[thirdparty/systemd.git] / src / test / test-condition.c

/***
  This file is part of systemd

  Copyright 2014 Ronny Chevalier

  systemd is free software; you can redistribute it and/or modify it
  under the terms of the GNU Lesser General Public License as published by
  the Free Software Foundation; either version 2.1 of the License, or
  (at your option) any later version.

  systemd is distributed in the hope that it will be useful, but
  WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
  Lesser General Public License for more details.

  You should have received a copy of the GNU Lesser General Public License
  along with systemd; If not, see <http://www.gnu.org/licenses/>.
***/

#include "sd-id128.h"

#include "alloc-util.h"
#include "apparmor-util.h"
#include "architecture.h"
#include "audit-util.h"
#include "condition.h"
#include "hostname-util.h"
#include "id128-util.h"
#include "ima-util.h"
#include "log.h"
#include "macro.h"
#include "selinux-util.h"
#include "smack-util.h"
#include "util.h"

static void test_condition_test_path(void) {
        Condition *condition;

        condition = condition_new(CONDITION_PATH_EXISTS, "/bin/sh", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_EXISTS, "/bin/s?", false, false);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_EXISTS_GLOB, "/bin/s?", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_EXISTS_GLOB, "/bin/s?", false, true);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_EXISTS, "/thiscertainlywontexist", false, false);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_EXISTS, "/thiscertainlywontexist", false, true);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_IS_DIRECTORY, "/bin", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_DIRECTORY_NOT_EMPTY, "/bin", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_FILE_NOT_EMPTY, "/bin/sh", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_FILE_IS_EXECUTABLE, "/bin/sh", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_FILE_IS_EXECUTABLE, "/etc/passwd", false, false);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_IS_MOUNT_POINT, "/proc", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_IS_MOUNT_POINT, "/", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_IS_MOUNT_POINT, "/bin", false, false);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_IS_READ_WRITE, "/tmp", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_PATH_IS_SYMBOLIC_LINK, "/dev/stdout", false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);
}

static void test_condition_test_ac_power(void) {
        Condition *condition;

        condition = condition_new(CONDITION_AC_POWER, "true", false, false);
        assert_se(condition);
        assert_se(condition_test(condition) == on_ac_power());
        condition_free(condition);

        condition = condition_new(CONDITION_AC_POWER, "false", false, false);
        assert_se(condition);
        assert_se(condition_test(condition) != on_ac_power());
        condition_free(condition);

        condition = condition_new(CONDITION_AC_POWER, "false", false, true);
        assert_se(condition);
        assert_se(condition_test(condition) == on_ac_power());
        condition_free(condition);
}

static void test_condition_test_host(void) {
        _cleanup_free_ char *hostname = NULL;
        char sid[SD_ID128_STRING_MAX];
        Condition *condition;
        sd_id128_t id;
        int r;

        r = sd_id128_get_machine(&id);
        assert_se(r >= 0);
        assert_se(sd_id128_to_string(id, sid));

        condition = condition_new(CONDITION_HOST, sid, false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_HOST, "garbage value jjjjjjjjjjjjjj", false, false);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_HOST, sid, false, true);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);

        hostname = gethostname_malloc();
        assert_se(hostname);

        /* if hostname looks like an id128 then skip testing it */
        if (id128_is_valid(hostname))
                log_notice("hostname is an id128, skipping test");
        else {
                condition = condition_new(CONDITION_HOST, hostname, false, false);
                assert_se(condition);
                assert_se(condition_test(condition));
                condition_free(condition);
        }
}

static void test_condition_test_architecture(void) {
        Condition *condition;
        const char *sa;
        int a;

        a = uname_architecture();
        assert_se(a >= 0);

        sa = architecture_to_string(a);
        assert_se(sa);

        condition = condition_new(CONDITION_ARCHITECTURE, sa, false, false);
        assert_se(condition);
        assert_se(condition_test(condition) > 0);
        condition_free(condition);

