- First tests for x509_write_cert_req() compat with OpenSSL output

2026-01-06 06:28:56 +01:00 · 2012-02-16 14:09:13 +00:00 · 2012-02-16 14:09:13 +00:00 · 6d6205091b
commit 6d6205091b
parent 3cac5e012b
12 changed files with 237 additions and 2 deletions
--- a/tests/suites/test_suite_x509write.data
+++ b/tests/suites/test_suite_x509write.data
@ -0,0 +1,27 @@
+Certificate Request check Server1 SHA1
+depends_on:POLARSSL_SHA1_C
+x509_cert_req_check:"data_files/server1.key":SIG_RSA_SHA1:"data_files/server1.req.sha1"
+
+Certificate Request check Server1 SHA224
+depends_on:POLARSSL_SHA2_C
+x509_cert_req_check:"data_files/server1.key":SIG_RSA_SHA224:"data_files/server1.req.sha224"
+
+Certificate Request check Server1 SHA256
+depends_on:POLARSSL_SHA2_C
+x509_cert_req_check:"data_files/server1.key":SIG_RSA_SHA256:"data_files/server1.req.sha256"
+
+Certificate Request check Server1 SHA384
+depends_on:POLARSSL_SHA4_C
+x509_cert_req_check:"data_files/server1.key":SIG_RSA_SHA384:"data_files/server1.req.sha384"
+
+Certificate Request check Server1 SHA512
+depends_on:POLARSSL_SHA4_C
+x509_cert_req_check:"data_files/server1.key":SIG_RSA_SHA512:"data_files/server1.req.sha512"
+
+Certificate Request check Server1 MD4
+depends_on:POLARSSL_MD4_C
+x509_cert_req_check:"data_files/server1.key":SIG_RSA_MD4:"data_files/server1.req.md4"
+
+Certificate Request check Server1 MD5
+depends_on:POLARSSL_MD5_C
+x509_cert_req_check:"data_files/server1.key":SIG_RSA_MD5:"data_files/server1.req.md5"
--- a/tests/suites/test_suite_x509write.function
+++ b/tests/suites/test_suite_x509write.function
@ -0,0 +1,64 @@
+BEGIN_HEADER
+#include <polarssl/x509write.h>
+#include <polarssl/x509.h>
+#include <polarssl/pem.h>
+END_HEADER
+
+BEGIN_DEPENDENCIES
+depends_on:POLARSSL_X509_WRITE_C:POLARSSL_BIGNUM_C
+END_DEPENDENCIES
+
+BEGIN_CASE
+x509_cert_req_check:key_file:md_type:cert_req_check_file
+{
+    rsa_context rsa;
+    pem_context pem;
+    x509_req_name req_name, *cur;
+    unsigned char *c;
+    unsigned char buf[4000];
+    unsigned char check_buf[4000];
+    int ret;
+    size_t olen = 2000;
+    FILE *f;
+
+    cur = &req_name;
+
+    memset( cur, 0, sizeof(x509_req_name) );
+    strcpy( cur->oid, OID_CN );
+    strcpy( cur->name, "PolarSSL Server 1" );
+    cur->next = malloc( sizeof(x509_req_name) );
+    cur = cur->next;
+
+    memset( cur, 0, sizeof(x509_req_name) );
+    strcpy( cur->oid, OID_ORGANIZATION );
+    strcpy( cur->name, "PolarSSL" );
+    cur->next = malloc( sizeof(x509_req_name) );
+    cur = cur->next;
+
+    memset( cur, 0, sizeof(x509_req_name) );
+    strcpy( cur->oid, OID_COUNTRY );
+    strcpy( cur->name, "NL" );
+
+    memset( &rsa, 0, sizeof(rsa_context) );
+    ret = x509parse_keyfile( &rsa, {key_file}, NULL );
+    TEST_ASSERT( ret == 0 );
+    if( ret != 0 )
+        return 0;
+
+    ret = x509_write_cert_req( buf, 4000, &rsa, &req_name, {md_type} );
+    TEST_ASSERT( ret >= 0 );
+
+    c = buf + 3999 - ret;
+
+    f = fopen( {cert_req_check_file}, "r" );
+    TEST_ASSERT( f != NULL );
+    fread( check_buf, 1, 4000, f );
+    fclose( f );
+
+    pem_init( &pem );
+    pem_read_buffer( &pem, "-----BEGIN CERTIFICATE REQUEST-----", "-----END CERTIFICATE REQUEST-----", check_buf, NULL, 0, &olen );
+
+    TEST_ASSERT( memcmp( c, pem.buf, pem.buflen ) == 0 );
+    TEST_ASSERT( pem.buflen == (size_t) ret );
+}
+END_CASE