summaryrefslogtreecommitdiff
path: root/test/benchmark_tests/security_tests/bm_is_policy_update_allowed.cpp
diff options
context:
space:
mode:
Diffstat (limited to 'test/benchmark_tests/security_tests/bm_is_policy_update_allowed.cpp')
-rw-r--r--test/benchmark_tests/security_tests/bm_is_policy_update_allowed.cpp358
1 files changed, 358 insertions, 0 deletions
diff --git a/test/benchmark_tests/security_tests/bm_is_policy_update_allowed.cpp b/test/benchmark_tests/security_tests/bm_is_policy_update_allowed.cpp
new file mode 100644
index 0000000..8e3ab4d
--- /dev/null
+++ b/test/benchmark_tests/security_tests/bm_is_policy_update_allowed.cpp
@@ -0,0 +1,358 @@
+// Copyright (C) 2022 Bayerische Motoren Werke Aktiengesellschaft (BMW AG)
+// This Source Code Form is subject to the terms of the Mozilla Public
+// License, v. 2.0. If a copy of the MPL was not distributed with this
+// file, You can obtain one at http://mozilla.org/MPL/2.0/.
+
+#include <benchmark/benchmark.h>
+
+#include "../../common/utility.hpp"
+namespace {
+std::string configuration_file { "/vsomeip/0_0/vsomeip_security.json" };
+
+vsomeip_v3::uid_t valid_uid { 0 };
+vsomeip_v3::uid_t invalid_uid { 1234567 };
+
+vsomeip_v3::gid_t valid_gid { 0 };
+
+vsomeip_v3::service_t valid_service { 0xf913 };
+vsomeip_v3::service_t invalid_service { 0x41 };
+}
+
+static void BM_is_policy_update_allowed_valid_uid_no_requests(benchmark::State &state)
+{
+ // Test object.
+ std::unique_ptr<vsomeip_v3::policy_manager_impl> security(new vsomeip_v3::policy_manager_impl);
+
+ // Get some configurations.
+ std::set<std::string> its_failed;
+ std::vector<vsomeip_v3::configuration_element> policy_elements;
+ std::set<std::string> input { utility::get_policies_path() + configuration_file };
+ utility::read_data(input, policy_elements, its_failed);
+
+ // Load the configuration into the security.
+ const bool check_whitelist { true };
+ utility::add_security_whitelist(policy_elements.at(0), check_whitelist);
+ security->load(policy_elements.at(0), false);
+
+ // Create policy credentials.
+ boost::icl::discrete_interval<uid_t> its_uids(valid_uid, valid_uid);
+ boost::icl::interval_set<gid_t> its_gids;
+ its_gids.insert(boost::icl::interval<gid_t>::closed(valid_gid, valid_gid));
+
+ // Create a policy.
+ std::shared_ptr<vsomeip::policy> policy(std::make_shared<vsomeip::policy>());
+ policy->credentials_ += std::make_pair(its_uids, its_gids);
+ policy->allow_who_ = true;
+ policy->allow_what_ = true;
+
+ for (auto _ : state) {
+ security->is_policy_update_allowed(valid_uid, policy);
+ }
+}
+
+static void BM_is_policy_update_allowed_invalid_uid_no_requests(benchmark::State &state)
+{
+ // Test object.
+ std::unique_ptr<vsomeip_v3::policy_manager_impl> security(new vsomeip_v3::policy_manager_impl);
+
+ // Get some configurations.
+ std::set<std::string> its_failed;
+ std::vector<vsomeip_v3::configuration_element> policy_elements;
+ std::set<std::string> input { utility::get_policies_path() + configuration_file };
+ utility::read_data(input, policy_elements, its_failed);
+
+ // Load the configuration into the security.
+ const bool check_whitelist { true };
+ utility::add_security_whitelist(policy_elements.at(0), check_whitelist);
+ security->load(policy_elements.at(0), false);
+
+ // Create policy credentials.
+ boost::icl::discrete_interval<uid_t> its_uids(valid_uid, valid_uid);
+ boost::icl::interval_set<gid_t> its_gids;
+ its_gids.insert(boost::icl::interval<gid_t>::closed(valid_gid, valid_gid));
+
+ // Create a policy.
+ std::shared_ptr<vsomeip::policy> policy(std::make_shared<vsomeip::policy>());
+ policy->credentials_ += std::make_pair(its_uids, its_gids);
+ policy->allow_who_ = true;
+ policy->allow_what_ = true;
+
+ for (auto _ : state) {
+ security->is_policy_update_allowed(invalid_uid, policy);
+ }
+}
+
+static void BM_is_policy_update_allowed_valid_uid_valid_requests(benchmark::State &state)
+{
+ // Test object.
