From e1be108cb3be668d7fb3dbcf34d39523e41988ed Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Love=20H=C3=B6rnquist=20=C3=85strand?= <lha@kth.se>
Date: Sat, 29 Apr 2006 15:13:53 +0000
Subject: [PATCH] Add test for pk-init

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17354 ec53bebd-3082-4978-b11e-865c3cabbd6b
---
 tests/kdc/check-kdc.in | 19 ++++++++++++++++++-
 1 file changed, 18 insertions(+), 1 deletion(-)

diff --git a/tests/kdc/check-kdc.in b/tests/kdc/check-kdc.in
index 9dffde544..1dd812851 100644
--- a/tests/kdc/check-kdc.in
+++ b/tests/kdc/check-kdc.in
@@ -152,14 +152,31 @@ ${kdestroy}
 #echo "try all permutations (only aes)"
 #for a in $enctypes; do
 #	echo "Getting client initial tickets ($a)"
-#	${kinit} --enctype=$a --password-file=${objdir}/foopassword foo@$R || exitcode=1
+#	${kinit} --enctype=$a --password-file=${objdir}/foopassword foo@${R} || exitcode=1
 #	for b in $enctypes; do
 #		echo "Getting tickets ($a ->  $b)"
 #		${kgetcred} -e $b ${server}@${R} || exitcode=1
+#		./ap-req ${server}@${R} ${keytab} ${cache} || exitcode=1
+#		${kdestroy} --credential=${server}@${R}
 #	done
 #	${kdestroy}
 #done
 
+# If we support pkinit, lets try that
+if ${kinit} --help 2>&1 | grep "CA certificates" > /dev/null ; then
+	echo "Trying pk-init (princiapl in certificate)"
+	base="${srcdir}/../../lib/hx509/data"
+	${kinit} -C FILE:${base}/pkinit.crt,${base}/pkinit.key bar@${R} || exitcode=1
+	${kgetcred} ${server}@${R} || exitcode=1
+	${kdestroy}
+	echo "Trying pk-init (princiapl in pki-mapping)"
+	${kinit} -C FILE:${base}/pkinit.crt,${base}/pkinit.key foo@${R} || exitcode=1
+	${kgetcred} ${server}@${R} || exitcode=1
+	${kdestroy}
+else
+	echo no pkinit
+fi
+
 echo "killing kdc (${kdcpid})"
 kill $kdcpid || exit 1