Головна сторінка Огляд Довідка
Увійти
OWEALs
/
openssl
дзеркало git://git.openssl.org/openssl.git
2
0
Відгалуження 0
Файли Проблеми 1 Wiki
Дерево: 6594baf645
Гілки Теги
openssl
/
test
/
recipes
/
tconversion.pl

tconversion.pl 5.7 KB
Історія Запис

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221 
  1. #! /usr/bin/env perl
    2. 

  2. # Copyright 2015-2023 The OpenSSL Project Authors. All Rights Reserved.
    3. 

  3. #
    4. 

  4. # Licensed under the Apache License 2.0 (the "License").  You may not use
    5. 

  5. # this file except in compliance with the License.  You can obtain a copy
    6. 

  6. # in the file LICENSE in the source distribution or at
    7. 

  7. # https://www.openssl.org/source/license.html
    8. 

  8. 

  9. 

  10. use strict;
    11. 

  11. use warnings;
    12. 

  12. 

  13. use File::Compare qw/compare_text/;
    14. 

  14. use File::Copy;
    15. 

  15. use OpenSSL::Test qw/:DEFAULT/;
    16. 

  16. use Time::Piece;
    17. 

  17. use POSIX qw(strftime);
    18. 

  18. 

  19. my %conversionforms = (
    20. 

  20.     # Default conversion forms.  Other series may be added with
    21. 

  21.     # specific test types as key.
    22. 

  22.     "*"		=> [ "d", "p" ],
    23. 

  23.     "msb"	=> [ "d", "p", "msblob" ],
    24. 

  24.     "pvk"	=> [ "d", "p", "pvk" ],
    25. 

  25.     );
    26. 

  26. sub tconversion {
    27. 

  27.     my %opts = @_;
    28. 

  28. 

  29.     die "Missing option -type" unless $opts{-type};
    30. 

  30.     die "Missing option -in" unless $opts{-in};
    31. 

  31.     my $testtype = $opts{-type};
    32. 

  32.     my $t = $opts{-in};
    33. 

  33.     my $prefix = $opts{-prefix} // $testtype;
    34. 

  34.     my @conversionforms =
    35. 

  35. 	defined($conversionforms{$testtype}) ?
    36. 

  36. 	@{$conversionforms{$testtype}} :
    37. 

  37. 	@{$conversionforms{"*"}};
    38. 

  38.     my @openssl_args;
    39. 

  39.     if (defined $opts{-args}) {
    40. 

  40.         @openssl_args = @{$opts{-args}} if ref $opts{-args} eq 'ARRAY';
    41. 

  41.         @openssl_args = ($opts{-args}) if ref $opts{-args} eq '';
    42. 

  42.     }
    43. 

  43.     @openssl_args = ($testtype) unless @openssl_args;
    44. 

  44. 

  45.     my $n = scalar @conversionforms;
    46. 

  46.     my $totaltests =
    47. 

  47. 	1			# for initializing
    48. 

  48. 	+ $n			# initial conversions from p to all forms (A)
    49. 

  49. 	+ $n*$n			# conversion from result of A to all forms (B)
    50. 

  50. 	+ 1			# comparing original test file to p form of A
    51. 

  51. 	+ $n*($n-1);		# comparing first conversion to each form in A with B
    52. 

  52.     $totaltests-- if ($testtype eq "p7d"); # no comparison of original test file
    53. 

  53.     $totaltests -= $n if ($testtype eq "pvk"); # no comparisons of the pvk form
    54. 

  54.     plan tests => $totaltests;
    55. 

  55. 

  56.     my @cmd = ("openssl", @openssl_args);
    57. 

  57. 

  58.     my $init;
    59. 

  59.     if (scalar @openssl_args > 0 && $openssl_args[0] eq "pkey") {
    60. 

  60. 	$init = ok(run(app([@cmd, "-in", $t, "-out", "$prefix-fff.p"])),
    61. 

  61. 		   'initializing');
    62. 

  62.     } else {
    63. 

  63. 	$init = ok(copy($t, "$prefix-fff.p"), 'initializing');
    64. 

  64.     }
    65. 

  65.     if (!$init) {
    66. 

  66. 	diag("Trying to copy $t to $prefix-fff.p : $!");
    67. 

  67.     }
    68. 

  68. 

  69.   SKIP: {
    70. 

  70.       skip "Not initialized, skipping...", 22 unless $init;
    71. 

  71. 

  72.       foreach my $to (@conversionforms) {
    73. 

  73. 	  ok(run(app([@cmd,
    74. 

  74. 		      "-in", "$prefix-fff.p",
    75. 

  75. 		      "-inform", "p",
    76. 

  76. 		      "-out", "$prefix-f.$to",
    77. 

  77. 		      "-outform", $to])),
    78. 

  78. 	     "p -> $to");
    79. 

  79.       }
    80. 

  80. 

  81.       foreach my $to (@conversionforms) {
    82. 

  82. 	  foreach my $from (@conversionforms) {
    83. 

  83. 	      ok(run(app([@cmd,
    84. 

  84. 			  "-in", "$prefix-f.$from",
    85. 

  85. 			  "-inform", $from,
    86. 

  86. 			  "-out", "$prefix-ff.$from$to",
    87. 

  87. 			  "-outform", $to])),
    88. 

  88. 		 "$from -> $to");
    89. 

  89. 	  }
    90. 

  90.       }
    91. 

  91. 

  92.       if ($testtype ne "p7d") {
    93. 

  93. 	  is(cmp_text("$prefix-fff.p", "$prefix-f.p"), 0,
    94. 

  94. 	     'comparing orig to p');
    95. 

  95.       }
    96. 

  96. 

  97.       foreach my $to (@conversionforms) {
    98. 

