2 * Copyright (c) 2015 Samsung Electronics Co., Ltd All Rights Reserved
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
17 * @file new_test_cases.cpp
18 * @author Madhan A K (madhan.ak@samsung.com)
20 * @brief PKCS#12 test cases.
26 #include <sys/types.h>
28 #include <dpl/test/test_runner.h>
29 #include <cert-svc/cinstance.h>
30 #include <cert-svc/ccert.h>
31 #include <cert-svc/cpkcs12.h>
32 #include <cert-svc/cerror.h>
33 #include <cert-svc/cprimitives.h>
34 #include <cert-service.h>
35 #include <cert-service-debug.h>
36 #include <openssl/err.h>
37 #include <openssl/pkcs12.h>
38 #include <openssl/sha.h>
39 #include <openssl/x509.h>
40 #include <openssl/pem.h>
43 static CertSvcInstance instance;
45 #define CREATE_INSTANCE \
46 certsvc_instance_new(&instance);
47 #define FREE_INSTANCE \
48 certsvc_instance_free(instance);
50 /* Getting the certificate list from system_store */
51 RUNNER_TEST(CERTSVC_PKCS12_1001_certsvc_get_root_cert_list) {
53 CertStoreType storeType = SYSTEM_STORE;
54 CertSvcStoreCertList* certList = NULL;
55 CertSvcStoreCertList* tmpNode = NULL;
61 clock_t tic = clock();
63 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
64 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
65 clock_t toc = clock();
67 if(result == CERTSVC_SUCCESS)
70 while(tmpNode != NULL)
73 tmpNode = tmpNode->next;
76 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
77 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
83 /* Set the status of the certificate to disabled/enabled in system store and get the status */
84 RUNNER_TEST(CERTSVC_PKCS12_1002_certsvc_set_cert_to_disabled_and_get_status_for_system_store) {
86 char *gname = "Certum_Root_CA.pem";
87 CertStoreType storeType = SYSTEM_STORE;
95 Alias.privateHandler = gname;
96 Alias.privateLength = strlen((const char*)gname);
98 result = certsvc_pkcs12_get_certificate_status_from_store(instance, storeType, Alias, &status);
99 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from system store failed.");
101 // if status is already disabled, roll it back to enable and go on
102 if (status == DISABLED) {
103 result = certsvc_pkcs12_set_certificate_status_to_store(instance, storeType, DISABLED, Alias, ENABLED);
104 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Roll back certificate status to system store failed.");
108 result = certsvc_pkcs12_set_certificate_status_to_store(instance, storeType, DISABLED, Alias, Status);
109 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Set certificate status to system store failed.");
111 result = certsvc_pkcs12_get_certificate_status_from_store(instance, storeType, Alias, &status);
112 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from system store failed.");
115 result = certsvc_pkcs12_set_certificate_status_to_store(instance, storeType, DISABLED, Alias, Status);
116 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Set certificate status to system store failed.");
118 result = certsvc_pkcs12_get_certificate_status_from_store(instance, storeType, Alias, &status);
119 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from system store failed.");
124 /* Install a CRT file to individual stores */
125 RUNNER_TEST(CERTSVC_PKCS12_1003_add_pem_file_in_individual_store) {
127 char path[] = "/usr/share/cert-svc/tests/wifi-server.pem";
128 CertSvcStoreCertList* certList = NULL;
129 CertSvcStoreCertList* tmpNode = NULL;
130 CertSvcStoreCertList* tmp = NULL;
137 CertSvcStoreCertList* certList1 = NULL;
138 CertSvcString buffer1, gname;
139 CertSvcString buffer2;
140 const char *temp = NULL;
141 CertSvcCertificate certificate;
144 CertSvcString Alias, Path, Pass;
146 Pass.privateHandler = pass;
147 Path.privateHandler = path;
148 Path.privateLength = strlen(path);
151 Alias.privateHandler = "PEM-wifi-server-1";
152 Alias.privateLength = strlen(Alias.privateHandler);
153 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
154 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PEM file to WIFI store failed.");
157 Alias.privateHandler = "PEM-wifi-server-2";
158 Alias.privateLength = strlen(Alias.privateHandler);
159 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
160 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PEM file to VPN store failed.");
163 Alias.privateHandler = "PEM-wifi-server-3";
164 Alias.privateLength = strlen(Alias.privateHandler);
165 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
166 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PEM file to EMAIL store failed.");
168 type = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
169 result = certsvc_pkcs12_get_certificate_list_from_store(instance, type, DISABLED, &certList, &length);
170 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
172 if(result == CERTSVC_SUCCESS)
176 while(tmpNode != NULL)
180 tmpNode = tmpNode->next;
182 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
183 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
188 type = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
189 result = certsvc_pkcs12_get_certificate_list_from_store(instance, type, DISABLED, &certList, &length);
190 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
193 while(certList!=NULL)
195 gname.privateHandler = (char *)certList->gname;
196 gname.privateLength = strlen(certList->gname);
197 result = certsvc_pkcs12_get_certificate_from_store(instance, certList->storeType, certList->gname, &certificate);
198 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get certificate from store.");
200 result = certsvc_certificate_get_string_field(certificate, CERTSVC_SUBJECT, &buffer1);
201 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
203 result = certsvc_certificate_get_string_field(certificate, CERTSVC_ISSUER_COMMON_NAME, &buffer2);
204 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
206 certsvc_string_to_cstring(buffer1, &temp, &length);
207 certsvc_string_to_cstring(buffer2, &temp, &length);
209 certsvc_string_free(buffer1);
210 certsvc_string_free(buffer2);
211 certsvc_certificate_free(certificate);
212 certList = certList->next;
