[acquire/tests/test_*.h] Increase test coverage ; [*.h] Modify code fixing issues test failures found ; [codecov_badge_gen.sh] Rename and write good shell code ; [reports/test_coverage.svg] Regenerate on latest ctest run

Author: SamuelMarks

acquire/acquire_crc32c.h

@@ -98,6 +98,11 @@ int _crc32c_verify_async_start(struct acquire_handle *handle,
   struct checksum_backend *be;
   if (algorithm != LIBACQUIRE_CRC32C)
     return -1;
+  if (strlen(expected_hash) != 8) {
+    acquire_handle_set_error(handle, ACQUIRE_ERROR_UNSUPPORTED_CHECKSUM_FORMAT,
+                             "Invalid hash length for CRC32C");
+    return -1;
+  }
   if (!handle || !filepath || !expected_hash) {
     if (handle)
       acquire_handle_set_error(handle, ACQUIRE_ERROR_INVALID_ARGUMENT,

acquire/acquire_libcurl.h

@@ -98,8 +98,11 @@ static int progress_callback(void *clientp, curl_off_t dltotal,
 /* --- API Implementation --- */
 int acquire_download_sync(struct acquire_handle *handle, const char *url,
                           const char *dest_path) {
-  if (!handle)
+  if (!handle || !url || !dest_path) {
+    if (handle)
+      acquire_handle_set_error(handle, ACQUIRE_ERROR_INVALID_ARGUMENT, NULL);
     return -1;
+  }
   if (acquire_download_async_start(handle, url, dest_path) != 0)
     return -1;
   while (acquire_download_async_poll(handle) == ACQUIRE_IN_PROGRESS)

acquire/acquire_librhash.h

@@ -65,19 +65,28 @@ int _librhash_verify_async_start(struct acquire_handle *handle,
                                  const char *expected_hash) {
   struct rhash_backend *be;
   unsigned int rhash_algo_id = 0;
+  size_t expected_len = 0;
   switch (algorithm) {
   case LIBACQUIRE_CRC32C:
     rhash_algo_id = RHASH_CRC32C;
+    expected_len = 8;
     break;
   case LIBACQUIRE_SHA256:
     rhash_algo_id = RHASH_SHA256;
+    expected_len = 64;
     break;
   case LIBACQUIRE_SHA512:
     rhash_algo_id = RHASH_SHA512;
+    expected_len = 128;
     break;
   default:
     return -1;
   }
+  if (strlen(expected_hash) != expected_len) {
+    acquire_handle_set_error(handle, ACQUIRE_ERROR_UNSUPPORTED_CHECKSUM_FORMAT,
+                             "Invalid hash length for selected algorithm");
+    return -1;
+  }
   if (!rhash_lib_initialized) {
     rhash_library_init();
     rhash_lib_initialized = 1;

acquire/acquire_net_common.h

@@ -29,65 +29,53 @@ extern LIBACQUIRE_EXPORT const char *get_download_dir(void);
 
 #include <string.h>
 
-bool is_downloaded(const char *url, enum Checksum checksum, const char *hash,
-                   const char *target_location) {
-  char full_local_fname[NAME_MAX + 1];
+bool is_downloaded(const char *url_or_path, enum Checksum checksum,
+                   const char *hash, const char *target_location) {
+
+  char path_buffer[NAME_MAX + 1];
+  const char *file_to_check;
   char *filename_from_url = NULL;
-  const char *filename;
   struct acquire_handle *verify_handle;
   int result;
-  bool is_verified = false;
 
-  if (is_url(url)) {
-    filename_from_url = get_path_from_url(url);
-    filename = filename_from_url;
-  } else {
-    filename = url;
-  }
-
-  if (filename == NULL || *filename == '\0' || hash == NULL) {
-    free(filename_from_url);
+  if (url_or_path == NULL || hash == NULL) {
     return false;
   }
 
