TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 321adb297c1c19be2d2120658cd43929e5f3faa4 / . / tests / suites / test_suite_asn1parse.function
blob: f794db7fc54cfb46accfaa9f8fc90b38c92a29cb [file] [log] [blame]
Gilles Peskine27d806f2019-03-01 18:02:53 +0100[diff] [blame]1/* BEGIN_HEADER */
2#include <errno.h>
3#include <stdlib.h>
4#include <limits.h>
5
6#include "mbedtls/bignum.h"
7#include "mbedtls/asn1.h"
8#if defined(MBEDTLS_ASN1_WRITE_C)
9#include "mbedtls/asn1write.h"
10#endif
11
12#define ERR_PARSE_INCONSISTENCY INT_MAX
13
14static int nested_parse( unsigned char **const p,
15 const unsigned char *const end )
16{
17 int ret;
18 size_t len = 0;
19 size_t len2 = 0;
20 unsigned char *const start = *p;
21 unsigned char *content_start;
22 unsigned char tag;
23
24 /* First get the length, skipping over the tag. */
25 content_start = start + 1;
26 ret = mbedtls_asn1_get_len( &content_start, end, &len );
27 TEST_ASSERT( content_start <= end );
28 if( ret != 0 )
29 return( ret );
30
31 /* Since we have a valid element start (tag and length), retrieve and
32 * check the tag. */
33 tag = start[0];
34 TEST_EQUAL( mbedtls_asn1_get_tag( p, end, &len2, tag ^ 1 ),
35 MBEDTLS_ERR_ASN1_UNEXPECTED_TAG );
36 *p = start;
37 TEST_EQUAL( mbedtls_asn1_get_tag( p, end, &len2, tag ), 0 );
38 TEST_EQUAL( len, len2 );
39 TEST_ASSERT( *p == content_start );
40 *p = content_start;
41
42 switch( tag & 0x1f )
43 {
44 case MBEDTLS_ASN1_BOOLEAN:
45 {
46 int val = -257;
47 *p = start;
48 ret = mbedtls_asn1_get_bool( p, end, &val );
49 if( ret == 0 )
50 TEST_ASSERT( val == 0 || val == 1 );
51 break;
52 }
53
54 case MBEDTLS_ASN1_INTEGER:
55 {
56#if defined(MBEDTLS_BIGNUM_C)
57 mbedtls_mpi mpi;
58 mbedtls_mpi_init( &mpi );
59 *p = start;
60 ret = mbedtls_asn1_get_mpi( p, end, &mpi );
61 mbedtls_mpi_free( &mpi );
Gilles Peskine03c165e2019-10-10 19:15:18 +0200[diff] [blame]62#else
63 *p = start + 1;
64 ret = mbedtls_asn1_get_len( p, end, &len );
65 *p += len;
Gilles Peskine27d806f2019-03-01 18:02:53 +0100[diff] [blame]66#endif
67 /* If we're sure that the number fits in an int, also
68 * call mbedtls_asn1_get_int(). */
69 if( ret == 0 && len < sizeof( int ) )
70 {
71 int val = -257;
72 unsigned char *q = start;
73 ret = mbedtls_asn1_get_int( &q, end, &val );
74 TEST_ASSERT( *p == q );
75 }
76 break;
77 }
78
79 case MBEDTLS_ASN1_BIT_STRING:
80 {
81 mbedtls_asn1_bitstring bs;
82 *p = start;
83 ret = mbedtls_asn1_get_bitstring( p, end, &bs );
84 break;
85 }
86
87 case MBEDTLS_ASN1_SEQUENCE:
88 {
89 while( *p <= end && *p < content_start + len && ret == 0 )
90 ret = nested_parse( p, content_start + len );
91 break;
92 }
93
94 case MBEDTLS_ASN1_OCTET_STRING:
95 case MBEDTLS_ASN1_NULL:
96 case MBEDTLS_ASN1_OID:
97 case MBEDTLS_ASN1_UTF8_STRING:
98 case MBEDTLS_ASN1_SET:
99 case MBEDTLS_ASN1_PRINTABLE_STRING:
100 case MBEDTLS_ASN1_T61_STRING:
101 case MBEDTLS_ASN1_IA5_STRING:
102 case MBEDTLS_ASN1_UTC_TIME:
103 case MBEDTLS_ASN1_GENERALIZED_TIME:
104 case MBEDTLS_ASN1_UNIVERSAL_STRING:
105 case MBEDTLS_ASN1_BMP_STRING:
106 default:
107 /* No further testing implemented for this tag. */
108 *p += len;
109 return( 0 );
110 }
111
112 TEST_ASSERT( *p <= end );
113 return( ret );
114
115exit:
116 return( ERR_PARSE_INCONSISTENCY );
117}
118
119int get_len_step( const data_t *input, size_t buffer_size,
120 size_t actual_length )
121{
122 unsigned char *buf = NULL;
123 unsigned char *p = NULL;
124 size_t parsed_length;
125 int ret;
126
127 test_set_step( buffer_size );
128 /* Allocate a new buffer of exactly the length to parse each time.
