/hphp/test/slow/ext_openssl/ext_openssl.php

https://github.com/tstarling/hiphop-php · PHP · 364 lines · 304 code · 58 blank · 2 comment · 44 complexity · 49137fe7a583ec4f0c1ff7015ab9eec5 MD5 · raw file 

    

  1. <?php
    2. 

  2. 

  3. function VS($x, $y) {
    4. 

  4.   var_dump($x === $y);
    5. 

  5.   if ($x !== $y) { echo "Failed: $y\n"; echo "Got: $x\n";
    6. 

  6.                    var_dump(debug_backtrace()); }
    7. 

  7. }
    8. 

  8. function VERIFY($x) { VS($x != false, true); }
    9. 

  9. 

  10. //////////////////////////////////////////////////////////////////////
    11. 

  11. 

  12. function test_openssl_csr_export_to_file() {
    13. 

  13.   $csr = openssl_csr_new(null, $ignore);
    14. 

  14.   VERIFY($csr != null);
    15. 

  15. 

  16.   $tmp = tempnam('/tmp', 'vmopenssltest');
    17. 

  17.   unlink($tmp);
    18. 

  18.   VS(file_get_contents($tmp), false);
    19. 

  19.   openssl_csr_export_to_file($csr, $tmp);
    20. 

  20.   VERIFY(strlen(file_get_contents($tmp)) > 400);
    21. 

  21.   unlink($tmp);
    22. 

  22. }
    23. 

  23. 

  24. function test_openssl_csr_get_public_key() {
    25. 

  25.   $csr = openssl_csr_new(null, $ignore);
    26. 

  26.   VERIFY($csr != null);
    27. 

  27.   $publickey = openssl_csr_get_public_key($csr);
    28. 

  28.   VERIFY($publickey != false);
    29. 

  29.   VERIFY($publickey != null);
    30. 

  30. }
    31. 

  31. 

  32. function test_openssl_csr_get_subject() {
    33. 

  33.   $csr = openssl_csr_new(null, $ignore);
    34. 

  34.   VERIFY($csr != null);
    35. 

  35.   VERIFY(openssl_csr_get_subject($csr)['O'] == "Internet Widgits Pty Ltd");
    36. 

  36. }
    37. 

  37. 

  38. function test_openssl_csr_sign() {
    39. 

  39.   $dn = array(
    40. 

  40.            "countryName",
    41. 

  41.            "stateOrProvinceName",
    42. 

  42.            "localityName",
    43. 

  43.            "organizationName",
    44. 

  44.            "organizationalUnitName",
    45. 

  45.            "commonName",
    46. 

  46.            "emailAddress"
    47. 

  47.   );
    48. 

  48. 

  49.   $privkeypass = "1234";
    50. 

  50.   $numberofdays = 365;
    51. 

  51. 

  52.   $privkey = openssl_pkey_new();
    53. 

  53.   VERIFY($privkey != null);
    54. 

  54.   $csr = openssl_csr_new($dn, $privkey);
    55. 

  55.   VERIFY($csr != null);
    56. 

  56.   $scert = openssl_csr_sign($csr, null, $privkey, $numberofdays);
    57. 

  57.   openssl_x509_export($scert, $publickey);
    58. 

  58.   openssl_pkey_export($privkey, $privatekey, $privkeypass);
    59. 

  59.   openssl_csr_export($csr, $csrStr);
    60. 

  60. 

  61.   VERIFY(strlen($privatekey) > 500);
    62. 

  62.   VERIFY(strlen($publickey) > 800);
    63. 

  63.   VERIFY(strlen($csrStr) > 500);
    64. 

  64. }
    65. 

  65. 

  66. function test_openssl_error_string() {
    67. 

  67.   $ret = openssl_error_string();
    68. 

  68. }
    69. 

  69. 

  70. function test_openssl_free_key() {
    71. 

  71.   $csr = openssl_csr_new(null, $ignore);
    72. 

  72.   VERIFY($csr != null);
    73. 

  73.   $publickey = openssl_csr_get_public_key($csr);
    74. 

