test: add test_d_path_sanitization integration test

A new test is added which builds and runs a small container with a Rust
binary that deletes itself and accesses a monitored file. This will
trigger an open event where the executable path retrieved by the
`bpf_d_path` helper will add a " (deleted)" suffix, the test checks our
code correctly strips this suffix.

Author: Molter73

tests/containers/self-deleter/Cargo.lock

@@ -0,0 +1,8 @@
+[package]
+name = "self-deleter"
+version = "0.1.0"
+edition = "2021"
+
+[dependencies]
+
+[workspace]

tests/containers/self-deleter/Cargo.toml

@@ -0,0 +1,12 @@
+FROM rust:1.84-alpine AS builder
+
+WORKDIR /app
+
+COPY . .
+RUN cargo build --release
+
+FROM alpine:3.23
+
+COPY --from=builder /app/target/release/self-deleter /usr/local/bin
+
+ENTRYPOINT ["self-deleter"]

tests/containers/self-deleter/Containerfile

@@ -0,0 +1,18 @@
+use std::{
+    fs::{remove_file, File},
+    io::Write,
+};
+
+fn main() {
+    let exe_path = std::env::current_exe().expect("Failed to get executable path");
+    println!("Removing executable: {}", exe_path.display());
+    remove_file(exe_path).expect("Failed to remove executable");
+
+    let mut args = std::env::args();
+    let path = args.nth(1).expect("File to modify not provided");
+
+    println!("Opening file: {path}");
+    let mut f = File::create(path).expect("Failed to create test file");
+    f.write_all(b"This is a test")
+        .expect("Failed to write to test file");
+}

tests/containers/self-deleter/src/main.rs

@@ -0,0 +1,67 @@
+import os
+
+from conftest import dump_logs
+from event import Event, EventType, Process
+
+import pytest
+
+
+@pytest.fixture
+def build_self_deleter(docker_client):
+    image, _ = docker_client.images.build(
+        path='containers/self-deleter',
+        tag='self-deleter:latest',
+        dockerfile='Containerfile'
+    )
+    return image
+
+
+@pytest.fixture
+def run_self_deleter(fact, monitored_dir, logs_dir, docker_client, build_self_deleter):
+    image = build_self_deleter.tags[0]
+    container = docker_client.containers.run(
+        image,
+        '/mounted/test.txt',
+        detach=True,
+        volumes={
+            monitored_dir: {
+                'bind': '/mounted',
+                'mode': 'z',
+            },
+        },
+        name='self-deleter',
+    )
+
+    yield container
+
+    container_log = os.path.join(logs_dir, 'self-deleter.log')
+    container.stop(timeout=1)
+    dump_logs(container, container_log)
+    container.remove()
+
+
+def test_d_path_sanitization(fact, monitored_dir, server, run_self_deleter, docker_client):
+    """
+    Ensure the sanitization of paths obtained by calling the bpf_d_path
+    helper don't include the " (deleted)" suffix when the file is
+    removed.
+    """
+    # File Under Test
+    fut = '/mounted/test.txt'
+    host_path = os.path.join(monitored_dir, 'test.txt')
+
+    container = run_self_deleter
+
+    process = Process(pid=None,
+                      uid=0,
+                      gid=0,
+                      exe_path='/usr/local/bin/self-deleter',
+                      args=f'self-deleter {fut}',
+                      name='self-deleter',
+                      container_id=container.id[:12],
+                      loginuid=pow(2, 32)-1)
+    event = Event(process=process, event_type=EventType.OPEN,
+                  file=fut, host_path=host_path)
+    print(f'Waiting for event: {event}')
+
+    server.wait_events([event])