mirror of
https://github.com/php/php-src.git
synced 2024-09-22 10:27:25 +00:00
ec4d926a80
Same as with pkcs7, switch these tests to use an algorithm that OpenSSL 3 supports out of the box. Once again, we should consider changing the default or making it required.
50 lines
1.3 KiB
PHP
50 lines
1.3 KiB
PHP
--TEST--
|
|
openssl_cms_encrypt() der test
|
|
--EXTENSIONS--
|
|
openssl
|
|
--FILE--
|
|
<?php
|
|
$infile = __DIR__ . "/plain.txt";
|
|
$tname = tempnam(sys_get_temp_dir(), "ssl");
|
|
if ($tname === false)
|
|
die("failed to get a temporary filename!");
|
|
$cryptfile= $tname . ".der";
|
|
$decryptfile = $tname . ".out";
|
|
$single_cert = "file://" . __DIR__ . "/cert.crt";
|
|
$privkey = "file://" . __DIR__ . "/private_rsa_1024.key";
|
|
$headers = array("test@test", "testing openssl_cms_encrypt()");
|
|
$cipher = OPENSSL_CIPHER_AES_128_CBC;
|
|
|
|
var_dump(openssl_cms_encrypt($infile, $cryptfile, $single_cert, $headers, OPENSSL_CMS_BINARY, OPENSSL_ENCODING_DER, $cipher));
|
|
if (openssl_cms_decrypt($cryptfile, $decryptfile, $single_cert, $privkey, OPENSSL_ENCODING_DER) == false) {
|
|
print "DER decrypt error\n";
|
|
print "recipient:\n";
|
|
readfile($single_cert);
|
|
print "input:\n";
|
|
readfile($infile);
|
|
$der=file_get_contents($cryptfile);
|
|
print "outfile base64:\n" . base64_encode($der) . "\n--------\n";
|
|
while (( $errstr=openssl_error_string()) != false) {
|
|
print $errstr . "\n";
|
|
}
|
|
} else {
|
|
readfile($decryptfile);
|
|
}
|
|
|
|
if (file_exists($cryptfile)) {
|
|
echo "true\n";
|
|
unlink($cryptfile);
|
|
}
|
|
if (file_exists($decryptfile)) {
|
|
echo "true\n";
|
|
unlink($decryptfile);
|
|
}
|
|
unlink($tname);
|
|
?>
|
|
--EXPECT--
|
|
bool(true)
|
|
Now is the winter of our discontent.
|
|
true
|
|
true
|
|
|