TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 63cb97e562c19bde01ec603ac8598903ac180529 / . / programs / test / ssl_cert_test.c
blob: fd713f50f37fac8e0951d89abb79197954ba5c93 [file] [log] [blame]
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]1/*
2 * SSL certificate functionality tests
3 *
Manuel Pégourié-Gonnard6fb81872015-07-27 11:11:48 +0200[diff] [blame]4 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +0200[diff] [blame]5 * SPDX-License-Identifier: Apache-2.0
6 *
7 * Licensed under the Apache License, Version 2.0 (the "License"); you may
8 * not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
10 *
11 * http://www.apache.org/licenses/LICENSE-2.0
12 *
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
15 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
Paul Bakkerb96f1542010-07-18 20:36:00 +0000[diff] [blame]18 *
Manuel Pégourié-Gonnardfe446432015-03-06 13:17:10 +0000[diff] [blame]19 * This file is part of mbed TLS (https://tls.mbed.org)
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]20 */
21
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]22#if !defined(MBEDTLS_CONFIG_FILE)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]23#include "mbedtls/config.h"
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]24#else
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]25#include MBEDTLS_CONFIG_FILE
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]26#endif
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]27
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]28#if defined(MBEDTLS_PLATFORM_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]29#include "mbedtls/platform.h"
Rich Evansf90016a2015-01-19 14:26:37 +0000[diff] [blame]30#else
Rich Evans18b78c72015-02-11 14:06:19 +0000[diff] [blame]31#include <stdio.h>
Andres Amaya Garcia357b0b22018-04-29 22:04:03 +0100[diff] [blame]32#include <stdlib.h>
33#define mbedtls_snprintf snprintf
34#define mbedtls_printf printf
Andres Amaya Garcia7d429652018-04-30 22:42:33 +0100[diff] [blame]35#define MBEDTLS_EXIT_SUCCESS EXIT_SUCCESS
Andres Amaya Garcia357b0b22018-04-29 22:04:03 +0100[diff] [blame]36#define MBEDTLS_EXIT_FAILURE EXIT_FAILURE
37#endif /* MBEDTLS_PLATFORM_C */
Rich Evansf90016a2015-01-19 14:26:37 +0000[diff] [blame]38
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]39#if defined(MBEDTLS_RSA_C) && defined(MBEDTLS_X509_CRT_PARSE_C) && \
40 defined(MBEDTLS_FS_IO) && defined(MBEDTLS_X509_CRL_PARSE_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]41#include "mbedtls/certs.h"
42#include "mbedtls/x509_crt.h"
Rich Evans18b78c72015-02-11 14:06:19 +0000[diff] [blame]43
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]44#include <stdio.h>
Rich Evans18b78c72015-02-11 14:06:19 +0000[diff] [blame]45#include <string.h>
46#endif
47
Rich Evans18b78c72015-02-11 14:06:19 +0000[diff] [blame]48#define MAX_CLIENT_CERTS 8
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]49
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]50#if !defined(MBEDTLS_RSA_C) || !defined(MBEDTLS_X509_CRT_PARSE_C) || \
51 !defined(MBEDTLS_FS_IO) || !defined(MBEDTLS_X509_CRL_PARSE_C)
Rich Evans85b05ec2015-02-12 11:37:29 +0000[diff] [blame]52int main( void )
Manuel Pégourié-Gonnard7831b0c2013-09-20 12:29:56 +0200[diff] [blame]53{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]54 mbedtls_printf("MBEDTLS_RSA_C and/or MBEDTLS_X509_CRT_PARSE_C "
55 "MBEDTLS_FS_IO and/or MBEDTLS_X509_CRL_PARSE_C "
Manuel Pégourié-Gonnard7831b0c2013-09-20 12:29:56 +0200[diff] [blame]56 "not defined.\n");
57 return( 0 );
58}
59#else
Paul Bakkeref3f8c72013-06-24 13:01:08 +0200[diff] [blame]60const char *client_certificates[MAX_CLIENT_CERTS] =
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]61{
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]62 "client1.crt",
63 "client2.crt",
Paul Bakker40ea7de2009-05-03 10:18:48 +0000[diff] [blame]64 "server1.crt",
65 "server2.crt",
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]66 "cert_sha224.crt",
67 "cert_sha256.crt",
68 "cert_sha384.crt",
69 "cert_sha512.crt"
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]70};
71
Paul Bakkeref3f8c72013-06-24 13:01:08 +0200[diff] [blame]72const char *client_private_keys[MAX_CLIENT_CERTS] =
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]73{
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]74 "client1.key",
75 "client2.key",
Paul Bakker40ea7de2009-05-03 10:18:48 +0000[diff] [blame]76 "server1.key",
77 "server2.key",
Paul Bakkerf17ed282011-02-09 17:10:48 +0000[diff] [blame]78 "cert_digest.key",
79 "cert_digest.key",
80 "cert_digest.key",
81 "cert_digest.key"
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]82};
83
Simon Butcher63cb97e2018-12-06 17:43:31 +0000[diff] [blame^]84#if defined( MBEDTLS_CHECK_PARAMS ) && defined(MBEDTLS_PLATFORM_C)
85void mbedtls_param_failed( char* failure_condition, char* file, int line )
86{
87 mbedtls_printf("%s:%i: Input param failed - %sn", file, line, failure_condition );
88 mbedtls_exit( MBEDTLS_EXIT_FAILURE );
89}
90#endif
91
Rich Evans85b05ec2015-02-12 11:37:29 +0000[diff] [blame]92int main( void )
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]93{
Andres Amaya Garcia357b0b22018-04-29 22:04:03 +0100[diff] [blame]94 int ret = 1, i;
95 int exit_code = MBEDTLS_EXIT_FAILURE;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]96 mbedtls_x509_crt cacert;
97 mbedtls_x509_crl crl;