215 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList1);
216 if (certList1 != NULL)
224 /* Installing pem file in all store at once */
225 RUNNER_TEST(CERTSVC_PKCS12_1004_add_pem_file_in_all_store) {
227 const char path[] = "/usr/share/cert-svc/tests/wifi-server.pem";
228 CertSvcStoreCertList* certList = NULL;
229 CertSvcStoreCertList* tmpNode = NULL;
230 CertSvcStoreCertList* tmp = NULL;
232 char *alias = "PEM-wifi-server-all-store";
239 CertSvcString Alias, Path, Pass;
241 Alias.privateHandler = alias;
242 Alias.privateLength = strlen(alias);
243 Pass.privateHandler = pass;
244 Path.privateHandler = (char *)path;
245 Path.privateLength = strlen(path);
247 type = (CertStoreType) (VPN_STORE | EMAIL_STORE | WIFI_STORE);
248 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
249 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PEM file to all store failed.");
251 type = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
252 result = certsvc_pkcs12_get_certificate_list_from_store(instance, type, DISABLED, &certList, &length);
253 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
255 if(result == CERTSVC_SUCCESS)
258 while(tmpNode != NULL)
262 tmpNode = tmpNode->next;
264 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
265 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
271 /* Install a CRT file to individual stores */
272 RUNNER_TEST(CERTSVC_PKCS12_1005_add_crt_file_in_individual_store) {
274 const char path[] = "/usr/share/cert-svc/tests/Testing.crt";
275 CertSvcStoreCertList* certList = NULL;
276 CertSvcStoreCertList* tmpNode = NULL;
277 CertSvcStoreCertList* tmp = NULL;
279 char *alias = "CRT-TestingCRT1";
285 CertSvcStoreCertList* certList1 = NULL;
286 CertSvcString buffer1, gname;
287 CertSvcString buffer2;
288 const char *temp = NULL;
289 CertSvcCertificate certificate;
292 CertSvcString Alias, Path, Pass;
294 Alias.privateHandler = alias;
295 Alias.privateLength = strlen(alias);
296 Pass.privateHandler = pass;
297 Path.privateHandler = (char *)path;
298 Path.privateLength = strlen(path);
301 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
302 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing CRT file to WIFI store failed.");
305 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
306 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing CRT file to VPN store failed.");
309 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
310 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing CRT file to EMAIL store failed.");
312 type = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
313 result = certsvc_pkcs12_get_certificate_list_from_store(instance, type, DISABLED, &certList, &length);
314 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
316 if(result == CERTSVC_SUCCESS)
319 while(tmpNode != NULL)
323 tmpNode = tmpNode->next;
325 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
326 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
330 type = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
331 result = certsvc_pkcs12_get_certificate_list_from_store(instance, type, DISABLED, &certList, &length);
332 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
335 while(certList!=NULL)
337 gname.privateHandler = (char *)certList->gname;
338 gname.privateLength = strlen(certList->gname);
339 result = certsvc_pkcs12_get_certificate_from_store(instance, certList->storeType, certList->gname, &certificate);
340 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get certificate from store.");
342 result = certsvc_certificate_get_string_field(certificate, CERTSVC_SUBJECT, &buffer1);
343 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
345 result = certsvc_certificate_get_string_field(certificate, CERTSVC_ISSUER_COMMON_NAME, &buffer2);
346 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
348 certsvc_string_to_cstring(buffer1, &temp, &length);
349 certsvc_string_to_cstring(buffer2, &temp, &length);
351 certsvc_string_free(buffer1);
352 certsvc_string_free(buffer2);
353 certsvc_certificate_free(certificate);
354 certList = certList->next;
357 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList1);
364 /* Install a CRT file to all store at once */
365 RUNNER_TEST(CERTSVC_PKCS12_1006_add_crt_file_in_all_store) {
367 const char path[] = "/usr/share/cert-svc/tests/Testing.crt";
368 CertSvcStoreCertList* certList = NULL;
369 CertSvcStoreCertList* tmpNode = NULL;
370 CertSvcStoreCertList* tmp = NULL;
372 char *alias = "CRT-TestingCRT1-all-store";
379 CertSvcString Alias, Path, Pass;
381 Alias.privateHandler = alias;
382 Alias.privateLength = strlen(alias);
383 Pass.privateHandler = pass;
384 Path.privateHandler = (char *)path;
385 Path.privateLength = strlen(path);
387 type = (CertStoreType )(WIFI_STORE | VPN_STORE | EMAIL_STORE);
388 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
389 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing CRT file to all store failed.");
391 type = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
392 result = certsvc_pkcs12_get_certificate_list_from_store(instance, type, DISABLED, &certList, &length);
393 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
395 if(result == CERTSVC_SUCCESS)
398 while(tmpNode != NULL)
402 tmpNode = tmpNode->next;
404 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
405 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
412 /* Import a P12 file to individual store */
413 RUNNER_TEST(CERTSVC_PKCS12_1007_install_p12_file_to_individual_store) {
415 const char path[] = "/usr/share/cert-svc/tests/wifiuser.p12";
416 CertSvcStoreCertList* certList = NULL;
417 CertSvcStoreCertList* tmpNode = NULL;
418 CertSvcStoreCertList* tmp = NULL;
419 const char pass[] = "wifi";
420 char *alias = "P12-WifiUser";
421 CertStoreType storeType;
427 CertSvcString Alias, Path, Pass;
429 Alias.privateHandler = (char *)alias;
430 Alias.privateLength = strlen(alias);
431 Pass.privateHandler = (char *)pass;
432 Pass.privateLength = strlen(pass);
433 Path.privateHandler = (char *)path;
434 Path.privateLength = strlen(path);
