Skip to content
Snippets Groups Projects
Commit 1e1360c1 authored by Peter Vypov's avatar Peter Vypov
Browse files

Add missing utilities check; solve for OpenSSL inconsistencies; 'burrow keys' kill on all cases 


Signed-off-by: default avatarPeter Vypov <peter.vypov@gmail.com>
parent f11bca89
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 36 additions and 14 deletions
keys/test.sh
+ 36
14
View file @ 1e1360c1
...@@ -12,9 +12,26 @@ burrow_bin=${burrow_bin:-burrow} ...@@ -12,9 +12,26 @@ burrow_bin=${burrow_bin:-burrow}
keys_dir=./keys/test_scratch/.keys keys_dir=./keys/test_scratch/.keys
echo "-----------------------------" echo "-----------------------------"
echo "checking for dependent utilities"
for UTILITY in jq xxd openssl; do
echo -n "... "
if ! command -v $UTILITY; then
echo "$UTILITY (missing)"
missing_utility=$UTILITY
fi
done
if [ ! -z $missing_utility ]; then
echo "FAILED dependency check: the '$missing_utility' utility is missing"
exit 1
fi
echo "starting the server" echo "starting the server"
$burrow_bin keys server --dir $keys_dir & $burrow_bin keys server --dir $keys_dir &
keys_pid=$! keys_pid=$!
function kill_burrow_keys {
kill -TERM $keys_pid
}
trap kill_burrow_keys EXIT
sleep 1 sleep 1
echo "-----------------------------" echo "-----------------------------"
echo "testing the cli" echo "testing the cli"
...@@ -40,7 +57,6 @@ do ...@@ -40,7 +57,6 @@ do
PUB2=`$burrow_bin keys pub --addr $ADDR` PUB2=`$burrow_bin keys pub --addr $ADDR`
if [ "$PUB1" != "$PUB2" ]; then if [ "$PUB1" != "$PUB2" ]; then
echo "FAILED pub: got $PUB2, expected $PUB1" echo "FAILED pub: got $PUB2, expected $PUB1"
kill $keys_pid
exit 1 exit 1
fi fi
echo "...... passed pub" echo "...... passed pub"
...@@ -49,7 +65,6 @@ do ...@@ -49,7 +65,6 @@ do
VERIFY1=`$burrow_bin keys verify --curvetype $CURVETYPE $HASH $SIG1 $PUB1` VERIFY1=`$burrow_bin keys verify --curvetype $CURVETYPE $HASH $SIG1 $PUB1`
if [ $VERIFY1 != "true" ]; then if [ $VERIFY1 != "true" ]; then
echo "FAILED verify: got $VERIFY1 expected true" echo "FAILED verify: got $VERIFY1 expected true"
kill $keys_pid
exit 1 exit 1
fi fi
...@@ -57,7 +72,6 @@ do ...@@ -57,7 +72,6 @@ do
VERIFY1=`$burrow_bin keys verify --curvetype $CURVETYPE $HASH $SIG2 $PUB1` VERIFY1=`$burrow_bin keys verify --curvetype $CURVETYPE $HASH $SIG2 $PUB1`
if [ $VERIFY1 != "true" ]; then if [ $VERIFY1 != "true" ]; then
echo "FAILED verify: got $VERIFY1 expected true" echo "FAILED verify: got $VERIFY1 expected true"
kill $keys_pid
exit 1 exit 1
fi fi
...@@ -72,7 +86,19 @@ HASHTYPES=(sha256 ripemd160) ...@@ -72,7 +86,19 @@ HASHTYPES=(sha256 ripemd160)
for HASHTYPE in ${HASHTYPES[*]} for HASHTYPE in ${HASHTYPES[*]}
do do
echo "... $HASHTYPE" echo "... $HASHTYPE"
HASH0=`echo -n $TOHASH | openssl dgst -$HASHTYPE | awk '{print toupper($2)}'` # XXX: OpenSSL's `openssl dgst -<hash>` command might produce both
# a one-field (LibreSSL 2.2.7)
#
# $ echo -n okeydokey |openssl dgst -sha256
# 0fd2479fa22057f562698c4e6bb5b6c7430a10ba0fe6cd41fa9908e2c0a684a4
#
# and a two-field result (OpenSSL 1.1.0f):
#
# $ echo -n okeydokey |openssl dgst -sha256
# (stdin)= 0fd2479fa22057f562698c4e6bb5b6c7430a10ba0fe6cd41fa9908e2c0a684a4
#
# Generalize to adjust for the inconsistency:
HASH0=`echo -n $TOHASH | openssl dgst -$HASHTYPE | sed 's/^.* //' | tr '[:lower:]' '[:upper:]'`
HASH1=`$burrow_bin keys hash --type $HASHTYPE $TOHASH` HASH1=`$burrow_bin keys hash --type $HASHTYPE $TOHASH`
if [ "$HASH0" != "$HASH1" ]; then if [ "$HASH0" != "$HASH1" ]; then
echo "FAILED hash $HASHTYPE: got $HASH1 expected $HASH0" echo "FAILED hash $HASHTYPE: got $HASH1 expected $HASH0"
...@@ -94,15 +120,17 @@ do ...@@ -94,15 +120,17 @@ do
DIR=$keys_dir/data DIR=$keys_dir/data
FILE=$DIR/$ADDR.json FILE=$DIR/$ADDR.json
PRIV=`cat $FILE | jq -r .PrivateKey.Plain` PRIV=`cat $FILE | jq -r .PrivateKey.Plain`
HEXPRIV=`echo -n "$PRIV" | base64 -d | xxd -p -c 256 | tr '[:lower:]' '[:upper:]'` # XXX: Without the `-A` flag, `openssl base64 -d` command produces
cp $FILE ~/$ADDR # an empty string with the OpenSSL (LibreSSL 2.2.7).
