OpenCoverage

tls.c

Absolute File Name:

/home/opencoverage/opencoverage/guest-scripts/libressl/src/tls/tls.c

Switch to Source code

Preprocessed file

Line Source Count

1 -

2 -

3 -

4 -

5 -

6 -

7 static struct tls_config *tls_config_default; -

8 -

9 static int tls_init_rv = -1; -

10 -

11 static void -

12 tls_do_init(void) -

13 { -

14 OPENSSL_init_ssl(0x00000001L, -

15 ((void *)0) -

16 ); -

17 -

if (BIO_sock_init() != 1

BIO_sock_init() != 1	Description
TRUE	never evaluated
FALSE	evaluated 3 times by 3 tests Evaluated by: configtest tlstest verifytest

)

0-3

return;

never executed: return;

20 -

if ((

(tls_config_de...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 3 times by 3 tests Evaluated by: configtest tlstest verifytest

tls_config_default = tls_config_new_internal()) ==

(tls_config_de...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 3 times by 3 tests Evaluated by: configtest tlstest verifytest

0-3

((void *)0)

(tls_config_de...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 3 times by 3 tests Evaluated by: configtest tlstest verifytest

0-3

23 ) -

return;

never executed: return;

25 -

26 tls_config_default->refcount++; -

27 -

28 tls_init_rv = 0; -

}

executed 3 times by 3 tests: end of block

Executed by:

configtest
tlstest
verifytest

30 -

31 int -

32 tls_init(void) -

33 { -

34 static pthread_once_t once = -

35 0 -

36 ; -

37 -

if (pthread_once(&once, tls_do_init) != 0

pthread_once(&..._do_init) != 0	Description
TRUE	never evaluated
FALSE	evaluated 38 times by 3 tests Evaluated by: configtest tlstest verifytest

)

0-38

return

never executed: return -1;

-1;

never executed: return -1;

40 -

return

executed 38 times by 3 tests: return tls_init_rv;

Executed by:

configtest
tlstest
verifytest

tls_init_rv;

executed 38 times by 3 tests: return tls_init_rv;

Executed by:

configtest
tlstest
verifytest

42 } -

43 -

44 const char * -

45 tls_error(struct tls *ctx) -

46 { -

return

never executed: return ctx->error.msg;

ctx->error.msg;

never executed: return ctx->error.msg;

48 } -

49 -

50 void -

51 tls_error_clear(struct tls_error *error) -

52 { -

53 free(error->msg); -

54 error->msg = -

55 ((void *)0) -

56 ; -

57 error->num = 0; -

58 error->tls = 0; -

}

executed 53 times by 2 tests: end of block

Executed by:

tlstest
verifytest

60 -

61 static int -

62 tls_error_vset(struct tls_error *error, int errnum, const char *fmt, va_list ap) -

63 { -

64 char *errmsg = -

65 ((void *)0) -

66 ; -

67 int rv = -1; -

68 -

69 tls_error_clear(error); -

70 -

71 error->num = errnum; -

72 error->tls = 1; -

73 -

if (vasprintf(&errmsg, fmt, ap) == -1

vasprintf(&err...fmt, ap) == -1	Description
TRUE	never evaluated
FALSE	evaluated 14 times by 2 tests Evaluated by: tlstest verifytest

) {

0-14

75 errmsg = -

76 ((void *)0) -

77 ; -

goto

never executed: goto err;

err;

never executed: goto err;

79 } -

80 -

if (errnum == -1

errnum == -1	Description
TRUE	evaluated 14 times by 2 tests Evaluated by: tlstest verifytest
FALSE	never evaluated

) {

0-14

82 error->msg = errmsg; -

return

executed 14 times by 2 tests: return (0);

Executed by:

tlstest
verifytest

(0);

executed 14 times by 2 tests: return (0);

Executed by:

tlstest
verifytest

84 } -

85 -

if (asprintf(&error->msg, "%s: %s", errmsg, strerror(errnum)) == -1

asprintf(&erro...errnum)) == -1	Description
TRUE	never evaluated
FALSE	never evaluated

) {

87 error->msg = -

88 ((void *)0) -

89 ; -

goto

never executed: goto err;

err;

never executed: goto err;

91 } -

92 rv = 0; -

93 -

err:

code before this statement never executed: err:

95 free(errmsg); -

96 -

return

never executed: return (rv);

(rv);

never executed: return (rv);

98 } -

99 -

100 int -

101 tls_error_set(struct tls_error *error, const char *fmt, ...) -

102 { -

103 va_list ap; -

104 int errnum, rv; -

105 -

106 errnum = -

107 (*__errno_location ()) -

108 ; -

109 -

110 -

111 __builtin_va_start( -

112 ap -

113 , -

114 fmt -

115 ) -

116 ; -

117 rv = tls_error_vset(error, errnum, fmt, ap); -

118 -

119 __builtin_va_end( -

120 ap -

121 ) -

122 ; -

123 -

124

return

never executed: return (rv);

(rv);

never executed: return (rv);

125 } -

126 -

127 int -

128 tls_error_setx(struct tls_error *error, const char *fmt, ...) -

129 { -

130 va_list ap; -

131 int rv; -

132 -

133 -

134 __builtin_va_start( -

135 ap -

136 , -

137 fmt -

138 ) -

139 ; -

140 rv = tls_error_vset(error, -1, fmt, ap); -

141 -

142 __builtin_va_end( -

143 ap -

144 ) -

145 ; -

146 -

147

return

never executed: return (rv);

(rv);

never executed: return (rv);

148 } -

149 -

150 int -

151 tls_config_set_error(struct tls_config *config, const char *fmt, ...) -

152 { -

153 va_list ap; -

154 int errnum, rv; -

155 -

156 errnum = -

157 (*__errno_location ()) -

158 ; -

159 -

160 -

161 __builtin_va_start( -

162 ap -

163 , -

164 fmt -

165 ) -

166 ; -

167 rv = tls_error_vset(&config->error, errnum, fmt, ap); -

168 -

169 __builtin_va_end( -

170 ap -

171 ) -

172 ; -

173 -

174

return

never executed: return (rv);

(rv);

never executed: return (rv);

175 } -

176 -

177 int -

178 tls_config_set_errorx(struct tls_config *config, const char *fmt, ...) -

179 { -

180 va_list ap; -

181 int rv; -

182 -

183 -

184 __builtin_va_start( -

185 ap -

186 , -

187 fmt -

188 ) -

189 ; -

190 rv = tls_error_vset(&config->error, -1, fmt, ap); -

191 -

192 __builtin_va_end( -

193 ap -

194 ) -

195 ; -

196 -

197

return

never executed: return (rv);

