node/test/parallel/test-strace-openat-openssl.js

'use strict';

const common = require('../common');
const { spawn, spawnSync } = require('node:child_process');
const { createInterface } = require('node:readline');
const assert = require('node:assert');

if (!common.hasCrypto)
  common.skip('missing crypto');
if (!common.isLinux)
  common.skip('linux only');
if (common.isASan)
  common.skip('strace does not work well with address sanitizer builds');
if (spawnSync('strace').error !== undefined) {
  common.skip('missing strace');
}

{
  const allowedOpenCalls = new Set([
    '/etc/ssl/openssl.cnf',
  ]);
  const strace = spawn('strace', [
    '-f', '-ff',
    '-e', 'trace=open,openat',
    '-s', '512',
    '-D', process.execPath, '-e', 'require("crypto")',
  ]);

  // stderr is the default for strace
  const rl = createInterface({ input: strace.stderr });
  rl.on('line', (line) => {
    if (!line.startsWith('open')) {
      return;
    }

    const file = line.match(/"(.*?)"/)[1];
    // skip .so reading attempt
    if (file.match(/.+\.so(\.?)/) !== null) {
      return;
    }
    // skip /proc/*
    if (file.match(/\/proc\/.+/) !== null) {
      return;
    }

    assert(allowedOpenCalls.delete(file), `${file} is not in the list of allowed openat calls`);
  });
  const debugOutput = [];
  strace.stderr.setEncoding('utf8');
  strace.stderr.on('data', (chunk) => {
    debugOutput.push(chunk.toString());
  });
  strace.on('error', common.mustNotCall());
  strace.on('exit', common.mustCall((code) => {
    assert.strictEqual(code, 0, debugOutput);
    const missingKeys = Array.from(allowedOpenCalls.keys());
    if (missingKeys.length) {
      assert.fail(`The following openat call are missing: ${missingKeys.join(',')}`);
    }
  }));
}
test: include strace openat test Signed-off-by: RafaelGSS <rafael.nunu@hotmail.com> PR-URL: https://github.com/nodejs/node/pull/46150 Reviewed-By: Michael Dawson <midawson@redhat.com> 2023-02-23 19:17:25 +00:00			`'use strict';`

			`const common = require('../common');`
			`const { spawn, spawnSync } = require('node:child_process');`
			`const { createInterface } = require('node:readline');`
			`const assert = require('node:assert');`

			`if (!common.hasCrypto)`
			`common.skip('missing crypto');`
			`if (!common.isLinux)`
			`common.skip('linux only');`
test: simplify ASan build checks Always use `process.config.variables.asan`. This removes the need for a special ASAN env var. PR-URL: https://github.com/nodejs/node/pull/52430 Reviewed-By: Antoine du Hamel <duhamelantoine1995@gmail.com> Reviewed-By: Richard Lau <rlau@redhat.com> Reviewed-By: Marco Ippolito <marcoippolito54@gmail.com> Reviewed-By: Mohammed Keyvanzadeh <mohammadkeyvanzade94@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Yagiz Nizipli <yagiz.nizipli@sentry.io> 2024-04-11 07:29:27 +00:00			`if (common.isASan)`
test: include strace openat test Signed-off-by: RafaelGSS <rafael.nunu@hotmail.com> PR-URL: https://github.com/nodejs/node/pull/46150 Reviewed-By: Michael Dawson <midawson@redhat.com> 2023-02-23 19:17:25 +00:00			`common.skip('strace does not work well with address sanitizer builds');`
			`if (spawnSync('strace').error !== undefined) {`
			`common.skip('missing strace');`
			`}`

			`{`
			`const allowedOpenCalls = new Set([`
			`'/etc/ssl/openssl.cnf',`
			`]);`
			`const strace = spawn('strace', [`
			`'-f', '-ff',`
			`'-e', 'trace=open,openat',`
			`'-s', '512',`
			`'-D', process.execPath, '-e', 'require("crypto")',`
			`]);`

			`// stderr is the default for strace`
			`const rl = createInterface({ input: strace.stderr });`
			`rl.on('line', (line) => {`
			`if (!line.startsWith('open')) {`
			`return;`
			`}`

			`const file = line.match(/"(.*?)"/)[1];`
			`// skip .so reading attempt`
			`if (file.match(/.+\.so(\.?)/) !== null) {`
			`return;`
			`}`
			`// skip /proc/*`
			`if (file.match(/\/proc\/.+/) !== null) {`
			`return;`
			`}`

			assert(allowedOpenCalls.delete(file), `${file} is not in the list of allowed openat calls`);
			`});`
			`const debugOutput = [];`
			`strace.stderr.setEncoding('utf8');`
			`strace.stderr.on('data', (chunk) => {`
			`debugOutput.push(chunk.toString());`
			`});`
			`strace.on('error', common.mustNotCall());`
			`strace.on('exit', common.mustCall((code) => {`
			`assert.strictEqual(code, 0, debugOutput);`
			`const missingKeys = Array.from(allowedOpenCalls.keys());`
			`if (missingKeys.length) {`
			assert.fail(`The following openat call are missing: ${missingKeys.join(',')}`);
			`}`
			`}));`
			`}`