9e24b5184c
Fix threshold checks for MBEDTLS_X509_MAX_INTERMEDIATE_CA
2017-07-28 18:18:29 +01:00
efdfeeba6a
Fix threshold checks for MBEDTLS_X509_MAX_INTERMEDIATE_CA
2017-07-28 12:15:13 +01:00
3b1422e55e
Check threshold for MBEDTLS_X509_MAX_INTERMEDIATE_CA in X509 tests
...
The X509 test suite assumes that MBEDTLS_X509_MAX_INTERMEDIATE_CA is below the
hardcoded threshold 20 used in the long certificate chain generating script
tests/data_files/dir-max/long.sh. This commit adds a compile-time check for
that.
2017-07-26 13:49:38 +01:00
1beb048316
Add test for limit on intermediate certificates
...
Inspired by test code provided by Nicholas Wilson in PR #351 .
The test will fail if someone sets MAX_INTERMEDIATE_CA to a value larger than
18 (default is 8), which is hopefully unlikely and can easily be fixed by
running long.sh again with a larger value if it ever happens.
Current behaviour is suboptimal as flags are not set, but currently the goal
is only to document/test existing behaviour.
2017-07-06 11:57:31 +02:00
ef86ab238f
Allow SHA-1 in X.509 and TLS tests
...
SHA-1 is now disabled by default in the X.509 layer. Explicitly enable
it in our tests for now. Updating all the test data to SHA-256 should
be done over time.
2017-06-06 18:44:13 +02:00
ea7054a00c
Add unit tests for X509 certificate date parsing
2017-02-28 14:23:12 +00:00
a39db394db
Add test for infinite loop in CRL parse
2017-01-19 17:10:51 +00:00
4b76aecaf3
Add check for validity of date in x509_get_time()
2016-09-28 14:32:54 +01:00
93012e8bce
Set selftest verbose flag to boost coverage
2016-09-27 17:29:22 +01:00
a8838af8e6
Use own implementation of strsep()
...
Not available on windows, and strtok() is not a good option
2015-11-02 06:44:24 +09:00
568f1e7cb3
Merge branch 'iotssl-515-max-pathlen' into development
...
* iotssl-515-max-pathlen:
Add Changelog entries for this branch
Fix a style issue
Fix whitespace at EOL issues
Use symbolic constants in test data
Fixed pathlen contraint enforcement.
Additional corner cases for testing pathlen constrains. Just in case.
Added test case for pathlen constrains in intermediate certificates
2015-11-02 05:49:08 +09:00
45777c384d
Fix a style issue
2015-10-30 09:24:28 +01:00
e670f90e48
Fix whitespace at EOL issues
2015-10-30 09:23:19 +01:00
c87747b675
Removed debug code accidentally left in test code
...
Removed debug code accidentally left in test_suite_x509parse.function.
2015-10-27 15:16:51 +00:00
65eefc8707
Fix missing check for RSA key length on EE certs
...
- also adapt tests to use lesser requirement for compatibility with old
testing material
2015-10-23 16:19:53 +02:00
ef4f2588f3
Additional corner cases for testing pathlen constrains. Just in case.
2015-10-11 16:17:27 +02:00
822b2c33b9
Added test case for pathlen constrains in intermediate certificates
2015-10-11 10:39:15 +02:00
560fea3767
Add tests for verify callback
...
As we're about to change the chain construction logic, we want to make sure
the callback will still be called exactly when it should, and not on the
(upcoming) ignored certs in the chain.
2015-09-01 17:24:42 +02:00
c730ed3f2d
Rename boolean functions to be clearer
2015-06-02 10:38:50 +01:00
e6ef16f98c
Change X.509 verify flags to uint32_t
2015-05-11 19:54:43 +02:00
e6028c93f5
Fix some X509 macro names
...
For some reason, during the great renaming, some names that should have been
prefixed with MBEDTLS_X509_ have only been prefixed with MBEDTLS_
2015-04-20 12:19:02 +01:00
b5f48ad82f
manually merge 39a183a add x509_crt_verify_info()
2015-04-20 11:22:57 +01:00
2cf5a7c98e
The Great Renaming
...
A simple execution of tmp/invoke-rename.pl
2015-04-08 13:25:31 +02:00
932e3934bd
Fix typos & Co
2015-04-03 18:46:55 +02:00
48d3cef31a
Fix use of deprecated function in test
2015-03-20 18:21:12 +00:00
7f8099773e
Rename include directory to mbedtls
2015-03-10 11:23:56 +00:00
ce2f237697
change test function includes to use one convention
2015-02-10 11:28:46 +00:00
9ad7b6ebde
Rm spurious printf from test function
2015-01-28 15:28:28 +01:00
920aa9c8ee
change more references to (f)printf to polarssl_(f)printf to allow overriding
2015-01-28 15:28:28 +01:00
5a5fa92bfe
x509_crt_parse() did not increase total_failed on PEM error
...
Result was that PEM errors in files with multiple certificates were not
detectable by the user.
2014-10-03 15:47:13 +02:00
bd51b262d1
Add 'exit' label and variable initialization to relevant test suite functions
2014-07-10 16:37:50 +02:00
5b11d026cd
Fix dependencies and includes without FS_IO and PLATFORM_C
2014-07-10 15:27:10 +02:00
0f7b619875
Fix tests dependencies in X509_USE_C
2014-06-24 12:54:46 +02:00
fea3102dcb
Fix dependencies on X509_CRT_C in tests
2014-06-24 12:54:46 +02:00
f3b47243df
Split x509_csr_parse_der() out of x509_csr_parse()
2014-06-23 11:54:57 +02:00
d77cd5d0c3
Add tests for x509_csr_parse
2014-06-23 11:52:59 +02:00
d1539b1e88
Rename RSASSA_PSS_CERTIFICATES to X509_RSASSA_PSS_SUPPORT
2014-06-06 16:42:37 +02:00
854036956d
Add tests for x509 rsassa_pss params parsing
2014-06-06 16:32:22 +02:00
2a8d7fd76e
Add tests for parsing CSRs
2014-06-02 16:10:29 +02:00
7afb8a0dca
Add x509_crt_check_extended_key_usage()
2014-04-11 11:09:00 +02:00
5c986f5244
Make test suite checks dependent on POLARSSL_X509_CHECK_KEY_USAGE
2014-04-09 16:58:51 +02:00
603116c570
Add x509_crt_check_key_usage()
2014-04-09 15:50:57 +02:00
7afdb88216
Test and fix x509_oid functions
2014-04-04 16:34:30 +02:00
6304f786e0
Add x509_time_future()
2014-03-13 19:25:06 +01:00
c9093085ed
Revert "Merged RSA-PSS support in Certificate, CSR and CRL"
...
This reverts commit ab50d8d30ce31b1d992a
2014-02-12 09:39:59 +01:00
d4fd57dda4
Add tests for parsing CSRs
2014-01-25 12:48:58 +01:00
a2ffccd09f
Fixed memory leak in new x509parse test
2013-12-02 21:56:37 +01:00
fbae2a1f53
Add tests for x509_crt_parse_path()
2013-11-28 18:07:39 +01:00
201401646e
Fix a few selftest typos
2013-10-10 13:21:48 +02:00
cbf3ef3861
RSA and ECDSA key exchanges don't depend on CRL
2013-09-24 21:25:53 +02:00
