jruby-openssl-maven 0.7.4.1

data/test/test_cipher.rb

@@ -0,0 +1,197 @@
+begin
+  require "openssl"
+rescue LoadError
+end
+
+require "test/unit"
+
+class TestCipher < Test::Unit::TestCase
+  def test_keylen
+    cipher = OpenSSL::Cipher::Cipher.new('DES-EDE3-CBC')
+    # must be 24 but it returns 16 on JRE6 without unlimited jurisdiction
+    # policy. it returns 24 on JRE6 with the unlimited policy.
+    assert_equal(24, cipher.key_len)
+  end
+
+  def test_encrypt_takes_parameter
+    enc = OpenSSL::Cipher::Cipher.new('DES-EDE3-CBC')
+    enc.encrypt("123")
+    data = enc.update("password")
+    data << enc.final
+  end
+
+  IV_TEMPLATE  = "aaaabbbbccccddddeeeeffffgggghhhhiiiijjjjj"
+  KEY_TEMPLATE = "aaaabbbbccccddddeeeeffffgggghhhhiiiijjjjj"
+
+  # JRUBY-1692
+  def test_repeated_des
+    do_repeated_test(
+                     "des-ede3-cbc",
+                     "foobarbazboofarf",
+                     ":\022Q\211ex\370\332\374\274\214\356\301\260V\025",
+                     "B\242\3531\003\362\3759\363s\203\374\240\030|\230"
+                     )
+  end
+
+  # JRUBY-1692
+  def test_repeated_aes
+    do_repeated_test(
+                     "aes-128-cbc",
+                     "foobarbazboofarf",
+                     "\342\260Y\344\306\227\004^\272|/\323<\016,\226",
+                     "jqO\305/\211\216\b\373\300\274\bw\213]\310"
+                     )
+  end
+
+  def test_rc2
+    do_repeated_test(
+                     "RC2",
+                     "foobarbazboofarf",
+                     "\x18imZ\x9Ed\x15\xF3\xD6\xE6M\xCDf\xAA\xD3\xFE",
+		     "\xEF\xF7\x16\x06\x93)-##\xB2~\xAD,\xAD\x82\xF5"
+		    )
+  end
+
+  def test_rc4
+    do_repeated_test(
+                     "RC4",
+                     "foobarbazboofarf",
+                     "/i|\257\336U\354\331\212\304E\021\246\351\235\303",
+                     "\020\367\370\316\212\262\266e\242\333\263\305z\340\204\200"
+		    )
+  end
+
+  def test_cast
+    do_repeated_test(
+                     "cast-cbc",
+                     "foobarbazboofarf",
+                     "`m^\225\277\307\247m`{\f\020fl\ry",
+                     "(\354\265\251,D\016\037\251\250V\207\367\214\276B"
+		    )
+  end
+
+  # JRUBY-4326 (1)
+  def test_cipher_unsupported_algorithm
+    assert_raise(OpenSSL::Cipher::CipherError) do
+      cipher = OpenSSL::Cipher::Cipher.new('aes-xxxxxxx')
+    end
+  end
+
+  # JRUBY-4326 (2)
+  def test_cipher_unsupported_keylen
+    bits_128 = java.lang.String.new("0123456789ABCDEF").getBytes()
+    bits_256 = java.lang.String.new("0123456789ABCDEF0123456789ABCDEF").getBytes()
+
+    # AES128 is allowed
+    cipher = OpenSSL::Cipher::Cipher.new('aes-128-cbc')
+    cipher = OpenSSL::Cipher::Cipher.new('AES-128-CBC')
+    cipher = javax.crypto.Cipher.getInstance("AES/CBC/PKCS5Padding")
+    key_spec = javax.crypto.spec.SecretKeySpec.new(bits_128, "AES")
+    iv_spec = javax.crypto.spec.IvParameterSpec.new(bits_128)
+    assert_nothing_raised do
+      cipher.init(javax.crypto.Cipher::ENCRYPT_MODE, key_spec, iv_spec)
+    end
+
+    # check if AES256 is allowed or not in env policy
+    cipher = javax.crypto.Cipher.getInstance("AES/CBC/PKCS5Padding")
+    key_spec = javax.crypto.spec.SecretKeySpec.new(bits_256, "AES")
+    allowed = false
+    begin
+      cipher.init(javax.crypto.Cipher::ENCRYPT_MODE, key_spec, iv_spec)
+      allowed = true
+    rescue
+    end
+
+    # jruby-openssl should raise as well?
