Add more keyring load tests, fix duplicate identity bugs

2024-12-18 20:57:56 +00:00 · 2013-09-07 04:03:28 +09:30 · 2013-09-07 04:03:28 +09:30 · 18e2916cec
commit 18e2916cec
parent befb658958
2 changed files with 144 additions and 50 deletions
--- a/keyring.c
+++ b/keyring.c
@ -902,6 +902,9 @@ static int cmp_keypair(const keypair *a, const keypair *b)
  return c;
 }

+/* Ensure that regardless of the order in the keyring file or loaded dump, keypairs are always
+ * stored in memory in ascending order of (key type, public key, private key).
+ */
 static int keyring_identity_add_keypair(keyring_identity *id, keypair *kp)
 {
  assert(id->keypair_count < PKR_MAX_KEYPAIRS);
@ -909,7 +912,8 @@ static int keyring_identity_add_keypair(keyring_identity *id, keypair *kp)
  int c = 1;
  unsigned i = 0;
  for (i = 0; i < id->keypair_count && (c = cmp_keypair(id->keypairs[i], kp)) < 0; ++i)
-    ;
+    if (i)
+      assert(cmp_keypair(id->keypairs[i - 1], id->keypairs[i]) < 0);
  if (c == 0)
    return 0; // duplicate not inserted
  unsigned j;
@ -1022,7 +1026,6 @@ static keyring_identity *keyring_unpack_identity(unsigned char *slot, const char

 static int keyring_identity_mac(const keyring_identity *id, unsigned char *pkrsalt, unsigned char *mac)
 {
-  //assert(id->keypair_count >= 1);
  unsigned char work[65536];
  unsigned ofs = 0;
 #define APPEND(buf, len) { \
@ -1036,14 +1039,12 @@ static int keyring_identity_mac(const keyring_identity *id, unsigned char *pkrsa
    ofs += __len; \
  }
  APPEND(&pkrsalt[0], 32);
-  if (id->keypairs[0]->type != KEYTYPE_CRYPTOBOX)
+  if (id->keypair_count == 0 || id->keypairs[0]->type != KEYTYPE_CRYPTOBOX)
    return WHY("first keypair is not type CRYPTOBOX");
  APPEND(id->keypairs[0]->private_key, id->keypairs[0]->private_key_len);
  APPEND(id->keypairs[0]->public_key, id->keypairs[0]->public_key_len);
  APPEND(id->PKRPin, strlen(id->PKRPin));
 #undef APPEND
-  if (config.debug.keyring)
-    dump("work", work, ofs);
  crypto_hash_sha512(mac, work, ofs);
  return 0;
 }
@ -1056,7 +1057,6 @@ static int keyring_identity_mac(const keyring_identity *id, unsigned char *pkrsa
 */
 int keyring_decrypt_pkr(keyring_file *k, keyring_context *c, const char *pin, int slot_number)
 {
-  int exit_code=1;
  unsigned char slot[KEYRING_PAGE_SIZE];
  keyring_identity *id=NULL;

@ -1108,7 +1108,7 @@ int keyring_decrypt_pkr(keyring_file *k, keyring_context *c, const char *pin, in
    keyring_free_identity(id);
    id = NULL;
  }
-  return exit_code;
+  return 1;
 }

 /* Try all valid slots with the PIN and see if we find any identities with that PIN.
@ -1121,9 +1121,24 @@ int keyring_enter_pin(keyring_file *k, const char *pin)
  if (!k) RETURN(-1);
  if (!pin) pin="";

-  int slot;
-  int identitiesFound=0;
+  unsigned identitiesFound = 0;