  74.   VERIFY($publickey != false);
    75. 

  75.   VERIFY($publickey != null);
    76. 

  76.   openssl_free_key($publickey);
    77. 

  77. }
    78. 

  78. 

  79. function test_openssl_pkcs12_export_to_file() {
    80. 

  80.   $privkey = openssl_pkey_new();
    81. 

  81.   VERIFY($privkey != null);
    82. 

  82.   $csr = openssl_csr_new(null, $privkey);
    83. 

  83.   VERIFY($csr != null);
    84. 

  84.   $scert = openssl_csr_sign($csr, null, $privkey, 365);
    85. 

  85. 

  86.   $tmp = tempnam('/tmp', 'vmopenssltest');
    87. 

  87.   unlink($tmp);
    88. 

  88.   VS(file_get_contents($tmp), false);
    89. 

  89.   openssl_pkcs12_export_to_file($scert, $tmp, $privkey, "1234");
    90. 

  90.   VERIFY(strlen(file_get_contents($tmp)) > 400);
    91. 

  91.   unlink($tmp);
    92. 

  92. }
    93. 

  93. 

  94. function test_openssl_pkcs12_read() {
    95. 

  95.   $privkey = openssl_pkey_new();
    96. 

  96.   VERIFY($privkey != null);
    97. 

  97.   $csr = openssl_csr_new(null, $privkey);
    98. 

  98.   VERIFY($csr != null);
    99. 

  99.   $scert = openssl_csr_sign($csr, null, $privkey, 365);
    100. 

  100. 

  101.   openssl_pkcs12_export($scert, $pkcs12, $privkey, "1234");
    102. 

  102. 

  103.   VERIFY(openssl_pkcs12_read($pkcs12, $certs, "1234"));
    104. 

  104.   VERIFY(strlen($certs['cert']) > 500);
    105. 

  105.   VERIFY(strlen($certs['pkey']) > 500);
    106. 

  106. }
    107. 

  107. 

  108. function test_openssl_pkcs7_sign() {
    109. 

  109.   $privkey = openssl_pkey_new();
    110. 

  110.   VERIFY($privkey != null);
    111. 

  111.   $csr = openssl_csr_new(null, $privkey);
    112. 

  112.   VERIFY($csr != null);
    113. 

  113.   $scert = openssl_csr_sign($csr, null, $privkey, 365);
    114. 

  114.   $pubkey = openssl_csr_get_public_key($csr);
    115. 

  115.   VERIFY($pubkey != null);
    116. 

  116. 

  117.   $data = "some secret data";
    118. 

  118.   $infile = tempnam('/tmp', 'invmtestopenssl');
    119. 

  119.   $outfile = tempnam('/tmp', 'outvmtestopenssl');
    120. 

  120.   unlink($infile);
    121. 

  121.   unlink($outfile);
    122. 

  122.   file_put_contents($infile, $data);
    123. 

  123. 

  124.   VERIFY(openssl_pkcs7_sign
    125. 

  125.          ($infile, $outfile, $scert, $privkey,
    126. 

  126.           array("To" => "t@facebook.com", "From" => "hzhao@facebook.com")));
    127. 

  127. 

  128.   $tmp = tempnam('/tmp', 'x509vmtestopenssl');
    129. 

  129.   unlink($tmp);
    130. 

  130.   VS(file_get_contents($tmp), false);
    131. 

  131.   VERIFY(openssl_x509_export_to_file($scert, $tmp));
    132. 

  132. 

  133.   VS(openssl_pkcs7_verify($outfile, 0, $infile, (array)$tmp), true);
    134. 

  134.   unlink($infile);
    135. 

  135.   unlink($outfile);
    136. 

  136.   unlink($tmp);
    137. 

  137. }
    138. 

  138. 

  139. function test_openssl_pkey_export_to_file() {
    140. 

  140.   $tmp = tempnam('/tmp', 'vmopenssltest');
    141. 

  141.   unlink($tmp);
    142. 

  142.   VS(file_get_contents($tmp), false);
    143. 

  143. 

  144.   $privkey = openssl_pkey_new();
    145. 

  145.   VERIFY($privkey != null);
    146. 

  146.   openssl_pkey_export_to_file($privkey, $tmp, "1234");
    147. 

