/*
* Copyright 2024 The OpenSSL Project Authors. All Rights Reserved.
*
* Licensed under the Apache License 2.0 (the "License"). You may not use
* this file except in compliance with the License. You can obtain a copy
* in the file LICENSE in the source distribution or at
* https://www.openssl.org/source/license.html
*/
#include "testutil.h"
#include <openssl/bio.h>
#include <openssl/pem.h>
/* dummy data that needs to be passed to the callback */
typedef struct CallbackData {
char magic;
int result;
} CALLBACK_DATA;
/* constants */
static const char weak_password[] = "weak_password";
static const char a0a_password[] = "aaaaaaaa\0aaaaaaaa";
static const char a0b_password[] = "aaaaaaaa\0bbbbbbbb";
static const char cb_magic = 'p';
/* shared working data for all tests */
static char *key_file = NULL;
static EVP_PKEY *original_pkey = NULL;
/* the test performed by the callback */
typedef enum CallbackTest {
CB_TEST_NEGATIVE = 0,
CB_TEST_ZERO_LENGTH,
CB_TEST_WEAK,
CB_TEST_16ZERO,
CB_TEST_A0A,
CB_TEST_A0B,
CB_TEST_MATCH_SIZE,
CB_TEST_EXCEED_SIZE
} CALLBACK_TEST;
static CALLBACK_TEST callback_test = CB_TEST_NEGATIVE;
typedef enum KeyEncoding {
KE_PEM = 0,
KE_PKCS8
} KEY_ENCODING;
typedef enum ExpectedResult {
ER_FAILURE = 0,
ER_SUCCESS
} EXPECTED_RESULT;
typedef enum OPTION_choice {
OPT_ERR = -1,
OPT_EOF = 0,
OPT_KEY_FILE,
OPT_TEST_ENUM
} OPTION_CHOICE;
const OPTIONS *test_get_options(void)
{
static const OPTIONS test_options[] = {
OPT_TEST_OPTIONS_DEFAULT_USAGE,
{ "keyfile", OPT_KEY_FILE, '<',
"The PEM file with the encrypted key to load" },
{ NULL }
};
return test_options;
}
static int callback_copy_password(char *buf, int size)
{
int ret = -1;
switch (callback_test) {
case CB_TEST_NEGATIVE:
break;
case CB_TEST_ZERO_LENGTH:
ret = 0;
break;
case CB_TEST_WEAK:
ret = sizeof(weak_password) - 1;
memcpy(buf, weak_password, ret);
break;
case CB_TEST_16ZERO:
memset(buf, 0, 16);
ret = 16;
break;
case CB_TEST_A0A:
ret = sizeof(a0a_password) - 1;
memcpy(buf, a0a_password, ret);
break;
case CB_TEST_A0B:
ret = sizeof(a0b_password) - 1;
memcpy(buf, a0b_password, ret);
break;
case CB_TEST_MATCH_SIZE:
memset(buf, 'e', size);
ret = size;
break;
case CB_TEST_EXCEED_SIZE:
memset(buf, 'e', size);
ret = 1000000;
break;
}
return ret;
}
static int read_callback(char *buf, int size, int rwflag, void *u)
{
CALLBACK_DATA *cb_data = (CALLBACK_DATA *)u;
int ret = -1;
/* basic verification of the received data */
if (!TEST_ptr(cb_data))
goto err;
if (!TEST_char_eq(cb_data->magic, cb_magic))
goto err;
if (!TEST_ptr(buf))
goto err;
if (!TEST_int_gt(size, 0))
goto err;
if (!TEST_int_eq(rwflag, 0))
goto err;
ret = callback_copy_password(buf, size);
cb_data->result = 1;
err:
return ret;
}
static int write_callback(char *buf, int size, int rwflag, void *u)
{
CALLBACK_DATA *cb_data = (CALLBACK_DATA *)u;
int ret = -1;
