[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[libmicrohttpd] 14/14: Added test for Digest Auth with username in exten
|
From: |
gnunet |
|
Subject: |
[libmicrohttpd] 14/14: Added test for Digest Auth with username in extended notation |
|
Date: |
Thu, 21 Jul 2022 14:08:12 +0200 |
This is an automated email from the git hooks/post-receive script.
karlson2k pushed a commit to branch master
in repository libmicrohttpd.
commit 22796735892fae00fdc84fa5e2b29a2d6a2becdd
Author: Evgeny Grin (Karlson2k) <k2k@narod.ru>
AuthorDate: Thu Jul 21 14:53:25 2022 +0300
Added test for Digest Auth with username in extended notation
As libcurl does not support extended notation, it is not completely
real test. Pregenerated fake nonce, cnonce and response are used so
only parsing of request header and checking request header are tested.
No real authorisation.
---
src/testcurl/.gitignore | 4 +-
src/testcurl/Makefile.am | 29 +-
src/testcurl/test_digestauth_emu_ext.c | 868 +++++++++++++++++++++++++++++++++
3 files changed, 891 insertions(+), 10 deletions(-)
diff --git a/src/testcurl/.gitignore b/src/testcurl/.gitignore
index f3ffee14..e23f52c9 100644
--- a/src/testcurl/.gitignore
+++ b/src/testcurl/.gitignore
@@ -154,4 +154,6 @@ core
/test_parse_cookies_invalid
/test_basicauth_preauth
/test_basicauth_oldapi
-/test_basicauth_preauth_oldapi
\ No newline at end of file
+/test_basicauth_preauth_oldapi
+/test_digestauth_emu_ext
+/test_digestauth_emu_ext_oldapi
diff --git a/src/testcurl/Makefile.am b/src/testcurl/Makefile.am
index 3bf81e7d..e46bbb2d 100644
--- a/src/testcurl/Makefile.am
+++ b/src/testcurl/Makefile.am
@@ -71,14 +71,6 @@ THREAD_ONLY_TESTS += \
endif
endif
-if ENABLE_DAUTH
-THREAD_ONLY_TESTS += \
- test_digestauth \
- test_digestauth_sha256 \
- test_digestauth_with_arguments \
- test_digestauth_concurrent
-endif
-
if HEAVY_TESTS
if HAVE_POSIX_THREADS
THREAD_ONLY_TESTS += \
@@ -158,7 +150,7 @@ check_PROGRAMS += \
endif
if HAVE_POSTPROCESSOR
- check_PROGRAMS += \
+check_PROGRAMS += \
test_post \
test_postform \
test_post_loop \
@@ -167,6 +159,19 @@ if HAVE_POSTPROCESSOR
test_post_loop11
endif
+
+if ENABLE_DAUTH
+THREAD_ONLY_TESTS += \
+ test_digestauth \
+ test_digestauth_sha256 \
+ test_digestauth_with_arguments \
+ test_digestauth_concurrent
+
+check_PROGRAMS += \
+ test_digestauth_emu_ext \
+ test_digestauth_emu_ext_oldapi
+endif
+
if HEAVY_TESTS
if HAVE_FORK_WAITPID
if HAVE_CURL_BINARY
@@ -268,6 +273,12 @@ test_digestauth_concurrent_CFLAGS = \
test_digestauth_concurrent_LDADD = \
@LIBGCRYPT_LIBS@ $(LDADD) $(PTHREAD_LIBS) $(LDADD)
+test_digestauth_emu_ext_SOURCES = \
+ test_digestauth_emu_ext.c
+
+test_digestauth_emu_ext_oldapi_SOURCES = \
+ test_digestauth_emu_ext.c
+
test_get_iovec_SOURCES = \
test_get_iovec.c mhd_has_in_name.h
diff --git a/src/testcurl/test_digestauth_emu_ext.c
b/src/testcurl/test_digestauth_emu_ext.c
new file mode 100644
index 00000000..740f43eb
--- /dev/null
+++ b/src/testcurl/test_digestauth_emu_ext.c
@@ -0,0 +1,868 @@
+/*
+ This file is part of libmicrohttpd
+ Copyright (C) 2010 Christian Grothoff
+ Copyright (C) 2016-2022 Evgeny Grin (Karlson2k)
+
+ libmicrohttpd is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published
+ by the Free Software Foundation; either version 2, or (at your
+ option) any later version.
+
+ libmicrohttpd is distributed in the hope that it will be useful, but
+ WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ General Public License for more details.
+
+ You should have received a copy of the GNU General Public License
+ along with libmicrohttpd; see the file COPYING. If not, write to the
+ Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
+ Boston, MA 02110-1301, USA.
+*/
+
+/**
+ * @file test_digest_emu_ext.c
+ * @brief Testcase for MHD Digest Authorisation client's header parsing
+ * @author Karlson2k (Evgeny Grin)
+ *
+ * libcurl does not support extended notation for username, so this test
+ * "emulates" client request will all valid fields except nonce, cnonce and
+ * response (however syntactically these fields valid as well).
