Test GoThemis with Go 1.11~1.14 on CircleCI

.circleci/config.yml

@@ -141,7 +141,6 @@ jobs:
     docker:
       - image: cossacklabs/android-build:2019.01
     environment:
-      GOTHEMIS_IMPORT: github.com/cossacklabs/themis/gothemis
       # NIST STS tests tend to fail in Docker environment
       NO_NIST_STS: 1
       WITH_FATAL_WARNINGS: yes
@@ -208,8 +207,6 @@ jobs:
       - run: make ENGINE=boringssl BUILD_PATH=build_with_boringssl prepare_tests_basic
       - run: make BUILD_PATH=cover_build COVERAGE=y prepare_tests_basic
       - run: make prepare_tests_all
-      - run: mkdir -p $HOME/go/src/$GOTHEMIS_IMPORT
-      - run: rsync -auv gothemis/ $HOME/go/src/$GOTHEMIS_IMPORT/
       - run: lcov --directory . --zerocounters
       # run only if CIRCLE_PR_NUMBER variable is not set (it's not pull request and COVERALLS_TOKEN will be set via circleCI for non-PR build) and COVERALLS_TOKEN is set
       # we should calculate coverage for gothemis and send report before sending coverage of main C part
@@ -227,7 +224,6 @@ jobs:
 #     - run: make clean_themispp_test && CXX="clang++" CFLAGS="-std=c++17" make themispp_test && make test_cpp
       - run: make test_python
       - run: make test_ruby
-      - run: make test_go
       - run: make test_rust
       - run: make fuzz
       - run: $HOME/valgrind/bin/valgrind build/tests/soter_test 2>&1 | grep "ERROR SUMMARY\|definitely lost\|indirectly lost\|possibly lost" | awk '{sum += $4} END {print $0; if ( sum > 0 ) { exit 1 } }'
@@ -247,6 +243,102 @@ jobs:
             - ~/.cargo
             - ~/.rustup
 
+  gothemis:
+    docker:
+      - image: cossacklabs/build:ubuntu-bionic
+    environment:
+      GOTHEMIS_IMPORT: github.com/cossacklabs/themis/gothemis
+      WITH_FATAL_WARNINGS: yes
+    steps:
+      - run:
+          name: Install Go versions
+          command: |
+            # These is not much difference between fetching these binaries from
+            # CircleCI cache and downloading them from scratch: both take around
+            # 30 seconds. But CircleCI caches are immutable and tricky to update.
+            #
+            # You can find latest versions and their hashes here:
+            #     https://golang.org/dl/
+            # We support latest stable releases (as declared by Go team)
+            # as well as some historical versions on best-effort basis
+            go_versions=(
+              "1.14 1.14    https://dl.google.com/go/go1.14.linux-amd64.tar.gz    08df79b46b0adf498ea9f320a0f23d6ec59e9003660b4c9c1ce8e5e2c6f823ca"
+              "1.13 1.13.8  https://dl.google.com/go/go1.13.8.linux-amd64.tar.gz  0567734d558aef19112f2b2873caa0c600f1b4a5827930eb5a7f35235219e9d8"
+              "1.12 1.12.17 https://dl.google.com/go/go1.12.17.linux-amd64.tar.gz a53dd476129d496047487bfd53d021dd17e0c96895865a0e7d0469ce3db8c8d2"
+              "1.11 1.11.13 https://dl.google.com/go/go1.11.13.linux-amd64.tar.gz 50fe8e13592f8cf22304b9c4adfc11849a2c3d281b1d7e09c924ae24874c6daa"
+            )
+            mkdir -p "$HOME/go-install"
+            for v in "${go_versions[@]}"
+            do
+                set -- $v
+                install_name="$HOME/go-install/go-$1"
+                tarball_name="$HOME/go-install/go-$2.tar.gz"
+                tarball_url="$3"
+                expect_hash="$4"
+                # Download the tarball only if we do not have it already installed
+                if [[ ! -e "$install_name" ]]
+                then
+                    wget -O "$tarball_name" "$tarball_url"
+                    actual_hash=$(sha256sum "$tarball_name" | awk '{print $1}')
+                    if [[ "$actual_hash" != "$expect_hash" ]]
+                    then
+                        echo 1>&2 "Go distribution checksum mismatch!"
+                        echo 1>&2 "  actual: $actual_hash"
+                        echo 1>&2 "  expect: $expect_hash"
+                        exit 1
+                    fi
+                    # Go tarball already contains a "go" directory, but we want
+                    # it to be named differently to allow parallel installs
+                    echo "Unpacking $tarball_name into $install_name..."
+                    tar -C "$HOME/go-install" -xzf "$tarball_name"
+                    mv "$HOME/go-install/go" "$install_name"
+                fi
+            done
+      - checkout
+      - run:
+          name: Init submodules
+          command: |
+            git reset --hard HEAD
+            git submodule sync
+            git submodule update --init
+      - run:
+          name: Install Themis Core
+          command: |
+            make
+            sudo make install
+      - run:
+          name: Prepare tests
+          command: make prepare_tests_all
+      - run:
+          name: Install GoThemis
+          command: |
+            mkdir -p $HOME/go/src/$GOTHEMIS_IMPORT
+            cp -ar gothemis/* $HOME/go/src/$GOTHEMIS_IMPORT
+      - run:
+          name: GoThemis unit tests (Go 1.14)
+          command: |
+            export PATH="$HOME/go-install/go-1.14/bin:$PATH"
+            go version
+            make test_go
+      - run:
+          name: GoThemis unit tests (Go 1.13)
+          command: |
+            export PATH="$HOME/go-install/go-1.13/bin:$PATH"
+            go version
+            make test_go
+      - run:
+          name: GoThemis unit tests (Go 1.12)
+          command: |
+            export PATH="$HOME/go-install/go-1.12/bin:$PATH"
+            go version
+            make test_go
+      - run:
+          name: GoThemis unit tests (Go 1.11)
+          command: |
+            export PATH="$HOME/go-install/go-1.11/bin:$PATH"
+            go version
+            make test_go
+
   jsthemis:
     docker:
       - image: cossacklabs/android-build:2019.01
@@ -529,6 +621,7 @@ workflows:
       - benchmark
       - android
       - x86_64
+      - gothemis
       - jsthemis
       - php5
       - php70
@@ -550,6 +643,7 @@ workflows:
       - benchmark
       - android
       - x86_64
+      - gothemis
       - jsthemis
       - php5
       - php70

