Add tests for rsa_utility.c

BUG=chromium-os:17564 TEST=make && make runtests Change-Id: Ia86241f5407ba53d93d3862b29c61b510e560e92 Reviewed-on: http://gerrit.chromium.org/gerrit/6959 Reviewed-by: Bill Richardson <wfrichar@chromium.org> Tested-by: Randall Spangler <rspangler@chromium.org>
author: Randall Spangler <rspangler@chromium.org> 2011-08-30 16:44:44 -0700
committer: Randall Spangler <rspangler@chromium.org> 2011-09-01 09:04:46 -0700
commit: 9c9606b7a6e2fe7a2d8147c0d61c2d3f5b98956d (patch)
tree: 1e0a6381cd8f977dd124d3b095c856eea9a80652
parent: 1a4d03dc902b03c236df01791c0db1f4489ae411 (diff)
download: vboot-9c9606b7a6e2fe7a2d8147c0d61c2d3f5b98956d.tar.gz
6 files changed, 250 insertions, 8 deletions
diff --git a/firmware/lib/cryptolib/rsa_utility.c b/firmware/lib/cryptolib/rsa_utility.c
index b227b060..9da920cc 100644
--- a/firmware/lib/cryptolib/rsa_utility.c
+++ b/firmware/lib/cryptolib/rsa_utility.c
@@ -14,7 +14,7 @@ uint64_t RSAProcessedKeySize(uint64_t algorithm, uint64_t* out_size) {
   int key_len; /* Key length in bytes.  (int type matches siglen_map) */
   if (algorithm < kNumAlgorithms) {
     key_len = siglen_map[algorithm];
-    /* Total size needed by a RSAPublicKey structure is =
+    /* Total size needed by a RSAPublicKey buffer is =
      *  2 * key_len bytes for the  n and rr arrays
      *  + sizeof len + sizeof n0inv.
      */
@@ -28,13 +28,17 @@ RSAPublicKey* RSAPublicKeyNew(void) {
   RSAPublicKey* key = (RSAPublicKey*) VbExMalloc(sizeof(RSAPublicKey));
   key->n = NULL;
   key->rr = NULL;
+  key->len = 0;
+  key->algorithm = kNumAlgorithms;
   return key;
 }
 
 void RSAPublicKeyFree(RSAPublicKey* key) {
   if (key) {
-    VbExFree(key->n);
-    VbExFree(key->rr);
+    if (key->n)
+      VbExFree(key->n);
+    if (key->rr)
+      VbExFree(key->rr);
     VbExFree(key);
   }
 }
@@ -44,9 +48,7 @@ RSAPublicKey* RSAPublicKeyFromBuf(const uint8_t* buf, uint64_t len) {
   MemcpyState st;
   uint64_t key_len;
 
-  st.remaining_buf = (uint8_t*) buf;
-  st.remaining_len = len;
-  st.overrun = 0;
+  StatefulInit(&st, (void*)buf, len);
 
   StatefulMemcpy(&st, &key->len, sizeof(key->len));
   key_len = key->len * sizeof(uint32_t);  /* key length in bytes. */
diff --git a/tests/Makefile b/tests/Makefile
index 153703e8..63303295 100644
--- a/tests/Makefile
+++ b/tests/Makefile
@@ -13,6 +13,7 @@ BUILD_ROOT = ${BUILD}/tests
 TEST_NAMES = cgptlib_test \
 	     rollback_index2_tests \
 	     rsa_padding_test \
+	     rsa_utility_tests \
 	     rsa_verify_benchmark \
 	     sha_benchmark \
 	     sha_tests \
@@ -101,6 +102,7 @@ runcgpttests:
 # Run crypto tests
 runcryptotests:
 	./run_rsa_tests.sh
+	${BUILD_ROOT}/rsa_utility_tests
 	${BUILD_ROOT}/sha_tests
 	./run_vboot_common_tests.sh
 
diff --git a/tests/rsa_padding_test.c b/tests/rsa_padding_test.c
index ce1d51a0..fa04dacc 100644
--- a/tests/rsa_padding_test.c
+++ b/tests/rsa_padding_test.c
@@ -43,10 +43,10 @@ static void TestRSAVerify(RSAPublicKey* key) {
                     test_message_sha1_hash), 1, "RSAVerify() good");
   TEST_EQ(RSAVerify(key, signatures[0], RSA1024NUMBYTES - 1, 0,
                     test_message_sha1_hash), 0, "RSAVerify() sig len");
-  TEST_EQ(RSAVerify(key, signatures[0], RSA1024NUMBYTES, kNumAlgorithms + 1,
+  TEST_EQ(RSAVerify(key, signatures[0], RSA1024NUMBYTES, kNumAlgorithms,
                     test_message_sha1_hash), 0, "RSAVerify() invalid alg");
   TEST_EQ(RSAVerify(key, signatures[0], RSA1024NUMBYTES, 3,
-                    test_message_sha1_hash), 0, "RSAVerify() wrong key");
+                    test_message_sha1_hash), 0, "RSAVerify() wrong alg");
 