+ */
+
+#include "MHD_config.h"
+#include "platform.h"
+#include <curl/curl.h>
+#include <microhttpd.h>
+#include <stdlib.h>
+#include <string.h>
+#include <time.h>
+
+#ifndef WINDOWS
+#include <sys/socket.h>
+#include <unistd.h>
+#else
+#include <wincrypt.h>
+#endif
+
+#include "mhd_has_param.h"
+#include "mhd_has_in_name.h"
+
+#ifndef MHD_STATICSTR_LEN_
+/**
+ * Determine length of static string / macro strings at compile time.
+ */
+#define MHD_STATICSTR_LEN_(macro) (sizeof(macro) / sizeof(char) - 1)
+#endif /* ! MHD_STATICSTR_LEN_ */
+
+#ifndef CURL_VERSION_BITS
+#define CURL_VERSION_BITS(x,y,z) ((x)<<16|(y)<<8|(z))
+#endif /* ! CURL_VERSION_BITS */
+#ifndef CURL_AT_LEAST_VERSION
+#define CURL_AT_LEAST_VERSION(x,y,z) \
+ (LIBCURL_VERSION_NUM >= CURL_VERSION_BITS(x, y, z))
+#endif /* ! CURL_AT_LEAST_VERSION */
+
+#ifndef _MHD_INSTRMACRO
+/* Quoted macro parameter */
+#define _MHD_INSTRMACRO(a) #a
+#endif /* ! _MHD_INSTRMACRO */
+#ifndef _MHD_STRMACRO
+/* Quoted expanded macro parameter */
+#define _MHD_STRMACRO(a) _MHD_INSTRMACRO (a)
+#endif /* ! _MHD_STRMACRO */
+
+#if defined(HAVE___FUNC__)
+#define externalErrorExit(ignore) \
+ _externalErrorExit_func(NULL, __func__, __LINE__)
+#define externalErrorExitDesc(errDesc) \
+ _externalErrorExit_func(errDesc, __func__, __LINE__)
+#define libcurlErrorExit(ignore) \
+ _libcurlErrorExit_func(NULL, __func__, __LINE__)
+#define libcurlErrorExitDesc(errDesc) \
+ _libcurlErrorExit_func(errDesc, __func__, __LINE__)
+#define mhdErrorExit(ignore) \
+ _mhdErrorExit_func(NULL, __func__, __LINE__)
+#define mhdErrorExitDesc(errDesc) \
+ _mhdErrorExit_func(errDesc, __func__, __LINE__)
+#define checkCURLE_OK(libcurlcall) \
+ _checkCURLE_OK_func((libcurlcall), _MHD_STRMACRO(libcurlcall), \
+ __func__, __LINE__)
+#elif defined(HAVE___FUNCTION__)
+#define externalErrorExit(ignore) \
+ _externalErrorExit_func(NULL, __FUNCTION__, __LINE__)
+#define externalErrorExitDesc(errDesc) \
+ _externalErrorExit_func(errDesc, __FUNCTION__, __LINE__)
+#define libcurlErrorExit(ignore) \
+ _libcurlErrorExit_func(NULL, __FUNCTION__, __LINE__)
+#define libcurlErrorExitDesc(errDesc) \
+ _libcurlErrorExit_func(errDesc, __FUNCTION__, __LINE__)
+#define mhdErrorExit(ignore) \
+ _mhdErrorExit_func(NULL, __FUNCTION__, __LINE__)
+#define mhdErrorExitDesc(errDesc) \
+ _mhdErrorExit_func(errDesc, __FUNCTION__, __LINE__)
+#define checkCURLE_OK(libcurlcall) \
+ _checkCURLE_OK_func((libcurlcall), _MHD_STRMACRO(libcurlcall), \
+ __FUNCTION__, __LINE__)
+#else
+#define externalErrorExit(ignore) _externalErrorExit_func(NULL, NULL, __LINE__)
+#define externalErrorExitDesc(errDesc) \
+ _externalErrorExit_func(errDesc, NULL, __LINE__)
+#define libcurlErrorExit(ignore) _libcurlErrorExit_func(NULL, NULL, __LINE__)
+#define libcurlErrorExitDesc(errDesc) \
+ _libcurlErrorExit_func(errDesc, NULL, __LINE__)
+#define mhdErrorExit(ignore) _mhdErrorExit_func(NULL, NULL, __LINE__)
+#define mhdErrorExitDesc(errDesc) _mhdErrorExit_func(errDesc, NULL, __LINE__)
+#define checkCURLE_OK(libcurlcall) \
+ _checkCURLE_OK_func((libcurlcall), _MHD_STRMACRO(libcurlcall), NULL,
__LINE__)
+#endif
+
+
+_MHD_NORETURN static void
+_externalErrorExit_func (const char *errDesc, const char *funcName, int
lineNum)
+{
+ fflush (stdout);
+ if ((NULL != errDesc) && (0 != errDesc[0]))
+ fprintf (stderr, "%s", errDesc);
+ else
+ fprintf (stderr, "System or external library call failed");
+ if ((NULL != funcName) && (0 != funcName[0]))
+ fprintf (stderr, " in %s", funcName);
+ if (0 < lineNum)
+ fprintf (stderr, " at line %d", lineNum);
+
+ fprintf (stderr, ".\nLast errno value: %d (%s)\n", (int) errno,