129 * This gives memory sanitizers a chance to catch buffer overreads. */
130 if( buffer_size == 0 )
131 {
132 ASSERT_ALLOC( buf, 1 );
133 p = buf + 1;
134 }
135 else
136 {
Gilles Peskine2cd8ecc2019-03-04 17:13:43 +0100[diff] [blame]137 ASSERT_ALLOC_WEAK( buf, buffer_size );
Gilles Peskine27d806f2019-03-01 18:02:53 +0100[diff] [blame]138 if( buffer_size > input->len )
139 {
140 memcpy( buf, input->x, input->len );
141 memset( buf + input->len, 'A', buffer_size - input->len );
142 }
143 else
144 {
145 memcpy( buf, input->x, buffer_size );
146 }
147 p = buf;
148 }
149
150 ret = mbedtls_asn1_get_len( &p, buf + buffer_size, &parsed_length );
151
152 if( buffer_size >= input->len + actual_length )
153 {
154 TEST_EQUAL( ret, 0 );
155 TEST_ASSERT( p == buf + input->len );
156 TEST_EQUAL( parsed_length, actual_length );
157 }
158 else
159 {
160 TEST_EQUAL( ret, MBEDTLS_ERR_ASN1_OUT_OF_DATA );
161 }
162 mbedtls_free( buf );
163 return( 1 );
164
165exit:
Gilles Peskine27d806f2019-03-01 18:02:53 +0100[diff] [blame]166 mbedtls_free( buf );
167 return( 0 );
168}
169
170/* END_HEADER */
171
172/* BEGIN_DEPENDENCIES
173 * depends_on:MBEDTLS_ASN1_PARSE_C
174 * END_DEPENDENCIES
175 */
176
177/* BEGIN_CASE */
178void parse_prefixes( const data_t *input,
179 int actual_length_arg,
180 int last_result )
181{
182 size_t actual_length = actual_length_arg;
183 unsigned char *buf = NULL;
184 unsigned char *p = NULL;
185 size_t buffer_size;
186 int ret;
187
188 for( buffer_size = 1; buffer_size <= input->len; buffer_size++ )
189 {
190 test_set_step( buffer_size );
191 /* Allocate a new buffer of exactly the length to parse each time.
