Remove tests that are now covered by regress/lib/libssl/verify

author: tb <> 2021-08-30 17:50:05 +0000
committer: tb <> 2021-08-30 17:50:05 +0000
commit: c96960dbca904b29bdc31a6c1ea8eb4930557a9a (patch)
tree: b0a54d9f57a08c17485f5aa1cc63bd595e5a604d
parent: 3ed421833eda880e728ee2dcbb9b843589478a92 (diff)
download: openbsd-c96960dbca904b29bdc31a6c1ea8eb4930557a9a.tar.gz
openbsd-c96960dbca904b29bdc31a6c1ea8eb4930557a9a.tar.bz2
openbsd-c96960dbca904b29bdc31a6c1ea8eb4930557a9a.zip
1 files changed, 2 insertions, 65 deletions
diff --git a/src/regress/usr.bin/openssl/x509/Makefile b/src/regress/usr.bin/openssl/x509/Makefile
index 69488994af..2a23259fd4 100644
--- a/src/regress/usr.bin/openssl/x509/Makefile
+++ b/src/regress/usr.bin/openssl/x509/Makefile
@@ -1,4 +1,4 @@
-# $OpenBSD: Makefile,v 1.9 2021/08/30 09:06:04 beck Exp $
+# $OpenBSD: Makefile,v 1.10 2021/08/30 17:50:05 tb Exp $
 # Copyright (c) 2021 Jan Klemkow <j.klemkow@wemelug.de>
 #
@@ -31,72 +31,19 @@ regress:
 . endif
 .endif
-REGRESS_TARGETS +=      test-inlabel-wildcard-cert-no-CA-client
-REGRESS_TARGETS +=      test-inlabel-wildcard-cert-CA-client
-REGRESS_TARGETS +=      test-common-wildcard-cert-no-CA-client
-REGRESS_TARGETS +=      test-common-wildcard-cert-CA-client
 REGRESS_TARGETS +=      test-verify-unusual-wildcard-cert
 REGRESS_TARGETS +=      test-openssl-verify-common-wildcard-cert
-REGRESS_TARGETS +=      test-chain-certificates-s_server
 REGRESS_TARGETS +=      test-alternative-chain
 REGRESS_CLEANUP =       cleanup-ssl
 REGRESS_SETUP_ONCE =    create-libressl-test-certs
 create-libressl-test-certs: create-libressl-test-certs.pl
        ${PERL} ${.CURDIR}/$@.pl
 cleanup-ssl:
        rm *.pem *.key
-test-inlabel-wildcard-cert-no-CA-client:
-        # unusual wildcard cert, no CA given to client
-        # start server
-        ${OPENSSL} s_server -quiet -naccept 1 -cert server-unusual-wildcard.pem \
-            -key server-unusual-wildcard.pem & \
-            timeout=$$(($$(date +%s) + 5)); \
-            while fstat -p $$! | ! grep -q 'tcp .* \*:4433$$'; \
-                do test $$(date +%s) -lt $$timeout || exit 1; done
-        # start client, note - some versions of openssl return 21.
-        echo Q | ${OPENSSL} s_client -verify_return_error \
-            | grep "Verify return code: 20"
-test-inlabel-wildcard-cert-CA-client:
-        # unusual wildcard cert, CA given to client
-        # start server
-        ${OPENSSL} s_server -quiet -naccept 1 -cert server-unusual-wildcard.pem \
-            -key server-unusual-wildcard.pem & \
-            timeout=$$(($$(date +%s) + 5)); \
-            while fstat -p $$! | ! grep -q 'tcp .* \*:4433$$'; \
-                do test $$(date +%s) -lt $$timeout || exit 1; done
-        # start client
-        echo Q | ${OPENSSL} s_client -CAfile caR.pem \
-            | grep "Verify return code: 0"
-test-common-wildcard-cert-no-CA-client:
-        # common wildcard cert, no CA given to client
-        # start server
-        ${OPENSSL} s_server -quiet -naccept 1 -cert server-common-wildcard.pem \
-            -key server-common-wildcard.pem & \
-            timeout=$$(($$(date +%s) + 5)); \
-            while fstat -p $$! | ! grep -q 'tcp .* \*:4433$$'; \
-                do test $$(date +%s) -lt $$timeout || exit 1; done
-        # start client, note - some versions of openssl return 21.
