1# $NetBSD: t_execsnoop.sh,v 1.11 2021/07/29 14:58:35 gson Exp $
2#
3# Copyright (c) 2020 The NetBSD Foundation, Inc.
4# All rights reserved.
5#
6# This code is derived from software contributed to The NetBSD Foundation
7# by Jukka Ruohonen.
8#
9# Redistribution and use in source and binary forms, with or without
10# modification, are permitted provided that the following conditions
11# are met:
12# 1. Redistributions of source code must retain the above copyright
13#    notice, this list of conditions and the following disclaimer.
14# 2. Redistributions in binary form must reproduce the above copyright
15#    notice, this list of conditions and the following disclaimer in the
16#    documentation and/or other materials provided with the distribution.
17#
18# THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS
19# ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
20# TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
21# PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS
22# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
23# CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
24# SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
25# INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
26# CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
27# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
28# POSSIBILITY OF SUCH DAMAGE.
29#
30stdout="execsnoop.out"
31stderr="execsnoop.stderr"
32
33atf_test_case basic cleanup
34basic_head() {
35	atf_set "require.user" "root"
36	atf_set "require.progs" "execsnoop"
37	atf_set "descr" "Test that DTrace's execsnoop works (cf. kern/53417)"
38}
39
40basic_body() {
41	if
42		! modstat dtrace_syscall | grep dtrace_syscall &&
43		! modstat -A
44	then
45		atf_skip "dtrace_syscall module not loaded and can't be autoloaded"
46	fi
47
48	n=10
49	atf_check -s exit:0 -o ignore -e empty -x "execsnoop >$stdout 2>$stderr &"
50	sleep 5
51
52	while [ $n -gt 0 ]; do
53		whoami
54		n=$(expr $n - 1)
55	done
56
57	sleep 5
58
59	cat $stderr >&2
60
61	if [ ! $(cat $stdout | grep "whoami" | wc -l) -eq 10 ]; then
62		atf_fail "execsnoop does not work"
63	fi
64
65	atf_pass
66}
67
68basic_cleanup() {
69}
70
71atf_init_test_cases() {
72	atf_add_test_case basic
73}
74