| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 1 | /* BEGIN_HEADER */ | 
|  | 2 | #include <errno.h> | 
|  | 3 | #include <stdlib.h> | 
|  | 4 | #include <limits.h> | 
|  | 5 |  | 
|  | 6 | #include "mbedtls/bignum.h" | 
|  | 7 | #include "mbedtls/asn1.h" | 
|  | 8 | #if defined(MBEDTLS_ASN1_WRITE_C) | 
|  | 9 | #include "mbedtls/asn1write.h" | 
|  | 10 | #endif | 
|  | 11 |  | 
|  | 12 | #define ERR_PARSE_INCONSISTENCY INT_MAX | 
|  | 13 |  | 
|  | 14 | static int nested_parse( unsigned char **const p, | 
|  | 15 | const unsigned char *const end ) | 
|  | 16 | { | 
|  | 17 | int ret; | 
|  | 18 | size_t len = 0; | 
|  | 19 | size_t len2 = 0; | 
|  | 20 | unsigned char *const start = *p; | 
|  | 21 | unsigned char *content_start; | 
|  | 22 | unsigned char tag; | 
|  | 23 |  | 
|  | 24 | /* First get the length, skipping over the tag. */ | 
|  | 25 | content_start = start + 1; | 
|  | 26 | ret = mbedtls_asn1_get_len( &content_start, end, &len ); | 
|  | 27 | TEST_ASSERT( content_start <= end ); | 
|  | 28 | if( ret != 0 ) | 
|  | 29 | return( ret ); | 
|  | 30 |  | 
|  | 31 | /* Since we have a valid element start (tag and length), retrieve and | 
|  | 32 | * check the tag. */ | 
|  | 33 | tag = start[0]; | 
|  | 34 | TEST_EQUAL( mbedtls_asn1_get_tag( p, end, &len2, tag ^ 1 ), | 
|  | 35 | MBEDTLS_ERR_ASN1_UNEXPECTED_TAG ); | 
|  | 36 | *p = start; | 
|  | 37 | TEST_EQUAL( mbedtls_asn1_get_tag( p, end, &len2, tag ), 0 ); | 
|  | 38 | TEST_EQUAL( len, len2 ); | 
|  | 39 | TEST_ASSERT( *p == content_start ); | 
|  | 40 | *p = content_start; | 
|  | 41 |  | 
|  | 42 | switch( tag & 0x1f ) | 
|  | 43 | { | 
|  | 44 | case MBEDTLS_ASN1_BOOLEAN: | 
|  | 45 | { | 
|  | 46 | int val = -257; | 
|  | 47 | *p = start; | 
|  | 48 | ret = mbedtls_asn1_get_bool( p, end, &val ); | 
|  | 49 | if( ret == 0 ) | 
|  | 50 | TEST_ASSERT( val == 0 || val == 1 ); | 
|  | 51 | break; | 
|  | 52 | } | 
|  | 53 |  | 
|  | 54 | case MBEDTLS_ASN1_INTEGER: | 
|  | 55 | { | 
|  | 56 | #if defined(MBEDTLS_BIGNUM_C) | 
|  | 57 | mbedtls_mpi mpi; | 
|  | 58 | mbedtls_mpi_init( &mpi ); | 
|  | 59 | *p = start; | 
|  | 60 | ret = mbedtls_asn1_get_mpi( p, end, &mpi ); | 
|  | 61 | mbedtls_mpi_free( &mpi ); | 
| Gilles Peskine | 03c165e | 2019-10-10 19:15:18 +0200 | [diff] [blame] | 62 | #else | 
|  | 63 | *p = start + 1; | 
|  | 64 | ret = mbedtls_asn1_get_len( p, end, &len ); | 
|  | 65 | *p += len; | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 66 | #endif | 
|  | 67 | /* If we're sure that the number fits in an int, also | 
|  | 68 | * call mbedtls_asn1_get_int(). */ | 
|  | 69 | if( ret == 0 && len < sizeof( int ) ) | 
|  | 70 | { | 
|  | 71 | int val = -257; | 
|  | 72 | unsigned char *q = start; | 
|  | 73 | ret = mbedtls_asn1_get_int( &q, end, &val ); | 
|  | 74 | TEST_ASSERT( *p == q ); | 
|  | 75 | } | 
|  | 76 | break; | 
|  | 77 | } | 
|  | 78 |  | 
|  | 79 | case MBEDTLS_ASN1_BIT_STRING: | 
|  | 80 | { | 
|  | 81 | mbedtls_asn1_bitstring bs; | 
|  | 82 | *p = start; | 
|  | 83 | ret = mbedtls_asn1_get_bitstring( p, end, &bs ); | 
|  | 84 | break; | 
|  | 85 | } | 
|  | 86 |  | 
|  | 87 | case MBEDTLS_ASN1_SEQUENCE: | 
|  | 88 | { | 
|  | 89 | while( *p <= end && *p < content_start + len && ret == 0 ) | 
|  | 90 | ret = nested_parse( p, content_start + len ); | 
|  | 91 | break; | 
|  | 92 | } | 
|  | 93 |  | 
|  | 94 | case MBEDTLS_ASN1_OCTET_STRING: | 
|  | 95 | case MBEDTLS_ASN1_NULL: | 
