AuroraMiddleware/mbedtls
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
f2de374fc1
mbedtls/tests/scripts/translate_ciphers.py

111 lines
3.5 KiB
Python
Raw Normal View History

Format files and add license comment Changes to pass tests/scripts/check_files.py -Add missing new line at end of each file -Remove any trailing whitespaces -Added file shebang comments Added license info and purpose of file descriptions. The 2 test_translate... files may not be stay later down the line, but incase they do become permanent, it is good to add the appropriate comments now. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-22 17:52:17 +00:00
#!/usr/bin/env python3
# translate_ciphers.py
#
# Copyright The Mbed TLS Contributors
# SPDX-License-Identifier: Apache-2.0
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
Improve python coding style As per check-python-files.sh, added string documentation for files and functions. Modified for loops to use enumerate rather than range(len( although as the same iteration index is used for multiple lists it does not seem quite appropriate Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-28 15:50:30 +00:00
"""
Translate ciphersuite names in MBedTLS format to OpenSSL and GNUTLS
standards.
sys.argv[1] should be "g" or "o" for GNUTLS or OpenSSL.
sys.argv[2] should be a string containing one or more ciphersuite names.
"""
Format files and add license comment Changes to pass tests/scripts/check_files.py -Add missing new line at end of each file -Remove any trailing whitespaces -Added file shebang comments Added license info and purpose of file descriptions. The 2 test_translate... files may not be stay later down the line, but incase they do become permanent, it is good to add the appropriate comments now. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-22 17:52:17 +00:00
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
import re
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
import argparse
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
Improve coding style and consistancy - Replace uses of mbed and gnu with mbedtls and gnutls respectivley. - Uses sys.exit() rather than exit() - Rename format() as it is an inbuilt python function - Add error information if incorrect arguments are passsed to translate_ciphers.py Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-27 14:22:26 +00:00
def translate_gnutls(m_cipher):
Improve python coding style As per check-python-files.sh, added string documentation for files and functions. Modified for loops to use enumerate rather than range(len( although as the same iteration index is used for multiple lists it does not seem quite appropriate Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-28 15:50:30 +00:00
"""
Translate m_cipher from MBedTLS ciphersuite naming convention
and return the GnuTLS naming convention
"""
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
m_cipher = re.sub(r'\ATLS-', '+', m_cipher)
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
m_cipher = m_cipher.replace("-WITH-", ":+")
m_cipher = m_cipher.replace("-EDE", "")
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
# SHA in Mbed TLS == SHA1 GnuTLS,
# if the last 3 chars are SHA append 1
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
if m_cipher[-3:] == "SHA":
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
m_cipher = m_cipher+"1"
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
# CCM or CCM-8 should be followed by ":+AEAD"
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
# Replace "GCM:+SHAxyz" with "GCM:+AEAD"
if "CCM" in m_cipher or "GCM" in m_cipher:
m_cipher = re.sub(r"GCM-SHA\d\d\d", "GCM", m_cipher)
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
m_cipher = m_cipher+":+AEAD"
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
# Replace the last "-" with ":+"
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
else:
Improve python coding style As per check-python-files.sh, added string documentation for files and functions. Modified for loops to use enumerate rather than range(len( although as the same iteration index is used for multiple lists it does not seem quite appropriate Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-28 15:50:30 +00:00
index = m_cipher.rindex("-")
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
m_cipher = m_cipher[:index] + ":+" + m_cipher[index+1:]
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
return m_cipher
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
def translate_ossl(m_cipher):
Improve python coding style As per check-python-files.sh, added string documentation for files and functions. Modified for loops to use enumerate rather than range(len( although as the same iteration index is used for multiple lists it does not seem quite appropriate Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-28 15:50:30 +00:00
"""
Translate m_cipher from MBedTLS ciphersuite naming convention
and return the OpenSSL naming convention
"""
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
m_cipher = re.sub(r'^TLS-', '', m_cipher)
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
m_cipher = m_cipher.replace("-WITH", "")
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
