e2e_tests/wrong_permitted_algorithm: Change used sha for hw compatibility

TPM 2.0 specifies in
https://trustedcomputinggroup.org/wp-content/uploads/PC-Client-Specific-Platform-TPM-Profile-for-TPM-2p0-v1p05p_r14_pub.pdf#%5B%7B%22num%22%3A82%2C%22gen%22%3A0%7D%2C%7B%22name%22%3A%22XYZ%22%7D%2C33%2C375%2C0%5D
"A conformant TPM SHALL support SHA-384 (0x000C) and SHA-256 (0x000B)"

 * Use this SHAs for testing.
 * Update the Cargo.lock file to guarantee compilation of tests with MSRV.

Signed-off-by: Tomas Gonzalez Orlando <[email protected]>

Author: tgonzalezorlandoarm

e2e_tests/Cargo.lock

@@ -522,6 +522,17 @@ impl TestClient {
         )
     }
 
+    /// Signs a short digest with an RSA key.
+    pub fn sign_with_rsa_sha384(&mut self, key_name: String, hash: Vec<u8>) -> Result<Vec<u8>> {
+        self.sign(
+            key_name,
+            AsymmetricSignature::RsaPkcs1v15Sign {
+                hash_alg: Hash::Sha384.into(),
+            },
+            hash,
+        )
+    }
+
     /// Signs a short digest with an ECDSA key.
     pub fn sign_with_ecdsa_sha256(&mut self, key_name: String, hash: Vec<u8>) -> Result<Vec<u8>> {
         self.sign(

e2e_tests/src/lib.rs

@@ -134,7 +134,7 @@ fn wrong_permitted_algorithm() {
     // Do not permit RSA PKCS 1v15 signing algorithm with SHA-256.
     let permitted_algorithm =
         Algorithm::AsymmetricSignature(AsymmetricSignature::RsaPkcs1v15Sign {
-            hash_alg: Hash::Sha512.into(),
+            hash_alg: Hash::Sha256.into(),
         });
     let mut usage_flags: UsageFlags = Default::default();
     let _ = usage_flags.set_sign_hash();
@@ -159,7 +159,7 @@ fn wrong_permitted_algorithm() {
         .unwrap();
 
     let status = client
-        .sign_with_rsa_sha256(key_name, vec![0xDE; 32])
+        .sign_with_rsa_sha384(key_name, vec![0xDE; 32])
         .unwrap_err();
 
     assert_eq!(status, ResponseStatus::PsaErrorNotPermitted);