-  if (target_location == NULL) {
-    target_location = get_download_dir();
-  }
-
-  if (is_file(filename)) {
-    size_t len = strlen(filename);
-    if (len > NAME_MAX)
-      len = NAME_MAX - 1;
-    memcpy(full_local_fname, filename, len);
-    full_local_fname[len] = '\0';
-  } else {
-    if (!is_directory(target_location) && !is_file(target_location)) {
+  if (is_url(url_or_path)) {
+    filename_from_url = get_path_from_url(url_or_path);
+    if (filename_from_url == NULL || *filename_from_url == '\0') {
       free(filename_from_url);
-      return false;
+      return false; /* Cannot determine filename from URL. */
     }
-
-    snprintf(full_local_fname, NAME_MAX + 1, "%s" PATH_SEP "%s",
-             target_location, filename);
-
-    if (!is_file(full_local_fname)) {
+    if (target_location == NULL) {
+      target_location = get_download_dir();
+    }
+    if (!is_directory(target_location)) {
       free(filename_from_url);
-      return false;
+      return false; /* Download directory is invalid. */
     }
+    snprintf(path_buffer, sizeof(path_buffer), "%s%s%s", target_location,
+             PATH_SEP, filename_from_url);
+    file_to_check = path_buffer;
+    free(filename_from_url);
+  } else {
+    file_to_check = url_or_path;
+  }
+
+  if (!is_file(file_to_check)) {
+    return false;
   }
 
   verify_handle = acquire_handle_init();
   if (!verify_handle) {
-    free(filename_from_url);
     return false;
   }
 
-  result = acquire_verify_sync(verify_handle, full_local_fname, checksum, hash);
+  result = acquire_verify_sync(verify_handle, file_to_check, checksum, hash);
   acquire_handle_free(verify_handle);
 
-  is_verified = (result == 0);
-
-  free(filename_from_url);
-  return is_verified;
+  return result == 0;
 }
 
 #endif /* defined(LIBACQUIRE_IMPLEMENTATION) &&                                \

acquire/acquire_openssl.h

@@ -88,6 +88,8 @@ int _openssl_verify_async_start(struct acquire_handle *handle,
     return -1;
   }
   if (strlen(expected_hash) != expected_len) {
+    acquire_handle_set_error(handle, ACQUIRE_ERROR_UNSUPPORTED_CHECKSUM_FORMAT,
+                             "Invalid hash length for selected algorithm");
     return -1;
   }
   be = (struct openssl_backend *)calloc(1, sizeof(struct openssl_backend));

acquire/acquire_wincrypt.h

@@ -62,16 +62,24 @@ int _wincrypt_verify_async_start(struct acquire_handle *handle,
                                  const char *expected_hash) {
   struct wincrypt_backend *be;
   ALG_ID alg_id = 0;
+  size_t expected_len = 0;
   switch (algorithm) {
   case LIBACQUIRE_SHA256:
     alg_id = CALG_SHA_256;
+    expected_len = 64;
     break;
   case LIBACQUIRE_SHA512:
     alg_id = CALG_SHA_512;
+    expected_len = 128;
     break;
   default:
     return -1;
   }
+  if (strlen(expected_hash) != expected_len) {
+    acquire_handle_set_error(handle, ACQUIRE_ERROR_UNSUPPORTED_CHECKSUM_FORMAT,
+                             "Invalid hash length for selected algorithm");
+    return -1;
+  }
   be = (struct wincrypt_backend *)calloc(1, sizeof(struct wincrypt_backend));
   if (!be) {
     acquire_handle_set_error(handle, ACQUIRE_ERROR_OUT_OF_MEMORY, "wincrypt");

acquire/tests/test_checksum.h

@@ -60,8 +60,8 @@ TEST test_verify_sync_failure_bad_file(void) {
   struct acquire_handle *h = acquire_handle_init();
   int result;
   ASSERT(h != NULL);
-  result =
-      acquire_verify_sync(h, "nonexistent.file", LIBACQUIRE_SHA256, "hash");
+  result = acquire_verify_sync(h, "nonexistent.file", LIBACQUIRE_SHA256,
+                               GREATEST_SHA256);
   ASSERT_EQ_FMT(-1, result, "%d");
   ASSERT_EQ_FMT(ACQUIRE_ERROR, h->status, "%d");
   ASSERT_EQ_FMT(ACQUIRE_ERROR_FILE_OPEN_FAILED,
@@ -139,7 +139,30 @@ TEST test_unsupported_algorithm(void) {
   PASS();
 }
 
