]> git.ipfire.org Git - thirdparty/gnutls.git/commitdiff
Test the DSA with SHA256 as well.
authorNikos Mavrogiannopoulos <nmav@gnutls.org>
Sun, 30 May 2010 10:54:53 +0000 (12:54 +0200)
committerNikos Mavrogiannopoulos <nmav@gnutls.org>
Thu, 3 Jun 2010 17:55:02 +0000 (19:55 +0200)
tests/sha2/Makefile.am
tests/sha2/sha2-dsa [new file with mode: 0755]

index 983f554b4f7640c7a99ba934a525d422a291fea7..7cf9bde40dcf695e2d2cd558cec3d993211b0daf 100644 (file)
 # along with this file; if not, write to the Free Software Foundation,
 # Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
 
-EXTRA_DIST = key-ca.pem key-subca.pem key-subsubca.pem key-user.pem
+EXTRA_DIST = key-ca.pem key-subca.pem key-subsubca.pem key-user.pem key-dsa.pem \
+       key-ca-dsa.pem
 
-dist_check_SCRIPTS = sha2
+dist_check_SCRIPTS = sha2 sha2-dsa
 
-TESTS = sha2
+TESTS = sha2 sha2-dsa
 
 TESTS_ENVIRONMENT = EXEEXT=$(EXEEXT)
diff --git a/tests/sha2/sha2-dsa b/tests/sha2/sha2-dsa
new file mode 100755 (executable)
index 0000000..dcf20d8
--- /dev/null
@@ -0,0 +1,65 @@
+#!/bin/sh
+
+# Copyright (C) 2006, 2007, 2008, 2010 Free Software Foundation, Inc.
+#
+# Author: Simon Josefsson
+#
+# This file is part of GnuTLS.
+#
+# GnuTLS is free software; you can redistribute it and/or modify it
+# under the terms of the GNU General Public License as published by the
+# Free Software Foundation; either version 3 of the License, or (at
+# your option) any later version.
+#
+# GnuTLS is distributed in the hope that it will be useful, but
+# WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+# General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with GnuTLS; if not, write to the Free Software Foundation,
+# Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+
+#set -e
+
+srcdir=${srcdir:-.}
+CERTTOOL=${CERTTOOL:-../../src/certtool$EXEEXT}
+
+echo ca > template
+echo cn = "SHA 256 CA" >> template
+
+$CERTTOOL -d 2 --generate-self-signed --template template \
+    --load-privkey $srcdir/key-ca-dsa.pem \
+    --outfile new-ca-dsa.pem \
+    --hash sha256 >out 2>&1
+
+if [ $? != 0 ];then
+       cat out
+       exit 1
+fi
+
+echo ca > template
+echo cn = "End-user" >> template
+
+$CERTTOOL -d 2 --generate-certificate --template template \
+    --load-ca-privkey $srcdir/key-ca-dsa.pem \
+    --load-ca-certificate new-ca-dsa.pem \
+    --load-privkey $srcdir/key-dsa.pem \
+    --outfile new-user.pem >out 2>&1
+
+if [ $? != 0 ];then
+       cat out
+       exit 1
+fi
+
+cat new-user.pem new-ca-dsa.pem > out
+$CERTTOOL --verify-chain <out > verify
+
+if [ $? != 0 ];then
+       cat verify
+       exit 1
+fi
+
+rm -f verify new-user.pem new-ca-dsa.pem template
+
+exit 0