search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Merge branch 'maint-0.4.5' into release-0.4.5
[tor.git] / src / test / test_introduce.c
blob0ae78496b2866a9a1e39edd0e91413900ed04da7
1 /* Copyright (c) 2012-2020, The Tor Project, Inc. */
2 /* See LICENSE for licensing information */
3
4 #include "orconfig.h"
5 #include "lib/crypt_ops/crypto_cipher.h"
6 #include "core/or/or.h"
7 #include "test/test.h"
8
9 #define RENDSERVICE_PRIVATE
10 #include "feature/rend/rendservice.h"
11
12 static uint8_t v0_test_plaintext[] =
13 /* 20 bytes of rendezvous point nickname */
14 { 0x4e, 0x69, 0x63, 0x6b, 0x6e, 0x61, 0x6d, 0x65,
15 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
16 0x00, 0x00, 0x00, 0x00,
17 /* 20 bytes dummy rendezvous cookie */
18 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
19 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
20 0x10, 0x11, 0x12, 0x13,
21 /* 128 bytes dummy DH handshake data */
22 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
23 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
24 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
25 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
26 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
27 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
28 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
29 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
30 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
31 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
32 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
33 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
34 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
35 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
36 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
37 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00 };
38
39 static uint8_t v1_test_plaintext[] =
40 /* Version byte */
41 { 0x01,
42 /* 42 bytes of dummy rendezvous point hex digest */
43 0x24, 0x30, 0x30, 0x30, 0x31, 0x30, 0x32, 0x30,
44 0x33, 0x30, 0x34, 0x30, 0x35, 0x30, 0x36, 0x30,
45 0x37, 0x30, 0x38, 0x30, 0x39, 0x30, 0x41, 0x30,
46 0x42, 0x30, 0x43, 0x30, 0x44, 0x30, 0x45, 0x30,
47 0x46, 0x31, 0x30, 0x31, 0x31, 0x31, 0x32, 0x31,
48 0x33, 0x00,
49 /* 20 bytes dummy rendezvous cookie */
50 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
51 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
52 0x10, 0x11, 0x12, 0x13,
53 /* 128 bytes dummy DH handshake data */
54 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
55 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
56 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
57 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
58 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
59 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
60 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
61 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
62 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
63 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
64 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
65 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
66 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
67 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
68 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
69 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00 };
70
71 static uint8_t v2_test_plaintext[] =
72 /* Version byte */
73 { 0x02,
74 /* 4 bytes rendezvous point's IP address */
75 0xc0, 0xa8, 0x00, 0x01,
76 /* 2 bytes rendezvous point's OR port */
77 0x23, 0x5a,
78 /* 20 bytes dummy rendezvous point's identity digest */
79 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
80 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
81 0x10, 0x11, 0x12, 0x13,
82 /* 2 bytes length of onion key */
83 0x00, 0x8c,
84 /* Onion key (140 bytes taken from live test) */
85 0x30, 0x81, 0x89, 0x02, 0x81, 0x81, 0x00, 0xb1,
86 0xcd, 0x46, 0xa9, 0x18, 0xd2, 0x0f, 0x01, 0xf8,
87 0xb2, 0xad, 0xa4, 0x79, 0xb4, 0xbb, 0x4b, 0xf4,
88 0x54, 0x1e, 0x3f, 0x03, 0x54, 0xcf, 0x7c, 0xb6,
89 0xb5, 0xf0, 0xfe, 0xed, 0x4b, 0x7d, 0xd7, 0x61,
90 0xdb, 0x6d, 0xd9, 0x19, 0xe2, 0x72, 0x04, 0xaa,
91 0x3e, 0x89, 0x26, 0x14, 0x62, 0x9a, 0x6c, 0x11,
