sssd/0054-test_config-Test-for-i...

From 7a2e56d061085c155a51253bd612255a4d24cb57 Mon Sep 17 00:00:00 2001
From: Tomas Halman <thalman@redhat.com>
Date: Mon, 8 Oct 2018 12:47:40 +0200
Subject: [PATCH 69/83] test_config: Test for invalid characker in domain
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

There was bug allowing forbidden characters in config file section name.
Bug has been fixed meantime but we decided to write the test to avoid
regeression.

Resolves:
https://pagure.io/SSSD/sssd/issue/3334

Reviewed-by: Michal Židek <mzidek@redhat.com>
---
 src/tests/cmocka/test_config_check.c | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/src/tests/cmocka/test_config_check.c b/src/tests/cmocka/test_config_check.c
index a2958de..61c7886 100644
--- a/src/tests/cmocka/test_config_check.c
+++ b/src/tests/cmocka/test_config_check.c
@@ -106,6 +106,17 @@ void config_check_test_bad_section_name(void **state)
     config_check_test_common(cfg_str, 1, expected_errors);
 }
 
+void config_check_test_bad_chars_in_section_name(void **state)
+{
+    char cfg_str[] = "[domain/LD@P]";
+    const char *expected_errors[] = {
+        "[rule/allowed_sections]: Section [domain/LD@P] is not allowed. "
+        "Check for typos.",
+    };
+
+    config_check_test_common(cfg_str, 1, expected_errors);
+}
+
 void config_check_test_too_many_subdomains(void **state)
 {
     char cfg_str[] = "[domain/ad.test/b.test/c.test]";
@@ -264,6 +275,7 @@ int main(int argc, const char *argv[])
 
     const struct CMUnitTest tests[] = {
         cmocka_unit_test(config_check_test_bad_section_name),
+        cmocka_unit_test(config_check_test_bad_chars_in_section_name),
         cmocka_unit_test(config_check_test_too_many_subdomains),
         cmocka_unit_test(config_check_test_bad_sssd_option_name),
         cmocka_unit_test(config_check_test_bad_pam_option_name),
-- 
2.9.5
Backport a bunch of upstream fixes - Resolves: upstream#3821 - crash related to sbus_router_destructor() - Resolves: upstream#3810 - sbus2: fix memory leak in sbus_message_bound_ref - Resolves: upstream#3819 - sssd only sets the SELinux login context if it differs from the default - Resolves: upstream#3807 - The sbus codegen script relies on "python" which might not be available on all distributions - Resolves: upstream#3820 - sudo: search with lower cased name for case insensitive domains - Resolves: upstream#3701 - [RFE] Allow changing default behavior of SSSD from an allow-any default to a deny-any default when it can't find any GPOs to apply to a user login. - Resolves: upstream#3828 - Invalid domain provider causes SSSD to abort startup - Resolves: upstream#3500 - Make sure sssd is a replacement for pam_pkcs11 also for local account authentication - Resolves: upstream#3812 - sssd 2.0.0 segfaults on startup - Resolves: upstream#3826 - Remove references of sss_user/group/add/del commands in man pages since local provider is deprecated - Resolves: upstream#3827 - SSSD should log to syslog if a domain is not started due to a misconfiguration - Resolves: upstream#3830 - Printing incorrect information about domain with sssctl utility - Resolves: upstream#3489 - p11_child should work wit openssl1.0+ - Resolves: upstream#3750 - [RFE] man 5 sssd-files should mention necessary changes in nsswitch.conf - Resovles: upstream#3650 - RFE: Require smartcard authentication - Resolves: upstream#3334 - sssctl config-check does not check any special characters in domain name of domain section - Resolves: upstream#3849 - Files: The files provider always enumerates which causes duplicate when running getent passwd - Related: upstream#3855 - session not recording for local user when groups defined - Resolves: upstream#3802 - Reuse sysdb_error_to_errno() outside sysdb - Related: upstream#3493 - Remove the pysss.local interface 2018-10-24 08:34:15 +00:00			`From 7a2e56d061085c155a51253bd612255a4d24cb57 Mon Sep 17 00:00:00 2001`
			`From: Tomas Halman <thalman@redhat.com>`
			`Date: Mon, 8 Oct 2018 12:47:40 +0200`
			`Subject: [PATCH 69/83] test_config: Test for invalid characker in domain`
			`MIME-Version: 1.0`
			`Content-Type: text/plain; charset=UTF-8`
			`Content-Transfer-Encoding: 8bit`

			`There was bug allowing forbidden characters in config file section name.`
			`Bug has been fixed meantime but we decided to write the test to avoid`
			`regeression.`

			`Resolves:`
			`https://pagure.io/SSSD/sssd/issue/3334`

			`Reviewed-by: Michal Židek <mzidek@redhat.com>`
			`---`
			`src/tests/cmocka/test_config_check.c \| 12 ++++++++++++`
			`1 file changed, 12 insertions(+)`

			`diff --git a/src/tests/cmocka/test_config_check.c b/src/tests/cmocka/test_config_check.c`
			`index a2958de..61c7886 100644`
			`--- a/src/tests/cmocka/test_config_check.c`
			`+++ b/src/tests/cmocka/test_config_check.c`
			`@@ -106,6 +106,17 @@ void config_check_test_bad_section_name(void **state)`
			`config_check_test_common(cfg_str, 1, expected_errors);`
			`}`

			`+void config_check_test_bad_chars_in_section_name(void **state)`
			`+{`
			`+ char cfg_str[] = "[domain/LD@P]";`
			`+ const char *expected_errors[] = {`
			`+ "[rule/allowed_sections]: Section [domain/LD@P] is not allowed. "`
			`+ "Check for typos.",`
			`+ };`
			`+`
			`+ config_check_test_common(cfg_str, 1, expected_errors);`
			`+}`
			`+`
			`void config_check_test_too_many_subdomains(void **state)`
			`{`
			`char cfg_str[] = "[domain/ad.test/b.test/c.test]";`
			`@@ -264,6 +275,7 @@ int main(int argc, const char *argv[])`

			`const struct CMUnitTest tests[] = {`
			`cmocka_unit_test(config_check_test_bad_section_name),`
			`+ cmocka_unit_test(config_check_test_bad_chars_in_section_name),`
			`cmocka_unit_test(config_check_test_too_many_subdomains),`
			`cmocka_unit_test(config_check_test_bad_sssd_option_name),`
			`cmocka_unit_test(config_check_test_bad_pam_option_name),`
			`--`
			`2.9.5`