|  | 96 | case MBEDTLS_ASN1_OID: | 
|  | 97 | case MBEDTLS_ASN1_UTF8_STRING: | 
|  | 98 | case MBEDTLS_ASN1_SET: | 
|  | 99 | case MBEDTLS_ASN1_PRINTABLE_STRING: | 
|  | 100 | case MBEDTLS_ASN1_T61_STRING: | 
|  | 101 | case MBEDTLS_ASN1_IA5_STRING: | 
|  | 102 | case MBEDTLS_ASN1_UTC_TIME: | 
|  | 103 | case MBEDTLS_ASN1_GENERALIZED_TIME: | 
|  | 104 | case MBEDTLS_ASN1_UNIVERSAL_STRING: | 
|  | 105 | case MBEDTLS_ASN1_BMP_STRING: | 
|  | 106 | default: | 
|  | 107 | /* No further testing implemented for this tag. */ | 
|  | 108 | *p += len; | 
|  | 109 | return( 0 ); | 
|  | 110 | } | 
|  | 111 |  | 
|  | 112 | TEST_ASSERT( *p <= end ); | 
|  | 113 | return( ret ); | 
|  | 114 |  | 
|  | 115 | exit: | 
|  | 116 | return( ERR_PARSE_INCONSISTENCY ); | 
|  | 117 | } | 
|  | 118 |  | 
|  | 119 | int get_len_step( const data_t *input, size_t buffer_size, | 
|  | 120 | size_t actual_length ) | 
|  | 121 | { | 
|  | 122 | unsigned char *buf = NULL; | 
|  | 123 | unsigned char *p = NULL; | 
|  | 124 | size_t parsed_length; | 
|  | 125 | int ret; | 
|  | 126 |  | 
|  | 127 | test_set_step( buffer_size ); | 
|  | 128 | /* Allocate a new buffer of exactly the length to parse each time. | 
|  | 129 | * This gives memory sanitizers a chance to catch buffer overreads. */ | 
|  | 130 | if( buffer_size == 0 ) | 
|  | 131 | { | 
|  | 132 | ASSERT_ALLOC( buf, 1 ); | 
|  | 133 | p = buf + 1; | 
|  | 134 | } | 
|  | 135 | else | 
|  | 136 | { | 
| Gilles Peskine | 2cd8ecc | 2019-03-04 17:13:43 +0100 | [diff] [blame] | 137 | ASSERT_ALLOC_WEAK( buf, buffer_size ); | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 138 | if( buffer_size > input->len ) | 
|  | 139 | { | 
|  | 140 | memcpy( buf, input->x, input->len ); | 
|  | 141 | memset( buf + input->len, 'A', buffer_size - input->len ); | 
|  | 142 | } | 
|  | 143 | else | 
|  | 144 | { | 
|  | 145 | memcpy( buf, input->x, buffer_size ); | 
|  | 146 | } | 
|  | 147 | p = buf; | 
|  | 148 | } | 
|  | 149 |  | 
|  | 150 | ret = mbedtls_asn1_get_len( &p, buf + buffer_size, &parsed_length ); | 
|  | 151 |  | 
|  | 152 | if( buffer_size >= input->len + actual_length ) | 
|  | 153 | { | 
|  | 154 | TEST_EQUAL( ret, 0 ); | 
|  | 155 | TEST_ASSERT( p == buf + input->len ); | 
|  | 156 | TEST_EQUAL( parsed_length, actual_length ); | 
|  | 157 | } | 
|  | 158 | else | 
|  | 159 | { | 
|  | 160 | TEST_EQUAL( ret, MBEDTLS_ERR_ASN1_OUT_OF_DATA ); | 
|  | 161 | } | 
|  | 162 | mbedtls_free( buf ); | 
|  | 163 | return( 1 ); | 
|  | 164 |  | 
|  | 165 | exit: | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 166 | mbedtls_free( buf ); | 
|  | 167 | return( 0 ); | 
|  | 168 | } | 
|  | 169 |  | 
|  | 170 | /* END_HEADER */ | 
|  | 171 |  | 
|  | 172 | /* BEGIN_DEPENDENCIES | 
|  | 173 | * depends_on:MBEDTLS_ASN1_PARSE_C | 
|  | 174 | * END_DEPENDENCIES | 
|  | 175 | */ | 
|  | 176 |  | 
|  | 177 | /* BEGIN_CASE */ | 
|  | 178 | void parse_prefixes( const data_t *input, | 
|  | 179 | int actual_length_arg, | 
|  | 180 | int last_result ) | 
|  | 181 | { | 
|  | 182 | size_t actual_length = actual_length_arg; | 
|  | 183 | unsigned char *buf = NULL; | 
|  | 184 | unsigned char *p = NULL; | 
|  | 185 | size_t buffer_size; | 
|  | 186 | int ret; | 
|  | 187 |  | 
|  | 188 | for( buffer_size = 1; buffer_size <= input->len; buffer_size++ ) | 
|  | 189 | { | 
|  | 190 | test_set_step( buffer_size ); | 
|  | 191 | /* Allocate a new buffer of exactly the length to parse each time. | 
