git.sur5r.net Git - openldap/blob - tests/scripts/test021-certificate

   1 #! /bin/sh
   2 # $OpenLDAP$
   3
   4 SRCDIR="."
   5 if test $# -ge 1 ; then
   6         SRCDIR=$1; shift
   7 fi
   8
   9 . $SRCDIR/scripts/args.sh $*
  10
  11 echo "running defines.sh"
  12 . $SRCDIR/scripts/defines.sh
  13
  14 echo "running defines.sh $SRCDIR $BACKEND"
  15 . $SRCDIR/scripts/defines.sh
  16
  17 echo "Cleaning up in $DBDIR..."
  18
  19 rm -f $DBDIR/[!C]*
  20
  21 echo "Running slapadd to build slapd database..."
  22 . $CONFFILTER $BACKEND $MONITORDB < $CONF > $DBCONF
  23 $SLAPADD -f $DBCONF -l $LDIFORDERED
  24 RC=$?
  25 if test $RC != 0 ; then
  26         echo "slapadd failed ($RC)!"
  27         exit $RC
  28 fi
  29
  30 echo "Starting slapd on TCP/IP port $PORT..."
  31 $SLAPD -f $DBCONF -h $MASTERURI -d $LVL $TIMING > $MASTERLOG 2>&1 &
  32 PID=$!
  33 if test $WAIT != 0 ; then
  34     echo PID $PID
  35     read foo
  36 fi
  37
  38 echo "Testing certificate handling..."
  39
  40 for i in 0 1 2 3 4 5; do
  41         $LDAPSEARCH -s base -b "$MONITOR" -h $LOCALHOST -p $PORT \
  42                 'objectclass=*' > /dev/null 2>&1
  43         RC=$?
  44         if test $RC = 0 ; then
  45                 break
  46         fi
  47         echo "Waiting 5 seconds for slapd to start..."
  48         sleep 5
  49 done
  50
  51 if test $RC != 0 ; then
  52         echo "ldapsearch failed ($RC)!"
  53         kill -HUP $PID
  54         exit $RC
  55 fi
  56
  57 echo "Add certificates..."
  58 $LDAPMODIFY -v -D "$MANAGERDN" -h $LOCALHOST -p $PORT -w $PASSWD > \
  59         $TESTOUT 2>&1 << EOMODS
  60 version: 1
  61
  62 # LEADING COMMENT AND WHITE SPACE
  63
  64 dn: cn=Ursula Hampster,ou=Alumni Association,ou=People,o=University of Michigan,c=US
  65 changetype: modify
  66 add: userCertificate
  67 userCertificate;binary::
  68  MIIDbDCCAtWgAwIBAgIBAzANBgkqhkiG9w0BAQQFADB2MQswCQYDVQQGEwJVUzETMBEGA1UECBMK
  69  U29tZS1TdGF0ZTEhMB8GA1UEChMYSW50ZXJuZXQgV2lkZ2l0cyBQdHkgTHRkMRAwDgYDVQQDEwdJ
  70  V1BMIENBMR0wGwYJKoZIhvcNAQkBFg5jYUBleGFtcGxlLm5ldDAeFw0wMzEwMTYyMjQ0MThaFw0w
  71  NDEwMTUyMjQ0MThaMIGAMQswCQYDVQQGEwJVUzETMBEGA1UECBMKU29tZS1TdGF0ZTEhMB8GA1UE
  72  ChMYSW50ZXJuZXQgV2lkZ2l0cyBQdHkgTHRkMRgwFgYDVQQDEw9VcnN1bGEgSGFtcHN0ZXIxHzAd
  73  BgkqhkiG9w0BCQEWEHVoYW1AZXhhbXBsZS5jb20wgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGB
  74  AOftC+ppQ3/ZeWJRfs93FACCYAn9ajEtHy3A4GutavSQ1eLqlsU9wEkb8aEvRtOQ9BwTjaJc+0JJ
