OpenVPN
test_misc.c
Go to the documentation of this file.
1/*
2 * OpenVPN -- An application to securely tunnel IP networks
3 * over a single UDP port, with support for SSL/TLS-based
4 * session authentication and key exchange,
5 * packet encryption, packet authentication, and
6 * packet compression.
7 *
8 * Copyright (C) 2021-2025 Arne Schwabe <arne@rfc2549.org>
9 *
10 * This program is free software; you can redistribute it and/or modify
11 * it under the terms of the GNU General Public License version 2
12 * as published by the Free Software Foundation.
13 *
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
18 *
19 * You should have received a copy of the GNU General Public License along
20 * with this program; if not, see <https://www.gnu.org/licenses/>.
21 */
22
23#ifdef HAVE_CONFIG_H
24#include "config.h"
25#endif
26
27#include "syshead.h"
28
29#include <stdio.h>
30#include <stdlib.h>
31#include <stdarg.h>
32#include <string.h>
33#include <setjmp.h>
34#include <cmocka.h>
35
36#include "ssl_util.h"
37#include "options_util.h"
38#include "test_common.h"
39#include "list.h"
40#include "mock_msg.h"
41
42static void
43test_compat_lzo_string(void **state)
44{
45 struct gc_arena gc = gc_new();
46
47 const char *input =
48 "V4,dev-type tun,link-mtu 1457,tun-mtu 1400,proto UDPv4,auth SHA1,keysize 128,key-method 2,tls-server";
49
50 const char *output = options_string_compat_lzo(input, &gc);
51
52 assert_string_equal(
53 output,
54 "V4,dev-type tun,link-mtu 1458,tun-mtu 1400,proto UDPv4,auth SHA1,keysize 128,key-method 2,tls-server,comp-lzo");
55
56 /* This string is has a much too small link-mtu so we should fail on it" */
57 input =
58 "V4,dev-type tun,link-mtu 2,tun-mtu 1400,proto UDPv4,auth SHA1,keysize 128,key-method 2,tls-server";
59
60 output = options_string_compat_lzo(input, &gc);
61
62 assert_string_equal(input, output);
63
64 /* not matching at all */
65 input = "V4,dev-type tun";
66 output = options_string_compat_lzo(input, &gc);
67
68 assert_string_equal(input, output);
69
70
71 input =
72 "V4,dev-type tun,link-mtu 999,tun-mtu 1400,proto UDPv4,auth SHA1,keysize 128,key-method 2,tls-server";
73 output = options_string_compat_lzo(input, &gc);
74
75 /* 999 -> 1000, 3 to 4 chars */
76 assert_string_equal(
77 output,
78 "V4,dev-type tun,link-mtu 1000,tun-mtu 1400,proto UDPv4,auth SHA1,keysize 128,key-method 2,tls-server,comp-lzo");
79
80 gc_free(&gc);
81}
82
83static void
84test_auth_fail_temp_no_flags(void **state)
85{
86 struct options o;
87
88 const char *teststr = "TEMP:There are no flags here [really not]";
89
90 const char *msg = parse_auth_failed_temp(&o, teststr + strlen("TEMP"));
91 assert_string_equal(msg, "There are no flags here [really not]");
92}
93
94static void
95test_auth_fail_temp_flags(void **state)
96{
97 struct options o;
98
99 const char *teststr = "[backoff 42,advance no]";
100
101 const char *msg = parse_auth_failed_temp(&o, teststr);
102 assert_string_equal(msg, "");
103 assert_int_equal(o.server_backoff_time, 42);
104 assert_int_equal(o.no_advance, true);
105}
106
107static void
108test_auth_fail_temp_flags_msg(void **state)
109{
110 struct options o;
111
112 const char *teststr = "[advance remote,backoff 77]:go round and round";
113
114 const char *msg = parse_auth_failed_temp(&o, teststr);
115 assert_string_equal(msg, "go round and round");
116 assert_int_equal(o.server_backoff_time, 77);
117}
118
119
120struct word
121{
122 const char *word;
123 int n;
124};
125
126
127static uint32_t
128word_hash_function(const void *key, uint32_t iv)
129{
130 const char *str = (const char *)key;
131 const uint32_t len = (uint32_t)strlen(str);
132 return hash_func((const uint8_t *)str, len, iv);
133}
134
135static bool
136word_compare_function(const void *key1, const void *key2)
137{
138 return strcmp((const char *)key1, (const char *)key2) == 0;
139}
140
141static uint32_t
142get_random(void)
143{
144 /* rand() is not very random, but it's C99 and this is just for testing */
145 return (uint32_t)rand();
146}
147
148static struct hash_element *
149hash_lookup_by_value(struct hash *hash, void *value)
150{
151 struct hash_iterator hi;
152 struct hash_element *he;
153 struct hash_element *ret = NULL;
154 hash_iterator_init(hash, &hi);
155
156 while ((he = hash_iterator_next(&hi)))
157 {
158 if (he->value == value)
159 {
160 ret = he;
161 }
162 }
163 hash_iterator_free(&hi);
164 return ret;
165}
166
167static void
168test_list(void **state)
169{
170 /*
171 * Test the hash code by implementing a simple
172 * word frequency algorithm.
173 */
174
175 struct gc_arena gc = gc_new();
176 struct hash *hash = hash_init(10000, get_random(), word_hash_function, word_compare_function);
177 struct hash *nhash = hash_init(256, get_random(), word_hash_function, word_compare_function);
178
179 printf("hash_init n_buckets=%u mask=0x%08x\n", hash->n_buckets, hash->mask);
180
181 char wordfile[PATH_MAX] = { 0 };
182 openvpn_test_get_srcdir_dir(wordfile, PATH_MAX, "/../../../COPYRIGHT.GPL");
183
184 FILE *words = fopen(wordfile, "r");
185 assert_non_null(words);
186
187 int wordcount = 0;
188
189 /* parse words from file */
190 while (true)
191 {
192 char buf[256];
193 char wordbuf[256];
194
195 if (!fgets(buf, sizeof(buf), words))
196 {
197 break;
198 }
199
200 char c = 0;
201 int bi = 0, wbi = 0;
202
203 do
204 {
205 c = buf[bi++];
206 if (isalnum(c) || c == '_')
207 {
208 assert_true(wbi < (int)sizeof(wordbuf));
209 wordbuf[wbi++] = c;
210 }
211 else
212 {
213 if (wbi)
214 {
215 wordcount++;
216
217 ASSERT(wbi < (int)sizeof(wordbuf));
218 wordbuf[wbi++] = '\0';
219
220 /* word is parsed from stdin */
221
222 /* does it already exist in table? */
223 struct word *w = (struct word *)hash_lookup(hash, wordbuf);
224
225 if (w)
226 {
227 assert_string_equal(w->word, wordbuf);
228 /* yes, increment count */
229 ++w->n;
230 }
231 else
232 {
233 /* no, make a new object */
234 ALLOC_OBJ_GC(w, struct word, &gc);
235 w->word = string_alloc(wordbuf, &gc);
236 w->n = 1;
237 assert_true(hash_add(hash, w->word, w, false));
238 assert_true(hash_add(nhash, w->word,
239 (void *)((ptr_type)(random() & 0x0F) + 1), false));
240 }
241 }
242 wbi = 0;
243 }
244 } while (c);
245 }
246
247 assert_int_equal(wordcount, 2971);
248
249 /* remove some words from the table */
250 {
251 assert_true(hash_remove(hash, "DEFECTIVE"));
252 assert_false(hash_remove(hash, "false"));
253 }
254
255 /* output contents of hash table */
256 {
257 uint32_t inc = 0;
258 int count = 0;
259
260 for (uint32_t base = 0; base < hash_n_buckets(hash); base += inc)