192 * This gives memory sanitizers a chance to catch buffer overreads. */
193 ASSERT_ALLOC( buf, buffer_size );
194 memcpy( buf, input->x, buffer_size );
195 p = buf;
196 ret = nested_parse( &p, buf + buffer_size );
197 if( ret == ERR_PARSE_INCONSISTENCY )
198 goto exit;
199 if( actual_length > 0 && buffer_size >= actual_length )
200 {
201 TEST_EQUAL( ret, last_result );
202 if( ret == 0 )
203 TEST_ASSERT( p == buf + actual_length );
204 }
205 else
206 {
207 TEST_EQUAL( ret, MBEDTLS_ERR_ASN1_OUT_OF_DATA );
208 }
209 mbedtls_free( buf );
210 buf = NULL;
211 }
212
213exit:
214 mbedtls_free( buf );
215}
216/* END_CASE */
217
218/* BEGIN_CASE */
219void get_len( const data_t *input, int actual_length_arg )
220{
221 size_t actual_length = actual_length_arg;
222 size_t buffer_size;
223
224 for( buffer_size = 1; buffer_size <= input->len + 1; buffer_size++ )
225 {
226 if( ! get_len_step( input, buffer_size, actual_length ) )
227 goto exit;
228 }
229 if( ! get_len_step( input, input->len + actual_length - 1, actual_length ) )
230 goto exit;
231 if( ! get_len_step( input, input->len + actual_length, actual_length ) )
232 goto exit;
233}
234/* END_CASE */
235
236/* BEGIN_CASE */
237void get_boolean( const data_t *input,
238 int expected_value, int expected_result )
239{
240 unsigned char *p = input->x;
241 int val;
242 int ret;
243 ret = mbedtls_asn1_get_bool( &p, input->x + input->len, &val );
244 TEST_EQUAL( ret, expected_result );
245 if( expected_result == 0 )
246 {
247 TEST_EQUAL( val, expected_value );
248 TEST_ASSERT( p == input->x + input->len );
249 }
250}
251/* END_CASE */
252
253/* BEGIN_CASE */
Gilles Peskine321adb22019-10-10 19:18:21 +0200[diff] [blame^]254void empty_integer( const data_t *input )
255{
256 unsigned char *p;
257#if defined(MBEDTLS_BIGNUM_C)
258 mbedtls_mpi actual_mpi;
259#endif
260 int val;
261
262#if defined(MBEDTLS_BIGNUM_C)
263 mbedtls_mpi_init( & actual_mpi );
264#endif
265
266 /* An INTEGER with no content is not valid. */
267 p = input->x;
268 TEST_EQUAL( mbedtls_asn1_get_int( &p, input->x + input->len, &val ),
269 MBEDTLS_ERR_ASN1_INVALID_LENGTH );
270
271#if defined(MBEDTLS_BIGNUM_C)
272 /* INTEGERs are sometimes abused as bitstrings, so the library accepts
273 * an INTEGER with empty content and gives it the value 0. */
274 p = input->x;
275 TEST_EQUAL( mbedtls_asn1_get_mpi( &p, input->x + input->len, &actual_mpi ),
276 0 );
277 TEST_EQUAL( mbedtls_mpi_cmp_int( &actual_mpi, 0 ), 0 );
278#endif
279
280exit:
281#if defined(MBEDTLS_BIGNUM_C)
282 mbedtls_mpi_free( &actual_mpi );
283#endif
284 /*empty cleanup in some configurations*/ ;
285}
286/* END_CASE */
287
288/* BEGIN_CASE */
Gilles Peskine27d806f2019-03-01 18:02:53 +0100[diff] [blame]289void get_integer( const data_t *input,
290 const char *expected_hex, int expected_result )
291{
292 unsigned char *p;
293#if defined(MBEDTLS_BIGNUM_C)
294 mbedtls_mpi expected_mpi;
295 mbedtls_mpi actual_mpi;
Gilles Peskine03c165e2019-10-10 19:15:18 +0200[diff] [blame]296 int expected_result_for_mpi = expected_result;