|  | 192 | * This gives memory sanitizers a chance to catch buffer overreads. */ | 
|  | 193 | ASSERT_ALLOC( buf, buffer_size ); | 
|  | 194 | memcpy( buf, input->x, buffer_size ); | 
|  | 195 | p = buf; | 
|  | 196 | ret = nested_parse( &p, buf + buffer_size ); | 
|  | 197 | if( ret == ERR_PARSE_INCONSISTENCY ) | 
|  | 198 | goto exit; | 
|  | 199 | if( actual_length > 0 && buffer_size >= actual_length ) | 
|  | 200 | { | 
|  | 201 | TEST_EQUAL( ret, last_result ); | 
|  | 202 | if( ret == 0 ) | 
|  | 203 | TEST_ASSERT( p == buf + actual_length ); | 
|  | 204 | } | 
|  | 205 | else | 
|  | 206 | { | 
|  | 207 | TEST_EQUAL( ret, MBEDTLS_ERR_ASN1_OUT_OF_DATA ); | 
|  | 208 | } | 
|  | 209 | mbedtls_free( buf ); | 
|  | 210 | buf = NULL; | 
|  | 211 | } | 
|  | 212 |  | 
|  | 213 | exit: | 
|  | 214 | mbedtls_free( buf ); | 
|  | 215 | } | 
|  | 216 | /* END_CASE */ | 
|  | 217 |  | 
|  | 218 | /* BEGIN_CASE */ | 
|  | 219 | void get_len( const data_t *input, int actual_length_arg ) | 
|  | 220 | { | 
|  | 221 | size_t actual_length = actual_length_arg; | 
|  | 222 | size_t buffer_size; | 
|  | 223 |  | 
|  | 224 | for( buffer_size = 1; buffer_size <= input->len + 1; buffer_size++ ) | 
|  | 225 | { | 
|  | 226 | if( ! get_len_step( input, buffer_size, actual_length ) ) | 
|  | 227 | goto exit; | 
|  | 228 | } | 
|  | 229 | if( ! get_len_step( input, input->len + actual_length - 1, actual_length ) ) | 
|  | 230 | goto exit; | 
|  | 231 | if( ! get_len_step( input, input->len + actual_length, actual_length ) ) | 
|  | 232 | goto exit; | 
|  | 233 | } | 
|  | 234 | /* END_CASE */ | 
|  | 235 |  | 
|  | 236 | /* BEGIN_CASE */ | 
|  | 237 | void get_boolean( const data_t *input, | 
|  | 238 | int expected_value, int expected_result ) | 
|  | 239 | { | 
|  | 240 | unsigned char *p = input->x; | 
|  | 241 | int val; | 
|  | 242 | int ret; | 
|  | 243 | ret = mbedtls_asn1_get_bool( &p, input->x + input->len, &val ); | 
|  | 244 | TEST_EQUAL( ret, expected_result ); | 
|  | 245 | if( expected_result == 0 ) | 
|  | 246 | { | 
|  | 247 | TEST_EQUAL( val, expected_value ); | 
|  | 248 | TEST_ASSERT( p == input->x + input->len ); | 
|  | 249 | } | 
|  | 250 | } | 
|  | 251 | /* END_CASE */ | 
|  | 252 |  | 
|  | 253 | /* BEGIN_CASE */ | 
| Gilles Peskine | 321adb2 | 2019-10-10 19:18:21 +0200 | [diff] [blame] | 254 | void empty_integer( const data_t *input ) | 
|  | 255 | { | 
|  | 256 | unsigned char *p; | 
|  | 257 | #if defined(MBEDTLS_BIGNUM_C) | 
|  | 258 | mbedtls_mpi actual_mpi; | 
|  | 259 | #endif | 
|  | 260 | int val; | 
|  | 261 |  | 
|  | 262 | #if defined(MBEDTLS_BIGNUM_C) | 
|  | 263 | mbedtls_mpi_init( & actual_mpi ); | 
|  | 264 | #endif | 
|  | 265 |  | 
|  | 266 | /* An INTEGER with no content is not valid. */ | 
|  | 267 | p = input->x; | 
|  | 268 | TEST_EQUAL( mbedtls_asn1_get_int( &p, input->x + input->len, &val ), | 
|  | 269 | MBEDTLS_ERR_ASN1_INVALID_LENGTH ); | 
|  | 270 |  | 
|  | 271 | #if defined(MBEDTLS_BIGNUM_C) | 
|  | 272 | /* INTEGERs are sometimes abused as bitstrings, so the library accepts | 
|  | 273 | * an INTEGER with empty content and gives it the value 0. */ | 
|  | 274 | p = input->x; | 
|  | 275 | TEST_EQUAL( mbedtls_asn1_get_mpi( &p, input->x + input->len, &actual_mpi ), | 
|  | 276 | 0 ); | 
|  | 277 | TEST_EQUAL( mbedtls_mpi_cmp_int( &actual_mpi, 0 ), 0 ); | 
|  | 278 | #endif | 
|  | 279 |  | 
|  | 280 | exit: | 
|  | 281 | #if defined(MBEDTLS_BIGNUM_C) | 