  147. 

  148.   VERIFY(strlen(file_get_contents($tmp)) > 400);
    149. 

  149.   unlink($tmp);
    150. 

  150. }
    151. 

  151. 

  152. function test_openssl_pkey_export() {
    153. 

  153.   $privkey = openssl_pkey_new();
    154. 

  154.   VERIFY($privkey != null);
    155. 

  155.   openssl_pkey_export($privkey, $out, "1234");
    156. 

  156.   VERIFY(strlen($out) > 500);
    157. 

  157. }
    158. 

  158. 

  159. function test_openssl_pkey_free() {
    160. 

  160.   $fkey = file_get_contents(__DIR__."/test_public.pem");
    161. 

  161.   $k = openssl_pkey_get_public($fkey);
    162. 

  162.   VERIFY($k != false);
    163. 

  163.   VERIFY($k != null);
    164. 

  164.   openssl_pkey_free($k);
    165. 

  165. }
    166. 

  166. 

  167. function test_openssl_pkey_get_details() {
    168. 

  168.   {
    169. 

  169.     $fkey = file_get_contents(__DIR__."/test_public.pem");
    170. 

  170.     $k = openssl_pkey_get_public($fkey);
    171. 

  171.     VERIFY($k !== false);
    172. 

  172.     VERIFY($k != null);
    173. 

  173.     VS(openssl_pkey_get_details($k)['bits'], 1024);
    174. 

  174.   }
    175. 

  175.   {
    176. 

  176.     $fkey = file_get_contents(__DIR__."/test_private.pem");
    177. 

  177.     $k = openssl_pkey_get_private($fkey);
    178. 

  178.     VERIFY($k !== false);
    179. 

  179.     VERIFY($k != null);
    180. 

  180.     VS(openssl_pkey_get_details($k)['bits'], 512);
    181. 

  181.   }
    182. 

  182. }
    183. 

  183. 

  184. function test_openssl_private_encrypt() {
    185. 

  185.   $privkey = openssl_pkey_new();
    186. 

  186.   VERIFY($privkey != null);
    187. 

  187.   $csr = openssl_csr_new(null, $privkey);
    188. 

  188.   VERIFY($csr != null);
    189. 

  189.   $pubkey = openssl_csr_get_public_key($csr);
    190. 

  190.   VERIFY($pubkey != null);
    191. 

  191. 

  192.   $data = "some secret data";
    193. 

  193.   VERIFY(openssl_private_encrypt($data, $out, $privkey));
    194. 

  194.   VERIFY(openssl_public_decrypt($out, $out2, $pubkey));
    195. 

  195.   VS($out2, $data);
    196. 

  196. }
    197. 

  197. 

  198. function test_openssl_public_encrypt() {
    199. 

  199.   $privkey = openssl_pkey_new();
    200. 

  200.   VERIFY($privkey != null);
    201. 

  201.   $csr = openssl_csr_new(null, $privkey);
    202. 

  202.   VERIFY($csr != null);
    203. 

  203.   $pubkey = openssl_csr_get_public_key($csr);
    204. 

  204.   VERIFY($pubkey != null);
    205. 

  205. 

  206.   $data = "some secret data";
    207. 

  207.   VERIFY(openssl_public_encrypt($data, $out, $pubkey));
    208. 

  208.   VERIFY(openssl_private_decrypt($out, $out2, $privkey));
    209. 

  209.   VS($out2, $data);
    210. 

  210. }
    211. 

  211. 

  212. function test_openssl_seal() {
    213. 

  213.   $privkey = openssl_pkey_new();
    214. 

  214.   VERIFY($privkey != null);
    215. 

  215.   $csr = openssl_csr_new(null, $privkey);
    216. 

  216.   VERIFY($csr != null);
    217. 

  217.   $pubkey = openssl_csr_get_public_key($csr);
    218. 

  218.   VERIFY($pubkey != null);
    219. 

  219. 

  220.   $data = "some secret messages";
    221. 

