chromium/src/third_party/blink/web_tests/http/tests/loading/sxg/resources/generate-test-sxgs.sh - manifest_repos/chromium_src - Git at Google

 #!/bin/sh

 # Copyright 2018 The Chromium Authors. All rights reserved.
 # Use of this source code is governed by a BSD-style license that can be
 # found in the LICENSE file.

 set -e

 for cmd in gen-signedexchange gen-certurl; do
     if ! command -v $cmd > /dev/null 2>&1; then
         echo "$cmd is not installed. Please run:"
         echo "  go get -u github.com/WICG/webpackage/go/signedexchange/cmd/..."
         echo '  export PATH=$PATH:$(go env GOPATH)/bin'
         exit 1
     fi
 done

 sxg_version=1b3
 certs_dir=../../../../../../../blink/tools/blinkpy/third_party/wpt/certs
 tmpdir=$(mktemp -d)

 # Make dummy OCSP data for cbor certificate chains.
 echo -n OCSP >$tmpdir/ocsp

 # Generate the certificate chain of "127.0.0.1.sxg.pem".
 gen-certurl  \
   -pem $certs_dir/127.0.0.1.sxg.pem \
   -ocsp $tmpdir/ocsp \
   > 127.0.0.1.sxg.pem.cbor

 # Generate the signed exchange file.
 gen-signedexchange \
   -version $sxg_version \
   -uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
   -status 200 \
   -content sxg-location.html \
   -certificate $certs_dir/127.0.0.1.sxg.pem \
   -certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
   -validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
   -privateKey $certs_dir/127.0.0.1.sxg.key \
   -date 2018-04-01T00:00:00Z \
   -expire 168h \
   -o sxg-location.sxg \
   -miRecordSize 100

 # Generate the signed exchange file which also reports use counter info.
 gen-signedexchange \
   -version $sxg_version \
   -uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
   -status 200 \
   -content sxg-usecounter.html \
   -certificate $certs_dir/127.0.0.1.sxg.pem \
   -certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
   -validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
   -privateKey $certs_dir/127.0.0.1.sxg.key \
   -date 2018-04-01T00:00:00Z \
   -expire 168h \
   -o sxg-usecounter.sxg \
   -miRecordSize 100

 # Generate the signed exchange file which certificate file is not available.
 gen-signedexchange \
   -version $sxg_version \
   -uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
   -status 200 \
   -content sxg-location.html \
   -certificate $certs_dir/127.0.0.1.sxg.pem \
   -certUrl https://127.0.0.1:8443/loading/sxg/resources/not_found_cert.pem.cbor \
   -validityUrl https://127.0.0.1:8443/loading/sxg/resources/not_found_cert.validity.msg \
   -privateKey $certs_dir/127.0.0.1.sxg.key \
   -date 2018-04-01T00:00:00Z \
   -expire 168h \
   -o sxg-cert-not-found.sxg \
   -miRecordSize 100

 # Generate the signed exchange file which validity URL is different origin from
 # request URL.
 gen-signedexchange \
   -version $sxg_version \
   -uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
   -status 200 \
   -content sxg-location.html \
   -certificate $certs_dir/127.0.0.1.sxg.pem \
   -certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
   -validityUrl https://127.0.0.1:8444/loading/sxg/resources/resource.validity.msg \
   -privateKey $certs_dir/127.0.0.1.sxg.key \
   -date 2018-04-01T00:00:00Z \
   -expire 168h \
   -o sxg-invalid-validity-url.sxg \
   -miRecordSize 100 \
   -ignoreErrors true

 # Generate the signed exchange file larger than 10KB.
 gen-signedexchange \
   -version $sxg_version \
   -uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
   -status 200 \
   -content sxg-larger-than-10k.html \
   -certificate $certs_dir/127.0.0.1.sxg.pem \
   -certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
   -validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
   -privateKey $certs_dir/127.0.0.1.sxg.key \
   -date 2018-04-01T00:00:00Z \
   -expire 168h \
   -o sxg-larger-than-10k.sxg \
   -miRecordSize 100

