorting them and asserting on that.</span>
        <span class="k">assert</span> <span class="nb">sorted</span><span class="p">([</span><span class="n">p</span><span class="p">,</span> <span class="n">q</span><span class="p">])</span> <span class="o">==</span> <span class="nb">sorted</span><span class="p">([</span><span class="n">private</span><span class="p">[</span><span class="s2">&quot;p&quot;</span><span class="p">],</span> <span class="n">private</span><span class="p">[</span><span class="s2">&quot;q&quot;</span><span class="p">]])</span>

    <span class="k">def</span> <span class="nf">test_invalid_recover_prime_factors</span><span class="p">(</span><span class="bp">self</span><span class="p">):</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">rsa</span><span class="o">.</span><span class="n">rsa_recover_prime_factors</span><span class="p">(</span><span class="mi">34</span><span class="p">,</span> <span class="mi">3</span><span class="p">,</span> <span class="mi">7</span><span class="p">)</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">PEMSerializationBackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSAPrivateKeySerialization</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="p">(</span><span class="s2">&quot;fmt&quot;</span><span class="p">,</span> <span class="s2">&quot;password&quot;</span><span class="p">),</span>
        <span class="n">itertools</span><span class="o">.</span><span class="n">product</span><span class="p">(</span>
            <span class="p">[</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">TraditionalOpenSSL</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">PKCS8</span>
            <span class="p">],</span>
            <span class="p">[</span>
                <span class="sa">b</span><span class="s2">&quot;s&quot;</span><span class="p">,</span>
                <span class="sa">b</span><span class="s2">&quot;longerpassword&quot;</span><span class="p">,</span>
                <span class="sa">b</span><span class="s2">&quot;!*$&amp;(@#$*&amp;($T@%_somesymbols&quot;</span><span class="p">,</span>
                <span class="sa">b</span><span class="s2">&quot;</span><span class="se">\x01</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">,</span>
            <span class="p">]</span>
        <span class="p">)</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_private_bytes_encrypted_pem</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">,</span> <span class="n">fmt</span><span class="p">,</span> <span class="n">password</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">serialized</span> <span class="o">=</span> <span class="n">key</span><span class="o">.</span><span class="n">private_bytes</span><span class="p">(</span>
            <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
            <span class="n">fmt</span><span class="p">,</span>
            <span class="n">serialization</span><span class="o">.</span><span class="n">BestAvailableEncryption</span><span class="p">(</span><span class="n">password</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="n">loaded_key</span> <span class="o">=</span> <span class="n">serialization</span><span class="o">.</span><span class="n">load_pem_private_key</span><span class="p">(</span>
            <span class="n">serialized</span><span class="p">,</span> <span class="n">password</span><span class="p">,</span> <span class="n">backend</span>
        <span class="p">)</span>
        <span class="n">loaded_priv_num</span> <span class="o">=</span> <span class="n">loaded_key</span><span class="o">.</span><span class="n">private_numbers</span><span class="p">()</span>
        <span class="n">priv_num</span> <span class="o">=</span> <span class="n">key</span><span class="o">.</span><span class="n">private_numbers</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">loaded_priv_num</span> <span class="o">==</span> <span class="n">priv_num</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="p">(</span><span class="s2">&quot;fmt&quot;</span><span class="p">,</span> <span class="s2">&quot;password&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="p">[</span><span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">PKCS8</span><span class="p">,</span> <span class="sa">b</span><span class="s2">&quot;s&quot;</span><span class="p">],</span>
            <span class="p">[</span><span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">PKCS8</span><span class="p">,</span> <span class="sa">b</span><span class="s2">&quot;longerpassword&quot;</span><span class="p">],</span>
            <span class="p">[</span><span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">PKCS8</span><span class="p">,</span> <span class="sa">b</span><span class="s2">&quot;!*$&amp;(@#$*&amp;($T@%_somesymbol&quot;</span><span class="p">],</span>
            <span class="p">[</span><span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">PKCS8</span><span class="p">,</span> <span class="sa">b</span><span class="s2">&quot;</span><span class="se">\x01</span><span class="s2">&quot;</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">]</span>
        <span class="p">]</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_private_bytes_encrypted_der</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">,</span> <span class="n">fmt</span><span class="p">,</span> <span class="n">password</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">serialized</span> <span class="o">=</span> <span class="n">key</span><span class="o">.</span><span class="n">private_bytes</span><span class="p">(</span>