+    # CRuby's openssl raises exception at initialization time.
+    # At this time, jruby-openssl raises later. TODO
+    cipher = OpenSSL::Cipher::Cipher.new('aes-256-cbc')
+    cipher.encrypt
+    cipher.padding = 0
+    if allowed
+      assert_nothing_raised(OpenSSL::Cipher::CipherError) do
+        cipher.pkcs5_keyivgen("password")
+      end
+    else
+      assert_raise(OpenSSL::Cipher::CipherError) do
+        cipher.pkcs5_keyivgen("password")
+      end
+    end
+  end
+
+  def test_iv_length_auto_trim_JRUBY_4012
+    e1 = e2 = nil
+    plain = 'data'
+    des = OpenSSL::Cipher::Cipher.new("des-ede3-cbc")
+    des.encrypt
+    des.key = '0123456789abcdef01234567890'
+    des.iv = "0" * (128/8) # too long for DES which is a 64 bit block
+    assert_nothing_raised do
+      e1 = des.update(plain) + des.final  
+    end
+    des = OpenSSL::Cipher::Cipher.new("des-ede3-cbc")
+    des.encrypt
+    des.key = '0123456789abcdef01234567890'
+    des.iv = "0" * (64/8) # DES is a 64 bit block
+    e2 = des.update(plain) + des.final  
+    assert_equal(e2, e1, "JRUBY-4012")
+  end
+
+  # JRUBY-5125
+  def test_rc4_cipher_name
+    assert_equal("RC4", OpenSSL::Cipher::Cipher.new("rc4").name)
+  end
+
+  # JRUBY-5126
+  def test_stream_cipher_reset_should_be_ignored
+    c1 = "%E\x96\xDAZ\xEF\xB2$/\x9F\x02"
+    c2 = ">aV\xB0\xE1l\xF3oyL\x9B"
+    #
+    cipher = OpenSSL::Cipher::Cipher.new("RC4")
+    cipher.encrypt
+    cipher.key = "\0\1\2\3" * (128/8/4)
+    str = cipher.update('hello,world')
+    str += cipher.final
+    assert_equal(c1, str)
+    #
+    cipher.reset
+    cipher.iv = "\0" * 16
+    str = cipher.update('hello,world')
+    str += cipher.final
+    assert_equal(c2, str) # was equal to c1 before the fix
+  end
+
+  private
+  def do_repeated_test(algo, string, enc1, enc2)
+    do_repeated_encrypt_test(algo, string, enc1, enc2)
+    do_repeated_decrypt_test(algo, string, enc1, enc2)
+  end
+  
+  def do_repeated_encrypt_test(algo, string, result1, result2)
+    cipher = OpenSSL::Cipher::Cipher.new(algo)
+    cipher.encrypt
+
+    cipher.padding = 0
+    cipher.iv      = IV_TEMPLATE[0, cipher.iv_len]
+    cipher.key     = KEY_TEMPLATE[0, cipher.key_len]
+
+    assert_equal result1, cipher.update(string)
+    assert_equal "", cipher.final
+
+    assert_equal result2, cipher.update(string) + cipher.final
+  end
+
+  def do_repeated_decrypt_test(algo, result, string1, string2)
+    cipher = OpenSSL::Cipher::Cipher.new(algo)
+    cipher.decrypt
+
+    cipher.padding = 0
+    cipher.iv      = IV_TEMPLATE[0, cipher.iv_len]
+    cipher.key     = KEY_TEMPLATE[0, cipher.key_len]
+
+    assert_equal result, cipher.update(string1)
+    assert_equal "", cipher.final
+
+    assert_equal result, cipher.update(string2) + cipher.final
