source-git / gcr

Clone
Source Code
GIT

Blame gcr/test-secure-memory.c

c8 c8s master
  1.   c8
  2.   gcr
  3.   test-secure-memory.c
Blob History Raw
Packit b00eeb 
/* -*- Mode: C; indent-tabs-mode: t; c-basic-offset: 8; tab-width: 8 -*- */
Packit b00eeb 
/* unit-test-memory.c: Test memory allocation functionality
Packit b00eeb
Packit b00eeb 
   Copyright (C) 2007 Stefan Walter
Packit b00eeb 
   Copyright (C) 2012 Red Hat Inc.
Packit b00eeb
Packit b00eeb 
   The Gnome Keyring Library is free software; you can redistribute it and/or
Packit b00eeb 
   modify it under the terms of the GNU Library General Public License as
Packit b00eeb 
   published by the Free Software Foundation; either version 2 of the
Packit b00eeb 
   License, or (at your option) any later version.
Packit b00eeb
Packit b00eeb 
   The Gnome Keyring Library is distributed in the hope that it will be useful,
Packit b00eeb 
   but WITHOUT ANY WARRANTY; without even the implied warranty of
Packit b00eeb 
   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
Packit b00eeb 
   Library General Public License for more details.
Packit b00eeb
Packit b00eeb 
   You should have received a copy of the GNU Library General Public
Packit b00eeb 
   License along with the Gnome Library; see the file COPYING.LIB.  If not,
Packit b00eeb 
   see <http://www.gnu.org/licenses/>.
Packit b00eeb
Packit b00eeb 
   Author: Stef Walter <stefw@gnome.org>
Packit b00eeb 
*/
Packit b00eeb
Packit b00eeb 
#include "config.h"
Packit b00eeb
Packit b00eeb 
#include "gcr/gcr-secure-memory.h"
Packit b00eeb
Packit b00eeb 
#include <glib.h>
Packit b00eeb
Packit b00eeb 
#include <errno.h>
Packit b00eeb 
#include <stdlib.h>
Packit b00eeb 
#include <stdio.h>
Packit b00eeb 
#include <string.h>
Packit b00eeb 
#include <sys/resource.h>
Packit b00eeb
Packit b00eeb 
#define IS_ZERO -1
Packit b00eeb
Packit b00eeb 
static int
Packit b00eeb 
find_non_zero (gpointer mem, gsize len)
Packit b00eeb 
{
Packit b00eeb 
	guchar *b, *e;
Packit b00eeb 
	gsize sz = 0;
Packit b00eeb 
	for (b = (guchar*)mem, e = ((guchar*)mem) + len; b != e; ++b, ++sz) {
Packit b00eeb 
		if (*b != 0x00)
Packit b00eeb 
			return (int)sz;
Packit b00eeb 
	}
Packit b00eeb
Packit b00eeb 
	return -1;
Packit b00eeb 
}
Packit b00eeb
Packit b00eeb 
extern int egg_secure_warnings;
Packit b00eeb
Packit b00eeb 
static gsize
Packit b00eeb 
get_rlimit_memlock (void)
Packit b00eeb 
{
Packit b00eeb 
	struct rlimit memlock;
Packit b00eeb
Packit b00eeb 
	if (getrlimit (RLIMIT_MEMLOCK, &memlock) != 0)
Packit b00eeb 
		g_error ("getrlimit() failed: %s", strerror (errno));
Packit b00eeb
Packit b00eeb 
	/* Check that the limit is finite, and that if the caller increases its
Packit b00eeb 
	 * size by one (to get the first invalid allocation size), things won’t
Packit b00eeb 
	 * explode. */
Packit b00eeb 
	if (memlock.rlim_cur == RLIM_INFINITY ||
Packit b00eeb 
