Blame - tests/suites/test_suite_pkcs7.function - mirror/mbed-tls

blob: cc032ac12f8f2a182ef49c540fee6f0b3d4c9ce0 [file] [log] [blame]

Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	1	/* BEGIN_HEADER */
				2	#include "mbedtls/bignum.h"
				3	#include "mbedtls/pkcs7.h"
				4	#include "mbedtls/x509.h"
				5	#include "mbedtls/x509_crt.h"
				6	#include "mbedtls/x509_crl.h"
				7	#include "mbedtls/oid.h"
				8	#include "sys/types.h"
				9	#include "sys/stat.h"
Dave Rodgman	651fb52	2023-03-12 10:00:44 +0000	[diff] [blame^]	10	#include "mbedtls/rsa.h"
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	11	/* END_HEADER */
				12
				13	/* BEGIN_DEPENDENCIES
Dave Rodgman	651fb52	2023-03-12 10:00:44 +0000	[diff] [blame^]	14	* depends_on:MBEDTLS_PKCS7_C
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	15	* END_DEPENDENCIES
				16	*/
Nick Child	b781770	2022-12-12 15:49:35 -0600	[diff] [blame]	17	/* BEGIN_SUITE_HELPERS */
				18	int pkcs7_parse_buffer(unsigned char *pkcs7_buf, int buflen)
				19	{
				20	int res;
				21	mbedtls_pkcs7 pkcs7;
				22
				23	mbedtls_pkcs7_init(&pkcs7);
				24	res = mbedtls_pkcs7_parse_der(&pkcs7, pkcs7_buf, buflen);
				25	mbedtls_pkcs7_free(&pkcs7);
				26	return res;
				27	}
				28	/* END_SUITE_HELPERS */
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	29
Nick Child	4983ddf	2022-12-14 15:04:40 -0600	[diff] [blame]	30	/* BEGIN_CASE */
				31	void pkcs7_asn1_fail(data_t *pkcs7_buf)
				32	{
				33	int res;
				34	res = pkcs7_parse_buffer(pkcs7_buf->x, pkcs7_buf->len);
				35	TEST_ASSERT(res != MBEDTLS_PKCS7_SIGNED_DATA);
				36
				37	}
				38	/* END_CASE */
				39
Nick Child	45525d3	2022-02-25 11:54:34 -0600	[diff] [blame]	40	/* BEGIN_CASE depends_on:MBEDTLS_FS_IO */
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	41	void pkcs7_parse(char *pkcs7_file, int res_expect)
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	42	{
				43	unsigned char *pkcs7_buf = NULL;
				44	size_t buflen;
				45	int res;
				46
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	47	res = mbedtls_pk_load_file(pkcs7_file, &pkcs7_buf, &buflen);
				48	TEST_EQUAL(res, 0);
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	49
Nick Child	b781770	2022-12-12 15:49:35 -0600	[diff] [blame]	50	res = pkcs7_parse_buffer(pkcs7_buf, buflen);
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	51	TEST_EQUAL(res, res_expect);
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	52
				53	exit:
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	54	mbedtls_free(pkcs7_buf);
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	55	}
				56	/* END_CASE */
				57
Nick Child	45525d3	2022-02-25 11:54:34 -0600	[diff] [blame]	58	/* BEGIN_CASE depends_on:MBEDTLS_FS_IO:MBEDTLS_X509_CRT_PARSE_C:MBEDTLS_PKCS1_V15:MBEDTLS_RSA_C */
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	59	void pkcs7_verify(char *pkcs7_file,
				60	char *crt_files,
				61	char *filetobesigned,
				62	int do_hash_alg,
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	63	int res_expect)
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	64	{
				65	unsigned char *pkcs7_buf = NULL;
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	66	size_t buflen, i, k, cnt = 0, n_crts = 1;
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	67	unsigned char *data = NULL;
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	68	char **crt_files_arr = NULL;
Nick Child	951f700	2023-01-30 16:35:58 +0000	[diff] [blame]	69	unsigned char *hash = NULL;
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	70	struct stat st;
				71	size_t datalen;
				72	int res;
				73	FILE *file;
				74	const mbedtls_md_info_t *md_info;
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	75	mbedtls_pkcs7 pkcs7;
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	76	mbedtls_x509_crt **crts = NULL;
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	77
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	78
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	79	/* crt_files are space seprated list */
				80	for (i = 0; i < strlen(crt_files); i++) {
				81	if (crt_files[i] == ' ') {
				82	n_crts++;
				83	}
Nick Child	8a94de4	2022-09-14 10:51:51 -0500	[diff] [blame]	84	}
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	85
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	86	ASSERT_ALLOC(crts, sizeof(crts)n_crts);
				87	ASSERT_ALLOC(crt_files_arr, sizeof(crt_files_arr)n_crts);
Nayna Jain	c9deb18	2020-11-16 19:03:12 +0000	[diff] [blame]	88
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	89	for (i = 0; i < strlen(crt_files); i++) {
