Etusivu Tutki Apua
Kirjaudu sisään
RT-Thread-packages
/
esp-idf
peilaus alkaen https://github-proxy.rt-thread.io/RT-Thread-packages/esp-idf.git
2
0
Haarauta 0
Tiedostot Esitykset 0 Wiki
Puu: v4.0.4
Haarat Tunnisteet
esp-idf
/
components
/
protocomm
/
test
/
test_protocomm.c

test_protocomm.c 34 KB
Pysyvä linkki Historia Raaka

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175 
  1. // Copyright 2018 Espressif Systems (Shanghai) PTE LTD
    2. 

  2. //
    3. 

  3. // Licensed under the Apache License, Version 2.0 (the "License");
    4. 

  4. // you may not use this file except in compliance with the License.
    5. 

  5. // You may obtain a copy of the License at
    6. 

  6. //
    7. 

  7. //     http://www.apache.org/licenses/LICENSE-2.0
    8. 

  8. //
    9. 

  9. // Unless required by applicable law or agreed to in writing, software
    10. 

  10. // distributed under the License is distributed on an "AS IS" BASIS,
    11. 

  11. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12. 

  12. // See the License for the specific language governing permissions and
    13. 

  13. // limitations under the License.
    14. 

  14. 

  15. #include <stdlib.h>
    16. 

  16. #include <string.h>
    17. 

  17. #include <stdbool.h>
    18. 

  18. #include <esp_err.h>
    19. 

  19. #include <esp_log.h>
    20. 

  20. #include <esp_system.h>
    21. 

  21. #include <sys/random.h>
    22. 

  22. #include <unistd.h>
    23. 

  23. #include <unity.h>
    24. 

  24. 

  25. #include <mbedtls/aes.h>
    26. 

  26. #include <mbedtls/sha256.h>
    27. 

  27. #include <mbedtls/entropy.h>
    28. 

  28. #include <mbedtls/ctr_drbg.h>
    29. 

  29. #include <mbedtls/ecdh.h>
    30. 

  30. #include <mbedtls/error.h>
    31. 

  31. #include <mbedtls/ssl_internal.h>
    32. 

  32. 

  33. #include <protocomm.h>
    34. 

  34. #include <protocomm_security.h>
    35. 

  35. #include <protocomm_security0.h>
    36. 

  36. #include <protocomm_security1.h>
    37. 

  37. 

  38. #include "session.pb-c.h"
    39. 

  39. 

  40. #ifdef CONFIG_HEAP_TRACING
    41. 

  41.     #include <esp_heap_trace.h>
    42. 

  42.     #define NUM_RECORDS 100
    43. 

  43.     static heap_trace_record_t trace_record[NUM_RECORDS]; // This buffer must be in internal RAM
    44. 

  44. #endif
    45. 

  45. 

  46. #define PUBLIC_KEY_LEN  32
    47. 

  47. #define SZ_RANDOM       16
    48. 

  48. 

  49. typedef struct {
    50. 

  50.     uint32_t id;
    51. 

  51.     uint8_t  sec_ver;
    52. 

  52.     uint8_t  weak;
    53. 

  53.     const protocomm_security_pop_t *pop;
    54. 

  54.     uint8_t device_pubkey[PUBLIC_KEY_LEN];
    55. 

  55.     uint8_t client_pubkey[PUBLIC_KEY_LEN];
    56. 

  56.     uint8_t sym_key[PUBLIC_KEY_LEN];
    57. 

  57.     uint8_t rand[SZ_RANDOM];
    58. 

  58. 

  59.     /* mbedtls context data for Curve25519 */
    60. 

  60.     mbedtls_ecdh_context ctx_client;
    61. 

  61.     mbedtls_entropy_context entropy;
    62. 

  62.     mbedtls_ctr_drbg_context ctr_drbg;
    63. 

  63. 

  64.     /* mbedtls context data for AES */
    65. 

  65.     mbedtls_aes_context ctx_aes;
    66. 

  66.     unsigned char stb[16];
    67. 

  67.     size_t nc_off;
    68. 

  68. } session_t;
    69. 

  69. 

  70. static const char *TAG = "protocomm_test";
    71. 

  71. 

  72. static protocomm_t *test_pc = NULL;
    73. 

  73. static const protocomm_security_t *test_sec = NULL;
    74. 

  74. protocomm_security_handle_t sec_inst = NULL;
    75. 

  75. static uint32_t test_priv_data = 1234;
    76. 

  76. 

  77. static void flip_endian(uint8_t *data, size_t len)
    78. 

  78. {
    79. 

  79.     uint8_t swp_buf;
    80. 

  80.     for (int i = 0; i < len/2; i++) {
    81. 

  81.         swp_buf = data[i];
    82. 

  82.         data[i] = data[len - i - 1];
    83. 

  83.         data[len - i - 1] = swp_buf;
    84. 

  84.     }
    85. 

  85. }
    86. 

  86. 

  87. static void hexdump(const char *msg, uint8_t *buf, int len)
    88. 

  88. {
    89. 

  89.     ESP_LOGI(TAG, "%s:", msg);
    90. 

  90.     ESP_LOG_BUFFER_HEX(TAG, buf, len);
    91. 

  91. }
    92. 

  92. 

  93. static esp_err_t prepare_command0(session_t *session, SessionData *req)
    94. 

  94. {
    95. 

  95.     Sec1Payload *in = (Sec1Payload *) malloc(sizeof(Sec1Payload));
    96. 

  96.     if (in == NULL) {
    97. 

  97.         ESP_LOGE(TAG, "Error allocating memory for request");
    98. 

  98.         return ESP_ERR_NO_MEM;
    99. 

  99.     }
    100. 

  100. 

  101.     SessionCmd0 *in_req = (SessionCmd0 *) malloc(sizeof(SessionCmd0));
    102. 

  102.     if (in_req == NULL) {
    103. 

  103.         ESP_LOGE(TAG, "Error allocating memory for request");
    104. 

  104.         free(in);
    105. 

  105.         return ESP_ERR_NO_MEM;
    106. 

  106.     }
    107. 

  107. 

  108.     sec1_payload__init(in);
    109. 

  109.     session_cmd0__init(in_req);
    110. 

  110. 

  111.     in_req->client_pubkey.data = session->client_pubkey;
    112. 

  112.     in_req->client_pubkey.len = PUBLIC_KEY_LEN;
    113. 

  113. 

  114.     in->msg = SEC1_MSG_TYPE__Session_Command0;
    115. 

  115.     in->payload_case = SEC1_PAYLOAD__PAYLOAD_SC0;
    116. 

  116.     in->sc0 = in_req;
    117. 

  117. 

  118.     req->proto_case = SESSION_DATA__PROTO_SEC1;
    119. 

  119.     req->sec_ver = protocomm_security1.ver;
    120. 

  120.     req->sec1 = in;
    121. 

  121. 

  122.     return ESP_OK;
    123. 

  123. }
    124. 

  124. 

  125. static void cleanup_command0(SessionData *req)
    126. 

  126. {
    127. 

  127.     free(req->sec1->sc0);
    128. 

  128.     free(req->sec1);
    129. 

  129. }
    130. 

  130. 

  131. static esp_err_t verify_response0(session_t *session, SessionData *resp)
    132. 

  132. {
    133. 

  133.     if ((resp->proto_case != SESSION_DATA__PROTO_SEC1) ||
    134. 

  134.         (resp->sec1->msg  != SEC1_MSG_TYPE__Session_Response0)) {
    135. 

  135.         ESP_LOGE(TAG, "Invalid response type");
    136. 

  136.         return ESP_ERR_INVALID_ARG;
    137. 

  137.     }
    138. 

  138. 

  139.     int ret;
    140. 

  140.     Sec1Payload *in = (Sec1Payload *) resp->sec1;
    141. 

  141. 