        condition = condition_new(CONDITION_ARCHITECTURE, "garbage value", false, false);
        assert_se(condition);
        assert_se(condition_test(condition) == 0);
        condition_free(condition);

        condition = condition_new(CONDITION_ARCHITECTURE, sa, false, true);
        assert_se(condition);
        assert_se(condition_test(condition) == 0);
        condition_free(condition);
}

static void test_condition_test_kernel_command_line(void) {
        Condition *condition;

        condition = condition_new(CONDITION_KERNEL_COMMAND_LINE, "thisreallyshouldntbeonthekernelcommandline", false, false);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_KERNEL_COMMAND_LINE, "andthis=neither", false, false);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);
}

static void test_condition_test_null(void) {
        Condition *condition;

        condition = condition_new(CONDITION_NULL, NULL, false, false);
        assert_se(condition);
        assert_se(condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_NULL, NULL, false, true);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);
}

static void test_condition_test_security(void) {
        Condition *condition;

        condition = condition_new(CONDITION_SECURITY, "garbage oifdsjfoidsjoj", false, false);
        assert_se(condition);
        assert_se(!condition_test(condition));
        condition_free(condition);

        condition = condition_new(CONDITION_SECURITY, "selinux", false, true);
        assert_se(condition);
        assert_se(condition_test(condition) != mac_selinux_have());
        condition_free(condition);

        condition = condition_new(CONDITION_SECURITY, "ima", false, false);
        assert_se(condition);
        assert_se(condition_test(condition) == use_ima());
        condition_free(condition);

        condition = condition_new(CONDITION_SECURITY, "apparmor", false, false);
        assert_se(condition);
        assert_se(condition_test(condition) == mac_apparmor_use());
        condition_free(condition);

        condition = condition_new(CONDITION_SECURITY, "smack", false, false);
        assert_se(condition);
        assert_se(condition_test(condition) == mac_smack_use());
        condition_free(condition);

        condition = condition_new(CONDITION_SECURITY, "audit", false, false);
        assert_se(condition);
        assert_se(condition_test(condition) == use_audit());
        condition_free(condition);
}

int main(int argc, char *argv[]) {
        log_parse_environment();
        log_open();

        test_condition_test_path();
        test_condition_test_ac_power();
        test_condition_test_host();
        test_condition_test_architecture();
        test_condition_test_kernel_command_line();
        test_condition_test_null();
        test_condition_test_security();

