1 // Copyright 2013 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "components/nacl/loader/nacl_validation_db.h"
6 #include "components/nacl/loader/nacl_validation_query.h"
7 #include "testing/gtest/include/gtest/gtest.h"
8
9 // This test makes sure that validation signature generation is performed
10 // correctly. In effect, this means that we are checking all of the data
11 // (and no other data) we are passing the signature generator affects the final
12 // signature. To avoid tying the tests to a particular implementation, each
13 // test generates two signatures and compares them rather than trying to compare
14 // against a specified signature.
15
16 namespace {
17
18 const char kKey[] = "bogus key for HMAC...";
19 const char kKeyAlt[] = "bogus key for HMAC!!!";
20
21 const char kVersion[] = "bogus version";
22 const char kVersionAlt[] = "bogus!version";
23
24
25 const char kShortData[] = "Short data 1234567890";
26 const char kAltShortData[] = "Short!data 1234567890";
27
28 const char kLongData[] = "Long data."
29 "1234567890123456789012345678901234567890123456789012345678901234567890"
30 "1234567890123456789012345678901234567890123456789012345678901234567890"
31 "1234567890123456789012345678901234567890123456789012345678901234567890"
32 "1234567890123456789012345678901234567890123456789012345678901234567890";
33
34 class MockValidationDB : public NaClValidationDB {
35 public:
MockValidationDB()36 MockValidationDB()
37 : did_query_(false),
38 did_set_(false),
39 status_(true) {
40 }
41
QueryKnownToValidate(const std::string & signature)42 virtual bool QueryKnownToValidate(const std::string& signature) OVERRIDE {
43 // The typecast is needed to work around gtest trying to take the address
44 // of a constant.
45 EXPECT_EQ((int) NaClValidationQuery::kDigestLength,
46 (int) signature.length());
47 EXPECT_FALSE(did_query_);
48 EXPECT_FALSE(did_set_);
49 did_query_ = true;
50 memcpy(query_signature_, signature.data(),
51 NaClValidationQuery::kDigestLength);
52 return status_;
53 }
54
SetKnownToValidate(const std::string & signature)55 virtual void SetKnownToValidate(const std::string& signature) OVERRIDE {
56 // The typecast is needed to work around gtest trying to take the address
57 // of a constant.
58 ASSERT_EQ((int) NaClValidationQuery::kDigestLength,
59 (int) signature.length());
60 EXPECT_TRUE(did_query_);
61 EXPECT_FALSE(did_set_);
62 did_set_ = true;
63 memcpy(set_signature_, signature.data(),
64 NaClValidationQuery::kDigestLength);
65 // Signatures should be the same.
66 EXPECT_EQ(0, memcmp(query_signature_, set_signature_,
67 NaClValidationQuery::kDigestLength));
68 }
69
ResolveFileToken(struct NaClFileToken * file_token,int32 * fd,std::string * path)70 virtual bool ResolveFileToken(struct NaClFileToken* file_token, int32* fd,
71 std::string* path) OVERRIDE {
72 *fd = -1;
73 *path = "";
74 return false;
75 }
76
77 bool did_query_;
78 bool did_set_;
79 bool status_;
80
81 uint8 query_signature_[NaClValidationQuery::kDigestLength];
82 uint8 set_signature_[NaClValidationQuery::kDigestLength];
83 };
84
85 class TestQuery {
86 public:
TestQuery(const char * key,const char * version)87 TestQuery(const char* key, const char* version) {
88 db.reset(new MockValidationDB());
89 context.reset(new NaClValidationQueryContext(db.get(), key, version));
90 query.reset(context->CreateQuery());
91 }
92
93 scoped_ptr<MockValidationDB> db;
94 scoped_ptr<NaClValidationQueryContext> context;
