wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 18:57:27 +02:00
Code Issues Packages Projects Releases Wiki Activity

add PKCS12 RC2 test case, example p12 bundle

Browse Source
This commit is contained in:
Chris Conlon
2020-10-16 11:00:00 -06:00
parent 2c0f4b619e
commit 062df01737
3 changed files with 49 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
certs/renewcerts.sh
View File

@ -542,6 +542,15 @@ run_renewcerts(){
echo "End of section" echo "End of section"
echo "---------------------------------------------------------------------" echo "---------------------------------------------------------------------"
############################################################ ############################################################
###### update the test-servercert-rc2.p12 file #############
############################################################
echo "Updating test-servercert-rc2.p12 (password is \"wolfSSL test\")"
echo ""
echo "wolfSSL test" | openssl pkcs12 -export -in server-cert.pem -inkey server-key.pem -certfile ca-cert.pem -out test-servercert-rc2.p12 -password stdin
check_result $? "Step 1"
echo "End of section"
echo "---------------------------------------------------------------------"
############################################################
###### calling gen-ext-certs.sh ################## ###### calling gen-ext-certs.sh ##################
############################################################ ############################################################
echo "Calling gen-ext-certs.sh" echo "Calling gen-ext-certs.sh"

BIN
certs/test-servercert-rc2.p12 Normal file
View File

Binary file not shown.

40
tests/api.c
View File

@ -4819,6 +4819,9 @@ static void test_wolfSSL_PKCS12(void)
byte buffer[6000]; byte buffer[6000];
char file[] = "./certs/test-servercert.p12"; char file[] = "./certs/test-servercert.p12";
char order[] = "./certs/ecc-rsa-server.p12"; char order[] = "./certs/ecc-rsa-server.p12";
#ifdef WC_RC2
char rc2p12[] = "./certs/test-servercert-rc2.p12";
#endif
char pass[] = "a password"; char pass[] = "a password";
#ifdef HAVE_ECC #ifdef HAVE_ECC
WOLFSSL_X509_NAME* subject; WOLFSSL_X509_NAME* subject;
@ -5062,6 +5065,43 @@ static void test_wolfSSL_PKCS12(void)
PKCS12_free(pkcs12); PKCS12_free(pkcs12);
#endif /* HAVE_ECC */ #endif /* HAVE_ECC */
#ifdef WC_RC2
/* test PKCS#12 with RC2 encryption */
f = XFOPEN(rc2p12, "rb");
AssertTrue(f != XBADFILE);
bytes = (int)XFREAD(buffer, 1, sizeof(buffer), f);
XFCLOSE(f);
AssertNotNull(bio = BIO_new_mem_buf((void*)buffer, bytes));
AssertNotNull(pkcs12 = d2i_PKCS12_bio(bio, NULL));
/* check verify MAC fail case */
ret = PKCS12_parse(pkcs12, "bad", &pkey, &cert, NULL);
AssertIntEQ(ret, 0);
AssertNull(pkey);
AssertNull(cert);
/* check parse iwth not extra certs kept */
ret = PKCS12_parse(pkcs12, "wolfSSL test", &pkey, &cert, NULL);
AssertIntEQ(ret, WOLFSSL_SUCCESS);
AssertNotNull(pkey);
AssertNotNull(cert);
/* check parse with extra certs kept */
ret = PKCS12_parse(pkcs12, "wolfSSL test", &pkey, &cert, &ca);
AssertIntEQ(ret, WOLFSSL_SUCCESS);
AssertNotNull(pkey);
AssertNotNull(cert);
AssertNotNull(ca);
wolfSSL_EVP_PKEY_free(pkey);
wolfSSL_X509_free(cert);
sk_X509_free(ca);
BIO_free(bio);
PKCS12_free(pkcs12);
#endif /* WC_RC2 */
/* Test i2d_PKCS12_bio */ /* Test i2d_PKCS12_bio */
f = XFOPEN(file, "rb"); f = XFOPEN(file, "rb");
AssertTrue((f != XBADFILE)); AssertTrue((f != XBADFILE));