Merge pull request #104 from cconlon/noFilesystemFixes

Native JNI fixes for NO_FILESYSTEM

Author: JacobBarthelmeh

native/com_wolfssl_WolfSSL.c

@@ -362,6 +362,19 @@ JNIEXPORT jboolean JNICALL Java_com_wolfssl_WolfSSL_RsaEnabled
 #endif
 }
 
+JNIEXPORT jboolean JNICALL Java_com_wolfssl_WolfSSL_FileSystemEnabled
+  (JNIEnv* jenv, jclass jcl)
+{
+    (void)jenv;
+    (void)jcl;
+
+#ifdef NO_FILESYSTEM
+    return JNI_FALSE;
+#else
+    return JNI_TRUE;
+#endif
+}
+
 JNIEXPORT jlong JNICALL Java_com_wolfssl_WolfSSL_SSLv3_1ServerMethod
   (JNIEnv* jenv, jclass jcl)
 {

native/com_wolfssl_WolfSSL.h

@@ -50,6 +50,7 @@ JNIEXPORT void JNICALL Java_com_wolfssl_WolfSSLCertManager_CertManagerFree
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLCertManager_CertManagerLoadCA
   (JNIEnv* jenv, jclass jcl, jlong cmPtr, jstring f, jstring d)
 {
+#ifndef NO_FILESYSTEM
     int ret;
     const char* certFile = NULL;
     const char* certPath = NULL;
@@ -69,6 +70,14 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLCertManager_CertManagerLoadCA
     (*jenv)->ReleaseStringUTFChars(jenv, d, certPath);
 
     return (jint)ret;
+#else
+    (void)jenv;
+    (void)jcl;
+    (void)cmPtr;
+    (void)f;
+    (void)d;
+    return NOT_COMPILED_IN;
+#endif
 }
 
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLCertManager_CertManagerLoadCABuffer

native/com_wolfssl_WolfSSLCertManager.c

@@ -63,6 +63,7 @@ JNIEXPORT jlong JNICALL Java_com_wolfssl_WolfSSLCertificate_X509_1load_1certific
 JNIEXPORT jlong JNICALL Java_com_wolfssl_WolfSSLCertificate_X509_1load_1certificate_1file
   (JNIEnv* jenv, jclass jcl, jstring filename, jint format)
 {
+#ifndef NO_FILESYSTEM
     WOLFSSL_X509* x509 = NULL;
     const char* path = NULL;
     (void)jcl;
@@ -80,6 +81,13 @@ JNIEXPORT jlong JNICALL Java_com_wolfssl_WolfSSLCertificate_X509_1load_1certific
     (*jenv)->ReleaseStringUTFChars(jenv, filename, path);
 
     return (jlong)(uintptr_t)x509;
+#else
+    (void)jenv;
+    (void)jcl;
+    (void)filename;
+    (void)format;
+    return 0;
+#endif
 }
 
 JNIEXPORT jbyteArray JNICALL Java_com_wolfssl_WolfSSLCertificate_X509_1get_1der

native/com_wolfssl_WolfSSLCertificate.c

@@ -162,6 +162,7 @@ JNIEXPORT jlong JNICALL Java_com_wolfssl_WolfSSLContext_newContext(JNIEnv* jenv,
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLContext_useCertificateFile
   (JNIEnv* jenv, jobject jcl, jlong ctxPtr, jstring file, jint format)
 {
+#ifndef NO_FILESYSTEM
     jint ret = 0;
     jclass excClass;
     const char* certFile;
@@ -192,11 +193,20 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLContext_useCertificateFile
     (*jenv)->ReleaseStringUTFChars(jenv, file, certFile);
 
     return ret;
+#else
+    (void)jenv;
+    (void)jcl;
+    (void)ctxPtr;
+    (void)file;
+    (void)format;
+    return NOT_COMPILED_IN;
+#endif
 }
 
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLContext_usePrivateKeyFile
   (JNIEnv* jenv, jobject jcl, jlong ctxPtr, jstring file, jint format)
 {
+#ifndef NO_FILESYSTEM
     jint ret = 0;
     jclass excClass;
     const char* keyFile;
@@ -227,11 +237,20 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLContext_usePrivateKeyFile
     (*jenv)->ReleaseStringUTFChars(jenv, file, keyFile);
 
     return ret;
+#else
+    (void)jenv;
+    (void)jcl;
+    (void)ctxPtr;
+    (void)file;
+    (void)format;
+    return NOT_COMPILED_IN;
+#endif
 }
 
