Add unit tests for some error cases

Andreas Fuchs · Andreas Fuchs · commit 1428f2833e78 · 2019-01-24T11:45:23.000+01:00
Adding a first unit test to some of the error cases and handling
in code. This also adds a dependency on cmocka.

Signed-off-by: Andreas Fuchs &lt;andreas.fuchs@sit.fraunhofer.de&gt;
diff --git a/.gitignore b/.gitignore
@@ -37,3 +37,7 @@ test-driver
 man/*.1
 man/*.3
 man/*.7
+.dirstamp
+*~
+test/error_tpm2-tss-engine-common
+test/*.o
diff --git a/.travis.yml b/.travis.yml
@@ -33,6 +33,17 @@ addons:
 install:
   - git clean -xdf
   - mkdir -p installdir/usr/local/bin
+# CMocka
+  - wget https://download.01.org/tpm2/cmocka-1.1.1.tar.xz
+  - sha256sum cmocka-1.1.1.tar.xz | grep -q f02ef48a7039aa77191d525c5b1aee3f13286b77a13615d11bc1148753fc0389 || travis_terminate 1
+  - tar -Jxvf cmocka-1.1.1.tar.xz
+  - pushd cmocka-1.1.1
+  - mkdir build
+  - cd build
+  - cmake ../ -DCMAKE_INSTALL_PREFIX=${PWD}/../../installdir/usr/local -DCMAKE_BUILD_TYPE=Release
+  - make
+  - make install
+  - popd
 # OpenSSL 1.0.2 / 1.1.0
   - git clone --branch $OPENSSL_BRANCH --depth=1 https://github.com/openssl/openssl.git
   - pushd openssl
diff --git a/Makefile.am b/Makefile.am
@@ -97,17 +97,31 @@ tpm2tss_genkey_LDADD = $(AM_LDADD) libtpm2tss.la
 tpm2tss_genkey_LDFLAGS = $(AM_LDFLAGS) -ltss2-tcti-mssim -ltss2-tcti-device
 
 ### Tests ###
-TESTS = test/ecdsa.sh \
-        test/ecdsa-emptyauth.sh \
-        test/rand.sh \
-        test/rsadecrypt.sh \
-        test/rsasign.sh \
-        test/failload.sh \
-        test/failwrite.sh \
-        test/rsasign_parent.sh \
-        test/rsasign_persistent.sh \
-        test/rsasign_persistent_emptyauth.sh
-EXTRA_DIST += $(TESTS)
+TESTS = $(TESTS_SHELL) $(TESTS_UNIT)
+#TESTS = $(TESTS_UNIT)
+
+TESTS_SHELL = test/ecdsa.sh \
+              test/ecdsa-emptyauth.sh \
+              test/rand.sh \
+              test/rsadecrypt.sh \
+              test/rsasign.sh \
+              test/failload.sh \
+              test/failwrite.sh \
+              test/rsasign_parent.sh \
+              test/rsasign_persistent.sh \
+              test/rsasign_persistent_emptyauth.sh
+EXTRA_DIST += $(TESTS_SHELL)
+
+check_PROGRAMS = $(TESTS_UNIT)
+
+TESTS_UNIT = test/error_tpm2-tss-engine-common
+
+test_error_tpm2_tss_engine_common_CFLAGS =  $(AM_CFLAGS) $(CMOCKA_CFLAGS)
+test_error_tpm2_tss_engine_common_LDADD =   $(AM_LDADD) $(CMOCKA_LIBS)
+test_error_tpm2_tss_engine_common_LDFLAGS = $(AM_LDFLAGS) -Wl,--wrap=Esys_Initialize
+test_error_tpm2_tss_engine_common_SOURCES = test/error_tpm2-tss-engine-common.c \
+                                            $(libtpm2tss_la_SOURCES)
+
 
 # Adding user and developer information
 EXTRA_DIST += \
diff --git a/bootstrap b/bootstrap
@@ -3,13 +3,3 @@
 set -e
 
 autoreconf --install --sym
-
-if [ "$USER" = "afuchs" ]; then
-./configure \
-  --enable-debug \
-  PKG_CONFIG_PATH=$PWD/../INSTALLDIR/usr/local/lib/pkgconfig \
-  CFLAGS=-I$PWD/../INSTALLDIR/usr/local/include \
-  LDFLAGS=-L$PWD/../INSTALLDIR/usr/local/lib \
-#  --enable-debug
-make -j8
-fi
diff --git a/configure.ac b/configure.ac
@@ -140,6 +140,10 @@ AS_IF([test -z "$with_completionsdir"],
     [with_completionsdir=$datarootdir/bash-completion/completions])
 AC_SUBST(completionsdir, "$with_completionsdir")
 