+#if defined(LIBACQUIRE_USE_COMMON_CRYPTO) ||                                   \
+    defined(LIBACQUIRE_USE_OPENSSL) || defined(LIBACQUIRE_USE_LIBRESSL)
+TEST test_invalid_hash_length(void) {
+  struct acquire_handle *h = acquire_handle_init();
+  int result;
+  ASSERT(h != NULL);
+  /* SHA256 should be 64 chars, provide a shorter one */
+  result =
+      acquire_verify_sync(h, GREATEST_FILE, LIBACQUIRE_SHA256, "short_hash");
+  ASSERT_EQ_FMT(-1, result, "%d");
+  ASSERT_EQ(ACQUIRE_ERROR, h->status);
+  ASSERT_EQ(ACQUIRE_ERROR_UNSUPPORTED_CHECKSUM_FORMAT,
+            acquire_handle_get_error_code(h));
+  acquire_handle_free(h);
+  PASS();
+}
+#endif
+
 SUITE(checksums_suite) {
+#if defined(LIBACQUIRE_USE_COMMON_CRYPTO) ||                                   \
+    defined(LIBACQUIRE_USE_OPENSSL) || defined(LIBACQUIRE_USE_LIBRESSL)
+  RUN_TEST(test_invalid_hash_length);
+#endif
+  RUN_TEST(test_unsupported_algorithm);
   RUN_TEST(test_verify_sync_success_sha256);
 #if defined(LIBACQUIRE_USE_LIBRHASH) || defined(LIBACQUIRE_USE_CRC32C)
   RUN_TEST(test_verify_sync_success_crc32c);
@@ -149,7 +172,6 @@ SUITE(checksums_suite) {
   RUN_TEST(test_verify_async_success);
   RUN_TEST(test_verify_async_cancellation);
   RUN_TEST(test_verify_empty_file);
-  RUN_TEST(test_unsupported_algorithm);
 }
 
 #endif /* !TEST_CHECKSUM_H */

acquire/tests/test_download.h

@@ -124,12 +124,32 @@ TEST test_download_to_invalid_path(void) {
   PASS();
 }
 
+TEST test_sync_download_invalid_args(void) {
+  struct acquire_handle *h = acquire_handle_init();
+  int result;
+
+  result = acquire_download_sync(NULL, GREATEST_URL, "file.tmp");
+  ASSERT_EQ(-1, result);
+
+  result = acquire_download_sync(h, NULL, "file.tmp");
+  ASSERT_EQ(-1, result);
+  ASSERT_EQ(ACQUIRE_ERROR_INVALID_ARGUMENT, acquire_handle_get_error_code(h));
+
+  result = acquire_download_sync(h, GREATEST_URL, NULL);
+  ASSERT_EQ(-1, result);
+  ASSERT_EQ(ACQUIRE_ERROR_INVALID_ARGUMENT, acquire_handle_get_error_code(h));
+
+  acquire_handle_free(h);
+  PASS();
+}
+
 SUITE(downloads_suite) {
-  RUN_TEST(test_sync_download);
-  RUN_TEST(test_async_download);
   RUN_TEST(test_async_cancellation);
+  RUN_TEST(test_async_download);
   RUN_TEST(test_download_404_error);
   RUN_TEST(test_download_to_invalid_path);
+  RUN_TEST(test_sync_download);
+  RUN_TEST(test_sync_download_invalid_args);
 }
 