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLContext_loadVerifyLocations
   (JNIEnv* jenv, jobject jcl, jlong ctxPtr, jstring file, jstring path)
 {
+#ifndef NO_FILESYSTEM
     jint ret = 0;
     jclass excClass;
     const char* caFile;
@@ -276,11 +295,20 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLContext_loadVerifyLocations
         (*jenv)->ReleaseStringUTFChars(jenv, path, caPath);
 
     return ret;
+#else
+    (void)jenv;
+    (void)jcl;
+    (void)ctxPtr;
+    (void)file;
+    (void)path;
+    return NOT_COMPILED_IN;
+#endif
 }
 
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLContext_useCertificateChainFile
   (JNIEnv* jenv, jobject jcl, jlong ctxPtr, jstring file)
 {
+#ifndef NO_FILESYSTEM
     jint ret = 0;
     jclass excClass;
     const char* chainFile;
@@ -312,6 +340,13 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLContext_useCertificateChainFile
     (*jenv)->ReleaseStringUTFChars(jenv, file, chainFile);
 
     return ret;
+#else
+    (void)jenv;
+    (void)jcl;
+    (void)ctxPtr;
+    (void)file;
+    return NOT_COMPILED_IN;
+#endif
 }
 
 JNIEXPORT void JNICALL Java_com_wolfssl_WolfSSLContext_freeContext
@@ -1503,7 +1538,7 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLContext_loadCRL
   (JNIEnv* jenv, jobject jcl, jlong ctxPtr, jstring path, jint type,
    jint monitor)
 {
-#ifdef HAVE_CRL
+#if defined(HAVE_CRL) && !defined(NO_FILESYSTEM)
     int ret;
     const char* crlPath;
     WOLFSSL_CTX* ctx = (WOLFSSL_CTX*)(uintptr_t)ctxPtr;

native/com_wolfssl_WolfSSLContext.c

@@ -377,7 +377,7 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLSession_setFd(JNIEnv* jenv,
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLSession_useCertificateFile
   (JNIEnv* jenv, jobject jcl, jlong sslPtr, jstring file, jint format)
 {
-#ifdef OPENSSL_EXTRA
+#if defined(OPENSSL_EXTRA) && !defined(NO_FILESYSTEM)
     jint ret = 0;
     const char* certFile;
     WOLFSSL* ssl = (WOLFSSL*)(uintptr_t)sslPtr;
@@ -411,7 +411,7 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLSession_useCertificateFile
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLSession_usePrivateKeyFile
   (JNIEnv* jenv, jobject jcl, jlong sslPtr, jstring file, jint format)
 {
-#ifdef OPENSSL_EXTRA
+#if defined(OPENSSL_EXTRA) && !defined(NO_FILESYSTEM)
     jint ret = 0;
     const char* keyFile;
     WOLFSSL* ssl = (WOLFSSL*)(uintptr_t)sslPtr;
@@ -445,7 +445,7 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLSession_usePrivateKeyFile
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLSession_useCertificateChainFile
   (JNIEnv* jenv, jobject jcl, jlong sslPtr, jstring file)
 {
-#ifdef OPENSSL_EXTRA
+#if defined(OPENSSL_EXTRA) && !defined(NO_FILESYSTEM)
     jint ret = 0;
     const char* chainFile;
     WOLFSSL* ssl = (WOLFSSL*)(uintptr_t)sslPtr;
@@ -1855,7 +1855,7 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLSession_setTmpDH
 JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLSession_setTmpDHFile
   (JNIEnv* jenv, jobject jcl, jlong sslPtr, jstring file, jint format)
 {
-#ifndef NO_DH
+#if !defined(NO_DH) && !defined(NO_FILESYSTEM)
     int ret;
     const char* fname;
     jclass excClass;
@@ -2098,7 +2098,7 @@ JNIEXPORT jint JNICALL Java_com_wolfssl_WolfSSLSession_loadCRL
   (JNIEnv* jenv, jobject jcl, jlong sslPtr, jstring path, jint type,
    jint monitor)
 {
-#ifdef HAVE_CRL
+#if defined(HAVE_CRL) && !defined(NO_FILESYSTEM)
     int ret;
     const char* crlPath;
     jclass excClass;

native/com_wolfssl_WolfSSLSession.c

@@ -507,6 +507,13 @@ public static void loadLibraryAbsolute(String libPath)
      */
     public static native boolean RsaEnabled();
 
+    /**
+     * Tests if filesystem support has been compiled into the wolfSSL library.
+     *
+     * @return 1 if enabled, otherwise 0 if NO_FILESYSTEM has been defined.
+     */
+    public static native boolean FileSystemEnabled();
+
     /* ---------------- native SSL/TLS version functions ---------------- */
 
     /**

src/java/com/wolfssl/WolfSSL.java

@@ -54,6 +54,7 @@
 import org.junit.BeforeClass;
 import org.junit.Test;
 