437 result = certsvc_pkcs12_import_from_file(instance, Path, Pass, Alias);
438 RUNNER_ASSERT_MSG(result == CERTSVC_SUCCESS, "certsvc_pkcs12_import_from_file failed.");
441 storeType = WIFI_STORE;
442 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
443 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing p12 file to WIFI store failed.");
445 storeType = VPN_STORE;
446 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
447 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing p12 file to VPN store failed.");
449 storeType = EMAIL_STORE;
450 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
451 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing p12 file to EMAIL store failed.");
453 storeType = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
454 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
455 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
457 if(result == CERTSVC_SUCCESS)
460 while(tmpNode != NULL)
464 tmpNode = tmpNode->next;
466 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
467 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
473 /* Import a P12 file to all store */
474 RUNNER_TEST(CERTSVC_PKCS12_1008_install_p12_file_to_all_store) {
476 const char path[] = "/usr/share/cert-svc/tests/wifiuser.p12";
477 CertSvcStoreCertList* certList = NULL;
478 CertSvcStoreCertList* tmpNode = NULL;
479 CertSvcStoreCertList* tmp = NULL;
480 const char pass[] = "wifi";
481 char *alias = "P12-WifiUser-all-store";
482 CertStoreType storeType;
488 CertSvcString Alias, Path, Pass;
490 Alias.privateHandler = (char *)alias;
491 Alias.privateLength = strlen(alias);
492 Pass.privateHandler = (char *)pass;
493 Pass.privateLength = strlen(pass);
494 Path.privateHandler = (char *)path;
495 Path.privateLength = strlen(path);
497 storeType = (CertStoreType )(WIFI_STORE | VPN_STORE | EMAIL_STORE);
498 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
499 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing p12 file to WIFI store failed.");
501 storeType = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
502 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
503 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
505 if(result == CERTSVC_SUCCESS)
508 while(tmpNode != NULL)
512 tmpNode = tmpNode->next;
514 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
515 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
521 /* Import a P12 file to individual store */
522 RUNNER_TEST(CERTSVC_PKCS12_1009_install_pfx_file_to_individual_store) {
524 const char path[] = "/usr/share/cert-svc/tests/wifiserver.pfx";
525 CertSvcStoreCertList* certList = NULL;
526 CertSvcStoreCertList* tmpNode = NULL;
527 CertSvcStoreCertList* tmp = NULL;
528 const char pass[] = "wifi";
529 char *alias = "PFX-WifiServer";
530 CertStoreType storeType;
536 CertSvcString Alias, Path, Pass;
538 Alias.privateHandler = (char *)alias;
539 Alias.privateLength = strlen(alias);
540 Pass.privateHandler = (char *)pass;
541 Pass.privateLength = strlen(pass);
542 Path.privateHandler = (char *)path;
543 Path.privateLength = strlen(path);
545 storeType = WIFI_STORE;
546 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
547 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PFX file to WIFI store failed.");
549 storeType = VPN_STORE;
550 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
551 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PFX file to VPN store failed.");
553 storeType = EMAIL_STORE;
554 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
555 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PFX file to EMAIL store failed.");
557 storeType = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
558 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
559 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
561 if(result == CERTSVC_SUCCESS)
564 while(tmpNode != NULL)
568 tmpNode = tmpNode->next;
570 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
571 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
577 RUNNER_TEST(CERTSVC_PKCS12_1010_install_pfx_file_to_all_store) {
579 const char path[] = "/usr/share/cert-svc/tests/wifiserver.pfx";
580 const char pass[] = "wifi";
581 char *alias = "PFX-WifiServer-all-store";
582 CertStoreType storeType;
583 CertSvcStoreCertList* certList = NULL;
584 CertSvcStoreCertList* tmpNode = NULL;
585 CertSvcStoreCertList* tmp = NULL;
591 CertSvcString Alias, Path, Pass;
593 Alias.privateHandler = (char *)alias;
594 Alias.privateLength = strlen(alias);
595 Pass.privateHandler = (char *)pass;
596 Pass.privateLength = strlen(pass);
597 Path.privateHandler = (char *)path;
598 Path.privateLength = strlen(path);
600 storeType = (CertStoreType) (VPN_STORE | EMAIL_STORE | WIFI_STORE);
601 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
602 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PFX file to WIFI store failed.");
604 storeType = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
605 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
606 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
608 if(result == CERTSVC_SUCCESS)
612 while(tmpNode != NULL)
616 tmpNode = tmpNode->next;
618 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
619 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
625 /* Getting all end user & root certificate list from WIFI,VPN,EMAIL store */
626 RUNNER_TEST(CERTSVC_PKCS12_1011_get_all_end_user_certificate_from_store) {
628 CertSvcStoreCertList* certList = NULL;
629 CertSvcStoreCertList* tmpNode = NULL;
630 CertStoreType storeType = (CertStoreType) (WIFI_STORE);
636 result = certsvc_pkcs12_get_end_user_certificate_list_from_store(instance, storeType, &certList, &length);
637 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting end user certificate list from store failed.");
641 tmpNode = tmpNode->next;
643 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
647 storeType = (CertStoreType) (VPN_STORE);
648 result = certsvc_pkcs12_get_end_user_certificate_list_from_store(instance, storeType, &certList, &length);
