| Index: sandbox/linux/seccomp-bpf/bpf_tests_unittest.cc
|
| diff --git a/sandbox/linux/seccomp-bpf/bpf_tests_unittest.cc b/sandbox/linux/seccomp-bpf/bpf_tests_unittest.cc
|
| new file mode 100644
|
| index 0000000000000000000000000000000000000000..24b82fa04c4e5acddcb6c913ebfe00800306e9d3
|
| --- /dev/null
|
| +++ b/sandbox/linux/seccomp-bpf/bpf_tests_unittest.cc
|
| @@ -0,0 +1,155 @@
|
| +// Copyright 2014 The Chromium Authors. All rights reserved.
|
| +// Use of this source code is governed by a BSD-style license that can be
|
| +// found in the LICENSE file.
|
| +
|
| +#include "sandbox/linux/seccomp-bpf/bpf_tests.h"
|
| +
|
| +#include <errno.h>
|
| +#include <sys/ptrace.h>
|
| +#include <sys/syscall.h>
|
| +#include <sys/types.h>
|
| +#include <unistd.h>
|
| +
|
| +#include "base/logging.h"
|
| +#include "base/memory/scoped_ptr.h"
|
| +#include "build/build_config.h"
|
| +#include "sandbox/linux/bpf_dsl/bpf_dsl.h"
|
| +#include "sandbox/linux/seccomp-bpf/sandbox_bpf.h"
|
| +#include "sandbox/linux/services/linux_syscalls.h"
|
| +#include "sandbox/linux/tests/unit_tests.h"
|
| +#include "testing/gtest/include/gtest/gtest.h"
|
| +
|
| +using sandbox::bpf_dsl::Allow;
|
| +using sandbox::bpf_dsl::Error;
|
| +using sandbox::bpf_dsl::ResultExpr;
|
| +using sandbox::bpf_dsl::SandboxBPFDSLPolicy;
|
| +
|
| +namespace sandbox {
|
| +
|
| +namespace {
|
| +
|
| +class FourtyTwo {
|
| + public:
|
| + static const int kMagicValue = 42;
|
| + FourtyTwo() : value_(kMagicValue) {}
|
| + int value() { return value_; }
|
| +
|
| + private:
|
| + int value_;
|
| + DISALLOW_COPY_AND_ASSIGN(FourtyTwo);
|
| +};
|
| +
|
| +class EmptyClassTakingPolicy : public SandboxBPFDSLPolicy {
|
| + public:
|
| + explicit EmptyClassTakingPolicy(FourtyTwo* fourty_two) {
|
| + BPF_ASSERT(fourty_two);
|
| + BPF_ASSERT(FourtyTwo::kMagicValue == fourty_two->value());
|
| + }
|
| + virtual ~EmptyClassTakingPolicy() {}
|
| +
|
| + virtual ResultExpr EvaluateSyscall(int sysno) const override {
|
| + DCHECK(SandboxBPF::IsValidSyscallNumber(sysno));
|
| + return Allow();
|
| + }
|
| +};
|
| +
|
| +BPF_TEST(BPFTest,
|
| + BPFAUXPointsToClass,
|
| + EmptyClassTakingPolicy,
|
| + FourtyTwo /* *BPF_AUX */) {
|
| + // BPF_AUX should point to an instance of FourtyTwo.
|
| + BPF_ASSERT(BPF_AUX);
|
| + BPF_ASSERT(FourtyTwo::kMagicValue == BPF_AUX->value());
|
| +}
|
| +
|
| +void DummyTestFunction(FourtyTwo *fourty_two) {
|
| +}
|
| +
|
| +TEST(BPFTest, BPFTesterCompatibilityDelegateLeakTest) {
|
| + // Don't do anything, simply gives dynamic tools an opportunity to detect
|
| + // leaks.
|
| + {
|
| + BPFTesterCompatibilityDelegate<EmptyClassTakingPolicy, FourtyTwo>
|
| + simple_delegate(DummyTestFunction);
|
| + }
|
| + {
|
| + // Test polymorphism.