  142.     if (in->sr0->device_pubkey.len != PUBLIC_KEY_LEN) {
    143. 

  143.         ESP_LOGE(TAG, "Device public key length as not as expected");
    144. 

  144.         return ESP_FAIL;
    145. 

  145.     }
    146. 

  146. 

  147.     if (in->sr0->device_random.len != SZ_RANDOM) {
    148. 

  148.         ESP_LOGE(TAG, "Device random data length is not as expected");
    149. 

  149.         return ESP_FAIL;
    150. 

  150.     }
    151. 

  151. 

  152.     uint8_t *cli_pubkey = session->client_pubkey;
    153. 

  153.     uint8_t *dev_pubkey = session->device_pubkey;
    154. 

  154.     memcpy(session->device_pubkey, in->sr0->device_pubkey.data, in->sr0->device_pubkey.len);
    155. 

  155. 

  156.     hexdump("Device pubkey", dev_pubkey, PUBLIC_KEY_LEN);
    157. 

  157.     hexdump("Client pubkey", cli_pubkey, PUBLIC_KEY_LEN);
    158. 

  158. 

  159.     ret = mbedtls_mpi_lset(&session->ctx_client.Qp.Z, 1);
    160. 

  160.     if (ret != 0) {
    161. 

  161.         ESP_LOGE(TAG, "Failed at mbedtls_mpi_lset with error code : %d", ret);
    162. 

  162.         return ESP_FAIL;
    163. 

  163.     }
    164. 

  164. 

  165.     flip_endian(session->device_pubkey, PUBLIC_KEY_LEN);
    166. 

  166.     ret = mbedtls_mpi_read_binary(&session->ctx_client.Qp.X, dev_pubkey, PUBLIC_KEY_LEN);
    167. 

  167.     flip_endian(session->device_pubkey, PUBLIC_KEY_LEN);
    168. 

  168.     if (ret != 0) {
    169. 

  169.         ESP_LOGE(TAG, "Failed at mbedtls_mpi_read_binary with error code : %d", ret);
    170. 

  170.         return ESP_FAIL;
    171. 

  171.     }
    172. 

  172. 

  173.     ret = mbedtls_ecdh_compute_shared(&session->ctx_client.grp,
    174. 

  174.                                       &session->ctx_client.z,
    175. 

  175.                                       &session->ctx_client.Qp,
    176. 

  176.                                       &session->ctx_client.d,
    177. 

  177.                                       mbedtls_ctr_drbg_random,
    178. 

  178.                                       &session->ctr_drbg);
    179. 

  179.     if (ret != 0) {
    180. 

  180.         ESP_LOGE(TAG, "Failed at mbedtls_ecdh_compute_shared with error code : %d", ret);
    181. 

  181.         return ESP_FAIL;
    182. 

  182.     }
    183. 

  183. 

  184.     ret = mbedtls_mpi_write_binary(&session->ctx_client.z, session->sym_key, PUBLIC_KEY_LEN);
    185. 

  185.     if (ret != 0) {
    186. 

  186.         ESP_LOGE(TAG, "Failed at mbedtls_mpi_write_binary with error code : %d", ret);
    187. 

  187.         return ESP_FAIL;
    188. 

  188.     }
    189. 

  189.     flip_endian(session->sym_key, PUBLIC_KEY_LEN);
    190. 

  190. 

  191.     const protocomm_security_pop_t *pop = session->pop;
    192. 

  192.     if (pop != NULL && pop->data != NULL && pop->len != 0) {
    193. 

  193.         ESP_LOGD(TAG, "Adding proof of possession");
    194. 

  194.         uint8_t sha_out[PUBLIC_KEY_LEN];
    195. 

  195. 

  196.         ret = mbedtls_sha256_ret((const unsigned char *) pop->data, pop->len, sha_out, 0);
    197. 

  197.         if (ret != 0) {
    198. 

  198.             ESP_LOGE(TAG, "Failed at mbedtls_sha256_ret with error code : %d", ret);
    199. 

  199.             return ESP_FAIL;
    200. 

  200.         }
    201. 

  201. 

  202.         for (int i = 0; i < PUBLIC_KEY_LEN; i++) {
    203. 

  203.             session->sym_key[i] ^= sha_out[i];
    204. 

  204.         }
    205. 

  205.     }
    206. 

  206. 

  207.     hexdump("Shared key", session->sym_key, PUBLIC_KEY_LEN);
    208. 

  208. 

  209.     memcpy(session->rand, in->sr0->device_random.data, in->sr0->device_random.len);
    210. 

  210.     hexdump("Dev random", session->rand, sizeof(session->rand));
    211. 

  211.     return ESP_OK;
    212. 

  212. }
    213. 

  213. 

  214. static esp_err_t prepare_command1(session_t *session, SessionData *req)
    215. 

  215. {
    216. 

  216.     int ret;
    217. 

  217.     uint8_t *outbuf = (uint8_t *) malloc(PUBLIC_KEY_LEN);
    218. 

  218.     if (!outbuf) {
    219. 

  219.         ESP_LOGE(TAG, "Error allocating ciphertext buffer");
    220. 

  220.         return ESP_ERR_NO_MEM;
    221. 

  221.     }
    222. 

  222. 

  223.     /* Initialise crypto context */
    224. 

  224.     mbedtls_aes_init(&session->ctx_aes);
    225. 

  225.     memset(session->stb, 0, sizeof(session->stb));
    226. 

  226.     session->nc_off = 0;
    227. 

  227. 

  228.     ret = mbedtls_aes_setkey_enc(&session->ctx_aes, session->sym_key,
    229. 

  229.                                  sizeof(session->sym_key)*8);
    230. 

  230.     if (ret != 0) {
    231. 

  231.         ESP_LOGE(TAG, "Failed at mbedtls_aes_setkey_enc with erro code : %d", ret);
    232. 

  232.         free(outbuf);
    233. 

  233.         return ESP_FAIL;
    234. 

  234.     }
    235. 

  235. 

  236.     ret = mbedtls_aes_crypt_ctr(&session->ctx_aes, PUBLIC_KEY_LEN,
    237. 

  237.                                 &session->nc_off, session->rand,
    238. 

  238.                                 session->stb, session->device_pubkey, outbuf);
    239. 

  239.     if (ret != 0) {
    240. 

  240.         ESP_LOGE(TAG, "Failed at mbedtls_aes_crypt_ctr with erro code : %d", ret);
    241. 

  241.         free(outbuf);
    242. 

  242.         return ESP_FAIL;
    243. 

  243.     }
    244. 

  244. 

  245.     Sec1Payload *out = (Sec1Payload *) malloc(sizeof(Sec1Payload));
    246. 

  246.     if (!out) {
    247. 

  247.         ESP_LOGE(TAG, "Error allocating out buffer");
    248. 

  248.         free(outbuf);
    249. 

  249.         return ESP_ERR_NO_MEM;
    250. 

  250.     }
    251. 

  251.     sec1_payload__init(out);
    252. 

  252. 

  253.     SessionCmd1 *out_req = (SessionCmd1 *) malloc(sizeof(SessionCmd1));
    254. 

  254.     if (!out_req) {
    255. 

  255.         ESP_LOGE(TAG, "Error allocating out_req buffer");
    256. 

  256.         free(outbuf);
    257. 

  257.         free(out);
    258. 

  258.         return ESP_ERR_NO_MEM;
    259. 

  259.     }
    260. 

  260.     session_cmd1__init(out_req);
    261. 

  261. 

  262.     out_req->client_verify_data.data = outbuf;
    263. 

  263.     out_req->client_verify_data.len = PUBLIC_KEY_LEN;
    264. 

  264.     hexdump("Client verify data", outbuf, PUBLIC_KEY_LEN);
    265. 

  265. 

  266.     out->msg = SEC1_MSG_TYPE__Session_Command1;
    267. 