            <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">DER</span><span class="p">,</span>
            <span class="n">fmt</span><span class="p">,</span>
            <span class="n">serialization</span><span class="o">.</span><span class="n">BestAvailableEncryption</span><span class="p">(</span><span class="n">password</span><span class="p">)</span>
        <span class="p">)</span>
        <span class="n">loaded_key</span> <span class="o">=</span> <span class="n">serialization</span><span class="o">.</span><span class="n">load_der_private_key</span><span class="p">(</span>
            <span class="n">serialized</span><span class="p">,</span> <span class="n">password</span><span class="p">,</span> <span class="n">backend</span>
        <span class="p">)</span>
        <span class="n">loaded_priv_num</span> <span class="o">=</span> <span class="n">loaded_key</span><span class="o">.</span><span class="n">private_numbers</span><span class="p">()</span>
        <span class="n">priv_num</span> <span class="o">=</span> <span class="n">key</span><span class="o">.</span><span class="n">private_numbers</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">loaded_priv_num</span> <span class="o">==</span> <span class="n">priv_num</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="p">(</span><span class="s2">&quot;encoding&quot;</span><span class="p">,</span> <span class="s2">&quot;fmt&quot;</span><span class="p">,</span> <span class="s2">&quot;loader_func&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="p">[</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">TraditionalOpenSSL</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_pem_private_key</span>
            <span class="p">],</span>
            <span class="p">[</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">DER</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">TraditionalOpenSSL</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_der_private_key</span>
            <span class="p">],</span>
            <span class="p">[</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">PKCS8</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_pem_private_key</span>
            <span class="p">],</span>
            <span class="p">[</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">DER</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">PKCS8</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_der_private_key</span>
            <span class="p">],</span>
        <span class="p">]</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_private_bytes_unencrypted</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">,</span> <span class="n">encoding</span><span class="p">,</span> <span class="n">fmt</span><span class="p">,</span>
                                       <span class="n">loader_func</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="n">serialized</span> <span class="o">=</span> <span class="n">key</span><span class="o">.</span><span class="n">private_bytes</span><span class="p">(</span>
            <span class="n">encoding</span><span class="p">,</span> <span class="n">fmt</span><span class="p">,</span> <span class="n">serialization</span><span class="o">.</span><span class="n">NoEncryption</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="n">loaded_key</span> <span class="o">=</span> <span class="n">loader_func</span><span class="p">(</span><span class="n">serialized</span><span class="p">,</span> <span class="kc">None</span><span class="p">,</span> <span class="n">backend</span><span class="p">)</span>
        <span class="n">loaded_priv_num</span> <span class="o">=</span> <span class="n">loaded_key</span><span class="o">.</span><span class="n">private_numbers</span><span class="p">()</span>
        <span class="n">priv_num</span> <span class="o">=</span> <span class="n">key</span><span class="o">.</span><span class="n">private_numbers</span><span class="p">()</span>
        <span class="k">assert</span> <span class="n">loaded_priv_num</span> <span class="o">==</span> <span class="n">priv_num</span>

    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="p">(</span><span class="s2">&quot;key_path&quot;</span><span class="p">,</span> <span class="s2">&quot;encoding&quot;</span><span class="p">,</span> <span class="s2">&quot;loader_func&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="p">[</span>
                <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                    <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span>
                    <span class="s2">&quot;Traditional_OpenSSL_Serialization&quot;</span><span class="p">,</span>
                    <span class="s2">&quot;testrsa.pem&quot;</span>
                <span class="p">),</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_pem_private_key</span>
            <span class="p">],</span>
            <span class="p">[</span>
                <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;DER_Serialization&quot;</span><span class="p">,</span> <span class="s2">&quot;testrsa.der&quot;</span><span class="p">),</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">DER</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_der_private_key</span>
            <span class="p">],</span>
        <span class="p">]</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_private_bytes_traditional_openssl_unencrypted</span><span class="p">(</span>