   /* Corrupt the signature near start and end */
   Memcpy(sig, signatures[0], RSA1024NUMBYTES);
diff --git a/tests/rsa_utility_tests.c b/tests/rsa_utility_tests.c
new file mode 100644
index 00000000..8944652e
--- /dev/null
+++ b/tests/rsa_utility_tests.c
@@ -0,0 +1,218 @@
+/* Copyright (c) 2011 The Chromium OS Authors. All rights reserved.
+ * Use of this source code is governed by a BSD-style license that can be
+ * found in the LICENSE file.
+ */
+
+
+#include <stdio.h>
+
+#define _STUB_IMPLEMENTATION_
+
+#include "cryptolib.h"
+#include "file_keys.h"
+#include "rsa_padding_test.h"
+#include "test_common.h"
+#include "utility.h"
+#include "vboot_api.h"
+
+
+/* Data for mock functions */
+static int mock_rsaverify_retval;
+
+/* Mock functions */
+uint8_t* DigestBuf(const uint8_t* buf, uint64_t len, int sig_algorithm) {
+  /* Just need to return something; it's only passed to the mock RSAVerify() */
+  return VbExMalloc(4);
+}
+
+int RSAVerify(const RSAPublicKey *key,
+              const uint8_t* sig,
+              const uint32_t sig_len,
+              const uint8_t sig_type,
+              const uint8_t* hash) {
+  return mock_rsaverify_retval;
+}
+
+static void ResetMocks(void) {
+  mock_rsaverify_retval = 1;
+}
+
+/* Test RSA utility funcs */
+static void TestUtils(void) {
+  RSAPublicKey* key;
+  uint64_t u;
+
+  /* Processed key size */
+  TEST_EQ(RSAProcessedKeySize(0, &u), 1, "Processed key size 0");
+  TEST_EQ(u, RSA1024NUMBYTES * 2 + sizeof(uint32_t) * 2,
+          "Processed key size 0 size");
+  TEST_EQ(RSAProcessedKeySize(3, &u), 1, "Processed key size 3");
+  TEST_EQ(u, RSA2048NUMBYTES * 2 + sizeof(uint32_t) * 2,
+          "Processed key size 3 size");
+  TEST_EQ(RSAProcessedKeySize(7, &u), 1, "Processed key size 7");
+  TEST_EQ(u, RSA4096NUMBYTES * 2 + sizeof(uint32_t) * 2,
+          "Processed key size 7 size");
+  TEST_EQ(RSAProcessedKeySize(11, &u), 1, "Processed key size 11");
+  TEST_EQ(u, RSA8192NUMBYTES * 2 + sizeof(uint32_t) * 2,
+          "Processed key size 11 size");
+  TEST_EQ(RSAProcessedKeySize(kNumAlgorithms, &u), 0,
+          "Processed key size invalid algorithm");
+
+  /* Alloc key */
+  key = RSAPublicKeyNew();
+  TEST_EQ(key == NULL, 0, "New key not null");
+  /* New key fields */
+  TEST_PTR_EQ(key->n, NULL, "New key no n");
+  TEST_PTR_EQ(key->rr, NULL, "New key no rr");
+  TEST_EQ(key->len, 0, "New key len");
+  TEST_EQ(key->algorithm, kNumAlgorithms, "New key no algorithm");
+  /* Free key */
+  RSAPublicKeyFree(key);
+  /* Freeing null key shouldn't implode */
+  RSAPublicKeyFree(NULL);
+}
+
+/* Test creating key from buffer */
+static void TestKeyFromBuffer(void) {
+  RSAPublicKey* key;
+  uint8_t* buf;
+  uint32_t* buf_key_len;
+  int i;
+
+  buf = malloc(8 + 2 * RSA8192NUMBYTES);
+  buf_key_len = (uint32_t*)buf;
+
+  for (i = 0; i < 4; i++) {
+    uint32_t key_len = RSA1024NUMBYTES << i;
+    Memset(buf, 0xAB, sizeof(buf));
+    *buf_key_len = key_len / sizeof(uint32_t);
+    *(buf_key_len + 1) = 0xF00D2345;  /* n0inv */
+    buf[8] = 100;
+    buf[8 + key_len - 1] = 101;
+    buf[8 + key_len] = 120;
+    buf[8 + key_len * 2 - 1] = 121;
+
+    /* Correct length */
+    key = RSAPublicKeyFromBuf(buf, 8 + key_len * 2);
+    TEST_PTR_NEQ(key, NULL, "RSAPublicKeyFromBuf() ptr");
+    TEST_EQ(key->len, *buf_key_len, "RSAPublicKeyFromBuf() len");
+    TEST_EQ(key->n0inv, 0xF00D2345, "RSAPublicKeyFromBuf() n0inv");
+    TEST_PTR_NEQ(key->n, NULL, "RSAPublicKeyFromBuf() n ptr");
+    TEST_EQ(((uint8_t*)key->n)[0], 100, "RSAPublicKeyFromBuf() n start");
+    TEST_EQ(((uint8_t*)key->n)[key_len - 1], 101,
+            "RSAPublicKeyFromBuf() n end");
+    TEST_PTR_NEQ(key->rr, NULL, "RSAPublicKeyFromBuf() rr ptr");
+    TEST_EQ(((uint8_t*)key->rr)[0], 120, "RSAPublicKeyFromBuf() rr start");
+    TEST_EQ(((uint8_t*)key->rr)[key_len - 1], 121,
+            "RSAPublicKeyFromBuf() rr end");
+    RSAPublicKeyFree(key);
+
+    /* Underflow and overflow */
+    TEST_PTR_EQ(RSAPublicKeyFromBuf(buf, 8 + key_len * 2 - 1), NULL,
+                "RSAPublicKeyFromBuf() underflow");
