diff options
Diffstat (limited to 'tests/testEnc.sh')
-rwxr-xr-x | tests/testEnc.sh | 350 |
1 files changed, 174 insertions, 176 deletions
diff --git a/tests/testEnc.sh b/tests/testEnc.sh index bf2de36a..54d1ca81 100755 --- a/tests/testEnc.sh +++ b/tests/testEnc.sh @@ -1,368 +1,353 @@ -#!/bin/sh - -OS_ARCH=`uname -o` - -crypto=$1 -topfolder=$2 -xmlsec_app=$3 -file_format=$4 - -pub_key_format=$file_format -cert_format=$file_format -priv_key_option="--pkcs12" -priv_key_format="p12" - -if [ "z$TMPFOLDER" = "z" ] ; then - TMPFOLDER=/tmp -fi - -timestamp=`date +%Y%m%d_%H%M%S` -tmpfile=$TMPFOLDER/testEnc.$timestamp-$$.tmp -logfile=$TMPFOLDER/testEnc.$timestamp-$$.log -script="$0" - -# prepate crypto config folder -crypto_config=$TMPFOLDER/xmlsec-crypto-config -keysfile=$crypto_config/keys.xml - -valgrind_suppression="--suppressions=$topfolder/openssl.supp --suppressions=$topfolder/nss.supp" -valgrind_options="--leak-check=yes --show-reachable=yes --num-callers=32 -v" - - -if [ "z$crypto" != "z" -a "z$crypto" != "zdefault" ] ; then - xmlsec_params="$xmlsec_params --crypto $crypto" -fi -xmlsec_params="$xmlsec_params --crypto-config $crypto_config" - -if [ -n "$DEBUG_MEMORY" ] ; then - export VALGRIND="valgrind $valgrind_options" - export REPEAT=3 - xmlsec_params="$xmlsec_params --repeat $REPEAT" -fi - -if [ -n "$PERF_TEST" ] ; then - export xmlsec_params="$xmlsec_params --repeat $PERF_TEST" -fi - -printRes() { - if [ $1 = 0 ]; then - echo " OK" - else - echo " Fail" - fi - if [ -f .memdump ] ; then - cat .memdump >> $logfile - fi -} - -execEncTest() { - filename=$1 - req_transforms=$2 - params1=$3 - params2=$4 - params3=$5 - - echo $filename - echo $filename >> $logfile - file=$topfolder/$filename - - if [ -n "$req_transforms" ] ; then - printf " Checking required transforms " - echo "$xmlsec_app check-transforms $req_transforms" >> $logfile - $xmlsec_app check-transforms $req_transforms >> $logfile 2>> $logfile - res=$? - if [ $res = 0 ]; then - echo " OK" - else - echo " Skip" - return - fi - fi - - printf " Decrypt existing document " - rm -f $tmpfile - - if [ "z$OS_ARCH" = "zCygwin" ] ; then - diff_param=-uw - else - diff_param=-u - fi - - echo "$xmlsec_app decrypt $xmlsec_params $params1 $file.xml" >> $logfile - $VALGRIND $xmlsec_app decrypt $xmlsec_params $params1 $file.xml > $tmpfile 2>> $logfile - if [ $? = 0 ]; then - diff $diff_param $file.data $tmpfile >> $logfile 2>> $logfile - printRes $? - else - echo " Error" - fi - - if [ -n "$params2" -a -z "$PERF_TEST" ] ; then - printf " Encrypt document " - rm -f $tmpfile - echo "$xmlsec_app encrypt $xmlsec_params $params2 --output $tmpfile $file.tmpl" >> $logfile - $VALGRIND $xmlsec_app encrypt $xmlsec_params $params2 --output $tmpfile $file.tmpl >> $logfile 2>> $logfile - printRes $? - - if [ -n "$params4" ] ; then - if [ -z "$VALGRIND" ] ; then - printf " Decrypt new document " - echo "$xmlsec_app decrypt $xmlsec_params $params4 --output $tmpfile.2 $tmpfile" >> $logfile - $VALGRIND $xmlsec_app decrypt $xmlsec_params $params4 --output $tmpfile.2 $tmpfile >> $logfile 2>> $logfile - if [ $? = 0 ]; then - diff $diff_param $file.data $tmpfile.2 >> $logfile 2>> $logfile - printRes $? - else - echo " Error" - fi - fi - fi - fi - rm -f $tmpfile $tmpfile.2 -} - +#!/bin/sh +# +# This script needs to be called from testrun.sh script +# + +########################################################################## +########################################################################## +########################################################################## echo "--- testEnc started for xmlsec-$crypto library ($timestamp)" echo "--- LD_LIBRARY_PATH=$LD_LIBRARY_PATH" echo "--- log file is $logfile" echo "--- testEnc started for xmlsec-$crypto library ($timestamp)" >> $logfile echo "--- LD_LIBRARY_PATH=$LD_LIBRARY_PATH" >> $logfile +########################################################################## +########################################################################## +########################################################################## +echo "--------- Positive Testing ----------" + +########################################################################## +# +# aleksey-xmlenc-01 +# +########################################################################## -execEncTest "aleksey-xmlenc-01/enc-des3cbc-keyname" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-des3cbc-keyname" \ "tripledes-cbc" \ "--keys-file $topfolder/keys/keys.xml" \ "--keys-file $keysfile --binary-data $topfolder/aleksey-xmlenc-01/enc-des3cbc-keyname.data" \ "--keys-file $keysfile" -execEncTest "aleksey-xmlenc-01/enc-des3cbc-keyname2" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-des3cbc-keyname2" \ "tripledes-cbc" \ "--keys-file $topfolder/keys/keys.xml" \ "--keys-file $keysfile --binary-data $topfolder/aleksey-xmlenc-01/enc-des3cbc-keyname2.data" \ "--keys-file $keysfile" -execEncTest "aleksey-xmlenc-01/enc-aes128cbc-keyname" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-aes128cbc-keyname" \ "aes128-cbc" \ "--keys-file $topfolder/keys/keys.xml" \ "--keys-file $keysfile --binary-data $topfolder/aleksey-xmlenc-01/enc-aes128cbc-keyname.data" \ "--keys-file $keysfile" -execEncTest "aleksey-xmlenc-01/enc-aes192cbc-keyname" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-aes192cbc-keyname" \ "aes192-cbc" \ "--keys-file $topfolder/keys/keys.xml" \ "--keys-file $keysfile --binary-data $topfolder/aleksey-xmlenc-01/enc-aes192cbc-keyname.data" \ "--keys-file $keysfile" -execEncTest "aleksey-xmlenc-01/enc-aes192cbc-keyname-ref" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-aes192cbc-keyname-ref" \ "aes192-cbc" \ "--keys-file $topfolder/keys/keys.xml" -execEncTest "aleksey-xmlenc-01/enc-aes256cbc-keyname" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-aes256cbc-keyname" \ "aes256-cbc" \ "--keys-file $topfolder/keys/keys.xml" \ "--keys-file $keysfile --binary-data $topfolder/aleksey-xmlenc-01/enc-aes256cbc-keyname.data" \ "--keys-file $keysfile" -execEncTest "aleksey-xmlenc-01/enc-des3cbc-keyname-content" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-des3cbc-keyname-content" \ "tripledes-cbc" \ "--keys-file $topfolder/keys/keys.xml" \ "--keys-file $keysfile --xml-data $topfolder/aleksey-xmlenc-01/enc-des3cbc-keyname-content.data --node-id Test" \ "--keys-file $keysfile" -execEncTest "aleksey-xmlenc-01/enc-des3cbc-keyname-element" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-des3cbc-keyname-element" \ "tripledes-cbc" \ "--keys-file $topfolder/keys/keys.xml" \ "--keys-file $keysfile --xml-data $topfolder/aleksey-xmlenc-01/enc-des3cbc-keyname-element.data --node-id Test" \ "--keys-file $keysfile" -execEncTest "aleksey-xmlenc-01/enc-des3cbc-keyname-element-root" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-des3cbc-keyname-element-root" \ "tripledes-cbc" \ "--keys-file $topfolder/keys/keys.xml" \ "--keys-file $keysfile --xml-data $topfolder/aleksey-xmlenc-01/enc-des3cbc-keyname-element-root.data --node-id Test" \ "--keys-file $keysfile" -execEncTest "aleksey-xmlenc-01/enc-des3cbc-aes192-keyname" \ +execEncTest $res_success \ + "" \ + "aleksey-xmlenc-01/enc-des3cbc-aes192-keyname" \ "tripledes-cbc kw-aes192" \ "--keys-file $topfolder/keys/keys.xml --enabled-key-data key-name,enc-key" \ "--keys-file $keysfile --session-key des-192 --binary-data $topfolder/aleksey-xmlenc-01/enc-des3cbc-aes192-keyname.data" \ "--keys-file $keysfile" -# Merlin's tests -execEncTest "merlin-xmlenc-five/encrypt-data-aes128-cbc" \ +########################################################################## +# +# merlin-xmlenc-five +# +########################################################################## + +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-data-aes128-cbc" \ "aes128-cbc" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml --binary-data $topfolder/merlin-xmlenc-five/encrypt-data-aes128-cbc.data" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" -execEncTest "merlin-xmlenc-five/encrypt-content-tripledes-cbc" \ +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-content-tripledes-cbc" \ "tripledes-cbc" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml --enabled-key-data key-name --xml-data $topfolder/merlin-xmlenc-five/encrypt-content-tripledes-cbc.data --node-id Payment" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" -execEncTest "merlin-xmlenc-five/encrypt-content-aes256-cbc-prop" \ +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-content-aes256-cbc-prop" \ "aes256-cbc" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml --enabled-key-data key-name --xml-data $topfolder/merlin-xmlenc-five/encrypt-content-aes256-cbc-prop.data --node-id Payment" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" -execEncTest "merlin-xmlenc-five/encrypt-element-aes192-cbc-ref" \ +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-element-aes192-cbc-ref" \ "aes192-cbc" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" -execEncTest "merlin-xmlenc-five/encrypt-element-aes128-cbc-rsa-1_5" \ +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-element-aes128-cbc-rsa-1_5" \ "aes128-cbc rsa-1_5" \ "$priv_key_option $topfolder/merlin-xmlenc-five/rsapriv.