nixos/tests/hardened: test hardened malloc

2024-11-22 15:03:28 +00:00 · 2019-04-23 22:24:16 +02:00 · 2019-04-23 22:24:16 +02:00 · 10d3a0e10b
commit 10d3a0e10b
parent 48ff4f1197
1 changed files with 27 additions and 0 deletions
--- a/nixos/tests/hardened.nix
+++ b/nixos/tests/hardened.nix
@ -27,6 +27,20 @@ import ./make-test.nix ({ pkgs, ...} : {
    };

  testScript =
+    let
+      hardened-malloc-tests = pkgs.stdenv.mkDerivation rec {
+        name = "hardened-malloc-tests-${pkgs.graphene-hardened-malloc.version}";
+        src = pkgs.graphene-hardened-malloc.src;
+        buildPhase = ''
+          cd test/simple-memory-corruption
+          make -j4
+        '';
+
+        installPhase = ''
+          find . -type f -executable -exec install -Dt $out/bin '{}' +
+        '';
+      };
+    in
    ''
      $machine->waitForUnit("multi-user.target");

@ -83,5 +97,18 @@ import ./make-test.nix ({ pkgs, ...} : {
        $machine->fail("systemctl hibernate");
        $machine->fail("systemctl kexec");
      };
+
+      # Test hardened memory allocator
+      sub runMallocTestProg {
+          my ($progName, $errorText) = @_;
+          my $text = "fatal allocator error: " . $errorText;
+          $machine->fail("${hardened-malloc-tests}/bin/" . $progName) =~ $text;
+      };
+
+      subtest "hardenedmalloc", sub {
+        runMallocTestProg("double_free_large", "invalid free");
+        runMallocTestProg("unaligned_free_small", "invalid unaligned free");
+        runMallocTestProg("write_after_free_small", "detected write after free");
+      };
    '';
 })