649 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting end user certificate list from store failed.");
653 tmpNode = tmpNode->next;
655 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
659 storeType = (CertStoreType) (EMAIL_STORE);
660 result = certsvc_pkcs12_get_end_user_certificate_list_from_store(instance, storeType, &certList, &length);
661 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting end user certificate list from store failed.");
665 tmpNode = tmpNode->next;
667 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
671 storeType = (CertStoreType) (WIFI_STORE);
672 result = certsvc_pkcs12_get_root_certificate_list_from_store(instance, storeType, &certList, &length);
673 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting end user certificate list from store failed.");
677 tmpNode = tmpNode->next;
679 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
683 storeType = (CertStoreType) (VPN_STORE);
684 result = certsvc_pkcs12_get_root_certificate_list_from_store(instance, storeType, &certList, &length);
685 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting end user certificate list from store failed.");
689 tmpNode = tmpNode->next;
691 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
695 storeType = (CertStoreType) (EMAIL_STORE);
696 result = certsvc_pkcs12_get_root_certificate_list_from_store(instance, storeType, &certList, &length);
697 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting end user certificate list from store failed.");
701 tmpNode = tmpNode->next;
703 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
710 /* Delete all certificate from WIFI,VPN,EMAIL store */
711 RUNNER_TEST(CERTSVC_PKCS12_1012_delete_all_cert_from_multiple_store) {
713 CertSvcStoreCertList* certList = NULL;
714 CertSvcStoreCertList* certList1 = NULL;
715 CertStoreType storeType = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
722 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
723 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
725 while(certList1!=NULL)
727 gname.privateHandler = (char *)certList1->gname;
728 gname.privateLength = strlen(certList1->gname);
729 result = certsvc_pkcs12_delete_certificate_from_store(instance, (CertStoreType) certList1->storeType, gname);
730 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Deleting certificate from store failed.");
731 certList1 = certList1->next;
733 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
739 /* Import the file to one store and try to get the certlist from all store */
740 RUNNER_TEST(CERTSVC_PKCS12_1013_install_pfx_file_to_one_store_and_get_list_from_multiple_store) {
742 const char path[] = "/usr/share/cert-svc/tests/wifiserver.pfx";
743 const char pass[] = "wifi";
744 char *alias = "PFX-WifiServer-one-store";
745 CertStoreType storeType;
746 CertSvcStoreCertList* certList = NULL;
747 CertSvcStoreCertList* tmpNode = NULL;
748 CertSvcStoreCertList* tmp = NULL;
752 gboolean exists = FALSE;
755 CertSvcString Alias, Path, Pass;
757 Alias.privateHandler = (char *)alias;
758 Alias.privateLength = strlen(alias);
759 Pass.privateHandler = (char *)pass;
760 Pass.privateLength = strlen(pass);
761 Path.privateHandler = (char *)path;
762 Path.privateLength = strlen(path);
764 storeType = (CertStoreType) (VPN_STORE | WIFI_STORE | EMAIL_STORE);
765 result = certsvc_pkcs12_check_alias_exists_in_store(instance, storeType, Alias, &exists);
767 /* installing the pfx in one store and getting the list from multiple store */
768 storeType = (CertStoreType) ( EMAIL_STORE );
769 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
770 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PFX file to WIFI store failed.");
772 storeType = (CertStoreType) ( VPN_STORE | WIFI_STORE );
773 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
774 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PFX file to WIFI store failed.");
776 storeType = (CertStoreType) ( VPN_STORE | WIFI_STORE | EMAIL_STORE);
777 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
778 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from system store failed");
780 if(result == CERTSVC_SUCCESS)
783 while(tmpNode != NULL)
787 tmpNode = tmpNode->next;
789 result = certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList);
790 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Freeing certificate list from system store failed");
797 /* Set the status of the certificate to disabled and trying to delete store */
798 RUNNER_TEST(CERTSVC_PKCS12_1014_installing_pfx_without_password_to_individual_store) {
800 const char path[] = "/usr/share/cert-svc/tests/without_pass.p12";
801 const char pass[] = "";
802 char *alias = "PFX-WifiServer-without-password";
803 CertStoreType storeType;
808 CertSvcString Alias, Path, Pass;
810 Alias.privateHandler = (char *)alias;
811 Alias.privateLength = strlen(alias);
812 Pass.privateHandler = (char *)pass;
813 Pass.privateLength = strlen(pass);
814 Path.privateHandler = (char *)path;
815 Path.privateLength = strlen(path);
817 storeType = (CertStoreType) (VPN_STORE | WIFI_STORE | EMAIL_STORE);
818 result = certsvc_pkcs12_check_alias_exists_in_store(instance, storeType, Alias, &exists);
820 storeType = (CertStoreType) (VPN_STORE | WIFI_STORE | EMAIL_STORE);
821 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
822 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Importing PFX file to WIFI store failed.");
828 /* Get certificate from WIFI,VPN,EMAIL store */
829 RUNNER_TEST(CERTSVC_PKCS12_1015_get_certificate_from_store) {
831 CertSvcStoreCertList* certList = NULL;
832 CertSvcStoreCertList* certList1 = NULL;
833 CertStoreType storeType = (CertStoreType) (WIFI_STORE | VPN_STORE | EMAIL_STORE);
836 CertSvcString buffer1, gname;
837 CertSvcString buffer2;
838 const char *temp = NULL;
839 CertSvcCertificate certificate;
843 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
844 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
846 while(certList!=NULL)
848 gname.privateHandler = (char *)certList->gname;
849 gname.privateLength = strlen(certList->gname);