261 {
262 struct hash_iterator hi;
263 struct hash_element *he;
264 inc = (get_random() % 3) + 1;
265 hash_iterator_init_range(hash, &hi, base, base + inc);
266
267 while ((he = hash_iterator_next(&hi)))
268 {
269 struct word *w = (struct word *)he->value;
270 /*printf("%6d '%s'\n", w->n, w->word); */
271 ++count;
272 /* check a few words to match prior results */
273 if (!strcmp(w->word, "is"))
274 {
275 assert_int_equal(w->n, 49);
276 }
277 else if (!strcmp(w->word, "redistribute"))
278 {
279 assert_int_equal(w->n, 5);
280 }
281 else if (!strcmp(w->word, "circumstances"))
282 {
283 assert_int_equal(w->n, 1);
284 }
285 else if (!strcmp(w->word, "so"))
286 {
287 assert_int_equal(w->n, 8);
288 }
289 else if (!strcmp(w->word, "BECAUSE"))
290 {
291 assert_int_equal(w->n, 1);
292 }
293 }
294
295 hash_iterator_free(&hi);
296 }
297 assert_int_equal(count, hash_n_elements(hash));
298 }
299
300 /* test hash_remove_by_value function */
301 {
302 for (ptr_type i = 1; i <= 16; ++i)
303 {
304 struct hash_element *item = hash_lookup_by_value(nhash, (void *)i);
305 hash_remove_by_value(nhash, (void *)i);
306 /* check item got removed if it was present before */
307 if (item)
308 {
309 assert_null(hash_lookup_by_value(nhash, (void *)i));
310 }
311 }
312 }
313
314 hash_free(hash);
315 hash_free(nhash);
316 gc_free(&gc);
317}
318
319static void
320test_atoi_variants(void **state)
321{
322 assert_true(valid_integer("1234", true));
323 assert_true(valid_integer("1234", false));
324 assert_true(valid_integer("0", false));
325 assert_true(valid_integer("0", true));
326 assert_true(valid_integer("-777", false));
327 assert_false(valid_integer("-777", true));
328
329 assert_false(valid_integer("-777foo", false));
330 assert_false(valid_integer("-777foo", true));
331
332 assert_false(valid_integer("foo777", true));
333 assert_false(valid_integer("foo777", false));
334
335 /* 2**31 + 5 , just outside of signed int range */
336 assert_false(valid_integer("2147483653", true));
337 assert_false(valid_integer("2147483653", false));
338 assert_false(valid_integer("-2147483653", true));
339 assert_false(valid_integer("-2147483653", false));
340
341
342 msglvl_t msglevel = D_LOW;
343 msglvl_t saved_log_level = mock_get_debug_level();
344 mock_set_debug_level(D_LOW);
345
346 /* check happy path */
347 assert_int_equal(positive_atoi("1234", msglevel), 1234);
348 assert_int_equal(positive_atoi("0", msglevel), 0);
349
350 assert_int_equal(atoi_warn("1234", msglevel), 1234);
351 assert_int_equal(atoi_warn("0", msglevel), 0);
352 assert_int_equal(atoi_warn("-1194", msglevel), -1194);
353
354 int parameter = 0;
355 assert_true(atoi_constrained("1234", &parameter, "test", 0, INT_MAX, msglevel));
356 assert_int_equal(parameter, 1234);
357 assert_true(atoi_constrained("0", &parameter, "test", -1, 0, msglevel));
358 assert_int_equal(parameter, 0);
359 assert_true(atoi_constrained("-1194", &parameter, "test", INT_MIN, INT_MAX, msglevel));
360 assert_int_equal(parameter, -1194);
361
362 int64_t parameter64 = 0;
363 assert_true(positive_atoll("1234", &parameter64, "test", msglevel));
364 assert_int_equal(parameter64, 1234);
365 assert_true(positive_atoll("0", &parameter64, "test", msglevel));
366 assert_int_equal(parameter64, 0);
