heimdal-tests.sh   [plain text]

#!/bin/sh

pass=0
count=0
fail=""

RUN_ME_ONCE=1
export RUN_ME_ONCE

name=$(basename $0)

usage="$name --asan"

asan=""

while test $# -gt 0;
do
  case $1 in
  --fuzzer)
	  HEIMDAL_FUZZER=1
	  export HEIMDAL_FUZZER
	  shift
	  ;;
  --asan)
	  asan="_asan";
	  DYLD_IMAGE_SUFFIX="_asan"
	  ASAN_OPTIONS="abort_on_error=1"
	  export asan ASAN_OPTIONS DYLD_IMAGE_SUFFIX
	  shift
	  ;;
  -h) echo $usage; exit 0;;
  --help) echo $usage; exit 0;;
  *) echo "unknown argument $0"; exit 1;;
  esac
done

frame_echo() {
    r=$(echo "$@")
    echo $r | sed 's/./=/g'
    echo $r
    echo $r | sed 's/./=/g'
}

run_test() {
    name=$1
    shift
    frame_echo "[BEGIN] $name"
    arg="$1"
    if [ -x "${arg}${asan}" ]; then
	arg="${arg}${asan}"
	shift
	set -- "$arg" "$@"
    fi
    "$@"
    res=$?
    if [ "$res" = 0 ]; then
	frame_echo "[PASS] $name"
	pass=$(expr $pass + 1)
    else
	frame_echo "[FAIL] $name"
	fail="$fail $name"
    fi
    count=$(expr $count + 1)
}

check_crash() {
    name=$1
    old=$2
    new=$3

    run_test "${name}-crashes" diff -uw $old $new
}


# kill daemon/agent/services to make sure we run the new version
if sudo -n true ; then
    sudo killall -9 kcm digest-service kdc GSSCred
    sudo defaults write org.h5l.hx509 AllowHX509Validation -bool true
fi
defaults write org.h5l.hx509 AllowHX509Validation -bool true

killall -9 kcm digest-service kdc GSSCred

crashuserold=$(mktemp /tmp/heimdal-crash-user-old-XXXXXX)
crashsystemold=$(mktemp /tmp/heimdal-crash-user-old-XXXXXX)
crashusernew=$(mktemp /tmp/heimdal-crash-user-new-XXXXXX)
crashsystemnew=$(mktemp /tmp/heimdal-crash-user-new-XXXXXX)
crashlogs=/Library/Logs/DiagnosticReports

(cd $HOME/$crashlogs && ls -1 ) > $crashuserold
(cd $crashlogs && ls -1 ) > $crashsystemold

if [ X"$HEIMDAL_FUZZER" != "X" ] ; then
    krb5fuzzer=test_srv
fi


# hcrypto
#for a in test_cipher ; do
#    run_test $a /usr/local/libexec/heimdal/bin/$a
#done

# commoncrypto
for a in test_scram test_ntlm ; do
    run_test $a /usr/local/libexec/heimdal/bin/$a
done

# asn1
for a in check-der check-gen ; do
    run_test $a /usr/local/libexec/heimdal/bin/$a
done

# base
for a in test_base ; do
    run_test $a /usr/local/libexec/heimdal/bin/$a
done

# libkrb5
for a in test-principal heimdal-test-cc test_fx $krb5fuzzer ; do
    run_test $a /usr/local/libexec/heimdal/bin/$a
done

# gss
for a in test_gsscf ; do
    run_test $a /usr/local/libexec/heimdal/bin/$a
done

# GSS Apps
#if [ "X${SSH_CONNECTION}" = X ] ; then
#    /AppleInternal/CoreOS/Heimdal/Applications/GSSTestApp.app/Contents/MacOS/GSSTestApp
#fi

# check/kdc
for a in check-kdc check-fast check-kpasswdd ; do
    run_test $a /usr/local/libexec/heimdal/tests/kdc/$a
done

# check/gss
for a in check-basic check-context ; do
    run_test $a /usr/local/libexec/heimdal/tests/gss/$a
done

# check/apple
if sudo -n true ; then
    sudo launchctl unload /System/Library/LaunchDaemons/com.apple.Kerberos.kdc.plist

    trap "sudo launchctl load /System/Library/LaunchDaemons/com.apple.Kerberos.kdc.plist" SIGINT EXIT

    for a in check-apple-lkdc check-apple-hodadmin check-server-hodadmin check-apple-od check-apple-no-home-directory ; do
	run_test $a sudo /usr/local/libexec/heimdal/tests/apple/$a
    done

    trap - SIGINT EXIT

    sudo launchctl load /System/Library/LaunchDaemons/com.apple.Kerberos.kdc.plist

    # server tests
    if serverinfo --software / > /dev/null 2>/dev/null ; then
	for a in check-apple-server ; do
	    run_test $a sudo /usr/local/libexec/heimdal/tests/apple/$a
	done
    fi

else
    echo "no running tests requiring sudo"
    fail="$fail no-sudo"
    count=$(expr $count + 1)
fi

# check apple non root
# check-apple-netlogon -- <rdar://problem/16389320> re-enabled netlogon tests
# check-apple-ad -- <rdar://problem/20488983> renabled check-apple-ad tests
for a in check-apple-dump check-apple-mitdump  ; do
    run_test $a /usr/local/libexec/heimdal/tests/apple/$a
done
for a in test_export ; do
    path="/usr/local/libexec/heimdal/bin/$a"
    for arch in i386 x86_64 ; do
        if file $path | grep $arch  > /dev/null ; then
	    run_test "$a-$arch" arch "-$arch" "$path"
	fi
    done
done

# kcm
if sudo -n true ; then
	for a in test_get_principal_list; do
		run_test $a sudo /usr/local/libexec/heimdal/bin/$a
	done
fi

if sudo -n true ; then
    sudo defaults delete /Library/Preferences/org.h5l.hx509 AllowHX509Validation
fi
defaults delete /Library/Preferences/org.h5l.hx509 AllowHX509Validation

#
# Check for new crash logs
#

(cd $HOME/$crashlogs && ls -1 ) > $crashusernew
(cd $crashlogs && ls -1 ) > $crashsystemnew

# but only if we are not running under raft/bats, since raft handles that
if [ X"${VERSIONER_RAFT_VERSION}" == "X" -a X"${BATS}" == "X" ]; then
    check_crash system $crashsystemold $crashsystemnew
    check_crash user $crashuserold $crashusernew
else
    echo "skipping crashlog collection"
fi

rm -f $crashusernew $crashuserold $crashsystemnew $crashsystemold

# make sure MallocStackLoggingNoCompact is off
if sudo -n true ; then
        sudo launchctl unsetenv MallocStackLoggingNoCompact
        sudo launchctl unsetenv MallocErrorAbort
fi
launchctl unsetenv MallocStackLoggingNoCompact
launchctl unsetenv MallocErrorAbort

if expr "$count" = "$pass" > /dev/null; then
    frame_echo "All tests passed"
    exit 0
else
    frame_echo "tests failed:$fail"
    exit 1
fi