2 * Copyright (c) 2013 Samsung Electronics Co., Ltd All Rights Reserved
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
18 * @file tests_common.cpp
19 * @author Lukasz Kostyra (l.kostyra@partner.samsung.com)
21 * @brief Common functions and macros used in security-tests package.
24 #include "tests_common.h"
28 #include <sys/types.h>
35 int DB::Transaction::db_result = PC_OPERATION_SUCCESS;
37 const char *WGT_APP_ID = "QwCqJ0ttyS";
39 int smack_runtime_check(void)
41 static int smack_present = -1;
42 if (-1 == smack_present) {
43 if (smack_smackfs_path()) {
54 #ifndef WRT_SMACK_ENABLED
57 return smack_runtime_check();
62 * Dropping root privileges
63 * returns 0 on success, 1 on error
65 int drop_root_privileges(uid_t appUid, gid_t appGid)
68 /* process is running as root, drop privileges */
69 if (setgid(appGid) != 0)
71 if (setuid(appUid) != 0)
81 void setLabelForSelf(const int line, const char *label)
83 int ret = smack_set_label_for_self(label);
84 RUNNER_ASSERT_MSG(ret == 0, "Error in smack_set_label_for_self(): " << ret << ", line: " << line);
88 * Add a new group to the current process groups.
90 void add_process_group(const char* group_name)
92 // get group ID by group name
93 group *gr = getgrnam(group_name);
94 RUNNER_ASSERT_ERRNO_MSG(gr != nullptr, "getgrnam failed on '" << group_name << "' group");
95 const gid_t new_group_id = gr->gr_gid;
97 // get number of groups that the current process belongs to
98 int ngroups = getgroups(0, nullptr);
100 //allocate groups table + space for new group entry
101 std::vector<gid_t> groups(ngroups + 1);
102 getgroups(ngroups, groups.data());
104 // check if the process already belongs to the group
105 if (std::find(groups.begin(), groups.end(), new_group_id) != groups.end()) return;
107 // add new group & apply change
108 groups[ngroups] = new_group_id;
109 int ret = setgroups(groups.size(), groups.data());
110 RUNNER_ASSERT_ERRNO_MSG(ret == 0, "setgroups() failed");
114 * Remove specific group from the current process groups.
116 void remove_process_group(const char* group_name)
118 // get group ID by group name
119 group *gr = getgrnam(group_name);
120 RUNNER_ASSERT_ERRNO_MSG(gr != nullptr, "getgrnam failed on '" << group_name << "' group");
121 const gid_t new_group_id = gr->gr_gid;
123 int ngroups = getgroups(0, nullptr);
124 std::vector<gid_t> groups(ngroups);
125 getgroups(ngroups, groups.data());
127 // remove group from the list
128 groups.erase(std::remove(groups.begin(), groups.end(), new_group_id), groups.end());
130 if (groups.size() != (size_t)ngroups) {
132 int ret = setgroups(groups.size(), groups.data());
133 RUNNER_ASSERT_ERRNO_MSG(ret == 0, "setgroups() failed");
137 std::string formatCstr(const char *cstr)
140 return std::string("nullptr");
141 return std::string("\"") + cstr + "\"";
144 int files_compare(int fd1, int fd2)
146 //for getting files sizes
147 struct stat fs1, fs2;
149 //handlers for mmap()
150 void *h1 = MAP_FAILED;
151 void *h2 = MAP_FAILED;
153 //getting files information
154 RUNNER_ASSERT_ERRNO_MSG(fstat(fd1, &fs1) == 0, "fstat failed");
155 RUNNER_ASSERT_ERRNO_MSG(fstat(fd2, &fs2) == 0, "fstat failed");
157 if (fs1.st_size < fs2.st_size) {
161 if (fs1.st_size > fs2.st_size) {
165 //since Linux 2.6.12, mmap returns EINVAL if length is 0
166 //if both lengths are 0, files are actually the same
167 if (0 == fs1.st_size && 0 == fs2.st_size) {
171 //mapping files to process memory
172 RUNNER_ASSERT_ERRNO_MSG((h1 = mmap(0, fs1.st_size, PROT_READ, MAP_SHARED, fd1, 0 )) != MAP_FAILED,
173 "mmap failed for fd=" << fd1);
175 if ((h2 = mmap(0, fs2.st_size, PROT_READ, MAP_SHARED, fd2, 0 )) == MAP_FAILED) {
176 munmap(h1, fs1.st_size);
177 RUNNER_ASSERT_MSG(h2 != MAP_FAILED, "mmap failed for fd=" << fd2
178 << ". " << strerror(errno));
181 int result = memcmp(h1, h2, fs1.st_size);
182 munmap(h1, fs1.st_size);
183 munmap(h2, fs2.st_size);
188 void mkdirSafe(const std::string &path, mode_t mode)
190 RUNNER_ASSERT_ERRNO_MSG(0 == mkdir(path.c_str(), mode) || errno == EEXIST,
191 "mkdir for <" << path << "> with mode <" << mode << "> failed");
194 void mktreeSafe(const std::string &path, mode_t mode)
196 // Create subsequent parent directories
197 // Assume that path is absolute - i.e. starts with '/'
198 for (size_t pos = 0; (pos = path.find("/", pos + 1)) != std::string::npos; )
199 mkdirSafe(path.substr(0, pos).c_str(), mode);
201 mkdirSafe(path, mode);
204 void creatSafe(const std::string &path, mode_t mode)
206 RUNNER_ASSERT_ERRNO_MSG(-1 != creat(path.c_str(), mode),
207 "creat for <" << path << "> with mode <" << mode << "> failed");
210 void symlinkSafe(const std::string &targetPath, const std::string &linkPath)
212 RUNNER_ASSERT_ERRNO_MSG(0 == symlink(targetPath.c_str(), linkPath.c_str()),
213 "symlink for <" << linkPath << "> to <" << targetPath << "> failed");
216 void removeDir(const std::string &path)
218 DIR *d = opendir(path.c_str());
221 RUNNER_ASSERT_ERRNO_MSG(errno == ENOENT, "opendir of <" << path << "> failed");
225 struct dirent *dirEntry;
226 while (nullptr != (dirEntry = readdir(d))) {
227 std::string entryName(dirEntry->d_name);
228 if (entryName == "." || entryName == "..")
231 std::string entryPath(path + "/" + entryName);
234 RUNNER_ASSERT_ERRNO_MSG(0 == lstat(entryPath.c_str(), &st),
235 "stat for <" << entryPath << "> failed");
236 if (S_ISDIR(st.st_mode))
237 removeDir(entryPath);
239 RUNNER_ASSERT_ERRNO_MSG(0 == unlink(entryPath.c_str()),
240 "unlink for <" << entryPath << "> failed");
245 RUNNER_ASSERT_ERRNO_MSG(0 == rmdir(path.c_str()), "rmdir for <" << path << "> failed");