367 assert_true(positive_atoll("2147483653", &parameter64, "test", msglevel));
368 assert_int_equal(parameter64, 2147483653);
369 /* overflow gets capped to LLONG_MAX */
370 assert_true(positive_atoll("9223372036854775810", &parameter64, "test", msglevel));
371 assert_int_equal(parameter64, 9223372036854775807);
372
373 CLEAR(mock_msg_buf);
374 assert_int_equal(positive_atoi("-1234", msglevel), 0);
375 assert_string_equal(mock_msg_buf, "Cannot parse argument '-1234' as non-negative integer");
376
377 /* 2**31 + 5 , just outside of signed int range */
378 CLEAR(mock_msg_buf);
379 assert_int_equal(positive_atoi("2147483653", msglevel), 0);
380 assert_string_equal(mock_msg_buf, "Cannot parse argument '2147483653' as non-negative integer");
381
382 CLEAR(mock_msg_buf);
383 assert_int_equal(atoi_warn("2147483653", msglevel), 0);
384 assert_string_equal(mock_msg_buf, "Cannot parse argument '2147483653' as integer");
385
386 CLEAR(mock_msg_buf);
387 parameter = -42;
388 assert_false(atoi_constrained("2147483653", &parameter, "test", 0, INT_MAX, msglevel));
389 assert_string_equal(mock_msg_buf, "test: Cannot parse '2147483653' as integer");
390 assert_int_equal(parameter, -42);
391
392 CLEAR(mock_msg_buf);
393 assert_int_equal(positive_atoi("foo77", msglevel), 0);
394 assert_string_equal(mock_msg_buf, "Cannot parse argument 'foo77' as non-negative integer");
395
396 CLEAR(mock_msg_buf);
397 assert_int_equal(positive_atoi("77foo", msglevel), 0);
398 assert_string_equal(mock_msg_buf, "Cannot parse argument '77foo' as non-negative integer");
399
400 CLEAR(mock_msg_buf);
401 parameter = -42;
402 assert_false(atoi_constrained("foo77", &parameter, "test", 0, INT_MAX, msglevel));
403 assert_string_equal(mock_msg_buf, "test: Cannot parse 'foo77' as integer");
404 assert_int_equal(parameter, -42);
405
406 CLEAR(mock_msg_buf);
407 parameter = -42;
408 assert_false(atoi_constrained("77foo", &parameter, "test", 0, INT_MAX, msglevel));
409 assert_string_equal(mock_msg_buf, "test: Cannot parse '77foo' as integer");
410 assert_int_equal(parameter, -42);
411
412 CLEAR(mock_msg_buf);
413 assert_int_equal(atoi_warn("foo77", msglevel), 0);
414 assert_string_equal(mock_msg_buf, "Cannot parse argument 'foo77' as integer");
415
416 CLEAR(mock_msg_buf);
417 assert_int_equal(atoi_warn("77foo", msglevel), 0);
418 assert_string_equal(mock_msg_buf, "Cannot parse argument '77foo' as integer");
419
420 /* special tests for _constrained */
421 CLEAR(mock_msg_buf);
422 parameter = -42;
423 assert_false(atoi_constrained("77", &parameter, "test", 0, 76, msglevel));
424 assert_string_equal(mock_msg_buf, "test: Must be an integer between 0 and 76, not 77");
425 assert_int_equal(parameter, -42);
426
427 CLEAR(mock_msg_buf);
428 parameter = -42;
429 assert_false(atoi_constrained("-77", &parameter, "test", -76, 76, msglevel));
430 assert_string_equal(mock_msg_buf, "test: Must be an integer between -76 and 76, not -77");
431 assert_int_equal(parameter, -42);
432
433 CLEAR(mock_msg_buf);
434 parameter = -42;
435 assert_false(atoi_constrained("-77", &parameter, "test", 0, INT_MAX, msglevel));
436 assert_string_equal(mock_msg_buf, "test: Must be an integer >= 0, not -77");
437 assert_int_equal(parameter, -42);
438
439 CLEAR(mock_msg_buf);
440 parameter = -42;
