libzmq/tests/test_security_plain.cpp

/*
    Copyright (c) 2007-2014 Contributors as noted in the AUTHORS file

    This file is part of 0MQ.

    0MQ is free software; you can redistribute it and/or modify it under
    the terms of the GNU Lesser General Public License as published by
    the Free Software Foundation; either version 3 of the License, or
    (at your option) any later version.

    0MQ is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    GNU Lesser General Public License for more details.

    You should have received a copy of the GNU Lesser General Public License
    along with this program.  If not, see <http://www.gnu.org/licenses/>.
*/

#include "testutil.hpp"

static void
zap_handler (void *ctx)
{
    //  Create and bind ZAP socket
    void *zap = zmq_socket (ctx, ZMQ_REP);
    assert (zap);
    int rc = zmq_bind (zap, "inproc://zeromq.zap.01");
    assert (rc == 0);

    //  Process ZAP requests forever
    while (true) {
        char *version = s_recv (zap);
        if (!version)
            break;          //  Terminating
        char *sequence = s_recv (zap);
        char *domain = s_recv (zap);
        char *address = s_recv (zap);
        char *identity = s_recv (zap);
        char *mechanism = s_recv (zap);
        char *username = s_recv (zap);
        char *password = s_recv (zap);

        assert (streq (version, "1.0"));
        assert (streq (mechanism, "PLAIN"));
        assert (streq (identity, "IDENT"));

        s_sendmore (zap, version);
        s_sendmore (zap, sequence);
        if (streq (username, "admin")
        &&  streq (password, "password")) {
            s_sendmore (zap, "200");
            s_sendmore (zap, "OK");
            s_sendmore (zap, "anonymous");
            s_send (zap, "");
        }
        else {
            s_sendmore (zap, "400");
            s_sendmore (zap, "Invalid username or password");
            s_sendmore (zap, "");
            s_send (zap, "");
        }
        free (version);
        free (sequence);
        free (domain);
        free (address);
        free (identity);
        free (mechanism);
        free (username);
        free (password);
    }
    rc = zmq_close (zap);
    assert (rc == 0);
}

int main (void)
{
    setup_test_environment();
    void *ctx = zmq_ctx_new ();
    assert (ctx);

    //  Spawn ZAP handler
    void *zap_thread = zmq_threadstart (&zap_handler, ctx);

    //  Server socket will accept connections
    void *server = zmq_socket (ctx, ZMQ_DEALER);
    assert (server);
    int rc = zmq_setsockopt (server, ZMQ_IDENTITY, "IDENT", 6);
    assert (rc == 0);
    int as_server = 1;
    rc = zmq_setsockopt (server, ZMQ_PLAIN_SERVER, &as_server, sizeof (int));
    assert (rc == 0);
    rc = zmq_bind (server, "tcp://127.0.0.1:9998");
    assert (rc == 0);

    char username [256];
    char password [256];

    //  Check PLAIN security with correct username/password
    void *client = zmq_socket (ctx, ZMQ_DEALER);
    assert (client);
    strcpy (username, "admin");
    rc = zmq_setsockopt (client, ZMQ_PLAIN_USERNAME, username, strlen (username));
    assert (rc == 0);
    strcpy (password, "password");
    rc = zmq_setsockopt (client, ZMQ_PLAIN_PASSWORD, password, strlen (password));
    assert (rc == 0);
    rc = zmq_connect (client, "tcp://localhost:9998");
    assert (rc == 0);
    bounce (server, client);
    rc = zmq_close (client);
    assert (rc == 0);

    //  Check PLAIN security with badly configured client (as_server)
    //  This will be caught by the plain_server class, not passed to ZAP
    client = zmq_socket (ctx, ZMQ_DEALER);
    assert (client);
    as_server = 1;
    rc = zmq_setsockopt (client, ZMQ_PLAIN_SERVER, &as_server, sizeof (int));
    assert (rc == 0);
    rc = zmq_connect (client, "tcp://localhost:9998");
    assert (rc == 0);
    expect_bounce_fail (server, client);
    close_zero_linger (client);

