TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 318d0fe844b111c72df9c4660d1f915423310659 / . / tests / suites / test_suite_x509write.function
blob: 2eb270f16c919bb2701b28fedada6834dca7c8b2 [file] [log] [blame]
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]1/* BEGIN_HEADER */
Paul Bakker7c6b2c32013-09-16 13:49:26 +0200[diff] [blame]2#include <polarssl/x509_crt.h>
3#include <polarssl/x509_csr.h>
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]4#include <polarssl/pem.h>
Paul Bakkerc70b9822013-04-07 22:00:46 +0200[diff] [blame]5#include <polarssl/oid.h>
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]6/* END_HEADER */
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]7
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]8/* BEGIN_DEPENDENCIES
Paul Bakker7c6b2c32013-09-16 13:49:26 +0200[diff] [blame]9 * depends_on:POLARSSL_BIGNUM_C:POLARSSL_FS_IO:POLARSSL_PK_PARSE_C
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]10 * END_DEPENDENCIES
11 */
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]12
Paul Bakker7c6b2c32013-09-16 13:49:26 +0200[diff] [blame]13/* BEGIN_CASE depends_on:POLARSSL_PEM_WRITE_C:POLARSSL_X509_CSR_WRITE_C */
Manuel Pégourié-Gonnardc5ce83a2014-03-28 12:46:44 +0100[diff] [blame]14void x509_csr_check( char *key_file, char *cert_req_check_file,
15 int md_type, int key_usage, int cert_type )
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]16{
Manuel Pégourié-Gonnardee731792013-09-11 22:48:40 +0200[diff] [blame]17 pk_context key;
Paul Bakkercd358032013-09-09 12:08:11 +0200[diff] [blame]18 x509write_csr req;
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]19 unsigned char buf[4000];
20 unsigned char check_buf[4000];
21 int ret;
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]22 size_t olen = 0, pem_len = 0;
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]23 FILE *f;
Paul Bakker3a8cb6f2013-12-30 20:41:54 +0100[diff] [blame]24 const char *subject_name = "C=NL,O=PolarSSL,CN=PolarSSL Server 1";
Manuel Pégourié-Gonnardee731792013-09-11 22:48:40 +0200[diff] [blame]25 rnd_pseudo_info rnd_info;
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]26
Manuel Pégourié-Gonnardee731792013-09-11 22:48:40 +0200[diff] [blame]27 memset( &rnd_info, 0x2a, sizeof( rnd_pseudo_info ) );
28
29 pk_init( &key );
Paul Bakker1a7550a2013-09-15 13:01:22 +0200[diff] [blame]30 TEST_ASSERT( pk_parse_keyfile( &key, key_file, NULL ) == 0 );
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]31
Paul Bakker82e29452013-08-25 11:01:31 +0200[diff] [blame]32 x509write_csr_init( &req );
33 x509write_csr_set_md_alg( &req, md_type );
Manuel Pégourié-Gonnardee731792013-09-11 22:48:40 +0200[diff] [blame]34 x509write_csr_set_key( &req, &key );
Paul Bakker82e29452013-08-25 11:01:31 +0200[diff] [blame]35 TEST_ASSERT( x509write_csr_set_subject_name( &req, subject_name ) == 0 );
Manuel Pégourié-Gonnardc5ce83a2014-03-28 12:46:44 +0100[diff] [blame]36 if( key_usage != 0 )
37 TEST_ASSERT( x509write_csr_set_key_usage( &req, key_usage ) == 0 );
38 if( cert_type != 0 )
39 TEST_ASSERT( x509write_csr_set_ns_cert_type( &req, cert_type ) == 0 );
Paul Bakker8eabfc12013-08-25 10:18:25 +0200[diff] [blame]40
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]41 ret = x509write_csr_pem( &req, buf, sizeof(buf),
Manuel Pégourié-Gonnardee731792013-09-11 22:48:40 +0200[diff] [blame]42 rnd_pseudo_rand, &rnd_info );
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]43 TEST_ASSERT( ret == 0 );
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]44
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]45 pem_len = strlen( (char *) buf );
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]46
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]47 f = fopen( cert_req_check_file, "r" );
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]48 TEST_ASSERT( f != NULL );
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]49 olen = fread( check_buf, 1, sizeof( check_buf ), f );
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]50 fclose( f );
51
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]52 TEST_ASSERT( olen >= pem_len - 1 );
53 TEST_ASSERT( memcmp( buf, check_buf, pem_len - 1 ) == 0 );
Paul Bakker58ef6ec2013-01-03 11:33:48 +0100[diff] [blame]54
Paul Bakker82e29452013-08-25 11:01:31 +0200[diff] [blame]55 x509write_csr_free( &req );
Manuel Pégourié-Gonnardee731792013-09-11 22:48:40 +0200[diff] [blame]56 pk_free( &key );
Paul Bakker6d620502012-02-16 14:09:13 +0000[diff] [blame]57}
Paul Bakker33b43f12013-08-20 11:48:36 +0200[diff] [blame]58/* END_CASE */
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]59
Manuel Pégourié-Gonnard3daaf3d2013-10-27 14:22:02 +0100[diff] [blame]60/* BEGIN_CASE depends_on:POLARSSL_PEM_WRITE_C:POLARSSL_X509_CRT_WRITE_C:POLARSSL_SHA1_C */
