openssl/test/provider_test.c

/*
 * Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <stddef.h>
#include <openssl/provider.h>
#include "testutil.h"

extern OSSL_provider_init_fn PROVIDER_INIT_FUNCTION_NAME;

static char buf[256];
static OSSL_PARAM greeting_request[] = {
    { "greeting", OSSL_PARAM_UTF8_STRING, buf, sizeof(buf) },
    { NULL, 0, NULL, 0, 0 }
};

static int test_provider(OSSL_LIB_CTX **libctx, const char *name)
{
    OSSL_PROVIDER *prov = NULL;
    const char *greeting = NULL;
    char expected_greeting[256];
    int ok = 0;
    long err;

    BIO_snprintf(expected_greeting, sizeof(expected_greeting),
                 "Hello OpenSSL %.20s, greetings from %s!",
                 OPENSSL_VERSION_STR, name);

    if (!TEST_ptr(prov = OSSL_PROVIDER_load(*libctx, name))
            || !TEST_true(OSSL_PROVIDER_get_params(prov, greeting_request))
            || !TEST_ptr(greeting = greeting_request[0].data)
            || !TEST_size_t_gt(greeting_request[0].data_size, 0)
            || !TEST_str_eq(greeting, expected_greeting)
            || !TEST_true(OSSL_PROVIDER_unload(prov)))
        goto err;

    prov = NULL;

    /*
     * We must free the libctx to force the provider to really be unloaded from
     * memory
     */
    OSSL_LIB_CTX_free(*libctx);
    *libctx = NULL;

    /* Make sure we got the error we were expecting */
    err = ERR_peek_last_error();
    if (!TEST_int_gt(err, 0)
            || !TEST_int_eq(ERR_GET_REASON(err), 1))
        goto err;

    /* We print out all the data to make sure it can still be accessed */
    ERR_print_errors_fp(stderr);
    ok = 1;
 err:
    OSSL_PROVIDER_unload(prov);
    OSSL_LIB_CTX_free(*libctx);
    *libctx = NULL;
    return ok;
}

static int test_builtin_provider(void)
{
    OSSL_LIB_CTX *libctx = OSSL_LIB_CTX_new();
    const char *name = "p_test_builtin";
    int ok;

    ok =
        TEST_ptr(libctx)
        && TEST_true(OSSL_PROVIDER_add_builtin(libctx, name,
                                               PROVIDER_INIT_FUNCTION_NAME))
        && test_provider(&libctx, name);

    OSSL_LIB_CTX_free(libctx);

    return ok;
}

#ifndef NO_PROVIDER_MODULE
static int test_loaded_provider(void)
{
    OSSL_LIB_CTX *libctx = OSSL_LIB_CTX_new();
    const char *name = "p_test";

    if (!TEST_ptr(libctx))
        return 0;

    /* test_provider will free libctx as part of the test */
    return test_provider(&libctx, name);
}
#endif

int setup_tests(void)
{
    ADD_TEST(test_builtin_provider);
#ifndef NO_PROVIDER_MODULE
    ADD_TEST(test_loaded_provider);
#endif
    return 1;
}
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`/*`
Update copyright year Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14512) 2021-03-11 21:27:36 +08:00			`* Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`*`
			`* Licensed under the Apache License 2.0 (the "License"). You may not use`
			`* this file except in compliance with the License. You can obtain a copy`
			`* in the file LICENSE in the source distribution or at`
			`* https://www.openssl.org/source/license.html`
			`*/`

			`#include <stddef.h>`
			`#include <openssl/provider.h>`
			`#include "testutil.h"`

			`extern OSSL_provider_init_fn PROVIDER_INIT_FUNCTION_NAME;`

			`static char buf[256];`
			`static OSSL_PARAM greeting_request[] = {`
Change OSSL_PARAM return size to not be a pointer. Instead of referencing the return size from the OSSL_PARAM structure, make the size a field within the structure. Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9135) 2019-06-24 12:43:55 +08:00			`{ "greeting", OSSL_PARAM_UTF8_STRING, buf, sizeof(buf) },`
			`{ NULL, 0, NULL, 0, 0 }`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`};`