 #endif /* !TEST_DOWNLOAD_H */

acquire/tests/test_handle.h

@@ -59,11 +59,26 @@ TEST test_handle_set_error_with_formatting(void) {
   PASS();
 }
 
+TEST test_handle_set_error_no_fmt(void) {
+  struct acquire_handle *h = acquire_handle_init();
+  ASSERT(h != NULL);
+
+  acquire_handle_set_error(h, ACQUIRE_ERROR_UNKNOWN, NULL);
+
+  ASSERT_EQ_FMT(ACQUIRE_ERROR, h->status, "%d");
+  ASSERT_EQ_FMT(ACQUIRE_ERROR_UNKNOWN, acquire_handle_get_error_code(h), "%d");
+  ASSERT_STR_EQ("", acquire_handle_get_error_string(h));
+
+  acquire_handle_free(h);
+  PASS();
+}
+
 SUITE(handle_suite) {
   RUN_TEST(test_handle_initialization);
   RUN_TEST(test_handle_set_and_get_error);
   RUN_TEST(test_handle_null_safety);
   RUN_TEST(test_handle_set_error_with_formatting);
+  RUN_TEST(test_handle_set_error_no_fmt);
 }
 
 #endif /* !TEST_HANDLE_H */

acquire/tests/test_net_common.h

@@ -22,8 +22,8 @@ static void setup_net_common_suite(void *arg) {
 TEST test_is_downloaded_success(void) {
   /* This test uses the URL to determine the filename "greatest.h", then
      checks for it in DOWNLOAD_DIR. */
-  bool result = is_downloaded(GREATEST_URL, LIBACQUIRE_SHA256, GREATEST_SHA256,
-                              DOWNLOAD_DIR);
+  const bool result = is_downloaded(GREATEST_URL, LIBACQUIRE_SHA256,
+                                    GREATEST_SHA256, DOWNLOAD_DIR);
   ASSERT(result);
   PASS();
 }
@@ -72,29 +72,33 @@ TEST test_is_downloaded_invalid_args(void) {
 
 TEST test_is_downloaded_non_existent_target_dir(void) {
   /* Providing a target directory that doesn't exist should fail. */
-  bool result =
+  const bool result =
       is_downloaded(GREATEST_URL, LIBACQUIRE_SHA256, GREATEST_SHA256, BAD_DIR);
   ASSERT_FALSE(result);
   PASS();
 }
 
 TEST test_is_downloaded_from_local_path(void) {
   /* Test using a local path directly instead of a URL. */
-  const bool result = is_downloaded(NET_COMMON_TEST_FILE, LIBACQUIRE_SHA256,
-                                    GREATEST_SHA256, NULL);
+  const bool result =
+      is_downloaded(NET_COMMON_TEST_FILE, LIBACQUIRE_SHA256, GREATEST_SHA256,
+                    NULL); /* target_location is ignored for local paths */
   ASSERT(result);
   PASS();
 }
 
 SUITE(net_common_suite) {
   setup_net_common_suite(NULL); /* Manually call setup. */
-  RUN_TEST(test_is_downloaded_success);
-  RUN_TEST(test_is_downloaded_file_missing);
-  RUN_TEST(test_is_downloaded_bad_hash);
   RUN_TEST(test_is_downloaded_bad_algorithm);
+  RUN_TEST(test_is_downloaded_bad_hash);
+  RUN_TEST(test_is_downloaded_file_missing);
+  RUN_TEST(test_is_downloaded_from_local_path);
+  RUN_TEST(test_is_downloaded_from_local_path);
+  RUN_TEST(test_is_downloaded_invalid_args);
   RUN_TEST(test_is_downloaded_invalid_args);
   RUN_TEST(test_is_downloaded_non_existent_target_dir);
-  RUN_TEST(test_is_downloaded_from_local_path);
+  RUN_TEST(test_is_downloaded_non_existent_target_dir);
+  RUN_TEST(test_is_downloaded_success);
 }
 
 #endif /* !TEST_NET_COMMON_H */