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]98 char buf[10240];
99
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]100 mbedtls_x509_crt_init( &cacert );
101 mbedtls_x509_crl_init( &crl );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]102
103 /*
104 * 1.1. Load the trusted CA
105 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]106 mbedtls_printf( "\n . Loading the CA root certificate ..." );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]107 fflush( stdout );
108
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]109 /*
110 * Alternatively, you may load the CA certificates from a .pem or
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]111 * .crt file by calling mbedtls_x509_crt_parse_file( &cacert, "myca.crt" ).
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]112 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]113 ret = mbedtls_x509_crt_parse_file( &cacert, "ssl/test-ca/test-ca.crt" );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]114 if( ret != 0 )
115 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]116 mbedtls_printf( " failed\n ! mbedtls_x509_crt_parse_file returned %d\n\n", ret );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]117 goto exit;
118 }
119
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]120 mbedtls_printf( " ok\n" );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]121
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]122 mbedtls_x509_crt_info( buf, 1024, "CRT: ", &cacert );
123 mbedtls_printf("%s\n", buf );
Paul Bakker40ea7de2009-05-03 10:18:48 +0000[diff] [blame]124
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]125 /*
126 * 1.2. Load the CRL
127 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]128 mbedtls_printf( " . Loading the CRL ..." );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]129 fflush( stdout );
130
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]131 ret = mbedtls_x509_crl_parse_file( &crl, "ssl/test-ca/crl.pem" );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]132 if( ret != 0 )
133 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]134 mbedtls_printf( " failed\n ! mbedtls_x509_crl_parse_file returned %d\n\n", ret );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]135 goto exit;
136 }
137
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]138 mbedtls_printf( " ok\n" );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]139
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]140 mbedtls_x509_crl_info( buf, 1024, "CRL: ", &crl );
141 mbedtls_printf("%s\n", buf );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]142
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]143 for( i = 0; i < MAX_CLIENT_CERTS; i++ )
144 {
145 /*
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]146 * 1.3. Load own certificate
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]147 */
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]148 char name[512];
Manuel Pégourié-Gonnarde6ef16f2015-05-11 19:54:43 +0200[diff] [blame]149 uint32_t flags;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]150 mbedtls_x509_crt clicert;
151 mbedtls_pk_context pk;
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]152
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]153 mbedtls_x509_crt_init( &clicert );
154 mbedtls_pk_init( &pk );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]155
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]156 mbedtls_snprintf(name, 512, "ssl/test-ca/%s", client_certificates[i]);
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]157
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]158 mbedtls_printf( " . Loading the client certificate %s...", name );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]159 fflush( stdout );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]160
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]161 ret = mbedtls_x509_crt_parse_file( &clicert, name );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]162 if( ret != 0 )
163 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]164 mbedtls_printf( " failed\n ! mbedtls_x509_crt_parse_file returned %d\n\n", ret );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]165 goto exit;
166 }
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]167
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]168 mbedtls_printf( " ok\n" );
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]169
170 /*
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]171 * 1.4. Verify certificate validity with CA certificate
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]172 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]173 mbedtls_printf( " . Verify the client certificate with CA certificate..." );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]174 fflush( stdout );
175
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]176 ret = mbedtls_x509_crt_verify( &clicert, &cacert, &crl, NULL, &flags, NULL,
Paul Bakkerddf26b42013-09-18 13:46:23 +0200[diff] [blame]177 NULL );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]178 if( ret != 0 )
179 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]180 if( ret == MBEDTLS_ERR_X509_CERT_VERIFY_FAILED )
Paul Bakker40ea7de2009-05-03 10:18:48 +0000[diff] [blame]181 {
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]182 char vrfy_buf[512];
183
184 mbedtls_printf( " failed\n" );