CHANGELOG.md

@@ -37,6 +37,7 @@ _Code:_
 - **Go**
 
   - New function `keys.NewSymmetricKey()` can be used to generate symmetric keys for Secure Cell ([#561](https://github.com/cossacklabs/themis/pull/561)).
+  - Worked around a bug in CGo 1.11 and earlier causing panics when `bytes.Buffer` is passed to GoThemis methods ([#595](https://github.com/cossacklabs/themis/pull/595)).
 
 - **iOS and macOS**
 

gothemis/cell/cell.go

@@ -126,8 +126,10 @@ static bool decrypt(const void *key, size_t key_len, const void *prot, size_t pr
 */
 import "C"
 import (
-	"github.com/cossacklabs/themis/gothemis/errors"
 	"unsafe"
+
+	"github.com/cossacklabs/themis/gothemis/errors"
+	"github.com/cossacklabs/themis/gothemis/utils"
 )
 
 // Secure Cell operation mode.
@@ -155,7 +157,7 @@ type SecureCell struct {
 
 // New makes a new Secure Cell with master key and specified mode.
 func New(key []byte, mode int) *SecureCell {
-	return &SecureCell{key, mode}
+	return &SecureCell{utils.SanitizeBuffer(key), mode}
 }
 
 func missing(data []byte) bool {
@@ -182,6 +184,9 @@ func (sc *SecureCell) Protect(data []byte, context []byte) ([]byte, []byte, erro
 		}
 	}
 
+	data = utils.SanitizeBuffer(data)
+	context = utils.SanitizeBuffer(context)
+
 	var ctx unsafe.Pointer
 	var ctxLen C.size_t
 
@@ -256,6 +261,10 @@ func (sc *SecureCell) Unprotect(protectedData []byte, additionalData []byte, con
 		}
 	}
 