95 scoped_ptr<NaClValidationQuery> query;
96 };
97
98 class NaClValidationQueryTest : public ::testing::Test {
99 protected:
100 scoped_ptr<TestQuery> query1;
101 scoped_ptr<TestQuery> query2;
102
SetUp()103 virtual void SetUp() {
104 query1.reset(new TestQuery(kKey, kVersion));
105 query2.reset(new TestQuery(kKey, kVersion));
106 }
107
AssertQuerySame()108 void AssertQuerySame() {
109 ASSERT_TRUE(query1->db->did_query_);
110 ASSERT_TRUE(query2->db->did_query_);
111 ASSERT_EQ(0, memcmp(query1->db->query_signature_,
112 query2->db->query_signature_,
113 NaClValidationQuery::kDigestLength));
114 }
115
AssertQueryDifferent()116 void AssertQueryDifferent() {
117 ASSERT_TRUE(query1->db->did_query_);
118 ASSERT_TRUE(query2->db->did_query_);
119 ASSERT_NE(0, memcmp(query1->db->query_signature_,
120 query2->db->query_signature_,
121 NaClValidationQuery::kDigestLength));
122 }
123 };
124
TEST_F(NaClValidationQueryTest,Sanity)125 TEST_F(NaClValidationQueryTest, Sanity) {
126 query1->query->AddData(kShortData, sizeof(kShortData));
127 ASSERT_FALSE(query1->db->did_query_);
128 ASSERT_FALSE(query1->db->did_set_);
129 ASSERT_EQ(1, query1->query->QueryKnownToValidate());
130 ASSERT_TRUE(query1->db->did_query_);
131 ASSERT_FALSE(query1->db->did_set_);
132 query1->query->SetKnownToValidate();
133 ASSERT_TRUE(query1->db->did_query_);
134 ASSERT_TRUE(query1->db->did_set_);
135 }
136
TEST_F(NaClValidationQueryTest,ConsistentShort)137 TEST_F(NaClValidationQueryTest, ConsistentShort) {
138 query1->query->AddData(kShortData, sizeof(kShortData));
139 query1->query->QueryKnownToValidate();
140
141 query2->query->AddData(kShortData, sizeof(kShortData));
142 query2->query->QueryKnownToValidate();
143
144 AssertQuerySame();
145 }
146
TEST_F(NaClValidationQueryTest,InconsistentShort)147 TEST_F(NaClValidationQueryTest, InconsistentShort) {
148 query1->query->AddData(kShortData, sizeof(kShortData));
149 query1->query->QueryKnownToValidate();
150
151 query2->query->AddData(kAltShortData, sizeof(kAltShortData));
152 query2->query->QueryKnownToValidate();
153
154 AssertQueryDifferent();
155 }
156
157 // Test for a bug caught during development where AddData would accidently
158 // overwrite previously written data and add uninitialzied memory to the hash.
TEST_F(NaClValidationQueryTest,ConsistentShortBug)159 TEST_F(NaClValidationQueryTest, ConsistentShortBug) {
160 query1->query->AddData(kShortData, sizeof(kShortData));
161 query1->query->AddData(kShortData, sizeof(kShortData));
162 query1->query->QueryKnownToValidate();
163
164 query2->query->AddData(kShortData, sizeof(kShortData));
165 query2->query->AddData(kShortData, sizeof(kShortData));
166 query2->query->QueryKnownToValidate();
167
168 AssertQuerySame();
169 }
170
171 // Test for a bug caught during development where AddData would accidently
172 // overwrite previously written data and add uninitialzed memory to the hash.
TEST_F(NaClValidationQueryTest,InconsistentShortBug1)173 TEST_F(NaClValidationQueryTest, InconsistentShortBug1) {
174 query1->query->AddData(kShortData, sizeof(kShortData));
175 query1->query->AddData(kShortData, sizeof(kShortData));
176 query1->query->QueryKnownToValidate();
177
178 query2->query->AddData(kAltShortData, sizeof(kAltShortData));
179 query2->query->AddData(kShortData, sizeof(kShortData));
180 query2->query->QueryKnownToValidate();
181
182 AssertQueryDifferent();
183 }
184
185 // Make sure we don't ignore the second bit of data.
TEST_F(NaClValidationQueryTest,InconsistentShort2)186 TEST_F(NaClValidationQueryTest, InconsistentShort2) {
187 query1->query->AddData(kShortData, sizeof(kShortData));
188 query1->query->AddData(kShortData, sizeof(kShortData));
189 query1->query->QueryKnownToValidate();
190
191 query2->query->AddData(kShortData, sizeof(kShortData));
192 query2->query->AddData(kAltShortData, sizeof(kAltShortData));
193 query2->query->QueryKnownToValidate();
194
195 AssertQueryDifferent();
196 }
197
TEST_F(NaClValidationQueryTest,InconsistentZeroSizedAdd)198 TEST_F(NaClValidationQueryTest, InconsistentZeroSizedAdd) {
199 query1->query->AddData(kShortData, sizeof(kShortData));
200 query1->query->QueryKnownToValidate();
201
202 query2->query->AddData(kShortData, sizeof(kShortData));
203 query2->query->AddData(kShortData, 0);
204 query2->query->QueryKnownToValidate();
205
206 AssertQueryDifferent();
207 }
208
TEST_F(NaClValidationQueryTest,ConsistentZeroSizedAdd)209 TEST_F(NaClValidationQueryTest, ConsistentZeroSizedAdd) {
210 query1->query->AddData(kShortData, sizeof(kShortData));
211 query1->query->AddData("a", 0);
212 query1->query->QueryKnownToValidate();
213
214 query2->query->AddData(kShortData, sizeof(kShortData));
215 query2->query->AddData("b", 0);
216 query2->query->QueryKnownToValidate();
217
218 AssertQuerySame();
219 }
220
TEST_F(NaClValidationQueryTest,ConsistentRepeatedShort)221 TEST_F(NaClValidationQueryTest, ConsistentRepeatedShort) {
222 for (int i = 0; i < 30; i++) {
223 query1->query->AddData(kShortData, sizeof(kShortData));
224 }
225 query1->query->QueryKnownToValidate();
226
227 for (int i = 0; i < 30; i++) {
228 query2->query->AddData(kShortData, sizeof(kShortData));
229 }
230 query2->query->QueryKnownToValidate();
231
232 AssertQuerySame();
233 }
234
TEST_F(NaClValidationQueryTest,ConsistentLong)235 TEST_F(NaClValidationQueryTest, ConsistentLong) {
236 query1->query->AddData(kLongData, sizeof(kLongData));
237 query1->query->QueryKnownToValidate();
238
239 query2->query->AddData(kLongData, sizeof(kLongData));
240 query2->query->QueryKnownToValidate();
241
242 AssertQuerySame();
243 }
244
TEST_F(NaClValidationQueryTest,ConsistentRepeatedLong)245 TEST_F(NaClValidationQueryTest, ConsistentRepeatedLong) {
246 for (int i = 0; i < 30; i++) {
247 query1->query->AddData(kLongData, sizeof(kLongData));
248 }
249 query1->query->QueryKnownToValidate();
250
251 for (int i = 0; i < 30; i++) {
252 query2->query->AddData(kLongData, sizeof(kLongData));
253 }
254 query2->query->QueryKnownToValidate();
255
256 AssertQuerySame();
257 }
258
TEST_F(NaClValidationQueryTest,PerturbKey)259 TEST_F(NaClValidationQueryTest, PerturbKey) {
260 query2.reset(new TestQuery(kKeyAlt, kVersion));
261
262 query1->query->AddData(kShortData, sizeof(kShortData));
263 query1->query->QueryKnownToValidate();
264
265 query2->query->AddData(kShortData, sizeof(kShortData));
266 query2->query->QueryKnownToValidate();
267
268 AssertQueryDifferent();
269 }
270
TEST_F(NaClValidationQueryTest,PerturbVersion)271 TEST_F(NaClValidationQueryTest, PerturbVersion) {
272 query2.reset(new TestQuery(kKey, kVersionAlt));
273
274 query1->query->AddData(kShortData, sizeof(kShortData));
275 query1->query->QueryKnownToValidate();
276
277 query2->query->AddData(kShortData, sizeof(kShortData));
278 query2->query->QueryKnownToValidate();
279
280 AssertQueryDifferent();
281 }
282
283 }
284