  267.     out->payload_case = SEC1_PAYLOAD__PAYLOAD_SC1;
    268. 

  268.     out->sc1 = out_req;
    269. 

  269. 

  270.     req->proto_case = SESSION_DATA__PROTO_SEC1;
    271. 

  271.     req->sec_ver = protocomm_security1.ver;
    272. 

  272.     req->sec1 = out;
    273. 

  273. 

  274.     return ESP_OK;
    275. 

  275. }
    276. 

  276. 

  277. static void cleanup_command1(SessionData *req)
    278. 

  278. {
    279. 

  279.     free(req->sec1->sc1->client_verify_data.data);
    280. 

  280.     free(req->sec1->sc1);
    281. 

  281.     free(req->sec1);
    282. 

  282. }
    283. 

  283. 

  284. static esp_err_t verify_response1(session_t *session, SessionData *resp)
    285. 

  285. {
    286. 

  286.     uint8_t *cli_pubkey = session->client_pubkey;
    287. 

  287.     uint8_t *dev_pubkey = session->device_pubkey;
    288. 

  288. 

  289.     hexdump("Device pubkey", dev_pubkey, PUBLIC_KEY_LEN);
    290. 

  290.     hexdump("Client pubkey", cli_pubkey, PUBLIC_KEY_LEN);
    291. 

  291. 

  292.     if ((resp->proto_case != SESSION_DATA__PROTO_SEC1) ||
    293. 

  293.         (resp->sec1->msg  != SEC1_MSG_TYPE__Session_Response1)) {
    294. 

  294.         ESP_LOGE(TAG, "Invalid response type");
    295. 

  295.         return ESP_ERR_INVALID_ARG;
    296. 

  296.     }
    297. 

  297. 

  298.     uint8_t check_buf[PUBLIC_KEY_LEN];
    299. 

  299.     Sec1Payload *in = (Sec1Payload *) resp->sec1;
    300. 

  300. 

  301.     int ret = mbedtls_aes_crypt_ctr(&session->ctx_aes, PUBLIC_KEY_LEN,
    302. 

  302.                                     &session->nc_off, session->rand, session->stb,
    303. 

  303.                                     in->sr1->device_verify_data.data, check_buf);
    304. 

  304.     if (ret != 0) {
    305. 

  305.         ESP_LOGE(TAG, "Failed at mbedtls_aes_crypt_ctr with erro code : %d", ret);
    306. 

  306.         return ESP_FAIL;
    307. 

  307.     }
    308. 

  308.     hexdump("Dec Device verifier", check_buf, sizeof(check_buf));
    309. 

  309. 

  310.     if (memcmp(check_buf, session->client_pubkey, sizeof(session->client_pubkey)) != 0) {
    311. 

  311.         ESP_LOGE(TAG, "Key mismatch. Close connection");
    312. 

  312.         return ESP_FAIL;
    313. 

  313.     }
    314. 

  314. 

  315.     return ESP_OK;
    316. 

  316. }
    317. 

  317. 

  318. static esp_err_t test_new_session(session_t *session)
    319. 

  319. {
    320. 

  320.     if (session->sec_ver == 0) {
    321. 

  321.         return ESP_OK;
    322. 

  322.     }
    323. 

  323. 

  324.     if (!test_sec) {
    325. 

  325.         return ESP_ERR_INVALID_STATE;
    326. 

  326.     }
    327. 

  327. 

  328.     if (test_sec->init && (test_sec->init(&sec_inst) != ESP_OK)) {
    329. 

  329.         return ESP_ERR_NO_MEM;
    330. 

  330.     }
    331. 

  331. 

  332.     uint32_t session_id = session->id;
    333. 

  333.     if (test_sec->new_transport_session &&
    334. 

  334.         (test_sec->new_transport_session(sec_inst, session_id) != ESP_OK)) {
    335. 

  335.         ESP_LOGE(TAG, "Failed to launch new transport session");
    336. 

  336.         return ESP_FAIL;
    337. 

  337.     }
    338. 

  338. 

  339.     if (protocomm_open_session(test_pc, session_id) != ESP_OK) {
    340. 

  340.         ESP_LOGE(TAG, "Failed to open new protocomm session");
    341. 

  341.         return ESP_FAIL;
    342. 

  342.     }
    343. 

  343.     return ESP_OK;
    344. 

  344. }
    345. 

  345. 

  346. static esp_err_t test_delete_session(session_t *session)
    347. 

  347. {
    348. 

  348.     if (!test_sec) {
    349. 

  349.         return ESP_ERR_INVALID_STATE;
    350. 

  350.     }
    351. 

  351. 

  352.     if (test_sec->cleanup && (test_sec->cleanup(sec_inst) != ESP_OK)) {
    353. 

  353.         return ESP_FAIL;
    354. 

  354.     }
    355. 

  355.     return ESP_OK;
    356. 

  356. }
    357. 

  357. 

  358. static esp_err_t test_sec_endpoint(session_t *session)
    359. 

  359. {
    360. 

  360.     if (session->sec_ver == 0) {
    361. 

  361.         return ESP_OK;
    362. 

  362.     }
    363. 

  363. 

  364.     uint32_t session_id = session->id;
    365. 

  365. 

  366.     int ret = ESP_FAIL;
    367. 

  367.     SessionData req;
    368. 

  368.     SessionData *resp;
    369. 

  369.     ssize_t  inlen = 0;
    370. 

  370.     uint8_t *inbuf = NULL;
    371. 

  371.     ssize_t  outlen = 0;
    372. 

  372.     uint8_t *outbuf = NULL;
    373. 

  373. 

  374.     mbedtls_ecdh_init(&session->ctx_client);
    375. 

  375.     mbedtls_ctr_drbg_init(&session->ctr_drbg);
    376. 

  376. 

  377.     mbedtls_entropy_init(&session->entropy);
    378. 

  378.     ret = mbedtls_ctr_drbg_seed(&session->ctr_drbg, mbedtls_entropy_func,
    379. 

  379.                                 &session->entropy, NULL, 0);
    380. 

  380.     if (ret != 0) {
    381. 

  381.         ESP_LOGE(TAG, "Failed at mbedtls_ctr_drbg_seed with error code : %d", ret);
    382. 

  382.         goto abort_test_sec_endpoint;
    383. 

  383.     }
    384. 

  384. 

  385.     ret = mbedtls_ecp_group_load(&session->ctx_client.grp, MBEDTLS_ECP_DP_CURVE25519);
    386. 

  386.     if (ret != 0) {
    387. 

  387.         ESP_LOGE(TAG, "Failed at mbedtls_ecp_group_load with error code : %d", ret);
    388. 

  388.         goto abort_test_sec_endpoint;
    389. 

  389.     }
    390. 

  390. 

  391.     ret = mbedtls_ecdh_gen_public(&session->ctx_client.grp,
    392. 

  392.                                   &session->ctx_client.d,
    393. 

  393.                                   &session->ctx_client.Q,
    394. 

  394.                                   mbedtls_ctr_drbg_random,
    395. 

  395.                                   &session->ctr_drbg);
    396. 

  396.     if (ret != 0) {
    397. 

  397.         ESP_LOGE(TAG, "Failed at mbedtls_ecdh_gen_public with error code : %d", ret);
    398. 

  398.         goto abort_test_sec_endpoint;
    399. 

  399.     }
    400. 

  400. 

  401.     if (session->weak) {
    402. 

  402.         /* Read zero client public key */
    403. 

  403.         ret = mbedtls_mpi_read_binary(&session->ctx_client.Q.X,
    404. 

  404.                                       session->client_pubkey,
    405. 

  405.                                       PUBLIC_KEY_LEN);
    406. 

  406.         if (ret != 0) {
    407. 