(rv);

never executed: return (rv);

198 } -

199 -

200 int -

201 tls_set_error(struct tls *ctx, const char *fmt, ...) -

202 { -

203 va_list ap; -

204 int errnum, rv; -

205 -

206 errnum = -

207 (*__errno_location ()) -

208 ; -

209 -

210 -

211 __builtin_va_start( -

212 ap -

213 , -

214 fmt -

215 ) -

216 ; -

217 rv = tls_error_vset(&ctx->error, errnum, fmt, ap); -

218 -

219 __builtin_va_end( -

220 ap -

221 ) -

222 ; -

223 -

224

return

never executed: return (rv);

(rv);

never executed: return (rv);

225 } -

226 -

227 int -

228 tls_set_errorx(struct tls *ctx, const char *fmt, ...) -

229 { -

230 va_list ap; -

231 int rv; -

232 -

233 -

234 __builtin_va_start( -

235 ap -

236 , -

237 fmt -

238 ) -

239 ; -

240 rv = tls_error_vset(&ctx->error, -1, fmt, ap); -

241 -

242 __builtin_va_end( -

243 ap -

244 ) -

245 ; -

246 -

247

return

executed 14 times by 2 tests: return (rv);

Executed by:

tlstest
verifytest

(rv);

executed 14 times by 2 tests: return (rv);

Executed by:

tlstest
verifytest

248 } -

249 -

250 int -

251 tls_set_ssl_errorx(struct tls *ctx, const char *fmt, ...) -

252 { -

253 va_list ap; -

254 int rv; -

255 -

256 -

257

if (ctx->error.tls != 0

ctx->error.tls != 0	Description
TRUE	never evaluated
FALSE	never evaluated

)

258

return

never executed: return (0);

(0);

never executed: return (0);

259 -

260 -

261 __builtin_va_start( -

262 ap -

263 , -

264 fmt -

265 ) -

266 ; -

267 rv = tls_error_vset(&ctx->error, -1, fmt, ap); -

268 -

269 __builtin_va_end( -

270 ap -

271 ) -

272 ; -

273 -

274

return

never executed: return (rv);

(rv);

never executed: return (rv);

275 } -

276 -

277 struct tls_sni_ctx * -

278 tls_sni_ctx_new(void) -

279 { -

280

return

never executed: return (calloc(1, sizeof(struct tls_sni_ctx)));

(calloc(1, sizeof(struct tls_sni_ctx)));

never executed: return (calloc(1, sizeof(struct tls_sni_ctx)));

281 } -

282 -

283 void -

284 tls_sni_ctx_free(struct tls_sni_ctx *sni_ctx) -

285 { -

286

if (sni_ctx ==

sni_ctx == ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

287

((void *)0)

sni_ctx == ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

288 ) -

289

return;

never executed: return;

290 -

291 SSL_CTX_free(sni_ctx->ssl_ctx); -

292 X509_free(sni_ctx->ssl_cert); -

293 -

294 free(sni_ctx); -

295

}

never executed: end of block

296 -

297 struct tls * -

298 tls_new(void) -

299 { -

300 struct tls *ctx; -

301 -

302

if ((

(ctx = calloc(...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 36 times by 2 tests Evaluated by: tlstest verifytest

ctx = calloc(1, sizeof(*ctx))) ==

(ctx = calloc(...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 36 times by 2 tests Evaluated by: tlstest verifytest

0-36

303

((void *)0)

(ctx = calloc(...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 36 times by 2 tests Evaluated by: tlstest verifytest

0-36

304 ) -

305

return

never executed: return ( ((void *)0) );

(

never executed: return ( ((void *)0) );

306

((void *)0)

never executed: return ( ((void *)0) );

307

);

never executed: return ( ((void *)0) );

308 -

309 tls_reset(ctx); -

310 -

311

if (tls_configure(ctx, tls_config_default) == -1

tls_configure(...default) == -1	Description
TRUE	never evaluated
FALSE	evaluated 36 times by 2 tests Evaluated by: tlstest verifytest

) {

0-36

312 free(ctx); -

313

return

never executed: return ((void *)0) ;

314

((void *)0)

never executed: return ((void *)0) ;

315

;

never executed: return ((void *)0) ;

316 } -

317 -

318

return

executed 36 times by 2 tests: return (ctx);

Executed by:

tlstest
verifytest

(ctx);

executed 36 times by 2 tests: return (ctx);

Executed by:

tlstest
verifytest

319 } -

320 -

321 int -

322 tls_configure(struct tls *ctx, struct tls_config *config) -

323 { -

324

if (config ==

config == ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 44 times by 2 tests Evaluated by: tlstest verifytest

0-44

325

((void *)0)

config == ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 44 times by 2 tests Evaluated by: tlstest verifytest

0-44

326 ) -

327

config = tls_config_default;

never executed: config = tls_config_default;

328 -

329 config->refcount++; -

330 -

331 tls_config_free(ctx->config); -

332 -

333 ctx->config = config; -

334 ctx->keypair = config->keypair; -

335 -

336

if ((

(ctx->flags & (1 << 1)) != 0	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	evaluated 40 times by 2 tests Evaluated by: tlstest verifytest

ctx->flags & (1 << 1)) != 0

(ctx->flags & (1 << 1)) != 0	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	evaluated 40 times by 2 tests Evaluated by: tlstest verifytest

)

4-40

337

return

executed 4 times by 1 test: return (tls_configure_server(ctx));

Executed by:

tlstest

(tls_configure_server(ctx));

executed 4 times by 1 test: return (tls_configure_server(ctx));

Executed by:

tlstest

338 -

339

return

executed 40 times by 2 tests: return (0);

Executed by:

tlstest
verifytest

(0);

executed 40 times by 2 tests: return (0);

Executed by:

tlstest
verifytest

340 } -

341 -

342 int -

343 tls_cert_hash(X509 *cert, char **hash) -

344 { -

345 char d[64], *dhex = -

346 ((void *)0) -

347 ; -

348 int dlen, rv = -1; -

349 -

350 free(*hash); -

351 *hash = -

352 ((void *)0) -

353 ; -

354 -

355

if (X509_digest(cert, EVP_sha256(), d, &dlen) != 1

X509_digest(ce...d, &dlen) != 1	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

)

0-4

356

goto

never executed: goto err;

err;

never executed: goto err;

357 -

358

if (tls_hex_string(d, dlen, &dhex,

tls_hex_string...id *)0) ) != 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

359

((void *)0)

tls_hex_string...id *)0) ) != 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