Gilles Peskine27d806f2019-03-01 18:02:53 +0100[diff] [blame]297#endif
298 long expected_value;
299 int expected_result_for_int = expected_result;
Gilles Peskine27d806f2019-03-01 18:02:53 +0100[diff] [blame]300 int val;
301 int ret;
302
303#if defined(MBEDTLS_BIGNUM_C)
304 mbedtls_mpi_init( &expected_mpi );
305 mbedtls_mpi_init( &actual_mpi );
306#endif
307
308 errno = 0;
309 expected_value = strtol( expected_hex, NULL, 16 );
310 if( expected_result == 0 &&
311 ( errno == ERANGE
312#if LONG_MAX > INT_MAX
313 || expected_value > INT_MAX || expected_value < INT_MIN
314#endif
315 ) )
316 {
317 expected_result_for_int = MBEDTLS_ERR_ASN1_INVALID_LENGTH;
318 }
319
320 p = input->x;
321 ret = mbedtls_asn1_get_int( &p, input->x + input->len, &val );
322 TEST_EQUAL( ret, expected_result_for_int );
323 if( ret == 0 )
324 {
325 TEST_EQUAL( val, expected_value );
326 TEST_ASSERT( p == input->x + input->len );
327 }
328
329#if defined(MBEDTLS_BIGNUM_C)
330 ret = mbedtls_mpi_read_string( &expected_mpi, 16, expected_hex );
331 TEST_ASSERT( ret == 0 || ret == MBEDTLS_ERR_MPI_BAD_INPUT_DATA );
332 if( ret == MBEDTLS_ERR_MPI_BAD_INPUT_DATA )
333 {
334 /* The data overflows the maximum MPI size. */
335 expected_result_for_mpi = MBEDTLS_ERR_MPI_BAD_INPUT_DATA;
336 }
337 p = input->x;
338 ret = mbedtls_asn1_get_mpi( &p, input->x + input->len, &actual_mpi );
339 TEST_EQUAL( ret, expected_result_for_mpi );
340 if( ret == 0 )
341 {
342 TEST_ASSERT( mbedtls_mpi_cmp_mpi( &actual_mpi , &expected_mpi ) == 0 );
343 TEST_ASSERT( p == input->x + input->len );
344 }
345#endif
346
347exit:
348#if defined(MBEDTLS_BIGNUM_C)
349 mbedtls_mpi_free( &expected_mpi );
350 mbedtls_mpi_free( &actual_mpi );
351#endif
Gilles Peskine03c165e2019-10-10 19:15:18 +0200[diff] [blame]352 /*empty cleanup in some configurations*/ ;
Gilles Peskine27d806f2019-03-01 18:02:53 +0100[diff] [blame]353}
354/* END_CASE */
355
356/* BEGIN_CASE depends_on:MBEDTLS_BIGNUM_C */
357void get_mpi_too_large( )
358{
359 unsigned char *buf = NULL;
360 unsigned char *p;
361 mbedtls_mpi actual_mpi;
362 size_t too_many_octets =
363 MBEDTLS_MPI_MAX_LIMBS * sizeof(mbedtls_mpi_uint) + 1;
364 size_t size = too_many_octets + 6;
365
366 mbedtls_mpi_init( &actual_mpi );
367
368 ASSERT_ALLOC( buf, size );
369 buf[0] = 0x02; /* tag: INTEGER */
370 buf[1] = 0x84; /* 4-octet length */
371 buf[2] = ( too_many_octets >> 24 ) & 0xff;
372 buf[3] = ( too_many_octets >> 16 ) & 0xff;
373 buf[4] = ( too_many_octets >> 8 ) & 0xff;
374 buf[5] = too_many_octets & 0xff;
375 buf[6] = 0x01; /* most significant octet */
376
377 p = buf;
378 TEST_EQUAL( mbedtls_asn1_get_mpi( &p, buf + size, &actual_mpi ),
379 MBEDTLS_ERR_MPI_ALLOC_FAILED );
380
381exit:
382 mbedtls_mpi_free( &actual_mpi );
383 mbedtls_free( buf );
384}
385/* END_CASE */
386
387/* BEGIN_CASE */
388void get_bitstring( const data_t *input,
389 int expected_length, int expected_unused_bits,
390 int expected_result, int expected_result_null )
391{