/* basic verification of the received data */
if (!TEST_ptr(cb_data))
goto err;
if (!TEST_char_eq(cb_data->magic, cb_magic))
goto err;
if (!TEST_ptr(buf))
goto err;
if (!TEST_int_gt(size, 0))
goto err;
if (!TEST_int_eq(rwflag, 1))
goto err;
ret = callback_copy_password(buf, size);
cb_data->result = 1;
err:
return ret;
}
static int re_encrypt_key(char **enc_data, int *enc_data_size,
KEY_ENCODING key_encoding)
{
CALLBACK_DATA cb_data;
int w_ret = 0;
BUF_MEM *bptr = NULL;
BIO *bio = NULL;
int ret = 0;
if (!TEST_ptr(enc_data))
goto err;
if (!TEST_ptr(enc_data_size))
goto err;
if (!TEST_ptr(bio = BIO_new(BIO_s_mem())))
goto err;
cb_data.magic = cb_magic;
cb_data.result = 0;
switch (key_encoding) {
case KE_PEM:
w_ret = PEM_write_bio_PrivateKey(bio, original_pkey, EVP_aes_256_cbc(),
NULL, 0, write_callback, &cb_data);
break;
case KE_PKCS8:
w_ret = i2d_PKCS8PrivateKey_bio(bio, original_pkey, EVP_aes_256_cbc(),
NULL, 0, write_callback, &cb_data);
break;
}
if (!TEST_int_ne(w_ret, 0))
goto err;
if (!TEST_char_eq(cb_data.magic, cb_magic))
goto err;
if (!TEST_int_eq(cb_data.result, 1))
goto err;
*enc_data_size = BIO_get_mem_data(bio, enc_data);
BIO_get_mem_ptr(bio, &bptr);
if (!BIO_set_close(bio, BIO_NOCLOSE))
goto err;
bptr->data = NULL;
ret = 1;
err:
BUF_MEM_free(bptr);
BIO_free(bio);
return ret;
}
static int decrypt_key(char *enc_data, int enc_data_size,
KEY_ENCODING key_encoding,
EXPECTED_RESULT expected_result)
{
CALLBACK_DATA cb_data;
EVP_PKEY *r_ret = NULL;
BIO *bio = NULL;
EVP_PKEY *pkey = NULL;
int ret = 0;
if (!TEST_ptr(bio = BIO_new_mem_buf(enc_data, enc_data_size)))
goto err;
cb_data.magic = cb_magic;
cb_data.result = 0;
switch (key_encoding) {
case KE_PEM:
r_ret = PEM_read_bio_PrivateKey(bio, &pkey, read_callback, &cb_data);
break;
case KE_PKCS8:
r_ret = d2i_PKCS8PrivateKey_bio(bio, &pkey, read_callback, &cb_data);
break;
}
if (expected_result == ER_SUCCESS) {
if (!TEST_ptr(r_ret))
goto err;
} else {
if (!TEST_ptr_null(r_ret))
goto err;
}
if (!TEST_char_eq(cb_data.magic, cb_magic))
goto err;
if (!TEST_int_eq(cb_data.result, 1))
goto err;
ret = 1;
err:
EVP_PKEY_free(pkey);
BIO_free(bio);
return ret;
}
static int full_cycle_test(KEY_ENCODING key_encoding, CALLBACK_TEST write_test,
CALLBACK_TEST read_test,
EXPECTED_RESULT expected_read_result)
{
char *enc_data = NULL;
int enc_data_size = 0;
int ret = 0;
callback_test = write_test;
if (!re_encrypt_key(&enc_data, &enc_data_size, key_encoding))
goto err;
callback_test = read_test;
if (!decrypt_key(enc_data, enc_data_size, key_encoding,
expected_read_result))
goto err;
ret = 1;
err:
OPENSSL_free(enc_data);
return ret;
}
static int test_pem_negative(void)
{
return full_cycle_test(KE_PEM, CB_TEST_WEAK, CB_TEST_NEGATIVE, ER_FAILURE);
}
static int test_pem_zero_length(void)
{
return full_cycle_test(KE_PEM, CB_TEST_ZERO_LENGTH, CB_TEST_ZERO_LENGTH,