				90	for (k = i; k < strlen(crt_files); k++) {
				91	if (crt_files[k] == ' ') {
				92	break;
				93	}
				94	}
				95	ASSERT_ALLOC(crt_files_arr[cnt], (k-i)+1);
				96	crt_files_arr[cnt][k-i] = '\0';
				97	memcpy(crt_files_arr[cnt++], crt_files + i, k-i);
				98	i = k;
				99	}
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	100
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	101	mbedtls_pkcs7_init(&pkcs7);
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	102	for (i = 0; i < n_crts; i++) {
				103	ASSERT_ALLOC(crts[i], sizeof(*crts[i]));
				104	mbedtls_x509_crt_init(crts[i]);
				105	}
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	106
Gilles Peskine	391005c	2022-11-27 21:32:37 +0100	[diff] [blame]	107	USE_PSA_INIT();
				108
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	109	res = mbedtls_pk_load_file(pkcs7_file, &pkcs7_buf, &buflen);
				110	TEST_EQUAL(res, 0);
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	111
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	112	res = mbedtls_pkcs7_parse_der(&pkcs7, pkcs7_buf, buflen);
				113	TEST_EQUAL(res, MBEDTLS_PKCS7_SIGNED_DATA);
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	114
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	115	TEST_EQUAL(pkcs7.signed_data.no_of_signers, n_crts);
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	116
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	117	for (i = 0; i < n_crts; i++) {
				118	res = mbedtls_x509_crt_parse_file(crts[i], crt_files_arr[i]);
				119	TEST_EQUAL(res, 0);
				120	}
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	121
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	122	res = stat(filetobesigned, &st);
				123	TEST_EQUAL(res, 0);
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	124
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	125	file = fopen(filetobesigned, "rb");
				126	TEST_ASSERT(file != NULL);
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	127
				128	datalen = st.st_size;
Dave Rodgman	716163e	2023-02-20 14:46:51 +0000	[diff] [blame]	129	/* Special-case for zero-length input so that data will be non-NULL */
				130	ASSERT_ALLOC(data, datalen == 0 ? 1 : datalen);
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	131	buflen = fread((void *) data, sizeof(unsigned char), datalen, file);
				132	TEST_EQUAL(buflen, datalen);
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	133
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	134	fclose(file);
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	135
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	136	if (do_hash_alg) {
Nick Child	ff2746f	2022-12-15 13:06:21 -0600	[diff] [blame]	137	md_info = mbedtls_md_info_from_type((mbedtls_md_type_t) do_hash_alg);
Nick Child	951f700	2023-01-30 16:35:58 +0000	[diff] [blame]	138	ASSERT_ALLOC(hash, mbedtls_md_get_size(md_info));
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	139	res = mbedtls_md(md_info, data, datalen, hash);
				140	TEST_EQUAL(res, 0);
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	141
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	142	for (i = 0; i < n_crts; i++) {
				143	res =
				144	mbedtls_pkcs7_signed_hash_verify(&pkcs7, crts[i], hash,
				145	mbedtls_md_get_size(md_info));
				146	TEST_EQUAL(res, res_expect);
				147	}
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	148	} else {
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	149	for (i = 0; i < n_crts; i++) {
				150	res = mbedtls_pkcs7_signed_data_verify(&pkcs7, crts[i], data, datalen);
				151	TEST_EQUAL(res, res_expect);
				152	}
Nick Child	8a94de4	2022-09-14 10:51:51 -0500	[diff] [blame]	153	}
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	154
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	155	exit:
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	156	for (i = 0; i < n_crts; i++) {
				157	mbedtls_x509_crt_free(crts[i]);
				158	mbedtls_free(crts[i]);
				159	mbedtls_free(crt_files_arr[i]);
				160	}
Nick Child	951f700	2023-01-30 16:35:58 +0000	[diff] [blame]	161	mbedtls_free(hash);
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	162	mbedtls_pkcs7_free(&pkcs7);
Nick Child	c547447	2023-01-27 21:06:39 +0000	[diff] [blame]	163	mbedtls_free(crt_files_arr);
				164	mbedtls_free(crts);
Gilles Peskine	449bd83	2023-01-11 14:50:10 +0100	[diff] [blame]	165	mbedtls_free(data);
				166	mbedtls_free(pkcs7_buf);
Nick Child	62b2d7e	2022-07-14 16:24:59 -0500	[diff] [blame]	167	USE_PSA_DONE();
				168	}
				169	/* END_CASE */