2011-10-28 06:20:07 +00:00
|
|
|
/*
|
2018-02-23 09:53:12 +01:00
|
|
|
* Copyright (C) Internet Systems Consortium, Inc. ("ISC")
|
2011-10-28 06:20:07 +00:00
|
|
|
*
|
2016-06-27 14:56:38 +10:00
|
|
|
* This Source Code Form is subject to the terms of the Mozilla Public
|
|
|
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
|
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/.
|
2018-02-23 09:53:12 +01:00
|
|
|
*
|
|
|
|
|
* See the COPYRIGHT file distributed with this work for additional
|
|
|
|
|
* information regarding copyright ownership.
|
2011-10-28 06:20:07 +00:00
|
|
|
*/
|
|
|
|
|
|
2018-11-10 13:37:03 +07:00
|
|
|
#if HAVE_CMOCKA
|
|
|
|
|
|
2018-03-28 14:19:37 +02:00
|
|
|
#include <inttypes.h>
|
Include <sched.h> where necessary for musl libc
All unit tests define the UNIT_TESTING macro, which causes <cmocka.h> to
replace malloc(), calloc(), realloc(), and free() with its own functions
tracking memory allocations. In order for this not to break
compilation, the system header declaring the prototypes for these
standard functions must be included before <cmocka.h>.
Normally, these prototypes are only present in <stdlib.h>, so we make
sure it is included before <cmocka.h>. However, musl libc also defines
the prototypes for calloc() and free() in <sched.h>, which is included
by <pthread.h>, which is included e.g. by <isc/mutex.h>. Thus, unit
tests including "dnstest.h" (which includes <isc/mem.h>, which includes
<isc/mutex.h>) after <cmocka.h> will not compile with musl libc as for
these programs, <sched.h> will be included after <cmocka.h>.
Always including <cmocka.h> after all other header files is not a
feasible solution as that causes the mock assertion macros defined in
<isc/util.h> to mangle the contents of <cmocka.h>, thus breaking
compilation. We cannot really use the __noreturn__ or analyzer_noreturn
attributes with cmocka assertion functions because they do return if the
tested condition is true. The problem is that what BIND unit tests do
is incompatible with Clang Static Analyzer's assumptions: since we use
cmocka, our custom assertion handlers are present in a shared library
(i.e. it is the cmocka library that checks the assertion condition, not
a macro in unit test code). Redefining cmocka's assertion macros in
<isc/util.h> is an ugly hack to overcome that problem - unfortunately,
this is the only way we can think of to make Clang Static Analyzer
properly process unit test code. Giving up on Clang Static Analyzer
being able to properly process unit test code is not a satisfactory
solution.
Undefining _GNU_SOURCE for unit test code could work around the problem
(musl libc's <sched.h> only defines the prototypes for calloc() and
free() when _GNU_SOURCE is defined), but doing that could introduce
discrepancies for unit tests including entire *.c files, so it is also
not a good solution.
All in all, including <sched.h> before <cmocka.h> for all affected unit
tests seems to be the most benign way of working around this musl libc
quirk. While quite an ugly solution, it achieves our goals here, which
are to keep the benefit of proper static analysis of unit test code and
to fix compilation against musl libc.
2019-07-30 21:08:40 +02:00
|
|
|
#include <sched.h> /* IWYU pragma: keep */
|
2020-02-12 13:59:18 +01:00
|
|
|
#include <setjmp.h>
|
|
|
|
|
#include <stdarg.h>
|
2018-04-17 08:29:14 -07:00
|
|
|
#include <stdbool.h>
|
2020-02-12 13:59:18 +01:00
|
|
|
#include <stddef.h>
|
2018-11-10 13:37:03 +07:00
|
|
|
#include <stdlib.h>
|
2011-10-28 06:20:07 +00:00
|
|
|
#include <unistd.h>
|
|
|
|
|
|
2018-11-10 13:37:03 +07:00
|
|
|
#define UNIT_TESTING
|
|
|
|
|
#include <cmocka.h>
|
|
|
|
|
|
2011-10-28 06:20:07 +00:00
|
|
|
#include <isc/buffer.h>
|
2020-02-12 13:59:18 +01:00
|
|
|
#include <isc/util.h>
|
2011-10-28 06:20:07 +00:00
|
|
|
|
|
|
|
|
#include <dns/nsec3.h>
|
|
|
|
|
#include <dns/private.h>
|
|
|
|
|
#include <dns/rdataclass.h>
|
|
|
|
|
#include <dns/rdatatype.h>