+ strerror (errno));
+#ifdef MHD_WINSOCK_SOCKETS
+ fprintf (stderr, "WSAGetLastError() value: %d\n", (int) WSAGetLastError ());
+#endif /* MHD_WINSOCK_SOCKETS */
+ fflush (stderr);
+ exit (99);
+}
+
+
+/* Not actually used in this test */
+static char libcurl_errbuf[CURL_ERROR_SIZE] = "";
+
+_MHD_NORETURN static void
+_libcurlErrorExit_func (const char *errDesc, const char *funcName, int lineNum)
+{
+ fflush (stdout);
+ if ((NULL != errDesc) && (0 != errDesc[0]))
+ fprintf (stderr, "%s", errDesc);
+ else
+ fprintf (stderr, "CURL library call failed");
+ if ((NULL != funcName) && (0 != funcName[0]))
+ fprintf (stderr, " in %s", funcName);
+ if (0 < lineNum)
+ fprintf (stderr, " at line %d", lineNum);
+
+ fprintf (stderr, ".\nLast errno value: %d (%s)\n", (int) errno,
+ strerror (errno));
+#ifdef MHD_WINSOCK_SOCKETS
+ fprintf (stderr, "WSAGetLastError() value: %d\n", (int) WSAGetLastError ());
+#endif /* MHD_WINSOCK_SOCKETS */
+ if (0 != libcurl_errbuf[0])
+ fprintf (stderr, "Last libcurl error description: %s\n", libcurl_errbuf);
+
+ fflush (stderr);
+ exit (99);
+}
+
+
+_MHD_NORETURN static void
+_mhdErrorExit_func (const char *errDesc, const char *funcName, int lineNum)
+{
+ fflush (stdout);
+ if ((NULL != errDesc) && (0 != errDesc[0]))
+ fprintf (stderr, "%s", errDesc);
+ else
+ fprintf (stderr, "MHD unexpected error");
+ if ((NULL != funcName) && (0 != funcName[0]))
+ fprintf (stderr, " in %s", funcName);
+ if (0 < lineNum)
+ fprintf (stderr, " at line %d", lineNum);
+
+ fprintf (stderr, ".\nLast errno value: %d (%s)\n", (int) errno,
+ strerror (errno));
+#ifdef MHD_WINSOCK_SOCKETS
+ fprintf (stderr, "WSAGetLastError() value: %d\n", (int) WSAGetLastError ());
+#endif /* MHD_WINSOCK_SOCKETS */
+
+ fflush (stderr);
+ exit (8);
+}
+
+
+#if 0
+/* Function unused in this test */
+static void
+_checkCURLE_OK_func (CURLcode code, const char *curlFunc,
+ const char *funcName, int lineNum)
+{
+ if (CURLE_OK == code)
+ return;
+
+ fflush (stdout);
+ if ((NULL != curlFunc) && (0 != curlFunc[0]))
+ fprintf (stderr, "'%s' resulted in '%s'", curlFunc,
+ curl_easy_strerror (code));
+ else
+ fprintf (stderr, "libcurl function call resulted in '%s'",
+ curl_easy_strerror (code));
+ if ((NULL != funcName) && (0 != funcName[0]))
+ fprintf (stderr, " in %s", funcName);
+ if (0 < lineNum)
+ fprintf (stderr, " at line %d", lineNum);
+
+ fprintf (stderr, ".\nLast errno value: %d (%s)\n", (int) errno,
+ strerror (errno));
+ if (0 != libcurl_errbuf[0])
+ fprintf (stderr, "Last libcurl error description: %s\n", libcurl_errbuf);
+
+ fflush (stderr);
+ exit (9);
+}
+
+
+#endif
+
+
+/* Could be increased to facilitate debugging */
+#define TIMEOUTS_VAL 10
+
+#define MHD_URI_BASE_PATH "/bar%20foo?key=value"
+
+#define REALM "TestRealm"
+/* "titkos szuperügynök" in UTF-8 */
+#define USERNAME "titkos szuper" "\xC3\xBC" "gyn" "\xC3\xB6" "k"
+/* percent-encoded username */
+#define USERNAME_PCTENC "titkos%20szuper%C3%BCgyn%C3%B6k"
+#define PASSWORD "fake pass"
+#define OPAQUE_VALUE "opaque-content"
+#define NONCE_EMU "badbadbadbadbadbadbadbadbadbadbadbadbadbadba"
+#define CNONCE_EMU "utututututututututututututututututututututs="
+#define RESPONSE_EMU "badbadbadbadbadbadbadbadbadbadba"
+
+
+#define PAGE \
+ "<html><head><title>libmicrohttpd demo page</title>" \
+ "</head><body>Access granted</body></html>"
+
+#define DENIED \
+ "<html><head><title>libmicrohttpd - Access denied</title>" \
+ "</head><body>Access denied</body></html>"
+
+struct CBC
+{
+ char *buf;
+ size_t pos;
+ size_t size;
+};
+
+/* Global parameters */
+static int verbose;
+static int oldapi;
+
+/* Static helper variables */
