diff options
Diffstat (limited to '')
-rw-r--r-- | src/test/ceph_crypto.cc | 157 |
1 files changed, 157 insertions, 0 deletions
diff --git a/src/test/ceph_crypto.cc b/src/test/ceph_crypto.cc new file mode 100644 index 00000000..fc8f4ed8 --- /dev/null +++ b/src/test/ceph_crypto.cc @@ -0,0 +1,157 @@ +#include "gtest/gtest.h" +#include "common/ceph_argparse.h" +#include "common/ceph_crypto.h" +#include "common/common_init.h" +#include "global/global_init.h" +#include "global/global_context.h" + +class CryptoEnvironment: public ::testing::Environment { +public: + void SetUp() override { + ceph::crypto::init(g_ceph_context); + } +}; + +TEST(MD5, Simple) { + ceph::crypto::MD5 h; + h.Update((const unsigned char*)"foo", 3); + unsigned char digest[CEPH_CRYPTO_MD5_DIGESTSIZE]; + h.Final(digest); + int err; + unsigned char want_digest[CEPH_CRYPTO_MD5_DIGESTSIZE] = { + 0xac, 0xbd, 0x18, 0xdb, 0x4c, 0xc2, 0xf8, 0x5c, + 0xed, 0xef, 0x65, 0x4f, 0xcc, 0xc4, 0xa4, 0xd8, + }; + err = memcmp(digest, want_digest, CEPH_CRYPTO_MD5_DIGESTSIZE); + ASSERT_EQ(0, err); +} + +TEST(MD5, MultiUpdate) { + ceph::crypto::MD5 h; + h.Update((const unsigned char*)"", 0); + h.Update((const unsigned char*)"fo", 2); + h.Update((const unsigned char*)"", 0); + h.Update((const unsigned char*)"o", 1); + h.Update((const unsigned char*)"", 0); + unsigned char digest[CEPH_CRYPTO_MD5_DIGESTSIZE]; + h.Final(digest); + int err; + unsigned char want_digest[CEPH_CRYPTO_MD5_DIGESTSIZE] = { + 0xac, 0xbd, 0x18, 0xdb, 0x4c, 0xc2, 0xf8, 0x5c, + 0xed, 0xef, 0x65, 0x4f, 0xcc, 0xc4, 0xa4, 0xd8, + }; + err = memcmp(digest, want_digest, CEPH_CRYPTO_MD5_DIGESTSIZE); + ASSERT_EQ(0, err); +} + +TEST(MD5, Restart) { + ceph::crypto::MD5 h; + h.Update((const unsigned char*)"bar", 3); + h.Restart(); + h.Update((const unsigned char*)"foo", 3); + unsigned char digest[CEPH_CRYPTO_MD5_DIGESTSIZE]; + h.Final(digest); + int err; + unsigned char want_digest[CEPH_CRYPTO_MD5_DIGESTSIZE] = { + 0xac, 0xbd, 0x18, 0xdb, 0x4c, 0xc2, 0xf8, 0x5c, + 0xed, 0xef, 0x65, 0x4f, 0xcc, 0xc4, 0xa4, 0xd8, + }; + err = memcmp(digest, want_digest, CEPH_CRYPTO_MD5_DIGESTSIZE); + ASSERT_EQ(0, err); +} + +TEST(HMACSHA1, Simple) { + ceph::crypto::HMACSHA1 h((const unsigned char*)"sekrit", 6); + h.Update((const unsigned char*)"foo", 3); + unsigned char digest[CEPH_CRYPTO_HMACSHA1_DIGESTSIZE]; + h.Final(digest); + int err; + unsigned char want_digest[CEPH_CRYPTO_HMACSHA1_DIGESTSIZE] = { + 0x04, 0xbc, 0x52, 0x66, 0xb6, 0xff, 0xad, 0xad, 0x9d, 0x57, + 0xce, 0x13, 0xea, 0x8c, 0xf5, 0x6b, 0xf9, 0x95, 0x2f, 0xd6, + }; + err = memcmp(digest, want_digest, CEPH_CRYPTO_HMACSHA1_DIGESTSIZE); + ASSERT_EQ(0, err); +} + +TEST(HMACSHA1, MultiUpdate) { + ceph::crypto::HMACSHA1 h((const