Add a test for pkeyutl encrypt/decrypt using SM2

author Matt Caswell <matt@openssl.org>

Fri, 23 Jun 2023 11:05:07 +0000 (12:05 +0100)

committer Matt Caswell <matt@openssl.org>

Mon, 26 Jun 2023 08:28:23 +0000 (09:28 +0100)
author Matt Caswell <matt@openssl.org>
Fri, 23 Jun 2023 11:05:07 +0000 (12:05 +0100)
committer Matt Caswell <matt@openssl.org>
Mon, 26 Jun 2023 08:28:23 +0000 (09:28 +0100)
diff --git a/test/certs/sm2-pub.key b/test/certs/sm2-pub.key

new file mode 100644 (file)

index 0000000..ecb6b5c
--- /dev/null
+++ b/test/certs/sm2-pub.key
@@ -0,0 +1,4 @@
+-----BEGIN PUBLIC KEY-----
+MFkwEwYHKoZIzj0CAQYIKoEcz1UBgi0DQgAEMKnjZFqe34rtSmZ7g5ALnKTPKYhM
+xEy9cpq3Kzgb7/JoTTZHm9tGrG1oBUCNszq0jPff7Fxp/azNv7rDPzJXGg==
+-----END PUBLIC KEY-----
diff --git a/test/recipes/20-test_pkeyutl.t b/test/recipes/20-test_pkeyutl.t

index 6dacdd295a8d870d22c66e499e208261e1bc8191..adfe9e366eea520c2f5df420f7712397e1eacaf0 100644 (file)
--- a/test/recipes/20-test_pkeyutl.t
+++ b/test/recipes/20-test_pkeyutl.t
@@ -13,15 +13,16 @@ use File::Spec;
  use File::Basename;
  use OpenSSL::Test qw/:DEFAULT srctop_file ok_nofips/;
  use OpenSSL::Test::Utils;
+use File::Compare qw/compare_text/;
  
  setup("test_pkeyutl");
  
-plan tests => 12;
+plan tests => 14;
  
  # For the tests below we use the cert itself as the TBS file
  
  SKIP: {
-    skip "Skipping tests that require EC, SM2 or SM3", 2
+    skip "Skipping tests that require EC, SM2 or SM3", 4
          if disabled("ec") || disabled("sm2") || disabled("sm3");
  
      # SM2
@@ -38,6 +39,18 @@ SKIP: {
                        '-sigfile', 'sm2.sig', '-rawin',
                        '-digest', 'sm3', '-pkeyopt', 'distid:someid']))),
                        "Verify an SM2 signature against a piece of data");
+    ok_nofips(run(app(([ 'openssl', 'pkeyutl', '-encrypt',
+                      '-in', srctop_file('test', 'data2.bin'),
+                      '-inkey', srctop_file('test', 'certs', 'sm2-pub.key'),
+                      '-pubin', '-out', 'sm2.enc']))),
+                      "Encrypt a piece of data using SM2");
+    ok_nofips(run(app(([ 'openssl', 'pkeyutl', '-decrypt',
+                      '-in', 'sm2.enc',
+                      '-inkey', srctop_file('test', 'certs', 'sm2.key'),
+                      '-out', 'sm2.dat'])))
+                      && compare_text('sm2.dat',
+                                      srctop_file('test', 'data2.bin')) == 0,
+                      "Decrypt a piece of data using SM2");
  }
  
  SKIP: {
author	Matt Caswell <matt@openssl.org>
	Fri, 23 Jun 2023 11:05:07 +0000 (12:05 +0100)
committer	Matt Caswell <matt@openssl.org>
	Mon, 26 Jun 2023 08:28:23 +0000 (09:28 +0100)
test/certs/sm2-pub.key	[new file with mode: 0644]	patch \| blob
test/recipes/20-test_pkeyutl.t		patch \| blob \| history