+struct curl_slist *curl_headers;
+
+static void
+test_global_init (void)
+{
+ libcurl_errbuf[0] = 0;
+
+ if (0 != curl_global_init (CURL_GLOBAL_WIN32))
+ externalErrorExit ();
+
+ curl_headers = NULL;
+ curl_headers =
+ curl_slist_append (curl_headers,
+ "Authorization: "
+ "Digest username*=UTF-8''" USERNAME_PCTENC ", "
+ "realm=\"" REALM "\", "
+ "nonce=\"" NONCE_EMU "\", "
+ "uri=\"" MHD_URI_BASE_PATH "\", "
+ "cnonce=\"" CNONCE_EMU "\", "
+ "nc=00000001, "
+ "qop=auth, "
+ "response=\"" RESPONSE_EMU "\", "
+ "opaque=\"" OPAQUE_VALUE "\", "
+ "algorithm=MD5");
+ if (NULL == curl_headers)
+ externalErrorExit ();
+}
+
+
+static void
+test_global_cleanup (void)
+{
+ curl_slist_free_all (curl_headers);
+ curl_headers = NULL;
+ curl_global_cleanup ();
+}
+
+
+static size_t
+copyBuffer (void *ptr,
+ size_t size,
+ size_t nmemb,
+ void *ctx)
+{
+ struct CBC *cbc = ctx;
+
+ if (cbc->pos + size * nmemb > cbc->size)
+ mhdErrorExitDesc ("Wrong too large data"); /* overflow */
+ memcpy (&cbc->buf[cbc->pos], ptr, size * nmemb);
+ cbc->pos += size * nmemb;
+ return size * nmemb;
+}
+
+
+static enum MHD_Result
+ahc_echo (void *cls,
+ struct MHD_Connection *connection,
+ const char *url,
+ const char *method,
+ const char *version,
+ const char *upload_data,
+ size_t *upload_data_size,
+ void **req_cls)
+{
+ struct MHD_Response *response;
+ enum MHD_Result ret;
+ static int already_called_marker;
+ (void) cls; (void) url; /* Unused. Silent compiler warning. */
+ (void) method; (void) version; (void) upload_data; /* Unused. Silent
compiler warning. */
+ (void) upload_data_size; /* Unused. Silent compiler warning. */
+
+ if (&already_called_marker != *req_cls)
+ { /* Called for the first time, request not fully read yet */
+ *req_cls = &already_called_marker;
+ /* Wait for complete request */
+ return MHD_YES;
+ }
+
+ if (0 != strcmp (method, MHD_HTTP_METHOD_GET))
+ mhdErrorExitDesc ("Unexpected HTTP method");
+
+ if (! oldapi)
+ {
+ struct MHD_DigestAuthUsernameInfo *creds;
+ struct MHD_DigestAuthInfo *dinfo;
+ enum MHD_DigestAuthResult check_res;
+
+ creds = MHD_digest_auth_get_username3 (connection);
+ if (NULL == creds)
+ mhdErrorExitDesc ("MHD_digest_auth_get_username3() returned NULL");
+ else if (NULL == creds->username)
+ mhdErrorExitDesc ("'username' is NULL");
+ else if (creds->username_len != MHD_STATICSTR_LEN_ (USERNAME))
+ {
+ fprintf (stderr, "'username_len' does not match.\n"
+ "Expected: %u\tRecieved: %u. ",
+ (unsigned) MHD_STATICSTR_LEN_ (USERNAME),
+ (unsigned) creds->username_len);
+ mhdErrorExitDesc ("Wrong 'username_len'");
+ }
+ else if (0 != memcmp (creds->username, USERNAME, creds->username_len))
+ {
+ fprintf (stderr, "'username' does not match.\n"
+ "Expected: '%s'\tRecieved: '%.*s'. ",
+ USERNAME,
+ (int) creds->username_len,
+ creds->username);
+ mhdErrorExitDesc ("Wrong 'username'");
+ }
+ else if (NULL != creds->userhash_bin)
+ mhdErrorExitDesc ("'userhash_bin' is NOT NULL");
+ else if (0 != creds->userhash_bin_size)
+ mhdErrorExitDesc ("'userhash_bin_size' is NOT zero");
+ else if (MHD_DIGEST_AUTH_UNAME_TYPE_EXTENDED != creds->uname_type)
+ {
+ fprintf (stderr, "Unexpected 'uname_type'.\n"
+ "Expected: %d\tRecieved: %d. ",
+ (int) MHD_DIGEST_AUTH_UNAME_TYPE_EXTENDED,
+ (int) creds->uname_type);
+ mhdErrorExitDesc ("Wrong 'uname_type'");
+ }
+ MHD_free (creds);
+
+ dinfo = MHD_digest_auth_get_request_info3 (connection);
+ if (NULL == dinfo)
+ mhdErrorExitDesc ("MHD_digest_auth_get_username3() returned NULL");
+ else if (NULL == dinfo->username)
+ mhdErrorExitDesc ("'username' is NULL");
+ else if (dinfo->username_len != MHD_STATICSTR_LEN_ (USERNAME))
+ {
+ fprintf (stderr, "'username_len' does not match.\n"
+ "Expected: %u\tRecieved: %u. ",
+ (unsigned) MHD_STATICSTR_LEN_ (USERNAME),
+ (unsigned) dinfo->username_len);
+ mhdErrorExitDesc ("Wrong 'username_len'");
+ }
+ else if (0 != memcmp (dinfo->username, USERNAME, dinfo->username_len))
+ {
+ fprintf (stderr, "'username' does not match.\n"
+ "Expected: '%s'\tRecieved: '%.*s'. ",
+ USERNAME,
+ (int) dinfo->username_len,
+ dinfo->username);
+ mhdErrorExitDesc ("Wrong 'username'");
+ }
+ else if (NULL != dinfo->userhash_bin)
+ mhdErrorExitDesc ("'userhash_bin' is NOT NULL");
+ else if (0 != dinfo->userhash_bin_size)
+ mhdErrorExitDesc ("'userhash_bin_size' is NOT zero");
+ else if (MHD_DIGEST_AUTH_UNAME_TYPE_EXTENDED != dinfo->uname_type)
+ {
+ fprintf (stderr, "Unexpected 'uname_type'.\n"
+ "Expected: %d\tRecieved: %d. ",
+ (int) MHD_DIGEST_AUTH_UNAME_TYPE_EXTENDED,
+ (int) dinfo->uname_type);
+ mhdErrorExitDesc ("Wrong 'uname_type'");
+ }
+ else if (MHD_DIGEST_AUTH_ALGO3_MD5 != dinfo->algo)
+ {
+ fprintf (stderr, "Unexpected 'algo'.\n"
+ "Expected: %d\tRecieved: %d. ",
+ (int) MHD_DIGEST_AUTH_ALGO3_MD5,
+ (int) dinfo->algo);
+ mhdErrorExitDesc ("Wrong 'algo'");
+ }
+ else if (MHD_STATICSTR_LEN_ (CNONCE_EMU) != dinfo->cnonce_len)
+ {
+ fprintf (stderr, "Unexpected 'cnonce_len'.\n"
+ "Expected: %d\tRecieved: %ld. ",
+ (int) MHD_STATICSTR_LEN_ (CNONCE_EMU),
+ (long) dinfo->cnonce_len);
+ mhdErrorExitDesc ("Wrong 'cnonce_len'");
+ }
+ else if (NULL == dinfo->opaque)
+ mhdErrorExitDesc ("'opaque' is NULL");
+ else if (dinfo->opaque_len != MHD_STATICSTR_LEN_ (OPAQUE_VALUE))
+ {
+ fprintf (stderr, "'opaque_len' does not match.\n"
+ "Expected: %u\tRecieved: %u. ",
+ (unsigned) MHD_STATICSTR_LEN_ (OPAQUE_VALUE),
+ (unsigned) dinfo->opaque_len);
+ mhdErrorExitDesc ("Wrong 'opaque_len'");
+ }
+ else if (0 != memcmp (dinfo->opaque, OPAQUE_VALUE, dinfo->opaque_len))
+ {
+ fprintf (stderr, "'opaque' does not match.\n"
+ "Expected: '%s'\tRecieved: '%.*s'. ",
+ OPAQUE_VALUE,
+ (int) dinfo->opaque_len,
+ dinfo->opaque);
+ mhdErrorExitDesc ("Wrong 'opaque'");
+ }
+ else if (MHD_DIGEST_AUTH_QOP_AUTH != dinfo->qop)
+ {
+ fprintf (stderr, "Unexpected 'qop'.\n"
+ "Expected: %d\tRecieved: %d. ",
+ (int) MHD_DIGEST_AUTH_QOP_AUTH,
+ (int) dinfo->qop);
+ mhdErrorExitDesc ("Wrong 'qop'");
+ }
+ else if (NULL == dinfo->realm)
+ mhdErrorExitDesc ("'realm' is NULL");
+ else if (dinfo->realm_len != MHD_STATICSTR_LEN_ (REALM))
+ {
+ fprintf (stderr, "'realm_len' does not match.\n"
+ "Expected: %u\tRecieved: %u. ",
+ (unsigned) MHD_STATICSTR_LEN_ (REALM),
+ (unsigned) dinfo->realm_len);
+ mhdErrorExitDesc ("Wrong 'realm_len'");
+ }
+ else if (0 != memcmp (dinfo->realm, REALM, dinfo->realm_len))
+ {
+ fprintf (stderr, "'realm' does not match.\n"
+ "Expected: '%s'\tRecieved: '%.*s'. ",
+ OPAQUE_VALUE,
+ (int) dinfo->realm_len,
+ dinfo->realm);
+ mhdErrorExitDesc ("Wrong 'realm'");
+ }
+ MHD_free (dinfo);
+
+ check_res = MHD_digest_auth_check3 (connection, REALM, USERNAME, PASSWORD,
+ 300, MHD_DIGEST_ALG_MD5);
+
+ switch (check_res)
+ {
+ /* Valid results */
+ case MHD_DAUTH_NONCE_STALE:
+ if (verbose)
+ printf ("Got valid auth check result: MHD_DAUTH_NONCE_STALE.\n");
+ break;
+ case MHD_DAUTH_NONCE_WRONG:
+ if (verbose)
+ printf ("Got valid auth check result: MHD_DAUTH_NONCE_WRONG.\n");
+ break;
+
+ /* Invalid results */
+ case MHD_DAUTH_OK:
+ mhdErrorExitDesc ("'MHD_digest_auth_check3()' succeed, " \
+ "but it should not");
+ break;
+ case MHD_DAUTH_ERROR:
+ externalErrorExitDesc ("General error returned " \
+ "by 'MHD_digest_auth_check3()'");
+ break;
+ case MHD_DAUTH_WRONG_USERNAME:
+ mhdErrorExitDesc ("MHD_digest_auth_check3()' returned " \
+ "MHD_DAUTH_WRONG_USERNAME");
+ break;
+ case MHD_DAUTH_RESPONSE_WRONG:
+ mhdErrorExitDesc ("MHD_digest_auth_check3()' returned " \
+ "MHD_DAUTH_RESPONSE_WRONG");
+ break;
+ case MHD_DAUTH_WRONG_HEADER:
+ case MHD_DAUTH_WRONG_REALM:
+ case MHD_DAUTH_WRONG_URI:
+ case MHD_DAUTH_WRONG_QOP:
+ case MHD_DAUTH_WRONG_ALGO:
+ case MHD_DAUTH_TOO_LARGE:
+ fprintf (stderr, "'MHD_digest_auth_check3()' returned "
+ "unexpected result: %d. ",
+ check_res);
+ mhdErrorExitDesc ("Wrong returned code");
+ break;
+ default:
+ fprintf (stderr, "'MHD_digest_auth_check3()' returned "
+ "impossible result code: %d. ",
+ check_res);
+ mhdErrorExitDesc ("Impossible returned code");
+ }
+
+ response =
+ MHD_create_response_from_buffer_static (MHD_STATICSTR_LEN_ (DENIED),
+ (const void *) DENIED);
+ if (NULL == response)
+ mhdErrorExitDesc ("Response creation failed");
+ ret = MHD_queue_auth_fail_response2 (connection, REALM, OPAQUE_VALUE,
+ response, 0, MHD_DIGEST_ALG_MD5);
+ if (MHD_YES != ret)
+ mhdErrorExitDesc ("'MHD_queue_auth_fail_response2()' failed");
+ }
+ else
+ {
+ char *username;
+ int check_res;
+
+ username = MHD_digest_auth_get_username (connection);
+ if (NULL == username)
+ mhdErrorExitDesc ("'MHD_digest_auth_get_username()' returned NULL");
+ else if (0 != strcmp (username, USERNAME))
+ {
+ fprintf (stderr, "'username' does not match.\n"
+ "Expected: '%s'\tRecieved: '%s'. ",
+ USERNAME,
+ username);
+ mhdErrorExitDesc ("Wrong 'username'");
+ }
+ MHD_free (username);
+
+ check_res = MHD_digest_auth_check (connection, REALM, USERNAME, PASSWORD,
+ 300);
+
+ if (MHD_INVALID_NONCE != check_res)
+ {
+ fprintf (stderr, "'MHD_digest_auth_check()' returned unexpected"
+ " result: %d. ", check_res);
+ mhdErrorExitDesc ("Wrong 'MHD_digest_auth_check()' result");
+ }
+ response =
+ MHD_create_response_from_buffer_static (MHD_STATICSTR_LEN_ (DENIED),
+ (const void *) DENIED);
+ if (NULL == response)
+ mhdErrorExitDesc ("Response creation failed");
+
+ ret = MHD_queue_auth_fail_response (connection, REALM, OPAQUE_VALUE,
+ response, 0);
+ if (MHD_YES != ret)
+ mhdErrorExitDesc ("'MHD_queue_auth_fail_response()' failed");
+ }
+
+ MHD_destroy_response (response);
+ return ret;
+}
+
+
+static CURL *
+setupCURL (void *cbc, int port)
+{
+ CURL *c;
+ char url[512];
+
+ if (1)
+ {
+ int res;
+ /* A workaround for some old libcurl versions, which ignore the specified
+ * port by CURLOPT_PORT when authorisation is used. */
+ res = snprintf (url, (sizeof(url) / sizeof(url[0])),
+ "http://127.0.0.1:%d%s";, port, MHD_URI_BASE_PATH);
+ if ((0 >= res) || ((sizeof(url) / sizeof(url[0])) <= (size_t) res))
+ externalErrorExitDesc ("Cannot form request URL");
+ }
+
+ c = curl_easy_init ();
+ if (NULL == c)
+ libcurlErrorExitDesc ("curl_easy_init() failed");
+
+ if ((CURLE_OK != curl_easy_setopt (c, CURLOPT_NOSIGNAL, 1L)) ||
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_WRITEFUNCTION,
+ ©Buffer)) ||
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_WRITEDATA, cbc)) ||
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_CONNECTTIMEOUT,
+ ((long) TIMEOUTS_VAL))) ||
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_HTTP_VERSION,
+ CURL_HTTP_VERSION_1_1)) ||
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_TIMEOUT,
+ ((long) TIMEOUTS_VAL))) ||
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_ERRORBUFFER,
+ libcurl_errbuf)) ||
+ /* (CURLE_OK != curl_easy_setopt (c, CURLOPT_VERBOSE, 1L)) || */
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_FAILONERROR, 0L)) ||
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_HTTPHEADER, curl_headers)) ||
+#if CURL_AT_LEAST_VERSION (7, 19, 4)
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_PROTOCOLS, CURLPROTO_HTTP)) ||
+#endif /* CURL_AT_LEAST_VERSION (7, 19, 4) */
+#if CURL_AT_LEAST_VERSION (7, 45, 0)
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_DEFAULT_PROTOCOL, "http")) ||
+#endif /* CURL_AT_LEAST_VERSION (7, 45, 0) */
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_PORT, ((long) port))) ||
+ (CURLE_OK != curl_easy_setopt (c, CURLOPT_URL, url)))
+ libcurlErrorExitDesc ("curl_easy_setopt() failed");
+ return c;
+}
+
+
+static CURLcode
+performQueryExternal (struct MHD_Daemon *d, CURL *c)
+{
+ CURLM *multi;
+ time_t start;
+ struct timeval tv;
+ CURLcode ret;
+
+ ret = CURLE_FAILED_INIT; /* will be replaced with real result */
+ multi = NULL;
+ multi = curl_multi_init ();
+ if (multi == NULL)
+ libcurlErrorExitDesc ("curl_multi_init() failed");
+ if (CURLM_OK != curl_multi_add_handle (multi, c))
+ libcurlErrorExitDesc ("curl_multi_add_handle() failed");
+
+ start = time (NULL);
+ while (time (NULL) - start <= TIMEOUTS_VAL)
+ {
+ fd_set rs;
+ fd_set ws;
+ fd_set es;
+ MHD_socket maxMhdSk;
+ int maxCurlSk;
+ int running;
+
+ maxMhdSk = MHD_INVALID_SOCKET;
+ maxCurlSk = -1;
+ FD_ZERO (&rs);
+ FD_ZERO (&ws);
+ FD_ZERO (&es);
+ if (NULL != multi)
+ {
+ curl_multi_perform (multi, &running);
+ if (0 == running)
+ {
+ struct CURLMsg *msg;
+ int msgLeft;
+ int totalMsgs = 0;
+ do
+ {
+ msg = curl_multi_info_read (multi, &msgLeft);
+ if (NULL == msg)
+ libcurlErrorExitDesc ("curl_multi_info_read() failed");
+ totalMsgs++;
+ if (CURLMSG_DONE == msg->msg)
+ ret = msg->data.result;
+ } while (msgLeft > 0);
+ if (1 != totalMsgs)
+ {
+ fprintf (stderr,
+ "curl_multi_info_read returned wrong "
+ "number of results (%d).\n",
+ totalMsgs);
+ externalErrorExit ();
+ }
+ curl_multi_remove_handle (multi, c);
+ curl_multi_cleanup (multi);
+ multi = NULL;
+ }
+ else
+ {
+ if (CURLM_OK != curl_multi_fdset (multi, &rs, &ws, &es, &maxCurlSk))
+ libcurlErrorExitDesc ("curl_multi_fdset() failed");
+ }
+ }
+ if (NULL == multi)
+ { /* libcurl has finished, check whether MHD still needs to perform
cleanup */
+ if (0 != MHD_get_timeout64s (d))
+ break; /* MHD finished as well */
+ }
+ if (MHD_YES != MHD_get_fdset (d, &rs, &ws, &es, &maxMhdSk))
+ mhdErrorExitDesc ("MHD_get_fdset() failed");
+ tv.tv_sec = 0;
+ tv.tv_usec = 200000;
+#ifdef MHD_POSIX_SOCKETS
+ if (maxMhdSk > maxCurlSk)
+ maxCurlSk = maxMhdSk;
+#endif /* MHD_POSIX_SOCKETS */
+ if (-1 == select (maxCurlSk + 1, &rs, &ws, &es, &tv))
+ {
+#ifdef MHD_POSIX_SOCKETS
+ if (EINTR != errno)
+ externalErrorExitDesc ("Unexpected select() error");
+#else
+ if ((WSAEINVAL != WSAGetLastError ()) ||
+ (0 != rs.fd_count) || (0 != ws.fd_count) || (0 != es.fd_count) )
+ externalErrorExitDesc ("Unexpected select() error");
+ Sleep (200);
+#endif
+ }
+ if (MHD_YES != MHD_run_from_select (d, &rs, &ws, &es))
+ mhdErrorExitDesc ("MHD_run_from_select() failed");
+ }
+
+ return ret;
+}
+
+
+/**
+ * Check request result
+ * @param curl_code the CURL easy return code
+ * @param pcbc the pointer struct CBC
+ * @return non-zero if success, zero if failed
+ */
+static unsigned int
+check_result (CURLcode curl_code, CURL *c, struct CBC *pcbc)
+{
+ long code;
+ if (CURLE_OK != curl_easy_getinfo (c, CURLINFO_RESPONSE_CODE, &code))
+ libcurlErrorExit ();
+
+ if (401 != code)
+ {
+ fprintf (stderr, "Request returned wrong code: %ld.\n",
+ code);
+ return 0;
+ }
+
+ if (CURLE_OK != curl_code)
+ {
+ fflush (stdout);
+ if (0 != libcurl_errbuf[0])
+ fprintf (stderr, "Request failed. "
+ "libcurl error: '%s'.\n"
+ "libcurl error description: '%s'.\n",
+ curl_easy_strerror (curl_code),
+ libcurl_errbuf);
+ else
+ fprintf (stderr, "Request failed. "
+ "libcurl error: '%s'.\n",
+ curl_easy_strerror (curl_code));
+ fflush (stderr);
+ return 0;
+ }
+
+ if (pcbc->pos != strlen (DENIED))
+ {
+ fprintf (stderr, "Got %u bytes ('%.*s'), expected %u bytes. ",
+ (unsigned) pcbc->pos, (int) pcbc->pos, pcbc->buf,
+ (unsigned) strlen (DENIED));
+ mhdErrorExitDesc ("Wrong returned data length");
+ }
+ if (0 != memcmp (DENIED, pcbc->buf, pcbc->pos))
+ {
+ fprintf (stderr, "Got invalid response '%.*s'. ",
+ (int) pcbc->pos, pcbc->buf);
+ mhdErrorExitDesc ("Wrong returned data");
+ }
+ return 1;
+}
+
+
+static unsigned int
+testDigestAuthEmu (void)
+{
+ struct MHD_Daemon *d;
+ uint16_t port;
+ struct CBC cbc;
+ char buf[2048];
+ CURL *c;
+ int failed = 0;
+
+ if (MHD_NO != MHD_is_feature_supported (MHD_FEATURE_AUTODETECT_BIND_PORT))
+ port = 0;
+ else
+ port = 4210;
+
+ d = MHD_start_daemon (MHD_USE_ERROR_LOG,
+ port, NULL, NULL,
+ &ahc_echo, NULL,
+ MHD_OPTION_END);
+ if (d == NULL)
+ return 1;
+ if (0 == port)
+ {
+ const union MHD_DaemonInfo *dinfo;
+
+ dinfo = MHD_get_daemon_info (d,
+ MHD_DAEMON_INFO_BIND_PORT);
+ if ( (NULL == dinfo) ||
+ (0 == dinfo->port) )
+ mhdErrorExitDesc ("MHD_get_daemon_info() failed");
+ port = (uint16_t) dinfo->port;
+ }
+
+ /* First request */
+ cbc.buf = buf;
+ cbc.size = sizeof (buf);
+ cbc.pos = 0;
+ memset (cbc.buf, 0, cbc.size);
+ c = setupCURL (&cbc, port);
+ if (check_result (performQueryExternal (d, c), c, &cbc))
+ {
+ if (verbose)
+ printf ("Got expected response.\n");
+ }
+ else
+ {
+ fprintf (stderr, "Request FAILED.\n");
+ failed = 1;
+ }
+ curl_easy_cleanup (c);
+
+ MHD_stop_daemon (d);
+ return failed ? 1 : 0;
+}
+
+
+int
+main (int argc, char *const *argv)
+{
+ unsigned int errorCount = 0;
+ (void) argc; (void) argv; /* Unused. Silent compiler warning. */
+
+ verbose = ! (has_param (argc, argv, "-q") ||
+ has_param (argc, argv, "--quiet") ||
+ has_param (argc, argv, "-s") ||
+ has_param (argc, argv, "--silent"));
+ oldapi = has_in_name (argv[0], "_oldapi");
+ test_global_init ();
+
+ errorCount += testDigestAuthEmu ();
+ if (errorCount != 0)
+ fprintf (stderr, "Error (code: %u)\n", errorCount);
+ test_global_cleanup ();
+ return (0 == errorCount) ? 0 : 1; /* 0 == pass */
+}
--
To stop receiving notification emails like this one, please contact
gnunet@gnunet.org.
- [libmicrohttpd] 03/14: digestauth: added small helper function to simplify the code, (continued)
- [libmicrohttpd] 03/14: digestauth: added small helper function to simplify the code, gnunet, 2022/07/21
- [libmicrohttpd] 06/14: digest_auth_check(): removed one more large local variable, gnunet, 2022/07/21
- [libmicrohttpd] 07/14: digest calculations: further simplified code, removed some local variables, gnunet, 2022/07/21
- [libmicrohttpd] 08/14: digestauth: removed usage of variable-length arrays, gnunet, 2022/07/21
- [libmicrohttpd] 11/14: digestauth: fixed username extraction with the new API, gnunet, 2022/07/21
- [libmicrohttpd] 10/14: digest_auth_check(): updated the order of parameters check, gnunet, 2022/07/21
- [libmicrohttpd] 12/14: digestauth: do not allocate extra space for extended notation, gnunet, 2022/07/21
- [libmicrohttpd] 05/14: digestauth: added sanity check for digest macros, gnunet, 2022/07/21
- [libmicrohttpd] 09/14: digest_auth_check(): added support for username in extended notation, gnunet, 2022/07/21
- [libmicrohttpd] 13/14: digestauth: added support for extended notation for old API, gnunet, 2022/07/21
- [libmicrohttpd] 14/14: Added test for Digest Auth with username in extended notation,
gnunet <=