392 mbedtls_asn1_bitstring bs = { 0xdead, 0x21, NULL };
393 unsigned char *p = input->x;
394
395 TEST_EQUAL( mbedtls_asn1_get_bitstring( &p, input->x + input->len, &bs ),
396 expected_result );
397 if( expected_result == 0 )
398 {
399 TEST_EQUAL( bs.len, (size_t) expected_length );
400 TEST_EQUAL( bs.unused_bits, expected_unused_bits );
401 TEST_ASSERT( bs.p != NULL );
402 TEST_EQUAL( bs.p - input->x + bs.len, input->len );
403 TEST_ASSERT( p == input->x + input->len );
404 }
405
406 p = input->x;
407 TEST_EQUAL( mbedtls_asn1_get_bitstring_null( &p, input->x + input->len,
408 &bs.len ),
409 expected_result_null );
410 if( expected_result_null == 0 )
411 {
412 TEST_EQUAL( bs.len, (size_t) expected_length );
413 if( expected_result == 0 )
414 TEST_ASSERT( p == input->x + input->len - bs.len );
415 }
416}
417/* END_CASE */
418
419/* BEGIN_CASE */
420void get_sequence_of( const data_t *input, int tag,
421 const char *description,
422 int expected_result )
423{
424 mbedtls_asn1_sequence head = { { 0, 0, NULL }, NULL };
425 mbedtls_asn1_sequence *cur, *next;
426 unsigned char *p = input->x;
427 const char *rest = description;
428 unsigned long n;
429
430 TEST_EQUAL( mbedtls_asn1_get_sequence_of( &p, input->x + input->len,
431 &head, tag ),
432 expected_result );
433 if( expected_result == 0 )
434 {
435 TEST_ASSERT( p == input->x + input->len );
436
437 if( ! *rest )
438 {
439 TEST_EQUAL( head.buf.tag, 0 );
440 TEST_ASSERT( head.buf.p == NULL );
441 TEST_EQUAL( head.buf.len, 0 );
442 TEST_ASSERT( head.next == NULL );
443 }
444 else
445 {
446 cur = &head;
447 while( *rest )
448 {
449 ++test_info.step;
450 TEST_ASSERT( cur != NULL );
451 TEST_EQUAL( cur->buf.tag, tag );
452 n = strtoul( rest, (char **) &rest, 0 );
453 TEST_EQUAL( n, (size_t)( cur->buf.p - input->x ) );
454 ++rest;
455 n = strtoul( rest, (char **) &rest, 0 );
456 TEST_EQUAL( n, cur->buf.len );
457 if( *rest )
458 ++rest;
459 cur = cur->next;
460 }
461 TEST_ASSERT( cur == NULL );
462 }
463 }
464
465exit:
466 cur = head.next;
467 while( cur != NULL )
468 {
469 next = cur->next;
470 mbedtls_free( cur );
471 cur = next;
472 }
473}
474/* END_CASE */
475
476/* BEGIN_CASE */
477void get_alg( const data_t *input,
478 int oid_offset, int oid_length,
479 int params_tag, int params_offset, int params_length,
480 int total_length,
481 int expected_result )
482{
483 mbedtls_asn1_buf oid = { -1, 0, NULL };
484 mbedtls_asn1_buf params = { -1, 0, NULL };
485 unsigned char *p = input->x;
486 int ret;
487
488 TEST_EQUAL( mbedtls_asn1_get_alg( &p, input->x + input->len,
489 &oid, &params ),
490 expected_result );
491 if( expected_result == 0 )
492 {
493 TEST_EQUAL( oid.tag, MBEDTLS_ASN1_OID );
494 TEST_EQUAL( oid.p - input->x, oid_offset );
495 TEST_EQUAL( oid.len, (size_t) oid_length );
496 TEST_EQUAL( params.tag, params_tag );
497 if( params_offset != 0 )
498 TEST_EQUAL( params.p - input->x, params_offset );
499 else
500 TEST_ASSERT( params.p == NULL );
501 TEST_EQUAL( params.len, (size_t) params_length );