|  | 282 | mbedtls_mpi_free( &actual_mpi ); | 
|  | 283 | #endif | 
|  | 284 | /*empty cleanup in some configurations*/ ; | 
|  | 285 | } | 
|  | 286 | /* END_CASE */ | 
|  | 287 |  | 
|  | 288 | /* BEGIN_CASE */ | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 289 | void get_integer( const data_t *input, | 
|  | 290 | const char *expected_hex, int expected_result ) | 
|  | 291 | { | 
|  | 292 | unsigned char *p; | 
|  | 293 | #if defined(MBEDTLS_BIGNUM_C) | 
|  | 294 | mbedtls_mpi expected_mpi; | 
|  | 295 | mbedtls_mpi actual_mpi; | 
| Gilles Peskine | 970dcbf | 2019-10-10 19:21:12 +0200 | [diff] [blame] | 296 | mbedtls_mpi complement; | 
| Gilles Peskine | 03c165e | 2019-10-10 19:15:18 +0200 | [diff] [blame] | 297 | int expected_result_for_mpi = expected_result; | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 298 | #endif | 
|  | 299 | long expected_value; | 
|  | 300 | int expected_result_for_int = expected_result; | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 301 | int val; | 
|  | 302 | int ret; | 
|  | 303 |  | 
|  | 304 | #if defined(MBEDTLS_BIGNUM_C) | 
|  | 305 | mbedtls_mpi_init( &expected_mpi ); | 
|  | 306 | mbedtls_mpi_init( &actual_mpi ); | 
| Gilles Peskine | 970dcbf | 2019-10-10 19:21:12 +0200 | [diff] [blame] | 307 | mbedtls_mpi_init( &complement ); | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 308 | #endif | 
|  | 309 |  | 
|  | 310 | errno = 0; | 
|  | 311 | expected_value = strtol( expected_hex, NULL, 16 ); | 
|  | 312 | if( expected_result == 0 && | 
|  | 313 | ( errno == ERANGE | 
|  | 314 | #if LONG_MAX > INT_MAX | 
|  | 315 | || expected_value > INT_MAX || expected_value < INT_MIN | 
|  | 316 | #endif | 
|  | 317 | ) ) | 
|  | 318 | { | 
| Gilles Peskine | 970dcbf | 2019-10-10 19:21:12 +0200 | [diff] [blame] | 319 | /* The library returns the dubious error code INVALID_LENGTH | 
|  | 320 | * for integers that are out of range. */ | 
|  | 321 | expected_result_for_int = MBEDTLS_ERR_ASN1_INVALID_LENGTH; | 
|  | 322 | } | 
|  | 323 | if( expected_result == 0 && expected_value < 0 ) | 
|  | 324 | { | 
|  | 325 | /* The library does not support negative INTEGERs and | 
|  | 326 | * returns the dubious error code INVALID_LENGTH. | 
|  | 327 | * Test that we preserve the historical behavior. If we | 
|  | 328 | * decide to change the behavior, we'll also change this test. */ | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 329 | expected_result_for_int = MBEDTLS_ERR_ASN1_INVALID_LENGTH; | 
|  | 330 | } | 
|  | 331 |  | 
|  | 332 | p = input->x; | 
|  | 333 | ret = mbedtls_asn1_get_int( &p, input->x + input->len, &val ); | 
|  | 334 | TEST_EQUAL( ret, expected_result_for_int ); | 
|  | 335 | if( ret == 0 ) | 
|  | 336 | { | 
|  | 337 | TEST_EQUAL( val, expected_value ); | 
|  | 338 | TEST_ASSERT( p == input->x + input->len ); | 
|  | 339 | } | 
|  | 340 |  | 
|  | 341 | #if defined(MBEDTLS_BIGNUM_C) | 
|  | 342 | ret = mbedtls_mpi_read_string( &expected_mpi, 16, expected_hex ); | 
|  | 343 | TEST_ASSERT( ret == 0 || ret == MBEDTLS_ERR_MPI_BAD_INPUT_DATA ); | 
|  | 344 | if( ret == MBEDTLS_ERR_MPI_BAD_INPUT_DATA ) | 
|  | 345 | { | 
|  | 346 | /* The data overflows the maximum MPI size. */ | 
|  | 347 | expected_result_for_mpi = MBEDTLS_ERR_MPI_BAD_INPUT_DATA; | 
|  | 348 | } | 
|  | 349 | p = input->x; | 
|  | 350 | ret = mbedtls_asn1_get_mpi( &p, input->x + input->len, &actual_mpi ); | 
|  | 351 | TEST_EQUAL( ret, expected_result_for_mpi ); | 
