From 8b83a47f6a19b4d9f720d669d7b6fa209657af51 Mon Sep 17 00:00:00 2001 From: Nikos Mavrogiannopoulos Date: Wed, 9 May 2018 11:55:39 +0200 Subject: tests: added C++ sanity test Signed-off-by: Nikos Mavrogiannopoulos --- tests/Makefile.am | 13 ++- tests/cert-common.h | 76 +++++++++--------- tests/sanity-cpp.cpp | 219 +++++++++++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 269 insertions(+), 39 deletions(-) create mode 100644 tests/sanity-cpp.cpp diff --git a/tests/Makefile.am b/tests/Makefile.am index 18e1b7a939..d79898f5f1 100644 --- a/tests/Makefile.am +++ b/tests/Makefile.am @@ -421,7 +421,18 @@ TESTS_ENVIRONMENT += WINDOWS=1 endif -check_PROGRAMS = $(ctests) $(indirect_tests) +cpptests = +if ENABLE_CXX +if HAVE_CMOCKA + +cpptests += sanity-cpp + +sanity_cpp_SOURCES = sanity-cpp.cpp +sanity_cpp_LDADD = $(CMOCKA_LDADD) ../lib/libgnutlsxx.la +endif +endif + +check_PROGRAMS = $(cpptests) $(ctests) $(indirect_tests) TESTS = $(ctests) $(dist_check_SCRIPTS) TESTS_ENVIRONMENT += \ diff --git a/tests/cert-common.h b/tests/cert-common.h index d8106641b2..7f312988ff 100644 --- a/tests/cert-common.h +++ b/tests/cert-common.h @@ -71,11 +71,11 @@ static char ecc_cert[] = "-----END CERTIFICATE-----\n"; const gnutls_datum_t server_ecc_cert = - {(void *) ecc_cert, sizeof(ecc_cert)-1}; + {(unsigned char*) ecc_cert, sizeof(ecc_cert)-1}; const gnutls_datum_t server_ecc_key = - {(void *) ecc_key, sizeof(ecc_key)-1}; + {(unsigned char*) ecc_key, sizeof(ecc_key)-1}; /* A cert-key pair */ static char pem1_cert[] = @@ -111,11 +111,11 @@ static char pem1_key[] = "-----END RSA PRIVATE KEY-----\n"; const gnutls_datum_t cert_dat = - {(void *) pem1_cert, sizeof(pem1_cert)-1}; + {(unsigned char*) pem1_cert, sizeof(pem1_cert)-1}; const gnutls_datum_t key_dat = - {(void *) pem1_key, sizeof(pem1_key)-1}; + {(unsigned char*) pem1_key, sizeof(pem1_key)-1}; /* A server cert/key pair with CA */ @@ -398,7 +398,7 @@ static char dsa_key_pem[] = "jlvXN8gyPpbCPvRD2n2RAg+3vPjvj/dBAF6W3w8IltzqsukGgq/SLwIUS5/r/2ya\n" "AoNBXjeBjgCGMei2m8E=\n" "-----END DSA PRIVATE KEY-----\n"; -const gnutls_datum_t dsa_key = { (void*)dsa_key_pem, +const gnutls_datum_t dsa_key = { (unsigned char*)dsa_key_pem, sizeof(dsa_key_pem)-1 }; @@ -471,11 +471,11 @@ static char ca3_key_pem[] = "xkwfZG91IiOdKlKEddraZb3OppP1j7HsiyaYmwIMtsPc9wa2EsU=\n" "-----END RSA PRIVATE KEY-----\n"; -const gnutls_datum_t ca3_key = { (void*)ca3_key_pem, +const gnutls_datum_t ca3_key = { (unsigned char*)ca3_key_pem, sizeof(ca3_key_pem)-1 }; -const gnutls_datum_t ca3_cert = { (void*)ca3_cert_pem, +const gnutls_datum_t ca3_cert = { (unsigned char*)ca3_cert_pem, sizeof(ca3_cert_pem)-1 }; @@ -547,11 +547,11 @@ static char subca3_key_pem[] = "CLo/c/+F0N4e0F7P+haq+Ccj6MNM99HnuJALc1Ke9971YxrNfniGvA==\n" "-----END RSA PRIVATE KEY-----\n"; -const gnutls_datum_t subca3_key = { (void*)subca3_key_pem, +const gnutls_datum_t subca3_key = { (unsigned char*)subca3_key_pem, sizeof(subca3_key_pem)-1 }; -const gnutls_datum_t subca3_cert = { (void*)subca3_cert_pem, +const gnutls_datum_t subca3_cert = { (unsigned char*)subca3_cert_pem, sizeof(subca3_cert_pem)-1 }; @@ -675,15 +675,15 @@ static char cli_ca3_key_pem[] = "uiyti3689G0RW9DM/F+NeJkoEo0D15JweVkSfDcsVTdvNsbeA1Pzzds=\n" "-----END RSA PRIVATE KEY-----\n"; -const gnutls_datum_t cli_ca3_key = { (void*)cli_ca3_key_pem, +const gnutls_datum_t cli_ca3_key = { (unsigned char*)cli_ca3_key_pem, sizeof(cli_ca3_key_pem)-1 }; -const gnutls_datum_t cli_ca3_cert = { (void*)cli_ca3_cert_pem, +const gnutls_datum_t cli_ca3_cert = { (unsigned char*)cli_ca3_cert_pem, sizeof(cli_ca3_cert_pem)-1 }; -const gnutls_datum_t cli_ca3_cert_chain = { (void*)cli_ca3_cert_chain_pem, +const gnutls_datum_t cli_ca3_cert_chain = { (unsigned char*)cli_ca3_cert_chain_pem, sizeof(cli_ca3_cert_chain_pem)-1 }; @@ -728,11 +728,11 @@ static char clidsa_ca3_key_pem[] = "FgAdB5hhtag7oTw45a72\n" "-----END DSA PRIVATE KEY-----\n"; -const gnutls_datum_t clidsa_ca3_key = { (void*)clidsa_ca3_key_pem, +const gnutls_datum_t clidsa_ca3_key = { (unsigned char*)clidsa_ca3_key_pem, sizeof(clidsa_ca3_key_pem)-1 }; -const gnutls_datum_t clidsa_ca3_cert = { (void*)clidsa_ca3_cert_pem, +const gnutls_datum_t clidsa_ca3_cert = { (unsigned char*)clidsa_ca3_cert_pem, sizeof(clidsa_ca3_cert_pem)-1 }; @@ -743,7 +743,7 @@ static char server_ca3_ecc_key_pem[] = "GK04pl/ReivZAwibv+85lpT4sm/9RBVhLZM=\n" "-----END EC PRIVATE KEY-----\n"; -const gnutls_datum_t server_ca3_ecc_key = { (void*)server_ca3_ecc_key_pem, +const gnutls_datum_t server_ca3_ecc_key = { (unsigned char*)server_ca3_ecc_key_pem, sizeof(server_ca3_ecc_key_pem)-1 }; @@ -788,7 +788,7 @@ static char server_ca3_key_pem[] = "r6wql68K+fJ1W38b+ENQ46bZZMvAh8z4MZyzBvS8M/grD0WBBwrWLA==\n" "-----END RSA PRIVATE KEY-----\n"; -const gnutls_datum_t server_ca3_key = { (void*)server_ca3_key_pem, +const gnutls_datum_t server_ca3_key = { (unsigned char*)server_ca3_key_pem, sizeof(server_ca3_key_pem)-1 }; @@ -821,7 +821,7 @@ static char server_ca3_rsa_pss_key_pem[] = "ODwZlaKK2fjp9xr2dNpYjRqyEb1gkC9FJMaxab9OAf+AoQifxncv\n" "-----END RSA PRIVATE KEY-----\n"; -const gnutls_datum_t server_ca3_rsa_pss_key = { (void*)server_ca3_rsa_pss_key_pem, +const gnutls_datum_t server_ca3_rsa_pss_key = { (unsigned char*)server_ca3_rsa_pss_key_pem, sizeof(server_ca3_rsa_pss_key_pem)-1 }; @@ -851,7 +851,7 @@ static char server_ca3_rsa_pss_cert_pem[] = "dPVrVe13NnAP8tV4a8PisLaz9fHLnA==\n" "-----END CERTIFICATE-----\n"; -const gnutls_datum_t server_ca3_rsa_pss_cert = { (void*)server_ca3_rsa_pss_cert_pem, +const gnutls_datum_t server_ca3_rsa_pss_cert = { (unsigned char*)server_ca3_rsa_pss_cert_pem, sizeof(server_ca3_rsa_pss_cert_pem)-1 }; @@ -886,7 +886,7 @@ static char server_ca3_rsa_pss2_key_pem[] = "nQyUF7m3FUJjavm46KJIhw==\n" "-----END PRIVATE KEY-----\n"; -const gnutls_datum_t server_ca3_rsa_pss2_key = { (void*)server_ca3_rsa_pss2_key_pem, +const gnutls_datum_t