-        echo Q | ${OPENSSL} s_client \
-            | grep "Verify return code: 20"
-test-common-wildcard-cert-CA-client:
-        # common wildcard cert, CA given to client
-        # start server
-        ${OPENSSL} s_server -quiet -naccept 1 -cert server-common-wildcard.pem \
-            -key server-common-wildcard.pem & \
-            timeout=$$(($$(date +%s) + 5)); \
-            while fstat -p $$! | ! grep -q 'tcp .* \*:4433$$'; \
-                do test $$(date +%s) -lt $$timeout || exit 1; done
-        # start client
-        echo Q | ${OPENSSL} s_client -CAfile caR.pem \
-            | grep "Verify return code: 0"
 test-verify-unusual-wildcard-cert:
        # openssl verify, unusual wildcard cert
        ${OPENSSL} verify -CAfile caR.pem server-unusual-wildcard.pem \
@@ -107,16 +54,6 @@ test-openssl-verify-common-wildcard-cert:
        ${OPENSSL} verify -CAfile caR.pem server-common-wildcard.pem \
            | grep "server-common-wildcard.pem: OK"
-test-chain-certificates-s_server:
-        # Not all chain certificates are sent in s_server
-        # start server
-        ${OPENSSL} s_server -quiet -naccept 1 -cert server-subca-chainS.pem -CAfile subcaR.pem & \
-            timeout=$$(($$(date +%s) + 5)); \
-            while fstat -p $$! | ! grep -q 'tcp .* \*:4433$$'; \
-                do test $$(date +%s) -lt $$timeout || exit 1; done
-        # start client
-        ${OPENSSL} s_client -CAfile caR.pem | grep "Verify return code: 0"
 test-alternative-chain:
        # alternative chain not found
        ${OPENSSL} verify -verbose -trusted caR.pem -untrusted chainSX.pem \
author	tb <>	2021-08-30 17:50:05 +0000
committer	tb <>	2021-08-30 17:50:05 +0000
commit	c96960dbca904b29bdc31a6c1ea8eb4930557a9a (patch)
tree	b0a54d9f57a08c17485f5aa1cc63bd595e5a604d
parent	3ed421833eda880e728ee2dcbb9b843589478a92 (diff)
download	openbsd-c96960dbca904b29bdc31a6c1ea8eb4930557a9a.tar.gz openbsd-c96960dbca904b29bdc31a6c1ea8eb4930557a9a.tar.bz2 openbsd-c96960dbca904b29bdc31a6c1ea8eb4930557a9a.zip

diff --git a/src/regress/usr.bin/openssl/x509/Makefile b/src/regress/usr.bin/openssl/x509/Makefile index 69488994af..2a23259fd4 100644 --- a/src/regress/usr.bin/openssl/x509/Makefile +++ b/src/regress/usr.bin/openssl/x509/Makefile
@@ -1,4 +1,4 @@
1	# $OpenBSD: Makefile,v 1.9 2021/08/30 09:06:04 beck Exp $	1	# $OpenBSD: Makefile,v 1.10 2021/08/30 17:50:05 tb Exp $
2		2
3	# Copyright (c) 2021 Jan Klemkow <j.klemkow@wemelug.de>	3	# Copyright (c) 2021 Jan Klemkow <j.klemkow@wemelug.de>
4	#	4	#
@@ -31,72 +31,19 @@ regress:
31	. endif	31	. endif
32	.endif	32	.endif
33		33
34	REGRESS_TARGETS += test-inlabel-wildcard-cert-no-CA-client
35	REGRESS_TARGETS += test-inlabel-wildcard-cert-CA-client
36	REGRESS_TARGETS += test-common-wildcard-cert-no-CA-client
37	REGRESS_TARGETS += test-common-wildcard-cert-CA-client
38	REGRESS_TARGETS += test-verify-unusual-wildcard-cert	34	REGRESS_TARGETS += test-verify-unusual-wildcard-cert
39	REGRESS_TARGETS += test-openssl-verify-common-wildcard-cert	35	REGRESS_TARGETS += test-openssl-verify-common-wildcard-cert
40	REGRESS_TARGETS += test-chain-certificates-s_server
41	REGRESS_TARGETS += test-alternative-chain	36	REGRESS_TARGETS += test-alternative-chain
		37
42	REGRESS_CLEANUP = cleanup-ssl	38	REGRESS_CLEANUP = cleanup-ssl
43	REGRESS_SETUP_ONCE = create-libressl-test-certs	39	REGRESS_SETUP_ONCE = create-libressl-test-certs
44		40
45
46	create-libressl-test-certs: create-libressl-test-certs.pl	41	create-libressl-test-certs: create-libressl-test-certs.pl
47	${PERL} ${.CURDIR}/$@.pl	42	${PERL} ${.CURDIR}/$@.pl
48		43
49	cleanup-ssl:	44	cleanup-ssl:
50	rm .pem .key	45	rm .pem .key
51		46
52	test-inlabel-wildcard-cert-no-CA-client:
53	# unusual wildcard cert, no CA given to client
54	# start server
55	${OPENSSL} s_server -quiet -naccept 1 -cert server-unusual-wildcard.pem \
56	-key server-unusual-wildcard.pem & \
57	timeout=$$(($$(date +%s) + 5)); \
58	while fstat -p $$! \| ! grep -q 'tcp .* \*:4433$$'; \
59	do test $$(date +%s) -lt $$timeout \|\| exit 1; done
60	# start client, note - some versions of openssl return 21.
