yuzu/mbedtls
1
0
Fork 0
mirror of https://github.com/yuzu-emu/mbedtls.git synced 2024-10-18 18:21:07 +00:00
Code Issues Packages Projects Releases Wiki Activity
mbedtls/tests/suites/test_suite_x509parse.function

348 lines
7.5 KiB
Plaintext
Raw Normal View History

- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
BEGIN_HEADER
#include <polarssl/x509.h>
- Parsing of PEM files moved to separate module (Fixes ticket #13). Also possible to remove PEM support for systems only using DER encoding - Parsing PEM private keys encrypted with DES and AES are now supported (Fixes ticket #5) - Added tests for encrypted keyfiles
2011-02-12 14:30:57 +00:00
#include <polarssl/pem.h>
OID functionality moved to a separate module. A new OID module has been created that contains the main OID searching functionality based on type-dependent arrays. A base type is used to contain the basic values (oid_descriptor_t) and that type is extended to contain type specific information (like a pk_alg_t). As a result the rsa sign and verify function prototypes have changed. They now expect a md_type_t identifier instead of the removed RSA_SIG_XXX defines. All OID definitions have been moved to oid.h All OID matching code is in the OID module. The RSA PKCS#1 functions cleaned up as a result and adapted to use the MD layer. The SSL layer cleanup up as a result and adapted to use the MD layer. The X509 parser cleaned up and matches OIDs in certificates with new module and adapted to use the MD layer. The X509 writer cleaned up and adapted to use the MD layer. Apps and tests modified accordingly
2013-04-07 20:00:46 +00:00
#include <polarssl/oid.h>
- Added verification callback in certificate verification chain in order to allow external blacklisting
2011-01-13 17:54:59 +00:00
- Revamped x509_verify() and the SSL f_vrfy callback implementations
2012-09-28 07:10:55 +00:00
int verify_none( void *data, x509_cert *crt, int certificate_depth, int *flags )
- Added verification callback in certificate verification chain in order to allow external blacklisting
2011-01-13 17:54:59 +00:00
{
- Fixed compiler warnings
2011-01-18 16:31:52 +00:00
((void) data);
((void) crt);
((void) certificate_depth);
- Revamped x509_verify() and the SSL f_vrfy callback implementations
2012-09-28 07:10:55 +00:00
*flags |= BADCERT_OTHER;
return 0;
- Added verification callback in certificate verification chain in order to allow external blacklisting
2011-01-13 17:54:59 +00:00
}
- Revamped x509_verify() and the SSL f_vrfy callback implementations
2012-09-28 07:10:55 +00:00
int verify_all( void *data, x509_cert *crt, int certificate_depth, int *flags )
- Added verification callback in certificate verification chain in order to allow external blacklisting
2011-01-13 17:54:59 +00:00
{
- Fixed compiler warnings
2011-01-18 16:31:52 +00:00
((void) data);
((void) crt);
((void) certificate_depth);
- Revamped x509_verify() and the SSL f_vrfy callback implementations
2012-09-28 07:10:55 +00:00
*flags = 0;
- Fixed compiler warnings
2011-01-18 16:31:52 +00:00
- Added verification callback in certificate verification chain in order to allow external blacklisting
2011-01-13 17:54:59 +00:00
return 0;
}
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
END_HEADER
- Fixed a whole bunch of dependencies on defines between files, examples and tests
2011-05-26 13:16:06 +00:00
BEGIN_DEPENDENCIES
depends_on:POLARSSL_X509_PARSE_C:POLARSSL_BIGNUM_C
END_DEPENDENCIES
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
BEGIN_CASE
x509_cert_info:crt_file:result_str
{
x509_cert crt;
char buf[2000];
- Made code compliant with ISO99 (no-declaration-after-statement)
2009-07-11 19:15:20 +00:00
int res;
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
memset( &crt, 0, sizeof( x509_cert ) );
memset( buf, 0, 2000 );
- Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. - As a consequence all error code that were positive were changed. A lot of MALLOC_FAILED and FILE_IO_ERROR error codes added for different modules. - Programs and tests were adapted accordingly
2011-12-10 21:55:01 +00:00
TEST_ASSERT( x509parse_crtfile( &crt, {crt_file} ) == 0 );
- Made code compliant with ISO99 (no-declaration-after-statement)
2009-07-11 19:15:20 +00:00
res = x509parse_cert_info( buf, 2000, "", &crt );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
x509_free( &crt );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
TEST_ASSERT( res != -1 );