+import com.wolfssl.WolfSSL;
 import com.wolfssl.WolfSSLException;
 import com.wolfssl.provider.jsse.WolfSSLProvider;
 import com.wolfssl.provider.jsse.WolfSSLX509;
@@ -145,6 +146,12 @@ public void testExtensions() {
 
         System.out.print("\tTesting x509 ext");
 
+        /* skip if wolfSSL compiled with NO_FILESYSTEM */
+        if (WolfSSL.FileSystemEnabled() == false) {
+            pass("\t\t... skipped");
+            return;
+        }
+
         try {
             x509 = new WolfSSLX509(tf.googleCACert);
 
@@ -220,6 +227,13 @@ public void testX509XValidity() {
         WolfSSLX509X x509;
 
         System.out.print("\tTesting X509X validity");
+
+        /* skip if wolfSSL compiled with NO_FILESYSTEM */
+        if (WolfSSL.FileSystemEnabled() == false) {
+            pass("\t\t... skipped");
+            return;
+        }
+
         try {
             x509 = new WolfSSLX509X(tf.googleCACert);
             x509.checkValidity();
@@ -239,6 +253,13 @@ public void testTBS() {
         WolfSSLX509 x509;
 
         System.out.print("\tTesting TBS");
+
+        /* skip if wolfSSL compiled with NO_FILESYSTEM */
+        if (WolfSSL.FileSystemEnabled() == false) {
+            pass("\t\t\t... skipped");
+            return;
+        }
+
         try {
             x509 = new WolfSSLX509(tf.googleCACert);
             tbs = x509.getTBSCertificate();
@@ -575,6 +596,12 @@ public void testSubjectAlternativeNames() {
 
         System.out.print("\tTesting getting alt names");
 
+        /* skip if wolfSSL compiled with NO_FILESYSTEM */
+        if (WolfSSL.FileSystemEnabled() == false) {
+            pass("\t... skipped");
+            return;
+        }
+
         /* populate known alt name list for example.com cert, for comparison */
         List<String> expected = new ArrayList<>();
         expected.add("www.example.org");

src/test/com/wolfssl/provider/jsse/test/WolfSSLX509Test.java

@@ -68,13 +68,15 @@ public void testWolfSSLCertificate() throws WolfSSLException {
         test_WolfSSLCertificate_new_pemArray();
         test_runCertTestsAfterConstructor();
 
-        /* WolfSSLCertificate(byte[] pem) */
-        test_WolfSSLCertificate_new_derFile();
-        test_runCertTestsAfterConstructor();
-
-        /* WolfSSLCertificate(String pem) */
-        test_WolfSSLCertificate_new_pemFile();
-        test_runCertTestsAfterConstructor();
+        if (WolfSSL.FileSystemEnabled() == true) {
+            /* WolfSSLCertificate(byte[] pem) */
+            test_WolfSSLCertificate_new_derFile();
+            test_runCertTestsAfterConstructor();
+
+            /* WolfSSLCertificate(String pem) */
+            test_WolfSSLCertificate_new_pemFile();
+            test_runCertTestsAfterConstructor();
+        }
     }
 
 
@@ -191,6 +193,19 @@ public void test_WolfSSLCertificate_new_pemFile() {
         System.out.println("\t... passed");
     }
 
+    private byte[] fileToByteArray(String filePath)
+        throws IOException {
+        File f = new File(filePath);
+        byte[] fBytes = null;
+
+        InputStream stream = new FileInputStream(f);
+        fBytes = new byte[(int) f.length()];
+        stream.read(fBytes, 0, fBytes.length);
+        stream.close();
+
+        return fBytes;
+    }
+
 
     public void test_getSerial() {
         byte[] expected = new byte[]{
@@ -501,7 +516,13 @@ public void test_getKeyUsage() {
             int i;
             boolean[] kuse;
 
-            ext = new WolfSSLCertificate(this.external);
+            if (WolfSSL.FileSystemEnabled() == true) {
+                ext = new WolfSSLCertificate(this.external);
+            } else {
+                ext = new WolfSSLCertificate(fileToByteArray(this.external),
+                                             WolfSSL.SSL_FILETYPE_ASN1);
+            }
+
             kuse = ext.getKeyUsage();
             if (kuse == null) {
                 System.out.println("\t\t... failed");
@@ -516,8 +537,9 @@ public void test_getKeyUsage() {
                 }
             }
             ext.free();
-        } catch (WolfSSLException ex) {
-            Logger.getLogger(WolfSSLCertificateTest.class.getName()).log(Level.SEVERE, null, ex);
+        } catch (Exception ex) {
+            Logger.getLogger(WolfSSLCertificateTest.class.getName()).log(
+                                Level.SEVERE, null, ex);
             System.out.println("\t\t... failed");
             fail("Error loading external certificate");
         }