+    TEST_PTR_EQ(RSAPublicKeyFromBuf(buf, 8 + key_len * 2 + 1), NULL,
+                "RSAPublicKeyFromBuf() overflow");
+
+    /* Invalid key length in buffer */
+    *buf_key_len = key_len / sizeof(uint32_t) + 1;
+    TEST_PTR_EQ(RSAPublicKeyFromBuf(buf, 8 + key_len * 2 + 1), NULL,
+                "RSAPublicKeyFromBuf() invalid key length");
+
+    /* Valid key length in buffer, but for some other length key */
+    *buf_key_len = (RSA1024NUMBYTES << ((i + 1) & 3)) / sizeof(uint32_t);
+    TEST_PTR_EQ(RSAPublicKeyFromBuf(buf, 8 + key_len * 2 + 1), NULL,
+                "RSAPublicKeyFromBuf() key length for wrong key");
+  }
+  free(buf);
+}
+
+/* Test verifying binary */
+static void TestVerifyBinary(void) {
+  RSAPublicKey key;
+  uint8_t keybuf[8 + 2 * RSA1024NUMBYTES];
+  uint32_t* keybuf_len = (uint32_t*)keybuf;
+  uint8_t buf[120];
+  uint8_t sig[4];
+
+  *keybuf_len = RSA1024NUMBYTES / sizeof(uint32_t);
+
+  /* Successful verification */
+  ResetMocks();
+  TEST_EQ(RSAVerifyBinary_f(NULL, &key, buf, sizeof(buf), sig, 0),
+          1, "RSAVerifyBinary_f() success");
+  /* Successful verification using key blob */
+  TEST_EQ(RSAVerifyBinary_f(keybuf, NULL, buf, sizeof(buf), sig, 0),
+          1, "RSAVerifyBinary_f() success with keyblob");
+
+  /* Invalid algorithm */
+  ResetMocks();
+  TEST_EQ(RSAVerifyBinary_f(NULL, &key, buf, sizeof(buf), sig, kNumAlgorithms),
+          0, "RSAVerifyBinary_f() invalid algorithm");
+  /* Must have either a key or a key blob */
+  ResetMocks();
+  TEST_EQ(RSAVerifyBinary_f(NULL, NULL, buf, sizeof(buf), sig, kNumAlgorithms),
+          0, "RSAVerifyBinary_f() no key or key_blob");
+  /* Wrong algorithm for key buffer (so key buffer is wrong size) */
+  ResetMocks();
+  TEST_EQ(RSAVerifyBinary_f(keybuf, NULL, buf, sizeof(buf), sig, 3),
+          0, "RSAVerifyBinary_f() wrong alg for key blob");
+
+  /* Simulate failed verification */
+  ResetMocks();
+  mock_rsaverify_retval = 0;
+  TEST_EQ(RSAVerifyBinary_f(NULL, &key, buf, sizeof(buf), sig, 0),
+          0, "RSAVerifyBinary_f() bad verify");
+}
+
+/* Test verifying binary with digest */
+static void TestVerifyBinaryWithDigest(void) {
+  RSAPublicKey key;
+  uint8_t keybuf[8 + 2 * RSA1024NUMBYTES];
+  uint32_t* keybuf_len = (uint32_t*)keybuf;
+  uint8_t digest[120];
+  uint8_t sig[4];
+
+  *keybuf_len = RSA1024NUMBYTES / sizeof(uint32_t);
+
+  /* Successful verification */
+  ResetMocks();
+  TEST_EQ(RSAVerifyBinaryWithDigest_f(NULL, &key, digest, sig, 0),
+          1, "RSAVerifyBinaryWithDigest_f() success");
+  /* Successful verification using key blob */
+  TEST_EQ(RSAVerifyBinaryWithDigest_f(keybuf, NULL, digest, sig, 0),
+          1, "RSAVerifyBinaryWithDigest_f() success with keyblob");
+
+  /* Invalid algorithm */
+  ResetMocks();
+  TEST_EQ(RSAVerifyBinaryWithDigest_f(NULL, &key, digest, sig, kNumAlgorithms),
+          0, "RSAVerifyBinaryWithDigest_f() invalid algorithm");
+  /* Must have either a key or a key blob */
+  ResetMocks();
+  TEST_EQ(RSAVerifyBinaryWithDigest_f(NULL, NULL, digest, sig, kNumAlgorithms),
+          0, "RSAVerifyBinaryWithDigest_f() no key or key_blob");
+  /* Wrong algorithm for key buffer (so key buffer is wrong size) */
+  ResetMocks();
+  TEST_EQ(RSAVerifyBinaryWithDigest_f(keybuf, NULL, digest, sig, 3),
+          0, "RSAVerifyBinaryWithDigest_f() wrong alg for key blob");
+
+  /* Simulate failed verification */
+  ResetMocks();
+  mock_rsaverify_retval = 0;
+  TEST_EQ(RSAVerifyBinaryWithDigest_f(NULL, &key, digest, sig, 0),
+          0, "RSAVerifyBinaryWithDigest_f() bad verify");
+}
+
+int main(int argc, char* argv[]) {
+  int error_code = 0;
+
+  /* Run tests */
+  TestUtils();
+  TestKeyFromBuffer();
+  TestVerifyBinary();
+  TestVerifyBinaryWithDigest();
+
+  if (!gTestSuccess)
+    error_code = 255;
+
+  return error_code;
+}
diff --git a/tests/test_common.c b/tests/test_common.c
index bb094e0f..20d8131b 100644
--- a/tests/test_common.c
+++ b/tests/test_common.c
@@ -55,6 +55,20 @@ int TEST_PTR_EQ(const void* result, const void* expected_result,
   }
 }
 