92 0x0b, 0x35, 0x99, 0x2c, 0x9f, 0x2c, 0x64, 0xa1,
93 0xd9, 0xe2, 0x88, 0xce, 0xf6, 0x54, 0xfe, 0x1d,
94 0x37, 0x5e, 0x6d, 0x73, 0x95, 0x54, 0x90, 0xf0,
95 0x7b, 0xfa, 0xd4, 0x44, 0xac, 0xb2, 0x23, 0x9f,
96 0x75, 0x36, 0xe2, 0x78, 0x62, 0x82, 0x80, 0xa4,
97 0x23, 0x22, 0xc9, 0xbf, 0xc4, 0x36, 0xd1, 0x31,
98 0x33, 0x8e, 0x64, 0xb4, 0xa9, 0x74, 0xa1, 0xcb,
99 0x42, 0x8d, 0x60, 0xc7, 0xbb, 0x8e, 0x6e, 0x0f,
100 0x36, 0x74, 0x8e, 0xf4, 0x08, 0x99, 0x06, 0x92,
101 0xb1, 0x3f, 0xb3, 0xdd, 0xed, 0xf7, 0xc9, 0x02,
102 0x03, 0x01, 0x00, 0x01,
103 /* 20 bytes dummy rendezvous cookie */
104 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
105 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
106 0x10, 0x11, 0x12, 0x13,
107 /* 128 bytes dummy DH handshake data */
108 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
109 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
110 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
111 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
112 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
113 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
114 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
115 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
116 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
117 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
118 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
119 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
120 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
121 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
122 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
123 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00 };
124
125 static uint8_t v3_no_auth_test_plaintext[] =
126 /* Version byte */
127 { 0x03,
128 /* Auth type (0 for no auth len/auth data) */
129 0x00,
130 /* Timestamp */
131 0x50, 0x0b, 0xb5, 0xaa,
132 /* 4 bytes rendezvous point's IP address */
133 0xc0, 0xa8, 0x00, 0x01,
134 /* 2 bytes rendezvous point's OR port */
135 0x23, 0x5a,
136 /* 20 bytes dummy rendezvous point's identity digest */
137 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
138 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
139 0x10, 0x11, 0x12, 0x13,
140 /* 2 bytes length of onion key */
141 0x00, 0x8c,
142 /* Onion key (140 bytes taken from live test) */
143 0x30, 0x81, 0x89, 0x02, 0x81, 0x81, 0x00, 0xb1,
144 0xcd, 0x46, 0xa9, 0x18, 0xd2, 0x0f, 0x01, 0xf8,
145 0xb2, 0xad, 0xa4, 0x79, 0xb4, 0xbb, 0x4b, 0xf4,
146 0x54, 0x1e, 0x3f, 0x03, 0x54, 0xcf, 0x7c, 0xb6,
147 0xb5, 0xf0, 0xfe, 0xed, 0x4b, 0x7d, 0xd7, 0x61,
148 0xdb, 0x6d, 0xd9, 0x19, 0xe2, 0x72, 0x04, 0xaa,
149 0x3e, 0x89, 0x26, 0x14, 0x62, 0x9a, 0x6c, 0x11,
150 0x0b, 0x35, 0x99, 0x2c, 0x9f, 0x2c, 0x64, 0xa1,
151 0xd9, 0xe2, 0x88, 0xce, 0xf6, 0x54, 0xfe, 0x1d,
152 0x37, 0x5e, 0x6d, 0x73, 0x95, 0x54, 0x90, 0xf0,
153 0x7b, 0xfa, 0xd4, 0x44, 0xac, 0xb2, 0x23, 0x9f,
154 0x75, 0x36, 0xe2, 0x78, 0x62, 0x82, 0x80, 0xa4,
155 0x23, 0x22, 0xc9, 0xbf, 0xc4, 0x36, 0xd1, 0x31,
156 0x33, 0x8e, 0x64, 0xb4, 0xa9, 0x74, 0xa1, 0xcb,
157 0x42, 0x8d, 0x60, 0xc7, 0xbb, 0x8e, 0x6e, 0x0f,
158 0x36, 0x74, 0x8e, 0xf4, 0x08, 0x99, 0x06, 0x92,
159 0xb1, 0x3f, 0xb3, 0xdd, 0xed, 0xf7, 0xc9, 0x02,
160 0x03, 0x01, 0x00, 0x01,
161 /* 20 bytes dummy rendezvous cookie */
162 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
163 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
164 0x10, 0x11, 0x12, 0x13,
165 /* 128 bytes dummy DH handshake data */
166 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
167 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
168 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
169 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
170 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
171 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
172 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
173 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
174 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
175 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
176 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
177 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
178 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