        return 0;
}
Commit	Line	Data
b08f2be6 RC	1	/***
	2	This file is part of systemd
	3
	4	Copyright 2014 Ronny Chevalier
	5
	6	systemd is free software; you can redistribute it and/or modify it
	7	under the terms of the GNU Lesser General Public License as published by
	8	the Free Software Foundation; either version 2.1 of the License, or
	9	(at your option) any later version.
	10
	11	systemd is distributed in the hope that it will be useful, but
	12	WITHOUT ANY WARRANTY; without even the implied warranty of
	13	MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
	14	Lesser General Public License for more details.
	15
	16	You should have received a copy of the GNU Lesser General Public License
	17	along with systemd; If not, see <http://www.gnu.org/licenses/>.
	18	***/
	19
d1bddcec	20	#include "sd-id128.h"
07630cea	21
b5efdb8a	22	#include "alloc-util.h"
07630cea LP	23	#include "apparmor-util.h"
07630cea LP	24	#include "architecture.h"
430f0182	25	#include "audit-util.h"
07630cea LP	26	#include "condition.h"
07630cea LP	27	#include "hostname-util.h"
40a23924	28	#include "id128-util.h"
015df1f7	29	#include "ima-util.h"
07630cea LP	30	#include "log.h"
	31	#include "macro.h"
	32	#include "selinux-util.h"
015df1f7	33	#include "smack-util.h"
07630cea	34	#include "util.h"
d1bddcec	35
015df1f7	36	static void test_condition_test_path(void) {
d1bddcec LP	37	Condition *condition;
	38
	39	condition = condition_new(CONDITION_PATH_EXISTS, "/bin/sh", false, false);
4d548a7d	40	assert_se(condition);
d1bddcec LP	41	assert_se(condition_test(condition));
	42	condition_free(condition);
	43
b80ba1da	44	condition = condition_new(CONDITION_PATH_EXISTS, "/bin/s?", false, false);
4d548a7d	45	assert_se(condition);
b80ba1da LP	46	assert_se(!condition_test(condition));
	47	condition_free(condition);
	48
	49	condition = condition_new(CONDITION_PATH_EXISTS_GLOB, "/bin/s?", false, false);
4d548a7d	50	assert_se(condition);
b80ba1da LP	51	assert_se(condition_test(condition));
	52	condition_free(condition);
	53
	54	condition = condition_new(CONDITION_PATH_EXISTS_GLOB, "/bin/s?", false, true);
4d548a7d	55	assert_se(condition);
b80ba1da LP	56	assert_se(!condition_test(condition));
	57	condition_free(condition);
	58
d1bddcec	59	condition = condition_new(CONDITION_PATH_EXISTS, "/thiscertainlywontexist", false, false);
4d548a7d	60	assert_se(condition);
d1bddcec LP	61	assert_se(!condition_test(condition));
	62	condition_free(condition);
	63
	64	condition = condition_new(CONDITION_PATH_EXISTS, "/thiscertainlywontexist", false, true);
4d548a7d	65	assert_se(condition);
d1bddcec LP	66	assert_se(condition_test(condition));
d1bddcec LP	67	condition_free(condition);
b80ba1da LP	68
b80ba1da LP	69	condition = condition_new(CONDITION_PATH_IS_DIRECTORY, "/bin", false, false);
4d548a7d	70	assert_se(condition);
b80ba1da LP	71	assert_se(condition_test(condition));
	72	condition_free(condition);
	73
	74	condition = condition_new(CONDITION_DIRECTORY_NOT_EMPTY, "/bin", false, false);
4d548a7d	75	assert_se(condition);
b80ba1da LP	76	assert_se(condition_test(condition));
	77	condition_free(condition);
	78
	79	condition = condition_new(CONDITION_FILE_NOT_EMPTY, "/bin/sh", false, false);
4d548a7d	80	assert_se(condition);
b80ba1da LP	81	assert_se(condition_test(condition));
	82	condition_free(condition);
	83
	84	condition = condition_new(CONDITION_FILE_IS_EXECUTABLE, "/bin/sh", false, false);
4d548a7d	85	assert_se(condition);
b80ba1da LP	86	assert_se(condition_test(condition));
	87	condition_free(condition);
	88
	89	condition = condition_new(CONDITION_FILE_IS_EXECUTABLE, "/etc/passwd", false, false);
4d548a7d	90	assert_se(condition);
