Tha_14/tomato-testing
1
0
Fork 0
forked from Green-Sky/tomato
Code Pull Requests Actions Packages Releases Activity

Squashed 'external/toxcore/c-toxcore/' changes from 1828c5356..c9cdae001

Browse Source 
c9cdae001 fix(toxav): remove extra copy of video frame on encode
4f6d4546b test: Improve the fake network library.
a2581e700 refactor(toxcore): generate `Friend_Request` and `Dht_Nodes_Response`
2aaa11770 refactor(toxcore): use Tox_Memory in generated events
5c367452b test(toxcore): fix incorrect mutex in tox_scenario_get_time
8f92e710f perf: Add a timed limit of number of cookie requests.
695b6417a test: Add some more simulated network support.
815ae9ce9 test(toxcore): fix thread-safety in scenario framework
6d85c754e test(toxcore): add unit tests for net_crypto
9c22e79cc test(support): add SimulatedEnvironment for deterministic testing
f34fcb195 chore: Update windows Dockerfile to debian stable (trixie).
ece0e8980 fix(group_moderation): allow validating unsorted sanction list signatures
a4fa754d7 refactor: rename struct Packet to struct Net_Packet
d6f330f85 cleanup: Fix some warnings from coverity.
e206bffa2 fix(group_chats): fix sync packets reverting topics
0e4715598 test: Add new scenario testing framework.
668291f44 refactor(toxcore): decouple Network_Funcs from sockaddr via IP_Port
fc4396cef fix: potential division by zero in toxav and unsafe hex parsing
8e8b352ab refactor: Add nullable annotations to struct members.
7740bb421 refactor: decouple net_crypto from DHT
1936d4296 test: add benchmark for toxav audio and video
46bfdc2df fix: correct printf format specifiers for unsigned integers
REVERT: 1828c5356 fix(toxav): remove extra copy of video frame on encode

git-subtree-dir: external/toxcore/c-toxcore
git-subtree-split: c9cdae001341e701fca980c9bb9febfeb95d2902
This commit is contained in:
Green Sky
2026-01-11 14:42:31 +01:00
parent e95f2cbb1c
commit 565efa4f39
328 changed files with 19057 additions and 13982 deletions
Download Patch File Download Diff File Expand all files Collapse all files

577
toxcore/net_crypto_test.cc Normal file
View File

@@ -0,0 +1,577 @@
#include "net_crypto.h"
#include <gmock/gmock.h>
#include <gtest/gtest.h>
#include <algorithm>
#include <array>
#include <cstring>
#include <functional>
#include <map>
#include <memory>
#include <random>
#include <vector>
#include "../testing/support/public/simulated_environment.hh"
#include "DHT_test_util.hh"
#include "crypto_core.h"
#include "logger.h"
#include "mono_time.h"
#include "net_profile.h"
#include "network.h"
namespace {
using namespace tox::test;
// --- Helper Class ---
template <typename DHTWrapper>
class TestNode {
public:
TestNode(SimulatedEnvironment &env, uint16_t port, bool enable_trace = false)
: dht_wrapper_(env, port)
, net_profile_(netprof_new(dht_wrapper_.logger(), &dht_wrapper_.node().c_memory),
[mem = &dht_wrapper_.node().c_memory](Net_Profile *p) { netprof_kill(mem, p); })
, net_crypto_(nullptr, [](Net_Crypto *c) { kill_net_crypto(c); })
, trace_enabled_(enable_trace)
{
// Setup Logger to stderr
logger_callback_log(
dht_wrapper_.logger(),
[](void *context, Logger_Level level, const char *file, uint32_t line, const char *func,
const char *message, void *) {
auto *self = static_cast<TestNode *>(context);
if (self->trace_enabled_ || level >= LOGGER_LEVEL_DEBUG) {
fprintf(stderr, "[%d] %s:%u %s: %s\n", level, file, line, func, message);
}
},
this, nullptr);
// 3. Setup NetCrypto
TCP_Proxy_Info proxy_info = {{0}, TCP_PROXY_NONE};
net_crypto_.reset(new_net_crypto(dht_wrapper_.logger(), &dht_wrapper_.node().c_memory,
&dht_wrapper_.node().c_random, &dht_wrapper_.node().c_network, dht_wrapper_.mono_time(),
dht_wrapper_.networking(), dht_wrapper_.get_dht(), &DHTWrapper::funcs, &proxy_info,
net_profile_.get()));
// 4. Register Callbacks
new_connection_handler(net_crypto_.get(), &TestNode::static_new_connection_cb, this);
}
Net_Crypto *get_net_crypto() { return net_crypto_.get(); }
const uint8_t *dht_public_key() const { return dht_wrapper_.dht_public_key(); }
const uint8_t *real_public_key() const { return nc_get_self_public_key(net_crypto_.get()); }
int dht_computation_count() const { return dht_wrapper_.dht_computation_count(); }
const Memory *get_memory() const { return &dht_wrapper_.node().c_memory; }
IP_Port get_ip_port() const { return dht_wrapper_.get_ip_port(); }
void poll()
{
dht_wrapper_.poll();
do_net_crypto(net_crypto_.get(), nullptr);
}
// -- High Level Operations --
// Initiates a connection to 'other'. Returns the connection ID.