179 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
180 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
181 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00 };
182
183 static uint8_t v3_basic_auth_test_plaintext[] =
184 /* Version byte */
185 { 0x03,
186 /* Auth type (1 for REND_BASIC_AUTH) */
187 0x01,
188 /* Auth len (must be 16 bytes for REND_BASIC_AUTH) */
189 0x00, 0x10,
190 /* Auth data (a 16-byte dummy descriptor cookie) */
191 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
192 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
193 /* Timestamp */
194 0x50, 0x0b, 0xb5, 0xaa,
195 /* 4 bytes rendezvous point's IP address */
196 0xc0, 0xa8, 0x00, 0x01,
197 /* 2 bytes rendezvous point's OR port */
198 0x23, 0x5a,
199 /* 20 bytes dummy rendezvous point's identity digest */
200 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
201 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
202 0x10, 0x11, 0x12, 0x13,
203 /* 2 bytes length of onion key */
204 0x00, 0x8c,
205 /* Onion key (140 bytes taken from live test) */
206 0x30, 0x81, 0x89, 0x02, 0x81, 0x81, 0x00, 0xb1,
207 0xcd, 0x46, 0xa9, 0x18, 0xd2, 0x0f, 0x01, 0xf8,
208 0xb2, 0xad, 0xa4, 0x79, 0xb4, 0xbb, 0x4b, 0xf4,
209 0x54, 0x1e, 0x3f, 0x03, 0x54, 0xcf, 0x7c, 0xb6,
210 0xb5, 0xf0, 0xfe, 0xed, 0x4b, 0x7d, 0xd7, 0x61,
211 0xdb, 0x6d, 0xd9, 0x19, 0xe2, 0x72, 0x04, 0xaa,
212 0x3e, 0x89, 0x26, 0x14, 0x62, 0x9a, 0x6c, 0x11,
213 0x0b, 0x35, 0x99, 0x2c, 0x9f, 0x2c, 0x64, 0xa1,
214 0xd9, 0xe2, 0x88, 0xce, 0xf6, 0x54, 0xfe, 0x1d,
215 0x37, 0x5e, 0x6d, 0x73, 0x95, 0x54, 0x90, 0xf0,
216 0x7b, 0xfa, 0xd4, 0x44, 0xac, 0xb2, 0x23, 0x9f,
217 0x75, 0x36, 0xe2, 0x78, 0x62, 0x82, 0x80, 0xa4,
218 0x23, 0x22, 0xc9, 0xbf, 0xc4, 0x36, 0xd1, 0x31,
219 0x33, 0x8e, 0x64, 0xb4, 0xa9, 0x74, 0xa1, 0xcb,
220 0x42, 0x8d, 0x60, 0xc7, 0xbb, 0x8e, 0x6e, 0x0f,
221 0x36, 0x74, 0x8e, 0xf4, 0x08, 0x99, 0x06, 0x92,
222 0xb1, 0x3f, 0xb3, 0xdd, 0xed, 0xf7, 0xc9, 0x02,
223 0x03, 0x01, 0x00, 0x01,
224 /* 20 bytes dummy rendezvous cookie */
225 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
226 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
227 0x10, 0x11, 0x12, 0x13,
228 /* 128 bytes dummy DH handshake data */
229 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
230 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
231 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
232 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
233 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
234 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
235 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
236 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
237 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
238 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
239 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
240 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00,
241 0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
242 0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
243 0x0f, 0x0e, 0x0d, 0x0c, 0x0b, 0x0a, 0x09, 0x08,
244 0x07, 0x06, 0x05, 0x04, 0x03, 0x02, 0x01, 0x00 };
245
246 static void do_decrypt_test(uint8_t *plaintext, size_t plaintext_len);
247 static void do_early_parse_test(uint8_t *plaintext, size_t plaintext_len);
248 static void do_late_parse_test(uint8_t *plaintext, size_t plaintext_len);
249 static void do_parse_test(uint8_t *plaintext, size_t plaintext_len, int phase);
250 static ssize_t make_intro_from_plaintext(
251 void *buf, size_t len, crypto_pk_t *key, void **cell_out);
252
253 #define EARLY_PARSE_ONLY 1
254 #define DECRYPT_ONLY 2
255 #define ALL_PARSING 3
256
257 static void
258 do_early_parse_test(uint8_t *plaintext, size_t plaintext_len)
259 {
260 do_parse_test(plaintext, plaintext_len, EARLY_PARSE_ONLY);
261 }
262
263 static void
264 do_decrypt_test(uint8_t *plaintext, size_t plaintext_len)
265 {
266 do_parse_test(plaintext, plaintext_len, DECRYPT_ONLY);
267 }
268
269 static void
270 do_late_parse_test(uint8_t *plaintext, size_t plaintext_len)
271 {
272 do_parse_test(plaintext, plaintext_len, ALL_PARSING);
273 }
274
275 /** Test utility function: checks that the <b>plaintext_len</b>-byte string at
276 * <b>plaintext</b> is at least superficially parseable.
