diff --git a/tests/system/tests/test_groupadd.py b/tests/system/tests/test_groupadd.py index 0a8df92c86..e5a0faae54 100644 --- a/tests/system/tests/test_groupadd.py +++ b/tests/system/tests/test_groupadd.py @@ -4,8 +4,12 @@ from __future__ import annotations +import re + import pytest +from passlib.hash import sha512_crypt +from framework.misc import shadow_password_pattern from framework.roles.shadow import Shadow from framework.topology import KnownTopology @@ -66,3 +70,83 @@ def test_groupadd__u_option_empty_string_clears_members(shadow: Shadow): assert gshadow_entry is not None, "Group should be found" assert gshadow_entry.name == "tgroup", "Incorrect groupname" assert not gshadow_entry.members, "Group should have no members" + + +@pytest.mark.topology(KnownTopology.Shadow) +def test_groupadd__set_gid(shadow: Shadow): + """ + :title: Create group with specific GID using -g flag + :setup: + 1. Create group with specific GID + :steps: + 1. Check group entry + :expectedresults: + 1. Group entry is created with the specified GID + :customerscenario: False + """ + shadow.groupadd("-g 1500 tgroup") + + group_entry = shadow.tools.getent.group("tgroup") + assert group_entry is not None, "Group should be found" + assert group_entry.name == "tgroup", "Incorrect groupname" + assert group_entry.gid == 1500, "Incorrect GID" + + +@pytest.mark.topology(KnownTopology.Shadow) +def test_groupadd__set_password(shadow: Shadow): + """ + :title: Add group with password using -p flag + :setup: + 1. Create group with password + :steps: + 1. Check group entry + 2. Check gshadow entry + :expectedresults: + 1. Group entry is created + 2. Group's password is correctly set + :customerscenario: False + """ + password = "Secret123" + password_hash = sha512_crypt.hash(password) + shadow.groupadd(f"-p '{password_hash}' tgroup") + + group_entry = shadow.tools.getent.group("tgroup") + assert group_entry is not None, "Group should be found" + + if shadow.host.features["gshadow"]: + gshadow_entry = shadow.tools.getent.gshadow("tgroup") + assert gshadow_entry is not None, "Group should be found" + assert gshadow_entry.name == "tgroup", "Incorrect groupname" + assert gshadow_entry.password is not None, "Password should not be None" + assert re.match(shadow_password_pattern(), gshadow_entry.password), "Incorrect password" + + +@pytest.mark.topology(KnownTopology.Shadow) +def test_groupadd__force_group_creation(shadow: Shadow): + """ + :title: Forced creation of existing group exits successfully + :setup: + 1. Create group entry + :steps: + 1. Check group entry + 2. Force create existing group + 3. Check group entry + 4. Check gshadow entry + :expectedresults: + 1. Group entry is created + 2. groupadd -f command completes successfully + 3. Group entry is unchanged + 4. gshadow entry is unchanged + :customerscenario: False + """ + shadow.groupadd("tgroup") + existing_group_entry = shadow.tools.getent.group("tgroup") + assert existing_group_entry is not None, "Group should be found" + shadow.groupadd("-f tgroup") + group_entry = shadow.tools.getent.group("tgroup") + assert group_entry is not None, "Group should be found" + assert group_entry.name == "tgroup", "Incorrect groupname" + if shadow.host.features["gshadow"]: + gshadow_entry = shadow.tools.getent.gshadow("tgroup") + assert gshadow_entry is not None, "Group should be found" + assert gshadow_entry.name == "tgroup", "Incorrect groupname"