502 TEST_EQUAL( p - input->x, total_length );
503 }
504
505 ret = mbedtls_asn1_get_alg_null( &p, input->x + input->len, &oid );
506 if( expected_result == 0 && params_offset == 0 )
507 {
508 TEST_EQUAL( oid.tag, MBEDTLS_ASN1_OID );
509 TEST_EQUAL( oid.p - input->x, oid_offset );
510 TEST_EQUAL( oid.len, (size_t) oid_length );
511 TEST_EQUAL( p - input->x, total_length );
512 }
513 else
514 TEST_ASSERT( ret != 0 );
515}
516/* END_CASE */
517
518/* BEGIN_CASE */
519void find_named_data( data_t *oid0, data_t *oid1, data_t *oid2, data_t *oid3,
520 data_t *needle, int from, int position )
521{
522 mbedtls_asn1_named_data nd[] ={
523 { {0x06, oid0->len, oid0->x}, {0, 0, NULL}, NULL, 0 },
524 { {0x06, oid1->len, oid1->x}, {0, 0, NULL}, NULL, 0 },
525 { {0x06, oid2->len, oid2->x}, {0, 0, NULL}, NULL, 0 },
526 { {0x06, oid3->len, oid3->x}, {0, 0, NULL}, NULL, 0 },
527 };
528 mbedtls_asn1_named_data *pointers[ARRAY_LENGTH( nd ) + 1];
529 size_t i;
530 mbedtls_asn1_named_data *found;
531
532 for( i = 0; i < ARRAY_LENGTH( nd ); i++ )
533 pointers[i] = &nd[i];
534 pointers[ARRAY_LENGTH( nd )] = NULL;
535 for( i = 0; i < ARRAY_LENGTH( nd ); i++ )
536 nd[i].next = pointers[i+1];
537
538 found = mbedtls_asn1_find_named_data( pointers[from],
539 (const char *) needle->x,
540 needle->len );
541 TEST_ASSERT( found == pointers[position] );
542}
543/* END_CASE */
544
545/* BEGIN_CASE */
546void free_named_data_null( )
547{
548 mbedtls_asn1_free_named_data( NULL );
549 goto exit; /* Silence unused label warning */
550}
551/* END_CASE */
552
553/* BEGIN_CASE */
554void free_named_data( int with_oid, int with_val, int with_next )
555{
556 mbedtls_asn1_named_data next =
557 { {0x06, 0, NULL}, {0, 0xcafe, NULL}, NULL, 0 };
558 mbedtls_asn1_named_data head =
559 { {0x06, 0, NULL}, {0, 0, NULL}, NULL, 0 };
560
561 if( with_oid )
562 ASSERT_ALLOC( head.oid.p, 1 );
563 if( with_val )
564 ASSERT_ALLOC( head.val.p, 1 );
565 if( with_next )
566 head.next = &next;
567
568 mbedtls_asn1_free_named_data( &head );
569 TEST_ASSERT( head.oid.p == NULL );
570 TEST_ASSERT( head.val.p == NULL );
571 TEST_ASSERT( head.next == NULL );
572 TEST_ASSERT( next.val.len == 0xcafe );
573
574exit:
575 mbedtls_free( head.oid.p );
576 mbedtls_free( head.val.p );
577}
578/* END_CASE */
579
580/* BEGIN_CASE */
581void free_named_data_list( int length )
582{
583 mbedtls_asn1_named_data *head = NULL;
584 int i;
585
586 for( i = 0; i < length; i++ )
587 {
588 mbedtls_asn1_named_data *new = NULL;
589 ASSERT_ALLOC( new, sizeof( mbedtls_asn1_named_data ) );
Gilles Peskine88f136f2019-09-20 21:06:27 +0200[diff] [blame]590 new->next = head;
Gilles Peskine27d806f2019-03-01 18:02:53 +0100[diff] [blame]591 head = new;
592 }
593
594 mbedtls_asn1_free_named_data_list( &head );
595 TEST_ASSERT( head == NULL );
596 /* Most of the point of the test is that it doesn't leak memory.
597 * So this test is only really useful under a memory leak detection
598 * framework. */
599exit:
600 mbedtls_asn1_free_named_data_list( &head );
601}
602/* END_CASE */