850 result = certsvc_pkcs12_get_certificate_from_store(instance, certList->storeType, certList->gname, &certificate);
851 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get certificate from store.");
853 result = certsvc_certificate_get_string_field(certificate, CERTSVC_SUBJECT, &buffer1);
854 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
856 certsvc_string_to_cstring(buffer1, &temp, &length);
858 result = certsvc_certificate_get_string_field(certificate, CERTSVC_ISSUER_COMMON_NAME, &buffer2);
859 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
861 certsvc_string_to_cstring(buffer2, &temp, &length);
863 certsvc_string_free(buffer1);
864 certsvc_string_free(buffer2);
865 certsvc_certificate_free(certificate);
866 certList = certList->next;
868 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList1);
875 /* Get certificate from system store */
876 RUNNER_TEST(CERTSVC_PKCS12_1016_get_certificate_from_system_store) {
878 CertSvcStoreCertList* certList = NULL;
879 CertSvcStoreCertList* certList1 = NULL;
880 CertStoreType storeType = (CertStoreType) (SYSTEM_STORE);
881 int result = CERTSVC_SUCCESS;
884 CertSvcString buffer1, gname;
885 CertSvcString buffer2;
886 const char *temp = NULL;
887 CertSvcCertificate certificate;
891 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
892 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
894 while(certList!=NULL)
896 gname.privateHandler = (char *)certList->gname;
897 gname.privateLength = strlen(certList->gname);
898 result = certsvc_pkcs12_get_certificate_from_store(instance, certList->storeType, certList->gname, &certificate);
899 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get certificate from store.");
901 result = certsvc_certificate_get_string_field(certificate, CERTSVC_SUBJECT, &buffer1);
902 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
904 result = certsvc_certificate_get_string_field(certificate, CERTSVC_ISSUER_COMMON_NAME, &buffer2);
905 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
907 certsvc_string_to_cstring(buffer1, &temp, &length);
908 certsvc_string_to_cstring(buffer2, &temp, &length);
910 certsvc_string_free(buffer1);
911 certsvc_string_free(buffer2);
912 certsvc_certificate_free(certificate);
913 certList = certList->next;
916 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &certList1);
924 /* Load certificate list form store for a certificate */
925 RUNNER_TEST(CERTSVC_PKCS12_1017_load_cert_list_from_store) {
927 CertStoreType storeType;
928 CertSvcCertificateList certList;
929 CertSvcStoreCertList* certList1 = NULL;
930 CertSvcCertificate cert;
931 int result = CERTSVC_SUCCESS;
934 size_t certListlength = 0;
935 const char *temp = NULL;
936 CertSvcString buffer1,buffer2, gname;
940 storeType = (CertStoreType) (VPN_STORE);
941 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList1, &length);
942 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
943 while(certList1!=NULL)
945 gname.privateHandler = (char *)certList1->gname;
946 gname.privateLength = strlen(certList1->gname);
948 result = certsvc_pkcs12_load_certificate_list_from_store(instance, storeType, gname, &certList);
949 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Load certificate list form store failed.");
951 result = certsvc_certificate_list_get_length(certList, &certListlength);
952 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate list get length failed.");
954 for(i=0; i<certListlength; i++)
956 result = certsvc_certificate_list_get_one(certList, i, &cert);
957 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "certsvc_certificate_list_get_one returned not CERTSVC_SUCCESS");
959 result = certsvc_certificate_get_string_field(cert, CERTSVC_SUBJECT, &buffer1);
960 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
962 certsvc_string_to_cstring(buffer1, &temp, &length);
964 result = certsvc_certificate_get_string_field(cert, CERTSVC_ISSUER_COMMON_NAME, &buffer2);
965 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to get string field.");
967 certsvc_string_to_cstring(buffer2, &temp, &length);
969 break; // Should run for only one time //
975 /* Load certificate list form store for a certificate */
976 RUNNER_TEST(CERTSVC_PKCS12_1018_get_duplicate_private_key) {
978 CertStoreType storeType;
979 CertSvcStoreCertList* certList1 = NULL;
981 int result = CERTSVC_SUCCESS;
984 char *privatekey_path = NULL;
985 EVP_PKEY *privatekey = NULL;
989 storeType = (CertStoreType) (VPN_STORE);
990 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList1, &length);
991 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
992 while(certList1!=NULL)
994 gname.privateHandler = (char *)certList1->gname;
995 gname.privateLength = strlen(certList1->gname);
996 result = certsvc_pkcs12_dup_evp_pkey_from_store(instance, storeType, gname, &privatekey);
997 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting duplicate private key from store failed.");
999 privatekey_path = g_strdup_printf("%s", "/usr/share/cert-svc/pkcs12/temp.txt");
1000 if ((fp = fopen(privatekey_path, "w")) == NULL) {
1001 result = CERTSVC_FAIL;
1002 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to open file for writing.");
1005 result = PEM_write_PrivateKey(fp, privatekey, NULL, NULL, 0, NULL, NULL);
1006 RUNNER_ASSERT_MSG(result!=0, "Failed to write private key onto file.");
1009 certsvc_pkcs12_free_evp_pkey(privatekey);
1011 break; // Should run for only one time //
1017 /* Get certificate from system store */
1018 RUNNER_TEST(CERTSVC_PKCS12_1019_check_alias_exists) {
1020 char *alias = "PFX-WifiServer-without-password";
1021 CertStoreType storeType;
1022 int result = CERTSVC_SUCCESS;
1023 gboolean exists = FALSE;
1026 CertSvcString Alias;
1028 Alias.privateHandler = (char *)alias;
1029 Alias.privateLength = strlen(alias);
1030 storeType = (CertStoreType) (VPN_STORE | WIFI_STORE | EMAIL_STORE);
1031 result = certsvc_pkcs12_check_alias_exists_in_store(instance, storeType, Alias, &exists);
1032 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