+ std::unique_ptr<vsomeip_v3::policy_manager_impl> security(new vsomeip_v3::policy_manager_impl);
+
+ // Get some configurations.
+ std::set<std::string> its_failed;
+ std::vector<vsomeip_v3::configuration_element> policy_elements;
+ std::set<std::string> input { utility::get_policies_path() + configuration_file };
+ utility::read_data(input, policy_elements, its_failed);
+
+ // Load the configuration into the security.
+ const bool check_whitelist { true };
+ utility::add_security_whitelist(policy_elements.at(0), check_whitelist);
+ security->load(policy_elements.at(0), false);
+
+ // Create policy credentials.
+ boost::icl::discrete_interval<uid_t> its_uids(valid_uid, valid_uid);
+ boost::icl::interval_set<gid_t> its_gids;
+ its_gids.insert(boost::icl::interval<gid_t>::closed(valid_gid, valid_gid));
+
+ // Create a policy.
+ std::shared_ptr<vsomeip::policy> policy(std::make_shared<vsomeip::policy>());
+ policy->credentials_ += std::make_pair(its_uids, its_gids);
+ policy->allow_who_ = true;
+ policy->allow_what_ = true;
+
+ boost::icl::discrete_interval<vsomeip::instance_t> its_instances(0x1, 0x2);
+ boost::icl::interval_set<vsomeip::method_t> its_methods;
+ its_methods.insert(boost::icl::interval<vsomeip::method_t>::closed(0x01, 0x2));
+ boost::icl::interval_map<
+ vsomeip::instance_t,
+ boost::icl::interval_set<vsomeip::method_t>
+ >its_instances_methods;
+ its_instances_methods += std::make_pair(its_instances, its_methods);
+
+ // Add a valid request to the policy.
+ policy->requests_ += std::make_pair(
+ boost::icl::discrete_interval<vsomeip::service_t>(
+ valid_service, valid_service, boost::icl::interval_bounds::closed()),
+ its_instances_methods);
+
+ for (auto _ : state) {
+ security->is_policy_update_allowed(valid_uid, policy);
+ }
+}
+
+static void BM_is_policy_update_allowed_invalid_uid_valid_requests(benchmark::State &state)
+{
+ // Test object.
+ std::unique_ptr<vsomeip_v3::policy_manager_impl> security(new vsomeip_v3::policy_manager_impl);
+
+ // Get some configurations.
+ std::set<std::string> its_failed;
+ std::vector<vsomeip_v3::configuration_element> policy_elements;
+ std::set<std::string> input { utility::get_policies_path() + configuration_file };
+ utility::read_data(input, policy_elements, its_failed);
+
+ // Load the configuration into the security.
+ const bool check_whitelist { true };
+ utility::add_security_whitelist(policy_elements.at(0), check_whitelist);
+ security->load(policy_elements.at(0), false);
+
+ // Create policy credentials.
+ boost::icl::discrete_interval<uid_t> its_uids(valid_uid, valid_uid);
+ boost::icl::interval_set<gid_t> its_gids;
+ its_gids.insert(boost::icl::interval<gid_t>::closed(valid_gid, valid_gid));
+
+ // Create a policy.
+ std::shared_ptr<vsomeip::policy> policy(std::make_shared<vsomeip::policy>());
+ policy->credentials_ += std::make_pair(its_uids, its_gids);
+ policy->allow_who_ = true;
+ policy->allow_what_ = true;
+
+ boost::icl::discrete_interval<vsomeip::instance_t> its_instances(0x1, 0x2);
+ boost::icl::interval_set<vsomeip::method_t> its_methods;
+ its_methods.insert(boost::icl::interval<vsomeip::method_t>::closed(0x01, 0x2));
+ boost::icl::interval_map<vsomeip::instance_t, boost::icl::interval_set<vsomeip::method_t>>
+ its_instances_methods;
+ its_instances_methods += std::make_pair(its_instances, its_methods);
+
+ // Add a valid request to the policy.
+ policy->requests_ += std::make_pair(
+ boost::icl::discrete_interval<vsomeip::service_t>(
+ valid_service, valid_service, boost::icl::interval_bounds::closed()),
+ its_instances_methods);
+
+ for (auto _ : state) {
+ security->is_policy_update_allowed(invalid_uid, policy);
+ }
+}
+
+static void BM_is_policy_update_allowed_valid_uid_invalid_requests(benchmark::State &state)
+{
+ // Test object.