|
| + scoped_ptr<BPFTesterDelegate> simple_delegate(
|
| + new BPFTesterCompatibilityDelegate<EmptyClassTakingPolicy, FourtyTwo>(
|
| + DummyTestFunction));
|
| + }
|
| +}
|
| +
|
| +class EnosysPtracePolicy : public SandboxBPFDSLPolicy {
|
| + public:
|
| + EnosysPtracePolicy() {
|
| + my_pid_ = syscall(__NR_getpid);
|
| + }
|
| + virtual ~EnosysPtracePolicy() {
|
| + // Policies should be able to bind with the process on which they are
|
| + // created. They should never be created in a parent process.
|
| + BPF_ASSERT_EQ(my_pid_, syscall(__NR_getpid));
|
| + }
|
| +
|
| + virtual ResultExpr EvaluateSyscall(int system_call_number) const override {
|
| + CHECK(SandboxBPF::IsValidSyscallNumber(system_call_number));
|
| + if (system_call_number == __NR_ptrace) {
|
| + // The EvaluateSyscall function should run in the process that created
|
| + // the current object.
|
| + BPF_ASSERT_EQ(my_pid_, syscall(__NR_getpid));
|
| + return Error(ENOSYS);
|
| + } else {
|
| + return Allow();
|
| + }
|
| + }
|
| +
|
| + private:
|
| + pid_t my_pid_;
|
| + DISALLOW_COPY_AND_ASSIGN(EnosysPtracePolicy);
|
| +};
|
| +
|
| +class BasicBPFTesterDelegate : public BPFTesterDelegate {
|
| + public:
|
| + BasicBPFTesterDelegate() {}
|
| + virtual ~BasicBPFTesterDelegate() {}
|
| +
|
| + virtual scoped_ptr<bpf_dsl::SandboxBPFDSLPolicy> GetSandboxBPFPolicy()
|
| + override {
|
| + return scoped_ptr<bpf_dsl::SandboxBPFDSLPolicy>(new EnosysPtracePolicy());
|
| + }
|
| + virtual void RunTestFunction() override {
|
| + errno = 0;
|
| + int ret = ptrace(PTRACE_TRACEME, -1, NULL, NULL);
|
| + BPF_ASSERT(-1 == ret);
|
| + BPF_ASSERT(ENOSYS == errno);
|
| + }
|
| +
|
| + private:
|
| + DISALLOW_COPY_AND_ASSIGN(BasicBPFTesterDelegate);
|
| +};
|
| +
|
| +// This is the most powerful and complex way to create a BPF test, but it
|
| +// requires a full class definition (BasicBPFTesterDelegate).
|
| +BPF_TEST_D(BPFTest, BPFTestWithDelegateClass, BasicBPFTesterDelegate);
|
| +
|
| +// This is the simplest form of BPF tests.
|
| +BPF_TEST_C(BPFTest, BPFTestWithInlineTest, EnosysPtracePolicy) {
|
| + errno = 0;
|
| + int ret = ptrace(PTRACE_TRACEME, -1, NULL, NULL);
|
| + BPF_ASSERT(-1 == ret);
|
| + BPF_ASSERT(ENOSYS == errno);
|
| +}
|
| +
|
| +const char kHelloMessage[] = "Hello";
|
| +
|
| +BPF_DEATH_TEST_C(BPFTest,
|
| + BPFDeathTestWithInlineTest,
|
| + DEATH_MESSAGE(kHelloMessage),
|
| + EnosysPtracePolicy) {
|
| + LOG(ERROR) << kHelloMessage;
|
| + _exit(1);
|
| +}
|
| +
|
| +} // namespace
|
| +
|
| +} // namespace sandbox
|
|
|
Chromium Code Reviews
Issue 670183003:
Update from chromium 62675d9fb31fb8cedc40f68e78e8445a74f362e7 (Closed)
Base URL: git@github.com:domokit/mojo.git@master