vga: make sure vga register setup for vbe stays intact (CVE-2016-3712).
[qemu.git] / tests / test-crypto-secret.c
blobaa26c20499ea06c3f1057df8ffd3b02c0af4a1ea
1 /*
2 * QEMU Crypto secret handling
4 * Copyright (c) 2015 Red Hat, Inc.
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
21 #include "qemu/osdep.h"
22 #include <glib.h>
24 #include "crypto/init.h"
25 #include "crypto/secret.h"
26 #include "qapi/error.h"
27 #include "qemu/module.h"
29 static void test_secret_direct(void)
31 Object *sec = object_new_with_props(
32 TYPE_QCRYPTO_SECRET,
33 object_get_objects_root(),
34 "sec0",
35 &error_abort,
36 "data", "123456",
37 NULL);
39 char *pw = qcrypto_secret_lookup_as_utf8("sec0",
40 &error_abort);
42 g_assert_cmpstr(pw, ==, "123456");
44 object_unparent(sec);
45 g_free(pw);
49 static void test_secret_indirect_good(void)
51 Object *sec;
52 char *fname = NULL;
53 int fd = g_file_open_tmp("secretXXXXXX",
54 &fname,
55 NULL);
57 g_assert(fd >= 0);
58 g_assert_nonnull(fname);
60 g_assert(write(fd, "123456", 6) == 6);
62 sec = object_new_with_props(
63 TYPE_QCRYPTO_SECRET,
64 object_get_objects_root(),
65 "sec0",
66 &error_abort,
67 "file", fname,
68 NULL);
70 char *pw = qcrypto_secret_lookup_as_utf8("sec0",
71 &error_abort);
73 g_assert_cmpstr(pw, ==, "123456");
75 object_unparent(sec);
76 g_free(pw);
77 close(fd);
78 g_free(fname);
82 static void test_secret_indirect_badfile(void)
84 Object *sec = object_new_with_props(
85 TYPE_QCRYPTO_SECRET,
86 object_get_objects_root(),
87 "sec0",
88 NULL,
89 "file", "does-not-exist",
90 NULL);
92 g_assert(sec == NULL);
96 static void test_secret_indirect_emptyfile(void)
98 Object *sec;
99 char *fname = NULL;
100 int fd = g_file_open_tmp("secretXXXXXX",
101 &fname,
102 NULL);
104 g_assert(fd >= 0);
105 g_assert_nonnull(fname);
107 sec = object_new_with_props(
108 TYPE_QCRYPTO_SECRET,
109 object_get_objects_root(),
110 "sec0",
111 &error_abort,
112 "file", fname,
113 NULL);
115 char *pw = qcrypto_secret_lookup_as_utf8("sec0",
116 &error_abort);
118 g_assert_cmpstr(pw, ==, "");
120 object_unparent(sec);
121 g_free(pw);
122 close(fd);
123 g_free(fname);
127 static void test_secret_noconv_base64_good(void)
129 Object *sec = object_new_with_props(
130 TYPE_QCRYPTO_SECRET,
131 object_get_objects_root(),
132 "sec0",
133 &error_abort,
134 "data", "MTIzNDU2",
135 "format", "base64",
136 NULL);
138 char *pw = qcrypto_secret_lookup_as_base64("sec0",
139 &error_abort);
141 g_assert_cmpstr(pw, ==, "MTIzNDU2");
143 object_unparent(sec);
144 g_free(pw);
148 static void test_secret_noconv_base64_bad(void)
150 Object *sec = object_new_with_props(
151 TYPE_QCRYPTO_SECRET,
152 object_get_objects_root(),
153 "sec0",
154 NULL,
155 "data", "MTI$NDU2",
156 "format", "base64",
157 NULL);
159 g_assert(sec == NULL);
163 static void test_secret_noconv_utf8(void)
165 Object *sec = object_new_with_props(
166 TYPE_QCRYPTO_SECRET,
167 object_get_objects_root(),
168 "sec0",
169 &error_abort,
170 "data", "123456",
171 "format", "raw",
172 NULL);
174 char *pw = qcrypto_secret_lookup_as_utf8("sec0",
175 &error_abort);
177 g_assert_cmpstr(pw, ==, "123456");
179 object_unparent(sec);
180 g_free(pw);
184 static void test_secret_conv_base64_utf8valid(void)