template <typename OtherDHTWrapper>
int connect_to(TestNode<OtherDHTWrapper> &other)
{
int id = new_crypto_connection(
net_crypto_.get(), other.real_public_key(), other.dht_public_key());
if (id == -1)
return -1;
// "Cheating" by telling net_crypto the direct IP immediately
IP_Port addr = other.get_ip_port();
set_direct_ip_port(net_crypto_.get(), id, &addr, true);
// Setup monitoring for this connection
setup_connection_callbacks(id);
return id;
}
// Sends data to the connected peer (assuming only 1 for simplicity or last connected)
bool send_data(int conn_id, const std::vector<uint8_t> &data)
{
if (data.empty())
return false;
return write_cryptpacket(net_crypto_.get(), conn_id, data.data(), data.size(), false) != -1;
}
void send_direct_packet(const IP_Port &dest, const std::vector<uint8_t> &data)
{
if (data.empty())
return;
sendpacket(dht_wrapper_.networking(), &dest, data.data(), data.size());
}
// -- Observability --
bool is_connected(int conn_id) const
{
if (conn_id < 0 || conn_id >= static_cast<int>(connections_.size()))
return false;
return connections_[conn_id].connected;
}
const std::vector<uint8_t> &get_last_received_data(int conn_id) const
{
if (conn_id < 0 || conn_id >= static_cast<int>(connections_.size()))
return empty_vector_;
return connections_[conn_id].received_data;
}
// Helper to get the ID assigned to a peer by Public Key (for the acceptor side)
int get_connection_id_by_pk(const uint8_t *pk) { return last_accepted_id_; }
~TestNode();
private:
DHTWrapper dht_wrapper_;
struct ConnectionState {
bool connected = false;
std::vector<uint8_t> received_data;
};
// We map connection IDs to state. connection IDs are small ints.
std::vector<ConnectionState> connections_{128};
int last_accepted_id_ = -1;
std::vector<uint8_t> empty_vector_;
void setup_connection_callbacks(int id)
{
if (id >= static_cast<int>(connections_.size()))
connections_.resize(id + 1);
connection_status_handler(
net_crypto_.get(), id, &TestNode::static_connection_status_cb, this, id);
connection_data_handler(
net_crypto_.get(), id, &TestNode::static_connection_data_cb, this, id);
}
// -- Static Callbacks --
static int static_new_connection_cb(void *object, const New_Connection *n_c)
{
auto *self = static_cast<TestNode *>(object);
int id = accept_crypto_connection(self->net_crypto_.get(), n_c);
if (id != -1) {
self->last_accepted_id_ = id;
self->setup_connection_callbacks(id);
}
return id; // Return ID on success
}
static int static_connection_status_cb(void *object, int id, bool status, void *userdata)
{
auto *self = static_cast<TestNode *>(object);
if (id < static_cast<int>(self->connections_.size())) {
self->connections_[id].connected = status;
}
return 0;
}
static int static_connection_data_cb(
void *object, int id, const uint8_t *data, uint16_t length, void *userdata)
{
auto *self = static_cast<TestNode *>(object);
if (id < static_cast<int>(self->connections_.size())) {
self->connections_[id].received_data.assign(data, data + length);
}
return 0;
}
// Use std::function for the deleter to allow capturing memory pointer
std::unique_ptr<Net_Profile, std::function<void(Net_Profile *)>> net_profile_;
std::unique_ptr<Net_Crypto, void (*)(Net_Crypto *)> net_crypto_;
bool trace_enabled_ = false;
};
template <typename DHTWrapper>
TestNode<DHTWrapper>::~TestNode() = default;
using NetCryptoNode = TestNode<WrappedMockDHT>;
using RealDHTNode = TestNode<WrappedDHT>;
class NetCryptoTest : public ::testing::Test {
protected:
SimulatedEnvironment env;
};
