annotate ui/tests/data/NOTES @ 289:9ad00a3255f4

Change cinst from stdin input to use arguments. As we have to execute this process on Windows over the shell a stdin / stdout communication is not really possible without some major hacks. So you now have to supply an instructions file and the path to the certificatelist as arguments when this process is called
author Andre Heinecke <aheinecke@intevation.de>
date Wed, 02 Apr 2014 13:52:02 +0000
parents a7317252a27c
children 534df06d5c67
rev   line source
8
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
1 Testkeys were created with:
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
2 openssl genrsa -out testkey-priv.pem 3072
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
3 openssl rsa -in testkey-priv.pem -out testkey-pub.pem -outform PEM -pubout
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
4
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
5
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
6 Certificate List was created manually and contains:
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
7 PCA-1-Verwaltung-08
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
8 Intevation-Email-CA-2013
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
9 Intevation-Server-CA-2010
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
10
42
6e7ef7e95031 Some more tests and some more test data
Andre Heinecke <aheinecke@intevation.de>
parents: 30
diff changeset
11 Test files created with:
8
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
12
30
381558ff6f26 Also break the signature with carriage return
Andre Heinecke <aheinecke@intevation.de>
parents: 26
diff changeset
13 echo -e S:$(openssl dgst -sha256 -sign testkey-priv.pem < list-valid.txt | base64 -w0)\\r > list-valid-signed.txt
8
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
14 cat list-valid.txt >> list-valid-signed.txt
42
6e7ef7e95031 Some more tests and some more test data
Andre Heinecke <aheinecke@intevation.de>
parents: 30
diff changeset
15 echo -e S:$(openssl dgst -sha256 -sign testkey-other.pem < list-valid.txt | base64 -w0)\\r > list-valid-other-signature.txt
6e7ef7e95031 Some more tests and some more test data
Andre Heinecke <aheinecke@intevation.de>
parents: 30
diff changeset
16 cat list-valid.txt >> list-valid-other-signature.txt
6e7ef7e95031 Some more tests and some more test data
Andre Heinecke <aheinecke@intevation.de>
parents: 30
diff changeset
17 echo -e S:$(openssl dgst -sha1 -sign testkey-other.pem < list-valid.txt | base64 -w0)\\r > list-valid-sha1-signature.txt
6e7ef7e95031 Some more tests and some more test data
Andre Heinecke <aheinecke@intevation.de>
parents: 30
diff changeset
18 cat list-valid.txt >> list-valid-sha1-signature.txt
8
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
19 cp list-valid-signed.txt list-invalid-signed.txt
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
20 tail -1 list-valid.txt >> list-invalid-signed.txt
c7da699f0310 Add some notes about testfile creation
Andre Heinecke <aheinecke@intevation.de>
parents:
diff changeset
21
42
6e7ef7e95031 Some more tests and some more test data
Andre Heinecke <aheinecke@intevation.de>
parents: 30
diff changeset
22 # List with 0 created manually by placing a \0 in the signature
6e7ef7e95031 Some more tests and some more test data
Andre Heinecke <aheinecke@intevation.de>
parents: 30
diff changeset
23
43
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
24 # Test server certificate:
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
25
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
26 gen_key type=ec ec_curve=brainpoolP256r1 filename=valid_ssl_bp.key
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
27 cert_write issuer_name=CN=127.0.0.1,O=Intevation\\ Test,C=DE \
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
28 selfsign=1 issuer_key=valid_ssl_bp.key \
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
29 not_before=20130101000000 not_after=20301231235959 \
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
30 is_ca=1 max_pathlen=0 output_file=valid_ssl_bp.pem
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
31 cat valid_ssl_bp.key >> valid_ssl_bp.pem
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
32
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
33 gen_key filename=valid_ssl_rsa.key
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
34 cert_write issuer_name=CN=127.0.0.1,O=Do_Not_Trust_Test,C=DE \
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
35 selfsign=1 issuer_key=valid_ssl_rsa.key \
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
36 not_before=20130101000000 not_after=20151231235959 \
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
37 is_ca=1 max_pathlen=0 output_file=valid_ssl_rsa.pem
49
c389915fd55e Add an RSA key for testing
Andre Heinecke <aheinecke@intevation.de>
parents: 43
diff changeset
38 cat valid_ssl_rsa.key >> valid_ssl_rsa.pem
43
5910bf9016cd Add Downloadertest
Andre Heinecke <aheinecke@intevation.de>
parents: 42
diff changeset
39
234
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
40 # Test list certificates (using the rsa key)
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
41
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
42 for i in {1..30}
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
43 do
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
44 gen_key filename=valid_ssl_rsa.key
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
45 cert_write issuer_name=CN=TestRootCA$i,O=Do_Not_Trust_Test,C=DE \
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
46 selfsign=1 issuer_key=valid_ssl_rsa.key \
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
47 not_before=20130101000000 not_after=20151231235959 \
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
48 is_ca=1 max_pathlen=0 output_file=valid_ssl_rsa.pem
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
49 CERT=$(cat valid_ssl_rsa.pem | grep -v "\-\-\-\-" | tr -d "\\n")
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
50 echo -e I:${CERT}\\r >> list-valid.txt
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
51 done
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
52
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
53 for i in {1..15}
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
54 do
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
55 gen_key filename=valid_ssl_rsa.key
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
56 cert_write issuer_name=CN=TestRootCADelete$i,O=Do_Not_Trust_Test,C=DE \
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
57 selfsign=1 issuer_key=valid_ssl_rsa.key \
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
58 not_before=20130101000000 not_after=20151231235959 \
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
59 is_ca=1 max_pathlen=0 output_file=valid_ssl_rsa.pem
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
60 CERT=$(cat valid_ssl_rsa.pem | grep -v "\-\-\-\-" | tr -d "\\n")
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
61 echo -e R:${CERT}\\r >> list-valid.txt
a7317252a27c Add more realistic test data
Andre Heinecke <aheinecke@intevation.de>
parents: 50
diff changeset
62 done

http://wald.intevation.org/projects/trustbridge/