Add CSR write testing using opaque keys Parse and verify CSR programatically instead of using predetermined data, to not tamper with randomness in tests.

commit: 5f7bad34bbc61de271922b99cae807f59d7d9c98 [log] [tgz]
author: Andrzej Kurek <andrzej.kurek@arm.com> Mon Nov 19 10:12:37 2018 -0500
committer: Andrzej Kurek <andrzej.kurek@arm.com> Thu Nov 22 12:05:08 2018 -0500
tree: 78fc8df16227592159f46de1fa774e465f2ae01c
parent: 5fec0860f91457d82992a940b0c0e1d6952544c4 [diff] [blame]
diff --git a/tests/suites/test_suite_x509write.data b/tests/suites/test_suite_x509write.data
index 5b54d85..c932c68 100644
--- a/tests/suites/test_suite_x509write.data
+++ b/tests/suites/test_suite_x509write.data

@@ -42,6 +42,10 @@
 depends_on:MBEDTLS_SHA1_C:MBEDTLS_ECDSA_C:MBEDTLS_ECDSA_DETERMINISTIC:MBEDTLS_ECP_DP_SECP256R1_ENABLED
 x509_csr_check:"data_files/server5.key":"data_files/server5.req.ku.sha1":MBEDTLS_MD_SHA1:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION:0
 
+Certificate Request check opaque Server5 ECDSA, key_usage
+depends_on:MBEDTLS_SHA256_C:MBEDTLS_ECDSA_C:MBEDTLS_ECDSA_DETERMINISTIC:MBEDTLS_ECP_DP_SECP256R1_ENABLED:MBEDTLS_USE_PSA_CRYPTO
+x509_csr_check_opaque:"data_files/server5.key":MBEDTLS_MD_SHA256:MBEDTLS_X509_KU_DIGITAL_SIGNATURE | MBEDTLS_X509_KU_NON_REPUDIATION:0
+
 Certificate write check Server1 SHA1
 depends_on:MBEDTLS_SHA1_C:MBEDTLS_RSA_C:MBEDTLS_PKCS1_V15:MBEDTLS_DES_C:MBEDTLS_CIPHER_MODE_CBC:MBEDTLS_MD5_C
 x509_crt_check:"data_files/server1.key":"":"C=NL,O=PolarSSL,CN=PolarSSL Server 1":"data_files/test-ca.key":"PolarSSLTest":"C=NL,O=PolarSSL,CN=PolarSSL Test CA":"1":"20110212144406":"20210212144406":MBEDTLS_MD_SHA1:0:0:1:-1:"data_files/server1.crt":0
commit	5f7bad34bbc61de271922b99cae807f59d7d9c98	[log] [tgz]
author	Andrzej Kurek <andrzej.kurek@arm.com>	Mon Nov 19 10:12:37 2018 -0500
committer	Andrzej Kurek <andrzej.kurek@arm.com>	Thu Nov 22 12:05:08 2018 -0500
tree	78fc8df16227592159f46de1fa774e465f2ae01c
parent	5fec0860f91457d82992a940b0c0e1d6952544c4 [diff] [blame]