generate_test_values.py - open-dice - Git at Google

 # Copyright 2020 Google LLC
 #
 # Licensed under the Apache License, Version 2.0 (the "License"); you may not
 # use this file except in compliance with the License. You may obtain a copy of
 # the License at
 #
 #     https://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 # License for the specific language governing permissions and limitations under
 # the License.
 #
 # Lint as: python3
 """Generates known_test_values.h from dumped test values.

 This program generates the known_test_values.h file used for unit tests. This is
 useful to correct the baseline test values based on dumps from the tests. Use
 this after fixing a bug in the code, not to 'fix' test breakage not well
 understood.

 Usage:
   $ cd out
   $ python ../generate_test_values.py > ../include/dice/known_test_values.h

 Prerequisites:
   pip install absl-py
 """

 from __future__ import print_function

 import re
 import subprocess
 import textwrap

 from absl import app
 from absl import flags

 FLAGS = flags.FLAGS

 _FILE_HEADER = textwrap.dedent("""\
     // Copyright 2020 Google LLC
     //
     // Licensed under the Apache License, Version 2.0 (the "License"); you may not
     // use this file except in compliance with the License. You may obtain a copy of
     // the License at
     //
     //     https://www.apache.org/licenses/LICENSE-2.0
     //
     // Unless required by applicable law or agreed to in writing, software
     // distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
     // WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
     // License for the specific language governing permissions and limitations under
     // the License.

     // !!! GENERATED - DO NOT MODIFY !!!
     // To update this file, use generate_test_values.py.

     #ifndef DICE_KNOWN_TEST_VALUES_H_
     #define DICE_KNOWN_TEST_VALUES_H_

     #include <stdint.h>

     namespace dice {
     namespace test {

                                """)

 _FILE_FOOTER = textwrap.dedent("""\
     }  // namespace test
     }  // namespace dice

     #endif  // DICE_KNOWN_TEST_VALUES_H_
                                """)


 def _to_camel_case(s):
     return ''.join(tmp.capitalize() for tmp in s.split('_'))


 def _read_file(name):
     try:
         with open(name, 'rb') as f:
             return f.read()
     except OSError:
         return ''


 def _generate_array(name, data):
     return 'constexpr uint8_t %s[%d] = {%s};\n\n' % (
         name, len(data), ', '.join('0x%02x' % tmp for tmp in data))


 def _generate_cert_comment(data):
     return re.sub('^',
                   '// ',
                   subprocess.run([
                       'openssl', 'x509', '-inform', 'DER', '-noout', '-text',
                       '-certopt', 'ext_parse'
                   ],
                                  input=data,
                                  capture_output=True,
                                  check=True).stdout.decode(),
                   flags=re.MULTILINE)[:-3]


 def _generate_c(name):
     """Generates C declarations from dumps identified by |name|."""
     content = ''
     attest_cdi_data = _read_file('_attest_cdi_%s.bin' % name)
     content += _generate_array('kExpectedCdiAttest_%s' % _to_camel_case(name),
                                attest_cdi_data)
     seal_cdi_data = _read_file('_seal_cdi_%s.bin' % name)
     content += _generate_array('kExpectedCdiSeal_%s' % _to_camel_case(name),
                                seal_cdi_data)
     for cert_type in ('X509', 'CBOR'):
         for key_type in ('Ed25519', 'P256', 'P384'):
             var_name = 'kExpected%s%sCert_%s' % (_to_camel_case(cert_type),
                                                  _to_camel_case(key_type),
                                                  _to_camel_case(name))
             cert_data = _read_file('_%s_%s_cert_%s.cert' %
                                    (cert_type, key_type, name))
             if cert_type == 'X509' and key_type != 'P384':
                 content += (
                     '// $ openssl x509 -inform DER -noout -text -certopt '
                     'ext_parse\n')
                 content += _generate_cert_comment(cert_data)
             content += _generate_array(var_name, cert_data)
     return content


 def main(argv):
     if len(argv) > 1:
         raise app.UsageError('Too many command-line arguments.')

     content = _FILE_HEADER
     content += _generate_c('zero_input')
     content += _generate_c('hash_only_input')
     content += _generate_c('descriptor_input')
     content += _FILE_FOOTER
     subprocess.run(['clang-format', '--style=file'],
                    input=content.encode(),
                    check=True)


 if __name__ == '__main__':
     app.run(main)
	# Copyright 2020 Google LLC
	#
	# Licensed under the Apache License, Version 2.0 (the "License"); you may not
	# use this file except in compliance with the License. You may obtain a copy of
	# the License at
	#
	# https://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing, software
	# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
	# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
	# License for the specific language governing permissions and limitations under
	# the License.
	#
	# Lint as: python3
	"""Generates known_test_values.h from dumped test values.