  407.             ESP_LOGE(TAG, "Failed at mbedtls_mpi_read_binary with error code : %d", ret);
    408. 

  408.             goto abort_test_sec_endpoint;
    409. 

  409.         }
    410. 

  410.     }
    411. 

  411.     ret = mbedtls_mpi_write_binary(&session->ctx_client.Q.X,
    412. 

  412.                                    session->client_pubkey,
    413. 

  413.                                    PUBLIC_KEY_LEN);
    414. 

  414.     if (ret != 0) {
    415. 

  415.         ESP_LOGE(TAG, "Failed at mbedtls_mpi_write_binary with error code : %d", ret);
    416. 

  416.         goto abort_test_sec_endpoint;
    417. 

  417.     }
    418. 

  418.     flip_endian(session->client_pubkey, PUBLIC_KEY_LEN);
    419. 

  419. 

  420.     /*********** Transaction0 = SessionCmd0 + SessionResp0 ****************/
    421. 

  421.     session_data__init(&req);
    422. 

  422.     if (prepare_command0(session, &req) != ESP_OK) {
    423. 

  423.         ESP_LOGE(TAG, "Failed in prepare_command0");
    424. 

  424.         goto abort_test_sec_endpoint;
    425. 

  425.     }
    426. 

  426. 

  427.     inlen = session_data__get_packed_size(&req);
    428. 

  428.     inbuf = (uint8_t *) malloc(inlen);
    429. 

  429.     if (!inbuf) {
    430. 

  430.         ESP_LOGE(TAG, "Failed to allocate inbuf");
    431. 

  431.         goto abort_test_sec_endpoint;
    432. 

  432.     }
    433. 

  433. 

  434.     session_data__pack(&req, inbuf);
    435. 

  435.     cleanup_command0(&req);
    436. 

  436. 

  437.     outlen = 0;
    438. 

  438.     outbuf = NULL;
    439. 

  439.     ret = protocomm_req_handle(test_pc, "test-sec", session_id,
    440. 

  440.                                inbuf, inlen, &outbuf, &outlen);
    441. 

  441. 

  442.     free(inbuf);
    443. 

  443.     if (ret != ESP_OK) {
    444. 

  444.         ESP_LOGE(TAG, "test-sec handler failed");
    445. 

  445.         free(outbuf);
    446. 

  446.         goto abort_test_sec_endpoint;
    447. 

  447.     }
    448. 

  448. 

  449.     resp = session_data__unpack(NULL, outlen, outbuf);
    450. 

  450.     free(outbuf);
    451. 

  451.     if (!resp) {
    452. 

  452.         ESP_LOGE(TAG, "Unable to unpack SessionResp0");
    453. 

  453.         goto abort_test_sec_endpoint;
    454. 

  454.     }
    455. 

  455. 

  456.     if (verify_response0(session, resp) != ESP_OK) {
    457. 

  457.         ESP_LOGE(TAG, "Invalid response 0");
    458. 

  458.         session_data__free_unpacked(resp, NULL);
    459. 

  459.         goto abort_test_sec_endpoint;
    460. 

  460.     }
    461. 

  461. 

  462.     session_data__free_unpacked(resp, NULL);
    463. 

  463. 

  464.     /*********** Transaction1 = SessionCmd1 + SessionResp1 ****************/
    465. 

  465.     session_data__init(&req);
    466. 

  466.     if (prepare_command1(session, &req) != ESP_OK) {
    467. 

  467.         ESP_LOGE(TAG, "Failed in prepare_command1");
    468. 

  468.         goto abort_test_sec_endpoint;
    469. 

  469.     }
    470. 

  470. 

  471.     inlen = session_data__get_packed_size(&req);
    472. 

  472.     inbuf = (uint8_t *) malloc(inlen);
    473. 

  473.     if (!inbuf) {
    474. 

  474.         ESP_LOGE(TAG, "Failed to allocate inbuf");
    475. 

  475.         goto abort_test_sec_endpoint;
    476. 

  476.     }
    477. 

  477. 

  478.     session_data__pack(&req, inbuf);
    479. 

  479.     cleanup_command1(&req);
    480. 

  480. 

  481.     outlen = 0;
    482. 

  482.     outbuf = NULL;
    483. 

  483.     ret = protocomm_req_handle(test_pc, "test-sec", session_id,
    484. 

  484.                                inbuf, inlen, &outbuf, &outlen);
    485. 

  485. 

  486.     free(inbuf);
    487. 

  487.     if (ret != ESP_OK) {
    488. 

  488.         ESP_LOGE(TAG, "test-sec handler failed");
    489. 

  489.         free(outbuf);
    490. 

  490.         goto abort_test_sec_endpoint;
    491. 

  491.     }
    492. 

  492. 

  493.     resp = session_data__unpack(NULL, outlen, outbuf);
    494. 

  494.     free(outbuf);
    495. 

  495.     if (!resp) {
    496. 

  496.         ESP_LOGE(TAG, "Unable to unpack SessionResp0");
    497. 

  497.         goto abort_test_sec_endpoint;
    498. 

  498.     }
    499. 

  499. 

  500.     if (verify_response1(session, resp) != ESP_OK) {
    501. 

  501.         ESP_LOGE(TAG, "Invalid response 1");
    502. 

  502.         session_data__free_unpacked(resp, NULL);
    503. 

  503.         goto abort_test_sec_endpoint;
    504. 

  504.     }
    505. 

  505. 

  506.     session_data__free_unpacked(resp, NULL);
    507. 

  507.     mbedtls_ecdh_free(&session->ctx_client);
    508. 

  508.     mbedtls_ctr_drbg_free(&session->ctr_drbg);
    509. 

  509.     mbedtls_entropy_free(&session->entropy);
    510. 

  510. 

  511.     return ESP_OK;
    512. 

  512. 

  513. abort_test_sec_endpoint:
    514. 

  514. 

  515.     mbedtls_ecdh_free(&session->ctx_client);
    516. 

  516.     mbedtls_ctr_drbg_free(&session->ctr_drbg);
    517. 

  517.     mbedtls_entropy_free(&session->entropy);
    518. 

  518.     return ESP_FAIL;
    519. 

  519. }
    520. 

  520. 

  521. #define TEST_VER_STR "<some version string>"
    522. 

  522. 

  523. static esp_err_t test_ver_endpoint(session_t *session)
    524. 

  524. {
    525. 

  525.     ssize_t  ver_data_len = 0;
    526. 

  526.     uint8_t *ver_data = NULL;
    527. 

  527. 

  528.     esp_err_t ret = protocomm_req_handle(test_pc, "test-ver", session->id,
    529. 

  529.                                          NULL, 0, &ver_data, &ver_data_len);
    530. 

  530. 

  531.     if (ret != ESP_OK) {
    532. 

  532.         ESP_LOGE(TAG, "test-ver handler failed");
    533. 

  533.         return ESP_FAIL;
    534. 

  534.     }
    535. 

  535. 

  536.     if (ver_data_len != strlen(TEST_VER_STR) || memcmp(TEST_VER_STR, ver_data, ver_data_len)) {
    537. 

  537.         ESP_LOGE(TAG, "incorrect response data from test-ver");
    538. 

  538.         free(ver_data);
    539. 

  539.         return ESP_FAIL;
    540. 

  540.     }
    541. 

  541.     free(ver_data);
    542. 

  542.     return ESP_OK;
    543. 

  543. }
    544. 

  544. 

  545. static esp_err_t test_req_endpoint(session_t *session)
    546. 

  546. {
    547. 

  547.     uint32_t session_id = session->id;
    548. 

  548. 

  549.     uint8_t rand_test_data[512], enc_test_data[512];
    550. 

  550.     getrandom(rand_test_data, sizeof(rand_test_data), 0);
    551. 

  551. 

  552.     if (session->sec_ver == 0) {
    553. 

  553.         memcpy(enc_test_data, rand_test_data, sizeof(rand_test_data));
    554. 