|  | 352 | if( ret == 0 ) | 
|  | 353 | { | 
| Gilles Peskine | 970dcbf | 2019-10-10 19:21:12 +0200 | [diff] [blame] | 354 | if( expected_value >= 0 ) | 
|  | 355 | { | 
|  | 356 | TEST_ASSERT( mbedtls_mpi_cmp_mpi( &actual_mpi, | 
|  | 357 | &expected_mpi ) == 0 ); | 
|  | 358 | } | 
|  | 359 | else | 
|  | 360 | { | 
|  | 361 | /* The library ignores the sign bit in ASN.1 INTEGERs | 
|  | 362 | * (which makes sense insofar as INTEGERs are sometimes | 
|  | 363 | * abused as bit strings), so the result of parsing them | 
|  | 364 | * is a positive integer such that expected_mpi + | 
|  | 365 | * actual_mpi = 2^n where n is the length of the content | 
|  | 366 | * of the INTEGER. (Leading ff octets don't matter for the | 
|  | 367 | * expected value, but they matter for the actual value.) | 
|  | 368 | * Test that we don't change from this behavior. If we | 
|  | 369 | * decide to fix the library to change the behavior on | 
|  | 370 | * negative INTEGERs, we'll fix this test code. */ | 
|  | 371 | unsigned char *q = input->x + 1; | 
|  | 372 | size_t len; | 
|  | 373 | TEST_ASSERT( mbedtls_asn1_get_len( &q, input->x + input->len, | 
|  | 374 | &len ) == 0 ); | 
|  | 375 | TEST_ASSERT( mbedtls_mpi_lset( &complement, 1 ) == 0 ); | 
|  | 376 | TEST_ASSERT( mbedtls_mpi_shift_l( &complement, len * 8 ) == 0 ); | 
|  | 377 | TEST_ASSERT( mbedtls_mpi_add_mpi( &complement, &complement, | 
|  | 378 | &expected_mpi ) == 0 ); | 
|  | 379 | TEST_ASSERT( mbedtls_mpi_cmp_mpi( &complement, | 
|  | 380 | &actual_mpi ) == 0 ); | 
|  | 381 | } | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 382 | TEST_ASSERT( p == input->x + input->len ); | 
|  | 383 | } | 
|  | 384 | #endif | 
|  | 385 |  | 
|  | 386 | exit: | 
|  | 387 | #if defined(MBEDTLS_BIGNUM_C) | 
|  | 388 | mbedtls_mpi_free( &expected_mpi ); | 
|  | 389 | mbedtls_mpi_free( &actual_mpi ); | 
| Gilles Peskine | 970dcbf | 2019-10-10 19:21:12 +0200 | [diff] [blame] | 390 | mbedtls_mpi_free( &complement ); | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 391 | #endif | 
| Gilles Peskine | 03c165e | 2019-10-10 19:15:18 +0200 | [diff] [blame] | 392 | /*empty cleanup in some configurations*/ ; | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 393 | } | 
|  | 394 | /* END_CASE */ | 
|  | 395 |  | 
| Mykhailo Sopiha | 6af7bf9 | 2019-10-31 15:55:16 +0200 | [diff] [blame] | 396 | /* BEGIN_CASE */ | 
|  | 397 | void get_enum( const data_t *input, | 
|  | 398 | const char *expected_hex, int expected_result ) | 
|  | 399 | { | 
|  | 400 | unsigned char *p; | 
|  | 401 | long expected_value; | 
|  | 402 | int expected_result_for_enum = expected_result; | 
|  | 403 | int val; | 
|  | 404 | int ret; | 
|  | 405 |  | 
|  | 406 | errno = 0; | 
|  | 407 | expected_value = strtol( expected_hex, NULL, 16 ); | 
|  | 408 | if( expected_result == 0 && | 
|  | 409 | ( errno == ERANGE | 
|  | 410 | #if LONG_MAX > INT_MAX | 
|  | 411 | || expected_value > INT_MAX || expected_value < INT_MIN | 
|  | 412 | #endif | 
|  | 413 | ) ) | 
|  | 414 | { | 
|  | 415 | /* The library returns the dubious error code INVALID_LENGTH | 
|  | 416 | * for integers that are out of range. */ | 
|  | 417 | expected_result_for_enum = MBEDTLS_ERR_ASN1_INVALID_LENGTH; | 
|  | 418 | } | 
|  | 419 | if( expected_result == 0 && expected_value < 0 ) | 
|  | 420 | { | 
|  | 421 | /* The library does not support negative INTEGERs and | 
|  | 422 | * returns the dubious error code INVALID_LENGTH. | 