HEXPRIV=`echo -n "$PRIV" | openssl base64 -d -A | xxd -p -c 256 | tr '[:lower:]' '[:upper:]'`
cp $FILE ~/$ADDR
rm -rf $DIR rm -rf $DIR
# import the key via priv # import the key via priv
ADDR2=`$burrow_bin keys import --no-password --curvetype $CURVETYPE $HEXPRIV` ADDR2=`$burrow_bin keys import --no-password --curvetype $CURVETYPE $HEXPRIV`
if [ "$ADDR" != "$ADDR2" ]; then if [ "$ADDR" != "$ADDR2" ]; then
echo "FAILED import $CURVETYPE: got $ADDR2 expected $ADDR" echo "FAILED import $CURVETYPE: got $ADDR2 expected $ADDR"
kill $keys_pid
exit exit
fi fi
rm -rf $DIR rm -rf $DIR
...@@ -112,7 +140,6 @@ do ...@@ -112,7 +140,6 @@ do
ADDR2=`$burrow_bin keys import --no-password --curvetype $CURVETYPE $JSON` ADDR2=`$burrow_bin keys import --no-password --curvetype $CURVETYPE $JSON`
if [ "$ADDR" != "$ADDR2" ]; then if [ "$ADDR" != "$ADDR2" ]; then
echo "FAILED import (json) $CURVETYPE: got $ADDR2 expected $ADDR" echo "FAILED import (json) $CURVETYPE: got $ADDR2 expected $ADDR"
kill $keys_pid
exit exit
fi fi
rm -rf $DIR rm -rf $DIR
...@@ -121,7 +148,6 @@ do ...@@ -121,7 +148,6 @@ do
ADDR2=`$burrow_bin keys import --no-password --curvetype $CURVETYPE ~/$ADDR` ADDR2=`$burrow_bin keys import --no-password --curvetype $CURVETYPE ~/$ADDR`
if [ "$ADDR" != "$ADDR2" ]; then if [ "$ADDR" != "$ADDR2" ]; then
echo "FAILED import $CURVETYPE: got $ADDR2 expected $ADDR" echo "FAILED import $CURVETYPE: got $ADDR2 expected $ADDR"
kill $keys_pid
exit exit
fi fi
rm -rf $DIR rm -rf $DIR
...@@ -137,7 +163,6 @@ ADDR=`$burrow_bin keys gen --name $NAME --no-password` ...@@ -137,7 +163,6 @@ ADDR=`$burrow_bin keys gen --name $NAME --no-password`
ADDR2=`$burrow_bin keys list --name $NAME` ADDR2=`$burrow_bin keys list --name $NAME`
if [ "$ADDR" != "$ADDR2" ]; then if [ "$ADDR" != "$ADDR2" ]; then
echo "FAILED name: got $ADDR2 expected $ADDR" echo "FAILED name: got $ADDR2 expected $ADDR"
kill $keys_pid
exit exit
fi fi
...@@ -146,13 +171,10 @@ $burrow_bin keys name $NAME2 $ADDR ...@@ -146,13 +171,10 @@ $burrow_bin keys name $NAME2 $ADDR
ADDR2=`$burrow_bin keys list --name $NAME2` ADDR2=`$burrow_bin keys list --name $NAME2`
if [ "$ADDR" != "$ADDR2" ]; then if [ "$ADDR" != "$ADDR2" ]; then
echo "FAILED rename: got $ADDR2 expected $ADDR" echo "FAILED rename: got $ADDR2 expected $ADDR"
kill $keys_pid
exit exit
fi fi
echo "... passed" echo "... passed"
kill $keys_pid
# TODO a little more on names... # TODO a little more on names...
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment