Merge pull request #2045 from sigmavirus24/csr-builder

Adds CSR Builder (Redux of #1927)
author: Paul Kehrer <paul.l.kehrer@gmail.com> 2015-06-26 09:43:39 -0500
committer: Paul Kehrer <paul.l.kehrer@gmail.com> 2015-06-26 09:43:39 -0500
commit: 8f768dc5b9eda26510b3ffc6be862ea3e8f4a0b4 (patch)
tree: 73d3d549bb09cbe69ca275938217c1bab4ea2254 /tests/hazmat/backends/test_openssl.py
parent: 77c98e3c4ef69d0cfee665cd0835670f4ac44242 (diff)
parent: 8cdcdfc1bd11ee57b7f53c631af2f88e0861d168 (diff)
download: cryptography-8f768dc5b9eda26510b3ffc6be862ea3e8f4a0b4.tar.gz
cryptography-8f768dc5b9eda26510b3ffc6be862ea3e8f4a0b4.tar.bz2
cryptography-8f768dc5b9eda26510b3ffc6be862ea3e8f4a0b4.zip
1 files changed, 26 insertions, 1 deletions
diff --git a/tests/hazmat/backends/test_openssl.py b/tests/hazmat/backends/test_openssl.py
index b35e7670..34fff277 100644
--- a/tests/hazmat/backends/test_openssl.py
+++ b/tests/hazmat/backends/test_openssl.py
@@ -21,14 +21,16 @@ from cryptography.hazmat.backends.openssl.backend import (
 )
 from cryptography.hazmat.backends.openssl.ec import _sn_to_elliptic_curve
 from cryptography.hazmat.primitives import hashes, serialization
-from cryptography.hazmat.primitives.asymmetric import dsa, padding
+from cryptography.hazmat.primitives.asymmetric import dsa, ec, padding
 from cryptography.hazmat.primitives.ciphers import (
     BlockCipherAlgorithm, Cipher, CipherAlgorithm
 )
 from cryptography.hazmat.primitives.ciphers.algorithms import AES
 from cryptography.hazmat.primitives.ciphers.modes import CBC, CTR, Mode
 
+from ..primitives.fixtures_dsa import DSA_KEY_2048
 from ..primitives.fixtures_rsa import RSA_KEY_2048, RSA_KEY_512
+from ..primitives.test_ec import _skip_curve_unsupported
 from ...utils import load_vectors_from_file, raises_unsupported_algorithm
 
 
@@ -453,6 +455,29 @@ class TestOpenSSLCMAC(object):
             backend.create_cmac_ctx(FakeAlgorithm())
 
 
+class TestOpenSSLCreateX509CSR(object):
+    @pytest.mark.skipif(
+        backend._lib.OPENSSL_VERSION_NUMBER >= 0x10001000,
+        reason="Requires an older OpenSSL. Must be < 1.0.1"
+    )
+    def test_unsupported_dsa_keys(self):
+        private_key = DSA_KEY_2048.private_key(backend)
+
+        with pytest.raises(NotImplementedError):
+            backend.create_x509_csr(object(), private_key, hashes.SHA1())
+
+    @pytest.mark.skipif(
+        backend._lib.OPENSSL_VERSION_NUMBER >= 0x10001000,
+        reason="Requires an older OpenSSL. Must be < 1.0.1"
+    )
+    def test_unsupported_ec_keys(self):
+        _skip_curve_unsupported(backend, ec.SECP256R1())
+        private_key = ec.generate_private_key(ec.SECP256R1(), backend)
+
+        with pytest.raises(NotImplementedError):
+            backend.create_x509_csr(object(), private_key, hashes.SHA1())
+
+
 class TestOpenSSLSerialisationWithOpenSSL(object):
     def test_pem_password_cb_buffer_too_small(self):
         ffi_cb, cb = backend._pem_password_cb(b"aa")
author	Paul Kehrer <paul.l.kehrer@gmail.com>	2015-06-26 09:43:39 -0500
committer	Paul Kehrer <paul.l.kehrer@gmail.com>	2015-06-26 09:43:39 -0500
commit	8f768dc5b9eda26510b3ffc6be862ea3e8f4a0b4 (patch)
tree	73d3d549bb09cbe69ca275938217c1bab4ea2254 /tests/hazmat/backends/test_openssl.py
parent	77c98e3c4ef69d0cfee665cd0835670f4ac44242 (diff)
parent	8cdcdfc1bd11ee57b7f53c631af2f88e0861d168 (diff)
download	cryptography-8f768dc5b9eda26510b3ffc6be862ea3e8f4a0b4.tar.gz cryptography-8f768dc5b9eda26510b3ffc6be862ea3e8f4a0b4.tar.bz2 cryptography-8f768dc5b9eda26510b3ffc6be862ea3e8f4a0b4.zip