diff options
author | Sumit Bose <sbose@redhat.com> | 2016-03-24 20:42:12 +0100 |
---|---|---|
committer | Lukas Slebodnik <lslebodn@redhat.com> | 2016-06-09 11:58:12 +0200 |
commit | aa35995ef056aa8ae052a47c62c6750b7adf065e (patch) | |
tree | 4d277534d917751235da655881fdc878710b0d9d /src/tests/cmocka | |
parent | 875c90d531e6869a92da4b515db729ffce7c4244 (diff) | |
download | sssd-aa35995ef056aa8ae052a47c62c6750b7adf065e.tar.gz sssd-aa35995ef056aa8ae052a47c62c6750b7adf065e.tar.xz sssd-aa35995ef056aa8ae052a47c62c6750b7adf065e.zip |
p11: add no_verification option
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Diffstat (limited to 'src/tests/cmocka')
-rw-r--r-- | src/tests/cmocka/test_cert_utils.c | 4 | ||||
-rw-r--r-- | src/tests/cmocka/test_pam_srv.c | 27 |
2 files changed, 30 insertions, 1 deletions
diff --git a/src/tests/cmocka/test_cert_utils.c b/src/tests/cmocka/test_cert_utils.c index 658391d14..35e8cb751 100644 --- a/src/tests/cmocka/test_cert_utils.c +++ b/src/tests/cmocka/test_cert_utils.c @@ -345,6 +345,8 @@ void test_cert_to_ssh_key(void **state) size_t exp_key_size; uint8_t *der; size_t der_size; + struct cert_verify_opts cert_verify_opts = { .do_ocsp = false, + .do_verification = true }; struct test_state *ts = talloc_get_type_abort(*state, struct test_state); assert_non_null(ts); @@ -356,7 +358,7 @@ void test_cert_to_ssh_key(void **state) assert_non_null(exp_key); ret = cert_to_ssh_key(ts, "sql:" ABS_SRC_DIR "/src/tests/cmocka/p11_nssdb", - der, der_size, false, &key, &key_size); + der, der_size, &cert_verify_opts, &key, &key_size); assert_int_equal(ret, EOK); assert_int_equal(key_size, exp_key_size); assert_memory_equal(key, exp_key, exp_key_size); diff --git a/src/tests/cmocka/test_pam_srv.c b/src/tests/cmocka/test_pam_srv.c index 1e3ac542c..fdce524ce 100644 --- a/src/tests/cmocka/test_pam_srv.c +++ b/src/tests/cmocka/test_pam_srv.c @@ -320,6 +320,30 @@ static int pam_test_setup(void **state) return 0; } +static int pam_test_setup_no_verification(void **state) +{ + struct sss_test_conf_param dom_params[] = { + { "enumerate", "false" }, + { "cache_credentials", "true" }, + { NULL, NULL }, /* Sentinel */ + }; + + struct sss_test_conf_param pam_params[] = { + { "p11_child_timeout", "30" }, + { NULL, NULL }, /* Sentinel */ + }; + + struct sss_test_conf_param monitor_params[] = { + { "certificate_verification", "no_verification" }, + { NULL, NULL }, /* Sentinel */ + }; + + test_pam_setup(dom_params, pam_params, monitor_params, state); + + pam_test_setup_common(); + return 0; +} + static int pam_cached_test_setup(void **state) { struct sss_test_conf_param dom_params[] = { @@ -1701,6 +1725,9 @@ int main(int argc, const char *argv[]) pam_test_setup, pam_test_teardown), cmocka_unit_test_setup_teardown(test_pam_cert_auth, pam_test_setup, pam_test_teardown), + cmocka_unit_test_setup_teardown(test_pam_cert_auth, + pam_test_setup_no_verification, + pam_test_teardown), #endif /* HAVE_NSS */ }; |