|
|
|
|
|
|
2020-02-12 13:59:18 +01:00
|
|
|
#include <dst/dst.h>
|
|
|
|
|
|
2020-03-09 16:17:26 +01:00
|
|
|
#include "dnstest.h"
|
|
|
|
|
|
2011-10-28 06:20:07 +00:00
|
|
|
static dns_rdatatype_t privatetype = 65534;
|
|
|
|
|
|
2018-11-10 13:37:03 +07:00
|
|
|
static int
|
2020-02-13 14:44:37 -08:00
|
|
|
_setup(void **state) {
|
2018-11-10 13:37:03 +07:00
|
|
|
isc_result_t result;
|
|
|
|
|
|
|
|
|
|
UNUSED(state);
|
|
|
|
|
|
|
|
|
|
result = dns_test_begin(NULL, false);
|
|
|
|
|
assert_int_equal(result, ISC_R_SUCCESS);
|
|
|
|
|
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
2020-02-13 14:44:37 -08:00
|
|
|
_teardown(void **state) {
|
2018-11-10 13:37:03 +07:00
|
|
|
UNUSED(state);
|
|
|
|
|
|
|
|
|
|
dns_test_end();
|
|
|
|
|
|
|
|
|
|
return (0);
|
|
|
|
|
}
|
|
|
|
|
|
2011-10-28 06:20:07 +00:00
|
|
|
typedef struct {
|
|
|
|
|
unsigned char alg;
|
2020-02-13 14:44:37 -08:00
|
|
|
dns_keytag_t keyid;
|
|
|
|
|
bool remove;
|
|
|
|
|
bool complete;
|
2011-10-28 06:20:07 +00:00
|
|
|
} signing_testcase_t;
|
|
|
|
|
|
|
|
|
|
typedef struct {
|
|
|
|
|
unsigned char hash;
|
|
|
|
|
unsigned char flags;
|
2020-02-13 14:44:37 -08:00
|
|
|
unsigned int iterations;
|
2011-10-28 06:20:07 +00:00
|
|
|
unsigned long salt;
|
2020-02-13 14:44:37 -08:00
|
|
|
bool remove;
|
|
|
|
|
bool pending;
|
|
|
|
|
bool nonsec;
|
2011-10-28 06:20:07 +00:00
|
|
|
} nsec3_testcase_t;
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
|
make_signing(signing_testcase_t *testcase, dns_rdata_t *private,
|
2020-02-13 14:44:37 -08:00
|
|
|
unsigned char *buf, size_t len) {
|
2011-10-28 06:20:07 +00:00
|
|
|
dns_rdata_init(private);
|
|
|
|
|
|
|
|
|
|
buf[0] = testcase->alg;
|
|
|
|
|
buf[1] = (testcase->keyid & 0xff00) >> 8;
|
|
|
|
|
buf[2] = (testcase->keyid & 0xff);
|
|
|
|
|
buf[3] = testcase->remove;
|
|
|
|
|
buf[4] = testcase->complete;
|
2020-02-12 13:59:18 +01:00
|
|
|
private
|
|
|
|
|
->data = buf;
|
|
|
|
|
private
|
|
|
|
|
->length = len;
|
|
|
|
|
private
|
|
|
|
|
->type = privatetype;
|
|
|
|
|
private
|
|
|
|
|
->rdclass = dns_rdataclass_in;
|
2011-10-28 06:20:07 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
|
make_nsec3(nsec3_testcase_t *testcase, dns_rdata_t *private,
|
2020-02-13 14:44:37 -08:00
|
|
|
unsigned char *pbuf) {
|
2011-10-28 06:20:07 +00:00
|
|
|
dns_rdata_nsec3param_t params;
|
2020-02-13 14:44:37 -08:00
|
|
|
dns_rdata_t nsec3param = DNS_RDATA_INIT;
|
|
|
|
|
unsigned char bufdata[BUFSIZ];
|
|
|
|
|
isc_buffer_t buf;
|
|
|
|
|
uint32_t salt;
|
|
|
|
|
unsigned char *sp;
|
|
|
|
|
int slen = 4;
|
2011-10-28 06:20:07 +00:00
|
|
|
|
|
|
|
|
/* for simplicity, we're using a maximum salt length of 4 */
|
|
|
|
|
salt = htonl(testcase->salt);
|
2020-02-12 13:59:18 +01:00
|
|
|
sp = (unsigned char *)&salt;
|
Address GCC 9.1 -O3 compilation warnings
Compiling with -O3 triggers the following warnings with GCC 9.1:
task.c: In function ‘isc_taskmgr_create’:
task.c:1384:43: warning: ‘%04u’ directive output may be truncated writing between 4 and 10 bytes into a region of size 6 [-Wformat-truncation=]
1384 | snprintf(name, sizeof(name), "isc-worker%04u", i);
| ^~~~
task.c:1384:32: note: directive argument in the range [0, 4294967294]
1384 | snprintf(name, sizeof(name), "isc-worker%04u", i);
| ^~~~~~~~~~~~~~~~
task.c:1384:3: note: ‘snprintf’ output between 15 and 21 bytes into a destination of size 16
1384 | snprintf(name, sizeof(name), "isc-worker%04u", i);
| ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
private_test.c: In function ‘private_nsec3_totext_test’:
private_test.c:110:9: warning: array subscript 4 is outside array bounds of ‘uint32_t[1]’ {aka ‘unsigned int[1]’} [-Warray-bounds]
110 | while (*sp == '\0' && slen > 0) {
| ^~~
private_test.c:103:11: note: while referencing ‘salt’
103 | uint32_t salt;
| ^~~~
Prevent these warnings from being triggered by increasing the size of
the relevant array (task.c) and reordering conditions (private_test.c).