1037 /* Set the status of the certificate to disabled/enabled in wifi,vpn,email store */
1038 RUNNER_TEST(CERTSVC_PKCS12_1020_certsvc_set_cert_to_disabled_and_get_status_for_individual_store) {
1040 CertSvcStoreCertList* certList = NULL;
1041 CertSvcStoreCertList* tmpNode = NULL;
1042 int array[3]={VPN_STORE,WIFI_STORE,EMAIL_STORE};
1043 int result = CERTSVC_SUCCESS;
1044 CertSvcString Alias;
1053 for(int j=0;j<3;j++)
1057 result = certsvc_pkcs12_get_certificate_list_from_store(instance, (CertStoreType)i, DISABLED, &certList, &length);
1058 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
1060 while(certList!=NULL)
1063 Alias.privateHandler = certList->gname;
1064 Alias.privateLength = strlen((const char*)certList->gname);
1066 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)i, Alias, &status);
1067 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1070 result = certsvc_pkcs12_set_certificate_status_to_store(instance, (CertStoreType)i, DISABLED, Alias, Status);
1071 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Set certificate status to system store failed.");
1073 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)i, Alias, &status);
1074 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1077 result = certsvc_pkcs12_set_certificate_status_to_store(instance, (CertStoreType)i, DISABLED, Alias, Status);
1078 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Set certificate status to system store failed.");
1080 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)i, Alias, &status);
1081 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1083 certList = certList->next;
1086 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &tmpNode);
1092 /* Negative test case */
1093 /* Install a PEM file to invalid store */
1094 RUNNER_TEST(CERTSVC_PKCS12_1021_add_pem_file_to_invalid_store) {
1096 const char path[] = "/usr/share/cert-svc/tests/wifi-server.pem";
1098 char *alias = "PFX-WifiServer-one-store";
1100 CertStoreType storeType = (CertStoreType) (-1);
1101 CertSvcString Alias, Path, Pass;
1105 Alias.privateHandler = alias;
1106 Alias.privateLength = strlen(alias);
1107 Pass.privateHandler = pass;
1108 Path.privateHandler = (char *)path;
1109 Path.privateLength = strlen(path);
1111 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
1112 RUNNER_ASSERT_MSG(result==CERTSVC_INVALID_STORE_TYPE, "Importing certifcate with existing alias to WIFI store failed.");
1114 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
1115 RUNNER_ASSERT_MSG(result==CERTSVC_INVALID_STORE_TYPE, "Importing certifcate with existing alias to VPN store failed.");
1117 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
1118 RUNNER_ASSERT_MSG(result==CERTSVC_INVALID_STORE_TYPE, "Importing certifcate with existing alias to EMAIL store failed.");
1120 /* Installing a PEM certificate to system store should fail */
1121 storeType = SYSTEM_STORE;
1122 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
1123 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing PEM file to EMAIL store failed.");
1125 /* Removing certificate to system store should fail */
1126 result = certsvc_pkcs12_delete_certificate_from_store(instance, storeType, Alias);
1127 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Deleting certificate from store failed.");
1133 /* Set the status of the certificate to disabled/enabled from invalid store */
1134 RUNNER_TEST(CERTSVC_PKCS12_1022_certsvc_set_cert_to_disabled_and_get_status_for_invalid_store) {
1136 char* gname = "eb375c3e.0";
1137 CertStoreType storeType = (CertStoreType) (DISABLED);
1141 CertSvcString Alias;
1145 Alias.privateHandler = gname;
1146 Alias.privateLength = strlen((const char*)gname);
1148 /* getting status from a invalid store should fail */
1149 result = certsvc_pkcs12_get_certificate_status_from_store(instance, storeType, Alias, &status);
1150 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1152 /* setting status to a invalid store should fail */
1154 result = certsvc_pkcs12_set_certificate_status_to_store(instance, storeType, DISABLED, Alias, Status);
1155 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Set certificate status to system store failed.");
1157 /* getting status from a invalid store should fail */
1158 result = certsvc_pkcs12_get_certificate_status_from_store(instance, storeType, Alias, &status);
1159 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1161 /* setting status to a invalid store should fail */
1163 result = certsvc_pkcs12_set_certificate_status_to_store(instance, storeType, DISABLED, Alias, Status);
1164 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Set certificate status to system store failed.");
1166 /* setting status to a invalid store should fail */
1167 result = certsvc_pkcs12_get_certificate_status_from_store(instance, storeType, Alias, &status);
1168 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1174 /* Set the status of the certificate to disabled/enabled in wifi,vpn,email store */
1175 RUNNER_TEST(CERTSVC_PKCS12_1023_certsvc_set_cert_to_disabled_and_get_status_for_invalid_store) {
1177 CertStoreType storeType = (CertStoreType) (0);
1178 CertSvcStoreCertList* certList = NULL;
1183 CertSvcString Alias;
1187 /* Getting certificate list from invalid store should fail */
1188 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
1189 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Getting certificate list from store failed.");
1190 while(certList!=NULL)
1192 Alias.privateHandler = certList->gname;
1193 Alias.privateLength = strlen((const char*)certList->gname);
1195 result = certsvc_pkcs12_get_certificate_status_from_store(instance, storeType, Alias, &status);
1196 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1199 result = certsvc_pkcs12_set_certificate_status_to_store(instance, storeType, DISABLED, Alias, Status);
1200 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Set certificate status to system store failed.");
1202 result = certsvc_pkcs12_get_certificate_status_from_store(instance, storeType, Alias, &status);
