php-src/ext/openssl/tests/ecc.phpt

--TEST--
openssl_*() with OPENSSL_KEYTYPE_EC
--SKIPIF--
<?php if (!extension_loaded("openssl") && !defined("OPENSSL_KEYTYPE_EC")) print "skip"; ?>
--FILE--
<?php
$args = array(
	"curve_name" => "secp384r1",
	"private_key_type" => OPENSSL_KEYTYPE_EC,
);
echo "Testing openssl_pkey_new\n";
$key1 = openssl_pkey_new($args);
var_dump($key1);

$argsFailed = array(
	"curve_name" => "invalid_cuve_name",
	"private_key_type" => OPENSSL_KEYTYPE_EC,
);

$keyFailed = openssl_pkey_new($argsFailed);
var_dump($keyFailed);

$d1 = openssl_pkey_get_details($key1);
var_dump($d1["bits"]);
var_dump(strlen($d1["key"]));
var_dump($d1["ec"]["curve_name"]);
var_dump($d1["type"] == OPENSSL_KEYTYPE_EC);

$key2 = openssl_pkey_new($d1);
var_dump($key2);

$d2 = openssl_pkey_get_details($key2);
// Compare array
var_dump($d1 === $d2);

$dn = array(
	"countryName" => "BR",
	"stateOrProvinceName" => "Rio Grande do Sul",
	"localityName" => "Porto Alegre",
	"commonName" => "Henrique do N. Angelo",
	"emailAddress" => "hnangelo@php.net"
);

// openssl_csr_new creates a new public key pair if the key argument is null
echo "Testing openssl_csr_new with key generation\n";
$keyGenerate = null;
var_dump($keyGenerate);
$csr = openssl_csr_new($dn, $keyGenerate, $args);

var_dump($keyGenerate);

$args["digest_alg"] = "sha1";
echo "Testing openssl_csr_new with existing ecc key\n";
$csr = openssl_csr_new($dn, $key1, $args);
var_dump($csr);

$pubkey1 = openssl_pkey_get_details(openssl_csr_get_public_key($csr));
var_dump(isset($pubkey1["ec"]["priv_key"]));
unset($d1["ec"]["priv_key"]);
var_dump(array_diff($d1["ec"], $pubkey1["ec"]));

$x509 = openssl_csr_sign($csr, null, $key1, 365, $args);
var_dump($x509);

echo "Testing openssl_x509_check_private_key\n";
var_dump(openssl_x509_check_private_key($x509, $key1));

$key3 = openssl_pkey_new($args);
var_dump(openssl_x509_check_private_key($x509, $key3));

echo "Testing openssl_get_curve_names\n";
$curve_names = openssl_get_curve_names();

var_dump(is_array($curve_names));

foreach ($curve_names as $curve_name) {
	if ("secp384r1" === $curve_name) {
		echo "Found secp384r1 in curve names\n";
	}
}
?>
--EXPECTF--
Testing openssl_pkey_new
resource(%d) of type (OpenSSL key)

Warning: openssl_pkey_new(): Unknown elliptic curve (short) name invalid_cuve_name in %s on line %d
bool(false)
int(384)
int(215)
string(9) "secp384r1"
bool(true)
resource(%d) of type (OpenSSL key)
bool(true)
Testing openssl_csr_new with key generation
NULL
resource(%d) of type (OpenSSL key)
Testing openssl_csr_new with existing ecc key
resource(%d) of type (OpenSSL X.509 CSR)
bool(false)
array(1) {
  ["d"]=>
  string(%d) "%a"
}
resource(%d) of type (OpenSSL X.509)
Testing openssl_x509_check_private_key
bool(true)
bool(false)
Testing openssl_get_curve_names
bool(true)
Found secp384r1 in curve names
Adds initial support to generate and work with ECC public key pair New features: - openssl_get_curve_names => list ECC curve names - generate a ECC public key pair - generate an CSR with an ECC key - export x,y,d params of ECC public/private key Thanks to @bukka for the review and feedback 2016-06-15 20:31:42 +00:00			`--TEST--`
			`openssl_*() with OPENSSL_KEYTYPE_EC`
			`--SKIPIF--`
Revert "Skip new OpenSSL ECC tests on 32bit" This reverts commit 0a4f89bc292c3c82ff719cd79e66ef96c2079526. 2016-06-29 08:43:31 +00:00			`<?php if (!extension_loaded("openssl") && !defined("OPENSSL_KEYTYPE_EC")) print "skip"; ?>`
Adds initial support to generate and work with ECC public key pair New features: - openssl_get_curve_names => list ECC curve names - generate a ECC public key pair - generate an CSR with an ECC key - export x,y,d params of ECC public/private key Thanks to @bukka for the review and feedback 2016-06-15 20:31:42 +00:00			`--FILE--`
			`<?php`
			`$args = array(`
			`"curve_name" => "secp384r1",`
			`"private_key_type" => OPENSSL_KEYTYPE_EC,`
			`);`
			`echo "Testing openssl_pkey_new\n";`
			`$key1 = openssl_pkey_new($args);`
			`var_dump($key1);`