server_ca3_rsa_pss2_key = { (unsigned char*)server_ca3_rsa_pss2_key_pem, sizeof(server_ca3_rsa_pss2_key_pem)-1 }; @@ -915,7 +915,7 @@ static char server_ca3_rsa_pss2_cert_pem[] = "D8aQbKGJzzih56a2wwc0ZqA0ilGm\n" "-----END CERTIFICATE-----\n"; -const gnutls_datum_t server_ca3_rsa_pss2_cert = { (void*)server_ca3_rsa_pss2_cert_pem, +const gnutls_datum_t server_ca3_rsa_pss2_cert = { (unsigned char*)server_ca3_rsa_pss2_cert_pem, sizeof(server_ca3_rsa_pss2_cert_pem)-1 }; @@ -945,7 +945,7 @@ static char cli_ca3_rsa_pss_cert_pem[] = "vXOeamGsi2jyiC5LbreWecbMnzi3vQ==\n" "-----END CERTIFICATE-----\n"; -const gnutls_datum_t cli_ca3_rsa_pss_cert = { (void*)cli_ca3_rsa_pss_cert_pem, +const gnutls_datum_t cli_ca3_rsa_pss_cert = { (unsigned char*)cli_ca3_rsa_pss_cert_pem, sizeof(cli_ca3_rsa_pss_cert_pem)-1 }; @@ -957,7 +957,7 @@ static char server_ca3_eddsa_key_pem[] = "MC4CAQAwBQYDK2VwBCIEIBypI9w1qP3WLaiYuWB7zhA99GTG5UsKZVZqPHNlUaIv\n" "-----END PRIVATE KEY-----\n"; -const gnutls_datum_t server_ca3_eddsa_key = { (void*)server_ca3_eddsa_key_pem, +const gnutls_datum_t server_ca3_eddsa_key = { (unsigned char*)server_ca3_eddsa_key_pem, sizeof(server_ca3_eddsa_key_pem)-1 }; @@ -971,7 +971,7 @@ static char server_ca3_eddsa_cert_pem[] = "KKn/PNiAq4fPNEupyzC3AzE1xLzKLRArAFFDDUjPCwy3OR4js3MF\n" "-----END CERTIFICATE-----\n"; -const gnutls_datum_t server_ca3_eddsa_cert = { (void*)server_ca3_eddsa_cert_pem, +const gnutls_datum_t server_ca3_eddsa_cert = { (unsigned char*)server_ca3_eddsa_cert_pem, sizeof(server_ca3_eddsa_cert_pem)-1 }; @@ -1055,13 +1055,13 @@ static char server_localhost6_ca3_cert_chain_pem[] = "-----END CERTIFICATE-----\n"; -const gnutls_datum_t server_ca3_localhost6_cert = { (void*)server_localhost6_ca3_cert_pem, +const gnutls_datum_t server_ca3_localhost6_cert = { (unsigned char*)server_localhost6_ca3_cert_pem, sizeof(server_localhost6_ca3_cert_pem)-1 }; const gnutls_datum_t server_ca3_localhost6_cert_chain = { - (void*)server_localhost6_ca3_cert_chain_pem, + (unsigned char*)server_localhost6_ca3_cert_chain_pem, sizeof(server_localhost6_ca3_cert_chain_pem)-1 }; @@ -1143,13 +1143,13 @@ static char server_ipaddr_ca3_cert_chain_pem[] = "-----END CERTIFICATE-----\n"; -const gnutls_datum_t server_ca3_ipaddr_cert = { (void*)server_ipaddr_ca3_cert_pem, +const gnutls_datum_t server_ca3_ipaddr_cert = { (unsigned char*)server_ipaddr_ca3_cert_pem, sizeof(server_ipaddr_ca3_cert_pem)-1 }; const gnutls_datum_t server_ca3_ipaddr_cert_chain = { - (void*)server_ipaddr_ca3_cert_chain_pem, + (unsigned char*)server_ipaddr_ca3_cert_chain_pem, sizeof(server_ipaddr_ca3_cert_chain_pem)-1 }; @@ -1182,7 +1182,7 @@ static char server_localhost_utf8_ca3_cert_pem[] = "PexWtASNmu1xcO13LdgN4Oa1OL4P4U9TQVwoCpkjlDSVNLqBC0N5kPmGkOY=\n" "-----END CERTIFICATE-----\n"; -const gnutls_datum_t server_ca3_localhost_utf8_cert = { (void*)server_localhost_utf8_ca3_cert_pem, +const gnutls_datum_t server_ca3_localhost_utf8_cert = { (unsigned char*)server_localhost_utf8_ca3_cert_pem, sizeof(server_localhost_utf8_ca3_cert_pem)-1 }; @@ -1214,7 +1214,7 @@ static char server_localhost_inv_utf8_ca3_cert_pem[] = "Efwe6rFJaNbKv9C9tWpPIPHRk/YkUIe29VUQR2m7UUpToBca\n" "-----END CERTIFICATE-----\n"; -const gnutls_datum_t server_ca3_localhost_inv_utf8_cert = { (void*)server_localhost_inv_utf8_ca3_cert_pem, +const gnutls_datum_t server_ca3_localhost_inv_utf8_cert = { (unsigned char*)server_localhost_inv_utf8_ca3_cert_pem, sizeof(server_localhost_inv_utf8_ca3_cert_pem)-1 }; @@ -1239,7 +1239,7 @@ static char server_localhost_ca3_ecc_cert_pem[] = "Li9LPzU70EyX6WF+9FM45E4/Gt9Oh8btrYyjbyH/K2VI8qPRz5cW\n" "-----END CERTIFICATE-----\n"; -const gnutls_datum_t server_ca3_localhost_ecc_cert = { (void*)server_localhost_ca3_ecc_cert_pem, +const gnutls_datum_t server_ca3_localhost_ecc_cert = { (unsigned char*)server_localhost_ca3_ecc_cert_pem, sizeof(server_localhost_ca3_ecc_cert_pem)-1}; /* shares server_ca3 key */ @@ -1379,17 +1379,17 @@ static char server_localhost_ca3_cert_chain_pem[] = #define server_ca3_cert server_ca3_localhost_cert #define server_ca3_cert_chain server_ca3_localhost_cert_chain -const gnutls_datum_t server_ca3_localhost_cert = { (void*)server_localhost_ca3_cert_pem, +const gnutls_datum_t server_ca3_localhost_cert = { (unsigned char*)server_localhost_ca3_cert_pem, sizeof(server_localhost_ca3_cert_pem)-1}; -const gnutls_datum_t server_ca3_localhost_rsa_decrypt_cert = { (void*)server_localhost_ca3_rsa_decrypt_cert_pem, +const gnutls_datum_t server_ca3_localhost_rsa_decrypt_cert = { (unsigned char*)server_localhost_ca3_rsa_decrypt_cert_pem, sizeof(server_localhost_ca3_rsa_decrypt_cert_pem)-1}; -const gnutls_datum_t server_ca3_localhost_rsa_sign_cert = { (void*)server_localhost_ca3_rsa_sign_cert_pem, +const gnutls_datum_t server_ca3_localhost_rsa_sign_cert = { (unsigned char*)server_localhost_ca3_rsa_sign_cert_pem, sizeof(server_localhost_ca3_rsa_sign_cert_pem)-1}; const gnutls_datum_t server_ca3_localhost_cert_chain = { - (void*)server_localhost_ca3_cert_chain_pem, + (unsigned char*)server_localhost_ca3_cert_chain_pem, sizeof(server_localhost_ca3_cert_chain_pem)-1 }; @@ -1415,7 +1415,7 @@ static char server_localhost_insecure_ca3_cert_pem[] = "F92lL9akoGYmyehqQHeRQsrVRKcCOiv8lgVF\n" "-----END CERTIFICATE-----\n"; -const gnutls_datum_t server_ca3_localhost_insecure_cert = { (void*)server_localhost_insecure_ca3_cert_pem, +const gnutls_datum_t server_ca3_localhost_insecure_cert = { (unsigned char*)server_localhost_insecure_ca3_cert_pem, sizeof(server_localhost_insecure_ca3_cert_pem)-1 }; @@ -1433,7 +1433,7 @@ static char server_ca3_localhost_insecure_key_pem[] = "dD2lxHfq5Q1QxCSjl8EnBnjnbFJN9WmK9ztkK00Avg==\n" "-----END RSA PRIVATE KEY-----\n"; -const gnutls_datum_t server_ca3_localhost_insecure_key = { (void*)server_ca3_localhost_insecure_key_pem, +const gnutls_datum_t server_ca3_localhost_insecure_key = { (unsigned