  221.   VERIFY(openssl_seal($data, $sealed, $ekeys, array($pubkey)));
    222. 

  222.   VERIFY(strlen($sealed) > 0);
    223. 

  223.   VS(count($ekeys), 1);
    224. 

  224.   VERIFY(strlen($ekeys[0]) > 0);
    225. 

  225. 

  226.   VERIFY(openssl_open($sealed, $open_data, $ekeys[0], $privkey));
    227. 

  227.   VS($open_data, $data);
    228. 

  228. 

  229.   VERIFY(openssl_open($sealed, $open_data, $ekeys[0], $privkey, 'RC4'));
    230. 

  230.   VS($open_data, $data);
    231. 

  231. 

  232.   VERIFY(openssl_seal($data, $sealed, $ekeys, array($pubkey), 'AES-256-ECB'));
    233. 

  233.   VERIFY(strlen($sealed) > 0);
    234. 

  234.   VS(count($ekeys), 1);
    235. 

  235.   VERIFY(strlen($ekeys[0]) > 0);
    236. 

  236. 

  237.   VERIFY(openssl_open($sealed, $open_data, $ekeys[0], $privkey, 'AES-256-ECB'));
    238. 

  238.   VS($open_data, $data);
    239. 

  239. }
    240. 

  240. 

  241. function test_openssl_sign() {
    242. 

  242.   $privkey = openssl_pkey_new();
    243. 

  243.   VERIFY($privkey != null);
    244. 

  244.   $csr = openssl_csr_new(null, $privkey);
    245. 

  245.   VERIFY($csr != null);
    246. 

  246.   $pubkey = openssl_csr_get_public_key($csr);
    247. 

  247.   VERIFY($pubkey != null);
    248. 

  248. 

  249.   $data = "some secret messages";
    250. 

  250.   VERIFY(openssl_sign($data, $signature, $privkey));
    251. 

  251.   VS(openssl_verify($data, $signature, $pubkey), 1);
    252. 

  252. 

  253. }
    254. 

  254. 

  255. function test_openssl_x509_check_private_key() {
    256. 

  256.   $privkey = openssl_pkey_new();
    257. 

  257.   VERIFY($privkey != null);
    258. 

  258.   $csr = openssl_csr_new(null, $privkey);
    259. 

  259.   VERIFY($csr != null);
    260. 

  260.   $scert = openssl_csr_sign($csr, null, $privkey, 365);
    261. 

  261.   VERIFY(openssl_x509_check_private_key($scert, $privkey));
    262. 

  262. }
    263. 

  263. 

  264. function test_openssl_x509_checkpurpose() {
    265. 

  265.   $fcert = file_get_contents(__DIR__."/test_x509.crt");
    266. 

  266.   $cert = openssl_x509_read($fcert);
    267. 

  267.   VS(openssl_x509_checkpurpose($cert, X509_PURPOSE_SSL_CLIENT), 0);
    268. 

  268.   VS(openssl_x509_checkpurpose($cert, X509_PURPOSE_SSL_SERVER), 0);
    269. 

  269. }
    270. 

  270. 

  271. function test_openssl_x509_export_to_file() {
    272. 

  272.   $fcert = file_get_contents(__DIR__."/test_x509.crt");
    273. 

  273.   $cert = openssl_x509_read($fcert);
    274. 

  274. 

  275.   $tmp = tempnam('/tmp', 'x509vmopenssltest');
    276. 

  276.   unlink($tmp);
    277. 

  277.   VS(file_get_contents($tmp), false);
    278. 

  278.   VERIFY(openssl_x509_export_to_file($cert, $tmp));
    279. 

  279. 

  280.   $fcert2 = file_get_contents($tmp);
    281. 

  281.   $cert2 = openssl_x509_read($fcert2);
    282. 

  282.   $info = openssl_x509_parse($cert2);
    283. 

  283.   VS($info['subject']['O'], "RSA Data Security, Inc.");
    284. 

  284. 

  285.   unlink($tmp);
    286. 

  286. }
    287. 

  287. 

  288. function test_openssl_x509_export() {
    289. 

  289.   $fcert = file_get_contents(__DIR__."/test_x509.crt");
    290. 

  290.   $cert = openssl_x509_read($fcert);
    291. 

