wolfcrypt-tls 0.2.0

Safe Rust TLS API backed by wolfSSL
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218

mod support;

use std::io::{Read, Write};
use std::net::TcpStream;

use wolfssl::{ProtocolVersion, RootCertStore, TlsClient, TlsClientConfig};

use support::{server_config, start_echo_server, CA_CERT_PEM};

#[test]
fn client_connects_to_localhost_server() {
    let (port, server_handle) = start_echo_server(server_config(false), 1);

    let mut root_store = RootCertStore::new();
    root_store.add_pem(CA_CERT_PEM);

    let config = TlsClientConfig::builder()
        .with_root_certificates(root_store)
        .with_no_client_auth()
        .build()
        .expect("client config build failed");

    let stream = TcpStream::connect(format!("127.0.0.1:{port}")).unwrap();
    let mut tls = TlsClient::new(config, "localhost", stream).expect("TLS handshake failed");

    tls.write_all(b"hello").expect("write failed");
    let mut response = vec![0u8; 5];
    tls.read_exact(&mut response).expect("read failed");
    assert_eq!(&response, b"hello");

    drop(tls);
    server_handle.join().unwrap();
}

#[test]
fn client_rejects_self_signed_cert_without_ca() {
    let (port, server_handle) = start_echo_server(server_config(false), 1);

    // Empty root store: no CAs are trusted, so the server's cert should be rejected.
    let root_store = RootCertStore::new();

    let config = TlsClientConfig::builder()
        .with_root_certificates(root_store)
        .with_no_client_auth()
        .build()
        .expect("client config build should succeed (empty store is valid)");

    let stream = TcpStream::connect(format!("127.0.0.1:{port}")).unwrap();
    let result = TlsClient::new(config, "localhost", stream);

    assert!(result.is_err(), "connection should fail without trusted CA");
    match result.unwrap_err() {
        wolfssl::TlsError::CertificateVerification(_) => {} // expected
        wolfssl::TlsError::Ffi { code, func } => {
            // wolfSSL may report this as a generic handshake error
            eprintln!("got Ffi error: {func} code={code} (acceptable)");
        }
        other => panic!("unexpected error type: {other}"),
    }

    // Server thread may have failed too, that's fine.
    let _ = server_handle.join();
}

#[test]
fn client_accepts_cert_when_ca_in_root_store() {
    let (port, server_handle) = start_echo_server(server_config(false), 1);

    let mut root_store = RootCertStore::new();
    root_store.add_pem(CA_CERT_PEM);

    let config = TlsClientConfig::builder()
        .with_root_certificates(root_store)
        .with_no_client_auth()
        .build()
        .unwrap();

    let stream = TcpStream::connect(format!("127.0.0.1:{port}")).unwrap();
    let mut tls = TlsClient::new(config, "localhost", stream)
        .expect("handshake should succeed with CA in store");

    tls.write_all(b"ping").unwrap();
    let mut buf = [0u8; 4];
    tls.read_exact(&mut buf).unwrap();
    assert_eq!(&buf, b"ping");

    drop(tls);
    server_handle.join().unwrap();
}

#[test]
fn large_data_transfer() {
    let (port, server_handle) = start_echo_server(server_config(false), 1);

    let mut root_store = RootCertStore::new();
    root_store.add_pem(CA_CERT_PEM);

    let config = TlsClientConfig::builder()
        .with_root_certificates(root_store)
        .with_no_client_auth()
        .build()
        .unwrap();

    let stream = TcpStream::connect(format!("127.0.0.1:{port}")).unwrap();
    let mut tls = TlsClient::new(config, "localhost", stream).unwrap();

    // Send 1MB of patterned data.
    let send_data: Vec<u8> = (0..1_000_000).map(|i| (i % 251) as u8).collect();
    tls.write_all(&send_data).unwrap();

    // Read back the echoed data.
    let mut recv_data = vec![0u8; send_data.len()];
    tls.read_exact(&mut recv_data)
        .expect("failed to read 1MB back");

    // Compare byte-by-byte.
    assert_eq!(send_data.len(), recv_data.len(), "length mismatch");
    assert!(
        send_data == recv_data,
        "data mismatch: sent and received bytes differ"
    );

    drop(tls);
    server_handle.join().unwrap();
}

#[test]
fn tls_client_implements_read_write() {
    let (port, server_handle) = start_echo_server(server_config(false), 1);

    let mut root_store = RootCertStore::new();
    root_store.add_pem(CA_CERT_PEM);

    let config = TlsClientConfig::builder()
        .with_root_certificates(root_store)
        .with_no_client_auth()
        .build()
        .unwrap();

    let stream = TcpStream::connect(format!("127.0.0.1:{port}")).unwrap();
    let mut tls = TlsClient::new(config, "localhost", stream).unwrap();

    // Use write_all (from Write trait) and read_exact (from Read trait)
    // to verify the trait implementations work with generic I/O code.
    let msg = b"generic io test data 12345";
    tls.write_all(msg).unwrap();

    let mut buf = vec![0u8; msg.len()];
    tls.read_exact(&mut buf).unwrap();
    assert_eq!(&buf, msg);

    drop(tls);
    server_handle.join().unwrap();
}

#[test]
fn connection_uses_modern_tls() {
    let (port, server_handle) = start_echo_server(server_config(false), 1);

    let mut root_store = RootCertStore::new();
    root_store.add_pem(CA_CERT_PEM);

    let config = TlsClientConfig::builder()
        .with_protocol_versions(&[ProtocolVersion::Tls13])
        .with_root_certificates(root_store)
        .with_no_client_auth()
        .build()
        .unwrap();

    let stream = TcpStream::connect(format!("127.0.0.1:{port}")).unwrap();
    let mut tls =
        TlsClient::new(config, "localhost", stream).expect("TLS 1.3 handshake should succeed");

    // Verify we can exchange data.
    tls.write_all(b"tls13").unwrap();
    let mut buf = [0u8; 5];
    tls.read_exact(&mut buf).unwrap();
    assert_eq!(&buf, b"tls13");

    drop(tls);
    server_handle.join().unwrap();
}

/// Verify that an absurdly long server name is rejected before any network IO,
/// not silently truncated to u16. This guards against regressing the
/// `server_name.len() > 253` check back to an unchecked `as u16` cast.
///
/// Uses a loopback pair so the TCP connect succeeds, but the name check
/// fires before any TLS bytes are sent and both sockets are dropped cleanly.
#[test]
fn rejects_oversized_server_name() {
    let mut root_store = RootCertStore::new();
    root_store.add_pem(CA_CERT_PEM);

    let config = TlsClientConfig::builder()
        .with_root_certificates(root_store)
        .with_no_client_auth()
        .build()
        .unwrap();

    // A server name longer than the 253-byte DNS hostname limit should be rejected
    // before any network IO takes place.  Use a dummy io::Cursor so no server
    // thread is needed — the check happens before wolfSSL ever reads from io.
    let huge_name = "a".repeat(254);
    let dummy_io = std::io::Cursor::new(Vec::<u8>::new());
    let result = TlsClient::new(config, &huge_name, dummy_io);

    match result {
        Err(wolfssl::TlsError::InvalidConfig(msg)) => {
            assert!(
                msg.contains("server name") || msg.contains("253"),
                "error should describe the server name limit, got: {msg}"
            );
        }
        Err(other) => panic!("expected InvalidConfig, got: {other}"),
        Ok(_) => panic!("should have rejected oversized server name"),
    }
}