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]61void x509_crt_check( char *subject_key_file, char *subject_pwd,
62 char *subject_name, char *issuer_key_file,
63 char *issuer_pwd, char *issuer_name,
64 char *serial_str, char *not_before, char *not_after,
Manuel Pégourié-Gonnard6c1a73e2014-03-28 14:03:22 +0100[diff] [blame]65 int md_type, int key_usage, int cert_type, int ver,
66 char *cert_check_file )
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]67{
Manuel Pégourié-Gonnardf38e71a2013-09-12 05:21:54 +0200[diff] [blame]68 pk_context subject_key, issuer_key;
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]69 x509write_cert crt;
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]70 unsigned char buf[4000];
71 unsigned char check_buf[5000];
72 mpi serial;
73 int ret;
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]74 size_t olen = 0, pem_len = 0;
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]75 FILE *f;
Manuel Pégourié-Gonnard31e59402013-09-12 05:59:05 +0200[diff] [blame]76 rnd_pseudo_info rnd_info;
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]77
Manuel Pégourié-Gonnard31e59402013-09-12 05:59:05 +0200[diff] [blame]78 memset( &rnd_info, 0x2a, sizeof( rnd_pseudo_info ) );
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]79 mpi_init( &serial );
Manuel Pégourié-Gonnardf38e71a2013-09-12 05:21:54 +0200[diff] [blame]80 pk_init( &subject_key );
81 pk_init( &issuer_key );
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]82
Paul Bakker1a7550a2013-09-15 13:01:22 +0200[diff] [blame]83 TEST_ASSERT( pk_parse_keyfile( &subject_key, subject_key_file,
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]84 subject_pwd ) == 0 );
Paul Bakker1a7550a2013-09-15 13:01:22 +0200[diff] [blame]85 TEST_ASSERT( pk_parse_keyfile( &issuer_key, issuer_key_file,
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]86 issuer_pwd ) == 0 );
87 TEST_ASSERT( mpi_read_string( &serial, 10, serial_str ) == 0 );
88
89 x509write_crt_init( &crt );
Manuel Pégourié-Gonnard6c1a73e2014-03-28 14:03:22 +0100[diff] [blame]90 if( ver != -1 )
91 x509write_crt_set_version( &crt, ver );
92 TEST_ASSERT( x509write_crt_set_serial( &crt, &serial ) == 0 );
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]93 TEST_ASSERT( x509write_crt_set_validity( &crt, not_before,
94 not_after ) == 0 );
95 x509write_crt_set_md_alg( &crt, md_type );
96 TEST_ASSERT( x509write_crt_set_issuer_name( &crt, issuer_name ) == 0 );
97 TEST_ASSERT( x509write_crt_set_subject_name( &crt, subject_name ) == 0 );
Manuel Pégourié-Gonnardf38e71a2013-09-12 05:21:54 +0200[diff] [blame]98 x509write_crt_set_subject_key( &crt, &subject_key );
99 x509write_crt_set_issuer_key( &crt, &issuer_key );
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]100
Manuel Pégourié-Gonnard6c1a73e2014-03-28 14:03:22 +0100[diff] [blame]101 if( crt.version >= X509_CRT_VERSION_3 )
102 {
103 TEST_ASSERT( x509write_crt_set_basic_constraints( &crt, 0, 0 ) == 0 );
104 TEST_ASSERT( x509write_crt_set_subject_key_identifier( &crt ) == 0 );
105 TEST_ASSERT( x509write_crt_set_authority_key_identifier( &crt ) == 0 );
106 if( key_usage != 0 )
107 TEST_ASSERT( x509write_crt_set_key_usage( &crt, key_usage ) == 0 );
108 if( cert_type != 0 )
109 TEST_ASSERT( x509write_crt_set_ns_cert_type( &crt, cert_type ) == 0 );
110 }
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]111
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]112 ret = x509write_crt_pem( &crt, buf, sizeof(buf),
Manuel Pégourié-Gonnard31e59402013-09-12 05:59:05 +0200[diff] [blame]113 rnd_pseudo_rand, &rnd_info );
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]114 TEST_ASSERT( ret == 0 );
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]115
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]116 pem_len = strlen( (char *) buf );
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]117
118 f = fopen( cert_check_file, "r" );
119 TEST_ASSERT( f != NULL );
Paul Bakker94b916c2014-04-17 16:07:20 +0200[diff] [blame]120 olen = fread( check_buf, 1, sizeof(check_buf), f );
121 TEST_ASSERT( olen < sizeof(check_buf) );
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]122 fclose( f );
123
Paul Bakker77e23fb2013-09-15 20:03:26 +0200[diff] [blame]124 TEST_ASSERT( olen >= pem_len - 1 );
125 TEST_ASSERT( memcmp( buf, check_buf, pem_len - 1 ) == 0 );
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]126
127 x509write_crt_free( &crt );
Manuel Pégourié-Gonnardf38e71a2013-09-12 05:21:54 +0200[diff] [blame]128 pk_free( &issuer_key );
129 pk_free( &subject_key );
Paul Bakker2397cf32013-09-08 15:58:15 +0200[diff] [blame]130 mpi_free( &serial );
131}
132/* END_CASE */