1 // Copyright 2012 The Go Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style
3 // license that can be found in the LICENSE file.
16 "golang.org/x/sys/unix"
19 // TestSCMCredentials tests the sending and receiving of credentials
20 // (PID, UID, GID) in an ancillary message between two UNIX
21 // sockets. The SO_PASSCRED socket option is enabled on the sending
22 // socket for this to work.
23 func TestSCMCredentials(t *testing.T) {
24 socketTypeTests := []struct {
37 for _, tt := range socketTypeTests {
38 if tt.socketType == unix.SOCK_DGRAM && !atLeast1p10() {
39 t.Log("skipping DGRAM test on pre-1.10")
43 fds, err := unix.Socketpair(unix.AF_LOCAL, tt.socketType, 0)
45 t.Fatalf("Socketpair: %v", err)
47 defer unix.Close(fds[0])
48 defer unix.Close(fds[1])
50 err = unix.SetsockoptInt(fds[0], unix.SOL_SOCKET, unix.SO_PASSCRED, 1)
52 t.Fatalf("SetsockoptInt: %v", err)
55 srvFile := os.NewFile(uintptr(fds[0]), "server")
57 srv, err := net.FileConn(srvFile)
59 t.Errorf("FileConn: %v", err)
64 cliFile := os.NewFile(uintptr(fds[1]), "client")
66 cli, err := net.FileConn(cliFile)
68 t.Errorf("FileConn: %v", err)
74 ucred.Pid = int32(os.Getpid())
75 ucred.Uid = uint32(os.Getuid())
76 ucred.Gid = uint32(os.Getgid())
77 oob := unix.UnixCredentials(&ucred)
79 // On SOCK_STREAM, this is internally going to send a dummy byte
80 n, oobn, err := cli.(*net.UnixConn).WriteMsgUnix(nil, oob, nil)
82 t.Fatalf("WriteMsgUnix: %v", err)
85 t.Fatalf("WriteMsgUnix n = %d, want 0", n)
88 t.Fatalf("WriteMsgUnix oobn = %d, want %d", oobn, len(oob))
91 oob2 := make([]byte, 10*len(oob))
92 n, oobn2, flags, _, err := srv.(*net.UnixConn).ReadMsgUnix(nil, oob2)
94 t.Fatalf("ReadMsgUnix: %v", err)
97 t.Fatalf("ReadMsgUnix flags = 0x%x, want 0", flags)
100 t.Fatalf("ReadMsgUnix n = %d, want %d", n, tt.dataLen)
103 // without SO_PASSCRED set on the socket, ReadMsgUnix will
104 // return zero oob bytes
105 t.Fatalf("ReadMsgUnix oobn = %d, want %d", oobn2, oobn)
108 if !bytes.Equal(oob, oob2) {
109 t.Fatal("ReadMsgUnix oob bytes don't match")
112 scm, err := unix.ParseSocketControlMessage(oob2)
114 t.Fatalf("ParseSocketControlMessage: %v", err)
116 newUcred, err := unix.ParseUnixCredentials(&scm[0])
118 t.Fatalf("ParseUnixCredentials: %v", err)
120 if *newUcred != ucred {
121 t.Fatalf("ParseUnixCredentials = %+v, want %+v", newUcred, ucred)
126 // atLeast1p10 reports whether we are running on Go 1.10 or later.
127 func atLeast1p10() bool {
128 for _, ver := range build.Default.ReleaseTags {