+  end
+end

data/test/test_imaps.rb

@@ -0,0 +1,107 @@
+require "net/imap"
+require "test/unit"
+
+# This testcase is made for 1.8 based on test_imap.rb in CRuby 1.9
+class IMAPTest < Test::Unit::TestCase
+  CA_FILE = File.expand_path("fixture/imaps/cacert.pem", File.dirname(__FILE__))
+  SERVER_KEY = File.expand_path("fixture/imaps/server.key", File.dirname(__FILE__))
+  SERVER_CERT = File.expand_path("fixture/imaps/server.crt", File.dirname(__FILE__))
+
+  SERVER_ADDR = "127.0.0.1"
+
+  def setup
+    @do_not_reverse_lookup = Socket.do_not_reverse_lookup
+    Socket.do_not_reverse_lookup = true
+  end
+
+  def teardown
+    Socket.do_not_reverse_lookup = @do_not_reverse_lookup
+  end
+
+  def test_imaps_unknown_ca
+    assert_raise(OpenSSL::SSL::SSLError) do
+      imaps_test do |port|
+        Net::IMAP.new("localhost", port, true, nil, true)
+      end
+    end
+  end
+
+  def test_imaps_with_ca_file
+    assert_nothing_raised do
+      imaps_test do |port|
+        Net::IMAP.new("localhost", port, true, CA_FILE, true)
+      end
+    end
+  end
+
+  def test_imaps_login
+    assert_raises(Net::IMAP::ByeResponseError) do
+      imaps_test do |port|
+        imaps = Net::IMAP.new("localhost", port, true, CA_FILE, true)
+        imaps.login('foo@bar.com', 'wrong password')
+        imaps
+      end
+    end
+  end
+
+  def test_imaps_verify_none
+    assert_nothing_raised do
+      imaps_test do |port|
+        Net::IMAP.new(SERVER_ADDR, port, true, nil, false)
+      end
+    end
+  end
+
+  def test_imaps_post_connection_check
+    assert_raise(OpenSSL::SSL::SSLError) do
+      imaps_test do |port|
+        # SERVER_ADDR is different from the hostname in the certificate,
+        # so the following code should raise a SSLError.
+        Net::IMAP.new(SERVER_ADDR, port, true, CA_FILE, true)
+      end
+    end
+  end
+
+private
+
+  def imaps_test
+    server = create_tcp_server
+    port = server.addr[1]
+    ctx = OpenSSL::SSL::SSLContext.new
+    ctx.ca_file = CA_FILE
+    ctx.key = OpenSSL::PKey::RSA.new(File.read(SERVER_KEY))
+    ctx.cert = OpenSSL::X509::Certificate.new(File.read(SERVER_CERT))
+    ssl_server = OpenSSL::SSL::SSLServer.new(server, ctx)
+    Thread.start do
+      begin
+        sock = ssl_server.accept
+        begin
+          sock.print("* OK test server\r\n")
+          sock.read(10) # emulates half-read for JRUBY-5200
+          sock.print("* BYE terminating connection\r\n")
+          sock.print("RUBY0001 OK LOGOUT completed\r\n")
+          sock.gets
+        ensure
+          sock.close
+        end
+      rescue
+      end
+    end
+    begin
+      begin
+        imap = yield(port)
+        imap.logout if !imap.disconnected?
+      ensure
+        imap.disconnect if imap && !imap.disconnected?