277 */
278 static void
279 do_parse_test(uint8_t *plaintext, size_t plaintext_len, int phase)
280 {
281 crypto_pk_t *k = NULL;
282 ssize_t r;
283 uint8_t *cell = NULL;
284 size_t cell_len;
285 rend_intro_cell_t *parsed_req = NULL;
286 char *err_msg = NULL;
287 char digest[DIGEST_LEN];
288
289 /* Get a key */
290 k = crypto_pk_new();
291 tt_assert(k);
292 r = crypto_pk_read_private_key_from_string(k, AUTHORITY_SIGNKEY_1, -1);
293 tt_assert(!r);
294
295 /* Get digest for future comparison */
296 r = crypto_pk_get_digest(k, digest);
297 tt_assert(r >= 0);
298
299 /* Make a cell out of it */
300 r = make_intro_from_plaintext(
301 plaintext, plaintext_len,
302 k, (void **)(&cell));
303 tt_assert(r > 0);
304 tt_assert(cell);
305 cell_len = r;
306
307 /* Do early parsing */
308 parsed_req = rend_service_begin_parse_intro(cell, cell_len, 2, &err_msg);
309 tt_assert(parsed_req);
310 tt_ptr_op(err_msg, OP_EQ, NULL);
311 tt_mem_op(parsed_req->pk,OP_EQ, digest, DIGEST_LEN);
312 tt_assert(parsed_req->ciphertext);
313 tt_assert(parsed_req->ciphertext_len > 0);
314
315 if (phase == EARLY_PARSE_ONLY)
316 goto done;
317
318 /* Do decryption */
319 r = rend_service_decrypt_intro(parsed_req, k, &err_msg);
320 tt_assert(!r);
321 tt_ptr_op(err_msg, OP_EQ, NULL);
322 tt_assert(parsed_req->plaintext);
323 tt_assert(parsed_req->plaintext_len > 0);
324
325 if (phase == DECRYPT_ONLY)
326 goto done;
327
328 /* Do late parsing */
329 r = rend_service_parse_intro_plaintext(parsed_req, &err_msg);
330 tt_assert(!r);
331 tt_ptr_op(err_msg, OP_EQ, NULL);
332 tt_assert(parsed_req->parsed);
333
334 done:
335 tor_free(cell);
336 crypto_pk_free(k);
337 rend_service_free_intro(parsed_req);
338 tor_free(err_msg);
339 }
340
341 /** Given the plaintext of the encrypted part of an INTRODUCE1/2 and a key,
342 * construct the encrypted cell for testing.
343 */
344
345 static ssize_t
346 make_intro_from_plaintext(
347 void *buf, size_t len, crypto_pk_t *key, void **cell_out)
348 {
349 char *cell = NULL;
350 ssize_t cell_len = -1, r;
351 /* Assemble key digest and ciphertext, then construct the cell */
352 ssize_t ciphertext_size;
353
354 if (!(buf && key && len > 0 && cell_out)) goto done;
355
356 /*
357 * Figure out an upper bound on how big the ciphertext will be
358 * (see crypto_pk_obsolete_public_hybrid_encrypt())
359 */
360 ciphertext_size = PKCS1_OAEP_PADDING_OVERHEAD;
361 ciphertext_size += crypto_pk_keysize(key);
362 ciphertext_size += CIPHER_KEY_LEN;
363 ciphertext_size += len;
364
365 /*
366 * Allocate space for the cell
367 */
368 cell = tor_malloc(DIGEST_LEN + ciphertext_size);
369
370 /* Compute key digest (will be first DIGEST_LEN octets of cell) */
371 r = crypto_pk_get_digest(key, cell);
372 tt_assert(r >= 0);
373
374 /* Do encryption */
375 r = crypto_pk_obsolete_public_hybrid_encrypt(
376 key, cell + DIGEST_LEN, ciphertext_size,
377 buf, len,
378 PK_PKCS1_OAEP_PADDING, 0);
379 tt_assert(r >= 0);
380
381 /* Figure out cell length */
382 cell_len = DIGEST_LEN + r;
383
384 /* Output the cell */
385 *cell_out = cell;
386 cell = NULL;
387
388 done:
389 tor_free(cell);
390 return cell_len;
391 }
392
393 /** Test v0 INTRODUCE2 parsing through decryption only
394 */
395
396 static void
397 test_introduce_decrypt_v0(void *arg)
398 {
399 (void)arg;
400 do_decrypt_test(v0_test_plaintext, sizeof(v0_test_plaintext));
401 }
402
403 /** Test v1 INTRODUCE2 parsing through decryption only