$priv_key_format --pwd secret" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml --session-key aes-128 $priv_key_option $topfolder/merlin-xmlenc-five/rsapriv.$priv_key_format --xml-data $topfolder/merlin-xmlenc-five/encrypt-element-aes128-cbc-rsa-1_5.data --node-id Purchase --pwd secret" \ "$priv_key_option $topfolder/merlin-xmlenc-five/rsapriv.$priv_key_format --pwd secret" -execEncTest "merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p" \ +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p" \ "tripledes-cbc rsa-oaep-mgf1p" \ "$priv_key_option $topfolder/merlin-xmlenc-five/rsapriv.$priv_key_format --pwd secret" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml --session-key des-192 $priv_key_option $topfolder/merlin-xmlenc-five/rsapriv.$priv_key_format --binary-data $topfolder/merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p.data --pwd secret" \ "$priv_key_option $topfolder/merlin-xmlenc-five/rsapriv.$priv_key_format --pwd secret" -execEncTest "merlin-xmlenc-five/encrypt-data-aes256-cbc-kw-tripledes" \ +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-data-aes256-cbc-kw-tripledes" \ "aes256-cbc kw-tripledes" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml --session-key aes-256 --binary-data $topfolder/merlin-xmlenc-five/encrypt-data-aes256-cbc-kw-tripledes.data" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" -execEncTest "merlin-xmlenc-five/encrypt-content-aes128-cbc-kw-aes192" \ +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-content-aes128-cbc-kw-aes192" \ "aes128-cbc kw-aes192" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml --session-key aes-128 --node-name urn:example:po:PaymentInfo --xml-data $topfolder/merlin-xmlenc-five/encrypt-content-aes128-cbc-kw-aes192.data" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" -execEncTest "merlin-xmlenc-five/encrypt-data-aes192-cbc-kw-aes256" \ +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-data-aes192-cbc-kw-aes256" \ "aes192-cbc kw-aes256" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml --session-key aes-192 --binary-data $topfolder/merlin-xmlenc-five/encrypt-data-aes192-cbc-kw-aes256.data" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" -execEncTest "merlin-xmlenc-five/encrypt-element-tripledes-cbc-kw-aes128" \ +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-element-tripledes-cbc-kw-aes128" \ "tripledes-cbc kw-aes128" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml --session-key des-192 --node-name urn:example:po:PaymentInfo --xml-data $topfolder/merlin-xmlenc-five/encrypt-element-tripledes-cbc-kw-aes128.data" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" - -execEncTest "merlin-xmlenc-five/encrypt-element-aes256-cbc-retrieved-kw-aes256" \ + +execEncTest $res_success \ + "" \ + "merlin-xmlenc-five/encrypt-element-aes256-cbc-retrieved-kw-aes256" \ "aes256-cbc kw-aes256" \ "--keys-file $topfolder/merlin-xmlenc-five/keys.xml" +#merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p-sha256.xml + #merlin-xmlenc-five/encrypt-element-aes256-cbc-carried-kw-aes256.xml #merlin-xmlenc-five/decryption-transform-except.xml #merlin-xmlenc-five/decryption-transform.xml #merlin-xmlenc-five/encrypt-element-aes256-cbc-kw-aes256-dh-ripemd160.xml #merlin-xmlenc-five/encrypt-content-aes192-cbc-dh-sha512.xml -#merlin-xmlenc-five/encrypt-data-tripledes-cbc-rsa-oaep-mgf1p-sha256.xml #merlin-xmlenc-five/encsig-hmac-sha256-dh.xml #merlin-xmlenc-five/encsig-hmac-sha256-kw-tripledes-dh.xml -execEncTest "01-phaos-xmlenc-3/enc-element-3des-kt-rsa1_5" \ +########################################################################## +# +# 01-phaos-xmlenc-3 +# +########################################################################## + +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-3des-kt-rsa1_5" \ "tripledes-cbc rsa-1_5" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" \ "--session-key des-192 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-3des-kt-rsa1_5.data --node-name http://example.org/paymentv2:CreditCard" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" -execEncTest "01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha1" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha1" \ "tripledes-cbc rsa-oaep-mgf1p" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" \ "--session-key des-192 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha1.data --node-name http://example.org/paymentv2:CreditCard" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" -execEncTest "01-phaos-xmlenc-3/enc-element-aes128-kt-rsa1_5" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-aes128-kt-rsa1_5" \ "aes128-cbc rsa-1_5" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" \ "--session-key aes-128 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-aes128-kt-rsa1_5.data --node-name http://example.org/paymentv2:CreditCard" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" -execEncTest "01-phaos-xmlenc-3/enc-element-aes128-kt-rsa_oaep_sha1" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-aes128-kt-rsa_oaep_sha1" \ "aes128-cbc rsa-oaep-mgf1p" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" \ "--session-key aes-128 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-aes128-kt-rsa_oaep_sha1.data --node-name http://example.org/paymentv2:CreditCard" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" -execEncTest "01-phaos-xmlenc-3/enc-element-aes192-kt-rsa_oaep_sha1" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-aes192-kt-rsa_oaep_sha1" \ "aes192-cbc rsa-oaep-mgf1p" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" \ "--session-key aes-192 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-aes192-kt-rsa_oaep_sha1.data --node-name http://example.org/paymentv2:CreditCard" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" -execEncTest "01-phaos-xmlenc-3/enc-text-aes192-kt-rsa1_5" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-text-aes192-kt-rsa1_5" \ "aes192-cbc rsa-1_5" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" \ "--session-key aes-192 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-text-aes192-kt-rsa1_5.data --node-name http://example.org/paymentv2:CreditCard" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" -execEncTest "01-phaos-xmlenc-3/enc-content-aes256-kt-rsa1_5" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-content-aes256-kt-rsa1_5" \ "aes256-cbc rsa-1_5" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" \ "--session-key aes-256 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-content-aes256-kt-rsa1_5.data --node-name http://example.org/paymentv2:CreditCard" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" -execEncTest "01-phaos-xmlenc-3/enc-text-aes256-kt-rsa_oaep_sha1" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-text-aes256-kt-rsa_oaep_sha1" \ "aes256-cbc rsa-oaep-mgf1p" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" \ "--session-key aes-256 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-text-aes256-kt-rsa_oaep_sha1.data --node-name http://example.org/paymentv2:CreditCard" \ "$priv_key_option $topfolder/01-phaos-xmlenc-3/rsa-priv-key.$priv_key_format --pwd secret" -execEncTest "01-phaos-xmlenc-3/enc-element-3des-kw-3des" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-3des-kw-3des" \ "tripledes-cbc kw-tripledes" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key des-192 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-3des-kw-3des.data --node-name http://example.org/paymentv2:CreditCard" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "01-phaos-xmlenc-3/enc-content-aes128-kw-3des" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-content-aes128-kw-3des" \ "aes128-cbc kw-tripledes" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key aes-128 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-content-aes128-kw-3des.data --node-name http://example.org/paymentv2:CreditCard" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "01-phaos-xmlenc-3/enc-element-aes128-kw-aes128" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-aes128-kw-aes128" \ "aes128-cbc kw-aes128" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key aes-128 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-aes128-kw-aes128.data --node-name http://example.org/paymentv2:CreditCard" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "01-phaos-xmlenc-3/enc-element-aes128-kw-aes256" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-aes128-kw-aes256" \ "aes128-cbc kw-aes256" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key aes-128 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-aes128-kw-aes256.data --node-name http://example.org/paymentv2:CreditCard" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "01-phaos-xmlenc-3/enc-content-3des-kw-aes192" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-content-3des-kw-aes192" \ "tripledes-cbc kw-aes192" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key des-192 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-content-3des-kw-aes192.data --node-name