  75  53uB6th7f5Tl7LNgjsbVR5Ef3ucsdX2ulfCwm4Mun5Us/AK6QeYnyn+cimdPaWdS2XnopiAvvOml
  76  nEDfDuFD3XNVs8MLuQ99AgMBAAGjgf4wgfswCQYDVR0TBAIwADAsBglghkgBhvhCAQ0EHxYdT3Bl
  77  blNTTCBHZW5lcmF0ZWQgQ2VydGlmaWNhdGUwHQYDVR0OBBYEFI9vudD6euL2LxIhghjKii+3J4yq
  78  MIGgBgNVHSMEgZgwgZWAFC58W9JxQvSS1HZhp8x5z3hg8isXoXqkeDB2MQswCQYDVQQGEwJVUzET
  79  MBEGA1UECBMKU29tZS1TdGF0ZTEhMB8GA1UEChMYSW50ZXJuZXQgV2lkZ2l0cyBQdHkgTHRkMRAw
  80  DgYDVQQDEwdJV1BMIENBMR0wGwYJKoZIhvcNAQkBFg5jYUBleGFtcGxlLm5ldIIBADANBgkqhkiG
  81  9w0BAQQFAAOBgQAnYYHkbAWFdgelG/MnYISPU48XBTxZv3dcLh9cx+J/gp1VhggkxsEVaPQlhlnQ
  82  CfQwtM1h4j4cSVM8Tdceif93+uF48Arl6oQe5c63MoPIZD56vJkAlg+RiAFPDy6FjX6otjpIpW3u
  83  5GeGzaDLDBn5rlUXr0kED7Ool7R9Javxzg==
  84
  85 dn: cn=Jennifer Smith,ou=Alumni Association,ou=People,o=University of Michigan,c=US
  86 changetype: modify
  87 add: userCertificate
  88 userCertificate;binary::
  89  MIIDajCCAtOgAwIBAgIBATANBgkqhkiG9w0BAQQFADB2MQswCQYDVQQGEwJVUzETMBEGA1UECBMK
  90  U29tZS1TdGF0ZTEhMB8GA1UEChMYSW50ZXJuZXQgV2lkZ2l0cyBQdHkgTHRkMRAwDgYDVQQDEwdJ
  91  V1BMIENBMR0wGwYJKoZIhvcNAQkBFg5jYUBleGFtcGxlLm5ldDAeFw0wMzEwMTYyMjM4MzFaFw0w
  92  NDEwMTUyMjM4MzFaMH8xCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpTb21lLVN0YXRlMSEwHwYDVQQK
  93  ExhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQxGDAWBgNVBAMTD0plbm5pZmllciBTbWl0aDEeMBwG
  94  CSqGSIb3DQEJARYPamVuQGV4YW1wbGUubmV0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC4
  95  5An7/kRRHxiLIKR6yMfIVpGhkacWlKRFgkrzF5q9lcou+2NVZvuJDtMz36a11EgQmRJzx39oh7Eg
  96  4ZHLAHk4OoPfcwfHQ0FHCOaU6uSE6EFqLC1CjbquZPRpwLnurf2EB0GpZTo+bJZHvk6tA8SykUd+
  97  9qFMmX5As41JOOifjwIDAQABo4H+MIH7MAkGA1UdEwQCMAAwLAYJYIZIAYb4QgENBB8WHU9wZW5T
  98  U0wgR2VuZXJhdGVkIENlcnRpZmljYXRlMB0GA1UdDgQWBBS/e4vtKxSvjrV2JHghV/jgTEVMajCB
  99  oAYDVR0jBIGYMIGVgBQufFvScUL0ktR2YafMec94YPIrF6F6pHgwdjELMAkGA1UEBhMCVVMxEzAR
 100  BgNVBAgTClNvbWUtU3RhdGUxITAfBgNVBAoTGEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDEQMA4G
 101  A1UEAxMHSVdQTCBDQTEdMBsGCSqGSIb3DQEJARYOY2FAZXhhbXBsZS5uZXSCAQAwDQYJKoZIhvcN
 102  AQEEBQADgYEAbbGierD9QwK2cRnVr+Gs7dcbaRtuzriLIAgnR/s2t4Py0hpnySnyBVENXkzcgt7O
 103  IFEyF9ubRIe8YMfmLAO3yHxNyv4WaGTUVE0o54mZ5GaaIY2ibl7NK48u9VC/59pfxIsoi2m4HHbY
 104  1MD54XRy2CANELBVFI3CI4raj3/UiiA=
 105 userCertificate;binary::
 106  MIIDaTCCAtKgAwIBAgIBAjANBgkqhkiG9w0BAQQFADB2MQswCQYDVQQGEwJVUzETMBEGA1UECBMK
 107  U29tZS1TdGF0ZTEhMB8GA1UEChMYSW50ZXJuZXQgV2lkZ2l0cyBQdHkgTHRkMRAwDgYDVQQDEwdJ
 108  V1BMIENBMR0wGwYJKoZIhvcNAQkBFg5jYUBleGFtcGxlLm5ldDAeFw0wMzEwMTYyMjQwMzNaFw0w