b80ba1da LP	91	assert_se(!condition_test(condition));
	92	condition_free(condition);
	93
	94	condition = condition_new(CONDITION_PATH_IS_MOUNT_POINT, "/proc", false, false);
4d548a7d	95	assert_se(condition);
b80ba1da LP	96	assert_se(condition_test(condition));
	97	condition_free(condition);
	98
	99	condition = condition_new(CONDITION_PATH_IS_MOUNT_POINT, "/", false, false);
4d548a7d	100	assert_se(condition);
b80ba1da LP	101	assert_se(condition_test(condition));
	102	condition_free(condition);
	103
	104	condition = condition_new(CONDITION_PATH_IS_MOUNT_POINT, "/bin", false, false);
4d548a7d	105	assert_se(condition);
b80ba1da LP	106	assert_se(!condition_test(condition));
b80ba1da LP	107	condition_free(condition);
015df1f7 RC	108
015df1f7 RC	109	condition = condition_new(CONDITION_PATH_IS_READ_WRITE, "/tmp", false, false);
4d548a7d	110	assert_se(condition);
015df1f7 RC	111	assert_se(condition_test(condition));
	112	condition_free(condition);
	113
	114	condition = condition_new(CONDITION_PATH_IS_SYMBOLIC_LINK, "/dev/stdout", false, false);
4d548a7d	115	assert_se(condition);
015df1f7 RC	116	assert_se(condition_test(condition));
015df1f7 RC	117	condition_free(condition);
d1bddcec	118	}
b08f2be6 RC	119
	120	static void test_condition_test_ac_power(void) {
	121	Condition *condition;
	122
	123	condition = condition_new(CONDITION_AC_POWER, "true", false, false);
4d548a7d	124	assert_se(condition);
d1bddcec	125	assert_se(condition_test(condition) == on_ac_power());
b08f2be6 RC	126	condition_free(condition);
	127
	128	condition = condition_new(CONDITION_AC_POWER, "false", false, false);
4d548a7d	129	assert_se(condition);
d1bddcec	130	assert_se(condition_test(condition) != on_ac_power());
b08f2be6 RC	131	condition_free(condition);
	132
	133	condition = condition_new(CONDITION_AC_POWER, "false", false, true);
4d548a7d	134	assert_se(condition);
d1bddcec	135	assert_se(condition_test(condition) == on_ac_power());
b08f2be6 RC	136	condition_free(condition);
	137	}
	138
	139	static void test_condition_test_host(void) {
4d548a7d LP	140	_cleanup_free_ char *hostname = NULL;
4d548a7d LP	141	char sid[SD_ID128_STRING_MAX];
b08f2be6 RC	142	Condition *condition;
	143	sd_id128_t id;
	144	int r;
b08f2be6 RC	145
	146	r = sd_id128_get_machine(&id);
	147	assert_se(r >= 0);
	148	assert_se(sd_id128_to_string(id, sid));
	149
	150	condition = condition_new(CONDITION_HOST, sid, false, false);
4d548a7d	151	assert_se(condition);
d1bddcec	152	assert_se(condition_test(condition));
b08f2be6 RC	153	condition_free(condition);
	154
	155	condition = condition_new(CONDITION_HOST, "garbage value jjjjjjjjjjjjjj", false, false);
4d548a7d	156	assert_se(condition);
d1bddcec	157	assert_se(!condition_test(condition));
b08f2be6 RC	158	condition_free(condition);
	159
	160	condition = condition_new(CONDITION_HOST, sid, false, true);
4d548a7d	161	assert_se(condition);
d1bddcec	162	assert_se(!condition_test(condition));
b08f2be6 RC	163	condition_free(condition);
	164
	165	hostname = gethostname_malloc();
	166	assert_se(hostname);
	167
40a23924	168	/* if hostname looks like an id128 then skip testing it */
ce5fcc69	169	if (id128_is_valid(hostname))
40a23924	170	log_notice("hostname is an id128, skipping test");
ce5fcc69	171	else {
40a23924	172	condition = condition_new(CONDITION_HOST, hostname, false, false);
4d548a7d	173	assert_se(condition);
40a23924 SM	174	assert_se(condition_test(condition));
	175	condition_free(condition);
	176	}
b08f2be6 RC	177	}
	178
	179	static void test_condition_test_architecture(void) {
	180	Condition *condition;
b08f2be6	181	const char *sa;
592fd144	182	int a;
b08f2be6 RC	183
	184	a = uname_architecture();
	185	assert_se(a >= 0);
	186