+      end
+    rescue IOError
+      # ignore
+    ensure
+      ssl_server.close
+    end
+  end
+
+  def create_tcp_server
+    return TCPServer.new(SERVER_ADDR, 0)
+  end
+end

data/test/test_integration.rb

@@ -0,0 +1,144 @@
+begin
+  require "openssl"
+rescue LoadError
+end
+require "test/unit"
+require 'net/https'
+
+class TestIntegration < Test::Unit::TestCase
+  def path(file)
+    File.expand_path(file, File.dirname(__FILE__))
+  end
+
+  # JRUBY-2471
+  def _test_drb
+    config = {
+      :SSLVerifyMode => OpenSSL::SSL::VERIFY_PEER,
+      :SSLCACertificateFile => File.join(File.dirname(__FILE__), "fixture", "cacert.pem"),
+      :SSLPrivateKey => OpenSSL::PKey::RSA.new(File.read(File.join(File.dirname(__FILE__), "fixture", "localhost_keypair.pem"))),
+      :SSLCertificate => OpenSSL::X509::Certificate.new(File.read(File.join(File.dirname(__FILE__), "fixture", "cert_localhost.pem"))),
+    }
+    p config
+    DRb.start_service(nil, nil, config)
+  end
+
+  # JRUBY-2913
+  # Warning - this test actually uses the internet connection.
+  # If there is no connection, it will fail.
+  def test_ca_path_name
+    uri = URI.parse('https://www.amazon.com')
+    http = Net::HTTP.new(uri.host, uri.port)
+    http.verify_mode = OpenSSL::SSL::VERIFY_PEER
+    http.ca_path = path("fixture/ca_path/")
+    http.use_ssl = true
+    response = http.start do |s|
+      assert s.get(uri.request_uri).length > 0
+    end
+  end
+
+  # Warning - this test actually uses the internet connection.
+  # If there is no connection, it will fail.
+  def test_ssl_verify
+    uri = URI.parse('https://www.amazon.com/')
+    http = Net::HTTP.new(uri.host, uri.port)
+    http.use_ssl = true
+    http.verify_mode = OpenSSL::SSL::VERIFY_PEER
+    # right trust anchor for www.amazon.com
+    http.ca_file = path('fixture/verisign.pem')
+    response = http.start do |s|
+      assert s.get(uri.request_uri).length > 0
+    end
+    # wrong trust anchor for www.amazon.com
+    http = Net::HTTP.new(uri.host, uri.port)
+    http.use_ssl = true
+    http.verify_mode = OpenSSL::SSL::VERIFY_PEER
+    http.ca_file = path('fixture/verisign_c3.pem')
+    assert_raise(OpenSSL::SSL::SSLError) do
+      # it must cause SSLError for verification failure.
+      response = http.start do |s|
+        s.get(uri.request_uri)
+      end
+    end
+    # round trip
+    http = Net::HTTP.new(uri.host, uri.port)
+    http.use_ssl = true
+    http.verify_mode = OpenSSL::SSL::VERIFY_PEER
+    http.ca_file = path('fixture/verisign.pem')
+    response = http.start do |s|
+      assert s.get(uri.request_uri).length > 0
+    end
+  end
+
+  # Warning - this test actually uses the internet connection.
+  # If there is no connection, it will fail.
+  def test_pathlen_does_not_appear
+    uri = URI.parse('https://www.paypal.com/')
+    http = Net::HTTP.new(uri.host, uri.port)
+    http.use_ssl = true
+    http.verify_mode = OpenSSL::SSL::VERIFY_PEER
+    # right trust anchor for www.amazon.com
+    http.ca_file = path('fixture/verisign_c3.pem')
+    response = http.start do |s|
+      assert s.get(uri.request_uri).length > 0
+    end
+  end
+
+  # JRUBY-2178 and JRUBY-1307
+  # Warning - this test actually uses the internet connection.
+  # If there is no connection, it will fail.