441 assert_false(atoi_constrained("0", &parameter, "test", 1, INT_MAX, msglevel));
442 assert_string_equal(mock_msg_buf, "test: Must be an integer >= 1, not 0");
443 assert_int_equal(parameter, -42);
444
445 mock_set_debug_level(saved_log_level);
446}
447
448const struct CMUnitTest misc_tests[] = { cmocka_unit_test(test_compat_lzo_string),
449 cmocka_unit_test(test_auth_fail_temp_no_flags),
450 cmocka_unit_test(test_auth_fail_temp_flags),
451 cmocka_unit_test(test_auth_fail_temp_flags_msg),
452 cmocka_unit_test(test_list),
453 cmocka_unit_test(test_atoi_variants) };
454
455int
456main(void)
457{
458 openvpn_unit_test_setup();
459 return cmocka_run_group_tests(misc_tests, NULL, NULL);
460}
string_alloc
char * string_alloc(const char *str, struct gc_arena *gc)
Definition buffer.c:649
ALLOC_OBJ_GC
#define ALLOC_OBJ_GC(dptr, type, gc)
Definition buffer.h:1074
gc_free
static void gc_free(struct gc_arena *a)
Definition buffer.h:1015
gc_new
static struct gc_arena gc_new(void)
Definition buffer.h:1007
key1
static const char *const key1
Definition cert_data.h:55
ptr_type
unsigned long ptr_type
Definition common.h:57
D_LOW
#define D_LOW
Definition errlevel.h:96
hash_iterator_free
void hash_iterator_free(struct hash_iterator *hi)
Definition list.c:270
hash_iterator_next
struct hash_element * hash_iterator_next(struct hash_iterator *hi)
Definition list.c:276
hash_iterator_init
void hash_iterator_init(struct hash *hash, struct hash_iterator *hi)
Definition list.c:234
hash_init
struct hash * hash_init(const uint32_t n_buckets, const uint32_t iv, uint32_t(*hash_function)(const void *key, uint32_t iv), bool(*compare_function)(const void *key1, const void *key2))
Definition list.c:37
hash_func
uint32_t hash_func(const uint8_t *k, uint32_t length, uint32_t initval)
Definition list.c:416
hash_free
void hash_free(struct hash *hash)
Definition list.c:60
hash_add
bool hash_add(struct hash *hash, const void *key, void *value, bool replace)
Definition list.c:137
hash_remove_by_value
void hash_remove_by_value(struct hash *hash, void *value)
Definition list.c:165
hash_iterator_init_range
void hash_iterator_init_range(struct hash *hash, struct hash_iterator *hi, uint32_t start_bucket, uint32_t end_bucket)
Definition list.c:213
hash_remove
static bool hash_remove(struct hash *hash, const void *key)
Definition list.h:161
hash_lookup
static void * hash_lookup(struct hash *hash, const void *key)
Definition list.h:128
hash_n_elements
static uint32_t hash_n_elements(const struct hash *hash)
Definition list.h:110
hash_n_buckets
static uint32_t hash_n_buckets(const struct hash *hash)
Definition list.h:116
mock_get_debug_level
msglvl_t mock_get_debug_level(void)
Definition mock_msg.c:56
mock_set_debug_level
void mock_set_debug_level(msglvl_t level)
Mock debug level defaults to 0, which gives clean(-ish) test reports.
Definition mock_msg.c:50
mock_msg_buf
char mock_msg_buf[MOCK_MSG_BUF]
Definition mock_msg.c:46
mock_msg.h
CLEAR
#define CLEAR(x)
Definition basic.h:32
msg
#define msg(flags,...)
Definition error.h:152
msglvl_t
unsigned int msglvl_t
Definition error.h:77
ASSERT
#define ASSERT(x)
Definition error.h:219
atoi_warn
int atoi_warn(const char *str, msglvl_t msglevel)
Converts a str to an integer if the string can be represented as an integer number.