unsigned char*)"sekrit", 6); + h.Update((const unsigned char*)"", 0); + h.Update((const unsigned char*)"fo", 2); + h.Update((const unsigned char*)"", 0); + h.Update((const unsigned char*)"o", 1); + h.Update((const unsigned char*)"", 0); + unsigned char digest[CEPH_CRYPTO_HMACSHA1_DIGESTSIZE]; + h.Final(digest); + int err; + unsigned char want_digest[CEPH_CRYPTO_HMACSHA1_DIGESTSIZE] = { + 0x04, 0xbc, 0x52, 0x66, 0xb6, 0xff, 0xad, 0xad, 0x9d, 0x57, + 0xce, 0x13, 0xea, 0x8c, 0xf5, 0x6b, 0xf9, 0x95, 0x2f, 0xd6, + }; + err = memcmp(digest, want_digest, CEPH_CRYPTO_HMACSHA1_DIGESTSIZE); + ASSERT_EQ(0, err); +} + +TEST(HMACSHA1, Restart) { + ceph::crypto::HMACSHA1 h((const unsigned char*)"sekrit", 6); + h.Update((const unsigned char*)"bar", 3); + h.Restart(); + h.Update((const unsigned char*)"foo", 3); + unsigned char digest[CEPH_CRYPTO_HMACSHA1_DIGESTSIZE]; + h.Final(digest); + int err; + unsigned char want_digest[CEPH_CRYPTO_HMACSHA1_DIGESTSIZE] = { + 0x04, 0xbc, 0x52, 0x66, 0xb6, 0xff, 0xad, 0xad, 0x9d, 0x57, + 0xce, 0x13, 0xea, 0x8c, 0xf5, 0x6b, 0xf9, 0x95, 0x2f, 0xd6, + }; + err = memcmp(digest, want_digest, CEPH_CRYPTO_HMACSHA1_DIGESTSIZE); + ASSERT_EQ(0, err); +} + +class ForkDeathTest : public ::testing::Test { + protected: + void SetUp() override { + // shutdown NSS so it can be reinitialized after the fork + // some data structures used by NSPR are only initialized once, and they + // will be cleaned up with ceph::crypto::shutdown(false), so we need to + // keep them around after fork. + ceph::crypto::shutdown(true); + } + + void TearDown() override { + // undo the NSS shutdown we did in the parent process, after the + // test is done + ceph::crypto::init(g_ceph_context); + } +}; + +void do_simple_crypto() { + // ensure that the shutdown/fork/init sequence results in a working + // NSS crypto library; this function is run in the child, after the + // fork, and if you comment out the ceph::crypto::init, or if the + // trick were to fail, you would see this ending in an assert and + // not exit status 0 + ceph::crypto::init(g_ceph_context); + ceph::crypto::MD5 h; + h.Update((const unsigned char*)"foo", 3); + unsigned char digest[CEPH_CRYPTO_MD5_DIGESTSIZE]; + h.Final(digest); + exit(0); +} + +#if GTEST_HAS_DEATH_TEST +TEST_F(ForkDeathTest, MD5) { + ASSERT_EXIT(do_simple_crypto(), ::testing::ExitedWithCode(0), "^$"); +} +#endif //GTEST_HAS_DEATH_TEST + +int main(int argc, char **argv) { + std::vector<const char*> args(argv, argv + argc); + auto cct = global_init(NULL, args, + CEPH_ENTITY_TYPE_CLIENT, + CODE_ENVIRONMENT_UTILITY, + CINIT_FLAG_NO_DEFAULT_CONFIG_FILE); + common_init_finish(g_ceph_context); + ::testing::InitGoogleTest(&argc, argv); + return RUN_ALL_TESTS(); +} |