char*)server_ca3_localhost_insecure_key_pem, sizeof(server_ca3_localhost_insecure_key_pem)-1 }; @@ -1462,7 +1462,7 @@ static char unknown_ca_cert_pem[] = "nva6xGbu1R8UP4+fXCOFdiVixHEQR5k+mqd65vGGxovALAfY\n" "-----END CERTIFICATE-----\n"; -const gnutls_datum_t unknown_ca_cert = { (void*)unknown_ca_cert_pem, +const gnutls_datum_t unknown_ca_cert = { (unsigned char*)unknown_ca_cert_pem, sizeof(unknown_ca_cert_pem)-1 }; @@ -1563,7 +1563,7 @@ static const char server_ca3_pkcs12_pem[] = "BAjXfJCHoHZI2QICCAA=\n" "-----END PKCS12-----\n"; -const gnutls_datum_t server_ca3_pkcs12 = { (void*)server_ca3_pkcs12_pem, +const gnutls_datum_t server_ca3_pkcs12 = { (unsigned char*)server_ca3_pkcs12_pem, sizeof(server_ca3_pkcs12_pem)-1 }; diff --git a/tests/sanity-cpp.cpp b/tests/sanity-cpp.cpp new file mode 100644 index 0000000000..6664c5cd28 --- /dev/null +++ b/tests/sanity-cpp.cpp @@ -0,0 +1,219 @@ +/* + * Copyright (C) 2018 Red Hat, Inc. + * + * Author: Nikos Mavrogiannopoulos + * + * This file is part of GnuTLS. + * + * GnuTLS is free software; you can redistribute it and/or modify it + * under the terms of the GNU General Public License as published by + * the Free Software Foundation; either version 3 of the License, or + * (at your option) any later version. + * + * GnuTLS is distributed in the hope that it will be useful, but + * WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU + * General Public License for more details. + * + * You should have received a copy of the GNU Lesser General Public License + * along with this program. If not, see + */ + +#ifdef HAVE_CONFIG_H +#include +#endif + +#include +#include +#include + +extern "C" { +#include +#include +#include +#include +#include +#include "cert-common.h" +#include +#include +#include +} + +/* This is a basic test for C++ API */ +static void tls_log_func(int level, const char *str) +{ + std::cerr << level << "| " << str << "\n"; +} + +static char to_server[64 * 1024]; +static size_t to_server_len = 0; + +static char to_client[64 * 1024]; +static size_t to_client_len = 0; + +static ssize_t +client_push(gnutls_transport_ptr_t tr, const void *data, size_t len) +{ + size_t newlen; + + len = MIN(len, sizeof(to_server) - to_server_len); + + newlen = to_server_len + len; + memcpy(to_server + to_server_len, data, len); + to_server_len = newlen; + + return len; +} + +static ssize_t +client_pull(gnutls_transport_ptr_t tr, void *data, size_t len) +{ + if (to_client_len == 0) { + errno = EAGAIN; + return -1; + } + + len = MIN(len, to_client_len); + + memcpy(data, to_client, len); + + memmove(to_client, to_client + len, to_client_len - len); + to_client_len -= len; + return len; +} + +static ssize_t +server_pull(gnutls_transport_ptr_t tr, void *data, size_t len) +{ + if (to_server_len == 0) { + errno = EAGAIN; + return -1; + } + + len = MIN(len, to_server_len); + memcpy(data, to_server, len); + + memmove(to_server, to_server + len, to_server_len - len); + to_server_len -= len; + + return len; +} + +static ssize_t +server_push(gnutls_transport_ptr_t tr, const void *data, size_t len) +{ + size_t newlen; + + len = MIN(len, sizeof(to_client) - to_client_len); + + newlen = to_client_len + len; + memcpy(to_client + to_client_len, data, len); + to_client_len = newlen; + + return len; +} + +inline static void reset_buffers(void) +{ + to_server_len = 0; + to_client_len = 0; +} + +#define MSG "test message" +static void test_handshake(void **glob_state, const char *prio) +{ + gnutls::certificate_credentials serverx509cred; + gnutls::server_session server; + int sret, cret; + gnutls::certificate_credentials clientx509cred; + gnutls::client_session client; + char buffer[64]; + int ret; + + /* General init. */ + reset_buffers(); + gnutls_global_set_log_function(tls_log_func); + + try { + serverx509cred.set_x509_key(server_cert, server_key, GNUTLS_X509_FMT_PEM); + server.set_credentials(serverx509cred); + + server.set_priority(prio, NULL); + + server.set_transport_push_function(server_push); + server.set_transport_pull_function(server_pull); + + client.set_priority(prio, NULL); + client.set_credentials(clientx509cred); + + client.set_transport_push_function(client_push); + client.set_transport_pull_function(client_pull); + } + catch (std::exception &ex) { + std::cerr << "Exception caught: " << ex.what() << std::endl; + } + + sret = cret = GNUTLS_E_AGAIN; + + do { + if (cret == GNUTLS_E_AGAIN) { + try { + cret = client.handshake(); + } catch(gnutls::exception &ex) { + if (ex.get_code() == GNUTLS_E_INTERRUPTED || ex.get_code() == GNUTLS_E_AGAIN) + cret = GNUTLS_E_AGAIN; + } + } + if (sret == GNUTLS_E_AGAIN) { + try { + sret = server.handshake(); + } catch(gnutls::exception &ex) { + if (ex.get_code() == GNUTLS_E_INTERRUPTED || ex.get_code() == GNUTLS_E_AGAIN) + sret = GNUTLS_E_AGAIN; + } + } + } + while ((cret == GNUTLS_E_AGAIN || (cret == 0 && sret == GNUTLS_E_AGAIN)) && + (sret == GNUTLS_E_AGAIN || (sret == 0 && cret == GNUTLS_E_AGAIN))); + + try { + client.send(MSG, sizeof(MSG)-1); + ret = server.recv(buffer, sizeof(buffer)); + + assert(ret == sizeof(MSG)-1); + assert(memcmp(buffer, MSG, sizeof(MSG)-1) == 0); + + client.bye(GNUTLS_SHUT_WR); + server.bye(GNUTLS_SHUT_WR); + } + catch (std::exception &ex) { + std::cerr << "Exception caught: " << ex.what() << std::endl; + } + + return; +} + +static void tls_handshake(void **glob_state) +{ + test_handshake(glob_state, "NORMAL"); +} + +static void tls12_handshake(void **glob_state) +{ + test_handshake(glob_state, "NORMAL:-VERS-TLS-ALL:+VERS-TLS1.2"); +} + +static void tls13_handshake(void **glob_state) +{ + test_handshake(glob_state, "NORMAL:-VERS-TLS-ALL:+VERS-TLS1.3"); +} + +int main(void) +{ + const struct CMUnitTest tests[] = { + cmocka_unit_test(tls_handshake), + cmocka_unit_test(tls13_handshake), + cmocka_unit_test(tls12_handshake) + }; + return cmocka_run_group_tests(tests, NULL, NULL); +} -- cgit v1.2.1