+  // Check if PIN is already entered.
+  {
+    unsigned c;
+    for (c = 0; c < k->context_count; ++c) {
+      keyring_context *cx = k->contexts[c];
+      unsigned i;
+      for (i = 0; i < cx->identity_count; ++i) {
+	keyring_identity *id = cx->identities[i];
+	if (strcmp(id->PKRPin, pin) == 0)
+	  ++identitiesFound;
+      }
+    }
+  }
+  // If PIN is already entered, don't enter it again.
+  if (identitiesFound == 0) {
+    unsigned slot;
    for(slot=0;slot<k->file_size/KEYRING_PAGE_SIZE;slot++) {
      /* slot zero is the BAM and salt, so skip it */
      if (slot&(KEYRING_BAM_BITS-1)) {
@ -1151,12 +1166,15 @@ int keyring_enter_pin(keyring_file *k, const char *pin)
 	}
      }
    }
+  }
  /* Tell the caller how many identities we found */
+  if (config.debug.keyring)
+    DEBUGF("identitiesFound=%u", identitiesFound);
  RETURN(identitiesFound);
  OUT();
 }

-static unsigned test_slot(keyring_file *k, unsigned slot)
+static unsigned test_slot(const keyring_file *k, unsigned slot)
 {
  assert(slot < KEYRING_BAM_BITS);
  unsigned position = slot & (KEYRING_BAM_BITS - 1);
@ -1180,7 +1198,7 @@ static void set_slot(keyring_file *k, unsigned slot, int bitvalue)
 /* Find free slot in keyring.  Slot 0 in any slab is the BAM and possible keyring salt, so only
 * search for space in slots 1 and above.  TODO: Extend to handle more than one slab!
 */
-static unsigned find_free_slot(keyring_file *k)
+static unsigned find_free_slot(const keyring_file *k)
 {
  unsigned slot;
  for (slot = 1; slot < KEYRING_BAM_BITS; ++slot)
@ -1189,16 +1207,27 @@ static unsigned find_free_slot(keyring_file *k)
  return 0;
 }

-static void keyring_commit_identity(keyring_file *k, keyring_context *cx, keyring_identity *id)
+static unsigned keyring_identity_keypair_sid(const keyring_identity *id)
 {
+  unsigned i;
+  for (i = 0; i < id->keypair_count; ++i)
+    if (id->keypairs[i]->type == KEYTYPE_CRYPTOBOX)
+      break;
+  assert(i < id->keypair_count);
+  return i;
+}
+
+static int keyring_commit_identity(keyring_file *k, keyring_context *cx, keyring_identity *id)
+{
+  unsigned keypair_sid = keyring_identity_keypair_sid(id);
+  unsigned i;
+  for (i = 0; i < cx->identity_count; ++i)
+    if (cmp_keypair(cx->identities[i]->keypairs[keyring_identity_keypair_sid(cx->identities[i])], id->keypairs[keypair_sid]) == 0)
+      return 0;
  set_slot(k, id->slot, 1);
  cx->identities[cx->identity_count++] = id;
-  unsigned keypair_sid;
-  for (keypair_sid = 0; keypair_sid < id->keypair_count; ++keypair_sid)
-    if (id->keypairs[keypair_sid]->type == KEYTYPE_CRYPTOBOX)
-      break;
-  if (keypair_sid < id->keypair_count)
  add_subscriber(id, keypair_sid);
+  return 1;
 }

 /* Create a new identity in the specified context (which supplies the keyring pin) with the
@ -1245,10 +1274,9 @@ keyring_identity *keyring_create_identity(keyring_file *k, keyring_context *c, c
      ++id->keypair_count;
    }
  }
+  assert(id->keypair_count > 0);

  /* Mark slot as occupied and internalise new identity. */
-  assert(id->keypair_count > 0);
-  assert(id->keypairs[0]->type == KEYTYPE_CRYPTOBOX);
  keyring_commit_identity(k, c, id);

