add Ghidra-based acceptance checks to CI pipeline (#91)

734e5f75 · Enkelmann · 730bc805 · 734e5f75 · 734e5f75 · 734e5f75
Commit 734e5f75 authored Oct 28, 2020 by Enkelmann
Showing with 299 additions and 11 deletions

.travis_run_tests.sh .travis_run_tests.sh +2 -1

Cargo.toml Cargo.toml +1 -1

Makefile Makefile +5 -0

main.rs caller/src/main.rs +6 -9

Cargo.toml test/Cargo.toml +8 -0

lib.rs test/src/lib.rs +277 -0

No files found.
--- a/.travis_run_tests.sh
+++ b/.travis_run_tests.sh
@@ -2,4 +2,5 @@
 docker run --rm -t cwe-checker make codestyle-check \
 && docker run --rm -t cwe-checker cargo test \
 && docker run --rm -t cwe-checker dune runtest \
-&& pytest
+&& pytest \
+&& docker run --rm -t cwe-checker-ghidra cargo test --no-fail-fast -p acceptance_tests_ghidra -- --show-output --ignored --test-threads 1
--- a/Cargo.toml
+++ b/Cargo.toml
 [workspace]
-members = ["cwe_checker_rs", "caller"]
+members = ["cwe_checker_rs", "caller", "test"]
--- a/Makefile
+++ b/Makefile
@@ -24,10 +24,15 @@ endif

 test:
 	cargo test
+ifeq (,$(wildcard ${HOME}/.config/cwe_checker/ghidra.json))
 	cd test/unit/ && ./specify_test_files_for_compilation.sh
 	dune runtest
 	cd test/artificial_samples; scons; cd ../..
 	pytest -v --ignore=_build
+else
+	cd test/artificial_samples; scons; cd ../..
+	cargo test --no-fail-fast -p acceptance_tests_ghidra -- --show-output --ignored
+endif

 codestyle-check:
 	cargo fmt -- --check

--- a/caller/src/main.rs
+++ b/caller/src/main.rs
@@ -197,20 +197,17 @@ fn get_project_from_ghidra(file_path: &Path) -> Project {
            .unwrap()
            .as_millis()
    );
-    let output_filename = format!(
-        "{}_{}.json",
-        file_path
-            .file_name()
-            .expect("Invalid file name")
-            .to_string_lossy(),
-        timestamp_suffix
-    );
+    let filename = file_path
+        .file_name()
+        .expect("Invalid file name")
+        .to_string_lossy();
+    let output_filename = format!("{}_{}.json", filename, timestamp_suffix);
    let output_path = tmp_folder.join(output_filename);
    let ghidra_plugin_path = get_ghidra_plugin_path("p_code_extractor");
    // Execute Ghidra
    let output = Command::new(&headless_path)
        .arg(&tmp_folder) // The folder where temporary files should be stored
-        .arg(format!("PcodeExtractor_{}", timestamp_suffix)) // The name of the temporary Ghidra Project.
+        .arg(format!("PcodeExtractor_{}_{}", filename, timestamp_suffix)) // The name of the temporary Ghidra Project.
        .arg("-import") // Import a file into the Ghidra project
        .arg(file_path) // File import path
        .arg("-postScript") // Execute a script after standard analysis by Ghidra finished