TEST_ASSERT( res != -2 );
TEST_ASSERT( strcmp( buf, {result_str} ) == 0 );
}
END_CASE
BEGIN_CASE
x509_crl_info:crl_file:result_str
{
x509_crl crl;
char buf[2000];
- Made code compliant with ISO99 (no-declaration-after-statement)
2009-07-11 19:15:20 +00:00
int res;
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
memset( &crl, 0, sizeof( x509_crl ) );
memset( buf, 0, 2000 );
TEST_ASSERT( x509parse_crlfile( &crl, {crl_file} ) == 0 );
- Made code compliant with ISO99 (no-declaration-after-statement)
2009-07-11 19:15:20 +00:00
res = x509parse_crl_info( buf, 2000, "", &crl );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
x509_crl_free( &crl );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
TEST_ASSERT( res != -1 );
TEST_ASSERT( res != -2 );
TEST_ASSERT( strcmp( buf, {result_str} ) == 0 );
}
END_CASE
BEGIN_CASE
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
x509_verify:crt_file:ca_file:crl_file:cn_name_str:#result:#flags_result:verify_callback
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
{
x509_cert crt;
x509_cert ca;
x509_crl crl;
int flags = 0;
- Made code compliant with ISO99 (no-declaration-after-statement)
2009-07-11 19:15:20 +00:00
int res;
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
int (*f_vrfy)(void *, x509_cert *, int, int *) = NULL;
char * cn_name = NULL;
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
memset( &crt, 0, sizeof( x509_cert ) );
memset( &ca, 0, sizeof( x509_cert ) );
memset( &crl, 0, sizeof( x509_crl ) );
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
if( strcmp( {cn_name_str}, "NULL" ) != 0 )
cn_name = {cn_name_str};
if( strcmp( {verify_callback}, "NULL" ) == 0 )
f_vrfy = NULL;
else if( strcmp( {verify_callback}, "verify_none" ) == 0 )
f_vrfy = verify_none;
else if( strcmp( {verify_callback}, "verify_all" ) == 0 )
f_vrfy = verify_all;
else
TEST_ASSERT( "No known verify callback selected" == 0 );
- Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. - As a consequence all error code that were positive were changed. A lot of MALLOC_FAILED and FILE_IO_ERROR error codes added for different modules. - Programs and tests were adapted accordingly
2011-12-10 21:55:01 +00:00
TEST_ASSERT( x509parse_crtfile( &crt, {crt_file} ) == 0 );
TEST_ASSERT( x509parse_crtfile( &ca, {ca_file} ) == 0 );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
TEST_ASSERT( x509parse_crlfile( &crl, {crl_file} ) == 0 );
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
res = x509parse_verify( &crt, &ca, &crl, cn_name, &flags, f_vrfy, NULL );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
x509_free( &crt );
x509_free( &ca );
x509_crl_free( &crl );
- Added verification callback in certificate verification chain in order to allow external blacklisting
2011-01-13 17:54:59 +00:00
TEST_ASSERT( res == ( {result} ) );
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
TEST_ASSERT( flags == ( {flags_result} ) );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
}
END_CASE
BEGIN_CASE
x509_dn_gets:crt_file:entity:result_str
{
x509_cert crt;
char buf[2000];
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
int res = 0;
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
memset( &crt, 0, sizeof( x509_cert ) );
memset( buf, 0, 2000 );
- Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. - As a consequence all error code that were positive were changed. A lot of MALLOC_FAILED and FILE_IO_ERROR error codes added for different modules. - Programs and tests were adapted accordingly
2011-12-10 21:55:01 +00:00
TEST_ASSERT( x509parse_crtfile( &crt, {crt_file} ) == 0 );
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
if( strcmp( {entity}, "subject" ) == 0 )
res = x509parse_dn_gets( buf, 2000, &crt.subject );
else if( strcmp( {entity}, "issuer" ) == 0 )
res = x509parse_dn_gets( buf, 2000, &crt.issuer );
else
TEST_ASSERT( "Unknown entity" == 0 );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
x509_free( &crt );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
TEST_ASSERT( res != -1 );
TEST_ASSERT( res != -2 );
TEST_ASSERT( strcmp( buf, {result_str} ) == 0 );
}
END_CASE
BEGIN_CASE
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
x509_time_expired:crt_file:entity:#result
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
{
x509_cert crt;
memset( &crt, 0, sizeof( x509_cert ) );
- Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. - As a consequence all error code that were positive were changed. A lot of MALLOC_FAILED and FILE_IO_ERROR error codes added for different modules. - Programs and tests were adapted accordingly
2011-12-10 21:55:01 +00:00
TEST_ASSERT( x509parse_crtfile( &crt, {crt_file} ) == 0 );
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
if( strcmp( {entity}, "valid_from" ) == 0 )
TEST_ASSERT( x509parse_time_expired( &crt.valid_from ) == {result} );
else if( strcmp( {entity}, "valid_to" ) == 0 )
TEST_ASSERT( x509parse_time_expired( &crt.valid_to ) == {result} );
else
TEST_ASSERT( "Unknown entity" == 0 );
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
x509_free( &crt );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
}
END_CASE
BEGIN_CASE
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
x509parse_keyfile_rsa:key_file:password:#result
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
{
rsa_context rsa;
- Made code compliant with ISO99 (no-declaration-after-statement)
2009-07-11 19:15:20 +00:00
int res;
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
char *pwd = {password};
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
memset( &rsa, 0, sizeof( rsa_context ) );
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
if( strcmp( pwd, "NULL" ) == 0 )
pwd = NULL;
res = x509parse_keyfile_rsa( &rsa, {key_file}, pwd );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
TEST_ASSERT( res == {result} );
if( res == 0 )
{
TEST_ASSERT( rsa_check_privkey( &rsa ) == 0 );
}
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
rsa_free( &rsa );
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
}
END_CASE
- Added test for PKCS#8 wrapped private and public keys
2011-07-13 11:32:29 +00:00
BEGIN_CASE
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
x509parse_public_keyfile_rsa:key_file:#result
- Added test for PKCS#8 wrapped private and public keys
2011-07-13 11:32:29 +00:00
{
rsa_context rsa;
int res;
memset( &rsa, 0, sizeof( rsa_context ) );
Rename x509parse_key & co with _rsa suffix
2013-06-27 08:51:01 +00:00
res = x509parse_public_keyfile_rsa( &rsa, {key_file} );
- Added test for PKCS#8 wrapped private and public keys
2011-07-13 11:32:29 +00:00
TEST_ASSERT( res == {result} );
if( res == 0 )
{
TEST_ASSERT( rsa_check_pubkey( &rsa ) == 0 );
}
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
rsa_free( &rsa );
- Added test for PKCS#8 wrapped private and public keys
2011-07-13 11:32:29 +00:00
}
END_CASE
Add test for x509parse_public_keyfile_ec
2013-06-27 13:33:04 +00:00
BEGIN_CASE
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
x509parse_public_keyfile_ec:key_file:#result
Add test for x509parse_public_keyfile_ec
2013-06-27 13:33:04 +00:00
{
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
pk_context ctx;
Add test for x509parse_public_keyfile_ec
2013-06-27 13:33:04 +00:00
int res;
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
pk_init( &ctx );
Add test for x509parse_public_keyfile_ec
2013-06-27 13:33:04 +00:00
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
res = x509parse_public_keyfile( &ctx, {key_file} );
Add test for x509parse_public_keyfile_ec
2013-06-27 13:33:04 +00:00
TEST_ASSERT( res == {result} );
if( res == 0 )
{
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
ecp_keypair *eckey;
TEST_ASSERT( ctx.type == POLARSSL_PK_ECKEY );
eckey = (ecp_keypair *) ctx.data;
TEST_ASSERT( ecp_check_pubkey( &eckey->grp, &eckey->Q ) == 0 );
Add test for x509parse_public_keyfile_ec
2013-06-27 13:33:04 +00:00
}
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
pk_free( &ctx );
Add test for x509parse_public_keyfile_ec
2013-06-27 13:33:04 +00:00
}
END_CASE
Add tests for x509parse_key_ec() Test files were generated as follows: openssl ecparam -name prime192v1 -genkey > key.pem openssl ec -in key.pem -pubout -outform PEM > pub.pem openssl ec -in key.pem -pubout -outform DER > pub.der openssl ec -in key.pem -outform pem > prv.sec1.pem openssl ec -in key.pem -outform der > prv.sec1.der openssl ec -in key.pem -des -passout pass:polar -outform pem > prv.sec1.pw.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform pem > prv.pk8.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform der > prv.pk8.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform der \ > prv.pk8.pw.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform pem \ > prv.pk8.pw.pem
2013-07-03 10:13:56 +00:00
BEGIN_CASE
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
