From: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
Date: Tue, 8 Oct 2019 22:29:07 +0000 (+0300)
Subject: testpkcs11.sh: test that we output mechanism flags correctly
X-Git-Tag: gnutls_3_6_11~36^2
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=df4fb0b2eee61a4970d40268bd57564a7ee899df;p=thirdparty%2Fgnutls.git

testpkcs11.sh: test that we output mechanism flags correctly

Verify some of PKCS#11 mechanism flags.

Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>
---

diff --git a/tests/testpkcs11.sh b/tests/testpkcs11.sh
index 64e67b5d1e..9458af2381 100755
--- a/tests/testpkcs11.sh
+++ b/tests/testpkcs11.sh
@@ -1082,6 +1082,34 @@ if test $? = 0;then
 	have_ed25519=1
 fi
 
+${P11TOOL} ${ADDITIONAL_PARAM} --list-mechanisms ${TOKEN} > ${TMPFILE}
+
+# Verify that we output flags correctly
+if grep AES_CTR ${TMPFILE} | grep -v "keysize range (16, 32)" ; then
+	echo "Keysize range error"
+	exit_error
+fi
+
+if grep AES_CTR ${TMPFILE} | grep -v "encrypt decrypt" ; then
+	echo "Error with encrypt/decrypt flags"
+	exit_error
+fi
+
+if grep KEY_WRAP ${TMPFILE} | grep -v "wrap.unwrap" ; then
+	echo "Error with wrap/unwrap flags"
+	exit_error
+fi
+
+if grep AES_CMAC ${TMPFILE} | grep -v "sign verify" ; then
+	echo "Error with sign/verify flags"
+	exit_error
+fi
+
+if grep "CKM_SHA256 " ${TMPFILE} | grep -v "digest" ; then
+	echo "Error with digest flags"
+	exit_error
+fi
+
 reset_pins "${TOKEN}" "${TEST_PIN}" "${TEST_SO_PIN}"
 
 #write a given privkey