2019-05-31 14:34:34 +02:00
|
|
|
while (slen > 0 && *sp == '\0') {
|
2011-10-28 06:20:07 +00:00
|
|
|
slen--;
|
|
|
|
|
sp++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
params.common.rdclass = dns_rdataclass_in;
|
|
|
|
|
params.common.rdtype = dns_rdatatype_nsec3param;
|
|
|
|
|
params.hash = testcase->hash;
|
|
|
|
|
params.iterations = testcase->iterations;
|
|
|
|
|
params.salt = sp;
|
|
|
|
|
params.salt_length = slen;
|
|
|
|
|
|
|
|
|
|
params.flags = testcase->flags;
|
|
|
|
|
if (testcase->remove) {
|
|
|
|
|
params.flags |= DNS_NSEC3FLAG_REMOVE;
|
2018-11-10 13:37:03 +07:00
|
|
|
if (testcase->nonsec) {
|
2011-10-28 06:20:07 +00:00
|
|
|
params.flags |= DNS_NSEC3FLAG_NONSEC;
|
2018-11-10 13:37:03 +07:00
|
|
|
}
|
2011-10-28 06:20:07 +00:00
|
|
|
} else {
|
|
|
|
|
params.flags |= DNS_NSEC3FLAG_CREATE;
|
2018-11-10 13:37:03 +07:00
|
|
|
if (testcase->pending) {
|
2011-10-28 06:20:07 +00:00
|
|
|
params.flags |= DNS_NSEC3FLAG_INITIAL;
|
2018-11-10 13:37:03 +07:00
|
|
|
}
|
2011-10-28 06:20:07 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
isc_buffer_init(&buf, bufdata, sizeof(bufdata));
|
|
|
|
|
dns_rdata_fromstruct(&nsec3param, dns_rdataclass_in,
|
|
|
|
|
dns_rdatatype_nsec3param, ¶ms, &buf);
|
|
|
|
|
|
|
|
|
|
dns_rdata_init(private);
|
|
|
|
|
|
2020-02-12 13:59:18 +01:00
|
|
|
dns_nsec3param_toprivate(&nsec3param, private, privatetype, pbuf,
|
|
|
|
|
DNS_NSEC3PARAM_BUFFERSIZE + 1);
|
2011-10-28 06:20:07 +00:00
|
|
|
}
|
|
|
|
|
|
2018-11-10 13:37:03 +07:00
|
|
|
/* convert private signing records to text */
|
|
|
|
|
static void
|
2020-02-13 14:44:37 -08:00
|
|
|
private_signing_totext_test(void **state) {
|
2011-10-28 06:20:07 +00:00
|
|
|
dns_rdata_t private;
|
|
|
|
|
int i;
|
|
|
|
|
|
2020-02-12 13:59:18 +01:00
|
|
|
signing_testcase_t testcases[] = { { DST_ALG_RSASHA512, 12345, 0, 0 },
|
|
|
|
|
{ DST_ALG_RSASHA256, 54321, 1, 0 },
|
|
|
|
|
{ DST_ALG_NSEC3RSASHA1, 22222, 0,
|
|
|
|
|
1 },
|
|
|
|
|
{ DST_ALG_RSASHA1, 33333, 1, 1 } };
|
2020-02-13 14:44:37 -08:00
|
|
|
const char *results[] = { "Signing with key 12345/RSASHA512",
|
|
|
|
|
"Removing signatures for key 54321/RSASHA256",
|
|
|
|
|
"Done signing with key 22222/NSEC3RSASHA1",
|
|
|
|
|
"Done removing signatures for key "
|
|
|
|
|
"33333/RSASHA1" };
|
|
|
|
|
int ncases = 4;
|
2011-10-28 06:20:07 +00:00
|
|
|
|
2018-11-10 13:37:03 +07:00
|
|
|
UNUSED(state);
|
2011-10-28 06:20:07 +00:00
|
|
|
|
|
|
|
|
for (i = 0; i < ncases; i++) {
|
|
|
|
|
unsigned char data[5];
|
2020-02-13 14:44:37 -08:00
|
|
|
char output[BUFSIZ];
|
|
|
|
|
isc_buffer_t buf;
|
2011-10-28 06:20:07 +00:00
|
|
|
|
|
|
|
|
isc_buffer_init(&buf, output, sizeof(output));
|
|
|
|
|
|
2012-10-29 20:04:59 +11:00
|
|
|
