diff options
| author | slavomir.katuscak%sun.com <devnull@localhost> | 2009-04-24 08:37:03 +0000 |
|---|---|---|
| committer | slavomir.katuscak%sun.com <devnull@localhost> | 2009-04-24 08:37:03 +0000 |
| commit | 6f397b7c53b247b5a5d20a2e932858c328686f21 (patch) | |
| tree | f98ed90f51f841fc307f50979bbad3bdcb95aeae | |
| parent | 9d4ce670b31f03ba4390698feb4ff2f99cac16b8 (diff) | |
| download | nss-hg-6f397b7c53b247b5a5d20a2e932858c328686f21.tar.gz | |
Bug 488646: added test whether OCSP server is accessible. r=alexei
| -rw-r--r-- | security/nss/tests/chains/chains.sh | 38 | ||||
| -rw-r--r-- | security/nss/tests/chains/scenarios/ocsp.cfg | 2 |
2 files changed, 40 insertions, 0 deletions
diff --git a/security/nss/tests/chains/chains.sh b/security/nss/tests/chains/chains.sh index 99213f92a..ffa6aed5c 100644 --- a/security/nss/tests/chains/chains.sh +++ b/security/nss/tests/chains/chains.sh @@ -699,6 +699,37 @@ verify_cert() fi } + +check_ocsp() +{ + OCSP_CERT=$1 + + CERT_NICK=`echo ${OCSP_CERT} | cut -d: -f1` + CERT_ISSUER=`echo ${OCSP_CERT} | cut -d: -f2` + + if [ "${CERT_ISSUER}" = "x" ]; then + CERT_ISSUER= + CERT=${CERT_NICK}.cert + CERT_FILE="${QADIR}/libpkix/certs/${CERT}" + else + CERT=${CERT_NICK}${CERT_ISSUER}.der + CERT_FILE=${CERT} + fi + + OCSP_HOST=$(${BINDIR}/pp -t certificate -i ${CERT_FILE} | grep URI | sed "s/.*:\/\///" | sed "s/:.*//") + + if [ "${OS_ARCH}" = "WINNT" ]; then + ping -n 1 ${OCSP_HOST} + return $? + elif [ "${OS_ARCH}" = "HP-UX" ]; then + ping ${OCSP_HOST} -c 1 + return $? + else + ping -c 1 ${OCSP_HOST} + return $? + fi +} + ############################ parse_result ############################## # local shell function to process expected result value # this function was created for case that expected result depends on @@ -869,6 +900,13 @@ parse_config() "break") break ;; + "check_ocsp") + check_ocsp ${VALUE} + if [ $? -ne 0 ]; then + echo "OCSP server not accessible, skipping OCSP tests" + break; + fi + ;; "") if [ -n "${ENTITY}" ]; then if [ -z "${DB}" ]; then diff --git a/security/nss/tests/chains/scenarios/ocsp.cfg b/security/nss/tests/chains/scenarios/ocsp.cfg index d552c2917..a3e0e18c0 100644 --- a/security/nss/tests/chains/scenarios/ocsp.cfg +++ b/security/nss/tests/chains/scenarios/ocsp.cfg @@ -1,5 +1,7 @@ scenario OCSP +check_ocsp OCSPEE11:x + db OCSPRoot import OCSPRoot:x:CT,C,C |