X-Git-Url: https://git.librecmc.org/?a=blobdiff_plain;f=test%2Fcmp_vfy_test.c;h=297c01edb2dccd42d808879107fd15efe9093717;hb=2dee33dfb364c6e5d9339ddf9293991ec654b092;hp=22588aef1a6cc743d7996aa21162ff124e881e39;hpb=430efff1b9baa36099b5443c924f96b854e00300;p=oweals%2Fopenssl.git diff --git a/test/cmp_vfy_test.c b/test/cmp_vfy_test.c index 22588aef1a..297c01edb2 100644 --- a/test/cmp_vfy_test.c +++ b/test/cmp_vfy_test.c @@ -123,7 +123,8 @@ static int test_verify_popo_bad(void) static int execute_validate_msg_test(CMP_VFY_TEST_FIXTURE *fixture) { return TEST_int_eq(fixture->expected, - OSSL_CMP_validate_msg(fixture->cmp_ctx, fixture->msg)); + ossl_cmp_msg_check_update(fixture->cmp_ctx, fixture->msg, + NULL, 0)); } static int execute_validate_cert_path_test(CMP_VFY_TEST_FIXTURE *fixture) @@ -157,6 +158,7 @@ static int test_validate_msg_mac_alg_protection(void) return result; } +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION static int test_validate_msg_mac_alg_protection_bad(void) { SETUP_TEST_FIXTURE(CMP_VFY_TEST_FIXTURE, set_up); @@ -175,6 +177,7 @@ static int test_validate_msg_mac_alg_protection_bad(void) EXECUTE_TEST(execute_validate_msg_test, tear_down); return result; } +#endif static int add_trusted(OSSL_CMP_CTX *ctx, X509 *cert) { @@ -213,10 +216,12 @@ static int test_validate_msg_signature_trusted_ok(void) return test_validate_msg_signature_partial_chain(0); } +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION static int test_validate_msg_signature_trusted_expired(void) { return test_validate_msg_signature_partial_chain(1); } +#endif static int test_validate_msg_signature_srvcert_wrong(void) { @@ -245,10 +250,12 @@ static int test_validate_msg_signature_srvcert(int bad_sig) return result; } +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION static int test_validate_msg_signature_bad(void) { return test_validate_msg_signature_srvcert(1); } +#endif static int test_validate_msg_signature_sender_cert_srvcert(void) { @@ -297,6 +304,7 @@ static int test_validate_msg_signature_sender_cert_extracert(void) } +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION static int test_validate_msg_signature_sender_cert_absent(void) { SETUP_TEST_FIXTURE(CMP_VFY_TEST_FIXTURE, set_up); @@ -308,7 +316,7 @@ static int test_validate_msg_signature_sender_cert_absent(void) EXECUTE_TEST(execute_validate_msg_test, tear_down); return result; } - +#endif static int test_validate_with_sender(const X509_NAME *name, int expected) { @@ -334,6 +342,7 @@ static int test_validate_msg_signature_unexpected_sender(void) return test_validate_with_sender(X509_get_subject_name(root), 0); } +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION static int test_validate_msg_unprotected_request(void) { SETUP_TEST_FIXTURE(CMP_VFY_TEST_FIXTURE, set_up); @@ -345,6 +354,7 @@ static int test_validate_msg_unprotected_request(void) EXECUTE_TEST(execute_validate_msg_test, tear_down); return result; } +#endif static void setup_path(CMP_VFY_TEST_FIXTURE **fixture, X509 *wrong, int expired) { @@ -606,19 +616,29 @@ int setup_tests(void) ADD_TEST(test_verify_popo_bad); #endif ADD_TEST(test_validate_msg_signature_trusted_ok); +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION ADD_TEST(test_validate_msg_signature_trusted_expired); +#endif ADD_TEST(test_validate_msg_signature_srvcert_wrong); +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION ADD_TEST(test_validate_msg_signature_bad); +#endif ADD_TEST(test_validate_msg_signature_sender_cert_srvcert); ADD_TEST(test_validate_msg_signature_sender_cert_untrusted); ADD_TEST(test_validate_msg_signature_sender_cert_trusted); ADD_TEST(test_validate_msg_signature_sender_cert_extracert); +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION ADD_TEST(test_validate_msg_signature_sender_cert_absent); +#endif ADD_TEST(test_validate_msg_signature_expected_sender); ADD_TEST(test_validate_msg_signature_unexpected_sender); +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION ADD_TEST(test_validate_msg_unprotected_request); +#endif ADD_TEST(test_validate_msg_mac_alg_protection); +#ifndef FUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION ADD_TEST(test_validate_msg_mac_alg_protection_bad); +#endif /* Cert path validation tests */ ADD_TEST(test_validate_cert_path_ok);