        <span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">,</span> <span class="n">key_path</span><span class="p">,</span> <span class="n">encoding</span><span class="p">,</span> <span class="n">loader_func</span>
    <span class="p">):</span>
        <span class="n">key_bytes</span> <span class="o">=</span> <span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">key_path</span><span class="p">,</span> <span class="k">lambda</span> <span class="n">pemfile</span><span class="p">:</span> <span class="n">pemfile</span><span class="o">.</span><span class="n">read</span><span class="p">(),</span> <span class="n">mode</span><span class="o">=</span><span class="s2">&quot;rb&quot;</span>
        <span class="p">)</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">loader_func</span><span class="p">(</span><span class="n">key_bytes</span><span class="p">,</span> <span class="kc">None</span><span class="p">,</span> <span class="n">backend</span><span class="p">)</span>
        <span class="n">serialized</span> <span class="o">=</span> <span class="n">key</span><span class="o">.</span><span class="n">private_bytes</span><span class="p">(</span>
            <span class="n">encoding</span><span class="p">,</span>
            <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">TraditionalOpenSSL</span><span class="p">,</span>
            <span class="n">serialization</span><span class="o">.</span><span class="n">NoEncryption</span><span class="p">()</span>
        <span class="p">)</span>
        <span class="k">assert</span> <span class="n">serialized</span> <span class="o">==</span> <span class="n">key_bytes</span>

    <span class="k">def</span> <span class="nf">test_private_bytes_traditional_der_encrypted_invalid</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">key</span><span class="o">.</span><span class="n">private_bytes</span><span class="p">(</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">DER</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">TraditionalOpenSSL</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">BestAvailableEncryption</span><span class="p">(</span><span class="sa">b</span><span class="s2">&quot;password&quot;</span><span class="p">)</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_private_bytes_invalid_encoding</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">key</span><span class="o">.</span><span class="n">private_bytes</span><span class="p">(</span>
                <span class="s2">&quot;notencoding&quot;</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">PKCS8</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">NoEncryption</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_private_bytes_invalid_format</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">key</span><span class="o">.</span><span class="n">private_bytes</span><span class="p">(</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
                <span class="s2">&quot;invalidformat&quot;</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">NoEncryption</span><span class="p">()</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_private_bytes_invalid_encryption_algorithm</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">key</span><span class="o">.</span><span class="n">private_bytes</span><span class="p">(</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">TraditionalOpenSSL</span><span class="p">,</span>
                <span class="s2">&quot;notanencalg&quot;</span>
            <span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_private_bytes_unsupported_encryption_type</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">ValueError</span><span class="p">):</span>
            <span class="n">key</span><span class="o">.</span><span class="n">private_bytes</span><span class="p">(</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PrivateFormat</span><span class="o">.</span><span class="n">TraditionalOpenSSL</span><span class="p">,</span>
                <span class="n">DummyKeyEncryption</span><span class="p">()</span>
            <span class="p">)</span>


<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">RSABackend</span><span class="p">)</span>
<span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">requires_backend_interface</span><span class="p">(</span><span class="n">interface</span><span class="o">=</span><span class="n">PEMSerializationBackend</span><span class="p">)</span>
<span class="k">class</span> <span class="nc">TestRSAPEMPublicKeySerialization</span><span class="p">(</span><span class="nb">object</span><span class="p">):</span>
    <span class="nd">@pytest</span><span class="o">.</span><span class="n">mark</span><span class="o">.</span><span class="n">parametrize</span><span class="p">(</span>
        <span class="p">(</span><span class="s2">&quot;key_path&quot;</span><span class="p">,</span> <span class="s2">&quot;loader_func&quot;</span><span class="p">,</span> <span class="s2">&quot;encoding&quot;</span><span class="p">,</span> <span class="s2">&quot;format&quot;</span><span class="p">),</span>
        <span class="p">[</span>
            <span class="p">(</span>
                <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;public&quot;</span><span class="p">,</span> <span class="s2">&quot;PKCS1&quot;</span><span class="p">,</span> <span class="s2">&quot;rsa.pub.pem&quot;</span><span class="p">),</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_pem_public_key</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PublicFormat</span><span class="o">.</span><span class="n">PKCS1</span><span class="p">,</span>