360

) != 0

tls_hex_string...id *)0) ) != 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

)

0-4

361

goto

never executed: goto err;

err;

never executed: goto err;

362 -

363

if (asprintf(hash, "SHA256:%s", dhex) == -1

asprintf(hash,...", dhex) == -1	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

) {

0-4

364 *hash = -

365 ((void *)0) -

366 ; -

367

goto

never executed: goto err;

err;

never executed: goto err;

368 } -

369 -

370 rv = 0; -

371

err:

code before this statement executed 4 times by 1 test: err:

Executed by:

tlstest

372 free(dhex); -

373 -

374

return

executed 4 times by 1 test: return (rv);

Executed by:

tlstest

(rv);

executed 4 times by 1 test: return (rv);

Executed by:

tlstest

375 } -

376 -

377 int -

378 tls_cert_pubkey_hash(X509 *cert, char **hash) -

379 { -

380 char d[64], *dhex = -

381 ((void *)0) -

382 ; -

383 int dlen, rv = -1; -

384 -

385 free(*hash); -

386 *hash = -

387 ((void *)0) -

388 ; -

389 -

390

if (X509_pubkey_digest(cert, EVP_sha256(), d, &dlen) != 1

X509_pubkey_di...d, &dlen) != 1	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 2 tests Evaluated by: keypairtest tlstest

)

0-4

391

goto

never executed: goto err;

err;

never executed: goto err;

392 -

393

if (tls_hex_string(d, dlen, &dhex,

tls_hex_string...id *)0) ) != 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 2 tests Evaluated by: keypairtest tlstest

0-4

394

((void *)0)

tls_hex_string...id *)0) ) != 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 2 tests Evaluated by: keypairtest tlstest

0-4

395

) != 0

tls_hex_string...id *)0) ) != 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 2 tests Evaluated by: keypairtest tlstest

)

0-4

396

goto

never executed: goto err;

err;

never executed: goto err;

397 -

398

if (asprintf(hash, "SHA256:%s", dhex) == -1

asprintf(hash,...", dhex) == -1	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 2 tests Evaluated by: keypairtest tlstest

) {

0-4

399 *hash = -

400 ((void *)0) -

401 ; -

402

goto

never executed: goto err;

err;

never executed: goto err;

403 } -

404 -

405 rv = 0; -

406 -

407

err:

code before this statement executed 4 times by 2 tests: err:

Executed by:

keypairtest
tlstest

408 free(dhex); -

409 -

410

return

executed 4 times by 2 tests: return (rv);

Executed by:

keypairtest
tlstest

(rv);

executed 4 times by 2 tests: return (rv);

Executed by:

keypairtest
tlstest

411 } -

412 -

413 int -

414 tls_configure_ssl_keypair(struct tls *ctx, SSL_CTX *ssl_ctx, -

415 struct tls_keypair *keypair, int required) -

416 { -

417 EVP_PKEY *pkey = -

418 ((void *)0) -

419 ; -

420 BIO *bio = -

421 ((void *)0) -

422 ; -

423 -

424

if (!required

!required	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

425

keypair->cert_mem ==

keypair->cert_...== ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

426

((void *)0)

keypair->cert_...== ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

427 && -

428

keypair->key_mem ==

keypair->key_m...== ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

429

((void *)0)

keypair->key_m...== ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

430 ) -

431

return

executed 4 times by 1 test: return(0);

Executed by:

tlstest

(0);

executed 4 times by 1 test: return(0);

Executed by:

tlstest

432 -

433

if (keypair->cert_mem !=

keypair->cert_...!= ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

434

((void *)0)

keypair->cert_...!= ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

435 ) { -

436

if (keypair->cert_len > 0x7fffffff

keypair->cert_len > 0x7fffffff	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

) {

0-4

437 tls_set_errorx(ctx, "certificate too long"); -

438

goto

never executed: goto err;

err;

never executed: goto err;

439 } -

440 -

441

if (SSL_CTX_use_certificate_chain_mem(ssl_ctx,

SSL_CTX_use_ce...cert_len) != 1	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

442

keypair->cert_mem, keypair->cert_len) != 1

SSL_CTX_use_ce...cert_len) != 1	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

) {

0-4

443 tls_set_errorx(ctx, "failed to load certificate"); -

444

goto

never executed: goto err;

err;

never executed: goto err;

445 } -

446

}

executed 4 times by 1 test: end of block

Executed by:

tlstest

447 -

448

if (keypair->key_mem !=

keypair->key_m...!= ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

449

((void *)0)

keypair->key_m...!= ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

450 ) { -

451

if (keypair->key_len > 0x7fffffff

keypair->key_len > 0x7fffffff	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

) {

0-4

452 tls_set_errorx(ctx, "key too long"); -

453

goto

never executed: goto err;

err;

never executed: goto err;

454 } -

455 -

456

if ((

(bio = BIO_new...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

bio = BIO_new_mem_buf(keypair->key_mem,

(bio = BIO_new...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

457

keypair->key_len)) ==

(bio = BIO_new...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

458

((void *)0)

(bio = BIO_new...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

459 ) { -

460 tls_set_errorx(ctx, "failed to create buffer"); -

461

goto

never executed: goto err;

err;

never executed: goto err;

462 } -

463

if ((

(pkey = PEM_re...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

pkey = PEM_read_bio_PrivateKey(bio,

(pkey = PEM_re...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

464

((void *)0)

(pkey = PEM_re...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

465

, tls_password_cb,

(pkey = PEM_re...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

466

(pkey = PEM_re...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

467

((void *)0)

(pkey = PEM_re...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

468

)) ==

(pkey = PEM_re...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

469

((void *)0)

(pkey = PEM_re...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

470 ) { -

471 tls_set_errorx(ctx, "failed to read private key"); -

472

goto

never executed: goto err;

err;

never executed: goto err;

473 } -

474 -

475

if (keypair->pubkey_hash !=

keypair->pubke...!= ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

476

((void *)0)

keypair->pubke...!= ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

477 ) { -

478 RSA *rsa; -

479 -

480

if ((

(rsa = EVP_PKE...!= ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

rsa = EVP_PKEY_get1_RSA(pkey)) !=

(rsa = EVP_PKE...!= ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

481

((void *)0)

(rsa = EVP_PKE...!= ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

482 ) { -

483 RSA_set_ex_data(rsa, 0, keypair->pubkey_hash); -

484 RSA_free(rsa); -

485

}

executed 4 times by 1 test: end of block

Executed by:

tlstest

486

}

executed 4 times by 1 test: end of block

Executed by:

tlstest

487 -

488

if (SSL_CTX_use_PrivateKey(ssl_ctx, pkey) != 1

SSL_CTX_use_Pr...tx, pkey) != 1	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

