Source: pkcs11-provider
Version: 0.3-1
Severity: serious
Tags: ftbfs
https://buildd.debian.org/status/fetch.php?pkg=pkcs11-provider&arch=ppc64el&ver=0.3-1%2Bb2&stamp=1712517987&raw=0
...
FAIL: basic-softhsm
===================
Executing ./tbasic
## Raw Sign check error
openssl
pkeyutl -sign -inkey "${BASEURI}"
-pkeyopt pad-mode:none
-in ${TMPPDIR}/64Brandom.bin
-out ${TMPPDIR}/raw-sig.bin
Public Key operation error
00493C8EFF7F0000:error:0200007A:rsa routines:p11prov_sig_operate:data too small
for key size:signature.c:894:
## Sign and Verify with provided Hash and RSA
openssl dgst -sha256 -binary -out ${TMPPDIR}/sha256.bin ${SEEDFILE}
openssl
pkeyutl -sign -inkey "${PRIURI}"
-in ${TMPPDIR}/sha256.bin
-out ${TMPPDIR}/sha256-sig.bin
openssl
pkeyutl -verify -inkey "${PUBURI}"
-pubin
-in ${TMPPDIR}/sha256.bin
-sigfile ${TMPPDIR}/sha256-sig.bin
Signature Verified Successfully
## Sign and Verify with provided Hash and RSA with DigestInfo struct
openssl dgst -sha256 -binary -out ${TMPPDIR}/sha256.bin ${SEEDFILE}
openssl
pkeyutl -sign -inkey "${PRIURI}" -pkeyopt digest:sha256
-in ${TMPPDIR}/sha256.bin
-out ${TMPPDIR}/sha256-sig.bin
openssl
pkeyutl -verify -inkey "${PUBURI}" -pkeyopt digest:sha256
-pubin
-in ${TMPPDIR}/sha256.bin
-sigfile ${TMPPDIR}/sha256-sig.bin
Signature Verified Successfully
## DigestSign and DigestVerify with RSA
openssl
pkeyutl -sign -inkey "${BASEURI}"
-digest sha256
-in ${RAND64FILE}
-rawin
-out ${TMPPDIR}/sha256-dgstsig.bin
openssl
pkeyutl -verify -inkey "${BASEURI}" -pubin
-digest sha256
-in ${RAND64FILE}
-rawin
-sigfile ${TMPPDIR}/sha256-dgstsig.bin
Signature Verified Successfully
openssl
pkeyutl -verify -inkey "${PUBURI}"
-pubin
-digest sha256
-in ${RAND64FILE}
-rawin
-sigfile ${TMPPDIR}/sha256-dgstsig.bin
Signature Verified Successfully
RSA basic encrypt and decrypt
openssl
pkeyutl -encrypt -inkey "${PUBURI}" -pubin
-in ${SECRETFILE}
-out ${SECRETFILE}.enc
openssl
pkeyutl -decrypt -inkey "${PRIURI}"
-in ${SECRETFILE}.enc
-out ${SECRETFILE}.dec
## Test Disallow Public Export
openssl pkey -in $PUBURI -pubin -pubout -text
## Test CSR generation from RSA private keys
openssl
req -new -batch -key "${PRIURI}" -out ${TMPPDIR}/rsa_csr.pem
openssl
req -in ${TMPPDIR}/rsa_csr.pem -verify -noout
Certificate request self-signature verify OK
## Test fetching public keys without PIN in config files
openssl pkey -in $PUBURI -pubin -pubout -out ${TMPPDIR}/rsa.pub.nopin.pem
openssl pkey -in $ECPUBURI -pubin -pubout -out ${TMPPDIR}/ec.pub.nopin.pem
openssl pkey -in $ECXPUBURI -pubin -pubout -out ${TMPPDIR}/ecx.pub.nopin.pem
## Test fetching public keys with a PIN in URI
openssl pkey -in $BASEURIWITHPIN -pubin -pubout -out
${TMPPDIR}/rsa.pub.uripin.pem
openssl pkey -in $ECBASEURIWITHPIN -pubin -pubout -out
${TMPPDIR}/ec.pub.uripin.pem
openssl pkey -in $ECXBASEURIWITHPIN -pubin -pubout -out
${TMPPDIR}/ecx.pub.uripin.pem
## Test prompting without PIN in config files
## Test EVP_PKEY_eq on public RSA key both on token
## Test EVP_PKEY_eq on public EC key both on token
## Test EVP_PKEY_eq on public explicit EC key both on token
Failed to load key from URI: pkcs11:type=public;id=%00%07
FAIL basic-softhsm.t (exit status: 1)
...
============================================================================
Testsuite summary for pkcs11-provider 0.3
============================================================================
# TOTAL: 34
# PASS: 15
# SKIP: 18
# XFAIL: 0
# FAIL: 1
# XPASS: 0
# ERROR: 0
============================================================================
See tests/test-suite.log
Please report to [email protected]
============================================================================
make[4]: *** [Makefile:1070: test-suite.log] Error 1
