check_symbol_exists(prctl "sys/prctl.h" HAVE_PRCTL)
check_symbol_exists(raise "signal.h" HAVE_RAISE)
check_symbol_exists(getrlimit "sys/resource.h;sys/time.h" HAVE_GETRLIMIT)
+check_symbol_exists(prlimit "sys/resource.h;sys/time.h" HAVE_PRLIMIT)
check_symbol_exists(setrlimit "sys/resource.h;sys/time.h" HAVE_SETRLIMIT)
check_struct_member(cmsgcred cmcred_pid "sys/types.h sys/socket.h" HAVE_CMSGCRED) # dbus-sysdeps.c
#cmakedefine HAVE_DIRFD 1
#cmakedefine HAVE_INOTIFY_INIT1 1
#cmakedefine HAVE_GETRLIMIT 1
+#cmakedefine HAVE_PRLIMIT 1
#cmakedefine HAVE_SETRLIMIT 1
#cmakedefine HAVE_UNIX_FD_PASSING 1
AC_SEARCH_LIBS(socket,[socket network])
AC_CHECK_FUNC(gethostbyname,,[AC_CHECK_LIB(nsl,gethostbyname)])
-AC_CHECK_FUNCS([vsnprintf vasprintf nanosleep usleep setenv clearenv unsetenv socketpair getgrouplist fpathconf setrlimit poll setlocale localeconv strtoll strtoull issetugid getresuid setresuid getrlimit])
+AC_CHECK_FUNCS([vsnprintf vasprintf nanosleep usleep setenv clearenv unsetenv socketpair getgrouplist fpathconf setrlimit poll setlocale localeconv strtoll strtoull issetugid getresuid setresuid getrlimit prlimit])
AC_CHECK_HEADERS([syslog.h])
if test "x$ac_cv_header_syslog_h" = "xyes"; then
fi
AC_CHECK_HEADERS(sys/resource.h)
+AC_CHECK_HEADERS([sys/time.h])
AC_CHECK_HEADERS(dirent.h)
in_data = \
data/valid-config-files-system/debug-allow-all-fail.conf.in \
data/valid-config-files-system/debug-allow-all-pass.conf.in \
+ data/valid-config-files/as-another-user.conf.in \
data/valid-config-files/debug-allow-all-sha1.conf.in \
data/valid-config-files/debug-allow-all.conf.in \
data/valid-config-files/finite-timeout.conf.in \
sed \
-e 's,[@]DBUS_TEST_DATA[@],@abs_builddir@/data,' \
-e 's,[@]DBUS_TEST_EXEC[@],@abs_builddir@,' \
+ -e 's,[@]DBUS_USER[@],$(DBUS_USER),' \
-e 's,[@]EXEEXT[@],$(EXEEXT),' \
-e 's,[@]TEST_LAUNCH_HELPER_BINARY[@],@abs_top_builddir@/bus/dbus-daemon-launch-helper-test$(EXEEXT),' \
-e 's,[@]TEST_LISTEN[@],$(TEST_LISTEN),' \
sed \
-e 's,[@]DBUS_TEST_DATA[@],$(testexecdir)/data,' \
-e 's,[@]DBUS_TEST_EXEC[@],$(testexecdir),' \
+ -e 's,[@]DBUS_USER[@],$(DBUS_USER),' \
-e 's,[@]EXEEXT[@],$(EXEEXT),' \
-e 's,[@]TEST_LAUNCH_HELPER_BINARY[@],/bin/false,' \
-e 's,[@]TEST_LISTEN[@],$(TEST_LISTEN),' \
--- /dev/null
+<!--
+Configuration similar to the system bus, to be used when testing rlimit
+handling.
