1 /*
2 * Copyright (c) 2024 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include <cstddef>
17 #include <cstdint>
18 #include <memory>
19 #include "securec.h"
20 #include "../profile_resources.h"
21
22 namespace OHOS {
23 namespace SignatureTools {
SignProfileTest001(const uint8_t * data,size_t size)24 bool SignProfileTest001(const uint8_t* data, size_t size)
25 {
26 std::string content(data, data + size);
27 Options options;
28 std::string mode = SIGN_PROFILE_MODE;
29 std::string keyAlias = SIGN_PROFILE_KEY_ALIAS;
30 std::string profileCertFile = SIGN_PROFILE_PROFILE_CERT_FILE;
31 std::string signAlg = SIGN_PROFILE_SIGN_ALG;
32 std::string keystoreFile = SIGN_PROFILE_KEY_STORE_FILE;
33 std::string outFile = SIGN_PROFILE_OUT_FILE;
34 std::string inFile = SIGN_PROFILE_IN_FILE;
35 char keyStorePwd[] = "123456";
36 char keypwd[] = "123456";
37 options[Options::KEY_ALIAS] = keyAlias;
38 options[Options::MODE] = mode;
39 options[Options::PROFILE_CERT_FILE] = profileCertFile;
40 options[Options::SIGN_ALG] = signAlg;
41 options[Options::KEY_STORE_FILE] = keystoreFile;
42 options[Options::OUT_FILE] = outFile;
43 options[Options::IN_FILE] = inFile;
44 options[Options::KEY_RIGHTS] = keypwd;
45 options[Options::KEY_STORE_RIGHTS] = keyStorePwd;
46
47 LocalizationAdapter adapter(&options);
48 SignerFactory factory;
49 std::shared_ptr<Signer> signer = factory.GetSigner(adapter);
50 PKCS7Data p7;
51 std::string p7b;
52 int result = p7.Sign(content, signer, signAlg, p7b);
53 return result == 0;
54 }
55
SignProfileTest002(const uint8_t * data,size_t size)56 bool SignProfileTest002(const uint8_t* data, size_t size)
57 {
58 Options options;
59 std::string mode = SIGN_PROFILE_MODE;
60 std::string keyAlias = SIGN_PROFILE_KEY_ALIAS;
61 std::string profileCertFile = SIGN_PROFILE_PROFILE_CERT_FILE;
62 std::string signAlg = SIGN_PROFILE_SIGN_ALG;
63 std::string keystoreFile = SIGN_PROFILE_KEY_STORE_FILE;
64 std::string outFile = SIGN_PROFILE_OUT_FILE;
65 std::string inFile = SIGN_PROFILE_IN_FILE;
66 char keyStorePwd[] = "123456";
67 char keypwd[] = "123456";
68 options[Options::KEY_ALIAS] = keyAlias;
69 options[Options::MODE] = mode;
70 options[Options::PROFILE_CERT_FILE] = profileCertFile;
71 options[Options::SIGN_ALG] = signAlg;
72 options[Options::KEY_STORE_FILE] = keystoreFile;
73 options[Options::OUT_FILE] = outFile;
74 options[Options::IN_FILE] = inFile;
75 options[Options::KEY_RIGHTS] = keypwd;
76 options[Options::KEY_STORE_RIGHTS] = keyStorePwd;
77
78 LocalizationAdapter adapter(&options);
79 SignerFactory factory;
80 std::shared_ptr<Signer> signer = factory.GetSigner(adapter);
81 STACK_OF(X509)* certs = signer->GetCertificates();
82 PKCS7Data::PrintCertChainSub(certs);
83 return true;
84 }
85
SignProfileTest003(const uint8_t * data,size_t size)86 bool SignProfileTest003(const uint8_t* data, size_t size)
87 {
88 ASN1_TIME* time_ = ASN1_TIME_new();
89 time_t now;
90 if (time(&now) < 0) {
91 return false;
92 }
93 ASN1_TIME_set(time_, now);
