diff options
author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2014-08-20 21:42:26 +0200 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2014-08-20 21:42:30 +0200 |
commit | abbd810e61693945ebe0d10bc3441b12b8fd8a64 (patch) | |
tree | b373fa437ad48231ec4627d93b848afef14f2fa4 | |
parent | a01b3760350998b1ed6aab6cfb0f1e88f628ab40 (diff) | |
download | libtasn1-abbd810e61693945ebe0d10bc3441b12b8fd8a64.tar.gz |
tests: Added test for ASN1_DECODE_FLAG_STRICT_DER flag
The PKCS #12 BER encoded data are tested to fail decoding
if this flag is set.
-rw-r--r-- | tests/Makefile.am | 5 | ||||
-rw-r--r-- | tests/strict-der.c | 136 |
2 files changed, 139 insertions, 2 deletions
diff --git a/tests/Makefile.am b/tests/Makefile.am index 639d9c0..79751f4 100644 --- a/tests/Makefile.am +++ b/tests/Makefile.am @@ -36,11 +36,12 @@ MOSTLYCLEANFILES = Test_parser_ERROR.asn check_PROGRAMS = Test_parser Test_tree Test_encoding Test_indefinite \ Test_errors Test_simple Test_overflow Test_strings Test_choice \ - Test_encdec copynode coding-decoding2 + Test_encdec copynode coding-decoding2 strict-der TESTS = Test_parser Test_tree Test_encoding Test_indefinite \ Test_errors Test_simple Test_overflow crlf threadsafety \ - Test_strings Test_choice Test_encdec copynode coding-decoding2 + Test_strings Test_choice Test_encdec copynode coding-decoding2 \ + strict-der TESTS_ENVIRONMENT = \ ASN1PARSER=$(srcdir)/Test_parser.asn \ diff --git a/tests/strict-der.c b/tests/strict-der.c new file mode 100644 index 0000000..477e041 --- /dev/null +++ b/tests/strict-der.c @@ -0,0 +1,136 @@ +/* + * Copyright (C) 2002-2014 Free Software Foundation, Inc. + * + * This file is part of LIBTASN1. + * + * This program is free software: you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published by + * the Free Software Foundation, either version 3 of the License, or + * (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program. If not, see <http://www.gnu.org/licenses/>. + * + */ + + +#include <stdio.h> +#include <string.h> +#include <stdlib.h> +#include "libtasn1.h" + + + +int +main (int argc, char *argv[]) +{ + int result; + char buffer[10 * 1024]; + asn1_node definitions = NULL; + asn1_node asn1_element = NULL; + char errorDescription[ASN1_MAX_ERROR_DESCRIPTION_SIZE]; + FILE *out, *fd; + int size; + const char *treefile = getenv ("ASN1PKIX"); + const char *indeffile = getenv ("ASN1INDEF"); + int verbose = 0; + + if (argc > 1) + verbose = 1; + + if (!treefile) + treefile = "pkix.asn"; + + if (!indeffile) + indeffile = "TestIndef.p12"; + + if (verbose) + { + printf ("\n\n/****************************************/\n"); + printf ("/* Test sequence : strict DER decoding */\n"); + printf ("/****************************************/\n\n"); + printf ("ASN1TREE: %s\n", treefile); + } + + /* Check version */ + if (asn1_check_version ("0.2.11") == NULL) + printf ("\nLibrary version check ERROR:\n actual version: %s\n\n", + asn1_check_version (NULL)); + + result = asn1_parser2tree (treefile, &definitions, errorDescription); + if (result != ASN1_SUCCESS) + { + asn1_perror (result); + printf ("ErrorDescription = %s\n\n", errorDescription); + exit (1); + } + + out = stdout; + + fd = fopen (indeffile, "rb"); + if (fd == NULL) + { + printf ("Cannot read file %s\n", indeffile); + exit (1); + } + size = fread (buffer, 1, sizeof (buffer), fd); + if (size <= 0) + { + printf ("Cannot read from file %s\n", indeffile); + exit (1); + } + + fclose (fd); + + result = + asn1_create_element (definitions, "PKIX1.pkcs-12-PFX", &asn1_element); + if (result != ASN1_SUCCESS) + { + asn1_perror (result); + printf ("Cannot create PKCS12 element\n"); + exit (1); + } + + result = asn1_der_decoding2 (&asn1_element, buffer, &size, 0, errorDescription); + if (result != ASN1_SUCCESS) + { + asn1_perror (result); + printf ("Cannot decode BER data (size %ld) in %s: %s\n", (long) size, indeffile, errorDescription); + exit (1); + } + + asn1_delete_structure (&asn1_element); + + /* Now try with strict DER */ + result = + asn1_create_element (definitions, "PKIX1.pkcs-12-PFX", &asn1_element); + if (result != ASN1_SUCCESS) + { + asn1_perror (result); + printf ("Cannot create PKCS12 element\n"); + exit (1); + } + + result = asn1_der_decoding2 (&asn1_element, buffer, &size, ASN1_DECODE_FLAG_STRICT_DER, errorDescription); + if (result == ASN1_SUCCESS) + { + asn1_perror (result); + printf ("Should not have decoded DER data (size %ld) in %s: %s\n", (long) size, indeffile, errorDescription); + exit (1); + } + + asn1_delete_structure (&asn1_element); + + /* Clear the definition structures */ + asn1_delete_structure (&definitions); + + if (out != stdout) + fclose (out); + + exit (0); +} |