shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2024-12-23 21:35:11 +03:00
Code

test: add a simple test for MaxConnectionsPerSocket=

Browse Source
This commit is contained in:
Lennart Poettering 2024-02-07 15:08:22 +01:00
parent 5d1e8cd3e0
commit 3456c89ac2
1 changed files with 75 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

75
test/units/testsuite-74.socket.sh Executable file
View File

@ -0,0 +1,75 @@
#!/usr/bin/env bash
# SPDX-License-Identifier: LGPL-2.1-or-later
# shellcheck disable=SC2016
set -eux
set -o pipefail
# shellcheck source=test/units/util.sh
. "$(dirname "$0")"/util.sh
at_exit() {
systemctl stop per-source-limit.socket
rm -f /run/systemd/system/per-source-limit.socket /run/systemd/system/per-source-limit@.service
rm -f /tmp/foo.conn1 /tmp/foo.conn2 /tmp/foo.conn3 /tmp/foo.conn4
systemctl daemon-reload
}
trap at_exit EXIT
cat > /run/systemd/system/per-source-limit.socket <<EOF
[Socket]
ListenStream=/run/per-source-limit.sk
MaxConnectionsPerSource=2
Accept=yes
EOF
cat > /run/systemd/system/per-source-limit@.service <<EOF
[Unit]
BindsTo=per-source-limit.socket
After=per-source-limit.socket
[Service]
ExecStartPre=echo waldo
ExecStart=sleep infinity
StandardOutput=socket
EOF
systemctl daemon-reload
systemctl start per-source-limit.socket
# So these two should take up the first two connection slots
socat - UNIX-CONNECT:/run/per-source-limit.sk > /tmp/foo.conn1 &
J1="$!"
socat - UNIX-CONNECT:/run/per-source-limit.sk > /tmp/foo.conn2 &
J2="$!"
waitfor() {
while ! grep -q "waldo" "$1" ; do
sleep .2
done
}
# Wait until the word "waldo" shows in the output files
waitfor /tmp/foo.conn1
waitfor /tmp/foo.conn2
# The next connection should fail, because the limit is hit
socat - UNIX-CONNECT:/run/per-source-limit.sk > /tmp/foo.conn3 &
J3="$!"
# But this one should work, because done under a differen UID
setpriv --reuid=1 socat - UNIX-CONNECT:/run/per-source-limit.sk > /tmp/foo.conn4 &
J4="$!"
waitfor /tmp/foo.conn4
# The third job should fail quickly, wait for it
wait "$J3"
# The other jobs will hang forever, since we run "sleep infinity" on the server side. Let's kill the jobs now.
kill "$J1"
kill "$J2"
kill "$J4"
# The 3rd connection should not have seen "waldo", since it should have been refused too early
(! grep -q "waldo" /tmp/foo.conn3 )