  /* Everything went fine */
@ -1889,8 +1917,6 @@ int keyring_load(keyring_file *k, int cn, unsigned pinc, const char **pinv, FILE
    }
    if (id == NULL || idn != last_idn) {
      last_idn = idn;
-      // TODO: do not commit any identities until entire dump is parsed
-      // TODO: discard duplicate identities
      if (id)
 	keyring_commit_identity(k, cx, id);
      if ((id = emalloc_zero(sizeof(keyring_identity))) == NULL) {
@ -1902,7 +1928,6 @@ int keyring_load(keyring_file *k, int cn, unsigned pinc, const char **pinv, FILE
 	keyring_free_identity(id);
 	return -1;
      }
-      /* Find free slot in keyring. */
      if ((id->slot = find_free_slot(k)) == 0) {
 	keyring_free_keypair(kp);
 	keyring_free_identity(id);
@ -1917,11 +1942,6 @@ int keyring_load(keyring_file *k, int cn, unsigned pinc, const char **pinv, FILE
      keyring_free_identity(id);
      return WHY("too many key pairs");
    }
-    /*
-    fprintf(stderr, "%u: ", id);
-    keyring_dump_keypair(kp, XPRINTF_STDIO(stderr), 1);
-    fprintf(stderr, "\n");
-    */
  }
  if (id)
    keyring_commit_identity(k, cx, id);
--- a/tests/keyring
+++ b/tests/keyring
@ -167,12 +167,86 @@ test_Load() {
   tfw_cat --stderr
   executeOk_servald keyring dump --secret dBA
   tfw_cat dBA
+   assert [ $(cat dBA | wc -l) -eq $(( $(cat dA | wc -l) + $(cat dB | wc -l) )) ]
   while read line; do
      assertGrep --fixed-strings dBA "${line#[0-9]}"
   done < dA
   while read line; do
      assertGrep --fixed-strings dBA "${line#[0-9]}"
   done < dB
+   set_instance +A
+   executeOk_servald keyring load dB
+   tfw_cat --stderr
+   executeOk_servald keyring dump --secret dAB
+   assert cmp dAB dBA
+}
+
+doc_LoadAtomic="Load is atomic: all entries are loaded or none"
+setup_LoadAtomic() {
+   setup_Load
+   echo blah >>dA
+}
+test_LoadAtomic() {
+   set_instance +B
+   execute --exit-status=255 $servald keyring load dA
+   executeOk_servald keyring dump --secret dB2
+   tfw_cat dB2
+   assert cmp dB2 dB
+}
+
+doc_LoadDuplicates="Load de-duplicates keyring entries by SID"
+setup_LoadDuplicates() {
+   setup
+   executeOk_servald keyring add ''
+   executeOk_servald keyring dump --secret dA
+   tfw_cat dA
+}
+test_LoadDuplicates() {
+   executeOk_servald keyring load dA
+   tfw_cat --stderr
+   executeOk_servald keyring dump --secret dAA
+   tfw_cat dAA
+   assert cmp dA dAA
+}
+
+doc_LoadPins="Load keyring entries with PIN arguments"
+setup_LoadPins() {
+   setup_servald
+   setup_instances +A +B
+   set_instance +A
+   executeOk_servald keyring add ''
+   executeOk_servald keyring add ''
+   executeOk_servald keyring add ''
+   executeOk_servald keyring dump --secret dA
+   set_instance +B
+   executeOk_servald keyring add ''
+   executeOk_servald keyring dump --secret dB
+   set_instance +A
+   tfw_cat dA dB
+   assert ! cmp dA dB
+}
+test_LoadPins() {
+   set_instance +B
+   executeOk_servald keyring load dA pin1 '' pin3
+   tfw_cat --stderr
+   for pin in '' pin1 pin3; do
+      executeOk_servald keyring dump --entry-pin="$pin" --secret dBA
+      tfw_cat --stderr dBA
+      let n=0
+      while read line; do
+         case "$pin=$line" in
+         pin1=0:* | *=1:* | pin3=2:* )
+            assertGrep --fixed-strings dBA "${line#[0-9]}"
+            let ++n
+            ;;
+         esac
+      done < dA
+      while read line; do
+         assertGrep --fixed-strings dBA "${line#[0-9]}"
+         let ++n
+      done < dB
+      assert [ $(cat dBA | wc -l) -eq $n ]
+   done
 }

 doc_CompatibleBack1="Can read old keyring file (1)"