Add MAX_IM_CA requirement to int_max+1 chain as well

Signed-off-by: Yuto Takano <yuto.takano@arm.com>
2025-03-23 07:15:08 +00:00 · 2021-06-22 06:08:11 +01:00 · 2021-06-22 06:08:11 +01:00 · d448545d2a
parent 05d43f49a1
commit d448545d2a
1 changed files with 20 additions and 0 deletions
--- a/tests/ssl-opt.sh
+++ b/tests/ssl-opt.sh
@ -4353,6 +4353,8 @@ run_test    "Authentication: server max_int chain, client default" \
            0 \
            -C "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 run_test    "Authentication: server max_int+1 chain, client default" \
            "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
@ -4361,6 +4363,8 @@ run_test    "Authentication: server max_int+1 chain, client default" \
            1 \
            -c "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 run_test    "Authentication: server max_int+1 chain, client optional" \
            "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
@ -4370,6 +4374,8 @@ run_test    "Authentication: server max_int+1 chain, client optional" \
            1 \
            -c "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 run_test    "Authentication: server max_int+1 chain, client none" \
            "$P_SRV crt_file=data_files/dir-maxpath/c10.pem \
@ -4379,6 +4385,8 @@ run_test    "Authentication: server max_int+1 chain, client none" \
            0 \
            -C "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 run_test    "Authentication: client max_int+1 chain, server default" \
            "$P_SRV ca_file=data_files/dir-maxpath/00.crt" \
@ -4387,6 +4395,8 @@ run_test    "Authentication: client max_int+1 chain, server default" \
            0 \
            -S "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 run_test    "Authentication: client max_int+1 chain, server optional" \
            "$P_SRV ca_file=data_files/dir-maxpath/00.crt auth_mode=optional" \
@ -4395,6 +4405,8 @@ run_test    "Authentication: client max_int+1 chain, server optional" \
            1 \
            -s "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 run_test    "Authentication: client max_int+1 chain, server required" \
            "$P_SRV ca_file=data_files/dir-maxpath/00.crt auth_mode=required" \
@ -4594,6 +4606,8 @@ run_test    "Authentication, CA callback: server max_int chain, client default"
            -c "use CA callback for X.509 CRT verification" \
            -C "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
 run_test    "Authentication, CA callback: server max_int+1 chain, client default" \
@ -4604,6 +4618,8 @@ run_test    "Authentication, CA callback: server max_int+1 chain, client default
            -c "use CA callback for X.509 CRT verification" \
            -c "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
 run_test    "Authentication, CA callback: server max_int+1 chain, client optional" \
@ -4615,6 +4631,8 @@ run_test    "Authentication, CA callback: server max_int+1 chain, client optiona
            -c "use CA callback for X.509 CRT verification" \
            -c "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
 run_test    "Authentication, CA callback: client max_int+1 chain, server optional" \
@ -4625,6 +4643,8 @@ run_test    "Authentication, CA callback: client max_int+1 chain, server optiona
            -s "use CA callback for X.509 CRT verification" \
            -s "X509 - A fatal error occurred"
 requires_config_value_at_least "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_config_value_at_most "MBEDTLS_X509_MAX_INTERMEDIATE_CA" $MAX_IM_CA
 requires_full_size_output_buffer
 requires_config_enabled MBEDTLS_X509_TRUSTED_CERTIFICATE_CALLBACK
 run_test    "Authentication, CA callback: client max_int+1 chain, server required" \