+-->
+
+<!DOCTYPE busconfig PUBLIC "-//freedesktop//DTD D-Bus Bus Configuration 1.0//EN"
+ "http://www.freedesktop.org/standards/dbus/1.0/busconfig.dtd">
+<busconfig>
+ <type>system</type>
+ <user>@DBUS_USER@</user>
+ <auth>EXTERNAL</auth>
+
+ <!-- This is not the same as the real system bus: we don't want to collide -->
+ <listen>@TEST_LISTEN@</listen>
+
+ <policy context="default">
+ <allow user="*"/>
+ <deny own="*"/>
+ <deny send_type="method_call"/>
+ <allow send_type="signal"/>
+ <allow send_requested_reply="true" send_type="method_return"/>
+ <allow send_requested_reply="true" send_type="error"/>
+ <allow receive_type="method_call"/>
+ <allow receive_type="method_return"/>
+ <allow receive_type="error"/>
+ <allow receive_type="signal"/>
+ </policy>
+</busconfig>
#include <string.h>
#ifdef DBUS_UNIX
+# include <pwd.h>
# include <unistd.h>
# include <sys/types.h>
+
+# ifdef HAVE_SYS_RESOURCE_H
+# include <sys/resource.h>
+# endif
+
+# ifdef HAVE_SYS_TIME_H
+# include <sys/time.h>
+# endif
#endif
/* Platforms where we know that credentials-passing passes both the
const char *bug_ref;
guint min_messages;
const char *config_file;
+ TestUser user;
enum { SPECIFY_ADDRESS = 0, RELY_ON_DEFAULT } connect_mode;
} Config;
}
address = test_get_dbus_daemon (config ? config->config_file : NULL,
- TEST_USER_ME,
+ config ? config->user : TEST_USER_ME,
&f->daemon_pid);
if (address == NULL)
dbus_message_unref (m);
}
+#define DESIRED_RLIMIT 65536
+
+#ifdef DBUS_UNIX
+static void
+test_fd_limit (Fixture *f,
+ gconstpointer context)
+{
+#ifdef HAVE_PRLIMIT
+ struct rlimit lim;
+ const struct passwd *pwd = NULL;
+#endif
+
+ if (f->skip)
+ return;
+
+#ifdef HAVE_PRLIMIT
+
+ if (getuid () != 0)
+ {
+ g_test_skip ("Cannot test, only uid 0 is expected to raise fd limit");
+ return;
+ }
+
+ pwd = getpwnam (DBUS_USER);
+
+ if (pwd == NULL)
+ {
+ gchar *message = g_strdup_printf ("user '%s' does not exist",
+ DBUS_USER);
+
+ g_test_skip (message);
+ g_free (message);
+ return;
+ }
+
+ if (prlimit (getpid (), RLIMIT_NOFILE, NULL, &lim) < 0)
+ g_error ("prlimit(): %s", g_strerror (errno));
+
+ g_test_message ("our RLIMIT_NOFILE: rlim_cur: %ld, rlim_max: %ld",
+ (long) lim.rlim_cur, (long) lim.rlim_max);
+
+ if (lim.rlim_cur == RLIM_INFINITY || lim.rlim_cur >= DESIRED_RLIMIT)
+ {
+ /* The dbus-daemon will have inherited our large rlimit */
+ g_test_skip ("Cannot test, our own fd limit was already large");
+ return;
+ }
+
+ if (prlimit (f->daemon_pid, RLIMIT_NOFILE, NULL, &lim) < 0)
+ g_error ("prlimit(): %s", g_strerror (errno));
+
+ g_test_message ("dbus-daemon's RLIMIT_NOFILE: rlim_cur: %ld, rlim_max: %ld",
+ (long) lim.rlim_cur, (long) lim.rlim_max);
+
+ if (lim.rlim_cur != RLIM_INFINITY)
+ g_assert_cmpint (lim.rlim_cur, >=, DESIRED_RLIMIT);
+
+#else /* !HAVE_PRLIMIT */
+
+ g_test_skip ("prlimit() not supported on this platform");
+
+#endif /* !HAVE_PRLIMIT */
+}
+#endif
+
static void
teardown (Fixture *f,
gconstpointer context G_GNUC_UNUSED)
static Config limited_config = {
"34393", 10000, "valid-config-files/incoming-limit.conf",
- SPECIFY_ADDRESS
+ TEST_USER_ME, SPECIFY_ADDRESS
};
static Config finite_timeout_config = {
NULL, 1, "valid-config-files/finite-timeout.conf",
- SPECIFY_ADDRESS
+ TEST_USER_ME, SPECIFY_ADDRESS
};
#ifdef DBUS_UNIX
static Config listen_unix_runtime_config = {
"61303", 1, "valid-config-files/listen-unix-runtime.conf",
- RELY_ON_DEFAULT
+ TEST_USER_ME, RELY_ON_DEFAULT
+};
+
+static Config as_another_user_config = {
+ NULL, 1, "valid-config-files/as-another-user.conf",
+ /* We start the dbus-daemon as root and drop privileges, like the
+ * real system bus does */
+ TEST_USER_ROOT, SPECIFY_ADDRESS
};
#endif
* and that blocks on a round-trip to the dbus-daemon */
g_test_add ("/unix-runtime-is-default", Fixture, &listen_unix_runtime_config,
setup, test_echo, teardown);
+
+ g_test_add ("/fd-limit/session", Fixture, NULL,
+ setup, test_fd_limit, teardown);
+ g_test_add ("/fd-limit/system", Fixture, &as_another_user_config,
+ setup, test_fd_limit, teardown);
#endif
return g_test_run ();
gnome-desktop-testing-runner -d /usr/local/share dbus/ || \
maybe_fail_tests
- # these tests benefit from being re-run as root
+ # these tests benefit from being re-run as root, and one
+ # test needs a finite fd limit to be useful
sudo env LD_LIBRARY_PATH=/usr/local/lib \
- gnome-desktop-testing-runner -d /usr/local/share \
+ bash -c 'ulimit -S -n 1024; ulimit -H -n 4096; exec "$@"' bash \
+ gnome-desktop-testing-runner -d /usr/local/share \
+ dbus/test-dbus-daemon_with_config.test \
dbus/test-uid-permissions_with_config.test || \
maybe_fail_tests
fi
projects / thirdparty / dbus.git / commitdiff
