2016-12-20 14:16:29 -08:00
|
|
|
'use strict';
|
2018-03-03 00:58:29 +05:30
|
|
|
const common = require('../common');
|
2017-07-17 15:33:46 -07:00
|
|
|
const fixtures = require('../common/fixtures');
|
2016-12-20 14:16:29 -08:00
|
|
|
|
|
|
|
|
// Check cert chain is received by client, and is completed with the ca cert
|
|
|
|
|
// known to the client.
|
|
|
|
|
|
|
|
|
|
const {
|
|
|
|
|
assert, connect, debug, keys
|
2017-07-17 15:33:46 -07:00
|
|
|
} = require(fixtures.path('tls-connect'));
|
2016-12-20 14:16:29 -08:00
|
|
|
|
|
|
|
|
// agent6-cert.pem includes cert for agent6 and ca3
|
|
|
|
|
connect({
|
|
|
|
|
client: {
|
|
|
|
|
checkServerIdentity: (servername, cert) => { },
|
|
|
|
|
ca: keys.agent6.ca,
|
|
|
|
|
},
|
|
|
|
|
server: {
|
|
|
|
|
cert: keys.agent6.cert,
|
|
|
|
|
key: keys.agent6.key,
|
|
|
|
|
},
|
2018-03-03 00:58:29 +05:30
|
|
|
}, common.mustCall((err, pair, cleanup) => {
|
2016-12-20 14:16:29 -08:00
|
|
|
assert.ifError(err);
|
|
|
|
|
|
|
|
|
|
const peer = pair.client.conn.getPeerCertificate();
|
|
|
|
|
debug('peer:\n', peer);
|
|
|
|
|
assert.strictEqual(peer.subject.emailAddress, 'adam.lippai@tresorit.com');
|
2019-03-10 18:14:07 +08:00
|
|
|
assert.strictEqual(peer.subject.CN, 'Ádám Lippai');
|
2016-12-20 14:16:29 -08:00
|
|
|
assert.strictEqual(peer.issuer.CN, 'ca3');
|
2016-12-20 14:17:05 -08:00
|
|
|
assert.strictEqual(peer.serialNumber, 'D0082F458B6EFBE8');
|
2016-12-20 14:16:29 -08:00
|
|
|
|
|
|
|
|
const next = pair.client.conn.getPeerCertificate(true).issuerCertificate;
|
|
|
|
|
const root = next.issuerCertificate;
|
|
|
|
|
delete next.issuerCertificate;
|
|
|
|
|
debug('next:\n', next);
|
|
|
|
|
assert.strictEqual(next.subject.CN, 'ca3');
|
|
|
|
|
assert.strictEqual(next.issuer.CN, 'ca1');
|
2016-12-20 14:17:05 -08:00
|
|
|
assert.strictEqual(next.serialNumber, 'ECC9B856270DA9A7');
|
2016-12-20 14:16:29 -08:00
|
|
|
|
|
|
|
|
debug('root:\n', root);
|
|
|
|
|
assert.strictEqual(root.subject.CN, 'ca1');
|
|
|
|
|
assert.strictEqual(root.issuer.CN, 'ca1');
|
2016-12-20 14:17:05 -08:00
|
|
|
assert.strictEqual(root.serialNumber, 'CB153AE212609FC6');
|
2016-12-20 14:16:29 -08:00
|
|
|
|
|
|
|
|
// No client cert, so empty object returned.
|
|
|
|
|
assert.deepStrictEqual(pair.server.conn.getPeerCertificate(), {});
|
|
|
|
|
assert.deepStrictEqual(pair.server.conn.getPeerCertificate(true), {});
|
|
|
|
|
|
|
|
|
|
return cleanup();
|
2018-03-03 00:58:29 +05:30
|
|
|
}));
|
