mirror of
https://github.com/php/php-src.git
synced 2025-01-12 05:54:13 +08:00
1fab01be5b
The idea is to create an easy way to provide a certificate that never expires. In order to make it cross-platform, PHP is used rather than openssl CLI app. Using openssl to generate certificates for tests that test openssl might be not the best idea but pros seem to outweight cons that this "recursice dependency" adds
128 lines
3.5 KiB
PHP
128 lines
3.5 KiB
PHP
--TEST--
|
|
Bug #74159: Writing a large buffer to non-blocking encrypted streams fails
|
|
--SKIPIF--
|
|
<?php
|
|
if (!extension_loaded("openssl")) die("skip openssl not loaded");
|
|
if (!function_exists("proc_open")) die("skip no proc_open");
|
|
?>
|
|
--FILE--
|
|
<?php
|
|
$certFile = __DIR__ . DIRECTORY_SEPARATOR . 'bug74159.pem.tmp';
|
|
$cacertFile = __DIR__ . DIRECTORY_SEPARATOR . 'bug74159-ca.pem.tmp';
|
|
|
|
// the server code is doing many readings in a short interval which is
|
|
// not really reliable on more powerful machine but cover different
|
|
// scenarios which might be useful. More reliable test is bug72333.phpt
|
|
$serverCode = <<<'CODE'
|
|
$serverUri = "ssl://127.0.0.1:10012";
|
|
$serverFlags = STREAM_SERVER_BIND | STREAM_SERVER_LISTEN;
|
|
$serverCtx = stream_context_create(['ssl' => [
|
|
'local_cert' => '%s',
|
|
'crypto_method' => STREAM_CRYPTO_METHOD_TLSv1_2_SERVER,
|
|
]]);
|
|
|
|
$server = stream_socket_server($serverUri, $errno, $errstr, $serverFlags, $serverCtx);
|
|
phpt_notify();
|
|
|
|
$client = stream_socket_accept($server, 1);
|
|
|
|
if (!$client) {
|
|
exit();
|
|
}
|
|
|
|
$data = '';
|
|
while (strlen($data) < 0xfffff) {
|
|
$buffer = fread($client, 8192);
|
|
if (empty($buffer)) {
|
|
exit();
|
|
}
|
|
$data .= $buffer;
|
|
usleep(100);
|
|
}
|
|
|
|
fclose($client);
|
|
CODE;
|
|
$serverCode = sprintf($serverCode, $certFile);
|
|
|
|
$peerName = 'bug74159';
|
|
$clientCode = <<<'CODE'
|
|
function streamRead($stream) : int {
|
|
return strlen(fread($stream, 8192));
|
|
}
|
|
|
|
function streamWrite($stream, $data) : int {
|
|
return fwrite($stream, $data);
|
|
}
|
|
|
|
function waitForWrite(...$streams) : bool {
|
|
$read = null;
|
|
$except = null;
|
|
while($streams && !($n = stream_select($read, $streams, $except, 1)));
|
|
return $n > 0;
|
|
}
|
|
|
|
function waitForRead(...$streams) : bool {
|
|
$write = null;
|
|
$except = null;
|
|
while ($streams && !($n = stream_select($streams, $write, $except, 1)));
|
|
return $n > 0;
|
|
}
|
|
|
|
set_error_handler(function ($errno, $errstr) {
|
|
exit("$errstr\n");
|
|
});
|
|
|
|
$serverUri = "tcp://127.0.0.1:10012";
|
|
$clientFlags = STREAM_CLIENT_CONNECT;
|
|
$clientCtx = stream_context_create(['ssl' => [
|
|
'verify_peer' => true,
|
|
'cafile' => '%s',
|
|
'peer_name' => '%s',
|
|
]]);
|
|
|
|
phpt_wait();
|
|
|
|
$fp = stream_socket_client($serverUri, $errno, $errstr, 1, $clientFlags, $clientCtx);
|
|
|
|
stream_set_blocking($fp, false);
|
|
while (0 === ($n = stream_socket_enable_crypto($fp, true, STREAM_CRYPTO_METHOD_TLSv1_2_CLIENT)));
|
|
|
|
$data = str_repeat("a", 0xfffff);
|
|
$written = 0;
|
|
$total = $written;
|
|
while(!empty($data)) {
|
|
$written = streamWrite($fp, $data);
|
|
$total += $written;
|
|
$data = substr($data, $written);
|
|
waitForWrite($fp);
|
|
}
|
|
printf("Written %%d bytes\n", $total);
|
|
|
|
while(waitForRead($fp)) {
|
|
streamRead($fp);
|
|
if (feof($fp)) {
|
|
break;
|
|
}
|
|
}
|
|
|
|
exit("DONE\n");
|
|
CODE;
|
|
$clientCode = sprintf($clientCode, $cacertFile, $peerName);
|
|
|
|
include 'CertificateGenerator.inc';
|
|
$certificateGenerator = new CertificateGenerator();
|
|
$certificateGenerator->saveCaCert($cacertFile);
|
|
$certificateGenerator->saveNewCertAsFileWithKey($peerName, $certFile);
|
|
|
|
include 'ServerClientTestCase.inc';
|
|
ServerClientTestCase::getInstance()->run($clientCode, $serverCode);
|
|
?>
|
|
--CLEAN--
|
|
<?php
|
|
@unlink(__DIR__ . DIRECTORY_SEPARATOR . 'bug74159.pem.tmp');
|
|
@unlink(__DIR__ . DIRECTORY_SEPARATOR . 'bug74159-ca.pem.tmp');
|
|
?>
|
|
--EXPECT--
|
|
Written 1048575 bytes
|
|
DONE
|