mirror of
https://github.com/Telecominfraproject/OpenCellular.git
synced 2026-01-08 00:21:46 +00:00
8bf29d8ea1
The current stable version of OpenSSL(0.9.8d) does not support RSA signature with SHA-256 and SHA-512 message digests. This utility outputs the hash of file data in a format suitable for use with the "openssl" command-line tool fir generating RSA signatures. Also modified the tests to use this to generate RSA signature rather than "openssl pkeyutl" which is not supported on current stable version of OpenSSL. Review URL: http://codereview.chromium.org/552227
84 lines
2.2 KiB
Bash
Executable File
84 lines
2.2 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
# Copyright (c) 2010 The Chromium OS Authors. All rights reserved.
|
|
# Use of this source code is governed by a BSD-style license that can be
|
|
# found in the LICENSE file.
|
|
|
|
# Run tests for cryptographic routine implementations - Message digests
|
|
# and RSA Signature verification.
|
|
|
|
hash_algos=( sha1 sha256 sha512 )
|
|
key_lengths=( 1024 2048 4096 8192 )
|
|
TEST_FILE=test_file
|
|
TEST_FILE_SIZE=1000000
|
|
UTILDIR=../utils/
|
|
|
|
# Generate RSA test keys of various lengths.
|
|
function generate_keys {
|
|
for i in ${key_lengths[@]}
|
|
do
|
|
openssl genrsa -F4 -out key_rsa$i.pem $i
|
|
# Generate self-signed certificate from key.
|
|
openssl req -batch -new -x509 -key key_rsa$i.pem -out key_rsa$i.crt
|
|
# Generate pre-processed key for use by RSA signature verification code.
|
|
${UTILDIR}/dumpRSAPublicKey key_rsa$i.crt > key_rsa$i.keyb
|
|
done
|
|
}
|
|
|
|
# Generate public key signatures on an input file for various combinations
|
|
# of message digest algorithms and RSA key sizes.
|
|
function generate_signatures {
|
|
algorithmcounter=0
|
|
for keylen in ${key_lengths[@]}
|
|
do
|
|
for hashalgo in ${hash_algos[@]}
|
|
do
|
|
./signature_digest $algorithmcounter $1 | openssl rsautl -sign -pkcs \
|
|
-inkey key_rsa${keylen}.pem > $1.rsa${keylen}\_${hashalgo}.sig
|
|
let algorithmcounter=algorithmcounter+1
|
|
done
|
|
done
|
|
}
|
|
|
|
function test_signatures {
|
|
algorithmcounter=0
|
|
for keylen in ${key_lengths[@]}
|
|
do
|
|
for hashalgo in ${hash_algos[@]}
|
|
do
|
|
echo "For RSA-$keylen and $hashalgo:"
|
|
./verify_data $algorithmcounter key_rsa${keylen}.keyb \
|
|
${TEST_FILE}.rsa${keylen}\_${hashalgo}.sig ${TEST_FILE}
|
|
let algorithmcounter=algorithmcounter+1
|
|
done
|
|
done
|
|
}
|
|
|
|
function pre_work {
|
|
# Generate a file with random bytes for signature tests.
|
|
echo "Generating test file..."
|
|
dd if=/dev/urandom of=${TEST_FILE} bs=${TEST_FILE_SIZE} count=1
|
|
echo "Generating test keys..."
|
|
generate_keys
|
|
echo "Generating signatures..."
|
|
generate_signatures $TEST_FILE
|
|
}
|
|
|
|
function cleanup {
|
|
rm ${TEST_FILE} ${TEST_FILE}.*.sig key_rsa*.*
|
|
}
|
|
|
|
echo "Testing message digests..."
|
|
./sha_tests
|
|
|
|
echo
|
|
echo "Testing signature verification..."
|
|
pre_work
|
|
test_signatures
|
|
|
|
echo
|
|
echo "Cleaning up..."
|
|
cleanup
|
|
|
|
|