			`$argsFailed = array(`
			`"curve_name" => "invalid_cuve_name",`
			`"private_key_type" => OPENSSL_KEYTYPE_EC,`
			`);`

			`$keyFailed = openssl_pkey_new($argsFailed);`
			`var_dump($keyFailed);`

			`$d1 = openssl_pkey_get_details($key1);`
			`var_dump($d1["bits"]);`
			`var_dump(strlen($d1["key"]));`
			`var_dump($d1["ec"]["curve_name"]);`
			`var_dump($d1["type"] == OPENSSL_KEYTYPE_EC);`

			`$key2 = openssl_pkey_new($d1);`
			`var_dump($key2);`

			`$d2 = openssl_pkey_get_details($key2);`
			`// Compare array`
			`var_dump($d1 === $d2);`

			`$dn = array(`
			`"countryName" => "BR",`
			`"stateOrProvinceName" => "Rio Grande do Sul",`
			`"localityName" => "Porto Alegre",`
			`"commonName" => "Henrique do N. Angelo",`
			`"emailAddress" => "hnangelo@php.net"`
			`);`

			`// openssl_csr_new creates a new public key pair if the key argument is null`
			`echo "Testing openssl_csr_new with key generation\n";`
			`$keyGenerate = null;`
			`var_dump($keyGenerate);`
			`$csr = openssl_csr_new($dn, $keyGenerate, $args);`

			`var_dump($keyGenerate);`

			`$args["digest_alg"] = "sha1";`
			`echo "Testing openssl_csr_new with existing ecc key\n";`
			`$csr = openssl_csr_new($dn, $key1, $args);`
			`var_dump($csr);`

			`$pubkey1 = openssl_pkey_get_details(openssl_csr_get_public_key($csr));`
			`var_dump(isset($pubkey1["ec"]["priv_key"]));`
			`unset($d1["ec"]["priv_key"]);`
			`var_dump(array_diff($d1["ec"], $pubkey1["ec"]));`

			`$x509 = openssl_csr_sign($csr, null, $key1, 365, $args);`
			`var_dump($x509);`

			`echo "Testing openssl_x509_check_private_key\n";`
			`var_dump(openssl_x509_check_private_key($x509, $key1));`

			`$key3 = openssl_pkey_new($args);`
			`var_dump(openssl_x509_check_private_key($x509, $key3));`

			`echo "Testing openssl_get_curve_names\n";`
			`$curve_names = openssl_get_curve_names();`

			`var_dump(is_array($curve_names));`

			`foreach ($curve_names as $curve_name) {`
			`if ("secp384r1" === $curve_name) {`
			`echo "Found secp384r1 in curve names\n";`
			`}`
			`}`
			`?>`
			`--EXPECTF--`
			`Testing openssl_pkey_new`
			`resource(%d) of type (OpenSSL key)`

			`Warning: openssl_pkey_new(): Unknown elliptic curve (short) name invalid_cuve_name in %s on line %d`
			`bool(false)`
			`int(384)`
			`int(215)`
			`string(9) "secp384r1"`
			`bool(true)`
			`resource(%d) of type (OpenSSL key)`
			`bool(true)`
			`Testing openssl_csr_new with key generation`
			`NULL`
			`resource(%d) of type (OpenSSL key)`
			`Testing openssl_csr_new with existing ecc key`
			`resource(%d) of type (OpenSSL X.509 CSR)`
			`bool(false)`
			`array(1) {`
			`["d"]=>`
Don't check for precise length in ecc.phpt Again, this can be off by one. 2016-12-29 21:05:38 +00:00			`string(%d) "%a"`
Adds initial support to generate and work with ECC public key pair New features: - openssl_get_curve_names => list ECC curve names - generate a ECC public key pair - generate an CSR with an ECC key - export x,y,d params of ECC public/private key Thanks to @bukka for the review and feedback 2016-06-15 20:31:42 +00:00			`}`
			`resource(%d) of type (OpenSSL X.509)`
			`Testing openssl_x509_check_private_key`
			`bool(true)`
			`bool(false)`
			`Testing openssl_get_curve_names`
			`bool(true)`
			`Found secp384r1 in curve names`