404 */
405
406 static void
407 test_introduce_decrypt_v1(void *arg)
408 {
409 (void)arg;
410 do_decrypt_test(v1_test_plaintext, sizeof(v1_test_plaintext));
411 }
412
413 /** Test v2 INTRODUCE2 parsing through decryption only
414 */
415
416 static void
417 test_introduce_decrypt_v2(void *arg)
418 {
419 (void)arg;
420 do_decrypt_test(v2_test_plaintext, sizeof(v2_test_plaintext));
421 }
422
423 /** Test v3 INTRODUCE2 parsing through decryption only
424 */
425
426 static void
427 test_introduce_decrypt_v3(void *arg)
428 {
429 (void)arg;
430 do_decrypt_test(
431 v3_no_auth_test_plaintext, sizeof(v3_no_auth_test_plaintext));
432 do_decrypt_test(
433 v3_basic_auth_test_plaintext, sizeof(v3_basic_auth_test_plaintext));
434 }
435
436 /** Test v0 INTRODUCE2 parsing through early parsing only
437 */
438
439 static void
440 test_introduce_early_parse_v0(void *arg)
441 {
442 (void)arg;
443 do_early_parse_test(v0_test_plaintext, sizeof(v0_test_plaintext));
444 }
445
446 /** Test v1 INTRODUCE2 parsing through early parsing only
447 */
448
449 static void
450 test_introduce_early_parse_v1(void *arg)
451 {
452 (void)arg;
453 do_early_parse_test(v1_test_plaintext, sizeof(v1_test_plaintext));
454 }
455
456 /** Test v2 INTRODUCE2 parsing through early parsing only
457 */
458
459 static void
460 test_introduce_early_parse_v2(void *arg)
461 {
462 (void)arg;
463 do_early_parse_test(v2_test_plaintext, sizeof(v2_test_plaintext));
464 }
465
466 /** Test v3 INTRODUCE2 parsing through early parsing only
467 */
468
469 static void
470 test_introduce_early_parse_v3(void *arg)
471 {
472 (void)arg;
473 do_early_parse_test(
474 v3_no_auth_test_plaintext, sizeof(v3_no_auth_test_plaintext));
475 do_early_parse_test(
476 v3_basic_auth_test_plaintext, sizeof(v3_basic_auth_test_plaintext));
477 }
478
479 /** Test v0 INTRODUCE2 parsing
480 */
481
482 static void
483 test_introduce_late_parse_v0(void *arg)
484 {
485 (void)arg;
486 do_late_parse_test(v0_test_plaintext, sizeof(v0_test_plaintext));
487 }
488
489 /** Test v1 INTRODUCE2 parsing
490 */
491
492 static void
493 test_introduce_late_parse_v1(void *arg)
494 {
495 (void)arg;
496 do_late_parse_test(v1_test_plaintext, sizeof(v1_test_plaintext));
497 }
498
499 /** Test v2 INTRODUCE2 parsing
500 */
501
502 static void
503 test_introduce_late_parse_v2(void *arg)
504 {
505 (void)arg;
506 do_late_parse_test(v2_test_plaintext, sizeof(v2_test_plaintext));
507 }
508
509 /** Test v3 INTRODUCE2 parsing
510 */
511
512 static void
513 test_introduce_late_parse_v3(void *arg)
514 {
515 (void)arg;
516 do_late_parse_test(
517 v3_no_auth_test_plaintext, sizeof(v3_no_auth_test_plaintext));
518 do_late_parse_test(
519 v3_basic_auth_test_plaintext, sizeof(v3_basic_auth_test_plaintext));
520 }
521
522 #define INTRODUCE_LEGACY(name) \
523 { #name, test_introduce_ ## name , 0, NULL, NULL }
524
525 struct testcase_t introduce_tests[] = {
526 INTRODUCE_LEGACY(early_parse_v0),
527 INTRODUCE_LEGACY(early_parse_v1),
528 INTRODUCE_LEGACY(early_parse_v2),
529 INTRODUCE_LEGACY(early_parse_v3),
530 INTRODUCE_LEGACY(decrypt_v0),
531 INTRODUCE_LEGACY(decrypt_v1),
532 INTRODUCE_LEGACY(decrypt_v2),
533 INTRODUCE_LEGACY(decrypt_v3),
534 INTRODUCE_LEGACY(late_parse_v0),
535 INTRODUCE_LEGACY(late_parse_v1),
536 INTRODUCE_LEGACY(late_parse_v2),
537 INTRODUCE_LEGACY(late_parse_v3),
538 END_OF_TESTCASES
539 };
The Onion Router