  554.     }
    555. 

  555.     else if (session->sec_ver == 1) {
    556. 

  556.         mbedtls_aes_crypt_ctr(&session->ctx_aes, sizeof(rand_test_data), &session->nc_off,
    557. 

  557.                               session->rand, session->stb, rand_test_data, enc_test_data);
    558. 

  558.     }
    559. 

  559. 

  560.     ssize_t  verify_data_len = 0;
    561. 

  561.     uint8_t *enc_verify_data = NULL;
    562. 

  562. 

  563.     esp_err_t ret = protocomm_req_handle(test_pc, "test-ep", session_id,
    564. 

  564.                                          enc_test_data, sizeof(enc_test_data),
    565. 

  565.                                          &enc_verify_data, &verify_data_len);
    566. 

  566. 

  567.     if (ret != ESP_OK || !verify_data_len) {
    568. 

  568.         ESP_LOGE(TAG, "test-ep handler failed");
    569. 

  569.         return ESP_FAIL;
    570. 

  570.     }
    571. 

  571. 

  572.     uint8_t *verify_data = malloc(verify_data_len);
    573. 

  573.     if (!verify_data) {
    574. 

  574.         ESP_LOGE(TAG, "error allocating memory for decrypted data");
    575. 

  575.         free(enc_verify_data);
    576. 

  576.         return ESP_FAIL;
    577. 

  577.     }
    578. 

  578. 

  579.     if (session->sec_ver == 0) {
    580. 

  580.         memcpy(verify_data, enc_verify_data, verify_data_len);
    581. 

  581.     }
    582. 

  582.     else if (session->sec_ver == 1) {
    583. 

  583.         mbedtls_aes_crypt_ctr(&session->ctx_aes, verify_data_len, &session->nc_off,
    584. 

  584.                               session->rand, session->stb, enc_verify_data, verify_data);
    585. 

  585.     }
    586. 

  586.     free(enc_verify_data);
    587. 

  587. 

  588.     hexdump("Sent data", rand_test_data, sizeof(rand_test_data));
    589. 

  589.     hexdump("Recv data", verify_data,    verify_data_len);
    590. 

  590. 

  591.     ESP_LOGI(TAG, "verify data len   : %d", verify_data_len);
    592. 

  592.     ESP_LOGI(TAG, "expected data len : %d", sizeof(rand_test_data));
    593. 

  593. 

  594.     if (verify_data_len != sizeof(rand_test_data)) {
    595. 

  595.         ESP_LOGE(TAG, "incorrect response length from test-ep");
    596. 

  596.         free(verify_data);
    597. 

  597.         return ESP_FAIL;
    598. 

  598.     }
    599. 

  599.     if (memcmp(rand_test_data, verify_data, verify_data_len)) {
    600. 

  600.         ESP_LOGE(TAG, "incorrect response data from test-ep");
    601. 

  601.         free(verify_data);
    602. 

  602.         return ESP_FAIL;
    603. 

  603.     }
    604. 

  604.     free(verify_data);
    605. 

  605.     return ESP_OK;
    606. 

  606. }
    607. 

  607. 

  608. esp_err_t test_req_handler (uint32_t session_id,
    609. 

  609.                             const uint8_t *inbuf, ssize_t inlen,
    610. 

  610.                             uint8_t **outbuf, ssize_t *outlen,
    611. 

  611.                             void *priv_data)
    612. 

  612. {
    613. 

  613.     *outbuf = malloc(inlen);
    614. 

  614.     if (*outbuf) {
    615. 

  615.         *outlen = inlen;
    616. 

  616.         memcpy(*outbuf, inbuf, inlen);
    617. 

  617.     } else {
    618. 

  618.         ESP_LOGE(TAG, "Error allocating response outbuf");
    619. 

  619.         *outbuf = NULL;
    620. 

  620.         *outlen = 0;
    621. 

  621.     }
    622. 

  622. 

  623.     uint32_t *priv = (uint32_t *) priv_data;
    624. 

  624.     if ((&test_priv_data != priv) || (test_priv_data != *priv)) {
    625. 

  625.         ESP_LOGE(TAG, "Handler private data doesn't match");
    626. 

  626.         return ESP_FAIL;
    627. 

  627.     }
    628. 

  628.     return ESP_OK;
    629. 

  629. }
    630. 

  630. 

  631. static esp_err_t start_test_service(uint8_t sec_ver, const protocomm_security_pop_t *pop)
    632. 

  632. {
    633. 

  633.     test_pc = protocomm_new();
    634. 

  634.     if (test_pc == NULL) {
    635. 

  635.         ESP_LOGE(TAG, "Failed to create new protocomm instance");
    636. 

  636.         return ESP_FAIL;
    637. 

  637.     }
    638. 

  638. 

  639.     if (sec_ver == 0) {
    640. 

  640.         if (protocomm_set_security(test_pc, "test-sec", &protocomm_security0, NULL) != ESP_OK) {
    641. 

  641.             ESP_LOGE(TAG, "Failed to set Security0");
    642. 

  642.             return ESP_FAIL;
    643. 

  643.         }
    644. 

  644.         test_sec = &protocomm_security0;
    645. 

  645.     } else if (sec_ver == 1) {
    646. 

  646.         if (protocomm_set_security(test_pc, "test-sec", &protocomm_security1, pop) != ESP_OK) {
    647. 

  647.             ESP_LOGE(TAG, "Failed to set Security1");
    648. 

  648.             return ESP_FAIL;
    649. 

  649.         }
    650. 

  650.         test_sec = &protocomm_security1;
    651. 

  651.     }
    652. 

  652. 

  653.     if (protocomm_set_version(test_pc, "test-ver", TEST_VER_STR) != ESP_OK) {
    654. 

  654.         ESP_LOGE(TAG, "Failed to set version");
    655. 

  655.         return ESP_FAIL;
    656. 

  656.     }
    657. 

  657. 

  658.     if (protocomm_add_endpoint(test_pc, "test-ep",
    659. 

  659.                                test_req_handler,
    660. 

  660.                                (void *) &test_priv_data) != ESP_OK) {
    661. 

  661.         ESP_LOGE(TAG, "Failed to set test-ep endpoint handler");
    662. 

  662.         return ESP_FAIL;
    663. 

  663.     }
    664. 

  664.     return ESP_OK;
    665. 

  665. }
    666. 

  666. 

  667. static void stop_test_service(void)
    668. 

  668. {
    669. 

  669.     test_sec = NULL;
    670. 

  670.     protocomm_delete(test_pc);
    671. 

  671.     test_pc = NULL;
    672. 

  672. }
    673. 

  673. 

  674. static esp_err_t test_security1_no_encryption (void)
    675. 

  675. {
    676. 

  676.     ESP_LOGI(TAG, "Starting Security 1 no encryption test");
    677. 

  677. 

  678.     const char *pop_data = "test pop";
    679. 

  679.     protocomm_security_pop_t pop = {
    680. 

  680.         .data = (const uint8_t *)pop_data,
    681. 

  681.         .len  = strlen(pop_data)
    682. 

  682.     };
    683. 

  683. 

  684.     session_t *session = calloc(1, sizeof(session_t));
    685. 

  685.     if (session == NULL) {
    686. 

  686.         ESP_LOGE(TAG, "Error allocating session");
    687. 

  687.         return ESP_ERR_NO_MEM;
    688. 

  688.     }
    689. 

  689. 

  690.     session->id        = 1;
    691. 

  691.     session->sec_ver   = 1;
    692. 

  692.     session->pop       = &pop;
    693. 

  693. 

  694.     // Start protocomm service
    695. 

  695.     if (start_test_service(1, &pop) != ESP_OK) {
    696. 

  696.         ESP_LOGE(TAG, "Error starting test");
    697. 

  697.         free(session);
    698. 