+  # This test generally throws an exception
+  # about illegal_parameter when
+  # it can't use the cipher string correctly
+  def test_cipher_strings
+    socket = TCPSocket.new('rubyforge.org', 443)
+    ctx = OpenSSL::SSL::SSLContext.new
+    ctx.cert_store = OpenSSL::X509::Store.new
+    ctx.verify_mode = 0
+    ctx.cert = nil
+    ctx.key = nil
+    ctx.client_ca = nil
+    ctx.ciphers = "ALL:!ADH:!LOW:!EXP:!MD5:@STRENGTH"
+
+    ssl_socket = OpenSSL::SSL::SSLSocket.new(socket, ctx)
+    ssl_socket.connect
+    ssl_socket.close
+  end
+
+  # JRUBY-1194
+  def test_des_encryption
+    iv  = "IVIVIVIV"
+    key = "KEYKEYKE"
+    alg = "des"
+    str = "string abc foo bar baxz"
+        
+    cipher = OpenSSL::Cipher::Cipher.new(alg)
+    cipher.encrypt
+    cipher.key = key
+    cipher.iv = iv
+    cipher.padding = 32
+    cipher.key = key
+    cipher.iv = iv
+    
+    encrypted = cipher.update(str)
+    encrypted << cipher.final
+ 
+    assert_equal "\253\305\306\372;\374\235\302\357/\006\360\355XO\232\312S\356* #\227\217", encrypted
+  end
+  
+  def _test_perf_of_nil
+# require 'net/https'
+# require 'benchmark'
+
+# def request(data)
+#   connection = Net::HTTP.new("www.google.com", 443)
+#   connection.use_ssl = true
+#   connection.verify_mode = OpenSSL::SSL::VERIFY_NONE
+#   connection.start do |connection|
+#     connection.request_post("/tbproxy/spell?lang=en", data, { 'User-Agent' => "Test", 'Accept' => 'text/xml' })
+#   end
+# end
+
+# puts "is not: #{Benchmark.measure { request("") }.to_s.chomp}"
+# puts "is nil: #{Benchmark.measure { request(nil) }.to_s.chomp}"
+  end
+end

data/test/test_java.rb

@@ -0,0 +1,98 @@
+$:.unshift File.join(File.dirname(__FILE__), '..', 'build_lib', 'mocha', 'lib')
+
+require "test/unit"
+require 'mocha'
+
+if defined?(JRUBY_VERSION)
+  require "java"
+  $CLASSPATH << 'pkg/classes'
+  $CLASSPATH << 'build_lib/bcprov-jdk15-144.jar'
+  
+  module PKCS7Test
+    module ASN1
+      OctetString = org.bouncycastle.asn1.DEROctetString
+    end
+    
+    PKCS7 = org.jruby.ext.openssl.impl.PKCS7 unless defined?(PKCS7)
+    Attribute = org.jruby.ext.openssl.impl.Attribute unless defined?(Attribute)
+    CipherSpec = org.jruby.ext.openssl.impl.CipherSpec unless defined?(CipherSpec)
+    Digest = org.jruby.ext.openssl.impl.Digest unless defined?(Digest)
+    EncContent = org.jruby.ext.openssl.impl.EncContent unless defined?(EncContent)
+    Encrypt = org.jruby.ext.openssl.impl.Encrypt unless defined?(Encrypt)
+    Envelope = org.jruby.ext.openssl.impl.Envelope unless defined?(Envelope)
+    IssuerAndSerial = org.jruby.ext.openssl.impl.IssuerAndSerial unless defined?(IssuerAndSerial)
+    RecipInfo = org.jruby.ext.openssl.impl.RecipInfo unless defined?(RecipInfo)
+    SignEnvelope = org.jruby.ext.openssl.impl.SignEnvelope unless defined?(SignEnvelope)
+    Signed = org.jruby.ext.openssl.impl.Signed unless defined?(Signed)
+    SMIME = org.jruby.ext.openssl.impl.SMIME unless defined?(SMIME)
+    Mime = org.jruby.ext.openssl.impl.Mime unless defined?(Mime)
+    MimeHeader = org.jruby.ext.openssl.impl.MimeHeader unless defined?(MimeHeader)
