def test_write_manually(self):
obj = SignalRule('send', 'quit', '/foo', allow_keyword=True)
expected = ' allow signal send set=quit peer=/foo,'
self.assertEqual(expected, obj.get_clean(2), 'unexpected clean rule')
self.assertEqual(expected, obj.get_raw(2), 'unexpected raw rule')
def test_signal_from_log(self):
parser = ReadLog('', '', '', '')
event = 'type=AVC msg=audit(1409438250.564:201): apparmor="DENIED" operation="signal" profile="/usr/bin/pulseaudio" pid=2531 comm="pulseaudio" requested_mask="send" denied_mask="send" signal=term peer="/usr/bin/pulseaudio///usr/lib/pulseaudio/pulse/gconf-helper"'
parsed_event = parser.parse_event(event)
self.assertEqual(
parsed_event, {
'request_mask': 'send',
'denied_mask': 'send',
'error_code': 0,
'magic_token': 0,
'parent': 0,
'profile': '/usr/bin/pulseaudio',
'signal': 'term',
'peer':
'/usr/bin/pulseaudio///usr/lib/pulseaudio/pulse/gconf-helper',
'operation': 'signal',
'resource': None,
'info': None,
'aamode': 'REJECTING',
'time': 1409438250,
'active_hat': None,
'pid': 2531,
'task': 0,
'attr': None,
'name2': None,
'name': None,
'family': None,
'protocol': None,
'sock_type': None,
})
obj = SignalRule(parsed_event['denied_mask'],
parsed_event['signal'],
parsed_event['peer'],
log_event=parsed_event)
# audit allow deny comment access all? signal all? peer all?
expected = exp(
False, False, False, '', {'send'}, False, {'term'}, False,
'/usr/bin/pulseaudio///usr/lib/pulseaudio/pulse/gconf-helper',
False)
self._compare_obj(obj, expected)
self.assertEqual(
obj.get_raw(1),
' signal send set=term peer=/usr/bin/pulseaudio///usr/lib/pulseaudio/pulse/gconf-helper,'
)