x509parse_keyfile_ec:key_file:password:#result
Add tests for x509parse_key_ec() Test files were generated as follows: openssl ecparam -name prime192v1 -genkey > key.pem openssl ec -in key.pem -pubout -outform PEM > pub.pem openssl ec -in key.pem -pubout -outform DER > pub.der openssl ec -in key.pem -outform pem > prv.sec1.pem openssl ec -in key.pem -outform der > prv.sec1.der openssl ec -in key.pem -des -passout pass:polar -outform pem > prv.sec1.pw.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform pem > prv.pk8.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform der > prv.pk8.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform der \ > prv.pk8.pw.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform pem \ > prv.pk8.pw.pem
2013-07-03 10:13:56 +00:00
{
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
pk_context ctx;
Add tests for x509parse_key_ec() Test files were generated as follows: openssl ecparam -name prime192v1 -genkey > key.pem openssl ec -in key.pem -pubout -outform PEM > pub.pem openssl ec -in key.pem -pubout -outform DER > pub.der openssl ec -in key.pem -outform pem > prv.sec1.pem openssl ec -in key.pem -outform der > prv.sec1.der openssl ec -in key.pem -des -passout pass:polar -outform pem > prv.sec1.pw.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform pem > prv.pk8.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform der > prv.pk8.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform der \ > prv.pk8.pw.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform pem \ > prv.pk8.pw.pem
2013-07-03 10:13:56 +00:00
int res;
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
pk_init( &ctx );
Add tests for x509parse_key_ec() Test files were generated as follows: openssl ecparam -name prime192v1 -genkey > key.pem openssl ec -in key.pem -pubout -outform PEM > pub.pem openssl ec -in key.pem -pubout -outform DER > pub.der openssl ec -in key.pem -outform pem > prv.sec1.pem openssl ec -in key.pem -outform der > prv.sec1.der openssl ec -in key.pem -des -passout pass:polar -outform pem > prv.sec1.pw.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform pem > prv.pk8.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform der > prv.pk8.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform der \ > prv.pk8.pw.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform pem \ > prv.pk8.pw.pem
2013-07-03 10:13:56 +00:00
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
res = x509parse_keyfile( &ctx, {key_file}, {password} );
Add tests for x509parse_key_ec() Test files were generated as follows: openssl ecparam -name prime192v1 -genkey > key.pem openssl ec -in key.pem -pubout -outform PEM > pub.pem openssl ec -in key.pem -pubout -outform DER > pub.der openssl ec -in key.pem -outform pem > prv.sec1.pem openssl ec -in key.pem -outform der > prv.sec1.der openssl ec -in key.pem -des -passout pass:polar -outform pem > prv.sec1.pw.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform pem > prv.pk8.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform der > prv.pk8.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform der \ > prv.pk8.pw.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform pem \ > prv.pk8.pw.pem
2013-07-03 10:13:56 +00:00
TEST_ASSERT( res == {result} );
if( res == 0 )
{
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
ecp_keypair *eckey;
TEST_ASSERT( ctx.type == POLARSSL_PK_ECKEY );
eckey = (ecp_keypair *) ctx.data;
Rename ecp_check_prvkey with a 'i' for consistency
2013-07-09 14:05:52 +00:00
TEST_ASSERT( ecp_check_privkey( &eckey->grp, &eckey->d ) == 0 );
Add tests for x509parse_key_ec() Test files were generated as follows: openssl ecparam -name prime192v1 -genkey > key.pem openssl ec -in key.pem -pubout -outform PEM > pub.pem openssl ec -in key.pem -pubout -outform DER > pub.der openssl ec -in key.pem -outform pem > prv.sec1.pem openssl ec -in key.pem -outform der > prv.sec1.der openssl ec -in key.pem -des -passout pass:polar -outform pem > prv.sec1.pw.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform pem > prv.pk8.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform der > prv.pk8.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform der \ > prv.pk8.pw.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform pem \ > prv.pk8.pw.pem
2013-07-03 10:13:56 +00:00
}
Add x509parse_{,public}_key{,file}() Also make previously public *_ec functions private.