	    memlock.rlim_cur >= G_MAXSIZE - 1) {
Packit b00eeb 
		/* Try reducing the limit to 64KiB. */
Packit b00eeb 
		memlock.rlim_cur = MIN (64 * 1024, memlock.rlim_max);
Packit b00eeb 
		if (setrlimit (RLIMIT_MEMLOCK, &memlock) != 0) {
Packit b00eeb 
			g_test_skip ("setrlimit() failed");
Packit b00eeb 
			return 0;
Packit b00eeb 
		}
Packit b00eeb 
	}
Packit b00eeb
Packit b00eeb 
	return memlock.rlim_cur;
Packit b00eeb 
}
Packit b00eeb
Packit b00eeb 
static void
Packit b00eeb 
test_alloc_free (void)
Packit b00eeb 
{
Packit b00eeb 
	gpointer p;
Packit b00eeb 
	gboolean ret;
Packit b00eeb
Packit b00eeb 
	p = gcr_secure_memory_alloc (512);
Packit b00eeb 
	g_assert (p != NULL);
Packit b00eeb 
	g_assert_cmpint (IS_ZERO, ==, find_non_zero (p, 512));
Packit b00eeb
Packit b00eeb 
	memset (p, 0x67, 512);
Packit b00eeb
Packit b00eeb 
	ret = gcr_secure_memory_is_secure (p);
Packit b00eeb 
	g_assert (ret == TRUE);
Packit b00eeb
Packit b00eeb 
	gcr_secure_memory_free (p);
Packit b00eeb 
}
Packit b00eeb
Packit b00eeb 
static void
Packit b00eeb 
test_alloc_two (void)
Packit b00eeb 
{
Packit b00eeb 
	gpointer p, p2;
Packit b00eeb 
	gboolean ret;
Packit b00eeb
Packit b00eeb 
	p2 = gcr_secure_memory_alloc (4);
Packit b00eeb 
	g_assert(p2 != NULL);
Packit b00eeb 
	g_assert_cmpint (IS_ZERO, ==, find_non_zero (p2, 4));
Packit b00eeb
Packit b00eeb 
	memset (p2, 0x67, 4);
Packit b00eeb
Packit b00eeb 
	p = gcr_secure_memory_alloc (16200);
Packit b00eeb 
	g_assert (p != NULL);
Packit b00eeb 
	g_assert_cmpint (IS_ZERO, ==, find_non_zero (p, 16200));
Packit b00eeb
Packit b00eeb 
	memset (p, 0x67, 16200);
Packit b00eeb
Packit b00eeb 
	ret = gcr_secure_memory_is_secure (p);
Packit b00eeb 
	g_assert (ret == TRUE);
Packit b00eeb
Packit b00eeb 
	gcr_secure_memory_free (p2);
Packit b00eeb 
	gcr_secure_memory_free (p);
Packit b00eeb 
}
Packit b00eeb
Packit b00eeb 
/* Test alloc() with an allocation larger than RLIMIT_MEMLOCK, which should
Packit b00eeb 
 * fail. */
Packit b00eeb 
static void
Packit b00eeb 
test_alloc_oversized (void)
Packit b00eeb 
{
Packit b00eeb 
	gsize limit;
Packit b00eeb 
	gpointer mem;
Packit b00eeb
Packit b00eeb 
	limit = get_rlimit_memlock ();
Packit b00eeb 
	if (limit == 0)
Packit b00eeb 
		return;
Packit b00eeb
Packit b00eeb 
	/* Try the allocation. */
Packit b00eeb 
	egg_secure_warnings = 0;
Packit b00eeb
Packit b00eeb 
	mem = gcr_secure_memory_try_alloc (limit + 1);
Packit b00eeb 
	g_assert_null (mem);
Packit b00eeb
Packit b00eeb 
	egg_secure_warnings = 1;
Packit b00eeb 
}
Packit b00eeb
Packit b00eeb 
static void
Packit b00eeb 
test_realloc (void)
Packit b00eeb 
{
Packit b00eeb 
	const gchar *str = "a test string to see if realloc works properly";
Packit b00eeb 
	gpointer p, p2;
Packit b00eeb 
	gsize len;
Packit b00eeb
Packit b00eeb 
	len = strlen (str) + 1;
Packit b00eeb
Packit b00eeb 
	p = gcr_secure_memory_realloc (NULL, len);
Packit b00eeb 
	g_assert (p != NULL);