) {

0-4

489 tls_set_errorx(ctx, "failed to load private key"); -

490

goto

never executed: goto err;

err;

never executed: goto err;

491 } -

492 BIO_free(bio); -

493 bio = -

494 ((void *)0) -

495 ; -

496 EVP_PKEY_free(pkey); -

497 pkey = -

498 ((void *)0) -

499 ; -

500

}

executed 4 times by 1 test: end of block

Executed by:

tlstest

501 -

502

if (!ctx->config->skip_private_key_check

!ctx->config->...vate_key_check	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

503

SSL_CTX_check_private_key(ssl_ctx) != 1

SSL_CTX_check_...(ssl_ctx) != 1	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

) {

0-4

504 tls_set_errorx(ctx, "private/public key mismatch"); -

505

goto

never executed: goto err;

err;

never executed: goto err;

506 } -

507 -

508

return

executed 4 times by 1 test: return (0);

Executed by:

tlstest

(0);

executed 4 times by 1 test: return (0);

Executed by:

tlstest

509 -

510 err: -

511 EVP_PKEY_free(pkey); -

512 BIO_free(bio); -

513 -

514

return

never executed: return (1);

(1);

never executed: return (1);

515 } -

516 -

517 int -

518 tls_configure_ssl(struct tls *ctx, SSL_CTX *ssl_ctx) -

519 { -

520 SSL_CTX_ctrl((ssl_ctx),33,(0x00000001L), -

521 ((void *)0) -

522 ); -

523 SSL_CTX_ctrl((ssl_ctx),33,(0x00000002L), -

524 ((void *)0) -

525 ); -

526 -

527 SSL_CTX_ctrl((ssl_ctx),32,(0x0), -

528 ((void *)0) -

529 ); -

530 SSL_CTX_ctrl((ssl_ctx),32,(0x0), -

531 ((void *)0) -

532 ); -

533 -

534 SSL_CTX_ctrl((ssl_ctx),77,(0x04000000L), -

535 ((void *)0) -

536 ); -

537 SSL_CTX_ctrl((ssl_ctx),77,(0x10000000L), -

538 ((void *)0) -

539 ); -

540 SSL_CTX_ctrl((ssl_ctx),77,(0x08000000L), -

541 ((void *)0) -

542 ); -

543 -

544

if ((

(ctx->config->...(1 << 1)) == 0	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

ctx->config->protocols & (1 << 1)) == 0

(ctx->config->...(1 << 1)) == 0	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

)

0-8

545

SSL_CTX_ctrl((ssl_ctx),32,(0x04000000L),

executed 8 times by 1 test: SSL_CTX_ctrl((ssl_ctx),32,(0x04000000L), ((void *)0) );

Executed by:

tlstest

546

((void *)0)

executed 8 times by 1 test: SSL_CTX_ctrl((ssl_ctx),32,(0x04000000L), ((void *)0) );

Executed by:

tlstest

547

);

executed 8 times by 1 test: SSL_CTX_ctrl((ssl_ctx),32,(0x04000000L), ((void *)0) );

Executed by:

tlstest

548

if ((

(ctx->config->...(1 << 2)) == 0	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

ctx->config->protocols & (1 << 2)) == 0

(ctx->config->...(1 << 2)) == 0	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

)

0-8

549

SSL_CTX_ctrl((ssl_ctx),32,(0x10000000L),

executed 8 times by 1 test: SSL_CTX_ctrl((ssl_ctx),32,(0x10000000L), ((void *)0) );

Executed by:

tlstest

550

((void *)0)

executed 8 times by 1 test: SSL_CTX_ctrl((ssl_ctx),32,(0x10000000L), ((void *)0) );

Executed by:

tlstest

551

);

executed 8 times by 1 test: SSL_CTX_ctrl((ssl_ctx),32,(0x10000000L), ((void *)0) );

Executed by:

tlstest

552

if ((

(ctx->config->...(1 << 3)) == 0	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

ctx->config->protocols & (1 << 3)) == 0

(ctx->config->...(1 << 3)) == 0	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

)

0-8

553

SSL_CTX_ctrl((ssl_ctx),32,(0x08000000L),

never executed: SSL_CTX_ctrl((ssl_ctx),32,(0x08000000L), ((void *)0) );

554

((void *)0)

never executed: SSL_CTX_ctrl((ssl_ctx),32,(0x08000000L), ((void *)0) );

555

);

never executed: SSL_CTX_ctrl((ssl_ctx),32,(0x08000000L), ((void *)0) );

556 -

557

if (ctx->config->alpn !=

ctx->config->a...!= ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

0-8

558

((void *)0)

ctx->config->a...!= ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

0-8

559 ) { -

560

if (SSL_CTX_set_alpn_protos(ssl_ctx, ctx->config->alpn,

SSL_CTX_set_al...alpn_len) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

561

ctx->config->alpn_len) != 0

SSL_CTX_set_al...alpn_len) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

562 tls_set_errorx(ctx, "failed to set alpn"); -

563

goto

never executed: goto err;

err;

never executed: goto err;

564 } -

565

}

never executed: end of block

566 -

567

if (ctx->config->ciphers !=

ctx->config->c...!= ((void *)0)	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-8

568

((void *)0)

ctx->config->c...!= ((void *)0)	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-8

569 ) { -

570

if (SSL_CTX_set_cipher_list(ssl_ctx,

SSL_CTX_set_ci...>ciphers) != 1	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

0-8

571

ctx->config->ciphers) != 1

SSL_CTX_set_ci...>ciphers) != 1	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

) {

0-8

572 tls_set_errorx(ctx, "failed to set ciphers"); -

573

goto

never executed: goto err;

err;

never executed: goto err;

574 } -

575

}

executed 8 times by 1 test: end of block

Executed by:

tlstest

576 -

577

if (ctx->config->verify_time == 0

ctx->config->verify_time == 0	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

) {

0-8

578 X509_VERIFY_PARAM_set_flags(ssl_ctx->param, -

579 0x200000); -

580

}

never executed: end of block

581 -

582 -

583 SSL_CTX_ctrl(ssl_ctx,44,0x0000, -

584 ((void *)0) -

585 ); -

586 SSL_CTX_ctrl((ssl_ctx),32,(0x00004000L), -

587 ((void *)0) -

588 ); -

589 -

590

return

executed 8 times by 1 test: return (0);

Executed by:

tlstest

(0);

executed 8 times by 1 test: return (0);

Executed by:

tlstest

591 -

592 err: -

593

return

never executed: return (-1);