186 Object *sec = object_new_with_props(
187 TYPE_QCRYPTO_SECRET,
188 object_get_objects_root(),
189 "sec0",
190 &error_abort,
191 "data", "MTIzNDU2",
192 "format", "base64",
193 NULL);
195 char *pw = qcrypto_secret_lookup_as_utf8("sec0",
196 &error_abort);
198 g_assert_cmpstr(pw, ==, "123456");
200 object_unparent(sec);
201 g_free(pw);
205 static void test_secret_conv_base64_utf8invalid(void)
207 Object *sec = object_new_with_props(
208 TYPE_QCRYPTO_SECRET,
209 object_get_objects_root(),
210 "sec0",
211 &error_abort,
212 "data", "f0VMRgIBAQAAAA==",
213 "format", "base64",
214 NULL);
216 char *pw = qcrypto_secret_lookup_as_utf8("sec0",
217 NULL);
218 g_assert(pw == NULL);
220 object_unparent(sec);
224 static void test_secret_conv_utf8_base64(void)
226 Object *sec = object_new_with_props(
227 TYPE_QCRYPTO_SECRET,
228 object_get_objects_root(),
229 "sec0",
230 &error_abort,
231 "data", "123456",
232 NULL);
234 char *pw = qcrypto_secret_lookup_as_base64("sec0",
235 &error_abort);
237 g_assert_cmpstr(pw, ==, "MTIzNDU2");
239 object_unparent(sec);
240 g_free(pw);
244 static void test_secret_crypt_raw(void)
246 Object *master = object_new_with_props(
247 TYPE_QCRYPTO_SECRET,
248 object_get_objects_root(),
249 "master",
250 &error_abort,
251 "data", "9miloPQCzGy+TL6aonfzVcptibCmCIhKzrnlfwiWivk=",
252 "format", "base64",
253 NULL);
254 Object *sec = object_new_with_props(
255 TYPE_QCRYPTO_SECRET,
256 object_get_objects_root(),
257 "sec0",
258 &error_abort,
259 "data",
260 "\xCC\xBF\xF7\x09\x46\x19\x0B\x52\x2A\x3A\xB4\x6B\xCD\x7A\xB0\xB0",
261 "format", "raw",
262 "keyid", "master",
263 "iv", "0I7Gw/TKuA+Old2W2apQ3g==",
264 NULL);
266 char *pw = qcrypto_secret_lookup_as_utf8("sec0",
267 &error_abort);
269 g_assert_cmpstr(pw, ==, "123456");
271 object_unparent(sec);
272 object_unparent(master);
273 g_free(pw);
277 static void test_secret_crypt_base64(void)
279 Object *master = object_new_with_props(
280 TYPE_QCRYPTO_SECRET,
281 object_get_objects_root(),
282 "master",
283 &error_abort,
284 "data", "9miloPQCzGy+TL6aonfzVcptibCmCIhKzrnlfwiWivk=",
285 "format", "base64",
286 NULL);
287 Object *sec = object_new_with_props(
288 TYPE_QCRYPTO_SECRET,
289 object_get_objects_root(),
290 "sec0",
291 &error_abort,
292 "data", "zL/3CUYZC1IqOrRrzXqwsA==",
293 "format", "base64",
294 "keyid", "master",
295 "iv", "0I7Gw/TKuA+Old2W2apQ3g==",
296 NULL);
298 char *pw = qcrypto_secret_lookup_as_utf8("sec0",
299 &error_abort);
301 g_assert_cmpstr(pw, ==, "123456");
303 object_unparent(sec);
304 object_unparent(master);
305 g_free(pw);
309 static void test_secret_crypt_short_key(void)
311 Object *master = object_new_with_props(
312 TYPE_QCRYPTO_SECRET,
313 object_get_objects_root(),
314 "master",
315 &error_abort,
316 "data", "9miloPQCzGy+TL6aonfzVc",
317 "format", "base64",
318 NULL);
319 Object *sec = object_new_with_props(
320 TYPE_QCRYPTO_SECRET,
321 object_get_objects_root(),
322 "sec0",
323 NULL,
324 "data", "zL/3CUYZC1IqOrRrzXqwsA==",
325 "format", "raw",
326 "keyid", "master",
327 "iv", "0I7Gw/TKuA+Old2W2apQ3g==",
328 NULL);
330 g_assert(sec == NULL);
331 object_unparent(master);
335 static void test_secret_crypt_short_iv(void)
337 Object *master = object_new_with_props(
