diff options
| author | Dmitry V. Levin <ldv@strace.io> | 2024-01-01 08:00:00 +0000 |
|---|---|---|
| committer | Dmitry V. Levin <ldv@strace.io> | 2024-01-01 08:00:00 +0000 |
| commit | ec1fb9ddc6c252d8c61379e9385ca19c036fcb96 (patch) | |
| tree | 23df5e403aed0c43e8282ea00f8ef20ff70474bf | |
| parent | bb4eee5bc46401253aa4a51c608364846b94278f (diff) | |
| download | pam-ec1fb9ddc6c252d8c61379e9385ca19c036fcb96.tar.gz pam-ec1fb9ddc6c252d8c61379e9385ca19c036fcb96.tar.bz2 pam-ec1fb9ddc6c252d8c61379e9385ca19c036fcb96.zip | |
pam_listfile: add a configuration file parser test
The pam_listfile is apparently the only module in the tree that has
mandatory options and at the same time bails out in case of unknown
options. Use this specific behaviour of the module to test libpam
configuration file parsing.
* modules/pam_listfile/tst-pam_listfile-retval.c (main): Perform a test
dedicated to configuration file parsing.
| -rw-r--r-- | modules/pam_listfile/tst-pam_listfile-retval.c | 35 |
1 files changed, 35 insertions, 0 deletions
diff --git a/modules/pam_listfile/tst-pam_listfile-retval.c b/modules/pam_listfile/tst-pam_listfile-retval.c index daf4b0ae..18ba2919 100644 --- a/modules/pam_listfile/tst-pam_listfile-retval.c +++ b/modules/pam_listfile/tst-pam_listfile-retval.c @@ -578,6 +578,41 @@ main(void) ASSERT_EQ(PAM_SUCCESS, pam_end(pamh, 0)); pamh = NULL; + /* Perform a test dedicated to configuration file parsing. */ + ASSERT_NE(NULL, fp = fopen(service_file, "w")); + ASSERT_LT(0, fprintf(fp, "#%%PAM-1.0\n" + "# support line continuations, ignore escaped newlines in comments \\\n" + "auth required \\\n" + " %s/.libs/%s.so \\ \n" + " item=user \\\t\t\n" + " file=%s \\ \t \t\n" + " sense=deny\n" + "\t \t # allow unneeded whitespace, ignore escaped newlines in comments \\ \n" + " account\t required %s/.libs/%s.so item=user file=%s sense=deny%c\\\n" + "line after NUL byte continues up to here\n" + "# trim trailing comments, ignore escaped newlines in comments \\\t\n" + "password required %s/.libs/%s.so item=user file=%s sense=deny # foo=bar\n" + "# support %*s long lines\n" + "session required %*s/.libs/%s.so item=user file=%s sense=deny", + cwd, MODULE_NAME, list_file, + cwd, MODULE_NAME, list_file, '\0', + cwd, MODULE_NAME, list_file, + 8192, " ", + 65536, cwd, MODULE_NAME, list_file)); + ASSERT_EQ(0, fclose(fp)); + + ASSERT_EQ(PAM_SUCCESS, + pam_start_confdir(service_file, pw->pw_name, &conv, ".", &pamh)); + ASSERT_NE(NULL, pamh); + ASSERT_EQ(PAM_SUCCESS, pam_authenticate(pamh, 0)); + ASSERT_EQ(PAM_SUCCESS, pam_setcred(pamh, 0)); + ASSERT_EQ(PAM_SUCCESS, pam_acct_mgmt(pamh, 0)); + ASSERT_EQ(PAM_SUCCESS, pam_chauthtok(pamh, 0)); + ASSERT_EQ(PAM_SUCCESS, pam_open_session(pamh, 0)); + ASSERT_EQ(PAM_SUCCESS, pam_close_session(pamh, 0)); + ASSERT_EQ(PAM_SUCCESS, pam_end(pamh, 0)); + pamh = NULL; + ASSERT_EQ(0, unlink(list_file)); ASSERT_EQ(0, unlink(service_file)); |