TEST_F(NetCryptoTest, EndToEndDataExchange)
{
NetCryptoNode alice(env, 33445);
NetCryptoNode bob(env, 33446);
// 1. Alice initiates connection to Bob
int alice_conn_id = alice.connect_to(bob);
ASSERT_NE(alice_conn_id, -1);
// 2. Run simulation until connected
auto start = env.clock().current_time_ms();
int bob_conn_id = -1;
bool connected = false;
while ((env.clock().current_time_ms() - start) < 5000) {
alice.poll();
bob.poll();
env.advance_time(10); // 10ms steps
bob_conn_id = bob.get_connection_id_by_pk(alice.real_public_key());
if (alice.is_connected(alice_conn_id) && bob_conn_id != -1
&& bob.is_connected(bob_conn_id)) {
connected = true;
break;
}
}
ASSERT_TRUE(connected) << "Failed to establish connection within timeout";
// 3. Exchange Data
// Packet ID must be in custom range (160+)
std::vector<uint8_t> message = {160, 'H', 'e', 'l', 'l', 'o'};
EXPECT_TRUE(alice.send_data(alice_conn_id, message));
start = env.clock().current_time_ms();
bool data_received = false;
while ((env.clock().current_time_ms() - start) < 1000) {
alice.poll();
bob.poll();
env.advance_time(10);
if (bob.get_last_received_data(bob_conn_id) == message) {
data_received = true;
break;
}
}
EXPECT_TRUE(data_received) << "Bob did not receive the correct data";
}
TEST_F(NetCryptoTest, ConnectionTimeout)
{
NetCryptoNode alice(env, 33445);
NetCryptoNode bob(env, 33446);
// Alice tries to connect to Bob
int alice_conn_id = alice.connect_to(bob);
ASSERT_NE(alice_conn_id, -1);
// Filter: Drop ALL packets from Bob to Alice
env.simulation().net().add_filter([&](tox::test::Packet &p) {
// Drop if destination is Alice (33445)
if (net_ntohs(p.to.port) == 33445) {
return false;
}
return true;
});
// Run simulation for longer than timeout (approx 8-10s)
auto start = env.clock().current_time_ms();
bool timeout_detected = false;
// expect Alice to kill the connection after MAX_NUM_SENDPACKET_TRIES * INTERVAL (8*1s=8s).
//
// Run for 15 seconds to be safe
while ((env.clock().current_time_ms() - start) < 15000) {
alice.poll();
bob.poll();
env.advance_time(100);
bool direct;
if (!crypto_connection_status(alice.get_net_crypto(), alice_conn_id, &direct, nullptr)) {
timeout_detected = true;
break;
}
}
EXPECT_TRUE(timeout_detected) << "Alice should have killed the timed-out connection";
}
TEST_F(NetCryptoTest, DataLossAndRetransmission)
{
bool dropped = false;
NetCryptoNode alice(env, 33445);
NetCryptoNode bob(env, 33446);
int alice_conn_id = alice.connect_to(bob);
ASSERT_NE(alice_conn_id, -1);
// Establish connection
auto start = env.clock().current_time_ms();
int bob_conn_id = -1;
bool connected = false;
while ((env.clock().current_time_ms() - start) < 5000) {
alice.poll();
bob.poll();
env.advance_time(10);
bob_conn_id = bob.get_connection_id_by_pk(alice.real_public_key());
if (alice.is_connected(alice_conn_id) && bob_conn_id != -1
&& bob.is_connected(bob_conn_id)) {
connected = true;
break;
}
}
ASSERT_TRUE(connected);
// Configure network to drop the next packet from Alice
// NET_PACKET_CRYPTO_DATA is 0x1b
// We want to drop the *first* data packet sent.
env.simulation().net().add_filter([&](tox::test::Packet &p) {
if (!dropped && net_ntohs(p.to.port) == 33446 && p.data.size() > 0
&& p.data[0] == NET_PACKET_CRYPTO_DATA) {
dropped = true;
return false; // Drop it
}
return true;
});
std::vector<uint8_t> message = {161, 'R', 'e', 't', 'r', 'y'};
alice.send_data(alice_conn_id, message);
// Alice needs to detect packet loss and retransmit.
// Timeout for retransmission is tricky, it depends on RTT estimation.