61	echo Q \| ${OPENSSL} s_client -verify_return_error \
62	\| grep "Verify return code: 20"
63
64	test-inlabel-wildcard-cert-CA-client:
65	# unusual wildcard cert, CA given to client
66	# start server
67	${OPENSSL} s_server -quiet -naccept 1 -cert server-unusual-wildcard.pem \
68	-key server-unusual-wildcard.pem & \
69	timeout=$$(($$(date +%s) + 5)); \
70	while fstat -p $$! \| ! grep -q 'tcp .* \*:4433$$'; \
71	do test $$(date +%s) -lt $$timeout \|\| exit 1; done
72	# start client
73	echo Q \| ${OPENSSL} s_client -CAfile caR.pem \
74	\| grep "Verify return code: 0"
75
76	test-common-wildcard-cert-no-CA-client:
77	# common wildcard cert, no CA given to client
78	# start server
79	${OPENSSL} s_server -quiet -naccept 1 -cert server-common-wildcard.pem \
80	-key server-common-wildcard.pem & \
81	timeout=$$(($$(date +%s) + 5)); \
82	while fstat -p $$! \| ! grep -q 'tcp .* \*:4433$$'; \
83	do test $$(date +%s) -lt $$timeout \|\| exit 1; done
84	# start client, note - some versions of openssl return 21.
85	echo Q \| ${OPENSSL} s_client \
86	\| grep "Verify return code: 20"
87
88	test-common-wildcard-cert-CA-client:
89	# common wildcard cert, CA given to client
90	# start server
91	${OPENSSL} s_server -quiet -naccept 1 -cert server-common-wildcard.pem \
92	-key server-common-wildcard.pem & \
93	timeout=$$(($$(date +%s) + 5)); \
94	while fstat -p $$! \| ! grep -q 'tcp .* \*:4433$$'; \
95	do test $$(date +%s) -lt $$timeout \|\| exit 1; done
96	# start client
97	echo Q \| ${OPENSSL} s_client -CAfile caR.pem \
98	\| grep "Verify return code: 0"
99
100	test-verify-unusual-wildcard-cert:	47	test-verify-unusual-wildcard-cert:
101	# openssl verify, unusual wildcard cert	48	# openssl verify, unusual wildcard cert
102	${OPENSSL} verify -CAfile caR.pem server-unusual-wildcard.pem \	49	${OPENSSL} verify -CAfile caR.pem server-unusual-wildcard.pem \
@@ -107,16 +54,6 @@ test-openssl-verify-common-wildcard-cert:
107	${OPENSSL} verify -CAfile caR.pem server-common-wildcard.pem \	54	${OPENSSL} verify -CAfile caR.pem server-common-wildcard.pem \
108	\| grep "server-common-wildcard.pem: OK"	55	\| grep "server-common-wildcard.pem: OK"
109		56
110	test-chain-certificates-s_server:
111	# Not all chain certificates are sent in s_server
112	# start server
113	${OPENSSL} s_server -quiet -naccept 1 -cert server-subca-chainS.pem -CAfile subcaR.pem & \
114	timeout=$$(($$(date +%s) + 5)); \
115	while fstat -p $$! \| ! grep -q 'tcp .* \*:4433$$'; \
116	do test $$(date +%s) -lt $$timeout \|\| exit 1; done
117	# start client
118	${OPENSSL} s_client -CAfile caR.pem \| grep "Verify return code: 0"
119
120	test-alternative-chain:	57	test-alternative-chain:
121	# alternative chain not found	58	# alternative chain not found
122	${OPENSSL} verify -verbose -trusted caR.pem -untrusted chainSX.pem \	59	${OPENSSL} verify -verbose -trusted caR.pem -untrusted chainSX.pem \