94 std::string result = PKCS7Data::GetASN1Time(time_);
95 ASN1_TIME_free(time_);
96 return result.empty() == false;
97 }
98
SignProfileTest004(const uint8_t * data,size_t size)99 bool SignProfileTest004(const uint8_t* data, size_t size)
100 {
101 ProfileInfo info;
102 info.type = ProvisionType::RELEASE;
103 ProfileInfo info2(info);
104 return true;
105 }
106
SignProfileTest005(const uint8_t * data,size_t size)107 bool SignProfileTest005(const uint8_t* data, size_t size)
108 {
109 std::string provision = "{\"app-distribution-type\": \"app_gallery\",\"b"
110 "undle-info\":{\"app-feature\":\"hos_system_app\",\"bundle-name\":\"com.Op"
111 "enHarmony.app.test\",\"developer-id\":\"OpenHarmony\",\"distribution-certif"
112 "icate\":\"-----BEGIN CERTIFICATE-----\\n"
113 "MIICMzCCAbegAwIBAgIEaOC/zDAMBggqhkjOPQQDAwUAMGMxCzAJBgNVBAYTAkNO\\n"
114 "MRQwEgYDVQQKEwtPcGVuSGFybW9ueTEZMBcGA1UECxMQT3Blbkhhcm1vbnkgVGVh\\n"
115 "bTEjMCEGA1UEAxMaT3Blbkhhcm1vbnkgQXBwbGljYXRpb24gQ0EwHhcNMjEwMjAy\\n"
116 "MTIxOTMxWhcNNDkxMjMxMTIxOTMxWjBoMQswCQYDVQQGEwJDTjEUMBIGA1UEChML\\n"
117 "T3Blbkhhcm1vbnkxGTAXBgNVBAsTEE9wZW5IYXJtb255IFRlYW0xKDAmBgNVBAMT\\n"
118 "H09wZW5IYXJtb255IEFwcGxpY2F0aW9uIFJlbGVhc2UwWTATBgcqhkjOPQIBBggq\\n"
119 "hkjOPQMBBwNCAATbYOCQQpW5fdkYHN45v0X3AHax12jPBdEDosFRIZ1eXmxOYzSG\\n"
120 "JwMfsHhUU90E8lI0TXYZnNmgM1sovubeQqATo1IwUDAfBgNVHSMEGDAWgBTbhrci\\n"
121 "FtULoUu33SV7ufEFfaItRzAOBgNVHQ8BAf8EBAMCB4AwHQYDVR0OBBYEFPtxruhl\\n"
122 "cRBQsJdwcZqLu9oNUVgaMAwGCCqGSM49BAMDBQADaAAwZQIxAJta0PQ2p4DIu/ps\\n"
123 "LMdLCDgQ5UH1l0B4PGhBlMgdi2zf8nk9spazEQI/0XNwpft8QAIwHSuA2WelVi/o\\n"
124 "zAlF08DnbJrOOtOnQq5wHOPlDYB4OtUzOYJk9scotrEnJxJzGsh/\\n"
125 "-----END CERTIFICATE-----\\n"
126 "\"},\"debug-info\":{\"device-id-type\":\"udid\",\"device-ids\":[\"69C75"
127 "05BE341BDA5948C3C0CB44ABCD530296054159EFE0BD16A16CD0129CC42\",\"7EED0650"
128 "6FCE6325EB2E2FAA019458B856AB10493A6718C7679A73F958732865\"]},\"iss"
129 "uer\":\"pki_internal\",\"permissions\":{\"restricted-permissions\":"
130 "[\"\"]},\"type\":\"release\",\"uuid\":\"fe686e1b-3770-4824-a938-961b140"
131 "a7c98\",\"validity\":{\"not-after\":1705127532,\"not-before\":16105195"
132 "32},\"version-code\":1,\"version-name\":\"1.0.0\"}";
133 ProfileInfo info;
134 AppProvisionVerifyResult result = ParseAndVerify(provision, info);
135 return result == AppProvisionVerifyResult::PROVISION_OK;
136 }
137
DoSomethingInterestingWithMyAPI(const uint8_t * data,size_t size)138 bool DoSomethingInterestingWithMyAPI(const uint8_t* data, size_t size)
139 {
140 SignProfileTest001(data, size);
141 SignProfileTest002(data, size);
142 SignProfileTest003(data, size);
143 SignProfileTest004(data, size);
144 SignProfileTest005(data, size);
145 return true;
146 }
147 }
148 }
149 /* Fuzzer entry point */
LLVMFuzzerTestOneInput(const uint8_t * data,size_t size)150 extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
151 {
152 /* Run your code on data */
153 OHOS::SignatureTools::DoSomethingInterestingWithMyAPI(data, size);
154 return 0;
155 }