+m4_define([cmocka_min_version], [1.0])
+m4_define([cmocka_err], [Unit test enabled, but cmocka missing or version requirements not met. cmocka version must be >= cmocka_min_version])
+PKG_CHECK_MODULES([CMOCKA], [cmocka >= 1.0])
+
 AC_OUTPUT
 
 AC_MSG_RESULT([
diff --git a/test/error_tpm2-tss-engine-common.c b/test/error_tpm2-tss-engine-common.c
@@ -0,0 +1,92 @@
+/* SPDX-License-Identifier: BSD-2 */
+/*******************************************************************************
+ * Copyright 2019, Fraunhofer SIT sponsored by Infineon Technologies AG
+ * All rights reserved.
+ ******************************************************************************/
+
+#include "tpm2-tss-engine.h"
+#include "tpm2-tss-engine-common.h"
+
+#include <execinfo.h>
+#include <stdio.h>
+#include <unistd.h>
+#include <setjmp.h>
+#include <cmocka.h>
+
+TSS2_RC
+__wrap_Esys_Initialize()
+{
+    printf("Esys_Initialize called\n");
+    void* b[128];
+    backtrace_symbols_fd(b, backtrace(b, sizeof(b)/sizeof(b[0])), STDOUT_FILENO);
+    return -1;
+}
+    
+void
+check_tpm2tss_tpm2data_readtpm(void **state)
+{
+    (void)(state);
+    int i;
+    i = tpm2tss_tpm2data_readtpm(0, NULL);
+    assert_int_equal(i, 0);
+}
+
+void
+check_tpm2tss_tpm2data_read(void **state)
+{
+    (void)(state);
+    int i;
+    i = tpm2tss_tpm2data_read("", NULL);
+    assert_int_equal(i, 0);
+}
+
+void
+check_init_tpm_parent_via_api(void **state)
+{
+    (void)(state);
+    int i;
+    i = tpm2tss_rsa_genkey(NULL, 0, NULL, NULL, 0); 
+    assert_int_equal(i, 0);
+}
+
+void
+check_init_tpm_parent(void **state)
+{
+    (void)(state);
+    TSS2_RC r;
+    ESYS_AUXCONTEXT e;
+    ESYS_TR t;
+    r = init_tpm_parent(&e, -1, &t);
+    assert_int_not_equal(r, TSS2_RC_SUCCESS);
+}
+
+void
+check_init_tpm_key(void **state)
+{
+    (void)(state);
+    int i;
+    TSS2_RC r;
+    i = tpm2tss_rsa_genkey(NULL, 0, NULL, NULL, 0); 
+    assert_int_equal(i, 0);
+
+    ESYS_AUXCONTEXT e;
+    ESYS_TR t;
+    TPM2_DATA td = { .privatetype = KEY_TYPE_HANDLE };
+    r = init_tpm_key(&e, &t, &td);
+    assert_int_not_equal(r, TSS2_RC_SUCCESS);
+    //assert_int_equal(1, 0);
+}
+
+int
+main(void)
+{
+    const struct CMUnitTest tests[] = {
+        cmocka_unit_test(check_tpm2tss_tpm2data_readtpm),
+        cmocka_unit_test(check_tpm2tss_tpm2data_read),
+        cmocka_unit_test(check_init_tpm_parent_via_api),
+        cmocka_unit_test(check_init_tpm_parent),
+        cmocka_unit_test(check_init_tpm_key),
+    };
+
+    return cmocka_run_group_tests(tests, NULL, NULL);
+}
diff --git a/test/rsasign_parent.sh b/test/rsasign_parent.sh
@@ -30,6 +30,9 @@ cat ${DIR}/mykey.pub
 
 echo "abc" | openssl pkeyutl -engine tpm2tss -keyform engine -inkey ${DIR}/mykey -sign -in ${DIR}/mydata.txt -out ${DIR}/mysig -passin stdin
 
+# Release persistent HANDLE
+tpm2_evictcontrol -T mssim -a o -c ${HANDLE} -p ${HANDLE}
+
 cat ${DIR}/mysig
 
 #this is a workaround because -verify allways exits 1
diff --git a/test/rsasign_persistent_emptyauth.sh b/test/rsasign_persistent_emptyauth.sh
@@ -49,9 +49,7 @@ fi
 tpm2_readpublic -T mssim -c ${HANDLE} -o ${DIR}/mykey.pem -f pem
 
 # Release persistent HANDLE
-tpm2_evictcontrol -T mssim -a o -c ${HANDLE}
-
-tpm2_flushcontext -T mssim -t -l
+tpm2_evictcontrol -T mssim -a o -c ${HANDLE} -p ${HANDLE}
 
 R="$(openssl pkeyutl -pubin -inkey ${DIR}/mykey.pem -verify -in ${DIR}/mydata.txt -sigfile ${DIR}/mysig || true)"
 if ! echo $R | grep "Signature Verified Successfully" >/dev/null; then
