a7cef52f9b
Some signature algorithms require special treatment for digesting, such as SM2. This patch adds the ability of handling raw input data in apps/pkeyutl other than accepting only pre-hashed input data. Beside, SM2 requries an ID string when signing or verifying a piece of data, this patch also adds the ability for apps/pkeyutil to specify that ID string. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8186)
43 lines
1.4 KiB
Perl
43 lines
1.4 KiB
Perl
#! /usr/bin/env perl
|
|
# Copyright 2018 The OpenSSL Project Authors. All Rights Reserved.
|
|
#
|
|
# Licensed under the Apache License 2.0 (the "License"). You may not use
|
|
# this file except in compliance with the License. You can obtain a copy
|
|
# in the file LICENSE in the source distribution or at
|
|
# https://www.openssl.org/source/license.html
|
|
|
|
use strict;
|
|
use warnings;
|
|
|
|
use File::Spec;
|
|
use OpenSSL::Test qw/:DEFAULT srctop_file/;
|
|
use OpenSSL::Test::Utils;
|
|
|
|
setup("test_pkeyutl");
|
|
|
|
plan tests => 2;
|
|
|
|
sub sign
|
|
{
|
|
# Utilize the sm2.crt as the TBS file
|
|
return run(app(([ 'openssl', 'pkeyutl', '-sign',
|
|
'-in', srctop_file('test', 'certs', 'sm2.crt'),
|
|
'-inkey', srctop_file('test', 'certs', 'sm2.key'),
|
|
'-out', 'signature.sm2', '-rawin',
|
|
'-digest', 'sm3', '-pkeyopt', 'sm2_id:someid'])));
|
|
}
|
|
|
|
sub verify
|
|
{
|
|
# Utilize the sm2.crt as the TBS file
|
|
return run(app(([ 'openssl', 'pkeyutl', '-verify', '-certin',
|
|
'-in', srctop_file('test', 'certs', 'sm2.crt'),
|
|
'-inkey', srctop_file('test', 'certs', 'sm2.crt'),
|
|
'-sigfile', 'signature.sm2', '-rawin',
|
|
'-digest', 'sm3', '-pkeyopt', 'sm2_id:someid'])));
|
|
}
|
|
|
|
ok(sign, "Sign a piece of data using SM2");
|
|
ok(verify, "Verify an SM2 signature against a piece of data");
|
|
|
|
unlink 'signature.sm2';
|