+ std::unique_ptr<vsomeip_v3::policy_manager_impl> security(new vsomeip_v3::policy_manager_impl);
+
+ // Get some configurations.
+ std::set<std::string> its_failed;
+ std::vector<vsomeip_v3::configuration_element> policy_elements;
+ std::set<std::string> input { utility::get_policies_path() + configuration_file };
+ utility::read_data(input, policy_elements, its_failed);
+
+ // Load the configuration into the security.
+ const bool check_whitelist { true };
+ utility::add_security_whitelist(policy_elements.at(0), check_whitelist);
+ security->load(policy_elements.at(0), false);
+
+ // Create policy credentials.
+ boost::icl::discrete_interval<uid_t> its_uids(valid_uid, valid_uid);
+ boost::icl::interval_set<gid_t> its_gids;
+ its_gids.insert(boost::icl::interval<gid_t>::closed(valid_gid, valid_gid));
+
+ // Create a policy.
+ std::shared_ptr<vsomeip::policy> policy(std::make_shared<vsomeip::policy>());
+ policy->credentials_ += std::make_pair(its_uids, its_gids);
+ policy->allow_who_ = true;
+ policy->allow_what_ = true;
+
+ boost::icl::discrete_interval<vsomeip::instance_t> its_instances(0x1, 0x2);
+ boost::icl::interval_set<vsomeip::method_t> its_methods;
+ its_methods.insert(boost::icl::interval<vsomeip::method_t>::closed(0x01, 0x2));
+ boost::icl::interval_map<
+ vsomeip::instance_t,
+ boost::icl::interval_set<vsomeip::method_t>
+ >its_instances_methods;
+ its_instances_methods += std::make_pair(its_instances, its_methods);
+
+ // Add a valid request to the policy.
+ policy->requests_ += std::make_pair(
+ boost::icl::discrete_interval<vsomeip::service_t>(
+ invalid_service, invalid_service, boost::icl::interval_bounds::closed()),
+ its_instances_methods);
+
+ for (auto _ : state) {
+ security->is_policy_update_allowed(valid_uid, policy);
+ }
+}
+
+static void BM_is_policy_update_allowed_invalid_uid_invalid_requests(benchmark::State &state)
+{
+ // Test object.
+ std::unique_ptr<vsomeip_v3::policy_manager_impl> security(new vsomeip_v3::policy_manager_impl);
+
+ // Get some configurations.
+ std::set<std::string> its_failed;
+ std::vector<vsomeip_v3::configuration_element> policy_elements;
+ std::set<std::string> input { utility::get_policies_path() + configuration_file };
+ utility::read_data(input, policy_elements, its_failed);
+
+ // Load the configuration into the security.
+ const bool check_whitelist { true };
+ utility::add_security_whitelist(policy_elements.at(0), check_whitelist);
+ security->load(policy_elements.at(0), false);
+
+ // Create policy credentials.
+ boost::icl::discrete_interval<uid_t> its_uids(valid_uid, valid_uid);
+ boost::icl::interval_set<gid_t> its_gids;
+ its_gids.insert(boost::icl::interval<gid_t>::closed(valid_gid, valid_gid));
+
+ // Create a policy.
+ std::shared_ptr<vsomeip::policy> policy(std::make_shared<vsomeip::policy>());
+ policy->credentials_ += std::make_pair(its_uids, its_gids);
+ policy->allow_who_ = true;
+ policy->allow_what_ = true;
+
+ boost::icl::discrete_interval<vsomeip::instance_t> its_instances(0x1, 0x2);
+ boost::icl::interval_set<vsomeip::method_t> its_methods;
+ its_methods.insert(boost::icl::interval<vsomeip::method_t>::closed(0x01, 0x2));
+ boost::icl::interval_map<
+ vsomeip::instance_t,
+ boost::icl::interval_set<vsomeip::method_t>
+ >its_instances_methods;
+ its_instances_methods += std::make_pair(its_instances, its_methods);
+
+ // Add a valid request to the policy.
+ policy->requests_ += std::make_pair(
+ boost::icl::discrete_interval<vsomeip::service_t>(
+ invalid_service, invalid_service, boost::icl::interval_bounds::closed()),
+ its_instances_methods);
+
+ for (auto _ : state) {
+ security->is_policy_update_allowed(invalid_uid, policy);
+ }
+}
+
+static void BM_is_policy_update_allowed_invalid_uid_ignore_whitelist(benchmark::State &state)
+{
+ // Test object.