+    MimeParam = org.jruby.ext.openssl.impl.MimeParam unless defined?(MimeParam)
+    BIO = org.jruby.ext.openssl.impl.BIO unless defined?(BIO)
+    PKCS7Exception = org.jruby.ext.openssl.impl.PKCS7Exception unless defined?(PKCS7Exception)
+    ASN1Registry = org.jruby.ext.openssl.impl.ASN1Registry unless defined?(ASN1Registry)
+    AlgorithmIdentifier = org.bouncycastle.asn1.x509.AlgorithmIdentifier unless defined?(AlgorithmIdentifier)
+    SignerInfoWithPkey = org.jruby.ext.openssl.impl.SignerInfoWithPkey unless defined?(SignerInfoWithPkey)
+    IssuerAndSerialNumber = org.bouncycastle.asn1.pkcs.IssuerAndSerialNumber unless defined?(IssuerAndSerialNumber)
+    ASN1InputStream = org.bouncycastle.asn1.ASN1InputStream unless defined?(ASN1InputStream)
+    X509AuxCertificate = org.jruby.ext.openssl.x509store.X509AuxCertificate unless defined?(X509AuxCertificate)
+    
+    ArrayList = java.util.ArrayList unless defined?(ArrayList)
+    CertificateFactory = java.security.cert.CertificateFactory unless defined?(CertificateFactory)
+    BCP = org.bouncycastle.jce.provider.BouncyCastleProvider unless defined?(BCP)
+    ByteArrayInputStream = java.io.ByteArrayInputStream unless defined?(ByteArrayInputStream)
+    BigInteger = java.math.BigInteger unless defined?(BigInteger)
+    Cipher = javax.crypto.Cipher unless defined?(Cipher)
+
+    DERInteger = org.bouncycastle.asn1.DERInteger
+    DERSet = org.bouncycastle.asn1.DERSet
+    DEROctetString = org.bouncycastle.asn1.DEROctetString 
+    X509Name = org.bouncycastle.asn1.x509.X509Name
+    
+    
+    MimeEnvelopedString = File::read(File.join(File.dirname(__FILE__), 'java', 'pkcs7_mime_enveloped.message'))
+    MimeSignedString = File::read(File.join(File.dirname(__FILE__), 'java', 'pkcs7_mime_signed.message'))
+    MultipartSignedString = File::read(File.join(File.dirname(__FILE__), 'java', 'pkcs7_multipart_signed.message'))
+
+    X509CertString = <<CERT
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+CERT
+
+    X509CRLString = <<CRL
+----BEGIN X509 CRL-----
+MIIBlTB/AgEBMA0GCSqGSIb3DQEBBQUAMD0xEzARBgoJkiaJk/IsZAEZFgNvcmcx
+GTAXBgoJkiaJk/IsZAEZFglydWJ5LWxhbmcxCzAJBgNVBAMMAkNBFw0wODA3MTgx
+NzQxMjhaFw0wODA3MTgxODA4MDhaoA4wDDAKBgNVHRQEAwIBATANBgkqhkiG9w0B
+AQUFAAOCAQEASJaj1keN+tMmsF3QmjH2RhbW/9rZAl4gjv+uQQqrcS2ByfkXLU1d
+l/8rCHeT/XMoeU6xhQNHPP3uZBwfuuETcp65BMBcZFOUhUR0U5AaGhvSDS/+6EsP
+zFdQgAagmThFdN5ei9guTLqWwN0ZyqiaHyevFJuk+L9qbKavaSeKqfJbU7Sj/Z3J
+WLKoixvyj3N6W7evygH80lTvjZugmxJ1/AjICVSYr1hpHHd6EWq0b0YFrGFmg27R
+WmsAXd0QV5UChfAJ2+Cz5U1bPszvIJGrzfAIoLxHv5rI5rseQzqZdPaFSe4Oehln
+9qEYmsK3PS6bYoQol0cgj97Ep4olS8CulA==
+-----END X509 CRL-----
+CRL
+    
+    X509Cert = X509AuxCertificate.new(CertificateFactory.getInstance("X.509",BCP.new).generateCertificate(ByteArrayInputStream.new(X509CertString.to_java_bytes)))
+    X509CRL = CertificateFactory.getInstance("X.509",BCP.new).generateCRL(ByteArrayInputStream.new(X509CRLString.to_java_bytes))
+  end
+  
+  files = File.join(File.dirname(__FILE__), 'java', 'test_*.rb')
+  Dir.glob(files).sort.each do |tc|
+    require tc
+  end
+end