	187	sa = architecture_to_string(a);
	188	assert_se(sa);
	189
	190	condition = condition_new(CONDITION_ARCHITECTURE, sa, false, false);
4d548a7d	191	assert_se(condition);
2cb62395	192	assert_se(condition_test(condition) > 0);
b08f2be6 RC	193	condition_free(condition);
	194
	195	condition = condition_new(CONDITION_ARCHITECTURE, "garbage value", false, false);
4d548a7d	196	assert_se(condition);
2cb62395	197	assert_se(condition_test(condition) == 0);
b08f2be6 RC	198	condition_free(condition);
	199
	200	condition = condition_new(CONDITION_ARCHITECTURE, sa, false, true);
4d548a7d	201	assert_se(condition);
2cb62395	202	assert_se(condition_test(condition) == 0);
b08f2be6 RC	203	condition_free(condition);
	204	}
	205
07318c29 LP	206	static void test_condition_test_kernel_command_line(void) {
	207	Condition *condition;
	208
	209	condition = condition_new(CONDITION_KERNEL_COMMAND_LINE, "thisreallyshouldntbeonthekernelcommandline", false, false);
4d548a7d	210	assert_se(condition);
d1bddcec	211	assert_se(!condition_test(condition));
07318c29 LP	212	condition_free(condition);
	213
	214	condition = condition_new(CONDITION_KERNEL_COMMAND_LINE, "andthis=neither", false, false);
4d548a7d	215	assert_se(condition);
d1bddcec	216	assert_se(!condition_test(condition));
07318c29 LP	217	condition_free(condition);
	218	}
	219
b80ba1da LP	220	static void test_condition_test_null(void) {
	221	Condition *condition;
	222
	223	condition = condition_new(CONDITION_NULL, NULL, false, false);
4d548a7d	224	assert_se(condition);
b80ba1da LP	225	assert_se(condition_test(condition));
	226	condition_free(condition);
	227
	228	condition = condition_new(CONDITION_NULL, NULL, false, true);
4d548a7d	229	assert_se(condition);
b80ba1da LP	230	assert_se(!condition_test(condition));
	231	condition_free(condition);
	232	}
	233
015df1f7 RC	234	static void test_condition_test_security(void) {
	235	Condition *condition;
	236
	237	condition = condition_new(CONDITION_SECURITY, "garbage oifdsjfoidsjoj", false, false);
4d548a7d	238	assert_se(condition);
015df1f7 RC	239	assert_se(!condition_test(condition));
	240	condition_free(condition);
	241
	242	condition = condition_new(CONDITION_SECURITY, "selinux", false, true);
4d548a7d	243	assert_se(condition);
6355e756	244	assert_se(condition_test(condition) != mac_selinux_have());
015df1f7 RC	245	condition_free(condition);
	246
	247	condition = condition_new(CONDITION_SECURITY, "ima", false, false);
4d548a7d	248	assert_se(condition);
015df1f7 RC	249	assert_se(condition_test(condition) == use_ima());
	250	condition_free(condition);
	251
	252	condition = condition_new(CONDITION_SECURITY, "apparmor", false, false);
4d548a7d	253	assert_se(condition);
015df1f7 RC	254	assert_se(condition_test(condition) == mac_apparmor_use());
	255	condition_free(condition);
	256
	257	condition = condition_new(CONDITION_SECURITY, "smack", false, false);
4d548a7d	258	assert_se(condition);
015df1f7 RC	259	assert_se(condition_test(condition) == mac_smack_use());
	260	condition_free(condition);
	261
	262	condition = condition_new(CONDITION_SECURITY, "audit", false, false);
4d548a7d	263	assert_se(condition);
015df1f7 RC	264	assert_se(condition_test(condition) == use_audit());
	265	condition_free(condition);
	266	}
	267
b08f2be6 RC	268	int main(int argc, char *argv[]) {
	269	log_parse_environment();
	270	log_open();
	271
015df1f7	272	test_condition_test_path();
b08f2be6 RC	273	test_condition_test_ac_power();
	274	test_condition_test_host();
	275	test_condition_test_architecture();
07318c29	276	test_condition_test_kernel_command_line();
b80ba1da	277	test_condition_test_null();
015df1f7	278	test_condition_test_security();
b08f2be6 RC	279
	280	return 0;
	281	}