make_signing(&testcases[i], &private, data, sizeof(data));
|
2011-10-28 06:20:07 +00:00
|
|
|
dns_private_totext(&private, &buf);
|
2018-11-10 13:37:03 +07:00
|
|
|
assert_string_equal(output, results[i]);
|
2011-10-28 06:20:07 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-10 13:37:03 +07:00
|
|
|
/* convert private chain records to text */
|
|
|
|
|
static void
|
2020-02-13 14:44:37 -08:00
|
|
|
private_nsec3_totext_test(void **state) {
|
2011-10-28 06:20:07 +00:00
|
|
|
dns_rdata_t private;
|
|
|
|
|
int i;
|
|
|
|
|
|
|
|
|
|
nsec3_testcase_t testcases[] = {
|
|
|
|
|
{ 1, 0, 1, 0xbeef, 0, 0, 0 },
|
|
|
|
|
{ 1, 1, 10, 0xdadd, 0, 0, 0 },
|
|
|
|
|
{ 1, 0, 20, 0xbead, 0, 1, 0 },
|
|
|
|
|
{ 1, 0, 30, 0xdeaf, 1, 0, 0 },
|
|
|
|
|
{ 1, 0, 100, 0xfeedabee, 1, 0, 1 },
|
|
|
|
|
};
|
2020-02-12 13:59:18 +01:00
|
|
|
const char *results[] = { "Creating NSEC3 chain 1 0 1 BEEF",
|
|
|
|
|
"Creating NSEC3 chain 1 1 10 DADD",
|
|
|
|
|
"Pending NSEC3 chain 1 0 20 BEAD",
|
|
|
|
|
"Removing NSEC3 chain 1 0 30 DEAF / creating "
|
|
|
|
|
"NSEC chain",
|
|
|
|
|
"Removing NSEC3 chain 1 0 100 FEEDABEE" };
|
2020-02-13 14:44:37 -08:00
|
|
|
int ncases = 5;
|
2011-10-28 06:20:07 +00:00
|
|
|
|
2018-11-10 13:37:03 +07:00
|
|
|
UNUSED(state);
|
2011-10-28 06:20:07 +00:00
|
|
|
|
|
|
|
|
for (i = 0; i < ncases; i++) {
|
|
|
|
|
unsigned char data[DNS_NSEC3PARAM_BUFFERSIZE + 1];
|
2020-02-13 14:44:37 -08:00
|
|
|
char output[BUFSIZ];
|
|
|
|
|
isc_buffer_t buf;
|
2011-10-28 06:20:07 +00:00
|
|
|
|
|
|
|
|
isc_buffer_init(&buf, output, sizeof(output));
|
|
|
|
|
|
|
|
|
|
make_nsec3(&testcases[i], &private, data);
|
|
|
|
|
dns_private_totext(&private, &buf);
|
2018-11-10 13:37:03 +07:00
|
|
|
assert_string_equal(output, results[i]);
|
2011-10-28 06:20:07 +00:00
|
|
|
}
|
2018-11-10 13:37:03 +07:00
|
|
|
}
|
2011-10-28 06:20:07 +00:00
|
|
|
|
2018-11-10 13:37:03 +07:00
|
|
|
int
|
2020-02-13 14:44:37 -08:00
|
|
|
main(void) {
|
2018-11-10 13:37:03 +07:00
|
|
|
const struct CMUnitTest tests[] = {
|
|
|
|
|
cmocka_unit_test_setup_teardown(private_signing_totext_test,
|
|
|
|
|
_setup, _teardown),
|
|
|
|
|
cmocka_unit_test_setup_teardown(private_nsec3_totext_test,
|
|
|
|
|
_setup, _teardown),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
return (cmocka_run_group_tests(tests, NULL, NULL));
|
2011-10-28 06:20:07 +00:00
|
|
|
}
|
|
|
|
|
|
2018-11-10 13:37:03 +07:00
|
|
|
#else /* HAVE_CMOCKA */
|
|
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
|
|
|
|
|
int
|
2020-02-13 14:44:37 -08:00
|
|
|
main(void) {
|
2018-11-10 13:37:03 +07:00
|
|
|
printf("1..0 # Skipped: cmocka not available\n");
|
|
|
|
|
return (0);
|
2011-10-28 06:20:07 +00:00
|
|
|
}
|
|
|
|
|
|
2020-02-13 21:48:23 +01:00
|
|
|
#endif /* if HAVE_CMOCKA */
|