+	protectedData = utils.SanitizeBuffer(protectedData)
+	additionalData = utils.SanitizeBuffer(additionalData)
+	context = utils.SanitizeBuffer(context)
+
 	var add, ctx unsafe.Pointer = nil, nil
 	var addLen, ctxLen C.size_t = 0, 0
 

gothemis/cell/cell_test.go

@@ -5,6 +5,8 @@ import (
 	"crypto/rand"
 	"math/big"
 	"testing"
+
+	"github.com/cossacklabs/themis/gothemis/keys"
 )
 
 func testProtect(mode int, context []byte, t *testing.T) {
@@ -96,3 +98,24 @@ func TestProtect(t *testing.T) {
 
 	testProtect(ModeContextImprint, context, t)
 }
+
+// Regression test for cgo false positive, resolved in go 1.12:
+// https://github.com/golang/go/issues/14210
+func TestBufferGo111(t *testing.T) {
+	key, err := keys.NewSymmetricKey()
+	if err != nil {
+		t.Fatalf("cannot generate master key: %v", err)
+	}
+	sc := New(key.Value, ModeSeal)
+
+	data := []byte("some data to encrypt")
+
+	b := new(bytes.Buffer)
+	b.WriteString("context in bytes.Buffer")
+	context := b.Bytes()
+
+	_, _, err = sc.Protect(data, context)
+	if err != nil {
+		t.Errorf("Protect() failed: %v", err)
+	}
+}

gothemis/compare/compare.go

@@ -53,9 +53,11 @@ static int compare_result(void *ctx)
 */
 import "C"
 import (
-	"github.com/cossacklabs/themis/gothemis/errors"
 	"runtime"
 	"unsafe"
+
+	"github.com/cossacklabs/themis/gothemis/errors"
+	"github.com/cossacklabs/themis/gothemis/utils"
 )
 
 // Secure comparison result.
@@ -115,6 +117,7 @@ func (sc *SecureCompare) Append(secret []byte) error {
 	if nil == secret || 0 == len(secret) {
 		return errors.New("Secret was not provided")
 	}
+	secret = utils.SanitizeBuffer(secret)
 	if !bool(C.compare_append(sc.ctx, unsafe.Pointer(&secret[0]), C.size_t(len(secret)))) {
 		return errors.New("Failed to append secret")
 	}
@@ -147,6 +150,7 @@ func (sc *SecureCompare) Proceed(data []byte) ([]byte, error) {
 	if nil == data || 0 == len(data) {
 		return nil, errors.New("Data was not provided")
 	}
+	data = utils.SanitizeBuffer(data)
 
 	if !bool(C.compare_proceed_size(sc.ctx, unsafe.Pointer(&data[0]), C.size_t(len(data)), &outLen)) {
 		return nil, errors.New("Failed to get output size")

gothemis/message/message.go

@@ -63,9 +63,11 @@ static bool process(const void *priv, size_t priv_len, const void *public, size_
 */
 import "C"
 import (
+	"unsafe"
+
 	"github.com/cossacklabs/themis/gothemis/errors"
 	"github.com/cossacklabs/themis/gothemis/keys"
-	"unsafe"
+	"github.com/cossacklabs/themis/gothemis/utils"
 )
 
 const (
@@ -92,22 +94,30 @@ func messageProcess(private *keys.PrivateKey, peerPublic *keys.PublicKey, messag
 	if nil == message || 0 == len(message) {
 		return nil, errors.New("No message was provided")
 	}
+	message = utils.SanitizeBuffer(message)
 
+	var privateValue, peerPublicValue []byte
 	var priv, pub unsafe.Pointer
 	var privLen, pubLen C.size_t
 	priv = nil
 	pub = nil
 	privLen = 0
 	pubLen = 0
 
-	if nil != private && 0 < len(private.Value) {
-		priv = unsafe.Pointer(&private.Value[0])
-		privLen = C.size_t(len(private.Value))
+	if private != nil {
+		privateValue = utils.SanitizeBuffer(private.Value)
+	}
+	if len(privateValue) != 0 {
+		priv = unsafe.Pointer(&privateValue[0])
+		privLen = C.size_t(len(privateValue))
 	}
 
-	if nil != peerPublic && 0 < len(peerPublic.Value) {
-		pub = unsafe.Pointer(&peerPublic.Value[0])
-		pubLen = C.size_t(len(peerPublic.Value))
+	if peerPublic != nil {
+		peerPublicValue = utils.SanitizeBuffer(peerPublic.Value)
+	}
+	if len(peerPublicValue) != 0 {
+		pub = unsafe.Pointer(&peerPublicValue[0])
+		pubLen = C.size_t(len(peerPublicValue))
 	}
 
 	var outputLength C.size_t