blob: 6423ae446cedd18944ae158deca0d1f30eed8272 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
|
--TEST--
FPM: Unix Domain Socket with Posix ACL
--SKIPIF--
<?php
include "skipif.inc";
FPM\Tester::skipIfAnyFileDoesNotExist(['/usr/bin/getfacl', '/etc/passwd', '/etc/group']);
$config = <<<EOT
[global]
error_log = /dev/null
[unconfined]
listen = {{ADDR}}
listen.acl_users = nobody
listen.acl_groups = nobody
listen.mode = 0600
pm = dynamic
pm.max_children = 5
pm.start_servers = 2
pm.min_spare_servers = 1
pm.max_spare_servers = 3
EOT;
FPM\Tester::skipIfConfigFails($config);
?>
--FILE--
<?php
require_once "tester.inc";
// Select 3 users and 2 groups known by system (avoid root)
$users = $groups = [];
$tmp = file('/etc/passwd');
for ($i=1 ; $i <= 3 ; $i++) {
$tab = explode(':', $tmp[$i]);
$users[] = $tab[0];
}
$users = implode(',', $users);
$tmp = file('/etc/group');
for ($i=1 ; $i <= 2 ; $i++) {
$tab = explode(':', $tmp[$i]);
$groups[] = $tab[0];
}
$groups = implode(',', $groups);
$cfg = <<<EOT
[global]
error_log = {{FILE:LOG}}
[unconfined]
listen = {{ADDR:UDS}}
listen.acl_users = $users
listen.acl_groups = $groups
listen.mode = 0600
ping.path = /ping
ping.response = pong
pm = dynamic
pm.max_children = 5
pm.start_servers = 2
pm.min_spare_servers = 1
pm.max_spare_servers = 3
EOT;
$tester = new FPM\Tester($cfg);
$tester->start();
$tester->expectLogStartNotices();
$tester->ping('{{ADDR:UDS}}');
passthru("/usr/bin/getfacl -cp " . $tester->getListen('{{ADDR:UDS}}'));
$tester->terminate();
$tester->expectLogTerminatingNotices();
$tester->close();
?>
Done
--EXPECTF--
user::rw-
user:%s:rw-
user:%s:rw-
user:%s:rw-
group::---
group:%s:rw-
group:%s:rw-
mask::rw-
other::---
Done
--CLEAN--
<?php
require_once "tester.inc";
FPM\Tester::clean();
?>
|