  698.         return ESP_ERR_INVALID_STATE;
    699. 

  699.     }
    700. 

  700. 

  701.     // Intialise protocomm session with zero public keys
    702. 

  702.     if (test_new_session(session) != ESP_OK) {
    703. 

  703.         ESP_LOGE(TAG, "Error creating new session");
    704. 

  704.         stop_test_service();
    705. 

  705.         free(session);
    706. 

  706.         return ESP_FAIL;
    707. 

  707.     }
    708. 

  708. 

  709.     // Perform 25519 security handshake to set public keys
    710. 

  710.     if (test_sec_endpoint(session) != ESP_OK) {
    711. 

  711.         ESP_LOGE(TAG, "Error testing security endpoint");
    712. 

  712.         test_delete_session(session);
    713. 

  713.         stop_test_service();
    714. 

  714.         free(session);
    715. 

  715.         return ESP_FAIL;
    716. 

  716.     }
    717. 

  717. 

  718.     // Force endpoint with un-encrypted data
    719. 

  719.     session->sec_ver = 0;
    720. 

  720. 

  721.     // Send unencrypted request data to echo endpoint.
    722. 

  722.     // Response would be encrypted causing echoed back
    723. 

  723.     // data to not match that which was sent, hence failing.
    724. 

  724.     if (test_req_endpoint(session) == ESP_OK) {
    725. 

  725.         ESP_LOGE(TAG, "Error testing request endpoint");
    726. 

  726.         session->sec_ver = 1;
    727. 

  727.         test_delete_session(session);
    728. 

  728.         stop_test_service();
    729. 

  729.         free(session);
    730. 

  730.         return ESP_FAIL;
    731. 

  731.     }
    732. 

  732. 

  733.     session->sec_ver = 1;
    734. 

  734.     test_delete_session(session);
    735. 

  735.     stop_test_service();
    736. 

  736.     free(session);
    737. 

  737.     ESP_LOGI(TAG, "Protocomm test successful");
    738. 

  738.     return ESP_OK;
    739. 

  739. }
    740. 

  740. 

  741. static esp_err_t test_security1_session_overflow (void)
    742. 

  742. {
    743. 

  743.     ESP_LOGI(TAG, "Starting Security 1 session overflow test");
    744. 

  744. 

  745.     const char *pop_data = "test pop";
    746. 

  746.     protocomm_security_pop_t pop = {
    747. 

  747.         .data = (const uint8_t *)pop_data,
    748. 

  748.         .len  = strlen(pop_data)
    749. 

  749.     };
    750. 

  750. 

  751.     session_t *session1 = calloc(1, sizeof(session_t));
    752. 

  752.     if (session1 == NULL) {
    753. 

  753.         ESP_LOGE(TAG, "Error allocating session");
    754. 

  754.         return ESP_ERR_NO_MEM;
    755. 

  755.     }
    756. 

  756. 

  757.     session1->id        = 2;
    758. 

  758.     session1->sec_ver   = 1;
    759. 

  759.     session1->pop       = &pop;
    760. 

  760. 

  761.     session_t *session2 = calloc(1, sizeof(session_t));
    762. 

  762.     if (session2 == NULL) {
    763. 

  763.         ESP_LOGE(TAG, "Error allocating session");
    764. 

  764.         free(session1);
    765. 

  765.         return ESP_ERR_NO_MEM;
    766. 

  766.     }
    767. 

  767. 

  768.     session2->id         = 3;
    769. 

  769.     session2->sec_ver    = 1;
    770. 

  770.     session2->pop        = NULL;
    771. 

  771. 

  772.     // Start protocomm service
    773. 

  773.     if (start_test_service(1, &pop) != ESP_OK) {
    774. 

  774.         ESP_LOGE(TAG, "Error starting test");
    775. 

  775.         free(session1);
    776. 

  776.         free(session2);
    777. 

  777.         return ESP_FAIL;
    778. 

  778.     }
    779. 

  779. 

  780.     // Intialise protocomm session with zero public keys
    781. 

  781.     if (test_new_session(session1) != ESP_OK) {
    782. 

  782.         ESP_LOGE(TAG, "Error creating new session");
    783. 

  783.         stop_test_service();
    784. 

  784.         free(session1);
    785. 

  785.         free(session2);
    786. 

  786.         return ESP_FAIL;
    787. 

  787.     }
    788. 

  788. 

  789.     // Perform 25519 security handshake to set public keys
    790. 

  790.     if (test_sec_endpoint(session1) != ESP_OK) {
    791. 

  791.         ESP_LOGE(TAG, "Error testing security endpoint");
    792. 

  792.         test_delete_session(session1);
    793. 

  793.         stop_test_service();
    794. 

  794.         free(session1);
    795. 

  795.         free(session2);
    796. 

  796.         return ESP_FAIL;
    797. 

  797.     }
    798. 

  798. 

  799.     // Try to perform security handshake again with different
    800. 

  800.     // session ID without registering new session, hence failing
    801. 

  801.     if (test_sec_endpoint(session2) == ESP_OK) {
    802. 

  802.         ESP_LOGE(TAG, "Error testing security endpoint");
    803. 

  803.         test_delete_session(session1);
    804. 

  804.         stop_test_service();
    805. 

  805.         free(session1);
    806. 

  806.         free(session2);
    807. 

  807.         return ESP_FAIL;
    808. 

  808.     }
    809. 

  809. 

  810.     test_delete_session(session1);
    811. 

  811.     stop_test_service();
    812. 

  812.     free(session1);
    813. 

  813.     free(session2);
    814. 

  814. 

  815.     ESP_LOGI(TAG, "Protocomm test successful");
    816. 

  816.     return ESP_OK;
    817. 

  817. }
    818. 

  818. 

  819. static esp_err_t test_security1_wrong_pop (void)
    820. 

  820. {
    821. 

  821.     ESP_LOGI(TAG, "Starting Security 1 wrong auth test");
    822. 

  822. 

  823.     const char *pop_data = "test pop";
    824. 

  824.     protocomm_security_pop_t pop = {
    825. 

  825.         .data = (const uint8_t *)pop_data,
    826. 

  826.         .len  = strlen(pop_data)
    827. 

  827.     };
    828. 

  828. 

  829.     session_t *session = calloc(1, sizeof(session_t));
    830. 

  830.     if (session == NULL) {
    831. 

  831.         ESP_LOGE(TAG, "Error allocating session");
    832. 

  832.         return ESP_ERR_NO_MEM;
    833. 

  833.     }
    834. 

  834. 

  835.     session->id        = 4;
    836. 

  836.     session->sec_ver   = 1;
    837. 

  837.     session->pop       = &pop;
    838. 

  838. 

  839.     // Start protocomm service
    840. 

  840.     if (start_test_service(1, &pop) != ESP_OK) {
    841. 

  841.         ESP_LOGE(TAG, "Error starting test");
    842. 

  842.         free(session);
    843. 

  843.         return ESP_FAIL;
    844. 

  844.     }
    845. 

  845. 

  846.     // Intialise protocomm session with zero public keys
    847. 

  847.     if (test_new_session(session) != ESP_OK) {
    848. 

  848.         ESP_LOGE(TAG, "Error creating new session");
    849. 

  849.         stop_test_service();
    850. 

  850.         free(session);
    851. 

  851.         return ESP_FAIL;
    852. 

  852.     }
    853. 

  853. 

  854.     const char *wrong_pop_data = "wrong pop";
    855. 

  855.     protocomm_security_pop_t wrong_pop = {
    856. 

  856.         .data = (const uint8_t *)wrong_pop_data,
    857. 

  857.         .len  = strlen(wrong_pop_data)
    858. 

  858.     };
    859. 

  859. 

  860.     // Force wrong pop during authentication
    861. 

  861.     session->pop = &wrong_pop;
    862. 

  862. 