# Remove the "-" from "ABC-xyz"
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
m_cipher = m_cipher.replace("AES-", "AES")
m_cipher = m_cipher.replace("CAMELLIA-", "CAMELLIA")
m_cipher = m_cipher.replace("ARIA-", "ARIA")
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
# Remove "RSA" if it is at the beginning
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
m_cipher = re.sub(r'^RSA-', r'', m_cipher)
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
# For all circumstances outside of PSK
if "PSK" not in m_cipher:
m_cipher = m_cipher.replace("-EDE", "")
m_cipher = m_cipher.replace("3DES-CBC", "DES-CBC3")
# Remove "CBC" if it is not prefixed by DES
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
m_cipher = re.sub(r'(?<!DES-)CBC-', r'', m_cipher)
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
# ECDHE-RSA-ARIA does not exist in OpenSSL
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
m_cipher = m_cipher.replace("ECDHE-RSA-ARIA", "ECDHE-ARIA")
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
# POLY1305 should not be followed by anything
if "POLY1305" in m_cipher:
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
index = m_cipher.rindex("POLY1305")
Improve python coding style As per check-python-files.sh, added string documentation for files and functions. Modified for loops to use enumerate rather than range(len( although as the same iteration index is used for multiple lists it does not seem quite appropriate Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-28 15:50:30 +00:00
m_cipher = m_cipher[:index+8]
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
# If DES is being used, Replace DHE with EDH
if "DES" in m_cipher and "DHE" in m_cipher and "ECDHE" not in m_cipher:
m_cipher = m_cipher.replace("DHE", "EDH")
Add draft python tool to translate MBed ciphersuites Created 2 functions - translate_gnu() - translate_ossl() Each function takes a parameter `m_cipher` (expected in the MBedTLS naming standard), and through a series of edge cases/replaces, modifies the ciphersuite name to match the GNU and OpenSSL naming conventions respectively. This will serve as to maintain a single list that can be translated, rather than maintaining 3 lists for OpenSSL and GNU also. This commit serves as a checkpoint, and the program will be cleaned up in the future. The program currently runs a series of tests to check every given ciphersuite name combination in compat.sh to ensure they are translated correctly. Some OpenSSL names appear to have typos and as such have been corrected in this program until I have recieved more information. The errors were commented out to keep note of. Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-20 17:26:03 +00:00
Reformat translation functions and test in seperate file Moved the test over to a seperate file, where I can start experimenting with how the script will be called. Commented and improved the translation functions. They should be more readable, however I added comments anyway to quickly identify every step involved with te translation from MBedTLS to GNU or OpenSSL Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-21 15:48:54 +00:00
return m_cipher
Implement bash script for testing Added formatting functions to translate_ciphersuite.py to take a string of multiple ciphersuite names, in the current compat.sh and output the translated ciphersuite names in the same format Created test_translate.sh which uses samples from compat.sh to compare against the translated versions to ensure the translations are produced in the correct format Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-22 15:08:29 +00:00
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
def format_ciphersuite_names(mode, names):
t = {"g": translate_gnutls, "o": translate_ossl}[mode]
return " ".join(t(c) for c in names)
def main(target, names):
print(format_ciphersuite_names(target, names))
Implement bash script for testing Added formatting functions to translate_ciphersuite.py to take a string of multiple ciphersuite names, in the current compat.sh and output the translated ciphersuite names in the same format Created test_translate.sh which uses samples from compat.sh to compare against the translated versions to ensure the translations are produced in the correct format Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-22 15:08:29 +00:00
if __name__ == "__main__":
Improve consitancy and useability test_translate_ciphers_names.py - Combined m, o and g ciphers all into one a single list of tuples to avoid needing to rely on indexes test_translate_ciphers_format.sh - Removed redundant test - Added return errors compat.sh - Improved how translate_ciphers.py is called translate_ciphers.py - Improve regex and translation to be more intutive and efficient - change how arguments are taken and handelled to be more reliable Signed-off-by: Joe Subbiani <joe.subbiani@arm.com>
2021-07-30 15:57:04 +00:00
PARSER = argparse.ArgumentParser()
PARSER.add_argument('target', metavar='TARGET', choices=['o', 'g'])
PARSER.add_argument('names', metavar='NAMES', nargs='+')
ARGS = PARSER.parse_args()
main(ARGS.target, ARGS.names)
Reference in New Issue Copy Permalink