Google Git
Sign in
fuchsia / garnet / 721263348a3f9308473a4284e511fd2c8c914f45 / . / bin / appmgr / namespace_builder_unittest.cc
blob: 597adf570e9234918827d0842170d2624e56f47a [file] [log] [blame]
// Copyright 2016 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "garnet/bin/appmgr/namespace_builder.h"
#include <zx/channel.h>
#include <string>
#include <vector>
#include "gtest/gtest.h"
#include "third_party/rapidjson/rapidjson/document.h"
namespace component {
namespace {
TEST(NamespaceBuilder, Control) {
rapidjson::Document document;
document.SetObject();
rapidjson::Document::AllocatorType& allocator = document.GetAllocator();
rapidjson::Value dev_array(rapidjson::kArrayType);
dev_array.PushBack("class/input", allocator);
dev_array.PushBack("class/display-controller", allocator);
document.AddMember("dev", dev_array, allocator);
rapidjson::Value feat_array(rapidjson::kArrayType);
feat_array.PushBack("vulkan", allocator);
document.AddMember("features", feat_array, allocator);
SandboxMetadata sandbox;
EXPECT_TRUE(sandbox.Parse(document));
NamespaceBuilder builder;
builder.AddSandbox(sandbox, [] { return zx::channel(); });
fdio_flat_namespace_t* flat = builder.Build();
EXPECT_EQ(5u, flat->count);
std::vector<std::string> paths;
for (size_t i = 0; i < flat->count; ++i)
paths.push_back(flat->path[i]);
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/dev/class/input") !=
paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(),
"/dev/class/display-controller") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/dev/class/gpu") !=
paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/system/data/vulkan") !=
paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/system/lib") !=
paths.end());
for (size_t i = 0; i < flat->count; ++i)
zx_handle_close(flat->handle[i]);
}
TEST(NamespaceBuilder, Shell) {
rapidjson::Document document;
document.SetObject();
rapidjson::Document::AllocatorType& allocator = document.GetAllocator();
rapidjson::Value feat_array(rapidjson::kArrayType);
feat_array.PushBack("shell", allocator);
document.AddMember("features", feat_array, allocator);
SandboxMetadata sandbox;
EXPECT_TRUE(sandbox.Parse(document));
NamespaceBuilder builder;
builder.AddSandbox(sandbox, [] { return zx::channel(); });
fdio_flat_namespace_t* flat = builder.Build();
EXPECT_EQ(11u, flat->count);
std::vector<std::string> paths;
for (size_t i = 0; i < flat->count; ++i)
paths.push_back(flat->path[i]);
// /config/ssl is included because "shell" implies "root-ssl-certificates"
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/config/ssl") !=
paths.end());
// While "shell" implies "root-ssl-certificates", it does NOT include
// /system/data/boringssl (see comment in namespace_builder.cc for details).
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/system/data/boringssl") ==
paths.end());
// Paths that are only part of "shell", not "root-ssl-certificates"
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/blob") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/boot") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/data") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/dev") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/hub") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/install") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/pkgfs") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/system") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/tmp") != paths.end());
EXPECT_TRUE(std::find(paths.begin(), paths.end(), "/volume") != paths.end());
for (size_t i = 0; i < flat->count; ++i)
zx_handle_close(flat->handle[i]);
}
} // namespace
} // namespace component