use warnings;
use File::Spec;
+use OpenSSL::Test::Utils;
use OpenSSL::Test qw/:DEFAULT srctop_file/;
setup("test_x509");
0, 'Comparing utf8 output');
unlink $out;
-# producing and checking self-issued (but not self-signed) cert
-my @path = qw(test certs);
-my $subj = "/CN=CA"; # using same DN as in issuer of ee-cert.pem
-my $pkey = srctop_file(@path, "ca-key.pem"); # issuer private key
-my $pubkey = "ca-pubkey.pem"; # the corresponding issuer public key
-# use any (different) key for signing our self-issued cert:
-my $signkey = srctop_file(@path, "ee-ecdsa-key.pem");
-my $selfout = "self-issued.out";
-my $testcert = srctop_file(@path, "ee-cert.pem");
-ok(run(app(["openssl", "pkey", "-in", $pkey, "-pubout", "-out", $pubkey]))
- &&
- run(app(["openssl", "x509", "-new", "-force_pubkey", $pubkey,
- "-subj", $subj, "-signkey", $signkey, "-out", $selfout]))
- &&
- run(app(["openssl", "verify", "-no_check_time",
- "-trusted", $selfout, $testcert])));
-unlink $pubkey;
-unlink $selfout;
+SKIP: {
+ skip "EC disabled", 1 if disabled("ec");
+
+ # producing and checking self-issued (but not self-signed) cert
+ my @path = qw(test certs);
+ my $subj = "/CN=CA"; # using same DN as in issuer of ee-cert.pem
+ my $pkey = srctop_file(@path, "ca-key.pem"); # issuer private key
+ my $pubkey = "ca-pubkey.pem"; # the corresponding issuer public key
+ # use any (different) key for signing our self-issued cert:
+ my $signkey = srctop_file(@path, "ee-ecdsa-key.pem");
+ my $selfout = "self-issued.out";
+ my $testcert = srctop_file(@path, "ee-cert.pem");
+ ok(run(app(["openssl", "pkey", "-in", $pkey, "-pubout", "-out", $pubkey]))
+ &&
+ run(app(["openssl", "x509", "-new", "-force_pubkey", $pubkey,
+ "-subj", $subj, "-signkey", $signkey, "-out", $selfout]))
+ &&
+ run(app(["openssl", "verify", "-no_check_time",
+ "-trusted", $selfout, $testcert])));
+ unlink $pubkey;
+ unlink $selfout;
+}
subtest 'x509 -- x.509 v1 certificate' => sub {
tconversion("x509", srctop_file("test","testx509.pem"));