[platform/core/test/security-tests.git] / tests / common / tests_common.cpp

/*
 * Copyright (c) 2013 Samsung Electronics Co., Ltd All Rights Reserved
 *
 *    Licensed under the Apache License, Version 2.0 (the "License");
 *    you may not use this file except in compliance with the License.
 *    You may obtain a copy of the License at
 *
 *        http://www.apache.org/licenses/LICENSE-2.0
 *
 *    Unless required by applicable law or agreed to in writing, software
 *    distributed under the License is distributed on an "AS IS" BASIS,
 *    WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 *    See the License for the specific language governing permissions and
 *    limitations under the License.
 */

/*
 * @file        tests_common.cpp
 * @author      Lukasz Kostyra (l.kostyra@partner.samsung.com)
 * @version     1.0
 * @brief       Common functions and macros used in security-tests package.
 */

#include "tests_common.h"
#include <unistd.h>
#include <grp.h>
#include <errno.h>
#include <vector>

int DB::Transaction::db_result = PC_OPERATION_SUCCESS;

const char *WGT_APP_ID = "QwCqJ0ttyS";

int smack_runtime_check(void)
{
    static int smack_present = -1;
    if (-1 == smack_present) {
        if (smack_smackfs_path()) {
            smack_present = 1;
        } else {
            smack_present = 0;
        }
    }
    return smack_present;
}

int smack_check(void)
{
#ifndef WRT_SMACK_ENABLED
    return 0;
#else
    return smack_runtime_check();
#endif
}

/**
 * Dropping root privileges
 * returns 0 on success, 1 on error
 */
int drop_root_privileges(void)
{
    if (getuid() == 0) {
        /* process is running as root, drop privileges */
        if (setgid(APP_GID) != 0)
            return 1;
        if (setuid(APP_UID) != 0)
            return 1;
    }
    uid_t uid = getuid();
    if (uid == APP_UID)
        return 0;

    return 1;
}

void setLabelForSelf(const int line, const char *label)
{
    int ret = smack_set_label_for_self(label);
    RUNNER_ASSERT_MSG_BT(ret == 0, "Error in smack_set_label_for_self(): " << ret << ", line: " << line);
}

/*
 * Add a new group to the current process groups.
 */
void add_process_group(const char* group_name)
{
    // get group ID by group name
    group *gr = getgrnam(group_name);
    RUNNER_ASSERT_MSG_BT(gr != NULL, "Group '" << group_name << "' does not exist.");
    const gid_t new_group_id = gr->gr_gid;

    // get number of groups that the current process belongs to
    int ngroups = getgroups(0, NULL);

    //allocate groups table + space for new group entry
    std::vector<gid_t> groups(ngroups + 1);
    getgroups(ngroups, groups.data());

    // check if the process already belongs to the group
    if (std::find(groups.begin(), groups.end(), new_group_id) != groups.end()) return;

    // add new group & apply change
    groups[ngroups] = new_group_id;
    int ret = setgroups(groups.size(), groups.data());
    int error = errno;
    RUNNER_ASSERT_MSG_BT(ret == 0, "setgroups() failed. " << strerror(error));
}

/*
 * Remove specific group from the current process groups.
 */
void remove_process_group(const char* group_name)
{
    // get group ID by group name
    group *gr = getgrnam(group_name);
    RUNNER_ASSERT_MSG_BT(gr != NULL, "Group '" << group_name << "' does not exist.");
    const gid_t new_group_id = gr->gr_gid;

    int ngroups = getgroups(0, NULL);
    std::vector<gid_t> groups(ngroups);
    getgroups(ngroups, groups.data());

    // remove group from the list
    groups.erase(std::remove(groups.begin(), groups.end(), new_group_id), groups.end());

    if (groups.size() != (size_t)ngroups) {
        // apply change
        int ret = setgroups(groups.size(), groups.data());
        int error = errno;
        RUNNER_ASSERT_MSG_BT(ret == 0, "setgroups() failed. " << strerror(error));
    }
}

std::string formatCstr(const char *cstr)
{
    if (!cstr)
        return std::string("nullptr");
    return std::string("\"") + cstr + "\"";
}