338 TYPE_QCRYPTO_SECRET,
339 object_get_objects_root(),
340 "master",
341 &error_abort,
342 "data", "9miloPQCzGy+TL6aonfzVcptibCmCIhKzrnlfwiWivk=",
343 "format", "base64",
344 NULL);
345 Object *sec = object_new_with_props(
346 TYPE_QCRYPTO_SECRET,
347 object_get_objects_root(),
348 "sec0",
349 NULL,
350 "data", "zL/3CUYZC1IqOrRrzXqwsA==",
351 "format", "raw",
352 "keyid", "master",
353 "iv", "0I7Gw/TKuA+Old2W2a",
354 NULL);
356 g_assert(sec == NULL);
357 object_unparent(master);
361 static void test_secret_crypt_missing_iv(void)
363 Object *master = object_new_with_props(
364 TYPE_QCRYPTO_SECRET,
365 object_get_objects_root(),
366 "master",
367 &error_abort,
368 "data", "9miloPQCzGy+TL6aonfzVcptibCmCIhKzrnlfwiWivk=",
369 "format", "base64",
370 NULL);
371 Object *sec = object_new_with_props(
372 TYPE_QCRYPTO_SECRET,
373 object_get_objects_root(),
374 "sec0",
375 NULL,
376 "data", "zL/3CUYZC1IqOrRrzXqwsA==",
377 "format", "raw",
378 "keyid", "master",
379 NULL);
381 g_assert(sec == NULL);
382 object_unparent(master);
386 static void test_secret_crypt_bad_iv(void)
388 Object *master = object_new_with_props(
389 TYPE_QCRYPTO_SECRET,
390 object_get_objects_root(),
391 "master",
392 &error_abort,
393 "data", "9miloPQCzGy+TL6aonfzVcptibCmCIhKzrnlfwiWivk=",
394 "format", "base64",
395 NULL);
396 Object *sec = object_new_with_props(
397 TYPE_QCRYPTO_SECRET,
398 object_get_objects_root(),
399 "sec0",
400 NULL,
401 "data", "zL/3CUYZC1IqOrRrzXqwsA==",
402 "format", "raw",
403 "keyid", "master",
404 "iv", "0I7Gw/TK$$uA+Old2W2a",
405 NULL);
407 g_assert(sec == NULL);
408 object_unparent(master);
412 int main(int argc, char **argv)
414 module_call_init(MODULE_INIT_QOM);
415 g_test_init(&argc, &argv, NULL);
417 g_assert(qcrypto_init(NULL) == 0);
419 g_test_add_func("/crypto/secret/direct",
420 test_secret_direct);
421 g_test_add_func("/crypto/secret/indirect/good",
422 test_secret_indirect_good);
423 g_test_add_func("/crypto/secret/indirect/badfile",
424 test_secret_indirect_badfile);
425 g_test_add_func("/crypto/secret/indirect/emptyfile",
426 test_secret_indirect_emptyfile);
428 g_test_add_func("/crypto/secret/noconv/base64/good",
429 test_secret_noconv_base64_good);
430 g_test_add_func("/crypto/secret/noconv/base64/bad",
431 test_secret_noconv_base64_bad);
432 g_test_add_func("/crypto/secret/noconv/utf8",
433 test_secret_noconv_utf8);
434 g_test_add_func("/crypto/secret/conv/base64/utf8valid",
435 test_secret_conv_base64_utf8valid);
436 g_test_add_func("/crypto/secret/conv/base64/utf8invalid",
437 test_secret_conv_base64_utf8invalid);
438 g_test_add_func("/crypto/secret/conv/utf8/base64",
439 test_secret_conv_utf8_base64);
441 g_test_add_func("/crypto/secret/crypt/raw",
442 test_secret_crypt_raw);
443 g_test_add_func("/crypto/secret/crypt/base64",
444 test_secret_crypt_base64);
445 g_test_add_func("/crypto/secret/crypt/shortkey",
446 test_secret_crypt_short_key);
447 g_test_add_func("/crypto/secret/crypt/shortiv",
448 test_secret_crypt_short_iv);
449 g_test_add_func("/crypto/secret/crypt/missingiv",
450 test_secret_crypt_missing_iv);
451 g_test_add_func("/crypto/secret/crypt/badiv",
452 test_secret_crypt_bad_iv);
454 return g_test_run();