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]185 mbedtls_x509_crt_verify_info( vrfy_buf, sizeof( vrfy_buf ), " ! ", flags );
Manuel Pégourié-Gonnard89addc42015-04-20 10:56:18 +0100[diff] [blame]186 mbedtls_printf( "%s\n", vrfy_buf );
187 }
188 else
189 {
Manuel Pégourié-Gonnardda61ed32015-04-30 10:28:51 +0200[diff] [blame]190 mbedtls_printf( " failed\n ! mbedtls_x509_crt_verify returned %d\n\n", ret );
Paul Bakker40ea7de2009-05-03 10:18:48 +0000[diff] [blame]191 goto exit;
192 }
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]193 }
194
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]195 mbedtls_printf( " ok\n" );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]196
197 /*
198 * 1.5. Load own private key
199 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]200 mbedtls_snprintf(name, 512, "ssl/test-ca/%s", client_private_keys[i]);
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]201
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]202 mbedtls_printf( " . Loading the client private key %s...", name );
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]203 fflush( stdout );
204
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]205 ret = mbedtls_pk_parse_keyfile( &pk, name, NULL );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]206 if( ret != 0 )
207 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]208 mbedtls_printf( " failed\n ! mbedtls_pk_parse_keyfile returned %d\n\n", ret );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]209 goto exit;
210 }
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]211
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]212 mbedtls_printf( " ok\n" );
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]213
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]214 /*
Manuel Pégourié-Gonnardbe506802013-07-11 13:17:21 +0200[diff] [blame]215 * 1.6. Verify certificate validity with private key
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]216 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]217 mbedtls_printf( " . Verify the client certificate with private key..." );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]218 fflush( stdout );
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]219
Manuel Pégourié-Gonnardbe506802013-07-11 13:17:21 +0200[diff] [blame]220
221 /* EC NOT IMPLEMENTED YET */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]222 if( ! mbedtls_pk_can_do( &clicert.pk, MBEDTLS_PK_RSA ) )
Manuel Pégourié-Gonnardbe506802013-07-11 13:17:21 +0200[diff] [blame]223 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]224 mbedtls_printf( " failed\n ! certificate's key is not RSA\n\n" );
Manuel Pégourié-Gonnardbe506802013-07-11 13:17:21 +0200[diff] [blame]225 goto exit;
226 }
227
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]228 ret = mbedtls_mpi_cmp_mpi(&mbedtls_pk_rsa( pk )->N, &mbedtls_pk_rsa( clicert.pk )->N);
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]229 if( ret != 0 )
230 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]231 mbedtls_printf( " failed\n ! mbedtls_mpi_cmp_mpi for N returned %d\n\n", ret );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]232 goto exit;
233 }
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]234
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]235 ret = mbedtls_mpi_cmp_mpi(&mbedtls_pk_rsa( pk )->E, &mbedtls_pk_rsa( clicert.pk )->E);
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]236 if( ret != 0 )
237 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]238 mbedtls_printf( " failed\n ! mbedtls_mpi_cmp_mpi for E returned %d\n\n", ret );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]239 goto exit;
240 }
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]241
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]242 ret = mbedtls_rsa_check_privkey( mbedtls_pk_rsa( pk ) );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]243 if( ret != 0 )
244 {
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]245 mbedtls_printf( " failed\n ! mbedtls_rsa_check_privkey returned %d\n\n", ret );
Paul Bakkerd98030e2009-05-02 15:13:40 +0000[diff] [blame]246 goto exit;
247 }
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]248
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]249 mbedtls_printf( " ok\n" );
Paul Bakkera1d3e5f2009-03-28 17:30:26 +0000[diff] [blame]250
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]251 mbedtls_x509_crt_free( &clicert );
252 mbedtls_pk_free( &pk );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]253 }
254
Andres Amaya Garcia357b0b22018-04-29 22:04:03 +0100[diff] [blame]255 exit_code = MBEDTLS_EXIT_SUCCESS;
256
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]257exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]258 mbedtls_x509_crt_free( &cacert );
259 mbedtls_x509_crl_free( &crl );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]260
Paul Bakkercce9d772011-11-18 14:26:47 +0000[diff] [blame]261#if defined(_WIN32)
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]262 mbedtls_printf( " + Press Enter to exit this program.\n" );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]263 fflush( stdout ); getchar();
264#endif
265
Andres Amaya Garcia357b0b22018-04-29 22:04:03 +0100[diff] [blame]266 return( exit_code );
Paul Bakker4593aea2009-02-09 22:32:35 +0000[diff] [blame]267}
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]268#endif /* MBEDTLS_RSA_C && MBEDTLS_X509_CRT_PARSE_C && MBEDTLS_FS_IO &&
269 MBEDTLS_X509_CRL_PARSE_C */