 109  NDEwMTUyMjQwMzNaMH4xCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpTb21lLVN0YXRlMSEwHwYDVQQK
 110  ExhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQxFzAVBgNVBAMTDkplbm5pZmVyIFNtaXRoMR4wHAYJ
 111  KoZIhvcNAQkBFg9qZW5AZXhhbXBsZS5uZXQwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAMia
 112  mobs0kC0Q/78yocNvf0iTI5x9efB3tMwsxweLg93KbuNBeFn2mczzQvuzvhs+PLnfKxAyWbkeZrq
 113  w0Ve1h8ZXSHWSFg75UOFbo4wevuoYEtqmMupFEwT4rdf8Ykt5Rq1PyUJ5LgSNe0TMSqCYwTuo7+O
 114  unC/5YamsIbkKcsFAgMBAAGjgf4wgfswCQYDVR0TBAIwADAsBglghkgBhvhCAQ0EHxYdT3BlblNT
 115  TCBHZW5lcmF0ZWQgQ2VydGlmaWNhdGUwHQYDVR0OBBYEFDx71116utXKGemZrZVxp3p9NqU5MIGg
 116  BgNVHSMEgZgwgZWAFC58W9JxQvSS1HZhp8x5z3hg8isXoXqkeDB2MQswCQYDVQQGEwJVUzETMBEG
 117  A1UECBMKU29tZS1TdGF0ZTEhMB8GA1UEChMYSW50ZXJuZXQgV2lkZ2l0cyBQdHkgTHRkMRAwDgYD
 118  VQQDEwdJV1BMIENBMR0wGwYJKoZIhvcNAQkBFg5jYUBleGFtcGxlLm5ldIIBADANBgkqhkiG9w0B
 119  AQQFAAOBgQAPDn0+fm/GYV6elg3XFJgGA3wrVm4TeQQ8BdmIhqf25DUn/3ja3SBGI07DWz+LlYE/
 120  JzDEU+1UiYAfGgp7CnzKBzCUL0jyamgj11I6OyaYBdOsEGx1MFLjsOa+TCQS1f2v1gGCs/k0a/b3
 121  RRCTyoUfPHxJ0M6Cw9SGXu2K8GtHYA==
 122
 123 EOMODS
 124
 125 RC=$?
 126 if test $RC != 0 ; then
 127         echo "ldapmodify failed ($RC)!"
 128         kill -HUP $PID
 129         exit $RC
 130 fi
 131
 132 echo 'Using ldapsearch to retrieve (userCertificate;binary=*) ...'
 133 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT \
 134     '(userCertificate;binary=*)' > $SEARCHOUT 2>&1
 135 RC=$?
 136 if test $RC != 0 ; then
 137         echo "ldapsearch failed ($RC)!"
 138         kill -HUP $PID
 139         exit $RC
 140 fi
 141
 142 echo 'Using ldapsearch to retrieve (userCertificate=*) ...'
 143 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT \
 144     '(userCertificate;binary=*)' > $SEARCHOUT 2>&1
 145 RC=$?
 146 if test $RC != 0 ; then
 147         echo "ldapsearch failed ($RC)!"
 148         kill -HUP $PID
 149         exit $RC
 150 fi
 151
 152 kill -HUP $PID
 153 LDIF=$CERTIFICATEOUT
 154
 155 echo "Filtering ldapsearch results..."
 156 . $LDIFFILTER < $SEARCHOUT > $SEARCHFLT
 157 echo "Filtering original ldif used to create database..."
 158 . $LDIFFILTER < $LDIF > $LDIFFLT
 159 echo "Comparing filter output..."
 160 $CMP $SEARCHFLT $LDIFFLT > $CMPOUT
 161
 162 if test $? != 0 ; then
 163         echo "comparison failed - certificate operations did not complete correctly"
 164         exit 1
 165 fi
 166
 167 echo ">>>>> Test succeeded"
 168
 169 exit 0