disable README tests, moved pem mod into schannel

Goirad · Goirad · commit da4cf1aab286 · 2020-02-18T11:02:45.000-08:00
diff --git a/README.md b/README.md
@@ -26,7 +26,7 @@ native-tls = "0.2"
 
 An example client looks like:
 
-```rust
+```rust,ignore
 extern crate native_tls;
 
 use native_tls::TlsConnector;
@@ -48,7 +48,7 @@ fn main() {
 
 To accept connections as a server from remote clients:
 
-```rust,no_run
+```rust,ignore
 extern crate native_tls;
 
 use native_tls::{Identity, TlsAcceptor, TlsStream};
diff --git a/src/imp/schannel.rs b/src/imp/schannel.rs
@@ -100,7 +100,7 @@ impl Identity {
 
     pub fn from_pkcs8(pem: &[u8], key: &[u8]) -> Result<Identity, Error> {
         let mut store = Memory::new()?.into_store();
-        let mut cert_iter = crate::pem::PemBlock::new(pem).into_iter();
+        let mut cert_iter = pem::PemBlock::new(pem).into_iter();
         let leaf = cert_iter.next().expect("at least one certificate must be provided to create an identity");
         let cert = CertContext::from_pem(std::str::from_utf8(leaf).map_err(|_| io::Error::new(io::ErrorKind::InvalidInput, "leaf cert contains invalid utf8"))?)?;
 
@@ -378,3 +378,84 @@ impl<S: io::Read + io::Write> io::Write for TlsStream<S> {
         self.0.flush()
     }
 }
+
+
+mod pem {
+    /// Split data by PEM guard lines
+    pub struct PemBlock<'a> {
+        pem_block: &'a str,
+        cur_end: usize,
+    }
+
+    impl<'a> PemBlock<'a> {
+        pub fn new(data: &'a [u8]) -> PemBlock<'a> {
+            let s = ::std::str::from_utf8(data).unwrap();
+            PemBlock {
+                pem_block: s,
+                cur_end: s.find("-----BEGIN").unwrap_or(s.len()),
+            }
+        }
+    }
+
+    impl<'a> Iterator for PemBlock<'a> {
+        type Item = &'a [u8];
+        fn next(&mut self) -> Option<Self::Item> {
+            let last = self.pem_block.len();
+            if self.cur_end >= last {
+                return None;
+            }
+            let begin = self.cur_end;
+            let pos = self.pem_block[begin + 1..].find("-----BEGIN");
+            self.cur_end = match pos {
+                Some(end) => end + begin + 1,
+                None => last,
+            };
+            return Some(&self.pem_block[begin..self.cur_end].as_bytes());
+        }
+    }
+
+    #[test]
+    fn test_split() {
+        // Split three certs, CRLF line terminators.
+        assert_eq!(PemBlock::new(b"-----BEGIN FIRST-----\r\n-----END FIRST-----\r\n\
+            -----BEGIN SECOND-----\r\n-----END SECOND\r\n\
+            -----BEGIN THIRD-----\r\n-----END THIRD\r\n").collect::<Vec<&[u8]>>(),
+            vec![b"-----BEGIN FIRST-----\r\n-----END FIRST-----\r\n" as &[u8],
+                 b"-----BEGIN SECOND-----\r\n-----END SECOND\r\n",
+                 b"-----BEGIN THIRD-----\r\n-----END THIRD\r\n"]);
+        // Split three certs, CRLF line terminators except at EOF.
+        assert_eq!(PemBlock::new(b"-----BEGIN FIRST-----\r\n-----END FIRST-----\r\n\
+            -----BEGIN SECOND-----\r\n-----END SECOND-----\r\n\
+            -----BEGIN THIRD-----\r\n-----END THIRD-----").collect::<Vec<&[u8]>>(),
+            vec![b"-----BEGIN FIRST-----\r\n-----END FIRST-----\r\n" as &[u8],
+                 b"-----BEGIN SECOND-----\r\n-----END SECOND-----\r\n",
+                 b"-----BEGIN THIRD-----\r\n-----END THIRD-----"]);
+        // Split two certs, LF line terminators.
+        assert_eq!(PemBlock::new(b"-----BEGIN FIRST-----\n-----END FIRST-----\n\
+            -----BEGIN SECOND-----\n-----END SECOND\n").collect::<Vec<&[u8]>>(),
+            vec![b"-----BEGIN FIRST-----\n-----END FIRST-----\n" as &[u8],
+                 b"-----BEGIN SECOND-----\n-----END SECOND\n"]);
+        // Split two certs, CR line terminators.
+        assert_eq!(PemBlock::new(b"-----BEGIN FIRST-----\r-----END FIRST-----\r\
+            -----BEGIN SECOND-----\r-----END SECOND\r").collect::<Vec<&[u8]>>(),
+            vec![b"-----BEGIN FIRST-----\r-----END FIRST-----\r" as &[u8],
+                 b"-----BEGIN SECOND-----\r-----END SECOND\r"]);
+        // Split two certs, LF line terminators except at EOF.
+        assert_eq!(PemBlock::new(b"-----BEGIN FIRST-----\n-----END FIRST-----\n\
+            -----BEGIN SECOND-----\n-----END SECOND").collect::<Vec<&[u8]>>(),
+            vec![b"-----BEGIN FIRST-----\n-----END FIRST-----\n" as &[u8],
+                 b"-----BEGIN SECOND-----\n-----END SECOND"]);
+        // Split a single cert, LF line terminators.
+        assert_eq!(PemBlock::new(b"-----BEGIN FIRST-----\n-----END FIRST-----\n").collect::<Vec<&[u8]>>(),
+            vec![b"-----BEGIN FIRST-----\n-----END FIRST-----\n" as &[u8]]);
+        // Split a single cert, LF line terminators except at EOF.
+        assert_eq!(PemBlock::new(b"-----BEGIN FIRST-----\n-----END FIRST-----").collect::<Vec<&[u8]>>(),
+            vec![b"-----BEGIN FIRST-----\n-----END FIRST-----" as &[u8]]);
+        // (Don't) split garbage.
+        assert_eq!(PemBlock::new(b"junk").collect::<Vec<&[u8]>>(),
+            Vec::<&[u8]>::new());
+        assert_eq!(PemBlock::new(b"junk-----BEGIN garbage").collect::<Vec<&[u8]>>(),
+            vec![b"-----BEGIN garbage" as &[u8]]);
+    }
+}
+
diff --git a/src/pem.rs b/src/pem.rs