    //  Check PLAIN security -- failed authentication
    client = zmq_socket (ctx, ZMQ_DEALER);
    assert (client);
    strcpy (username, "wronguser");
    strcpy (password, "wrongpass");
    rc = zmq_setsockopt (client, ZMQ_PLAIN_USERNAME, username, strlen (username));
    assert (rc == 0);
    rc = zmq_setsockopt (client, ZMQ_PLAIN_PASSWORD, password, strlen (password));
    assert (rc == 0);
    rc = zmq_connect (client, "tcp://localhost:9998");
    assert (rc == 0);
    expect_bounce_fail (server, client);
    close_zero_linger (client);

    //  Shutdown
    rc = zmq_close (server);
    assert (rc == 0);
    rc = zmq_ctx_term (ctx);
    assert (rc == 0);

    //  Wait until ZAP handler terminates
    zmq_threadclose (zap_thread);

    return 0;
}
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`/*`
Updated copyright statements for 2014 2014-01-02 12:00:57 +01:00			`Copyright (c) 2007-2014 Contributors as noted in the AUTHORS file`
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00
			`This file is part of 0MQ.`

			`0MQ is free software; you can redistribute it and/or modify it under`
			`the terms of the GNU Lesser General Public License as published by`
			`the Free Software Foundation; either version 3 of the License, or`
			`(at your option) any later version.`

			`0MQ is distributed in the hope that it will be useful,`
			`but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`GNU Lesser General Public License for more details.`

			`You should have received a copy of the GNU Lesser General Public License`
			`along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*/`

			`#include "testutil.hpp"`

Added ZMQ_ZAP_DOMAIN socket option * This is passed to the ZAP handler in the 'domain' field * If not set, or empty, then NULL security does not call the ZAP handler * This resolves the phantom ZAP request syndrome seen with sockets where security was never intended (e.g. in test cases) * This means if you install a ZAP handler, it will not get any requests for new connections until you take some explicit action, which can be setting a username/password for PLAIN, a key for CURVE, or the domain for NULL. 2013-09-09 20:40:34 +02:00			`static void`
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`zap_handler (void *ctx)`
			`{`
			`// Create and bind ZAP socket`
			`void *zap = zmq_socket (ctx, ZMQ_REP);`
			`assert (zap);`
			`int rc = zmq_bind (zap, "inproc://zeromq.zap.01");`
			`assert (rc == 0);`

			`// Process ZAP requests forever`
			`while (true) {`
			`char *version = s_recv (zap);`
			`if (!version)`
			`break; // Terminating`
			`char *sequence = s_recv (zap);`
			`char *domain = s_recv (zap);`
			`char *address = s_recv (zap);`
			`char *identity = s_recv (zap);`
			`char *mechanism = s_recv (zap);`
			`char *username = s_recv (zap);`
			`char *password = s_recv (zap);`
Added ZMQ_ZAP_DOMAIN socket option * This is passed to the ZAP handler in the 'domain' field * If not set, or empty, then NULL security does not call the ZAP handler * This resolves the phantom ZAP request syndrome seen with sockets where security was never intended (e.g. in test cases) * This means if you install a ZAP handler, it will not get any requests for new connections until you take some explicit action, which can be setting a username/password for PLAIN, a key for CURVE, or the domain for NULL. 2013-09-09 20:40:34 +02:00
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`assert (streq (version, "1.0"));`
			`assert (streq (mechanism, "PLAIN"));`
			`assert (streq (identity, "IDENT"));`

			`s_sendmore (zap, version);`
			`s_sendmore (zap, sequence);`
			`if (streq (username, "admin")`
			`&& streq (password, "password")) {`
			`s_sendmore (zap, "200");`
			`s_sendmore (zap, "OK");`
			`s_sendmore (zap, "anonymous");`
			`s_send (zap, "");`
			`}`
			`else {`
			`s_sendmore (zap, "400");`
			`s_sendmore (zap, "Invalid username or password");`
			`s_sendmore (zap, "");`
			`s_send (zap, "");`
			`}`
			`free (version);`
			`free (sequence);`
			`free (domain);`
			`free (address);`
			`free (identity);`
			`free (mechanism);`
			`free (username);`
			`free (password);`
			`}`
			`rc = zmq_close (zap);`
			`assert (rc == 0);`
			`}`

			`int main (void)`
			`{`
			`setup_test_environment();`
			`void *ctx = zmq_ctx_new ();`
			`assert (ctx);`
Added ZMQ_ZAP_DOMAIN socket option * This is passed to the ZAP handler in the 'domain' field * If not set, or empty, then NULL security does not call the ZAP handler * This resolves the phantom ZAP request syndrome seen with sockets where security was never intended (e.g. in test cases) * This means if you install a ZAP handler, it will not get any requests for new connections until you take some explicit action, which can be setting a username/password for PLAIN, a key for CURVE, or the domain for NULL. 2013-09-09 20:40:34 +02:00
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`// Spawn ZAP handler`
			`void *zap_thread = zmq_threadstart (&zap_handler, ctx);`

			`// Server socket will accept connections`
			`void *server = zmq_socket (ctx, ZMQ_DEALER);`
			`assert (server);`
			`int rc = zmq_setsockopt (server, ZMQ_IDENTITY, "IDENT", 6);`
			`assert (rc == 0);`
Revert "oblige the application to explicitely set the node type for PLAIN" This reverts commit 1206f4572b4b3bb405a14cc60605b75d53b819a0. 2013-09-17 14:05:41 +02:00			`int as_server = 1;`
			`rc = zmq_setsockopt (server, ZMQ_PLAIN_SERVER, &as_server, sizeof (int));`
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`assert (rc == 0);`
tests: don't listen on public ports 2013-09-18 12:58:19 +02:00			`rc = zmq_bind (server, "tcp://127.0.0.1:9998");`
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`assert (rc == 0);`
Added ZMQ_ZAP_DOMAIN socket option * This is passed to the ZAP handler in the 'domain' field * If not set, or empty, then NULL security does not call the ZAP handler * This resolves the phantom ZAP request syndrome seen with sockets where security was never intended (e.g. in test cases) * This means if you install a ZAP handler, it will not get any requests for new connections until you take some explicit action, which can be setting a username/password for PLAIN, a key for CURVE, or the domain for NULL. 2013-09-09 20:40:34 +02:00
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`char username [256];`
			`char password [256];`
Added ZMQ_ZAP_DOMAIN socket option * This is passed to the ZAP handler in the 'domain' field * If not set, or empty, then NULL security does not call the ZAP handler * This resolves the phantom ZAP request syndrome seen with sockets where security was never intended (e.g. in test cases) * This means if you install a ZAP handler, it will not get any requests for new connections until you take some explicit action, which can be setting a username/password for PLAIN, a key for CURVE, or the domain for NULL. 2013-09-09 20:40:34 +02:00
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`// Check PLAIN security with correct username/password`
			`void *client = zmq_socket (ctx, ZMQ_DEALER);`
			`assert (client);`
			`strcpy (username, "admin");`
			`rc = zmq_setsockopt (client, ZMQ_PLAIN_USERNAME, username, strlen (username));`
			`assert (rc == 0);`
			`strcpy (password, "password");`
			`rc = zmq_setsockopt (client, ZMQ_PLAIN_PASSWORD, password, strlen (password));`
			`assert (rc == 0);`
			`rc = zmq_connect (client, "tcp://localhost:9998");`
			`assert (rc == 0);`
			`bounce (server, client);`
			`rc = zmq_close (client);`
			`assert (rc == 0);`

Fixed ZAP authentication - if ZAP server returns anything except 200, connection is closed - all security tests now pass correctly - test_security_curve now does proper client key authentication using test key - test_security_plain now does proper password authentication 2013-09-02 18:21:36 +02:00			`// Check PLAIN security with badly configured client (as_server)`
			`// This will be caught by the plain_server class, not passed to ZAP`
			`client = zmq_socket (ctx, ZMQ_DEALER);`
			`assert (client);`
			`as_server = 1;`
Revert "oblige the application to explicitely set the node type for PLAIN" This reverts commit 1206f4572b4b3bb405a14cc60605b75d53b819a0. 2013-09-17 14:05:41 +02:00			`rc = zmq_setsockopt (client, ZMQ_PLAIN_SERVER, &as_server, sizeof (int));`
Fixed ZAP authentication - if ZAP server returns anything except 200, connection is closed - all security tests now pass correctly - test_security_curve now does proper client key authentication using test key - test_security_plain now does proper password authentication 2013-09-02 18:21:36 +02:00			`assert (rc == 0);`
			`rc = zmq_connect (client, "tcp://localhost:9998");`
			`assert (rc == 0);`
			`expect_bounce_fail (server, client);`
			`close_zero_linger (client);`
Added ZMQ_ZAP_DOMAIN socket option * This is passed to the ZAP handler in the 'domain' field * If not set, or empty, then NULL security does not call the ZAP handler * This resolves the phantom ZAP request syndrome seen with sockets where security was never intended (e.g. in test cases) * This means if you install a ZAP handler, it will not get any requests for new connections until you take some explicit action, which can be setting a username/password for PLAIN, a key for CURVE, or the domain for NULL. 2013-09-09 20:40:34 +02:00
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`// Check PLAIN security -- failed authentication`
			`client = zmq_socket (ctx, ZMQ_DEALER);`
			`assert (client);`
			`strcpy (username, "wronguser");`
			`strcpy (password, "wrongpass");`
			`rc = zmq_setsockopt (client, ZMQ_PLAIN_USERNAME, username, strlen (username));`
			`assert (rc == 0);`
			`rc = zmq_setsockopt (client, ZMQ_PLAIN_PASSWORD, password, strlen (password));`
			`assert (rc == 0);`
			`rc = zmq_connect (client, "tcp://localhost:9998");`
			`assert (rc == 0);`
Fixed ZAP authentication - if ZAP server returns anything except 200, connection is closed - all security tests now pass correctly - test_security_curve now does proper client key authentication using test key - test_security_plain now does proper password authentication 2013-09-02 18:21:36 +02:00			`expect_bounce_fail (server, client);`
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`close_zero_linger (client);`

			`// Shutdown`
			`rc = zmq_close (server);`
			`assert (rc == 0);`
			`rc = zmq_ctx_term (ctx);`
			`assert (rc == 0);`
Added ZMQ_ZAP_DOMAIN socket option * This is passed to the ZAP handler in the 'domain' field * If not set, or empty, then NULL security does not call the ZAP handler * This resolves the phantom ZAP request syndrome seen with sockets where security was never intended (e.g. in test cases) * This means if you install a ZAP handler, it will not get any requests for new connections until you take some explicit action, which can be setting a username/password for PLAIN, a key for CURVE, or the domain for NULL. 2013-09-09 20:40:34 +02:00
Fixed 'make check' failures - Split off NULL security check from PLAIN - Cleaned up test_linger code a little - Got all tests to pass, added TODOs for outstanding issues - Added ZAP authentication for NULL test case - NULL mechanism was not passing server identity - fixed - cleaned up test_security_plain and removed option double-checks (made code ugly) - lowered timeout on expect_bounce_fail to 150 msec to speed up checks - removed all sleeps from test_fork and simplified code (it still passes :-) 2013-09-02 17:22:24 +02:00			`// Wait until ZAP handler terminates`
			`zmq_threadclose (zap_thread);`

			`return 0;`
			`}`