tests: check whether generated or copied keys are marked as sensitive

Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>

diff --git a/tests/suite/testpkcs11.sh b/tests/suite/testpkcs11.sh
index 1f38f3acc031470c2e42a032919469becce71f51..dcf932c7fc9a459c891df5c7875a1d3ff835be3b 100755 (executable)
--- a/tests/suite/testpkcs11.sh
+++ b/tests/suite/testpkcs11.sh
@@ -99,6 +99,13 @@ write_privkey () {
        fi
        echo ok
 
+       echo -n "* Checking whether object was marked sensitive... "
+       ${P11TOOL} ${ADDITIONAL_PARAM} --login --list-privkeys "${token};object=gnutls-client2" | grep "CKA_SENSITIVE" >/dev/null 2>&1
+       if test $? != 0; then
+               echo "private object was not sensitive"
+               exit_error
+       fi
+       echo ok
 }
 
 # $1: token
@@ -181,6 +188,14 @@ generate_rsa_privkey () {
                echo failed
                exit 1
        fi
+
+       echo -n "* Checking whether private key was marked sensitive... "
+       ${P11TOOL} ${ADDITIONAL_PARAM} --login --list-privkeys "${token};object=gnutls-client" | grep "CKA_SENSITIVE" >/dev/null 2>&1
+       if test $? != 0; then
+               echo "private object was not sensitive"
+               exit_error
+       fi
+       echo ok
 }
 
 # $1: token