(-1);

never executed: return (-1);

594 } -

595 -

596 static int -

597 tls_ssl_cert_verify_cb(X509_STORE_CTX *x509_ctx, void *arg) -

598 { -

599 struct tls *ctx = arg; -

600 int x509_err; -

601 -

602

if (ctx->config->verify_cert == 0

ctx->config->verify_cert == 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

)

0-4

603

return

never executed: return (1);

(1);

never executed: return (1);

604 -

605

if ((

(X509_verify_c...x509_ctx)) < 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

X509_verify_cert(x509_ctx)) < 0

(X509_verify_c...x509_ctx)) < 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

) {

0-4

606 tls_set_errorx(ctx, "X509 verify cert failed"); -

607

return

never executed: return (0);

(0);

never executed: return (0);

608 } -

609 -

610 x509_err = X509_STORE_CTX_get_error(x509_ctx); -

611

if (x509_err == 0

x509_err == 0	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

)

0-4

612

return

executed 4 times by 1 test: return (1);

Executed by:

tlstest

(1);

executed 4 times by 1 test: return (1);

Executed by:

tlstest

613 -

614 tls_set_errorx(ctx, "certificate verification failed: %s", -

615 X509_verify_cert_error_string(x509_err)); -

616 -

617

return

never executed: return (0);

(0);

never executed: return (0);

618 } -

619 -

620 int -

621 tls_configure_ssl_verify(struct tls *ctx, SSL_CTX *ssl_ctx, int verify) -

622 { -

623 size_t ca_len = ctx->config->ca_len; -

624 char *ca_mem = ctx->config->ca_mem; -

625 char *crl_mem = ctx->config->crl_mem; -

626 size_t crl_len = ctx->config->crl_len; -

627 char *ca_free = -

628 ((void *)0) -

629 ; -

630 struct stack_st_X509_INFO *xis = -

631 ((void *)0) -

632 ; -

633 X509_STORE *store; -

634 X509_INFO *xi; -

635 BIO *bio = -

636 ((void *)0) -

637 ; -

638 int rv = -1; -

639 int i; -

640 -

641 SSL_CTX_set_verify(ssl_ctx, verify, -

642 ((void *)0) -

643 ); -

644 SSL_CTX_set_cert_verify_callback(ssl_ctx, tls_ssl_cert_verify_cb, ctx); -

645 -

646

if (ctx->config->verify_depth >= 0

ctx->config->verify_depth >= 0	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

)

0-4

647

SSL_CTX_set_verify_depth(ssl_ctx, ctx->config->verify_depth);

executed 4 times by 1 test: SSL_CTX_set_verify_depth(ssl_ctx, ctx->config->verify_depth);

Executed by:

tlstest

648 -

649

if (ctx->config->verify_cert == 0

ctx->config->verify_cert == 0	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

)

0-4

650

goto

never executed: goto done;

done;

never executed: goto done;

651 -

652 -

653

if (ctx->config->ca_mem ==

ctx->config->c...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

654

((void *)0)

ctx->config->c...== ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

655

&& ctx->config->ca_path ==

ctx->config->c...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

656

((void *)0)

ctx->config->c...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

657 ) { -

658

if (tls_config_load_file(&ctx->error, "CA", "/usr/local/etc/ssl/cert.pem",

tls_config_loa... &ca_len) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

659

&ca_mem, &ca_len) != 0

tls_config_loa... &ca_len) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

)

660

goto

never executed: goto err;

err;

never executed: goto err;

661 ca_free = ca_mem; -

662

}

never executed: end of block

663 -

664

if (ca_mem !=

ca_mem != ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

665

((void *)0)

ca_mem != ((void *)0)	Description
TRUE	evaluated 4 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-4

666 ) { -

667

if (ca_len > 0x7fffffff

ca_len > 0x7fffffff	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

) {

0-4

668 tls_set_errorx(ctx, "ca too long"); -

669

goto

never executed: goto err;

err;

never executed: goto err;

670 } -

671

if (SSL_CTX_load_verify_mem(ssl_ctx, ca_mem, ca_len) != 1

SSL_CTX_load_v..., ca_len) != 1	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

) {

0-4

672 tls_set_errorx(ctx, "ssl verify memory setup failure"); -

673

goto

never executed: goto err;

err;

never executed: goto err;

674 } -

675

}

executed 4 times by 1 test: end of block

Executed by:

tlstest

else if (SSL_CTX_load_verify_locations(ssl_ctx,

SSL_CTX_load_v...>ca_path) != 1	Description
TRUE	never evaluated
FALSE	never evaluated

0-4

676

((void *)0)

SSL_CTX_load_v...>ca_path) != 1	Description
TRUE	never evaluated
FALSE	never evaluated

677

SSL_CTX_load_v...>ca_path) != 1	Description
TRUE	never evaluated
FALSE	never evaluated

678

ctx->config->ca_path) != 1

SSL_CTX_load_v...>ca_path) != 1	Description
TRUE	never evaluated
FALSE	never evaluated

) {

679 tls_set_errorx(ctx, "ssl verify locations failure"); -

680

goto

never executed: goto err;

err;

never executed: goto err;

681 } -

682 -

683

if (crl_mem !=

crl_mem != ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

684

((void *)0)

crl_mem != ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 4 times by 1 test Evaluated by: tlstest

0-4

685 ) { -

686

if (crl_len > 0x7fffffff

crl_len > 0x7fffffff	Description
TRUE	never evaluated
FALSE	never evaluated

) {

687 tls_set_errorx(ctx, "crl too long"); -

688

goto

never executed: goto err;

err;

never executed: goto err;

689 } -

690

if ((

(bio = BIO_new...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

bio = BIO_new_mem_buf(crl_mem, crl_len)) ==

(bio = BIO_new...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

691

((void *)0)

(bio = BIO_new...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

692 ) { -

693 tls_set_errorx(ctx, "failed to create buffer"); -

694

goto

never executed: goto err;

err;

never executed: goto err;

695 } -

696

if ((

(xis = PEM_X50...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

xis = PEM_X509_INFO_read_bio(bio,

(xis = PEM_X50...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

697

((void *)0)

(xis = PEM_X50...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

698

, tls_password_cb,

(xis = PEM_X50...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

699

(xis = PEM_X50...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

700

((void *)0)

(xis = PEM_X50...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

701

)) ==

(xis = PEM_X50...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

702

((void *)0)

(xis = PEM_X50...== ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

703 ) { -

704 tls_set_errorx(ctx, "failed to parse crl"); -

705

goto

never executed: goto err;

err;

never executed: goto err;