Definition options_util.c:151
positive_atoi
int positive_atoi(const char *str, msglvl_t msglevel)
Converts a str to a positive number if the string represents a postive integer number.
Definition options_util.c:120
positive_atoll
bool positive_atoll(const char *str, int64_t *value, const char *name, msglvl_t msglevel)
Converts a str to an integer if the string can be represented as an integer number and is >= 0.
Definition options_util.c:135
parse_auth_failed_temp
const char * parse_auth_failed_temp(struct options *o, const char *reason)
Definition options_util.c:35
valid_integer
bool valid_integer(const char *str, bool positive)
Checks if the string is a valid integer by checking if it can be converted to an integer.
Definition options_util.c:104
atoi_constrained
bool atoi_constrained(const char *str, int *value, const char *name, int min, int max, msglvl_t msglevel)
Converts a str to an integer if the string can be represented as an integer number and is between min...
Definition options_util.c:171
options_util.h
options_string_compat_lzo
const char * options_string_compat_lzo(const char *options, struct gc_arena *gc)
Takes a locally produced OCC string for TLS server mode and modifies as if the option comp-lzo was en...
Definition ssl_util.c:76
ssl_util.h
SSL utility functions.
gc_arena
Garbage collection arena used to keep track of dynamically allocated memory.
Definition buffer.h:116
hash_element
Definition list.h:40
hash_element::value
void * value
Definition list.h:41
hash_iterator
Definition list.h:79
hash
Definition list.h:53
hash::mask
uint32_t mask
Definition list.h:56
hash::n_buckets
uint32_t n_buckets
Definition list.h:54
key2
Container for bidirectional cipher and HMAC key material.
Definition crypto.h:240
key
Container for unidirectional cipher and HMAC key material.
Definition crypto.h:152
options::server_backoff_time
int server_backoff_time
Definition options.h:306
options::no_advance
bool no_advance
Definition options.h:295
word::n
int n
Definition test_misc.c:123
word::word
const char * word
Definition test_misc.c:122
random
#define random
Definition syshead.h:43
test_common.h
openvpn_unit_test_setup
static void openvpn_unit_test_setup(void)
Sets up the environment for unit tests like making both stderr and stdout non-buffered to avoid messa...
Definition test_common.h:35
openvpn_test_get_srcdir_dir
void openvpn_test_get_srcdir_dir(char *buf, size_t bufsize, const char *filename)
Helper function to get a file path from the unit test directory to open it or pass its path to anothe...
Definition test_common.h:53
get_random
static uint32_t get_random(void)
Definition test_misc.c:142
test_atoi_variants
static void test_atoi_variants(void **state)
Definition test_misc.c:320
test_auth_fail_temp_flags
static void test_auth_fail_temp_flags(void **state)
Definition test_misc.c:95
test_compat_lzo_string
static void test_compat_lzo_string(void **state)
Definition test_misc.c:43
main
int main(void)
Definition test_misc.c:456
word_hash_function
static uint32_t word_hash_function(const void *key, uint32_t iv)
Definition test_misc.c:128
test_list
static void test_list(void **state)
Definition test_misc.c:168
test_auth_fail_temp_no_flags
static void test_auth_fail_temp_no_flags(void **state)
Definition test_misc.c:84
misc_tests
const struct CMUnitTest misc_tests[]
Definition test_misc.c:448
word_compare_function
static bool word_compare_function(const void *key1, const void *key2)
Definition test_misc.c:136
hash_lookup_by_value
static struct hash_element * hash_lookup_by_value(struct hash *hash, void *value)
Definition test_misc.c:149
test_auth_fail_temp_flags_msg
static void test_auth_fail_temp_flags_msg(void **state)
Definition test_misc.c:108
i
int i
Definition test_push_update_msg.c:120
gc
struct gc_arena gc
Definition test_ssl.c:131
Generated by doxygen 1.9.8