 # Generate the signed exchange file of sxg-subresource-script-inner.js.
 gen-signedexchange \
   -version $sxg_version \
   -uri https://127.0.0.1:8443/loading/sxg/resources/sxg-subresource-script.js \
   -status 200 \
   -content sxg-subresource-script-inner.js \
   -certificate $certs_dir/127.0.0.1.sxg.pem \
   -certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
   -validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
   -privateKey $certs_dir/127.0.0.1.sxg.key \
   -date 2030-04-01T00:00:00Z \
   -expire 168h \
   -o sxg-subresource-script.sxg \
   -miRecordSize 100 \
   -responseHeader "content-type:text/javascript; charset=utf-8"

 # Get the header integrity hash value of sxg-subresource-script.sxg.
 header_integrity=$(dump-signedexchange -i sxg-subresource-script.sxg | \
                    grep -o "header integrity: sha256-.*" | \
                    grep -o "sha256-.*$")

 # Generate the signed exchange file for Origin Trial test.
 gen-signedexchange \
   -version $sxg_version \
   -uri https://127.0.0.1:8443/loading/sxg/resources/sxg-subresource-origin-trial-inner-page.html \
   -status 200 \
   -content sxg-subresource-origin-trial-page.html \
   -certificate $certs_dir/127.0.0.1.sxg.pem \
   -certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
   -validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
   -privateKey $certs_dir/127.0.0.1.sxg.key \
   -date 2030-04-01T00:00:00Z \
   -expire 168h \
   -o sxg-subresource-origin-trial-page.sxg \
   -miRecordSize 100 \
   -responseHeader "link:<https://127.0.0.1:8443/loading/sxg/resources/sxg-subresource-script.js>;rel=allowed-alt-sxg;header-integrity=\"$header_integrity\",<https://127.0.0.1:8443/loading/sxg/resources/sxg-subresource-script.js>;rel=preload;as=script"


 rm -fr $tmpdir
	#!/bin/sh

	# Copyright 2018 The Chromium Authors. All rights reserved.
	# Use of this source code is governed by a BSD-style license that can be
	# found in the LICENSE file.

	set -e

	for cmd in gen-signedexchange gen-certurl; do
	if ! command -v $cmd > /dev/null 2>&1; then
	echo "$cmd is not installed. Please run:"
	echo " go get -u github.com/WICG/webpackage/go/signedexchange/cmd/..."
	echo ' export PATH=$PATH:$(go env GOPATH)/bin'
	exit 1
	fi
	done

	sxg_version=1b3
	certs_dir=../../../../../../../blink/tools/blinkpy/third_party/wpt/certs
	tmpdir=$(mktemp -d)

	# Make dummy OCSP data for cbor certificate chains.
	echo -n OCSP >$tmpdir/ocsp

	# Generate the certificate chain of "127.0.0.1.sxg.pem".
	gen-certurl \
	-pem $certs_dir/127.0.0.1.sxg.pem \
	-ocsp $tmpdir/ocsp \
	> 127.0.0.1.sxg.pem.cbor

	# Generate the signed exchange file.
	gen-signedexchange \
	-version $sxg_version \
	-uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
	-status 200 \
	-content sxg-location.html \
	-certificate $certs_dir/127.0.0.1.sxg.pem \
	-certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
	-validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
	-privateKey $certs_dir/127.0.0.1.sxg.key \
	-date 2018-04-01T00:00:00Z \
	-expire 168h \
	-o sxg-location.sxg \
	-miRecordSize 100

	# Generate the signed exchange file which also reports use counter info.
	gen-signedexchange \
	-version $sxg_version \
	-uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
	-status 200 \
	-content sxg-usecounter.html \
	-certificate $certs_dir/127.0.0.1.sxg.pem \
	-certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
	-validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
	-privateKey $certs_dir/127.0.0.1.sxg.key \
	-date 2018-04-01T00:00:00Z \
	-expire 168h \
	-o sxg-usecounter.sxg \
	-miRecordSize 100