// Default RTT is 1s.
start = env.clock().current_time_ms();
bool data_received = false;
while ((env.clock().current_time_ms() - start) < 5000) {
alice.poll();
bob.poll();
env.advance_time(50); // coarser steps
if (bob.get_last_received_data(bob_conn_id) == message) {
data_received = true;
break;
}
}
EXPECT_TRUE(dropped) << "Packet filter failed to target the data packet";
EXPECT_TRUE(data_received) << "Bob failed to receive data after retransmission";
}
TEST_F(NetCryptoTest, CookieRequestCPUExhaustion)
{
NetCryptoNode victim(env, 33445);
NetCryptoNode attacker(env, 33446);
// Cookie Request Packet Length
// From net_crypto.c:
// #define COOKIE_REQUEST_LENGTH (uint16_t)(1 + CRYPTO_PUBLIC_KEY_SIZE + CRYPTO_NONCE_SIZE +
// COOKIE_REQUEST_PLAIN_LENGTH + CRYPTO_MAC_SIZE) 1 + 32 + 24 + (32 * 2 + 8) + 16 = 145
const int TEST_COOKIE_REQUEST_LENGTH = 145;
// Send enough packets to trigger rate limiting
const int NUM_PACKETS = 50;
std::minstd_rand rng(42);
std::uniform_int_distribution<uint8_t> dist;
auto gen = [&]() { return dist(rng); };
for (int i = 0; i < NUM_PACKETS; ++i) {
std::vector<uint8_t> packet(TEST_COOKIE_REQUEST_LENGTH);
packet[0] = NET_PACKET_COOKIE_REQUEST;
// Random public key at offset 1 (size 32)
std::generate(packet.begin() + 1, packet.begin() + 1 + CRYPTO_PUBLIC_KEY_SIZE, gen);
// Fill the rest with random data just to be safe
std::generate(packet.begin() + 1 + CRYPTO_PUBLIC_KEY_SIZE, packet.end(), gen);
attacker.send_direct_packet(victim.get_ip_port(), packet);
// Advance time to allow network delivery
env.advance_time(1);
victim.poll();
}
// Verify that the victim performed some computations (as it must for the first few packets)
// but filtered out the majority of the flood due to rate limiting.
int computations = victim.dht_computation_count();
EXPECT_GT(computations, 0) << "Should handle at least some packets";
EXPECT_LT(computations, NUM_PACKETS) << "Victim performed expensive shared key computations "
"for ALL packets! CPU exhaustion mitigation failed.";
}
TEST_F(NetCryptoTest, CookieRequestRateLimiting)
{
NetCryptoNode victim(env, 33445);
NetCryptoNode attacker(env, 33446);
const int TEST_COOKIE_REQUEST_LENGTH = 145;
std::minstd_rand rng(42);
std::uniform_int_distribution<uint8_t> dist;
auto gen = [&]() { return dist(rng); };
auto send_packet = [&]() {
std::vector<uint8_t> packet(TEST_COOKIE_REQUEST_LENGTH);
packet[0] = NET_PACKET_COOKIE_REQUEST;
std::generate(packet.begin() + 1, packet.begin() + 1 + CRYPTO_PUBLIC_KEY_SIZE, gen);
std::generate(packet.begin() + 1 + CRYPTO_PUBLIC_KEY_SIZE, packet.end(), gen);
attacker.send_direct_packet(victim.get_ip_port(), packet);
env.advance_time(1); // Network delivery
victim.poll();
};
// 1. Initial Burst: Consume all 10 tokens
int initial_computations = victim.dht_computation_count();
for (int i = 0; i < 10; ++i) {
send_packet();
}
int burst_computations = victim.dht_computation_count();
EXPECT_EQ(burst_computations - initial_computations, 10)
<< "Should accept initial burst of 10 packets";
// 2. Verify Limit Reached: 11th packet should be dropped
send_packet();
EXPECT_EQ(victim.dht_computation_count(), burst_computations) << "Should drop 11th packet";
// 3. Partial Refill Check: Advance 80ms (total < 100ms since empty)
env.advance_time(80);
send_packet();
EXPECT_EQ(victim.dht_computation_count(), burst_computations)
<< "Should drop packet before 100ms refill";
// 4. Full Refill Check: Advance to > 100ms
env.advance_time(20);
send_packet();
EXPECT_EQ(victim.dht_computation_count(), burst_computations + 1)
<< "Should accept packet after 100ms refill";
}
TEST_F(NetCryptoTest, HandleRequestPacketOOB)
{
NetCryptoNode alice(env, 33445);
NetCryptoNode bob(env, 33446);
// 1. Establish connection
int alice_conn_id = alice.connect_to(bob);
ASSERT_NE(alice_conn_id, -1);
auto start = env.clock().current_time_ms();
int bob_conn_id = -1;
bool connected = false;
while ((env.clock().current_time_ms() - start) < 5000) {
alice.poll();
bob.poll();
env.advance_time(10);
bob_conn_id = bob.get_connection_id_by_pk(alice.real_public_key());
if (alice.is_connected(alice_conn_id) && bob_conn_id != -1
&& bob.is_connected(bob_conn_id)) {
connected = true;
break;
}
}
ASSERT_TRUE(connected);
// 2. Alice sends many packets to populate her send_array.