--- a/test/Cargo.toml
+++ b/test/Cargo.toml
+[package]
+name = "acceptance_tests_ghidra"
+version = "0.1.0"
+authors = ["Enkelmann <nils-edvin.enkelmann@fkie.fraunhofer.de>"]
+edition = "2018"
+
+[dependencies]
+colored = "2.0"
--- a/test/src/lib.rs
+++ b/test/src/lib.rs
+//! This crate contains acceptance tests using Ghidra as a backend for the *cwe_checker*.
+
+use colored::*;
+use std::process::Command;
+
+/// CPU architectures contained in the test samples
+pub const ARCHITECTURES: &[&str] = &[
+    "aarch64", "arm", "mips64", "mips64el", "mips", "mipsel", "ppc64", "ppc64le", "ppc", "x64",
+    "x86",
+];
+/// Compilers contained in the test samples
+pub const COMPILERS: &[&str] = &["gcc", "clang"];
+/// CPU architectures for the Windows-based test samples
+pub const WINDOWS_ARCHITECTURES: &[&str] = &["x64", "x86"];
+/// Compilers used for the Windows-based test samples
+pub const WINDOWS_COMPILERS: &[&str] = &["mingw32-gcc"];
+
+/// A test case containing the necessary information to run an acceptance test.
+pub struct CweTestCase {
+    /// The name of the cwe (according to the test file)
+    cwe: &'static str,
+    /// The CPU architecture the test case was compiled for
+    architecture: &'static str,
+    /// The compiler used to compile the test case
+    compiler: &'static str,
+    /// The name of the *cwe_checker*-check to execute
+    check_name: &'static str,
+    /// Whether the test case should be skipped
+    skipped: bool,
+}
+
+impl CweTestCase {
+    /// Get the file path of the test binary
+    fn get_filepath(&self) -> String {
+        format!(
+            "artificial_samples/build/{}_{}_{}.out",
+            self.cwe, self.architecture, self.compiler
+        )
+    }
+
+    /// Run the test case and print to the shell, whether the test case succeeded or not.
+    /// Returns stdout + stderr of the test execution on failure.
+    pub fn run_test(
+        &self,
+        search_string: &str,
+        num_expected_occurences: usize,
+    ) -> Result<(), String> {
+        let filepath = self.get_filepath();
+        if self.skipped {
+            println!("{} \t {}", filepath, "[SKIPPED]".yellow());
+            return Ok(());
+        }
+        let output = Command::new("cwe_checker")
+            .arg(&filepath)
+            .arg("--partial")
+            .arg(self.check_name)
+            .arg("--quiet")
+            .output()
+            .unwrap();
+        if output.status.success() {
+            let num_cwes = String::from_utf8(output.stdout)
+                .unwrap()
+                .lines()
+                .filter(|line| line.starts_with(search_string))
+                .count();
+            if num_cwes == num_expected_occurences {
+                println!("{} \t {}", filepath, "[OK]".green());
+                Ok(())
+            } else {
+                println!("{} \t {}", filepath, "[FAILED]".red());
+                Err(format!(
+                    "Expected occurrences: {}. Found: {}",
+                    num_expected_occurences, num_cwes
+                ))
+            }
+        } else {
+            println!("{} \t {}", filepath, "[FAILED]".red());
+            match output.status.code() {
+                Some(_code) => Err(String::from_utf8(output.stdout).unwrap()
+                    + &String::from_utf8(output.stderr).unwrap()),
+                None => Err(format!("Execution failed for file {}", filepath)),
+            }
+        }
+    }
+}
+
+/// Mark test cases using the given CPU architecture as `skipped`.
+pub fn mark_architecture_skipped(test_cases: &mut Vec<CweTestCase>, arch: &str) {
+    for test in test_cases.iter_mut() {
+        if test.architecture == arch {
+            test.skipped = true;
+        }
+    }
+}
+
+/// Mark test cases using the given compiler as `skipped`.
+pub fn mark_compiler_skipped(test_cases: &mut Vec<CweTestCase>, comp: &str) {
+    for test in test_cases.iter_mut() {
+        if test.compiler == comp {
+            test.skipped = true;
+        }
+    }
+}
+
+/// Mark test cases using the given CPU architecture + compiler combination as `skipped`.
+pub fn mark_skipped(test_cases: &mut Vec<CweTestCase>, value1: &str, value2: &str) {
+    for test in test_cases.iter_mut() {
+        if (test.architecture == value1 && test.compiler == value2)
+            || (test.architecture == value2 && test.compiler == value1)
+        {
+            test.skipped = true;
+        }
+    }
+}
+
+/// Return a list with all possible Linux test cases for the given CWE.
+pub fn linux_test_cases(cwe: &'static str, check_name: &'static str) -> Vec<CweTestCase> {
+    new_test_cases(cwe, ARCHITECTURES, COMPILERS, check_name)
+        .into_iter()
+        .filter(|test| test.architecture != "ppc" || test.compiler != "clang")
+        .collect()
+}
+
+/// Return a list with all possible Windows test cases for the given CWE
+pub fn windows_test_cases(cwe: &'static str, check_name: &'static str) -> Vec<CweTestCase> {
+    new_test_cases(cwe, WINDOWS_ARCHITECTURES, WINDOWS_COMPILERS, check_name)
+}
+
+/// Generate test cases for all combinations of CPU architecture and compiler given.
+pub fn new_test_cases(
+    cwe: &'static str,
+    architectures: &[&'static str],
+    compilers: &[&'static str],
+    check_name: &'static str,
+) -> Vec<CweTestCase> {
+    let mut vec = Vec::new();
+    for architecture in architectures {
+        for compiler in compilers {