	# Generate the signed exchange file which certificate file is not available.
	gen-signedexchange \
	-version $sxg_version \
	-uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
	-status 200 \
	-content sxg-location.html \
	-certificate $certs_dir/127.0.0.1.sxg.pem \
	-certUrl https://127.0.0.1:8443/loading/sxg/resources/not_found_cert.pem.cbor \
	-validityUrl https://127.0.0.1:8443/loading/sxg/resources/not_found_cert.validity.msg \
	-privateKey $certs_dir/127.0.0.1.sxg.key \
	-date 2018-04-01T00:00:00Z \
	-expire 168h \
	-o sxg-cert-not-found.sxg \
	-miRecordSize 100

	# Generate the signed exchange file which validity URL is different origin from
	# request URL.
	gen-signedexchange \
	-version $sxg_version \
	-uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
	-status 200 \
	-content sxg-location.html \
	-certificate $certs_dir/127.0.0.1.sxg.pem \
	-certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
	-validityUrl https://127.0.0.1:8444/loading/sxg/resources/resource.validity.msg \
	-privateKey $certs_dir/127.0.0.1.sxg.key \
	-date 2018-04-01T00:00:00Z \
	-expire 168h \
	-o sxg-invalid-validity-url.sxg \
	-miRecordSize 100 \
	-ignoreErrors true

	# Generate the signed exchange file larger than 10KB.
	gen-signedexchange \
	-version $sxg_version \
	-uri https://127.0.0.1:8443/loading/sxg/resources/inner-url.html \
	-status 200 \
	-content sxg-larger-than-10k.html \
	-certificate $certs_dir/127.0.0.1.sxg.pem \
	-certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
	-validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
	-privateKey $certs_dir/127.0.0.1.sxg.key \
	-date 2018-04-01T00:00:00Z \
	-expire 168h \
	-o sxg-larger-than-10k.sxg \
	-miRecordSize 100

	# Generate the signed exchange file of sxg-subresource-script-inner.js.
	gen-signedexchange \
	-version $sxg_version \
	-uri https://127.0.0.1:8443/loading/sxg/resources/sxg-subresource-script.js \
	-status 200 \
	-content sxg-subresource-script-inner.js \
	-certificate $certs_dir/127.0.0.1.sxg.pem \
	-certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
	-validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
	-privateKey $certs_dir/127.0.0.1.sxg.key \
	-date 2030-04-01T00:00:00Z \
	-expire 168h \
	-o sxg-subresource-script.sxg \
	-miRecordSize 100 \
	-responseHeader "content-type:text/javascript; charset=utf-8"

	# Get the header integrity hash value of sxg-subresource-script.sxg.
	header_integrity=$(dump-signedexchange -i sxg-subresource-script.sxg \| \
	grep -o "header integrity: sha256-.*" \| \
	grep -o "sha256-.*$")

	# Generate the signed exchange file for Origin Trial test.
	gen-signedexchange \
	-version $sxg_version \
	-uri https://127.0.0.1:8443/loading/sxg/resources/sxg-subresource-origin-trial-inner-page.html \
	-status 200 \
	-content sxg-subresource-origin-trial-page.html \
	-certificate $certs_dir/127.0.0.1.sxg.pem \
	-certUrl https://127.0.0.1:8443/loading/sxg/resources/127.0.0.1.sxg.pem.cbor \
	-validityUrl https://127.0.0.1:8443/loading/sxg/resources/resource.validity.msg \
	-privateKey $certs_dir/127.0.0.1.sxg.key \
	-date 2030-04-01T00:00:00Z \
	-expire 168h \
	-o sxg-subresource-origin-trial-page.sxg \
	-miRecordSize 100 \
	-responseHeader "link:<https://127.0.0.1:8443/loading/sxg/resources/sxg-subresource-script.js>;rel=allowed-alt-sxg;header-integrity=\"$header_integrity\",<https://127.0.0.1:8443/loading/sxg/resources/sxg-subresource-script.js>;rel=preload;as=script"


	rm -fr $tmpdir