ER_SUCCESS);
}
static int test_pem_weak(void)
{
return full_cycle_test(KE_PEM, CB_TEST_WEAK, CB_TEST_WEAK, ER_SUCCESS);
}
static int test_pem_16zero(void)
{
return full_cycle_test(KE_PEM, CB_TEST_16ZERO, CB_TEST_16ZERO, ER_SUCCESS);
}
static int test_pem_a0a(void)
{
return full_cycle_test(KE_PEM, CB_TEST_A0A, CB_TEST_A0A, ER_SUCCESS);
}
static int test_pem_a0a_a0b(void)
{
return full_cycle_test(KE_PEM, CB_TEST_A0A, CB_TEST_A0B, ER_FAILURE);
}
static int test_pem_match_size(void)
{
return full_cycle_test(KE_PEM, CB_TEST_MATCH_SIZE, CB_TEST_MATCH_SIZE,
ER_SUCCESS);
}
static int test_pem_exceed_size(void)
{
return full_cycle_test(KE_PEM, CB_TEST_MATCH_SIZE, CB_TEST_EXCEED_SIZE,
ER_FAILURE);
}
static int test_pkcs8_negative(void)
{
return full_cycle_test(KE_PKCS8, CB_TEST_WEAK, CB_TEST_NEGATIVE, ER_FAILURE);
}
static int test_pkcs8_zero_length(void)
{
return full_cycle_test(KE_PKCS8, CB_TEST_ZERO_LENGTH, CB_TEST_ZERO_LENGTH,
ER_SUCCESS);
}
static int test_pkcs8_weak(void)
{
return full_cycle_test(KE_PKCS8, CB_TEST_WEAK, CB_TEST_WEAK, ER_SUCCESS);
}
static int test_pkcs8_16zero(void)
{
return full_cycle_test(KE_PKCS8, CB_TEST_16ZERO, CB_TEST_16ZERO,
ER_SUCCESS);
}
static int test_pkcs8_a0a(void)
{
return full_cycle_test(KE_PKCS8, CB_TEST_A0A, CB_TEST_A0A, ER_SUCCESS);
}
static int test_pkcs8_a0a_a0b(void)
{
return full_cycle_test(KE_PKCS8, CB_TEST_A0A, CB_TEST_A0B, ER_FAILURE);
}
static int test_pkcs8_match_size(void)
{
return full_cycle_test(KE_PKCS8, CB_TEST_MATCH_SIZE, CB_TEST_MATCH_SIZE,
ER_SUCCESS);
}
static int test_pkcs8_exceed_size(void)
{
return full_cycle_test(KE_PKCS8, CB_TEST_MATCH_SIZE, CB_TEST_EXCEED_SIZE,
ER_FAILURE);
}
static int callback_original_pw(char *buf, int size, int rwflag, void *u)
{
memcpy(buf, weak_password, sizeof(weak_password) - 1);
return sizeof(weak_password) - 1;
}
int setup_tests(void)
{
OPTION_CHOICE o;
BIO *bio = NULL;
while ((o = opt_next()) != OPT_EOF) {
switch (o) {
case OPT_KEY_FILE:
key_file = opt_arg();
break;
case OPT_TEST_CASES:
break;
default:
case OPT_ERR:
return 0;
}
}
/* read the original key */
if (!TEST_ptr(bio = BIO_new_file(key_file, "r")))
return 0;
if (!TEST_ptr(PEM_read_bio_PrivateKey(bio, &original_pkey,
callback_original_pw, NULL)))
return 0;
BIO_free(bio);
/* add all tests */
ADD_TEST(test_pem_negative);
ADD_TEST(test_pem_zero_length);
ADD_TEST(test_pem_weak);
ADD_TEST(test_pem_16zero);
ADD_TEST(test_pem_a0a);
ADD_TEST(test_pem_a0a_a0b);
ADD_TEST(test_pem_match_size);
ADD_TEST(test_pem_exceed_size);
ADD_TEST(test_pkcs8_negative);
ADD_TEST(test_pkcs8_zero_length);
ADD_TEST(test_pkcs8_weak);
ADD_TEST(test_pkcs8_16zero);
ADD_TEST(test_pkcs8_a0a);
ADD_TEST(test_pkcs8_a0a_a0b);
ADD_TEST(test_pkcs8_match_size);
ADD_TEST(test_pkcs8_exceed_size);
return 1;
}
void cleanup_tests(void)
{
EVP_PKEY_free(original_pkey);
}