1203 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1206 result = certsvc_pkcs12_set_certificate_status_to_store(instance, storeType, DISABLED, Alias, Status);
1207 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Set certificate status to system store failed.");
1209 result = certsvc_pkcs12_get_certificate_status_from_store(instance, storeType, Alias, &status);
1210 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1212 certList = certList->next;
1218 /* Intsalling an invalid crt file to valid store & invalid store*/
1219 RUNNER_TEST(CERTSVC_PKCS12_1024_certsvc_set_and_get_for_invalid_store) {
1221 const char path[] = "/usr/share/cert-svc/tests/Invalidcrt.crt";
1223 char *alias = "TestingCRT1";
1228 CertSvcString Alias, Path, Pass;
1230 Alias.privateHandler = alias;
1231 Alias.privateLength = strlen(alias);
1232 Pass.privateHandler = pass;
1233 Path.privateHandler = (char *)path;
1234 Path.privateLength = strlen(path);
1236 /* Installing an invalid CRT file to valid store should fail */
1238 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
1239 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing CRT file to WIFI store failed.");
1241 /* Installing an invalid CRT file to valid store should fail */
1243 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
1244 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing CRT file to VPN store failed.");
1246 /* Installing an invalid CRT file to valid store should fail */
1248 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
1249 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing CRT file to EMAIL store failed.");
1251 /* Installing an invalid CRT file to valid store should fail */
1252 type = (CertStoreType) 0;
1253 result = certsvc_pkcs12_import_from_file_to_store(instance, type, Path, Pass, Alias);
1254 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing CRT file to EMAIL store failed.");
1259 /* Import a invalid P12 file to individual and all store */
1260 RUNNER_TEST(CERTSVC_PKCS12_1025_install_invalid_pfx_file_to_individual_and_all_store) {
1262 const char path[] = "/usr/share/cert-svc/tests/test.pfx";
1263 const char pass[] = "wifi";
1264 char *alias = "WifiServer-123";
1265 CertStoreType storeType;
1269 CertSvcString Alias, Path, Pass;
1271 Alias.privateHandler = (char *)alias;
1272 Alias.privateLength = strlen(alias);
1273 Pass.privateHandler = (char *)pass;
1274 Pass.privateLength = strlen(pass);
1275 Path.privateHandler = (char *)path;
1276 Path.privateLength = strlen(path);
1278 /* importing p12/pfx to system store should fail */
1279 storeType = SYSTEM_STORE;
1280 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
1281 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing PFX file to WIFI store failed.");
1283 /* Importing invalid pfx file to valid store should fail */
1284 storeType = WIFI_STORE;
1285 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
1286 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing PFX file to WIFI store failed.");
1288 /* Importing invalid pfx file to valid store should fail */
1289 storeType = VPN_STORE;
1290 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
1291 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing PFX file to VPN store failed.");
1293 /* Importing invalid pfx file to valid store should fail */
1294 storeType = EMAIL_STORE;
1295 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
1296 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing PFX file to EMAIL store failed.");
1298 /* Importing invalid pfx file to valid store should fail */
1299 storeType = (CertStoreType) (EMAIL_STORE | VPN_STORE | WIFI_STORE);
1300 result = certsvc_pkcs12_import_from_file_to_store(instance, storeType, Path, Pass, Alias);
1301 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Importing PFX file to EMAIL store failed.");
1306 /* Set the status of the certificate to disabled/enabled in wifi,vpn,email store */
1307 RUNNER_TEST(CERTSVC_PKCS12_1026_deleting_a_certificate_from_invalid_store) {
1309 CertStoreType storeType = (CertStoreType) (WIFI_STORE);
1310 CertSvcStoreCertList* certList = NULL;
1315 CertSvcString Alias;
1319 /* Getting certificate list from invalid store should fail */
1320 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
1321 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
1322 while(certList!=NULL)
1324 Alias.privateHandler = certList->gname;
1325 Alias.privateLength = strlen((const char*)certList->gname);
1327 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)-1, Alias, &status);
1328 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1331 result = certsvc_pkcs12_set_certificate_status_to_store(instance, (CertStoreType)-1, DISABLED, Alias, Status);
1332 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Set certificate status to system store failed.");
1334 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)-1, Alias, &status);
1335 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1338 result = certsvc_pkcs12_set_certificate_status_to_store(instance, (CertStoreType)-1, DISABLED, Alias, Status);
1339 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Set certificate status to system store failed.");
1341 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)-1, Alias, &status);
1342 RUNNER_ASSERT_MSG(result!=CERTSVC_SUCCESS, "Get certificate status from system store failed.");
1344 certList = certList->next;
1350 #define EAP_TLS_USER_CERT_PATH "user_cert.pem"
1351 #define EAP_TLS_PATH "/tmp/"
1352 #define EAP_TLS_CA_CERT_PATH "ca_cert.pem"
1353 #define EAP_TLS_PRIVATEKEY_PATH "privatekey.pem"
1355 /* Set the status of the certificate to disabled/enabled in wifi,vpn,email store */
1356 RUNNER_TEST(CERTSVC_PKCS12_1027_get_alias_name_from_gname_from_store) {
1358 CertStoreType storeType = (CertStoreType) (WIFI_STORE);
1359 CertSvcStoreCertList* certList = NULL;
1360 CertSvcCertificate user_certificate;
1361 CertSvcCertificateList cert_list;
1362 CertSvcCertificate ca_certificate;
1363 CertSvcCertificate *selected_certificate = NULL;
1368 size_t cert_counts = 0;
1369 CertSvcString Alias;
