test: Add test to check that invalid signatures do not validate

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>

diff --git a/Makefile.am b/Makefile.am
index 1b9d90ea737847a51bb3ca51ae57047773fc1294..b7650d4a8d49e2863cb6c7e947a3191e41f3e190 100644 (file)
--- a/Makefile.am
+++ b/Makefile.am
@@ -279,7 +279,8 @@ TESTS = \
        src/test-database \
        src/test-as \
        src/test-network \
-       src/test-country
+       src/test-country \
+       src/test-signature
 
 CLEANFILES += \
        test.db \
@@ -296,7 +297,8 @@ check_PROGRAMS = \
        src/test-database \
        src/test-as \
        src/test-network \
-       src/test-country
+       src/test-country \
+       src/test-signature
 
 src_test_libloc_SOURCES = \
        src/test-libloc.c
@@ -352,6 +354,15 @@ src_test_database_CFLAGS = \
 src_test_database_LDADD = \
        src/libloc.la
 
+src_test_signature_SOURCES = \
+       src/test-signature.c
+
+src_test_signature_CFLAGS = \
+       $(TESTS_CFLAGS)
+
+src_test_signature_LDADD = \
+       src/libloc.la
+
 # ------------------------------------------------------------------------------
 
 MANPAGES = \

diff --git a/src/.gitignore b/src/.gitignore
index 0a6804a48432fabe3da5543776cf025ff05297b1..caf80b5c3719378132387c7c314381d8f00c82f7 100644 (file)
--- a/src/.gitignore
+++ b/src/.gitignore
@@ -10,4 +10,5 @@ test-libloc
 test-database
 test-country
 test-network
+test-signature
 test-stringpool

diff --git a/src/test-signature.c b/src/test-signature.c
new file mode 100644 (file)
index 0000000..28e973e
--- /dev/null
+++ b/src/test-signature.c
@@ -0,0 +1,118 @@
+/*
+       libloc - A library to determine the location of someone on the Internet
+
+       Copyright (C) 2019 IPFire Development Team <info@ipfire.org>
+
+       This program is free software; you can redistribute it and/or modify
+       it under the terms of the GNU General Public License as published by
+       the Free Software Foundation; either version 2 of the License, or
+       (at your option) any later version.
+
+       This program is distributed in the hope that it will be useful,
+       but WITHOUT ANY WARRANTY; without even the implied warranty of
+       MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+       GNU General Public License for more details.
+*/
+
+#include <stdio.h>
+#include <stddef.h>
+#include <stdlib.h>
+#include <string.h>
+#include <fcntl.h>
+#include <ctype.h>
+#include <errno.h>
+#include <unistd.h>
+
+#include <loc/libloc.h>
+#include <loc/database.h>
+#include <loc/writer.h>
+
+int main(int argc, char** argv) {
+       int err;
+
+       // Open public key
+       FILE* public_key = fopen(ABS_SRCDIR "/examples/public-key.pem", "r");
+       if (!public_key) {
+               fprintf(stderr, "Could not open public key file: %s\n", strerror(errno));
+               exit(EXIT_FAILURE);
+       }
+
+       // Open private key
+       FILE* private_key = fopen(ABS_SRCDIR "/examples/private-key.pem", "r");
+       if (!private_key) {
+               fprintf(stderr, "Could not open private key file: %s\n", strerror(errno));
+               exit(EXIT_FAILURE);
+       }
+
+       struct loc_ctx* ctx;
+       err = loc_new(&ctx);
+       if (err < 0)
+               exit(EXIT_FAILURE);
+
+       // Create an empty database
+       struct loc_writer* writer;
+       err = loc_writer_new(ctx, &writer, private_key);
+       if (err < 0)
+               exit(EXIT_FAILURE);
+
+       FILE* f = fopen("test.db", "w+");
+       if (!f) {
+               fprintf(stderr, "Could not open file for writing: %s\n", strerror(errno));
+               exit(EXIT_FAILURE);
+       }
+
+       err = loc_writer_write(writer, f);
+       if (err) {
+               fprintf(stderr, "Could not write database: %s\n", strerror(err));
+               exit(EXIT_FAILURE);
+       }
+       loc_writer_unref(writer);
+
+       // Close the file
+       fclose(f);
+
+       // And open it again from disk
+       f = fopen("test.db", "r");
+       if (!f) {
+               fprintf(stderr, "Could not open file for reading: %s\n", strerror(errno));
+               exit(EXIT_FAILURE);
+       }
+
+       struct loc_database* db;
+       err = loc_database_new(ctx, &db, f);
+       if (err) {
+               fprintf(stderr, "Could not open database: %s\n", strerror(-err));
+               exit(EXIT_FAILURE);
+       }
+
+       // Verify the database signature
+       err = loc_database_verify(db, public_key);
+       if (err) {
+               fprintf(stderr, "Could not verify the database: %d\n", err);
+               exit(EXIT_FAILURE);
+       }
+
+       // Open another public key
+       public_key = freopen(ABS_SRCDIR "/signing-key.pem", "r", public_key);
+       if (!public_key) {
+               fprintf(stderr, "Could not open public key file: %s\n", strerror(errno));
+               exit(EXIT_FAILURE);
+       }
+
+       // Verify with an incorrect key
+       err = loc_database_verify(db, public_key);
+       if (err == 0) {
+               fprintf(stderr, "Database was verified with an incorrect key: %d\n", err);
+               exit(EXIT_FAILURE);
+       }
+
+       // Close the database
+       loc_database_unref(db);
+
+       loc_unref(ctx);
+
+       fclose(private_key);
+       fclose(public_key);
+
+       return EXIT_SUCCESS;
+}