Skip to content

Commit 1001428

Browse files
adjust test case macro guard for ALLOW_INVALID_CERTSIGN builds
1 parent 506a864 commit 1001428

1 file changed

Lines changed: 4 additions & 2 deletions

File tree

tests/api/test_ossl_x509_str.c

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1510,7 +1510,7 @@ int test_X509_verify_cert_untrusted_inter(void)
15101510
#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && !defined(NO_CERTS) && \
15111511
defined(WOLFSSL_CERT_GEN) && defined(WOLFSSL_CERT_EXT) && \
15121512
!defined(NO_SHA256) && defined(USE_CERT_BUFFERS_2048) && \
1513-
!defined(NO_ASN_TIME)
1513+
!defined(NO_ASN_TIME) && !defined(ALLOW_INVALID_CERTSIGN)
15141514
/* Build a CA:TRUE intermediate signed by the 2048-bit test root
15151515
* (ca_cert_der_2048 / ca_key_der_2048). keyUsage == NULL omits the KeyUsage
15161516
* extension entirely. Returns the DER length, or <= 0 on failure. */
@@ -1619,7 +1619,9 @@ int test_X509_verify_cert_ca_no_keycertsign(void)
16191619
#if defined(OPENSSL_EXTRA) && !defined(NO_RSA) && !defined(NO_CERTS) && \
16201620
defined(WOLFSSL_CERT_GEN) && defined(WOLFSSL_CERT_EXT) && \
16211621
!defined(NO_SHA256) && defined(USE_CERT_BUFFERS_2048) && \
1622-
!defined(NO_ASN_TIME)
1622+
!defined(NO_ASN_TIME) && !defined(ALLOW_INVALID_CERTSIGN)
1623+
/* ALLOW_INVALID_CERTSIGN disables the keyCertSign enforcement that Case 1
1624+
* relies on, so the test is only meaningful when it is not defined. */
16231625
WC_RNG rng;
16241626
RsaKey caKey, intKey, leafKey;
16251627
int rngI = 0, caI = 0, intI = 0, leafI = 0;

0 commit comments

Comments
 (0)