commit 525f713629a181e7dbaf3e8a84fc4373dbaeb4e4
author Christopher Grebs <cg@webshox.org> Fri Sep 04 23:46:40 2015 +0200
committer Paul Kehrer <paul.l.kehrer@gmail.com> Sun Dec 27 22:53:23 2015 -0600
tree 396b3fc0e01b998e6bd277ee56072167595e1439
parent 6b22d6663dcba1a08a3662d9d0205005be6bcd86

Add simple test that would fail on decryption

tests/hazmat/backends/test_openssl.py

diff --git a/tests/hazmat/backends/test_openssl.py b/tests/hazmat/backends/test_openssl.py
index ad2daf7..98023e9 100644
--- a/tests/hazmat/backends/test_openssl.py
+++ b/tests/hazmat/backends/test_openssl.py
@@ -456,6 +456,29 @@
                 )
             )
 
+    def test_supported_oaep_decrypt(self):
+        private_key = RSA_KEY_512.private_key(backend)
+
+        ciphertext = private_key.public_key().encrypt(
+            b'secure data',
+            padding.OAEP(
+                mgf=padding.MGF1(algorithm=hashes.SHA1()),
+                algorithm=hashes.SHA1(),
+                label=None
+            )
+        )
+
+        decrypted = private_key.decrypt(
+            ciphertext,
+            padding.OAEP(
+                mgf=padding.MGF1(algorithm=hashes.SHA1()),
+                algorithm=hashes.SHA1(),
+                label=None
+            )
+        )
+
+        assert decrypted == b'secure data'
+
 
 @pytest.mark.skipif(
     backend._lib.OPENSSL_VERSION_NUMBER <= 0x10001000,