Packit b00eeb 
	g_assert_cmpint (IS_ZERO, ==, find_non_zero (p, len));
Packit b00eeb
Packit b00eeb 
	strcpy ((gchar*)p, str);
Packit b00eeb
Packit b00eeb 
	p2 = gcr_secure_memory_realloc (p, 512);
Packit b00eeb 
	g_assert (p2 != NULL);
Packit b00eeb
Packit b00eeb 
	/* "strings not equal after realloc" */
Packit b00eeb 
	g_assert_cmpstr (p2, ==, str);
Packit b00eeb
Packit b00eeb 
	p = gcr_secure_memory_realloc (p2, 0);
Packit b00eeb 
	/* "should have freed memory" */
Packit b00eeb 
	g_assert (p == NULL);
Packit b00eeb 
}
Packit b00eeb
Packit b00eeb 
static void
Packit b00eeb 
test_realloc_across (void)
Packit b00eeb 
{
Packit b00eeb 
	gpointer p, p2;
Packit b00eeb
Packit b00eeb 
	/* Tiny allocation */
Packit b00eeb 
	p = gcr_secure_memory_realloc (NULL, 1088);
Packit b00eeb 
	g_assert (p != NULL);
Packit b00eeb 
	g_assert_cmpint (IS_ZERO, ==, find_non_zero (p, 1088));
Packit b00eeb
Packit b00eeb 
	/* Reallocate to a large one, will have to have changed blocks */
Packit b00eeb 
	p2 = gcr_secure_memory_realloc (p, 16200);
Packit b00eeb 
	g_assert (p2 != NULL);
Packit b00eeb 
	g_assert_cmpint (IS_ZERO, ==, find_non_zero (p2, 16200));
Packit b00eeb
Packit b00eeb 
	gcr_secure_memory_free (p2);
Packit b00eeb 
}
Packit b00eeb
Packit b00eeb 
/* Test realloc() with an allocation larger than RLIMIT_MEMLOCK, which should
Packit b00eeb 
 * fail. */
Packit b00eeb 
static void
Packit b00eeb 
test_realloc_oversized (void)
Packit b00eeb 
{
Packit b00eeb 
	gsize limit;
Packit b00eeb 
	gpointer mem, new_mem;
Packit b00eeb
Packit b00eeb 
	limit = get_rlimit_memlock ();
Packit b00eeb 
	if (limit == 0)
Packit b00eeb 
		return;
Packit b00eeb
Packit b00eeb 
	/* Try the allocation. */
Packit b00eeb 
	mem = gcr_secure_memory_alloc (64);
Packit b00eeb 
	g_assert_nonnull (mem);
Packit b00eeb
Packit b00eeb 
	egg_secure_warnings = 0;
Packit b00eeb
Packit b00eeb 
	new_mem = gcr_secure_memory_try_realloc (mem, limit + 1);
Packit b00eeb 
	g_assert_null (new_mem);
Packit b00eeb
Packit b00eeb 
	egg_secure_warnings = 1;
Packit b00eeb
Packit b00eeb 
	gcr_secure_memory_free (mem);
Packit b00eeb 
}
Packit b00eeb
Packit b00eeb 
int
Packit b00eeb 
main (int argc, char **argv)
Packit b00eeb 
{
Packit b00eeb 
	g_test_init (&argc, &argv, NULL);
Packit b00eeb 
	g_set_prgname ("test-memory");
Packit b00eeb
Packit b00eeb 
	g_test_add_func ("/memory/alloc-free", test_alloc_free);
Packit b00eeb 
	g_test_add_func ("/memory/alloc-two", test_alloc_two);
Packit b00eeb 
	g_test_add_func ("/memory/alloc-oversized", test_alloc_oversized);
Packit b00eeb 
	g_test_add_func ("/memory/realloc", test_realloc);
Packit b00eeb 
	g_test_add_func ("/memory/realloc-across", test_realloc_across);
Packit b00eeb 
	g_test_add_func ("/memory/realloc-oversized", test_realloc_oversized);
Packit b00eeb
Packit b00eeb 
	return g_test_run ();
Packit b00eeb 
}

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation