suricata.8.0.0/tests_2reputation_8c_source.html

/* Copyright (C) 2019 Open Information Security Foundation

 *

 * You can copy, redistribute or modify this Program under the terms of

 * the GNU General Public License version 2 as published by the Free

 * Software Foundation.

 *

 * This program is distributed in the hope that it will be useful,

 * but WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 * GNU General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * version 2 along with this program; if not, write to the Free Software

 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA

 * 02110-1301, USA.

 */


/**

 *

 * \author Giuseppe Longo <giuseppe@glongo.it>

 *

 */


#include "conf-yaml-loader.h"

#include "detect-engine.h"

#include "stream-tcp-private.h"

#include "stream-tcp-reassemble.h"

#include "stream-tcp.h"

#include "util-unittest-helper.h"


#define TEST_INIT                                                       \

    DetectEngineCtx *de_ctx = DetectEngineCtxInit();                    \

    FAIL_IF(de_ctx == NULL);                                            \

    SRepInit(de_ctx);                                                   \

                                                                        \

    Address a;                                                          \

    uint8_t cat = 0, value = 0;


#define TEST_INIT_WITH_PACKET_IPV6(src, dst)                                                       \

    uint8_t *buf = (uint8_t *)"Hi all!";                                                           \

    uint16_t buflen = strlen((char *)buf);                                                         \

    Packet *p = UTHBuildPacketIPV6SrcDst((uint8_t *)buf, buflen, IPPROTO_TCP, (src), (dst));       \

    FAIL_IF(p == NULL);                                                                            \

    TEST_INIT


#define TEST_INIT_WITH_PACKET(ip)                                       \

    uint8_t *buf = (uint8_t *)"Hi all!";                                \

    uint16_t buflen = strlen((char *)buf);                              \

    Packet *p = UTHBuildPacket((uint8_t *)buf, buflen, IPPROTO_TCP);    \

    FAIL_IF(p == NULL);                                                 \

    p->src.addr_data32[0] = UTHSetIPv4Address(ip);                      \

    TEST_INIT


#define TEST_CLEANUP                                                    \

    DetectEngineCtxFree(de_ctx);


#define TEST_CLEANUP_WITH_PACKET                                        \

    UTHFreePacket(p);                                                   \

    TEST_CLEANUP


static int SRepTest01(void)

{

    TEST_INIT;


    char ipstr[16];

    char str[] = "1.2.3.4,1,2";

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str, &a, &cat, &value) != 0);

    PrintInet(AF_INET, (const void *)&a.address, ipstr, sizeof(ipstr));

    FAIL_IF(strcmp(ipstr, "1.2.3.4") != 0);

    FAIL_IF(cat != 1);

    FAIL_IF(value != 2);


    TEST_CLEANUP;

    PASS;

}


static int SRepTest02(void)

{

    TEST_INIT;


    char str[] = "1.1.1.1,";

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str, &a, &cat, &value) == 0);


    TEST_CLEANUP;

    PASS;

}


static int SRepTest03(void)

{

    char str[] = "1,Shortname,Long Name";

    uint8_t cat = 0;

    char shortname[SREP_SHORTNAME_LEN];


    FAIL_IF(SRepCatSplitLine(str, &cat, shortname, sizeof(shortname)) != 0);

    FAIL_IF(strcmp(shortname, "Shortname") != 0);

    FAIL_IF(cat != 1);


    PASS;

}


static int SRepTest04(void)

{

    TEST_INIT;


    char str[] = "10.0.0.0/16,1,2";

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str, &a, &cat, &value) != 1);


    TEST_CLEANUP;

    PASS;

}


static int SRepTest05(void)

{

    TEST_INIT_WITH_PACKET("10.0.0.1");


    char str[] = "10.0.0.0/16,1,20";

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str, &a, &cat, &value) != 1);


    cat = 1;

    FAIL_IF(SRepCIDRGetIPRepSrc(de_ctx->srepCIDR_ctx, p, cat, 0) != 20);


    TEST_CLEANUP_WITH_PACKET;

    PASS;

}


static int SRepTest06(void)

{

    TEST_INIT_WITH_PACKET("192.168.0.1");


    char str1[] = "0.0.0.0/0,1,10\n";

    char str2[] = "192.168.0.0/16,2,127";


    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str1, &a, &cat, &value) != 1);

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str2, &a, &cat, &value) != 1);


    cat = 1;

    FAIL_IF(SRepCIDRGetIPRepSrc(de_ctx->srepCIDR_ctx, p, cat, 0) != 10);


    TEST_CLEANUP_WITH_PACKET;

    PASS;

}


static int SRepTest07(void) {

    TEST_INIT;


    char str[] = "2000:0000:0000:0000:0000:0000:0000:0001,";

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str, &a, &cat, &value) == 0);


    TEST_CLEANUP;

    PASS;

}


static int SRepTest08(void)

{

    TEST_INIT_WITH_PACKET_IPV6("2000:0000:0000:0000:0000:0000:0000:0001", "FFFF::1");


    char str1[] = "0.0.0.0/0,1,10\n";

    char str2[] = "192.168.0.0/16,2,127\n";

    char str3[] = "2000::/3,1,10\n";

    char str4[] = "FFFF::/127,2,127\n";

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str1, &a, &cat, &value) != 1);

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str2, &a, &cat, &value) != 1);

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str3, &a, &cat, &value) != 1);

    FAIL_IF(SRepSplitLine(de_ctx->srepCIDR_ctx, str4, &a, &cat, &value) != 1);


    cat = 1;

    FAIL_IF(SRepCIDRGetIPRepSrc(de_ctx->srepCIDR_ctx, p, cat, 0) != 10);


    TEST_CLEANUP_WITH_PACKET;

    PASS;

}


/** Register the following unittests for the Reputation module */


void SCReputationRegisterTests(void)

{

    UtRegisterTest("SRepTest01", SRepTest01);

    UtRegisterTest("SRepTest02", SRepTest02);

    UtRegisterTest("SRepTest03", SRepTest03);

    UtRegisterTest("SRepTest04", SRepTest04);

    UtRegisterTest("SRepTest05", SRepTest05);

    UtRegisterTest("SRepTest06", SRepTest06);

    UtRegisterTest("SRepTest07", SRepTest07);

    UtRegisterTest("SRepTest08", SRepTest08);

}


conf-yaml-loader.h

detect-engine.h

de_ctx
DetectEngineCtx * de_ctx
Definition fuzz_siginit.c:18

UtRegisterTest
void UtRegisterTest(const char *name, int(*TestFn)(void))
Register unit test.
Definition util-unittest.c:103

PASS
#define PASS
Pass the test.
Definition util-unittest.h:105

FAIL_IF
#define FAIL_IF(expr)
Fail a test if expression evaluates to true.
Definition util-unittest.h:71

SRepCIDRGetIPRepSrc
int8_t SRepCIDRGetIPRepSrc(SRepCIDRTree *cidr_ctx, Packet *p, uint8_t cat, uint32_t version)
Definition reputation.c:135

SREP_SHORTNAME_LEN
#define SREP_SHORTNAME_LEN
Definition reputation.c:326

stream-tcp-private.h

stream-tcp-reassemble.h

stream-tcp.h

DetectEngineCtx_::srepCIDR_ctx
SRepCIDRTree * srepCIDR_ctx
Definition detect.h:948

str
#define str(s)
Definition suricata-common.h:308

TEST_CLEANUP_WITH_PACKET
#define TEST_CLEANUP_WITH_PACKET
Definition reputation.c:57

TEST_CLEANUP
#define TEST_CLEANUP
Definition reputation.c:54

TEST_INIT_WITH_PACKET
#define TEST_INIT_WITH_PACKET(ip)
Definition reputation.c:46

TEST_INIT_WITH_PACKET_IPV6
#define TEST_INIT_WITH_PACKET_IPV6(src, dst)
Definition reputation.c:39

SCReputationRegisterTests
void SCReputationRegisterTests(void)
Definition reputation.c:174

TEST_INIT
#define TEST_INIT
Definition reputation.c:31

PrintInet
const char * PrintInet(int af, const void *src, char *dst, socklen_t size)
Definition util-print.c:231

util-unittest-helper.h