Test errors from a provider can still be accessed after unload Providers can create errors that may refer to const strings within the provider module itself. If the provider gets unloaded we need to be sure that we can still access the errors in the error stack. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14213) 2021-02-16 18:10:26 +08:00			`static int test_provider(OSSL_LIB_CTX *libctx, const char name)`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`{`
			`OSSL_PROVIDER *prov = NULL;`
			`const char *greeting = NULL;`
			`char expected_greeting[256];`
Test errors from a provider can still be accessed after unload Providers can create errors that may refer to const strings within the provider module itself. If the provider gets unloaded we need to be sure that we can still access the errors in the error stack. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14213) 2021-02-16 18:10:26 +08:00			`int ok = 0;`
			`long err;`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00
replaced snprintf with BIO version (for windows builds) Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/8571) 2019-03-25 09:37:24 +08:00			`BIO_snprintf(expected_greeting, sizeof(expected_greeting),`
style nit fix Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/8580) 2019-03-26 13:20:22 +08:00			`"Hello OpenSSL %.20s, greetings from %s!",`
			`OPENSSL_VERSION_STR, name);`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00
Test errors from a provider can still be accessed after unload Providers can create errors that may refer to const strings within the provider module itself. If the provider gets unloaded we need to be sure that we can still access the errors in the error stack. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14213) 2021-02-16 18:10:26 +08:00			`if (!TEST_ptr(prov = OSSL_PROVIDER_load(*libctx, name))`
			`\|\| !TEST_true(OSSL_PROVIDER_get_params(prov, greeting_request))`
			`\|\| !TEST_ptr(greeting = greeting_request[0].data)`
			`\|\| !TEST_size_t_gt(greeting_request[0].data_size, 0)`
			`\|\| !TEST_str_eq(greeting, expected_greeting)`
			`\|\| !TEST_true(OSSL_PROVIDER_unload(prov)))`
			`goto err;`

			`prov = NULL;`

			`/*`
			`* We must free the libctx to force the provider to really be unloaded from`
			`* memory`
			`*/`
			`OSSL_LIB_CTX_free(*libctx);`
			`*libctx = NULL;`

			`/* Make sure we got the error we were expecting */`
			`err = ERR_peek_last_error();`
			`if (!TEST_int_gt(err, 0)`
			`\|\| !TEST_int_eq(ERR_GET_REASON(err), 1))`
			`goto err;`

			`/* We print out all the data to make sure it can still be accessed */`
			`ERR_print_errors_fp(stderr);`
			`ok = 1;`
			`err:`
			`OSSL_PROVIDER_unload(prov);`
			`OSSL_LIB_CTX_free(*libctx);`
			`*libctx = NULL;`
			`return ok;`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`}`

			`static int test_builtin_provider(void)`
			`{`
Test errors from a provider can still be accessed after unload Providers can create errors that may refer to const strings within the provider module itself. If the provider gets unloaded we need to be sure that we can still access the errors in the error stack. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14213) 2021-02-16 18:10:26 +08:00			`OSSL_LIB_CTX *libctx = OSSL_LIB_CTX_new();`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`const char *name = "p_test_builtin";`
Test errors from a provider can still be accessed after unload Providers can create errors that may refer to const strings within the provider module itself. If the provider gets unloaded we need to be sure that we can still access the errors in the error stack. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14213) 2021-02-16 18:10:26 +08:00			`int ok;`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00
Test errors from a provider can still be accessed after unload Providers can create errors that may refer to const strings within the provider module itself. If the provider gets unloaded we need to be sure that we can still access the errors in the error stack. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14213) 2021-02-16 18:10:26 +08:00			`ok =`
			`TEST_ptr(libctx)`
			`&& TEST_true(OSSL_PROVIDER_add_builtin(libctx, name,`
			`PROVIDER_INIT_FUNCTION_NAME))`
			`&& test_provider(&libctx, name);`

			`OSSL_LIB_CTX_free(libctx);`

			`return ok;`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`}`

For provider tests, don't define a OPENSSL_NO_ macro Since the macro to indicate if the test provider module is available is local to the test programs, it's better to use a name that isn't as easily confused with a library feature disabling macro that one would expect to find in opensslconf.h. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8664) 2019-04-04 18:35:47 +08:00			`#ifndef NO_PROVIDER_MODULE`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`static int test_loaded_provider(void)`
			`{`
Test errors from a provider can still be accessed after unload Providers can create errors that may refer to const strings within the provider module itself. If the provider gets unloaded we need to be sure that we can still access the errors in the error stack. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14213) 2021-02-16 18:10:26 +08:00			`OSSL_LIB_CTX *libctx = OSSL_LIB_CTX_new();`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`const char *name = "p_test";`

Test errors from a provider can still be accessed after unload Providers can create errors that may refer to const strings within the provider module itself. If the provider gets unloaded we need to be sure that we can still access the errors in the error stack. Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/14213) 2021-02-16 18:10:26 +08:00			`if (!TEST_ptr(libctx))`
			`return 0;`

			`/* test_provider will free libctx as part of the test */`
			`return test_provider(&libctx, name);`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`}`
			`#endif`

			`int setup_tests(void)`
			`{`
			`ADD_TEST(test_builtin_provider);`
For provider tests, don't define a OPENSSL_NO_ macro Since the macro to indicate if the test provider module is available is local to the test programs, it's better to use a name that isn't as easily confused with a library feature disabling macro that one would expect to find in opensslconf.h. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8664) 2019-04-04 18:35:47 +08:00			`#ifndef NO_PROVIDER_MODULE`
Add provider tests Two tests are added, one that tests the internal API, the other tests the public API. Those two tests both test the same provider, which acts both as a built-in provider and as a loadable provider module. Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/8287) 2019-02-21 05:55:43 +08:00			`ADD_TEST(test_loaded_provider);`
			`#endif`
			`return 1;`
			`}`