|  | 423 | * Test that we preserve the historical behavior. If we | 
|  | 424 | * decide to change the behavior, we'll also change this test. */ | 
|  | 425 | expected_result_for_enum = MBEDTLS_ERR_ASN1_INVALID_LENGTH; | 
|  | 426 | } | 
|  | 427 |  | 
|  | 428 | p = input->x; | 
|  | 429 | ret = mbedtls_asn1_get_enum( &p, input->x + input->len, &val ); | 
|  | 430 | TEST_EQUAL( ret, expected_result_for_enum ); | 
|  | 431 | if( ret == 0 ) | 
|  | 432 | { | 
|  | 433 | TEST_EQUAL( val, expected_value ); | 
|  | 434 | TEST_ASSERT( p == input->x + input->len ); | 
|  | 435 | } | 
|  | 436 | } | 
|  | 437 | /* END_CASE */ | 
|  | 438 |  | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 439 | /* BEGIN_CASE depends_on:MBEDTLS_BIGNUM_C */ | 
|  | 440 | void get_mpi_too_large( ) | 
|  | 441 | { | 
|  | 442 | unsigned char *buf = NULL; | 
|  | 443 | unsigned char *p; | 
|  | 444 | mbedtls_mpi actual_mpi; | 
|  | 445 | size_t too_many_octets = | 
|  | 446 | MBEDTLS_MPI_MAX_LIMBS * sizeof(mbedtls_mpi_uint) + 1; | 
|  | 447 | size_t size = too_many_octets + 6; | 
|  | 448 |  | 
|  | 449 | mbedtls_mpi_init( &actual_mpi ); | 
|  | 450 |  | 
|  | 451 | ASSERT_ALLOC( buf, size ); | 
|  | 452 | buf[0] = 0x02; /* tag: INTEGER */ | 
|  | 453 | buf[1] = 0x84; /* 4-octet length */ | 
|  | 454 | buf[2] = ( too_many_octets >> 24 ) & 0xff; | 
|  | 455 | buf[3] = ( too_many_octets >> 16 ) & 0xff; | 
|  | 456 | buf[4] = ( too_many_octets >> 8 ) & 0xff; | 
|  | 457 | buf[5] = too_many_octets & 0xff; | 
|  | 458 | buf[6] = 0x01; /* most significant octet */ | 
|  | 459 |  | 
|  | 460 | p = buf; | 
|  | 461 | TEST_EQUAL( mbedtls_asn1_get_mpi( &p, buf + size, &actual_mpi ), | 
|  | 462 | MBEDTLS_ERR_MPI_ALLOC_FAILED ); | 
|  | 463 |  | 
|  | 464 | exit: | 
|  | 465 | mbedtls_mpi_free( &actual_mpi ); | 
|  | 466 | mbedtls_free( buf ); | 
|  | 467 | } | 
|  | 468 | /* END_CASE */ | 
|  | 469 |  | 
|  | 470 | /* BEGIN_CASE */ | 
|  | 471 | void get_bitstring( const data_t *input, | 
|  | 472 | int expected_length, int expected_unused_bits, | 
|  | 473 | int expected_result, int expected_result_null ) | 
|  | 474 | { | 
|  | 475 | mbedtls_asn1_bitstring bs = { 0xdead, 0x21, NULL }; | 
|  | 476 | unsigned char *p = input->x; | 
|  | 477 |  | 
|  | 478 | TEST_EQUAL( mbedtls_asn1_get_bitstring( &p, input->x + input->len, &bs ), | 
|  | 479 | expected_result ); | 
|  | 480 | if( expected_result == 0 ) | 
|  | 481 | { | 
|  | 482 | TEST_EQUAL( bs.len, (size_t) expected_length ); | 
|  | 483 | TEST_EQUAL( bs.unused_bits, expected_unused_bits ); | 
|  | 484 | TEST_ASSERT( bs.p != NULL ); | 
|  | 485 | TEST_EQUAL( bs.p - input->x + bs.len, input->len ); | 
|  | 486 | TEST_ASSERT( p == input->x + input->len ); | 
|  | 487 | } | 
|  | 488 |  | 
|  | 489 | p = input->x; | 
|  | 490 | TEST_EQUAL( mbedtls_asn1_get_bitstring_null( &p, input->x + input->len, | 
|  | 491 | &bs.len ), | 
|  | 492 | expected_result_null ); | 
|  | 493 | if( expected_result_null == 0 ) | 
|  | 494 | { | 
|  | 495 | TEST_EQUAL( bs.len, (size_t) expected_length ); | 
|  | 496 | if( expected_result == 0 ) | 
|  | 497 | TEST_ASSERT( p == input->x + input->len - bs.len ); | 
|  | 498 | } | 
|  | 499 | } | 
|  | 500 | /* END_CASE */ | 
|  | 501 |  | 
|  | 502 | /* BEGIN_CASE */ | 
|  | 503 | void get_sequence_of( const data_t *input, int tag, | 
|  | 504 | const char *description, | 
|  | 505 | int expected_result ) | 
|  | 506 | { | 
