Always revoke certificate on CRL RFC5280 does not state that the `revocationDate` should be checked. In addition, when no time source is available (i.e., when MBEDTLS_HAVE_TIME_DATE is not defined), `mbedtls_x509_time_is_past` always returns 0. This results in the CRL not being checked at all. https://tools.ietf.org/html/rfc5280 Signed-off-by: Raoul Strackx <raoul.strackx@fortanix.com>

commit: 75475d8465660a2b3612e7ecf10fb43c79ca0c71 [log] [tgz]
author: Raoul Strackx <raoul.strackx@fortanix.com> Mon Jun 15 17:03:13 2020 +0200
committer: Raoul Strackx <raoul.strackx@fortanix.com> Wed Aug 26 11:42:52 2020 +0200
tree: 3d5537a5a557edf915c55ea4c15d1ccb5375c449
parent: 14cb46de2484f25083d2a88ef0ebff8da89433c0 [diff] [blame]
diff --git a/tests/scripts/all.sh b/tests/scripts/all.sh
index d0a3edc..9194aa5 100755
--- a/tests/scripts/all.sh
+++ b/tests/scripts/all.sh

@@ -1245,6 +1245,16 @@
     make test
 }
 
+component_test_no_date_time () {
+    msg "build: default config without MBEDTLS_HAVE_TIME_DATE"
+    scripts/config.pl unset MBEDTLS_HAVE_TIME_DATE
+    CC=gcc cmake
+    make
+
+    msg "test: !MBEDTLS_HAVE_TIME_DATE - main suites"
+    make test
+}
+
 component_test_platform_calloc_macro () {
     msg "build: MBEDTLS_PLATFORM_{CALLOC/FREE}_MACRO enabled (ASan build)"
     scripts/config.pl set MBEDTLS_PLATFORM_MEMORY
commit	75475d8465660a2b3612e7ecf10fb43c79ca0c71	[log] [tgz]
author	Raoul Strackx <raoul.strackx@fortanix.com>	Mon Jun 15 17:03:13 2020 +0200
committer	Raoul Strackx <raoul.strackx@fortanix.com>	Wed Aug 26 11:42:52 2020 +0200
tree	3d5537a5a557edf915c55ea4c15d1ccb5375c449
parent	14cb46de2484f25083d2a88ef0ebff8da89433c0 [diff] [blame]