706 } -

707 store = SSL_CTX_get_cert_store(ssl_ctx); -

708

for (i = 0; i < sk_num(((_STACK*) (1 ? (xis) : (struct stack_st_X509_INFO*)0)))

i < sk_num(((_...509_INFO*)0)))	Description
TRUE	never evaluated
FALSE	never evaluated

; i++) {

709 xi = ((X509_INFO *)sk_value(((_STACK*) (1 ? (xis) : (struct stack_st_X509_INFO*)0)), (i))); -

710

if (xi->crl ==

xi->crl == ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

711

((void *)0)

xi->crl == ((void *)0)	Description
TRUE	never evaluated
FALSE	never evaluated

712 ) -

713

continue;

never executed: continue;

714

if (!X509_STORE_add_crl(store, xi->crl)

!X509_STORE_ad...tore, xi->crl)	Description
TRUE	never evaluated
FALSE	never evaluated

) {

715 tls_set_error(ctx, "failed to add crl"); -

716

goto

never executed: goto err;

err;

never executed: goto err;

717 } -

718 xi->crl = -

719 ((void *)0) -

720 ; -

721

}

never executed: end of block

722 X509_VERIFY_PARAM_set_flags(store->param, -

723 0x4 | 0x8); -

724

}

never executed: end of block

725 -

726

done:

code before this statement executed 4 times by 1 test: done:

Executed by:

tlstest

727 rv = 0; -

728 -

729

err:

code before this statement executed 4 times by 1 test: err:

Executed by:

tlstest

730 sk_pop_free(((_STACK*) (1 ? (xis) : (struct stack_st_X509_INFO*)0)), ((void (*)(void *)) ((1 ? (X509_INFO_free) : (void (*)(X509_INFO *))0)))); -

731 BIO_free(bio); -

732 free(ca_free); -

733 -

734

return

executed 4 times by 1 test: return (rv);

Executed by:

tlstest

(rv);

executed 4 times by 1 test: return (rv);

Executed by:

tlstest

735 } -

736 -

737 void -

738 tls_free(struct tls *ctx) -

739 { -

740

if (ctx ==

ctx == ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 36 times by 2 tests Evaluated by: tlstest verifytest

0-36

741

((void *)0)

ctx == ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 36 times by 2 tests Evaluated by: tlstest verifytest

0-36

742 ) -

743

return;

never executed: return;

744 -

745 tls_reset(ctx); -

746 -

747 free(ctx); -

748

}

executed 36 times by 2 tests: end of block

Executed by:

tlstest
verifytest

749 -

750 void -

751 tls_reset(struct tls *ctx) -

752 { -

753 struct tls_sni_ctx *sni, *nsni; -

754 -

755 tls_config_free(ctx->config); -

756 ctx->config = -

757 ((void *)0) -

758 ; -

759 -

760 SSL_CTX_free(ctx->ssl_ctx); -

761 SSL_free(ctx->ssl_conn); -

762 X509_free(ctx->ssl_peer_cert); -

763 -

764 ctx->ssl_conn = -

765 ((void *)0) -

766 ; -

767 ctx->ssl_ctx = -

768 ((void *)0) -

769 ; -

770 ctx->ssl_peer_cert = -

771 ((void *)0) -

772 ; -

773 -

774 ctx->ssl_peer_chain = -

775 ((void *)0) -

776 ; -

777 -

778 ctx->socket = -1; -

779 ctx->state = 0; -

780 -

781 free(ctx->servername); -

782 ctx->servername = -

783 ((void *)0) -

784 ; -

785 -

786 free(ctx->error.msg); -

787 ctx->error.msg = -

788 ((void *)0) -

789 ; -

790 ctx->error.num = -1; -

791 -

792 tls_conninfo_free(ctx->conninfo); -

793 ctx->conninfo = -

794 ((void *)0) -

795 ; -

796 -

797 tls_ocsp_free(ctx->ocsp); -

798 ctx->ocsp = -

799 ((void *)0) -

800 ; -

801 -

802

for (sni = ctx->sni_ctx; sni !=

sni != ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 78 times by 2 tests Evaluated by: tlstest verifytest

0-78

803

((void *)0)

sni != ((void *)0)	Description
TRUE	never evaluated
FALSE	evaluated 78 times by 2 tests Evaluated by: tlstest verifytest

0-78

804 ; sni = nsni) { -

805 nsni = sni->next; -

806 tls_sni_ctx_free(sni); -

807

}

never executed: end of block

808 ctx->sni_ctx = -

809 ((void *)0) -

810 ; -

811 -

812 ctx->read_cb = -

813 ((void *)0) -

814 ; -

815 ctx->write_cb = -

816 ((void *)0) -

817 ; -

818 ctx->cb_arg = -

819 ((void *)0) -

820 ; -

821

}

executed 78 times by 2 tests: end of block

Executed by:

tlstest
verifytest

822 -

823 int -

824 tls_ssl_error(struct tls *ctx, SSL *ssl_conn, int ssl_ret, const char *prefix) -

825 { -

826 const char *errstr = "unknown error"; -

827 unsigned long err; -

828 int ssl_err; -

829 -

830 ssl_err = SSL_get_error(ssl_conn, ssl_ret); -

831 switch (ssl_err) { -

832

case

never executed: case 0:

833

case

never executed: case 6:

834

return

never executed: return (0);

(0);

never executed: return (0);

835 -

836

case

executed 16 times by 1 test: case 2:

Executed by:

tlstest

executed 16 times by 1 test: case 2:

Executed by:

tlstest

837

return

executed 16 times by 1 test: return (-2);

Executed by:

tlstest

(-2);

executed 16 times by 1 test: return (-2);

Executed by:

tlstest

838 -

839

case

executed 4 times by 1 test: case 3:

Executed by:

tlstest

executed 4 times by 1 test: case 3:

Executed by:

tlstest

840

return

executed 4 times by 1 test: return (-3);

Executed by:

tlstest

(-3);

executed 4 times by 1 test: return (-3);

Executed by:

tlstest

841 -

842

case

never executed: case 5:

843

if ((

(err = ERR_peek_error()) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

err = ERR_peek_error()) != 0

(err = ERR_peek_error()) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

844 errstr = ERR_error_string(err, -

845 ((void *)0) -

846 ); -

847

}

never executed: end of block

else if (ssl_ret == 0

ssl_ret == 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

848

if ((

(ctx->state & (1 << 2)) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

ctx->state & (1 << 2)) != 0

(ctx->state & (1 << 2)) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

849 ctx->state |= (1 << 0); -

850

return

never executed: return (0);