|  | 507 | mbedtls_asn1_sequence head = { { 0, 0, NULL }, NULL }; | 
|  | 508 | mbedtls_asn1_sequence *cur, *next; | 
|  | 509 | unsigned char *p = input->x; | 
|  | 510 | const char *rest = description; | 
|  | 511 | unsigned long n; | 
|  | 512 |  | 
|  | 513 | TEST_EQUAL( mbedtls_asn1_get_sequence_of( &p, input->x + input->len, | 
|  | 514 | &head, tag ), | 
|  | 515 | expected_result ); | 
|  | 516 | if( expected_result == 0 ) | 
|  | 517 | { | 
|  | 518 | TEST_ASSERT( p == input->x + input->len ); | 
|  | 519 |  | 
|  | 520 | if( ! *rest ) | 
|  | 521 | { | 
|  | 522 | TEST_EQUAL( head.buf.tag, 0 ); | 
|  | 523 | TEST_ASSERT( head.buf.p == NULL ); | 
|  | 524 | TEST_EQUAL( head.buf.len, 0 ); | 
|  | 525 | TEST_ASSERT( head.next == NULL ); | 
|  | 526 | } | 
|  | 527 | else | 
|  | 528 | { | 
|  | 529 | cur = &head; | 
|  | 530 | while( *rest ) | 
|  | 531 | { | 
|  | 532 | ++test_info.step; | 
|  | 533 | TEST_ASSERT( cur != NULL ); | 
|  | 534 | TEST_EQUAL( cur->buf.tag, tag ); | 
|  | 535 | n = strtoul( rest, (char **) &rest, 0 ); | 
|  | 536 | TEST_EQUAL( n, (size_t)( cur->buf.p - input->x ) ); | 
|  | 537 | ++rest; | 
|  | 538 | n = strtoul( rest, (char **) &rest, 0 ); | 
|  | 539 | TEST_EQUAL( n, cur->buf.len ); | 
|  | 540 | if( *rest ) | 
|  | 541 | ++rest; | 
|  | 542 | cur = cur->next; | 
|  | 543 | } | 
|  | 544 | TEST_ASSERT( cur == NULL ); | 
|  | 545 | } | 
|  | 546 | } | 
|  | 547 |  | 
|  | 548 | exit: | 
|  | 549 | cur = head.next; | 
|  | 550 | while( cur != NULL ) | 
|  | 551 | { | 
|  | 552 | next = cur->next; | 
|  | 553 | mbedtls_free( cur ); | 
|  | 554 | cur = next; | 
|  | 555 | } | 
|  | 556 | } | 
|  | 557 | /* END_CASE */ | 
|  | 558 |  | 
|  | 559 | /* BEGIN_CASE */ | 
|  | 560 | void get_alg( const data_t *input, | 
|  | 561 | int oid_offset, int oid_length, | 
|  | 562 | int params_tag, int params_offset, int params_length, | 
|  | 563 | int total_length, | 
|  | 564 | int expected_result ) | 
|  | 565 | { | 
|  | 566 | mbedtls_asn1_buf oid = { -1, 0, NULL }; | 
|  | 567 | mbedtls_asn1_buf params = { -1, 0, NULL }; | 
|  | 568 | unsigned char *p = input->x; | 
|  | 569 | int ret; | 
|  | 570 |  | 
|  | 571 | TEST_EQUAL( mbedtls_asn1_get_alg( &p, input->x + input->len, | 
|  | 572 | &oid, ¶ms ), | 
|  | 573 | expected_result ); | 
|  | 574 | if( expected_result == 0 ) | 
|  | 575 | { | 
|  | 576 | TEST_EQUAL( oid.tag, MBEDTLS_ASN1_OID ); | 
|  | 577 | TEST_EQUAL( oid.p - input->x, oid_offset ); | 
|  | 578 | TEST_EQUAL( oid.len, (size_t) oid_length ); | 
|  | 579 | TEST_EQUAL( params.tag, params_tag ); | 
|  | 580 | if( params_offset != 0 ) | 
|  | 581 | TEST_EQUAL( params.p - input->x, params_offset ); | 
|  | 582 | else | 
|  | 583 | TEST_ASSERT( params.p == NULL ); | 
|  | 584 | TEST_EQUAL( params.len, (size_t) params_length ); | 
|  | 585 | TEST_EQUAL( p - input->x, total_length ); | 
|  | 586 | } | 
|  | 587 |  | 
|  | 588 | ret = mbedtls_asn1_get_alg_null( &p, input->x + input->len, &oid ); | 
|  | 589 | if( expected_result == 0 && params_offset == 0 ) | 
|  | 590 | { | 
|  | 591 | TEST_EQUAL( oid.tag, MBEDTLS_ASN1_OID ); | 
|  | 592 | TEST_EQUAL( oid.p - input->x, oid_offset ); | 
|  | 593 | TEST_EQUAL( oid.len, (size_t) oid_length ); | 
|  | 594 | TEST_EQUAL( p - input->x, total_length ); | 
|  | 595 | } | 
|  | 596 | else | 
|  | 597 | TEST_ASSERT( ret != 0 ); | 
|  | 598 | } | 
|  | 599 | /* END_CASE */ | 
|  | 600 |  | 
|  | 601 | /* BEGIN_CASE */ | 