http://example.org/paymentv2:CreditCard" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "01-phaos-xmlenc-3/enc-content-aes192-kw-aes256" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-content-aes192-kw-aes256" \ "aes192-cbc kw-aes256" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key aes-192 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-content-aes192-kw-aes256.data --node-name http://example.org/paymentv2:CreditCard" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "01-phaos-xmlenc-3/enc-element-aes192-kw-aes192" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-aes192-kw-aes192" \ "aes192-cbc kw-aes192" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key aes-192 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-aes192-kw-aes192.data --node-name http://example.org/paymentv2:CreditCard" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "01-phaos-xmlenc-3/enc-element-aes256-kw-aes256" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-element-aes256-kw-aes256" \ "aes256-cbc kw-aes256" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key aes-256 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-element-aes256-kw-aes256.data --node-name http://example.org/paymentv2:CreditCard" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "01-phaos-xmlenc-3/enc-text-3des-kw-aes256" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-text-3des-kw-aes256" \ "tripledes-cbc kw-aes256" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key des-192 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-text-3des-kw-aes256.data --node-name http://example.org/paymentv2:CreditCard" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "01-phaos-xmlenc-3/enc-text-aes128-kw-aes192" \ +execEncTest $res_success \ + "" \ + "01-phaos-xmlenc-3/enc-text-aes128-kw-aes192" \ "aes128-cbc kw-aes192" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" \ "--session-key aes-128 --keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-key-data key-name --xml-data $topfolder/01-phaos-xmlenc-3/enc-text-aes128-kw-aes192.data --node-name http://example.org/paymentv2:CreditCard" \ @@ -376,38 +361,51 @@ execEncTest "01-phaos-xmlenc-3/enc-text-aes128-kw-aes192" \ #01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha256.xml #01-phaos-xmlenc-3/enc-element-3des-kt-rsa_oaep_sha512.xml -# test dynamic encryption +########################################################################## +# +# test dynamicencryption +# +########################################################################## echo "Dynamic encryption template" printf " Encrypt template " echo "$xmlsec_app encrypt-tmpl $xmlsec_params --keys-file $keysfile --output $tmpfile" >> $logfile $VALGRIND $xmlsec_app encrypt-tmpl $xmlsec_params --keys-file $keysfile --output $tmpfile >> $logfile 2>> $logfile -printRes $? +printRes $res_success $? printf " Decrypt document " echo "$xmlsec_app decrypt $xmlsec_params $keysfile $tmpfile" >> $logfile $VALGRIND $xmlsec_app decrypt $xmlsec_params --keys-file $keysfile $tmpfile >> $logfile 2>> $logfile -printRes $? - +printRes $res_success $? +########################################################################## +########################################################################## +########################################################################## echo "--------- Negative Testing: Following tests MUST FAIL ----------" echo "--- detailed log is written to $logfile" -execEncTest "01-phaos-xmlenc-3/bad-alg-enc-element-aes128-kw-3des" \ +execEncTest $res_fail \ + "" \ + "01-phaos-xmlenc-3/bad-alg-enc-element-aes128-kw-3des" \ "" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml" -execEncTest "aleksey-xmlenc-01/enc-aes192cbc-keyname-ref" \ +execEncTest $res_fail \ + "" \ + "aleksey-xmlenc-01/enc-aes192cbc-keyname-ref" \ "" \ "--keys-file $topfolder/keys/keys.xml --enabled-cipher-reference-uris empty" -execEncTest "01-phaos-xmlenc-3/enc-content-aes256-kt-rsa1_5" \ +execEncTest $res_fail \ + "" \ + "01-phaos-xmlenc-3/enc-content-aes256-kt-rsa1_5" \ "" \ "--keys-file $topfolder/01-phaos-xmlenc-3/keys.xml --enabled-retrieval-method-uris empty" - + rm -rf $tmpfile +########################################################################## +########################################################################## +########################################################################## echo "--- testEnc finished" >> $logfile echo "--- testEnc finished" -echo "--- detailed log is written to $logfile" - -#more $logfile +echo "--- detailed log is written to $logfile" |