+int TEST_PTR_NEQ(const void* result, const void* not_expected_result,
+                char* testname) {
+  if (result != not_expected_result) {
+    fprintf(stderr, "%s Test " COL_GREEN "PASSED\n" COL_STOP, testname);
+    return 1;
+  } else {
+    fprintf(stderr, "%s Test " COL_RED "FAILED\n" COL_STOP, testname);
+    fprintf(stderr, "  Didn't expect 0x%lx, but got it\n",
+            (long)not_expected_result);
+    gTestSuccess = 0;
+    return 0;
+  }
+}
+
 int TEST_STR_EQ(const char* result, const char* expected_result,
                 char* testname) {
 
diff --git a/tests/test_common.h b/tests/test_common.h
index 47ffa2a4..7a64ed38 100644
--- a/tests/test_common.h
+++ b/tests/test_common.h
@@ -23,6 +23,12 @@ int TEST_NEQ(int result, int not_expected_result, char* testname);
 int TEST_PTR_EQ(const void* result, const void* expected_result,
                 char* testname);
 
+/* Return 1 if result pointer is not equal to expected_result pointer,
+ * else return 0.  Does not check pointer contents, only the pointer
+ * itself.  Also update the global gTestSuccess flag if test fails. */
+int TEST_PTR_NEQ(const void* result, const void* expected_result,
+                char* testname);
+
 /* Return 1 if result string is equal to expected_result string,
  * else return 0.  Also update the global gTestSuccess flag if test fails. */
 int TEST_STR_EQ(const char* result, const char* expected_result,
author	Randall Spangler <rspangler@chromium.org>	2011-08-30 16:44:44 -0700
committer	Randall Spangler <rspangler@chromium.org>	2011-09-01 09:04:46 -0700
commit	9c9606b7a6e2fe7a2d8147c0d61c2d3f5b98956d (patch)
tree	1e0a6381cd8f977dd124d3b095c856eea9a80652
parent	1a4d03dc902b03c236df01791c0db1f4489ae411 (diff)
download	vboot-9c9606b7a6e2fe7a2d8147c0d61c2d3f5b98956d.tar.gz