  291.   VERIFY(openssl_x509_export($cert, $out));
    292. 

  292.   $cert2 = openssl_x509_read($out);
    293. 

  293.   $info = openssl_x509_parse($cert2);
    294. 

  294.   VS($info['subject']['O'], "RSA Data Security, Inc.");
    295. 

  295. }
    296. 

  296. 

  297. function test_openssl_x509_free() {
    298. 

  298.   $fcert = file_get_contents(__DIR__."/test_x509.crt");
    299. 

  299.   $cert = openssl_x509_read($fcert);
    300. 

  300.   VERIFY($cert != null);
    301. 

  301.   openssl_x509_free($cert);
    302. 

  302. }
    303. 

  303. 

  304. function test_openssl_x509_parse() {
    305. 

  305.   $fcert = file_get_contents(__DIR__."/test_x509.crt");
    306. 

  306.   $cert = openssl_x509_read($fcert);
    307. 

  307.   $info = openssl_x509_parse($cert);
    308. 

  308.   VS($info['subject']['O'], "RSA Data Security, Inc.");
    309. 

  309. }
    310. 

  310. 

  311. function test_openssl_x509_read() {
    312. 

  312.   $fcert = file_get_contents(__DIR__."/test_x509.crt");
    313. 

  313.   $cert = openssl_x509_read($fcert);
    314. 

  314.   VERIFY($cert != null);
    315. 

  315. }
    316. 

  316. 

  317. function test_openssl_encrypt() {
    318. 

  318.   $test = "OpenSSL is good for encrypting things";
    319. 

  319.   $secret = "supersecretthing";
    320. 

  320.   $cipher = "AES-256-CBC";
    321. 

  321.   $iv_len = openssl_cipher_iv_length($cipher);
    322. 

  322.   $iv = openssl_random_pseudo_bytes($iv_len);
    323. 

  323. 

  324.   $data = openssl_encrypt($test, $cipher, $secret, 0, $iv);
    325. 

  325.   VS($test, openssl_decrypt($data, $cipher, $secret, 0, $iv));
    326. 

  326. 

  327.   $data = openssl_encrypt($test, $cipher, $secret, OPENSSL_RAW_DATA, $iv);
    328. 

  328.   VS($test, openssl_decrypt($data, $cipher, $secret, OPENSSL_RAW_DATA, $iv));
    329. 

  329. }
    330. 

  330. 

  331. function test_openssl_digest() {
    332. 

  332.   $test = "OpenSSL is also good for hashing things";
    333. 

  333. 

  334.   VS(md5($test), openssl_digest($test, "md5"));
    335. 

  335. }
    336. 

  336. 

  337. //////////////////////////////////////////////////////////////////////
    338. 

  338. 

  339. test_openssl_csr_export_to_file();
    340. 

  340. test_openssl_csr_get_public_key();
    341. 

  341. test_openssl_csr_get_subject();
    342. 

  342. test_openssl_csr_sign();
    343. 

  343. test_openssl_error_string();
    344. 

  344. test_openssl_free_key();
    345. 

  345. test_openssl_pkcs12_export_to_file();
    346. 

  346. test_openssl_pkcs12_read();
    347. 

  347. test_openssl_pkcs7_sign();
    348. 

  348. test_openssl_pkey_export_to_file();
    349. 

  349. test_openssl_pkey_export();
    350. 

  350. test_openssl_pkey_free();
    351. 

  351. test_openssl_pkey_get_details();
    352. 

  352. test_openssl_private_encrypt();
    353. 

  353. test_openssl_public_encrypt();
    354. 

  354. test_openssl_seal();
    355. 

  355. test_openssl_sign();
    356. 

  356. test_openssl_x509_check_private_key();
    357. 

  357. test_openssl_x509_checkpurpose();
    358. 

  358. test_openssl_x509_export_to_file();
    359. 

  359. test_openssl_x509_export();
    360. 

  360. test_openssl_x509_free();
    361. 

  361. test_openssl_x509_parse();
    362. 

  362. test_openssl_x509_read();
    363. 

  363. test_openssl_encrypt();
    364. 

  364. test_openssl_digest();
    365.