mirror/gmsm
1
0
Fork 0
mirror of https://github.com/emmansun/gmsm.git synced 2025-04-28 05:06:18 +08:00
Code Issues Packages Projects Releases Wiki Activity

Fix sha1 test issue

Browse Source
This commit is contained in:
Sun Yimin 2023-03-09 13:18:42 +08:00 committed by GitHub
parent 236c37dab8
commit d968b80e5c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 11 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
smx509/x509_test.go
View File

@ -1681,18 +1681,21 @@ func TestSHA1(t *testing.T) {
if sa := cert.SignatureAlgorithm; sa != ECDSAWithSHA1 { if sa := cert.SignatureAlgorithm; sa != ECDSAWithSHA1 {
t.Errorf("signature algorithm is %v, want %v", sa, ECDSAWithSHA1) t.Errorf("signature algorithm is %v, want %v", sa, ECDSAWithSHA1)
} }
if err = cert.CheckSignatureFrom(cert); err == nil { if !debugAllowSHA1 {
t.Fatalf("certificate verification succeeded incorrectly") if err = cert.CheckSignatureFrom(cert); err == nil {
} t.Fatalf("certificate verification succeeded incorrectly")
if _, ok := err.(x509.InsecureAlgorithmError); !ok { }
t.Fatalf("certificate verification returned %v (%T), wanted InsecureAlgorithmError", err, err) if _, ok := err.(x509.InsecureAlgorithmError); !ok {
} t.Fatalf("certificate verification returned %v (%T), wanted InsecureAlgorithmError", err, err)
}
defer func(old bool) { debugAllowSHA1 = old }(debugAllowSHA1) defer func(old bool) { debugAllowSHA1 = old }(debugAllowSHA1)
debugAllowSHA1 = true debugAllowSHA1 = true
}
if err = cert.CheckSignatureFrom(cert); err != nil { if err = cert.CheckSignatureFrom(cert); err != nil {
t.Fatalf("SHA-1 certificate did not verify with GODEBUG=x509sha1=1: %v", err) t.Fatalf("SHA-1 certificate did not verify with GODEBUG=x509sha1=1: %v", err)
} }
} }
// certMissingRSANULL contains an RSA public key where the AlgorithmIdentifier // certMissingRSANULL contains an RSA public key where the AlgorithmIdentifier