+            vec.push(CweTestCase {
+                cwe,
+                architecture,
+                compiler,
+                check_name,
+                skipped: false,
+            });
+        }
+    }
+    vec
+}
+
+/// Return a list of all possible test cases (Linux and Windows) for the given CWE.
+pub fn all_test_cases(cwe: &'static str, check_name: &'static str) -> Vec<CweTestCase> {
+    let mut vec = linux_test_cases(cwe, check_name);
+    vec.append(&mut windows_test_cases(cwe, check_name));
+    vec
+}
+
+/// Print the error messages of failed checks.
+/// The `error_log` tuples are of the form `(check_filename, error_message)`.
+pub fn print_errors(error_log: Vec<(String, String)>) {
+    for (filepath, error) in error_log {
+        println!("{}", format!("+++ Error for {} +++", filepath).red());
+        println!("{}", error);
+    }
+}
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+
+    #[test]
+    #[ignore]
+    fn cwe_415() {
+        let mut error_log = Vec::new();
+        let mut tests = all_test_cases("cwe_415", "Memory");
+
+        mark_architecture_skipped(&mut tests, "mips64"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "mips64el"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "mips"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "mipsel"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "ppc64"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "ppc64le"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "ppc"); // TODO: Check reason for failure!
+        mark_skipped(&mut tests, "x86", "gcc"); // TODO: Check reason for failure!
+        mark_compiler_skipped(&mut tests, "mingw32-gcc"); // TODO: Check reason for failure!
+
+        for test_case in tests {
+            let num_expected_occurences = 2;
+            if let Err(error) = test_case.run_test("[CWE415]", num_expected_occurences) {
+                error_log.push((test_case.get_filepath(), error));
+            }
+        }
+        if !error_log.is_empty() {
+            print_errors(error_log);
+            panic!();
+        }
+    }
+
+    #[test]
+    #[ignore]
+    fn cwe_416() {
+        let mut error_log = Vec::new();
+        let mut tests = all_test_cases("cwe_416", "Memory");
+
+        mark_architecture_skipped(&mut tests, "mips64"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "mips64el"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "mips"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "mipsel"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "ppc64"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "ppc64le"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "ppc"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "x86"); // TODO: Check reason for failure!
+        mark_compiler_skipped(&mut tests, "mingw32-gcc"); // TODO: Check reason for failure!
+
+        for test_case in tests {
+            let num_expected_occurences = 1;
+            if let Err(error) = test_case.run_test("[CWE416]", num_expected_occurences) {
+                error_log.push((test_case.get_filepath(), error));
+            }
+        }
+        if !error_log.is_empty() {
+            print_errors(error_log);
+            panic!();
+        }
+    }
+
+    #[test]
+    #[ignore]
+    fn cwe_676() {
+        let mut error_log = Vec::new();
+        let mut tests = all_test_cases("cwe_676", "CWE676");
+
+        mark_architecture_skipped(&mut tests, "mips64"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "mips64el"); // TODO: Check reason for failure!
+        mark_skipped(&mut tests, "mips", "gcc"); // TODO: Check reason for failure!
+        mark_skipped(&mut tests, "mipsel", "gcc"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "ppc64"); // TODO: Check reason for failure!
+        mark_architecture_skipped(&mut tests, "ppc64le"); // TODO: Check reason for failure!
+        mark_compiler_skipped(&mut tests, "mingw32-gcc"); // TODO: Check reason for failure!
+
+        for test_case in tests {
+            if test_case.architecture == "aarch64" && test_case.compiler == "clang" {
+                // For some reason clang adds an extra `memcpy` here, which is also in the list of dangerous functions.
+                let num_expected_occurences = 2;
+                if let Err(error) = test_case.run_test("[CWE676]", num_expected_occurences) {
+                    error_log.push((test_case.get_filepath(), error));
+                }
+            } else {
+                let num_expected_occurences = 1;
+                if let Err(error) = test_case.run_test("[CWE676]", num_expected_occurences) {
+                    error_log.push((test_case.get_filepath(), error));
+                }
+            }
+        }
+        if !error_log.is_empty() {
+            print_errors(error_log);
+            panic!();
+        }
+    }
+
+    #[test]
+    #[ignore]
+    fn cwe_782() {
+        let mut error_log = Vec::new();
+        let tests = new_test_cases("cwe_782", &["x64"], COMPILERS, "CWE782");
+        for test_case in tests {
+            let num_expected_occurences = 1;
+            if let Err(error) = test_case.run_test("[CWE782]", num_expected_occurences) {
+                error_log.push((test_case.get_filepath(), error));
+            }
+        }
+        if !error_log.is_empty() {
+            print_errors(error_log);
+            panic!();
+        }
+    }
+}