std::vector<uint8_t> dummy_data(50, 'A');
for (int i = 0; i < 300; ++i) {
dummy_data[0] = 160 + (i % 30); // Valid packet ID range
alice.send_data(alice_conn_id, dummy_data);
}
alice.poll(); // Process sends
// 3. Construct the malicious packet.
uint8_t shared_key[CRYPTO_SHARED_KEY_SIZE];
uint8_t alice_sent_nonce[CRYPTO_NONCE_SIZE];
uint8_t alice_recv_nonce[CRYPTO_NONCE_SIZE];
// Retrieve secrets
nc_testonly_get_secrets(
alice.get_net_crypto(), alice_conn_id, shared_key, alice_sent_nonce, alice_recv_nonce);
// Use Alice's recv_nonce (which Bob uses to encrypt)
uint8_t nonce[CRYPTO_NONCE_SIZE];
memcpy(nonce, alice_recv_nonce, CRYPTO_NONCE_SIZE);
// Payload: [PACKET_ID_REQUEST (1), 255]
// The length of 2 will trigger the OOB read when n wraps around.
uint8_t plaintext[] = {PACKET_ID_REQUEST, 255};
uint16_t plaintext_len = sizeof(plaintext);
uint16_t packet_size = 1 + sizeof(uint16_t) + plaintext_len + CRYPTO_MAC_SIZE;
std::vector<uint8_t> malicious_packet(packet_size);
malicious_packet[0] = NET_PACKET_CRYPTO_DATA;
memcpy(&malicious_packet[1], nonce + (CRYPTO_NONCE_SIZE - sizeof(uint16_t)), sizeof(uint16_t));
int len = encrypt_data_symmetric(
alice.get_memory(), shared_key, nonce, plaintext, plaintext_len, &malicious_packet[3]);
ASSERT_EQ(len, plaintext_len + CRYPTO_MAC_SIZE);
// 4. Inject the packet
tox::test::Packet p;
p.to = alice.get_ip_port();
p.data = malicious_packet;
p.from = bob.get_ip_port();
env.simulation().net().send_packet(p);
// 5. Trigger processing - Expect ASAN/UBSAN failure if vulnerable
alice.poll();
}
// Test with Real DHT (but fake network) to ensure integration works
TEST_F(NetCryptoTest, EndToEndDataExchange_RealDHT)
{
RealDHTNode alice(env, 33445);
RealDHTNode bob(env, 33446);
// 1. Alice initiates connection to Bob
int alice_conn_id = alice.connect_to(bob);
ASSERT_NE(alice_conn_id, -1);
// 2. Run simulation until connected
auto start = env.clock().current_time_ms();
int bob_conn_id = -1;
bool connected = false;
while ((env.clock().current_time_ms() - start) < 5000) {
alice.poll();
bob.poll();
env.advance_time(10); // 10ms steps
bob_conn_id = bob.get_connection_id_by_pk(alice.real_public_key());
if (alice.is_connected(alice_conn_id) && bob_conn_id != -1
&& bob.is_connected(bob_conn_id)) {
connected = true;
break;
}
}
ASSERT_TRUE(connected) << "Failed to establish connection within timeout";
// 3. Exchange Data
// Packet ID must be in custom range (160+)
std::vector<uint8_t> message = {160, 'H', 'e', 'l', 'l', 'o'};
EXPECT_TRUE(alice.send_data(alice_conn_id, message));
start = env.clock().current_time_ms();
bool data_received = false;
while ((env.clock().current_time_ms() - start) < 1000) {
alice.poll();
bob.poll();
env.advance_time(10);
if (bob.get_last_received_data(bob_conn_id) == message) {
data_received = true;
break;
}
}
EXPECT_TRUE(data_received) << "Bob did not receive the correct data";
}
} // namespace