python3/test/capng-test.py

*8dd5e09dSSadaf Ebrahimi#!/usr/bin/env python3
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimiimport os
*8dd5e09dSSadaf Ebrahimiimport sys
*8dd5e09dSSadaf Ebrahimiimport time
*8dd5e09dSSadaf Ebrahimiload_path = '../'
*8dd5e09dSSadaf Ebrahimiif False:
*8dd5e09dSSadaf Ebrahimi    sys.path.insert(0, load_path)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimiimport capng
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimilast = capng.CAP_LAST_CAP
*8dd5e09dSSadaf Ebrahimitry:
*8dd5e09dSSadaf Ebrahimi	with open('/proc/sys/kernel/cap_last_cap', 'r') as f:
*8dd5e09dSSadaf Ebrahimi		last = int(f.readline())
*8dd5e09dSSadaf Ebrahimiexcept IOError as e:
*8dd5e09dSSadaf Ebrahimi	print("Error opening /proc/sys/kernel/cap_last_cap: {0}".format(e.strerror))
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimiprint("Doing basic bit tests...")
*8dd5e09dSSadaf Ebrahimicapng.capng_clear(capng.CAPNG_SELECT_BOTH)
*8dd5e09dSSadaf Ebrahimiif capng.capng_have_capabilities(capng.CAPNG_SELECT_BOTH) != capng.CAPNG_NONE:
*8dd5e09dSSadaf Ebrahimi	print("Failed clearing capabilities\n")
*8dd5e09dSSadaf Ebrahimi	sys.exit(1)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimicapng.capng_fill(capng.CAPNG_SELECT_BOTH)
*8dd5e09dSSadaf Ebrahimiif capng.capng_have_capabilities(capng.CAPNG_SELECT_BOTH) != capng.CAPNG_FULL:
*8dd5e09dSSadaf Ebrahimi	print("Failed filling capabilities")
*8dd5e09dSSadaf Ebrahimi	sys.exit(1)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimitext = capng.capng_print_caps_numeric(capng.CAPNG_PRINT_BUFFER, capng.CAPNG_SELECT_CAPS)
*8dd5e09dSSadaf Ebrahimilen = len(text)
*8dd5e09dSSadaf Ebrahimiif len < 80 and last > 30:
*8dd5e09dSSadaf Ebrahimi	last = 30
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimiprint("Doing advanced bit tests for %d capabilities...\n" % (last))
*8dd5e09dSSadaf Ebrahimifor i in range(last+1):
*8dd5e09dSSadaf Ebrahimi	capng.capng_clear(capng.CAPNG_SELECT_BOTH)
*8dd5e09dSSadaf Ebrahimi	rc = capng.capng_update(capng.CAPNG_ADD, capng.CAPNG_EFFECTIVE, i)
*8dd5e09dSSadaf Ebrahimi	if rc:
*8dd5e09dSSadaf Ebrahimi		print("Failed update test 1")
*8dd5e09dSSadaf Ebrahimi		sys.exit(1)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimi	rc = capng.capng_have_capability(capng.CAPNG_EFFECTIVE, int(i))
*8dd5e09dSSadaf Ebrahimi	if rc <= capng.CAPNG_NONE:
*8dd5e09dSSadaf Ebrahimi		print("Failed have capability test 1")
*8dd5e09dSSadaf Ebrahimi		capng.capng_print_caps_numeric(capng.CAPNG_PRINT_STDOUT, capng.CAPNG_SELECT_CAPS)
*8dd5e09dSSadaf Ebrahimi		sys.exit(1)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimi	if capng.capng_have_capabilities(capng.CAPNG_SELECT_CAPS) != capng.CAPNG_PARTIAL:
*8dd5e09dSSadaf Ebrahimi		print("Failed have capabilities test 1")
*8dd5e09dSSadaf Ebrahimi		sys.exit(1)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimi	capng.capng_fill(capng.CAPNG_SELECT_BOTH)
*8dd5e09dSSadaf Ebrahimi	rc = capng.capng_update(capng.CAPNG_DROP, capng.CAPNG_EFFECTIVE, i)
*8dd5e09dSSadaf Ebrahimi	if rc:
*8dd5e09dSSadaf Ebrahimi		print("Failed update test 3")
*8dd5e09dSSadaf Ebrahimi		sys.exit(1)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimi	if capng.capng_have_capabilities(capng.CAPNG_SELECT_CAPS)!=capng.CAPNG_PARTIAL:
*8dd5e09dSSadaf Ebrahimi		print("Failed have capabilities test 3")
*8dd5e09dSSadaf Ebrahimi		capng.capng_print_caps_numeric(capng.CAPNG_PRINT_STDOUT, capng.CAPNG_SELECT_CAPS)
*8dd5e09dSSadaf Ebrahimi		sys.exit(1)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimi	rc = capng.capng_update(capng.CAPNG_ADD, capng.CAPNG_EFFECTIVE, i)
*8dd5e09dSSadaf Ebrahimi	if rc:
*8dd5e09dSSadaf Ebrahimi		print("Failed update test 4")
*8dd5e09dSSadaf Ebrahimi		sys.exit(1)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimi	if capng.capng_have_capabilities(capng.CAPNG_SELECT_CAPS) != capng.CAPNG_FULL:
*8dd5e09dSSadaf Ebrahimi		print("Failed have capabilities test 4")
*8dd5e09dSSadaf Ebrahimi		capng.capng_print_caps_numeric(capng.CAPNG_PRINT_STDOUT, capng.CAPNG_SELECT_CAPS)
*8dd5e09dSSadaf Ebrahimi		sys.exit(1)
*8dd5e09dSSadaf Ebrahimi
*8dd5e09dSSadaf Ebrahimisys.exit(0)