diff options
Diffstat (limited to 'test/openssl/test_engine.rb')
-rw-r--r-- | test/openssl/test_engine.rb | 97 |
1 files changed, 97 insertions, 0 deletions
diff --git a/test/openssl/test_engine.rb b/test/openssl/test_engine.rb new file mode 100644 index 00000000..232ba866 --- /dev/null +++ b/test/openssl/test_engine.rb @@ -0,0 +1,97 @@ +# frozen_string_literal: true +require_relative 'utils' + +if defined?(OpenSSL) && defined?(OpenSSL::Engine) + +class OpenSSL::TestEngine < OpenSSL::TestCase + def test_engines_free # [ruby-dev:44173] + with_openssl <<-'end;' + OpenSSL::Engine.load("openssl") + OpenSSL::Engine.engines + OpenSSL::Engine.engines + end; + end + + def test_openssl_engine_builtin + with_openssl <<-'end;' + orig = OpenSSL::Engine.engines + pend "'openssl' is already loaded" if orig.any? { |e| e.id == "openssl" } + engine = OpenSSL::Engine.load("openssl") + assert_equal(true, engine) + assert_equal(1, OpenSSL::Engine.engines.size - orig.size) + end; + end + + def test_openssl_engine_by_id_string + with_openssl <<-'end;' + orig = OpenSSL::Engine.engines + pend "'openssl' is already loaded" if orig.any? { |e| e.id == "openssl" } + engine = get_engine + assert_not_nil(engine) + assert_equal(1, OpenSSL::Engine.engines.size - orig.size) + end; + end + + def test_openssl_engine_id_name_inspect + with_openssl <<-'end;' + engine = get_engine + assert_equal("openssl", engine.id) + assert_not_nil(engine.name) + assert_not_nil(engine.inspect) + end; + end + + def test_openssl_engine_digest_sha1 + with_openssl <<-'end;' + engine = get_engine + digest = engine.digest("SHA1") + assert_not_nil(digest) + data = "test" + assert_equal(OpenSSL::Digest::SHA1.digest(data), digest.digest(data)) + end; + end + + def test_openssl_engine_cipher_rc4 + begin + OpenSSL::Cipher.new("rc4") + rescue OpenSSL::Cipher::CipherError + pend "RC4 is not supported" + end + + with_openssl(<<-'end;', ignore_stderr: true) + engine = get_engine + algo = "RC4" + data = "a" * 1000 + key = OpenSSL::Random.random_bytes(16) + encrypted = crypt_data(data, key, :encrypt) { engine.cipher(algo) } + decrypted = crypt_data(encrypted, key, :decrypt) { OpenSSL::Cipher.new(algo) } + assert_equal(data, decrypted) + end; + end + + private + + # this is required because OpenSSL::Engine methods change global state + def with_openssl(code, **opts) + assert_separately([{ "OSSL_MDEBUG" => nil }, "-ropenssl"], <<~"end;", **opts) + require #{__FILE__.dump} + include OpenSSL::TestEngine::Utils + #{code} + end; + end + + module Utils + def get_engine + OpenSSL::Engine.by_id("openssl") + end + + def crypt_data(data, key, mode) + cipher = yield + cipher.send mode + cipher.key = key + cipher.update(data) + cipher.final + end + end +end + +end |