From d6bdcbf2048317260b0fc2b3c351b55bb662cdf9 Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@redhat.com>
Date: Tue, 29 Nov 2016 16:00:30 +0100
Subject: tests: use datefudge in rsa-md5-collision check

This makes sure that any failure detected is not because of
expired certificates, but because of MD5 being disabled.
---
 tests/rsa-md5-collision/rsa-md5-collision.sh | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'tests/rsa-md5-collision/rsa-md5-collision.sh')

diff --git a/tests/rsa-md5-collision/rsa-md5-collision.sh b/tests/rsa-md5-collision/rsa-md5-collision.sh
index de0e5ae77b..5de2d66627 100755
--- a/tests/rsa-md5-collision/rsa-md5-collision.sh
+++ b/tests/rsa-md5-collision/rsa-md5-collision.sh
@@ -27,6 +27,9 @@ CERTTOOL="${CERTTOOL:-../src/certtool${EXEEXT}}"
 TMPFILE1=rsa-md5.$$.tmp
 TMPFILE2=rsa-md5-2.$$.tmp
 
+. ${srcdir}/scripts/common.sh
+check_for_datefudge
+
 "${CERTTOOL}" --inder --certificate-info \
 	--infile "${srcdir}/rsa-md5-collision/TargetCollidingCertificate1.cer" > $TMPFILE1
 "${CERTTOOL}" --inder --certificate-info \
@@ -37,8 +40,10 @@ TMPFILE2=rsa-md5-2.$$.tmp
 "${CERTTOOL}" --inder --certificate-info \
 	--infile "${srcdir}/rsa-md5-collision/MD5CollisionCA.cer" >> $TMPFILE2
 
+datefudge -s "2016-10-1" \
 "${CERTTOOL}" --verify-chain < $TMPFILE1 | \
 	grep 'Not verified.' | grep 'insecure algorithm' >/dev/null
+datefudge -s "2016-10-1" \
 "${CERTTOOL}" --verify-chain < $TMPFILE2 | \
 	grep 'Not verified.' | grep 'insecure algorithm' >/dev/null
 
-- 
cgit v1.2.1