2013-07-04 12:09:57 +00:00
pk_free( &ctx );
Add tests for x509parse_key_ec() Test files were generated as follows: openssl ecparam -name prime192v1 -genkey > key.pem openssl ec -in key.pem -pubout -outform PEM > pub.pem openssl ec -in key.pem -pubout -outform DER > pub.der openssl ec -in key.pem -outform pem > prv.sec1.pem openssl ec -in key.pem -outform der > prv.sec1.der openssl ec -in key.pem -des -passout pass:polar -outform pem > prv.sec1.pw.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform pem > prv.pk8.pem openssl pkcs8 -topk8 -in key.pem -nocrypt -outform der > prv.pk8.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform der \ > prv.pk8.pw.der openssl pkcs8 -topk8 -in key.pem -passout pass:polar -outform pem \ > prv.pk8.pw.pem
2013-07-03 10:13:56 +00:00
}
END_CASE
- Added a lot of ASN1 Certificate parsing tests
2009-07-19 19:36:15 +00:00
BEGIN_CASE
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
x509parse_crt:crt_data:result_str:#result
- Added a lot of ASN1 Certificate parsing tests
2009-07-19 19:36:15 +00:00
{
x509_cert crt;
unsigned char buf[2000];
unsigned char output[2000];
int data_len, res;
memset( &crt, 0, sizeof( x509_cert ) );
memset( buf, 0, 2000 );
memset( output, 0, 2000 );
data_len = unhexify( buf, {crt_data} );
- Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. - As a consequence all error code that were positive were changed. A lot of MALLOC_FAILED and FILE_IO_ERROR error codes added for different modules. - Programs and tests were adapted accordingly
2011-12-10 21:55:01 +00:00
TEST_ASSERT( x509parse_crt( &crt, buf, data_len ) == ( {result} ) );
- Added a lot of ASN1 Certificate parsing tests
2009-07-19 19:36:15 +00:00
if( ( {result} ) == 0 )
{
res = x509parse_cert_info( (char *) output, 2000, "", &crt );
TEST_ASSERT( res != -1 );
TEST_ASSERT( res != -2 );
TEST_ASSERT( strcmp( (char *) output, {result_str} ) == 0 );
}
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
x509_free( &crt );
- Added a lot of ASN1 Certificate parsing tests
2009-07-19 19:36:15 +00:00
}
END_CASE
- Added extra regression and coverage tests for ASN parsing of CRL and Key data
2009-07-20 20:35:41 +00:00
BEGIN_CASE
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
x509parse_crl:crl_data:result_str:#result
- Added extra regression and coverage tests for ASN parsing of CRL and Key data
2009-07-20 20:35:41 +00:00
{
x509_crl crl;
unsigned char buf[2000];
unsigned char output[2000];
int data_len, res;
memset( &crl, 0, sizeof( x509_crl ) );
memset( buf, 0, 2000 );
memset( output, 0, 2000 );
data_len = unhexify( buf, {crl_data} );
TEST_ASSERT( x509parse_crl( &crl, buf, data_len ) == ( {result} ) );
if( ( {result} ) == 0 )
{
res = x509parse_crl_info( (char *) output, 2000, "", &crl );
TEST_ASSERT( res != -1 );
TEST_ASSERT( res != -2 );
TEST_ASSERT( strcmp( (char *) output, {result_str} ) == 0 );
}
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
x509_crl_free( &crl );
- Added extra regression and coverage tests for ASN parsing of CRL and Key data
2009-07-20 20:35:41 +00:00
}
END_CASE
BEGIN_CASE
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
x509parse_key_rsa:key_data:result_str:#result
- Added extra regression and coverage tests for ASN parsing of CRL and Key data
2009-07-20 20:35:41 +00:00
{
rsa_context rsa;
unsigned char buf[2000];
unsigned char output[2000];
- Removed unused but initialized variables
2011-07-13 14:21:52 +00:00
int data_len;
Adapted .function files and .data files to new test framework Changes include: - Integers marked with '#' in the .function files. - Strings should have "" in .data files. - String comparison instead of preprocessor-like replace for e.g. '==' - Params and variables cannot have the same name in .function files
2013-08-16 11:38:47 +00:00
((void) result_str);
- Added extra regression and coverage tests for ASN parsing of CRL and Key data
2009-07-20 20:35:41 +00:00
memset( &rsa, 0, sizeof( rsa_context ) );
memset( buf, 0, 2000 );
memset( output, 0, 2000 );
data_len = unhexify( buf, {key_data} );
Rename x509parse_key & co with _rsa suffix
2013-06-27 08:51:01 +00:00
TEST_ASSERT( x509parse_key_rsa( &rsa, buf, data_len, NULL, 0 ) == ( {result} ) );
- Added extra regression and coverage tests for ASN parsing of CRL and Key data
2009-07-20 20:35:41 +00:00
if( ( {result} ) == 0 )
{
TEST_ASSERT( 1 );
}
- Removed test memory leaks
2012-02-11 18:43:20 +00:00
rsa_free( &rsa );
- Added extra regression and coverage tests for ASN parsing of CRL and Key data
2009-07-20 20:35:41 +00:00
}
END_CASE
- Added test coverage for X509parse - Fixed segfault in rsa_check_privkey() and rsa_check_pubkey() and added test
2009-07-10 22:38:58 +00:00
BEGIN_CASE
x509_selftest:
{
TEST_ASSERT( x509_self_test( 0 ) == 0 );
}
END_CASE
Reference in a new issue Copy permalink