(0);

never executed: return (0);

851 } -

852 errstr = "unexpected EOF"; -

853

}

never executed: end of block

else if (ssl_ret == -1

ssl_ret == -1	Description
TRUE	never evaluated
FALSE	never evaluated

) {

854 errstr = strerror( -

855 (*__errno_location ()) -

856 ); -

857

}

never executed: end of block

858 tls_set_ssl_errorx(ctx, "%s failed: %s", prefix, errstr); -

859

return

never executed: return (-1);

(-1);

never executed: return (-1);

860 -

861

case

never executed: case 1:

862

if ((

(err = ERR_peek_error()) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

err = ERR_peek_error()) != 0

(err = ERR_peek_error()) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

863 errstr = ERR_error_string(err, -

864 ((void *)0) -

865 ); -

866

}

never executed: end of block

867 tls_set_ssl_errorx(ctx, "%s failed: %s", prefix, errstr); -

868

return

never executed: return (-1);

(-1);

never executed: return (-1);

869 -

870

case

never executed: case 7:

871

case

never executed: case 8:

872

case

never executed: case 4:

873

default

never executed: default:

874 tls_set_ssl_errorx(ctx, "%s failed (%i)", prefix, ssl_err); -

875

return

never executed: return (-1);

(-1);

never executed: return (-1);

876 } -

877 } -

878 -

879 int -

880 tls_handshake(struct tls *ctx) -

881 { -

882 int rv = -1; -

883 -

884 tls_error_clear(&ctx->error); -

885 -

886

if ((

(ctx->flags & ...1 << 2))) == 0	Description
TRUE	never evaluated
FALSE	evaluated 31 times by 1 test Evaluated by: tlstest

ctx->flags & ((1 << 0) | (1 << 2))) == 0

(ctx->flags & ...1 << 2))) == 0	Description
TRUE	never evaluated
FALSE	evaluated 31 times by 1 test Evaluated by: tlstest

) {

0-31

887 tls_set_errorx(ctx, "invalid operation for context"); -

888

goto

never executed: goto out;

out;

never executed: goto out;

889 } -

890 -

891

if ((

(ctx->state & (1 << 2)) != 0	Description
TRUE	evaluated 2 times by 1 test Evaluated by: tlstest
FALSE	evaluated 29 times by 1 test Evaluated by: tlstest

ctx->state & (1 << 2)) != 0

(ctx->state & (1 << 2)) != 0	Description
TRUE	evaluated 2 times by 1 test Evaluated by: tlstest
FALSE	evaluated 29 times by 1 test Evaluated by: tlstest

) {

2-29

892 tls_set_errorx(ctx, "handshake already completed"); -

893

goto

executed 2 times by 1 test: goto out;

Executed by:

tlstest

out;

executed 2 times by 1 test: goto out;

Executed by:

tlstest

894 } -

895 -

896

if ((

(ctx->flags & (1 << 0)) != 0	Description
TRUE	evaluated 17 times by 1 test Evaluated by: tlstest
FALSE	evaluated 12 times by 1 test Evaluated by: tlstest

ctx->flags & (1 << 0)) != 0

(ctx->flags & (1 << 0)) != 0	Description
TRUE	evaluated 17 times by 1 test Evaluated by: tlstest
FALSE	evaluated 12 times by 1 test Evaluated by: tlstest

)

12-17

897

rv = tls_handshake_client(ctx);

executed 17 times by 1 test: rv = tls_handshake_client(ctx);

Executed by:

tlstest

898

else if ((

(ctx->flags & (1 << 2)) != 0	Description
TRUE	evaluated 12 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

ctx->flags & (1 << 2)) != 0

(ctx->flags & (1 << 2)) != 0	Description
TRUE	evaluated 12 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

)

0-12

899

rv = tls_handshake_server(ctx);

executed 12 times by 1 test: rv = tls_handshake_server(ctx);

Executed by:

tlstest

900 -

901

if (rv == 0

rv == 0	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	evaluated 21 times by 1 test Evaluated by: tlstest

) {

8-21

902 ctx->ssl_peer_cert = SSL_get_peer_certificate(ctx->ssl_conn); -

903 ctx->ssl_peer_chain = SSL_get_peer_cert_chain(ctx->ssl_conn); -

904

if (tls_conninfo_populate(ctx) == -1

tls_conninfo_p...ate(ctx) == -1	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

)

0-8

905

rv = -1;

never executed: rv = -1;

906

if (ctx->ocsp ==

ctx->ocsp == ((void *)0)	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-8

907

((void *)0)

ctx->ocsp == ((void *)0)	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

0-8

908 ) -

909

ctx->ocsp = tls_ocsp_setup_from_peer(ctx);

executed 8 times by 1 test: ctx->ocsp = tls_ocsp_setup_from_peer(ctx);

Executed by:

tlstest

910

}

executed 8 times by 1 test: end of block

Executed by:

tlstest

911

out:

code before this statement executed 29 times by 1 test: out:

Executed by:

tlstest

912 -

913 -

914 (*__errno_location ()) -

915 = 0; -

916

return

executed 31 times by 1 test: return (rv);

Executed by:

tlstest

(rv);

executed 31 times by 1 test: return (rv);

Executed by:

tlstest

917 } -

918 -

919 ssize_t -

920 tls_read(struct tls *ctx, void *buf, size_t buflen) -

921 { -

922 ssize_t rv = -1; -

923 int ssl_ret; -

924 -

925 tls_error_clear(&ctx->error); -

926 -

927

if ((

(ctx->state & (1 << 2)) == 0	Description
TRUE	never evaluated
FALSE	never evaluated

ctx->state & (1 << 2)) == 0

(ctx->state & (1 << 2)) == 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

928

if ((

(rv = tls_handshake(ctx)) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

rv = tls_handshake(ctx)) != 0

(rv = tls_handshake(ctx)) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

)

929

goto

never executed: goto out;

out;

never executed: goto out;

930

}

never executed: end of block

931 -

932

if (buflen > 0x7fffffff

buflen > 0x7fffffff	Description
TRUE	never evaluated
FALSE	never evaluated

) {

933 tls_set_errorx(ctx, "buflen too long"); -

934

goto

never executed: goto out;

out;

never executed: goto out;

935 } -

936 -

937 ERR_clear_error(); -

938

if ((

(ssl_ret = SSL..., buflen)) > 0	Description
TRUE	never evaluated
FALSE	never evaluated

ssl_ret = SSL_read(ctx->ssl_conn, buf, buflen)) > 0

(ssl_ret = SSL..., buflen)) > 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

939 rv = (ssize_t)ssl_ret; -

940

goto

never executed: goto out;

out;

never executed: goto out;