  863.     // Perform 25519 security handshake with
    864. 

  864.     // wrong pop, hence failing
    865. 

  865.     if (test_sec_endpoint(session) == ESP_OK) {
    866. 

  866.         ESP_LOGE(TAG, "Error testing security endpoint");
    867. 

  867.         test_delete_session(session);
    868. 

  868.         stop_test_service();
    869. 

  869.         free(session);
    870. 

  870.         return ESP_FAIL;
    871. 

  871.     }
    872. 

  872. 

  873.     test_delete_session(session);
    874. 

  874.     stop_test_service();
    875. 

  875.     free(session);
    876. 

  876. 

  877.     ESP_LOGI(TAG, "Protocomm test successful");
    878. 

  878.     return ESP_OK;
    879. 

  879. }
    880. 

  880. 

  881. static esp_err_t test_security1_insecure_client (void)
    882. 

  882. {
    883. 

  883.     ESP_LOGI(TAG, "Starting Security 1 insecure client test");
    884. 

  884. 

  885.     const char *pop_data = "test pop";
    886. 

  886.     protocomm_security_pop_t pop = {
    887. 

  887.         .data = (const uint8_t *)pop_data,
    888. 

  888.         .len  = strlen(pop_data)
    889. 

  889.     };
    890. 

  890. 

  891.     session_t *session = calloc(1, sizeof(session_t));
    892. 

  892.     if (session == NULL) {
    893. 

  893.         ESP_LOGE(TAG, "Error allocating session");
    894. 

  894.         return ESP_ERR_NO_MEM;
    895. 

  895.     }
    896. 

  896. 

  897.     session->id      = 5;
    898. 

  898.     session->sec_ver = 1;
    899. 

  899.     session->pop     = &pop;
    900. 

  900. 

  901.     // Start protocomm service
    902. 

  902.     if (start_test_service(1, &pop) != ESP_OK) {
    903. 

  903.         ESP_LOGE(TAG, "Error starting test");
    904. 

  904.         free(session);
    905. 

  905.         return ESP_FAIL;
    906. 

  906.     }
    907. 

  907. 

  908.     // Perform 25519 security handshake without
    909. 

  909.     // initialising session, hence failing
    910. 

  910.     if (test_sec_endpoint(session) == ESP_OK) {
    911. 

  911.         ESP_LOGE(TAG, "Error testing security endpoint");
    912. 

  912.         stop_test_service();
    913. 

  913.         free(session);
    914. 

  914.         return ESP_FAIL;
    915. 

  915.     }
    916. 

  916. 

  917.     // Communicating with request endpoint without
    918. 

  918.     // initialising session, hence failing
    919. 

  919.     if (test_req_endpoint(session) == ESP_OK) {
    920. 

  920.         ESP_LOGE(TAG, "Error testing request endpoint");
    921. 

  921.         stop_test_service();
    922. 

  922.         free(session);
    923. 

  923.         return ESP_FAIL;
    924. 

  924.     }
    925. 

  925. 

  926.     stop_test_service();
    927. 

  927.     free(session);
    928. 

  928. 

  929.     ESP_LOGI(TAG, "Protocomm test successful");
    930. 

  930.     return ESP_OK;
    931. 

  931. }
    932. 

  932. 

  933. static esp_err_t test_security1_weak_session (void)
    934. 

  934. {
    935. 

  935.     ESP_LOGI(TAG, "Starting Security 1 weak session test");
    936. 

  936. 

  937.     const char *pop_data = "test pop";
    938. 

  938.     protocomm_security_pop_t pop = {
    939. 

  939.         .data = (const uint8_t *)pop_data,
    940. 

  940.         .len  = strlen(pop_data)
    941. 

  941.     };
    942. 

  942. 

  943.     session_t *session = calloc(1, sizeof(session_t));
    944. 

  944.     if (session == NULL) {
    945. 

  945.         ESP_LOGE(TAG, "Error allocating session");
    946. 

  946.         return ESP_ERR_NO_MEM;
    947. 

  947.     }
    948. 

  948. 

  949.     session->id        = 6;
    950. 

  950.     session->sec_ver   = 1;
    951. 

  951.     session->pop       = &pop;
    952. 

  952.     session->weak      = 1;
    953. 

  953. 

  954.     // Start protocomm service
    955. 

  955.     if (start_test_service(1, &pop) != ESP_OK) {
    956. 

  956.         ESP_LOGE(TAG, "Error starting test");
    957. 

  957.         free(session);
    958. 

  958.         return ESP_FAIL;
    959. 

  959.     }
    960. 

  960. 

  961.     // Intialise protocomm session with zero public keys
    962. 

  962.     if (test_new_session(session) != ESP_OK) {
    963. 

  963.         ESP_LOGE(TAG, "Error creating new session");
    964. 

  964.         stop_test_service();
    965. 

  965.         free(session);
    966. 

  966.         return ESP_FAIL;
    967. 

  967.     }
    968. 

  968. 

  969.     // Perform 25519 security handshake with weak (zero)
    970. 

  970.     // client public key, hence failing
    971. 

  971.     if (test_sec_endpoint(session) == ESP_OK) {
    972. 

  972.         ESP_LOGE(TAG, "Error testing security endpoint");
    973. 

  973.         test_delete_session(session);
    974. 

  974.         stop_test_service();
    975. 

  975.         free(session);
    976. 

  976.         return ESP_FAIL;
    977. 

  977.     }
    978. 

  978. 

  979.     // Sending request data to echo endpoint encrypted with zero
    980. 

  980.     // public keys on both client and server side should fail
    981. 

  981.     if (test_req_endpoint(session) == ESP_OK) {
    982. 

  982.         ESP_LOGE(TAG, "Error testing request endpoint");
    983. 

  983.         test_delete_session(session);
    984. 

  984.         stop_test_service();
    985. 

  985.         free(session);
    986. 

  986.         return ESP_FAIL;
    987. 

  987.     }
    988. 

  988. 

  989.     test_delete_session(session);
    990. 

  990.     stop_test_service();
    991. 

  991.     free(session);
    992. 

  992. 

  993.     ESP_LOGI(TAG, "Protocomm test successful");
    994. 

  994.     return ESP_OK;
    995. 

  995. }
    996. 

  996. 

  997. static esp_err_t test_protocomm (session_t *session)
    998. 

  998. {
    999. 

  999.     ESP_LOGI(TAG, "Starting Protocomm test");
    1000. 

  1000. 

  1001.     // Start protocomm service
    1002. 

  1002.     if (start_test_service(session->sec_ver, session->pop) != ESP_OK) {
    1003. 

  1003.         ESP_LOGE(TAG, "Error starting test");
    1004. 

  1004.         return ESP_FAIL;
    1005. 

  1005.     }
    1006. 

  1006. 

  1007.     // Check version endpoint
    1008. 

  1008.     if (test_ver_endpoint(session) != ESP_OK) {
    1009. 

  1009.         ESP_LOGE(TAG, "Error testing version endpoint");
    1010. 

  1010.         stop_test_service();
    1011. 

  1011.         return ESP_FAIL;
    1012. 

  1012.     }
    1013. 

  1013. 

  1014.     // Intialise protocomm session with zero public keys
    1015. 

  1015.     if (test_new_session(session) != ESP_OK) {
    1016. 

  1016.         ESP_LOGE(TAG, "Error creating new session");
    1017. 

  1017.         stop_test_service();
    1018. 

  1018.         return ESP_FAIL;
    1019. 

  1019.     }
    1020. 

  1020. 

  1021.     // Perform 25519 security handshake to set public keys
    1022. 

  1022.     if (test_sec_endpoint(session) != ESP_OK) {
    1023. 

  1023.         ESP_LOGE(TAG, "Error testing security endpoint");
    1024. 

  1024.         test_delete_session(session);
    1025. 