            <span class="p">),</span> <span class="p">(</span>
                <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;public&quot;</span><span class="p">,</span> <span class="s2">&quot;PKCS1&quot;</span><span class="p">,</span> <span class="s2">&quot;rsa.pub.der&quot;</span><span class="p">),</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_der_public_key</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">DER</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PublicFormat</span><span class="o">.</span><span class="n">PKCS1</span><span class="p">,</span>
            <span class="p">),</span> <span class="p">(</span>
                <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span><span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span> <span class="s2">&quot;PKCS8&quot;</span><span class="p">,</span> <span class="s2">&quot;unenc-rsa-pkcs8.pub.pem&quot;</span><span class="p">),</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_pem_public_key</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PublicFormat</span><span class="o">.</span><span class="n">SubjectPublicKeyInfo</span><span class="p">,</span>
            <span class="p">),</span> <span class="p">(</span>
                <span class="n">os</span><span class="o">.</span><span class="n">path</span><span class="o">.</span><span class="n">join</span><span class="p">(</span>
                    <span class="s2">&quot;asymmetric&quot;</span><span class="p">,</span>
                    <span class="s2">&quot;DER_Serialization&quot;</span><span class="p">,</span>
                    <span class="s2">&quot;unenc-rsa-pkcs8.pub.der&quot;</span>
                <span class="p">),</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">load_der_public_key</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">DER</span><span class="p">,</span>
                <span class="n">serialization</span><span class="o">.</span><span class="n">PublicFormat</span><span class="o">.</span><span class="n">SubjectPublicKeyInfo</span><span class="p">,</span>
            <span class="p">)</span>
        <span class="p">]</span>
    <span class="p">)</span>
    <span class="k">def</span> <span class="nf">test_public_bytes_match</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">key_path</span><span class="p">,</span> <span class="n">loader_func</span><span class="p">,</span> <span class="n">encoding</span><span class="p">,</span> <span class="nb">format</span><span class="p">,</span>
                                <span class="n">backend</span><span class="p">):</span>
        <span class="n">key_bytes</span> <span class="o">=</span> <span class="n">load_vectors_from_file</span><span class="p">(</span>
            <span class="n">key_path</span><span class="p">,</span> <span class="k">lambda</span> <span class="n">pemfile</span><span class="p">:</span> <span class="n">pemfile</span><span class="o">.</span><span class="n">read</span><span class="p">(),</span> <span class="n">mode</span><span class="o">=</span><span class="s2">&quot;rb&quot;</span>
        <span class="p">)</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">loader_func</span><span class="p">(</span><span class="n">key_bytes</span><span class="p">,</span> <span class="n">backend</span><span class="p">)</span>
        <span class="n">serialized</span> <span class="o">=</span> <span class="n">key</span><span class="o">.</span><span class="n">public_bytes</span><span class="p">(</span><span class="n">encoding</span><span class="p">,</span> <span class="nb">format</span><span class="p">)</span>
        <span class="k">assert</span> <span class="n">serialized</span> <span class="o">==</span> <span class="n">key_bytes</span>

    <span class="k">def</span> <span class="nf">test_public_bytes_invalid_encoding</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">key</span><span class="o">.</span><span class="n">public_bytes</span><span class="p">(</span><span class="s2">&quot;notencoding&quot;</span><span class="p">,</span> <span class="n">serialization</span><span class="o">.</span><span class="n">PublicFormat</span><span class="o">.</span><span class="n">PKCS1</span><span class="p">)</span>

    <span class="k">def</span> <span class="nf">test_public_bytes_invalid_format</span><span class="p">(</span><span class="bp">self</span><span class="p">,</span> <span class="n">backend</span><span class="p">):</span>
        <span class="n">key</span> <span class="o">=</span> <span class="n">RSA_KEY_2048</span><span class="o">.</span><span class="n">private_key</span><span class="p">(</span><span class="n">backend</span><span class="p">)</span><span class="o">.</span><span class="n">public_key</span><span class="p">()</span>
        <span class="k">with</span> <span class="n">pytest</span><span class="o">.</span><span class="n">raises</span><span class="p">(</span><span class="ne">TypeError</span><span class="p">):</span>
            <span class="n">key</span><span class="o">.</span><span class="n">public_bytes</span><span class="p">(</span><span class="n">serialization</span><span class="o">.</span><span class="n">Encoding</span><span class="o">.</span><span class="n">PEM</span><span class="p">,</span> <span class="s2">&quot;invalidformat&quot;</span><span class="p">)</span>
</pre></div>
</code></pre></td></tr></table>
</div> <!-- class=content -->
<div class='footer'>generated by <a href='https://git.zx2c4.com/cgit/about/'>cgit v1.2.3</a> (<a href='https://git-scm.com/'>git 2.25.1</a>) at 2025-08-15 22:09:06 +0000</div>
</div> <!-- id=cgit -->
</body>
</html>