summaryrefslogtreecommitdiff
path: root/tests
diff options
context:
space:
mode:
authorAlon Bar-Lev <alon.barlev@gmail.com>2022-01-01 21:12:51 +0200
committerAlon Bar-Lev <alon.barlev@gmail.com>2022-01-03 18:16:09 +0200
commit6d71c0bb759582a0406f9924e1fdd73cafa100cf (patch)
treed82c5c8bc32949bd38fa08af6598d8873e38371a /tests
parentd406cc999c1f7cb03687e2ae71f8d23581cbef88 (diff)
downloadgnutls-6d71c0bb759582a0406f9924e1fdd73cafa100cf.tar.gz
p11tool: add --mark-always-authenticate option
Signed-off-by: Alon Bar-Lev <alon.barlev@gmail.com>
Diffstat (limited to 'tests')
-rwxr-xr-xtests/testpkcs11.sh36
1 files changed, 36 insertions, 0 deletions
diff --git a/tests/testpkcs11.sh b/tests/testpkcs11.sh
index 09a6274776..c26891352d 100755
--- a/tests/testpkcs11.sh
+++ b/tests/testpkcs11.sh
@@ -116,6 +116,41 @@ write_privkey () {
exit_error
fi
echo ok
+
+ echo -n "* Checking whether object was not marked always authenticate... "
+ ${P11TOOL} ${ADDITIONAL_PARAM} --login --list-privkeys "${token};object=gnutls-client2" | grep "CKA_ALWAYS_AUTH" >/dev/null 2>&1
+ if test $? != 1; then
+ echo "private object was always authenticate"
+ exit_error
+ fi
+ echo ok
+}
+
+# $1: token
+# $2: PIN
+# $3: filename
+# ${srcdir}/testpkcs11-certs/client.key
+write_privkey_always_auth () {
+ export GNUTLS_PIN="$2"
+ filename="$3"
+ token="$1"
+
+ echo -n "* Writing a client private key... "
+ ${P11TOOL} ${ADDITIONAL_PARAM} --login --write --label gnutls-client2 --load-privkey "${filename}" --mark-always-authenticate "${token}" >>"${LOGFILE}" 2>&1
+ if test $? = 0; then
+ echo ok
+ else
+ echo failed
+ exit_error
+ fi
+
+ echo -n "* Checking whether object was marked always authenticate... "
+ ${P11TOOL} ${ADDITIONAL_PARAM} --login --list-privkeys "${token};object=gnutls-client2" | grep "CKA_ALWAYS_AUTH" >/dev/null 2>&1
+ if test $? != 0; then
+ echo "private object was not always authenticate"
+ exit_error
+ fi
+ echo ok
}
# $1: token
@@ -1131,6 +1166,7 @@ reset_pins "${TOKEN}" "${TEST_PIN}" "${TEST_SO_PIN}"
#write a given privkey
write_privkey "${TOKEN}" "${TEST_PIN}" "${srcdir}/testpkcs11-certs/client.key"
+write_privkey_always_auth "${TOKEN}" "${TEST_PIN}" "${srcdir}/testpkcs11-certs/client.key"
generate_temp_ecc_privkey "${TOKEN}" "${TEST_PIN}" 256
delete_temp_privkey "${TOKEN}" "${TEST_PIN}" ecc-256
View Lorry Controller Status