summaryrefslogtreecommitdiffstats
path: root/test/recipes/04-test_pem.t
blob: c37c98738b6a8064187f158debf1d20fae194af3 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
#! /usr/bin/env perl
# Copyright 2017 The OpenSSL Project Authors. All Rights Reserved.
#
# Licensed under the OpenSSL license (the "License").  You may not use
# this file except in compliance with the License.  You can obtain a copy
# in the file LICENSE in the source distribution or at
# https://www.openssl.org/source/license.html
#
# ======================================================================


use strict;
use warnings;

use File::Compare qw/compare_text/;
use File::Basename;
use OpenSSL::Test qw/:DEFAULT srctop_file data_file/;
use OpenSSL::Test::Utils;

setup("test_pem_reading");

my $testsrc = srctop_file("test", "recipes", basename($0));

my $cmd = "openssl";

# map input PEM file to 1 if it should be accepted; 0 when should be rejected
my %cert_expected = (
    "cert-1023line.pem" => 1,
    "cert-1024line.pem" => 1,
    "cert-1025line.pem" => 1,
    "cert-255line.pem" => 1,
    "cert-256line.pem" => 1,
    "cert-257line.pem" => 1,
    "cert-blankline.pem" => 0,
    "cert-comment.pem" => 0,
    "cert-earlypad.pem" => 0,
    "cert-extrapad.pem" => 0,
    "cert-infixwhitespace.pem" => 1,
    "cert-junk.pem" => 0,
    "cert-leadingwhitespace.pem" => 1,
    "cert-longline.pem" => 1,
    "cert-misalignedpad.pem" => 0,
    "cert-onecolumn.pem" => 1,
    "cert-oneline.pem" => 1,
    "cert-shortandlongline.pem" => 1,
    "cert-shortline.pem" => 1,
    "cert-threecolumn.pem" => 1,
    "cert-trailingwhitespace.pem" => 1,
    "cert.pem" => 1
);
my %dsa_expected = (
    "dsa-1023line.pem" => 0,
    "dsa-1024line.pem" => 0,
    "dsa-1025line.pem" => 0,
    "dsa-255line.pem" => 0,
    "dsa-256line.pem" => 0,
    "dsa-257line.pem" => 0,
    "dsa-blankline.pem" => 0,
    "dsa-comment.pem" => 0,
    "dsa-corruptedheader.pem" => 0,
    "dsa-corruptiv.pem" => 0,
    "dsa-earlypad.pem" => 0,
    "dsa-extrapad.pem" => 0,
    "dsa-infixwhitespace.pem" => 0,
    "dsa-junk.pem" => 0,
    "dsa-leadingwhitespace.pem" => 0,
    "dsa-longline.pem" => 0,
    "dsa-misalignedpad.pem" => 0,
    "dsa-onecolumn.pem" => 0,
    "dsa-oneline.pem" => 0,
    "dsa-onelineheader.pem" => 0,
    "dsa-shortandlongline.pem" => 0,
    "dsa-shortline.pem" => 0,
    "dsa-threecolumn.pem" => 0,
    "dsa-trailingwhitespace.pem" => 1,
    "dsa.pem" => 1
);

plan tests =>  scalar keys(%cert_expected) + scalar keys(%dsa_expected) + 2;

foreach my $input (keys %cert_expected) {
    my @common = ($cmd, "x509", "-text", "-noout", "-inform", "PEM", "-in");
    my @data = run(app([@common, data_file($input)], stderr => undef), capture => 1);
    my @match = grep /The Great State of Long-Winded Certificate Field Names Whereby to Increase the Output Size/, @data;
    is((scalar @match > 0 ? 1 : 0), $cert_expected{$input});
}
SKIP: {
    skip "DSA support disabled, skipping...", (scalar keys %dsa_expected) unless !disabled("dsa");
    foreach my $input (keys %dsa_expected) {
        my @common = ($cmd, "pkey", "-inform", "PEM", "-passin", "file:" . data_file("wellknown"), "-noout", "-text", "-in");
        my @data = run(app([@common, data_file($input)], stderr => undef), capture => 1);
        my @match = grep /68:42:02:16:63:54:16:eb:06:5c:ab:06:72:3b:78:/, @data;
        is((scalar @match > 0 ? 1 : 0), $dsa_expected{$input});
    }
}
SKIP: {
    skip "RSA support disabled, skipping...", 1 unless !disabled("rsa");
    my @common = ($cmd, "pkey", "-inform", "PEM", "-noout", "-text", "-in");
    my @data = run(app([@common, data_file("beermug.pem")], stderr => undef), capture => 1);
    my @match = grep /00:a0:3a:21:14:5d:cd:b6:d5:a0:3e:49:23:c1:3a:/, @data;
    ok(scalar @match > 0 ? 1 : 0);
}

ok(run(test(["pemtest"])), "running pemtest");