1'use strict'; 2const common = require('../common'); 3const fixtures = require('../common/fixtures'); 4 5// Check cert chain is received by client, and is completed with the ca cert 6// known to the client. 7 8const { 9 assert, connect, debug, keys 10} = require(fixtures.path('tls-connect')); 11 12// agent6-cert.pem includes cert for agent6 and ca3 13connect({ 14 client: { 15 checkServerIdentity: (servername, cert) => { }, 16 ca: keys.agent6.ca, 17 }, 18 server: { 19 cert: keys.agent6.cert, 20 key: keys.agent6.key, 21 }, 22}, common.mustCall((err, pair, cleanup) => { 23 assert.ifError(err); 24 25 const peer = pair.client.conn.getPeerCertificate(); 26 debug('peer:\n', peer); 27 assert.strictEqual(peer.subject.emailAddress, 'adam.lippai@tresorit.com'); 28 assert.strictEqual(peer.subject.CN, 'Ádám Lippai'); 29 assert.strictEqual(peer.issuer.CN, 'ca3'); 30 assert.strictEqual(peer.serialNumber, 'D0082F458B6EFBE8'); 31 32 const next = pair.client.conn.getPeerCertificate(true).issuerCertificate; 33 const root = next.issuerCertificate; 34 delete next.issuerCertificate; 35 debug('next:\n', next); 36 assert.strictEqual(next.subject.CN, 'ca3'); 37 assert.strictEqual(next.issuer.CN, 'ca1'); 38 assert.strictEqual(next.serialNumber, 'ECC9B856270DA9A7'); 39 40 debug('root:\n', root); 41 assert.strictEqual(root.subject.CN, 'ca1'); 42 assert.strictEqual(root.issuer.CN, 'ca1'); 43 assert.strictEqual(root.serialNumber, 'CB153AE212609FC6'); 44 45 // No client cert, so empty object returned. 46 assert.deepStrictEqual(pair.server.conn.getPeerCertificate(), {}); 47 assert.deepStrictEqual(pair.server.conn.getPeerCertificate(true), {}); 48 49 return cleanup(); 50})); 51