941 } -

942 rv = (ssize_t)tls_ssl_error(ctx, ctx->ssl_conn, ssl_ret, "read"); -

943 -

944

out:

code before this statement never executed: out:

945 -

946 -

947 (*__errno_location ()) -

948 = 0; -

949

return

never executed: return (rv);

(rv);

never executed: return (rv);

950 } -

951 -

952 ssize_t -

953 tls_write(struct tls *ctx, const void *buf, size_t buflen) -

954 { -

955 ssize_t rv = -1; -

956 int ssl_ret; -

957 -

958 tls_error_clear(&ctx->error); -

959 -

960

if ((

(ctx->state & (1 << 2)) == 0	Description
TRUE	never evaluated
FALSE	never evaluated

ctx->state & (1 << 2)) == 0

(ctx->state & (1 << 2)) == 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

961

if ((

(rv = tls_handshake(ctx)) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

rv = tls_handshake(ctx)) != 0

(rv = tls_handshake(ctx)) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

)

962

goto

never executed: goto out;

out;

never executed: goto out;

963

}

never executed: end of block

964 -

965

if (buflen > 0x7fffffff

buflen > 0x7fffffff	Description
TRUE	never evaluated
FALSE	never evaluated

) {

966 tls_set_errorx(ctx, "buflen too long"); -

967

goto

never executed: goto out;

out;

never executed: goto out;

968 } -

969 -

970 ERR_clear_error(); -

971

if ((

(ssl_ret = SSL..., buflen)) > 0	Description
TRUE	never evaluated
FALSE	never evaluated

ssl_ret = SSL_write(ctx->ssl_conn, buf, buflen)) > 0

(ssl_ret = SSL..., buflen)) > 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

972 rv = (ssize_t)ssl_ret; -

973

goto

never executed: goto out;

out;

never executed: goto out;

974 } -

975 rv = (ssize_t)tls_ssl_error(ctx, ctx->ssl_conn, ssl_ret, "write"); -

976 -

977

out:

code before this statement never executed: out:

978 -

979 -

980 (*__errno_location ()) -

981 = 0; -

982

return

never executed: return (rv);

(rv);

never executed: return (rv);

983 } -

984 -

985 int -

986 tls_close(struct tls *ctx) -

987 { -

988 int ssl_ret; -

989 int rv = 0; -

990 -

991 tls_error_clear(&ctx->error); -

992 -

993

if ((

(ctx->flags & ...1 << 2))) == 0	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

ctx->flags & ((1 << 0) | (1 << 2))) == 0

(ctx->flags & ...1 << 2))) == 0	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

) {

0-8

994 tls_set_errorx(ctx, "invalid operation for context"); -

995 rv = -1; -

996

goto

never executed: goto out;

out;

never executed: goto out;

997 } -

998 -

999

if (ctx->state & (1 << 3)

ctx->state & (1 << 3)	Description
TRUE	evaluated 8 times by 1 test Evaluated by: tlstest
FALSE	never evaluated

) {

0-8

1000 ERR_clear_error(); -

1001 ssl_ret = SSL_shutdown(ctx->ssl_conn); -

1002

if (ssl_ret < 0

ssl_ret < 0	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

) {

0-8

1003 rv = tls_ssl_error(ctx, ctx->ssl_conn, ssl_ret, -

1004 "shutdown"); -

1005

if (rv == -2

rv == -2	Description
TRUE	never evaluated
FALSE	never evaluated

|| rv == -3

rv == -3	Description
TRUE	never evaluated
FALSE	never evaluated

)

1006

goto

never executed: goto out;

out;

never executed: goto out;

1007

}

never executed: end of block

1008 ctx->state &= ~(1 << 3); -

1009

}

executed 8 times by 1 test: end of block

Executed by:

tlstest

1010 -

1011

if (ctx->socket != -1

ctx->socket != -1	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

) {

0-8

1012

if (shutdown(ctx->socket,

shutdown(ctx->...UT_RDWR ) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

1013

SHUT_RDWR

shutdown(ctx->...UT_RDWR ) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

1014

) != 0

shutdown(ctx->...UT_RDWR ) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

1015

if (rv == 0

rv == 0	Description
TRUE	never evaluated
FALSE	never evaluated

1016 -

1017

(*__errno_location ()) != 107	Description
TRUE	never evaluated
FALSE	never evaluated

__errno_location ())

(*__errno_location ()) != 107	Description
TRUE	never evaluated
FALSE	never evaluated

1018

(*__errno_location ()) != 107	Description
TRUE	never evaluated
FALSE	never evaluated

1019

107

(*__errno_location ()) != 107	Description
TRUE	never evaluated
FALSE	never evaluated

1020 && -

1021

(*__errno_location ()) != 104	Description
TRUE	never evaluated
FALSE	never evaluated

__errno_location ())

(*__errno_location ()) != 104	Description
TRUE	never evaluated
FALSE	never evaluated

1022

(*__errno_location ()) != 104	Description
TRUE	never evaluated
FALSE	never evaluated

1023

104

(*__errno_location ()) != 104	Description
TRUE	never evaluated
FALSE	never evaluated

1024 ) { -

1025 tls_set_error(ctx, "shutdown"); -

1026 rv = -1; -

1027

}

never executed: end of block

1028

}

never executed: end of block

1029

if (close(ctx->socket) != 0

close(ctx->socket) != 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

1030

if (rv == 0

rv == 0	Description
TRUE	never evaluated
FALSE	never evaluated

) {

1031 tls_set_error(ctx, "close"); -

1032 rv = -1; -

1033

}

never executed: end of block

1034

}

never executed: end of block

1035 ctx->socket = -1; -

1036

}

never executed: end of block

1037 -

1038

if ((

(ctx->state & (1 << 0)) != 0	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

ctx->state & (1 << 0)) != 0

(ctx->state & (1 << 0)) != 0	Description
TRUE	never evaluated
FALSE	evaluated 8 times by 1 test Evaluated by: tlstest

) {

0-8

1039 tls_set_errorx(ctx, "EOF without close notify"); -

1040 rv = -1; -

1041

}

never executed: end of block

1042 -

1043

out:

code before this statement executed 8 times by 1 test: out:

Executed by:

tlstest

1044 -

1045 -

1046 (*__errno_location ()) -

1047 = 0; -

1048

return

executed 8 times by 1 test: return (rv);

Executed by:

tlstest

(rv);

executed 8 times by 1 test: return (rv);

Executed by:

tlstest

1049 } -

Switch to Source code

Preprocessed file

Generated by Squish Coco 4.2.2