diff options
author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2016-09-06 09:05:59 +0200 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2016-09-06 09:06:01 +0200 |
commit | 829a148da91304f7c22e6620d601de6296c967ab (patch) | |
tree | 11313a63ac10c80f9b8956f381d1e4dff2435c2e | |
parent | 10711323fd9c3d6a6d1b275af4cce5cc43234f2c (diff) | |
download | gnutls-829a148da91304f7c22e6620d601de6296c967ab.tar.gz |
tests: added checks to verify behavior in writing pkcs11 objects
That is, verify that private keys are marked as private by default,
and public objects are marked as non-private by default.
-rwxr-xr-x | tests/suite/testpkcs11.sh | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/tests/suite/testpkcs11.sh b/tests/suite/testpkcs11.sh index f4e1db315d..a17ee55591 100755 --- a/tests/suite/testpkcs11.sh +++ b/tests/suite/testpkcs11.sh @@ -69,6 +69,14 @@ write_privkey () { exit_error fi + echo -n "* Checking whether object was marked private... " + ${P11TOOL} ${ADDITIONAL_PARAM} --list-privkeys "${token};object=gnutls-client2" 2>/dev/null | grep 'Label\:' >>"${TMPFILE}" 2>&1 + if test $? = 0; then + echo "private object was public" + exit_error + fi + echo ok + } # $1: token @@ -409,6 +417,18 @@ write_certificate_test () { return fi + echo -n "* Checking whether object was public... " + ${P11TOOL} ${ADDITIONAL_PARAM} --list-all-certs "${token};object=gnutls-client;id=%01%a1%b1%03" 2>&1 | grep 'ID: 01:a1:b1:03' >>"${TMPFILE}" 2>&1 + if test $? != 0; then + echo "certificate object was not public" + exit_error + fi + echo ok + + if test -n "${BROKEN_SOFTHSM2}";then + return + fi + echo -n "* Writing certificate of client's CA... " ${P11TOOL} ${ADDITIONAL_PARAM} --login --mark-trusted --mark-ca --write --label gnutls-ca --load-certificate "${cacert}" "${token}" >>"${TMPFILE}" 2>&1 ret=$? |