	This program generates the known_test_values.h file used for unit tests. This is
	useful to correct the baseline test values based on dumps from the tests. Use
	this after fixing a bug in the code, not to 'fix' test breakage not well
	understood.

	Usage:
	$ cd out
	$ python ../generate_test_values.py > ../include/dice/known_test_values.h

	Prerequisites:
	pip install absl-py
	"""

	from __future__ import print_function

	import re
	import subprocess
	import textwrap

	from absl import app
	from absl import flags

	FLAGS = flags.FLAGS

	_FILE_HEADER = textwrap.dedent("""\
	// Copyright 2020 Google LLC
	//
	// Licensed under the Apache License, Version 2.0 (the "License"); you may not
	// use this file except in compliance with the License. You may obtain a copy of
	// the License at
	//
	// https://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing, software
	// distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
	// WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
	// License for the specific language governing permissions and limitations under
	// the License.

	// !!! GENERATED - DO NOT MODIFY !!!
	// To update this file, use generate_test_values.py.

	#ifndef DICE_KNOWN_TEST_VALUES_H_
	#define DICE_KNOWN_TEST_VALUES_H_

	#include <stdint.h>

	namespace dice {
	namespace test {

	""")

	_FILE_FOOTER = textwrap.dedent("""\
	} // namespace test
	} // namespace dice

	#endif // DICE_KNOWN_TEST_VALUES_H_
	""")


	def _to_camel_case(s):
	return ''.join(tmp.capitalize() for tmp in s.split('_'))


	def _read_file(name):
	try:
	with open(name, 'rb') as f:
	return f.read()
	except OSError:
	return ''


	def _generate_array(name, data):
	return 'constexpr uint8_t %s[%d] = {%s};\n\n' % (
	name, len(data), ', '.join('0x%02x' % tmp for tmp in data))


	def _generate_cert_comment(data):
	return re.sub('^',
	'// ',
	subprocess.run([
	'openssl', 'x509', '-inform', 'DER', '-noout', '-text',
	'-certopt', 'ext_parse'
	],
	input=data,
	capture_output=True,
	check=True).stdout.decode(),
	flags=re.MULTILINE)[:-3]


	def _generate_c(name):
	"""Generates C declarations from dumps identified by \|name\|."""
	content = ''
	attest_cdi_data = _read_file('_attest_cdi_%s.bin' % name)
	content += _generate_array('kExpectedCdiAttest_%s' % _to_camel_case(name),
	attest_cdi_data)
	seal_cdi_data = _read_file('_seal_cdi_%s.bin' % name)
	content += _generate_array('kExpectedCdiSeal_%s' % _to_camel_case(name),
	seal_cdi_data)
	for cert_type in ('X509', 'CBOR'):
	for key_type in ('Ed25519', 'P256', 'P384'):
	var_name = 'kExpected%s%sCert_%s' % (_to_camel_case(cert_type),
	_to_camel_case(key_type),
	_to_camel_case(name))
	cert_data = _read_file('_%s_%s_cert_%s.cert' %
	(cert_type, key_type, name))
	if cert_type == 'X509' and key_type != 'P384':
	content += (
	'// $ openssl x509 -inform DER -noout -text -certopt '
	'ext_parse\n')
	content += _generate_cert_comment(cert_data)
	content += _generate_array(var_name, cert_data)
	return content


	def main(argv):
	if len(argv) > 1:
	raise app.UsageError('Too many command-line arguments.')

	content = _FILE_HEADER
	content += _generate_c('zero_input')
	content += _generate_c('hash_only_input')
	content += _generate_c('descriptor_input')
	content += _FILE_FOOTER
	subprocess.run(['clang-format', '--style=file'],
	input=content.encode(),
	check=True)


	if __name__ == '__main__':
	app.run(main)