|  | 602 | void find_named_data( data_t *oid0, data_t *oid1, data_t *oid2, data_t *oid3, | 
|  | 603 | data_t *needle, int from, int position ) | 
|  | 604 | { | 
|  | 605 | mbedtls_asn1_named_data nd[] ={ | 
|  | 606 | { {0x06, oid0->len, oid0->x}, {0, 0, NULL}, NULL, 0 }, | 
|  | 607 | { {0x06, oid1->len, oid1->x}, {0, 0, NULL}, NULL, 0 }, | 
|  | 608 | { {0x06, oid2->len, oid2->x}, {0, 0, NULL}, NULL, 0 }, | 
|  | 609 | { {0x06, oid3->len, oid3->x}, {0, 0, NULL}, NULL, 0 }, | 
|  | 610 | }; | 
|  | 611 | mbedtls_asn1_named_data *pointers[ARRAY_LENGTH( nd ) + 1]; | 
|  | 612 | size_t i; | 
|  | 613 | mbedtls_asn1_named_data *found; | 
|  | 614 |  | 
|  | 615 | for( i = 0; i < ARRAY_LENGTH( nd ); i++ ) | 
|  | 616 | pointers[i] = &nd[i]; | 
|  | 617 | pointers[ARRAY_LENGTH( nd )] = NULL; | 
|  | 618 | for( i = 0; i < ARRAY_LENGTH( nd ); i++ ) | 
|  | 619 | nd[i].next = pointers[i+1]; | 
|  | 620 |  | 
|  | 621 | found = mbedtls_asn1_find_named_data( pointers[from], | 
|  | 622 | (const char *) needle->x, | 
|  | 623 | needle->len ); | 
|  | 624 | TEST_ASSERT( found == pointers[position] ); | 
|  | 625 | } | 
|  | 626 | /* END_CASE */ | 
|  | 627 |  | 
|  | 628 | /* BEGIN_CASE */ | 
|  | 629 | void free_named_data_null( ) | 
|  | 630 | { | 
|  | 631 | mbedtls_asn1_free_named_data( NULL ); | 
|  | 632 | goto exit; /* Silence unused label warning */ | 
|  | 633 | } | 
|  | 634 | /* END_CASE */ | 
|  | 635 |  | 
|  | 636 | /* BEGIN_CASE */ | 
|  | 637 | void free_named_data( int with_oid, int with_val, int with_next ) | 
|  | 638 | { | 
|  | 639 | mbedtls_asn1_named_data next = | 
|  | 640 | { {0x06, 0, NULL}, {0, 0xcafe, NULL}, NULL, 0 }; | 
|  | 641 | mbedtls_asn1_named_data head = | 
|  | 642 | { {0x06, 0, NULL}, {0, 0, NULL}, NULL, 0 }; | 
|  | 643 |  | 
|  | 644 | if( with_oid ) | 
|  | 645 | ASSERT_ALLOC( head.oid.p, 1 ); | 
|  | 646 | if( with_val ) | 
|  | 647 | ASSERT_ALLOC( head.val.p, 1 ); | 
|  | 648 | if( with_next ) | 
|  | 649 | head.next = &next; | 
|  | 650 |  | 
|  | 651 | mbedtls_asn1_free_named_data( &head ); | 
|  | 652 | TEST_ASSERT( head.oid.p == NULL ); | 
|  | 653 | TEST_ASSERT( head.val.p == NULL ); | 
|  | 654 | TEST_ASSERT( head.next == NULL ); | 
|  | 655 | TEST_ASSERT( next.val.len == 0xcafe ); | 
|  | 656 |  | 
|  | 657 | exit: | 
|  | 658 | mbedtls_free( head.oid.p ); | 
|  | 659 | mbedtls_free( head.val.p ); | 
|  | 660 | } | 
|  | 661 | /* END_CASE */ | 
|  | 662 |  | 
|  | 663 | /* BEGIN_CASE */ | 
|  | 664 | void free_named_data_list( int length ) | 
|  | 665 | { | 
|  | 666 | mbedtls_asn1_named_data *head = NULL; | 
|  | 667 | int i; | 
|  | 668 |  | 
|  | 669 | for( i = 0; i < length; i++ ) | 
|  | 670 | { | 
|  | 671 | mbedtls_asn1_named_data *new = NULL; | 
|  | 672 | ASSERT_ALLOC( new, sizeof( mbedtls_asn1_named_data ) ); | 
| Gilles Peskine | 88f136f | 2019-09-20 21:06:27 +0200 | [diff] [blame] | 673 | new->next = head; | 
| Gilles Peskine | 27d806f | 2019-03-01 18:02:53 +0100 | [diff] [blame] | 674 | head = new; | 
|  | 675 | } | 
|  | 676 |  | 
|  | 677 | mbedtls_asn1_free_named_data_list( &head ); | 
|  | 678 | TEST_ASSERT( head == NULL ); | 
|  | 679 | /* Most of the point of the test is that it doesn't leak memory. | 
|  | 680 | * So this test is only really useful under a memory leak detection | 
|  | 681 | * framework. */ | 
|  | 682 | exit: | 
|  | 683 | mbedtls_asn1_free_named_data_list( &head ); | 
|  | 684 | } | 
|  | 685 | /* END_CASE */ |