1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
|
#!/usr/bin/perl
use strict;
use FS::Test;
use Test::More tests => 13;
use FS::Conf;
use FS::UID qw( dbh );
use DateTime;
use FS::cust_main; # to load all other tables
my $fs = FS::Test->new( user => 'admin' );
my $conf = FS::Conf->new;
my $err;
my @tables = qw(cust_payby cust_pay_pending cust_pay cust_pay_void cust_refund);
### can only run on test database (company name "Freeside Test")
like( $conf->config('company_name'), qr/^Freeside Test/, 'using test database' ) or BAIL_OUT('');
### we need to unencrypt our test db before we can test turning it on
# temporarily load all payinfo into memory
my %payinfo = ();
foreach my $table (@tables) {
$payinfo{$table} = {};
foreach my $record ($fs->qsearch({ table => $table })) {
next unless grep { $record->payby eq $_ } @FS::Record::encrypt_payby;
$payinfo{$table}{$record->get($record->primary_key)} = $record->get('payinfo');
}
}
# turn off encryption
foreach my $config ( qw(encryption encryptionmodule encryptionpublickey encryptionprivatekey) ) {
$conf->delete($config);
ok( !$conf->exists($config), "deleted $config" ) or BAIL_OUT('');
}
$FS::Record::conf_encryption = $conf->exists('encryption');
$FS::Record::conf_encryptionmodule = $conf->config('encryptionmodule');
$FS::Record::conf_encryptionpublickey = join("\n",$conf->config('encryptionpublickey'));
$FS::Record::conf_encryptionprivatekey = join("\n",$conf->config('encryptionprivatekey'));
# save unencrypted values
foreach my $table (@tables) {
local $FS::payinfo_Mixin::allow_closed_replace = 1;
local $FS::Record::no_update_diff = 1;
local $FS::UID::AutoCommit = 1;
my $tclass = 'FS::'.$table;
foreach my $key (keys %{$payinfo{$table}}) {
my $record = $tclass->by_key($key);
$record->payinfo($payinfo{$table}{$key});
$err = $record->replace;
last if $err;
}
}
ok( !$err, "save unencrypted values" ) or BAIL_OUT($err);
# make sure it worked
CHECKDECRYPT:
foreach my $table (@tables) {
my $tclass = 'FS::'.$table;
foreach my $key (sort {$a <=> $b} keys %{$payinfo{$table}}) {
my $sql = 'SELECT * FROM '.$table.
' WHERE payinfo LIKE \'M%\''.
' AND char_length(payinfo) > 80'.
' AND '.$tclass->primary_key.' = '.$key;
my $sth = dbh->prepare($sql) or BAIL_OUT(dbh->errstr);
$sth->execute or BAIL_OUT($sth->errstr);
if (my $hashrec = $sth->fetchrow_hashref) {
$err = $table.' '.$key.' encrypted';
last CHECKDECRYPT;
}
}
}
ok( !$err, "all values unencrypted" ) or BAIL_OUT($err);
### now, run upgrade
$err = system('freeside-upgrade','admin');
ok( !$err, 'upgrade ran' ) or BAIL_OUT('Error string: '.$!);
# check that confs got set
foreach my $config ( qw(encryption encryptionmodule encryptionpublickey encryptionprivatekey) ) {
ok( $conf->exists($config), "$config was set" ) or BAIL_OUT('');
}
# check that known records got encrypted
CHECKENCRYPT:
foreach my $table (@tables) {
my $tclass = 'FS::'.$table;
foreach my $key (sort {$a <=> $b} keys %{$payinfo{$table}}) {
my $sql = 'SELECT * FROM '.$table.
' WHERE payinfo LIKE \'M%\''.
' AND char_length(payinfo) > 80'.
' AND '.$tclass->primary_key.' = '.$key;
my $sth = dbh->prepare($sql) or BAIL_OUT(dbh->errstr);
$sth->execute or BAIL_OUT($sth->errstr);
unless ($sth->fetchrow_hashref) {
$err = $table.' '.$key.' not encrypted';
last CHECKENCRYPT;
}
}
}
ok( !$err, "all values encrypted" ) or BAIL_OUT($err);
exit;
1;
|