  1025.         stop_test_service();
    1026. 

  1026.         return ESP_FAIL;
    1027. 

  1027.     }
    1028. 

  1028. 

  1029.     // Send request data to echo endpoint encrypted with
    1030. 

  1030.     // the set public keys on both client and server side
    1031. 

  1031.     if (test_req_endpoint(session) != ESP_OK) {
    1032. 

  1032.         ESP_LOGE(TAG, "Error testing request endpoint");
    1033. 

  1033.         test_delete_session(session);
    1034. 

  1034.         stop_test_service();
    1035. 

  1035.         return ESP_FAIL;
    1036. 

  1036.     }
    1037. 

  1037. 

  1038.     // Stop protocomm service
    1039. 

  1039.     test_delete_session(session);
    1040. 

  1040.     stop_test_service();
    1041. 

  1041.     ESP_LOGI(TAG, "Protocomm test successful");
    1042. 

  1042.     return ESP_OK;
    1043. 

  1043. }
    1044. 

  1044. 

  1045. static esp_err_t test_security1 (void)
    1046. 

  1046. {
    1047. 

  1047.     ESP_LOGI(TAG, "Starting Sec1 test");
    1048. 

  1048. 

  1049.     const char *pop_data = "test pop";
    1050. 

  1050.     protocomm_security_pop_t pop = {
    1051. 

  1051.         .data = (const uint8_t *)pop_data,
    1052. 

  1052.         .len  = strlen(pop_data)
    1053. 

  1053.     };
    1054. 

  1054. 

  1055.     session_t *session = calloc(1, sizeof(session_t));
    1056. 

  1056.     if (session == NULL) {
    1057. 

  1057.         ESP_LOGE(TAG, "Error allocating session");
    1058. 

  1058.         return ESP_ERR_NO_MEM;
    1059. 

  1059.     }
    1060. 

  1060. 

  1061.     session->id        = 7;
    1062. 

  1062.     session->sec_ver   = 1;
    1063. 

  1063.     session->pop       = &pop;
    1064. 

  1064. 

  1065.     if (test_protocomm (session) != ESP_OK) {
    1066. 

  1066.         ESP_LOGE(TAG, "Sec1 test failed");
    1067. 

  1067.         free(session);
    1068. 

  1068.         return ESP_FAIL;
    1069. 

  1069.     }
    1070. 

  1070. 

  1071.     ESP_LOGI(TAG, "Sec1 test successful");
    1072. 

  1072.     free(session);
    1073. 

  1073.     return ESP_OK;
    1074. 

  1074. }
    1075. 

  1075. 

  1076. static esp_err_t test_security0 (void)
    1077. 

  1077. {
    1078. 

  1078.     ESP_LOGI(TAG, "Starting Sec0 test");
    1079. 

  1079. 

  1080.     session_t *session = calloc(1, sizeof(session_t));
    1081. 

  1081.     if (session == NULL) {
    1082. 

  1082.         ESP_LOGE(TAG, "Error allocating session");
    1083. 

  1083.         return ESP_ERR_NO_MEM;
    1084. 

  1084.     }
    1085. 

  1085. 

  1086.     session->id        = 8;
    1087. 

  1087.     session->sec_ver   = 0;
    1088. 

  1088.     session->pop       = NULL;
    1089. 

  1089. 

  1090.     if (test_protocomm (session) != ESP_OK) {
    1091. 

  1091.         ESP_LOGE(TAG, "Sec0 test failed");
    1092. 

  1092.         free(session);
    1093. 

  1093.         return ESP_FAIL;
    1094. 

  1094.     }
    1095. 

  1095. 

  1096.     ESP_LOGI(TAG, "Sec0 test successful");
    1097. 

  1097.     free(session);
    1098. 

  1098.     return ESP_OK;
    1099. 

  1099. }
    1100. 

  1100. 

  1101. TEST_CASE("leak test", "[PROTOCOMM]")
    1102. 

  1102. {
    1103. 

  1103. #ifdef CONFIG_HEAP_TRACING
    1104. 

  1104.     heap_trace_init_standalone(trace_record, NUM_RECORDS);
    1105. 

  1105.     heap_trace_start(HEAP_TRACE_LEAKS);
    1106. 

  1106. #endif
    1107. 

  1107. 

  1108.     /* Run basic tests for the first time to allow for internal long
    1109. 

  1109.      * time allocations to happen (not related to protocomm) */
    1110. 

  1110.     test_security0();
    1111. 

  1111.     test_security1();
    1112. 

  1112.     usleep(1000);
    1113. 

  1113. 

  1114. #ifdef CONFIG_HEAP_TRACING
    1115. 

  1115.     heap_trace_stop();
    1116. 

  1116.     heap_trace_dump();
    1117. 

  1117. #endif
    1118. 

  1118. 

  1119.     /* Run all tests passively. Any leaks due
    1120. 

  1120.      * to protocomm should show  up now */
    1121. 

  1121.     unsigned pre_start_mem = esp_get_free_heap_size();
    1122. 

  1122. 

  1123.     test_security0();
    1124. 

  1124.     test_security1();
    1125. 

  1125.     test_security1_no_encryption();
    1126. 

  1126.     test_security1_session_overflow();
    1127. 

  1127.     test_security1_wrong_pop();
    1128. 

  1128.     test_security1_insecure_client();
    1129. 

  1129.     test_security1_weak_session();
    1130. 

  1130. 

  1131.     usleep(1000);
    1132. 

  1132. 

  1133.     unsigned post_stop_mem = esp_get_free_heap_size();
    1134. 

  1134. 

  1135.     if (pre_start_mem != post_stop_mem) {
    1136. 

  1136.         ESP_LOGE(TAG, "Mismatch in free heap size : %d bytes", post_stop_mem - pre_start_mem);
    1137. 

  1137.     }
    1138. 

  1138. 

  1139.     TEST_ASSERT(pre_start_mem == post_stop_mem);
    1140. 

  1140. }
    1141. 

  1141. 

  1142. TEST_CASE("security 0 basic test", "[PROTOCOMM]")
    1143. 

  1143. {
    1144. 

  1144.     TEST_ASSERT(test_security0() == ESP_OK);
    1145. 

  1145. }
    1146. 

  1146. 

  1147. TEST_CASE("security 1 basic test", "[PROTOCOMM]")
    1148. 

  1148. {
    1149. 

  1149.     TEST_ASSERT(test_security1() == ESP_OK);
    1150. 

  1150. }
    1151. 

  1151. 

  1152. TEST_CASE("security 1 no encryption test", "[PROTOCOMM]")
    1153. 

  1153. {
    1154. 

  1154.     TEST_ASSERT(test_security1_no_encryption() == ESP_OK);
    1155. 

  1155. }
    1156. 

  1156. 

  1157. TEST_CASE("security 1 session overflow test", "[PROTOCOMM]")
    1158. 

  1158. {
    1159. 

  1159.     TEST_ASSERT(test_security1_session_overflow() == ESP_OK);
    1160. 

  1160. }
    1161. 

  1161. 

  1162. TEST_CASE("security 1 wrong pop test", "[PROTOCOMM]")
    1163. 

  1163. {
    1164. 

  1164.     TEST_ASSERT(test_security1_wrong_pop() == ESP_OK);
    1165. 

  1165. }
    1166. 

  1166. 

  1167. TEST_CASE("security 1 insecure client test", "[PROTOCOMM]")
    1168. 

  1168. {
    1169. 

  1169.     TEST_ASSERT(test_security1_insecure_client() == ESP_OK);
    1170. 

  1170. }
    1171. 

  1171. 

  1172. TEST_CASE("security 1 weak session test", "[PROTOCOMM]")
    1173. 

  1173. {
    1174. 

  1174.     TEST_ASSERT(test_security1_weak_session() == ESP_OK);
    1175. 

  1175. }
    1176.