1373 EVP_PKEY *privatekey = NULL;
1374 char *privatekey_path = NULL;
1375 char *ca_cert_path = NULL;
1376 char *user_cert_path = NULL;
1381 /* Getting certificate list from invalid store should fail */
1382 result = certsvc_pkcs12_get_certificate_list_from_store(instance, storeType, DISABLED, &certList, &length);
1383 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
1384 while(certList!=NULL) {
1385 Alias.privateHandler = certList->gname;
1386 Alias.privateLength = strlen((const char*)certList->gname);
1388 result = certsvc_pkcs12_get_alias_name_for_certificate_in_store(instance, certList->storeType, Alias, &alias);
1389 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting alias name from gname failed.");
1391 result = certsvc_pkcs12_load_certificate_list_from_store(instance, certList->storeType, Alias, &cert_list);
1392 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "failed to certsvc_pkcs12_load_certificate_list");
1394 result = certsvc_certificate_list_get_length(cert_list, &cert_counts);
1395 RUNNER_ASSERT_MSG(cert_counts >= 1, "there is no certificates");
1397 selected_certificate = g_try_new0(CertSvcCertificate, cert_counts);
1398 RUNNER_ASSERT_MSG(selected_certificate != NULL, "failed to allocate memory");
1400 result = certsvc_certificate_list_get_one(cert_list, 0, &user_certificate);
1401 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "failed to certsvc_certificate_list_get_one");
1403 result = certsvc_certificate_dup_x509(user_certificate, &x509);
1405 user_cert_path = g_strdup_printf("/usr/share/cert-svc/pkcs12/file_%d", count++);
1406 fp = fopen(user_cert_path, "w");
1407 RUNNER_ASSERT_MSG(fp != NULL, "Failed to open the file for writing");
1409 if (count==5) break;
1411 result = PEM_write_X509(fp, x509);
1413 certsvc_certificate_free_x509(x509);
1414 certList = certList->next;
1416 cert_index = cert_counts - 1;
1417 selected_certificate[0] = user_certificate;
1419 ca_cert_path = g_strdup_printf("%s%s_%s", EAP_TLS_PATH, certList->gname, EAP_TLS_CA_CERT_PATH);
1420 while (cert_index) {
1421 result = certsvc_certificate_list_get_one(cert_list, cert_index, &ca_certificate);
1422 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to certsvc_certificate_list_get_one");
1424 selected_certificate[cert_counts-cert_index] = ca_certificate;
1427 result = certsvc_certificate_dup_x509(ca_certificate, &x509);
1429 fp = fopen(ca_cert_path, "a");
1430 RUNNER_ASSERT_MSG(fp != NULL, "Failed to open the file for writing");
1432 result = PEM_write_X509(fp, x509);
1434 certsvc_certificate_free_x509(x509);
1436 result = certsvc_certificate_verify(selected_certificate[0], selected_certificate, cert_counts, NULL, 0, &validity);
1437 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to verify ca_certificate");
1438 RUNNER_ASSERT_MSG(validity != 0, "Invalid certificate");
1440 result = certsvc_pkcs12_dup_evp_pkey_from_store(instance, WIFI_STORE, Alias, &privatekey);
1441 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Failed to duplicate the private key for a certificate from wifi store");
1443 privatekey_path = g_strdup_printf("%s%s_%s", EAP_TLS_PATH, certList->gname, EAP_TLS_PRIVATEKEY_PATH);
1445 fp = fopen(privatekey_path, "w");
1446 RUNNER_ASSERT_MSG(fp != NULL, "Failed to open the file for writing");
1448 result = PEM_write_PrivateKey(fp, privatekey, NULL, NULL, 0, NULL, NULL);
1450 certsvc_pkcs12_free_evp_pkey(privatekey);
1456 /* Set the status of the certificate to disabled/enabled in wifi,vpn,email store */
1457 RUNNER_TEST(CERTSVC_PKCS12_1028_certsvc_set_cert_to_disabled_and_get_status_for_individual_store) {
1459 CertSvcStoreCertList* certList = NULL;
1460 CertSvcStoreCertList* tmpNode = NULL;
1461 int array[3]={VPN_STORE,WIFI_STORE,EMAIL_STORE};
1462 int result = CERTSVC_SUCCESS;
1463 CertSvcString Alias;
1472 for(int j=0;j<3;j++)
1476 result = certsvc_pkcs12_get_certificate_list_from_store(instance, (CertStoreType)i, ENABLED, &certList, &length);
1477 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Getting certificate list from store failed.");
1479 while(certList!=NULL)
1482 Alias.privateHandler = certList->gname;
1483 Alias.privateLength = strlen((const char*)certList->gname);
1485 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)i, Alias, &status);
1486 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from store failed.");
1489 result = certsvc_pkcs12_set_certificate_status_to_store(instance, (CertStoreType)i, ENABLED, Alias, Status);
1490 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Set certificate status to store failed.");
1493 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)i, Alias, &status);
1494 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from store failed.");
1497 result = certsvc_pkcs12_set_certificate_status_to_store(instance, (CertStoreType)i, ENABLED, Alias, Status);
1498 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Set certificate status to store failed.");
1501 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)i, Alias, &status);
1502 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from store failed.");
1505 result = certsvc_pkcs12_set_certificate_status_to_store(instance, (CertStoreType)i, DISABLED, Alias, Status);
1506 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Set certificate status to store failed.");
1509 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)i, Alias, &status);
1510 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from store failed.");
1513 result = certsvc_pkcs12_set_certificate_status_to_store(instance, (CertStoreType)i, DISABLED, Alias, Status);
1514 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Set certificate status to store failed.");
1517 result = certsvc_pkcs12_get_certificate_status_from_store(instance, (CertStoreType)i, Alias, &status);
1518 RUNNER_ASSERT_MSG(result==CERTSVC_SUCCESS, "Get certificate status from store failed.");
1520 certList = certList->next;
1523 certsvc_pkcs12_free_certificate_list_loaded_from_store(instance, &tmpNode);
projects / platform / core / security / cert-svc.git / blob