2 # Copyright 2015-2016 The OpenSSL Project Authors. All Rights Reserved.
4 # Licensed under the OpenSSL license (the "License"). You may not use
5 # this file except in compliance with the License. You can obtain a copy
6 # in the file LICENSE in the source distribution or at
7 # https://www.openssl.org/source/license.html
14 use File::Spec::Functions qw/:DEFAULT canonpath/;
15 use OpenSSL::Test qw/:DEFAULT srctop_file/;
17 setup("test_x509_store");
19 # We use 'openssl verify' for these tests, as it contains everything
20 # we need to conduct these tests. The tests here are a subset of the
21 # ones found in 25-test_verify.t
24 my ($cert, $purpose, $trustedpath, $untrusted, @opts) = @_;
25 my @args = qw(openssl verify -auth_level 1 -purpose);
26 my @path = qw(test certs);
27 push(@args, "$purpose", @opts);
28 push(@args, "-CApath", $trustedpath);
29 for (@$untrusted) { push(@args, "-untrusted", srctop_file(@path, "$_.pem")) }
30 push(@args, srctop_file(@path, "$cert.pem"));
36 indir "60-test_x509_store" => sub {
38 copy(srctop_file("test", "certs", "$_.pem"), curdir());
40 ok(run(app([qw(openssl rehash), curdir()])), "Rehashing");
43 ok(verify("ee-cert", "sslserver", curdir(), ["ca-cert"], "-show_chain"),
46 # Failure because root cert not present in CApath
47 ok(!verify("ca-root2", "any", curdir(), [], "-show_chain"));
48 }, create => 1, cleanup => 1;