Skip to content

Commit ca75593

Browse files
abbraabbra
committed
openssl 3.0: Skip tests with unsupported key sizes
OpenSSL 3.0 on systems with systemd-wide crypto policy (Fedora, RHEL, CentOS 9 Stream) might block certain key sizes which causes the tests to fail. Skip these tests because we are not going to get the results anyway. There is no way with CPPUNIT to produce a warning only, so we have to skip the whole test result. Signed-off-by: Alexander Bokovoy <[email protected]>
1 parent 50c0c22 commit ca75593

File tree

1 file changed

+18
-13
lines changed

1 file changed

+18
-13
lines changed

src/lib/crypto/test/RSATests.cpp

+18-13
Original file line numberDiff line numberDiff line change
@@ -92,18 +92,19 @@ void RSATests::testKeyGeneration()
9292
p.setE(*e);
9393
p.setBitLength(*k);
9494

95-
// Generate key-pair
96-
CPPUNIT_ASSERT(rsa->generateKeyPair(&kp, &p));
95+
// Generate key-pair but skip test if key size is unsupported in OpenSSL 3.0.0
96+
if (rsa->generateKeyPair(&kp, &p)) {
9797

98-
RSAPublicKey* pub = (RSAPublicKey*) kp->getPublicKey();
99-
RSAPrivateKey* priv = (RSAPrivateKey*) kp->getPrivateKey();
98+
RSAPublicKey* pub = (RSAPublicKey*) kp->getPublicKey();
99+
RSAPrivateKey* priv = (RSAPrivateKey*) kp->getPrivateKey();
100100

101-
CPPUNIT_ASSERT(pub->getBitLength() == *k);
102-
CPPUNIT_ASSERT(priv->getBitLength() == *k);
103-
CPPUNIT_ASSERT(pub->getE() == *e);
104-
CPPUNIT_ASSERT(priv->getE() == *e);
101+
CPPUNIT_ASSERT(pub->getBitLength() == *k);
102+
CPPUNIT_ASSERT(priv->getBitLength() == *k);
103+
CPPUNIT_ASSERT(pub->getE() == *e);
104+
CPPUNIT_ASSERT(priv->getE() == *e);
105105

106-
rsa->recycleKeyPair(kp);
106+
rsa->recycleKeyPair(kp);
107+
}
107108
}
108109
}
109110
}
@@ -291,8 +292,10 @@ void RSATests::testSigningVerifying()
291292
p.setE(*e);
292293
p.setBitLength(*k);
293294

294-
// Generate key-pair
295-
CPPUNIT_ASSERT(rsa->generateKeyPair(&kp, &p));
295+
// Generate key-pair but skip those that unsupported in OpenSSL 3.0.0
296+
if (!rsa->generateKeyPair(&kp, &p)) {
297+
continue;
298+
}
296299

297300
// Generate some data to sign
298301
ByteString dataToSign;
@@ -626,8 +629,10 @@ void RSATests::testEncryptDecrypt()
626629
p.setE(*e);
627630
p.setBitLength(*k);
628631

629-
// Generate key-pair
630-
CPPUNIT_ASSERT(rsa->generateKeyPair(&kp, &p));
632+
// Generate key-pair but skip those that unsupported in OpenSSL 3.0.0
633+
if (!rsa->generateKeyPair(&kp, &p)) {
634+
continue;
635+
}
631636

632637
RNG* rng = CryptoFactory::i()->getRNG();
633638

0 commit comments

Comments
 (0)