+ std::unique_ptr<vsomeip_v3::policy_manager_impl> security(new vsomeip_v3::policy_manager_impl);
+
+ // Get some configurations.
+ std::set<std::string> its_failed;
+ std::vector<vsomeip_v3::configuration_element> policy_elements;
+ std::set<std::string> input { utility::get_policies_path() + configuration_file };
+ utility::read_data(input, policy_elements, its_failed);
+
+ // Load the configuration into the security.
+ const bool check_whitelist { false };
+ utility::add_security_whitelist(policy_elements.at(0), check_whitelist);
+ security->load(policy_elements.at(0), false);
+
+ // Create policy credentials.
+ boost::icl::discrete_interval<uid_t> its_uids(valid_uid, valid_uid);
+ boost::icl::interval_set<gid_t> its_gids;
+ its_gids.insert(boost::icl::interval<gid_t>::closed(valid_gid, valid_gid));
+
+ // Create a policy.
+ std::shared_ptr<vsomeip::policy> policy(std::make_shared<vsomeip::policy>());
+ policy->credentials_ += std::make_pair(its_uids, its_gids);
+ policy->allow_who_ = true;
+ policy->allow_what_ = true;
+
+ for (auto _ : state) {
+ security->is_policy_update_allowed(invalid_uid, policy);
+ }
+}
+
+static void
+BM_is_policy_update_allowed_valid_uid_invalid_request_ignore_whitelist(benchmark::State &state)
+{
+ // Test object.
+ std::unique_ptr<vsomeip_v3::policy_manager_impl> security(new vsomeip_v3::policy_manager_impl);
+
+ // Get some configurations.
+ std::set<std::string> its_failed;
+ std::vector<vsomeip_v3::configuration_element> policy_elements;
+ std::set<std::string> input { utility::get_policies_path() + configuration_file };
+ utility::read_data(input, policy_elements, its_failed);
+
+ // Load the configuration into the security.
+ const bool check_whitelist { false };
+ utility::add_security_whitelist(policy_elements.at(0), check_whitelist);
+ security->load(policy_elements.at(0), false);
+
+ // Create policy credentials.
+ boost::icl::discrete_interval<uid_t> its_uids(valid_uid, valid_uid);
+ boost::icl::interval_set<gid_t> its_gids;
+ its_gids.insert(boost::icl::interval<gid_t>::closed(valid_gid, valid_gid));
+
+ // Create a policy.
+ std::shared_ptr<vsomeip::policy> policy(std::make_shared<vsomeip::policy>());
+ policy->credentials_ += std::make_pair(its_uids, its_gids);
+ policy->allow_who_ = true;
+ policy->allow_what_ = true;
+
+ boost::icl::discrete_interval<vsomeip::instance_t> its_instances(0x1, 0x2);
+ boost::icl::interval_set<vsomeip::method_t> its_methods;
+ its_methods.insert(boost::icl::interval<vsomeip::method_t>::closed(0x01, 0x2));
+ boost::icl::interval_map<
+ vsomeip::instance_t,
+ boost::icl::interval_set<vsomeip::method_t>
+ >its_instances_methods;
+ its_instances_methods += std::make_pair(its_instances, its_methods);
+
+ // Add a valid request to the policy.
+ policy->requests_ += std::make_pair(
+ boost::icl::discrete_interval<vsomeip::service_t>(
+ invalid_service, invalid_service, boost::icl::interval_bounds::closed()),
+ its_instances_methods);
+
+ for (auto _ : state) {
+ security->is_policy_update_allowed(valid_uid, policy);
+ }
+}
+
+BENCHMARK(BM_is_policy_update_allowed_valid_uid_no_requests);
+BENCHMARK(BM_is_policy_update_allowed_invalid_uid_no_requests);
+BENCHMARK(BM_is_policy_update_allowed_valid_uid_valid_requests);
+BENCHMARK(BM_is_policy_update_allowed_invalid_uid_valid_requests);
+BENCHMARK(BM_is_policy_update_allowed_valid_uid_invalid_requests);
+BENCHMARK(BM_is_policy_update_allowed_invalid_uid_invalid_requests);
+BENCHMARK(BM_is_policy_update_allowed_invalid_uid_ignore_whitelist);
+BENCHMARK(BM_is_policy_update_allowed_valid_uid_invalid_request_ignore_whitelist);
View Lorry Controller Status