  98. 	  next if $to eq "d" or $to eq "pvk";
    99. 

  99. 	  foreach my $from (@conversionforms) {
    100. 

  100. 	      is(cmp_text("$prefix-f.$to", "$prefix-ff.$from$to"), 0,
    101. 

  101. 		 "comparing $to to $from$to");
    102. 

  102. 	  }
    103. 

  103.       }
    104. 

  104.     }
    105. 

  105. }
    106. 

  106. 

  107. sub cmp_text {
    108. 

  108.     return compare_text(@_, sub {
    109. 

  109.         $_[0] =~ s/\R//g;
    110. 

  110.         $_[1] =~ s/\R//g;
    111. 

  111.         return $_[0] ne $_[1];
    112. 

  112.     });
    113. 

  113. }
    114. 

  114. 

  115. sub file_contains {
    116. 

  116.     $_ = shift @_;
    117. 

  117.     my $pattern = shift @_;
    118. 

  118.     open(DATA, $_) or return 0;
    119. 

  119.     $_= join('', <DATA>);
    120. 

  120.     close(DATA);
    121. 

  121.     s/\s+/ /g; # take multiple whitespace (including newline) as single space
    122. 

  122.     return m/$pattern/ ? 1 : 0;
    123. 

  123. }
    124. 

  124. 

  125. sub cert_contains {
    126. 

  126.     my $cert = shift @_;
    127. 

  127.     my $pattern = shift @_;
    128. 

  128.     my $expected = shift @_;
    129. 

  129.     my $name = shift @_;
    130. 

  130.     my $out = "cert_contains.out";
    131. 

  131.     run(app(["openssl", "x509", "-noout", "-text", "-in", $cert, "-out", $out]));
    132. 

  132.     is(file_contains($out, $pattern), $expected, ($name ? "$name: " : "").
    133. 

  133.        "$cert should ".($expected ? "" : "not ")."contain: \"$pattern\"");
    134. 

  134.     # not unlinking $out
    135. 

  135. }
    136. 

  136. 

  137. sub has_version {
    138. 

  138.     my $cert = shift @_;
    139. 

  139.     my $expect = shift @_;
    140. 

  140.     cert_contains($cert, "Version: $expect", 1);
    141. 

  141. }
    142. 

  142. 

  143. sub has_SKID {
    144. 

  144.     my $cert = shift @_;
    145. 

  145.     my $expect = shift @_;
    146. 

  146.     cert_contains($cert, "Subject Key Identifier", $expect);
    147. 

  147. }
    148. 

  148. 

  149. sub has_AKID {
    150. 

  150.     my $cert = shift @_;
    151. 

  151.     my $expect = shift @_;
    152. 

  152.     cert_contains($cert, "Authority Key Identifier", $expect);
    153. 

  153. }
    154. 

  154. 

  155. sub uniq (@) {
    156. 

  156.     my %seen = ();
    157. 

  157.     grep { not $seen{$_}++ } @_;
    158. 

  158. }
    159. 

  159. 

  160. sub file_n_different_lines {
    161. 

  161.     my $filename = shift @_;
    162. 

  162.     open(DATA, $filename) or return 0;
    163. 

  163.     chomp(my @lines = <DATA>);
    164. 

  164.     close(DATA);
    165. 

  165.     return scalar(uniq @lines);
    166. 

  166. }
    167. 

  167. 

  168. sub cert_ext_has_n_different_lines {
    169. 

  169.     my $cert = shift @_;
    170. 

  170.     my $expected = shift @_;
    171. 

  171.     my $exts = shift @_;
    172. 

  172.     my $name = shift @_;
    173. 

  173.     my $out = "cert_n_different_exts.out";
    174. 

  174.     run(app(["openssl", "x509", "-noout", "-ext", $exts,
    175. 

  175.              "-in", $cert, "-out", $out]));
    176. 

  176.     is(file_n_different_lines($out), $expected, ($name ? "$name: " : "").
    177. 

  177.        "$cert '$exts' output should contain $expected different lines");
    178. 

  178.     # not unlinking $out
    179. 

  179. }
    180. 

  180. 

  181. # extracts string value of certificate field from a -text formatted-output
    182. 

  182. sub get_field {
    183. 

  183.     my ($f, $field) = @_;
    184. 

  184.     my $string = "";
    185. 

  185.     open my $fh, $f or die;
    186. 

  186.     while (my $line = <$fh>) {
    187. 

  187.         if ($line =~ /$field:\s+(.*)/) {
    188. 

  188.             $string = $1;
    189. 

  189.         }
    190. 

  190.     }
    191. 

  191.     close $fh;
    192. 

  192.     return $string;
    193. 

  193. }
    194. 

  194. 

  195. sub get_issuer {
    196. 

  196.     return get_field(@_, "Issuer");
    197. 

  197. }
    198. 

  198. 

  199. sub get_not_before {
    200. 

  200.     return get_field(@_, "Not Before");
    201. 

  201. }
    202. 

  202. 

  203. # Date as yyyy-mm-dd
    204. 

  204. sub get_not_before_date {
    205. 

  205.     return Time::Piece->strptime(
    206. 

  206.         get_not_before(@_),
    207. 

  207.         "%b %d %T %Y %Z")->date;
    208. 

  208. }
    209. 

  209. 

  210. sub get_not_after {
    211. 

  211.     return get_field(@_, "Not After ");
    212. 

  212. }
    213. 

  213. 

  214. # Date as yyyy-mm-dd
    215. 

  215. sub get_not_after_date {
    216. 

  216.     return Time::Piece->strptime(
    217. 

  217.         get_not_after(@_),
    218. 

  218.         "%b %d %T %Y %Z")->date;
    219. 

  219. }
    220. 

  220. 

  221. 1;
    222.