mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-01-22 10:50:59 +00:00
Merge remote-tracking branch 'origin/pr/2531' into development
Ensure tests pass when the submodule is used by updating the list of crypto tests to include test_suite_oid in both tests/CMakeLists.txt and tests/Makefile. * origin/pr/2531: Add changeLog entry Add certificate policy of type any policy id
This commit is contained in:
commit
c73fde725b
|
@ -2,6 +2,10 @@ mbed TLS ChangeLog (Sorted per branch, date)
|
||||||
|
|
||||||
= mbed TLS x.x.x branch released xxxx-xx-xx
|
= mbed TLS x.x.x branch released xxxx-xx-xx
|
||||||
|
|
||||||
|
Features
|
||||||
|
* Add the Any Policy certificate policy oid, as defined in
|
||||||
|
rfc 5280 section 4.2.1.4.
|
||||||
|
|
||||||
Bugfix
|
Bugfix
|
||||||
* Fix private key DER output in the key_app_writer example. File contents
|
* Fix private key DER output in the key_app_writer example. File contents
|
||||||
were shifted by one byte, creating an invalid ASN.1 tag. Fixed by
|
were shifted by one byte, creating an invalid ASN.1 tag. Fixed by
|
||||||
|
|
|
@ -167,6 +167,11 @@
|
||||||
#define MBEDTLS_OID_INIHIBIT_ANYPOLICY MBEDTLS_OID_ID_CE "\x36" /**< id-ce-inhibitAnyPolicy OBJECT IDENTIFIER ::= { id-ce 54 } */
|
#define MBEDTLS_OID_INIHIBIT_ANYPOLICY MBEDTLS_OID_ID_CE "\x36" /**< id-ce-inhibitAnyPolicy OBJECT IDENTIFIER ::= { id-ce 54 } */
|
||||||
#define MBEDTLS_OID_FRESHEST_CRL MBEDTLS_OID_ID_CE "\x2E" /**< id-ce-freshestCRL OBJECT IDENTIFIER ::= { id-ce 46 } */
|
#define MBEDTLS_OID_FRESHEST_CRL MBEDTLS_OID_ID_CE "\x2E" /**< id-ce-freshestCRL OBJECT IDENTIFIER ::= { id-ce 46 } */
|
||||||
|
|
||||||
|
/*
|
||||||
|
* Certificate policies
|
||||||
|
*/
|
||||||
|
#define MBEDTLS_OID_ANY_POLICY MBEDTLS_OID_CERTIFICATE_POLICIES "\x00" /**< anyPolicy OBJECT IDENTIFIER ::= { id-ce-certificatePolicies 0 } */
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* Netscape certificate extensions
|
* Netscape certificate extensions
|
||||||
*/
|
*/
|
||||||
|
@ -576,6 +581,16 @@ int mbedtls_oid_get_md_hmac( const mbedtls_asn1_buf *oid, mbedtls_md_type_t *md_
|
||||||
*/
|
*/
|
||||||
int mbedtls_oid_get_extended_key_usage( const mbedtls_asn1_buf *oid, const char **desc );
|
int mbedtls_oid_get_extended_key_usage( const mbedtls_asn1_buf *oid, const char **desc );
|
||||||
|
|
||||||
|
/**
|
||||||
|
* \brief Translate certificate policies OID into description
|
||||||
|
*
|
||||||
|
* \param oid OID to use
|
||||||
|
* \param desc place to store string pointer
|
||||||
|
*
|
||||||
|
* \return 0 if successful, or MBEDTLS_ERR_OID_NOT_FOUND
|
||||||
|
*/
|
||||||
|
int mbedtls_oid_get_certificate_policies( const mbedtls_asn1_buf *oid, const char **desc );
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* \brief Translate md_type into hash algorithm OID
|
* \brief Translate md_type into hash algorithm OID
|
||||||
*
|
*
|
||||||
|
|
|
@ -296,6 +296,15 @@ static const mbedtls_oid_descriptor_t oid_ext_key_usage[] =
|
||||||
FN_OID_TYPED_FROM_ASN1(mbedtls_oid_descriptor_t, ext_key_usage, oid_ext_key_usage)
|
FN_OID_TYPED_FROM_ASN1(mbedtls_oid_descriptor_t, ext_key_usage, oid_ext_key_usage)
|
||||||
FN_OID_GET_ATTR1(mbedtls_oid_get_extended_key_usage, mbedtls_oid_descriptor_t, ext_key_usage, const char *, description)
|
FN_OID_GET_ATTR1(mbedtls_oid_get_extended_key_usage, mbedtls_oid_descriptor_t, ext_key_usage, const char *, description)
|
||||||
|
|
||||||
|
static const mbedtls_oid_descriptor_t oid_certificate_policies[] =
|
||||||
|
{
|
||||||
|
{ ADD_LEN( MBEDTLS_OID_ANY_POLICY ), "anyPolicy", "Any Policy" },
|
||||||
|
{ NULL, 0, NULL, NULL },
|
||||||
|
};
|
||||||
|
|
||||||
|
FN_OID_TYPED_FROM_ASN1(mbedtls_oid_descriptor_t, certificate_policies, oid_certificate_policies)
|
||||||
|
FN_OID_GET_ATTR1(mbedtls_oid_get_certificate_policies, mbedtls_oid_descriptor_t, certificate_policies, const char *, description)
|
||||||
|
|
||||||
#if defined(MBEDTLS_MD_C)
|
#if defined(MBEDTLS_MD_C)
|
||||||
/*
|
/*
|
||||||
* For SignatureAlgorithmIdentifier
|
* For SignatureAlgorithmIdentifier
|
||||||
|
|
|
@ -116,6 +116,7 @@ if(NOT USE_CRYPTO_SUBMODULE)
|
||||||
add_test_suite(memory_buffer_alloc)
|
add_test_suite(memory_buffer_alloc)
|
||||||
add_test_suite(mpi)
|
add_test_suite(mpi)
|
||||||
add_test_suite(nist_kw)
|
add_test_suite(nist_kw)
|
||||||
|
add_test_suite(oid)
|
||||||
add_test_suite(pem)
|
add_test_suite(pem)
|
||||||
add_test_suite(pkcs1_v15)
|
add_test_suite(pkcs1_v15)
|
||||||
add_test_suite(pkcs1_v21)
|
add_test_suite(pkcs1_v21)
|
||||||
|
|
|
@ -97,6 +97,7 @@ APPS := $(filter-out \
|
||||||
test_suite_memory_buffer_alloc \
|
test_suite_memory_buffer_alloc \
|
||||||
test_suite_mpi \
|
test_suite_mpi \
|
||||||
test_suite_nist_kw \
|
test_suite_nist_kw \
|
||||||
|
test_suite_oid \
|
||||||
test_suite_pem \
|
test_suite_pem \
|
||||||
test_suite_pk \
|
test_suite_pk \
|
||||||
test_suite_pkcs1_v15 \
|
test_suite_pkcs1_v15 \
|
||||||
|
|
8
tests/suites/test_suite_oid.data
Normal file
8
tests/suites/test_suite_oid.data
Normal file
|
@ -0,0 +1,8 @@
|
||||||
|
OID get Any Policy certificate policy
|
||||||
|
oid_get_certificate_policies:"551D2000":"Any Policy"
|
||||||
|
|
||||||
|
OID get certificate policy invalid oid
|
||||||
|
oid_get_certificate_policies:"5533445566":""
|
||||||
|
|
||||||
|
OID get certificate policy wrong oid - id-ce-authorityKeyIdentifier
|
||||||
|
oid_get_certificate_policies:"551D23":""
|
34
tests/suites/test_suite_oid.function
Normal file
34
tests/suites/test_suite_oid.function
Normal file
|
@ -0,0 +1,34 @@
|
||||||
|
/* BEGIN_HEADER */
|
||||||
|
#include "mbedtls/oid.h"
|
||||||
|
#include "mbedtls/asn1.h"
|
||||||
|
#include "mbedtls/asn1write.h"
|
||||||
|
#include "string.h"
|
||||||
|
/* END_HEADER */
|
||||||
|
|
||||||
|
/* BEGIN_DEPENDENCIES
|
||||||
|
* depends_on:MBEDTLS_OID_C
|
||||||
|
* END_DEPENDENCIES
|
||||||
|
*/
|
||||||
|
|
||||||
|
/* BEGIN_CASE depends_on:MBEDTLS_ASN1_WRITE_C*/
|
||||||
|
void oid_get_certificate_policies( data_t * oid, char * result_str )
|
||||||
|
{
|
||||||
|
mbedtls_asn1_buf asn1_buf = { 0, 0, NULL };
|
||||||
|
int ret;
|
||||||
|
const char *desc;
|
||||||
|
|
||||||
|
asn1_buf.tag = MBEDTLS_ASN1_OID;
|
||||||
|
asn1_buf.p = oid->x;
|
||||||
|
asn1_buf.len = oid->len;
|
||||||
|
|
||||||
|
ret = mbedtls_oid_get_certificate_policies( &asn1_buf, &desc );
|
||||||
|
if( strlen( result_str ) == 0 )
|
||||||
|
{
|
||||||
|
TEST_ASSERT( ret == MBEDTLS_ERR_OID_NOT_FOUND );
|
||||||
|
}
|
||||||
|
else
|
||||||
|
{
|
||||||
|
TEST_ASSERT( strcmp( ( char* )desc, result_str ) == 0 );
|
||||||
|
}
|
||||||
|
}
|
||||||
|
/* END_CASE */
|
Loading…
Reference in a new issue