2 * Copyright 2016-2018 The OpenSSL Project Authors. All Rights Reserved.
4 * Licensed under the Apache License 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 * https://www.openssl.org/source/license.html
8 * or in the file LICENSE in the source distribution.
15 #include <openssl/x509.h>
16 #include <openssl/pem.h>
17 #include <openssl/conf.h>
18 #include <openssl/err.h>
19 #include "internal/nelem.h"
22 static int test_certs(int num)
27 unsigned char *data = 0;
29 typedef X509 *(*d2i_X509_t)(X509 **, const unsigned char **, long);
30 typedef int (*i2d_X509_t)(const X509 *, unsigned char **);
32 BIO *fp = BIO_new_file(test_get_argument(num), "r");
38 for (c = 0; !err && PEM_read_bio(fp, &name, &header, &data, &len); ++c) {
39 const int trusted = (strcmp(name, PEM_STRING_X509_TRUSTED) == 0);
41 d2i_X509_t d2i = trusted ? d2i_X509_AUX : d2i_X509;
42 i2d_X509_t i2d = trusted ? i2d_X509_AUX : i2d_X509;
44 const unsigned char *p = data;
45 unsigned char *buf = NULL;
50 && strcmp(name, PEM_STRING_X509) != 0
51 && strcmp(name, PEM_STRING_X509_OLD) != 0) {
52 TEST_error("unexpected PEM object: %s", name);
56 cert = d2i(NULL, &p, len);
58 if (cert == NULL || (p - data) != len) {
59 TEST_error("error parsing input %s", name);
64 /* Test traditional 2-pass encoding into caller allocated buffer */
65 enclen = i2d(cert, NULL);
67 TEST_error("encoded length %ld of %s != input length %ld",
72 if ((buf = bufp = OPENSSL_malloc(len)) == NULL) {
73 TEST_perror("malloc");
77 enclen = i2d(cert, &bufp);
79 TEST_error("encoded length %ld of %s != input length %ld",
84 enclen = (long) (bufp - buf);
86 TEST_error("unexpected buffer position after encoding %s", name);
90 if (memcmp(buf, data, len) != 0) {
91 TEST_error("encoded content of %s does not match input", name);
96 reuse = d2i(&reuse, &p, enclen);
97 if (reuse == NULL || X509_cmp (reuse, cert)) {
98 TEST_error("X509_cmp does not work with %s", name);
105 /* Test 1-pass encoding into library allocated buffer */
106 enclen = i2d(cert, &buf);
108 TEST_error("encoded length %ld of %s != input length %ld",
113 if (memcmp(buf, data, len) != 0) {
114 TEST_error("encoded content of %s does not match input", name);
120 /* Encode just the cert and compare with initial encoding */
124 /* Test 1-pass encoding into library allocated buffer */
125 enclen = i2d(cert, &buf);
127 TEST_error("encoded length %ld of %s > input length %ld",
132 if (memcmp(buf, data, enclen) != 0) {
133 TEST_error("encoded cert content does not match input");
140 * If any of these were null, PEM_read() would have failed.
146 OPENSSL_free(header);
152 if (ERR_GET_REASON(ERR_peek_last_error()) == PEM_R_NO_START_LINE) {
153 /* Reached end of PEM file */
160 /* Some other PEM read error */
164 OPT_TEST_DECLARE_USAGE("certfile...\n")
166 int setup_tests(void)
168 size_t n = test_get_argument_count();
172 ADD_ALL_TESTS(test_certs, (int)n);