testing

author: netblue30 <netblue30@yahoo.com> 2016-11-09 19:17:06 -0500
committer: netblue30 <netblue30@yahoo.com> 2016-11-09 19:17:06 -0500
commit: 35004af7d8f6ff19908fb89e25e532113afa26f4 (patch)
tree: 991c7c279e0629e3de36a1d9453ab2513a38be1d /test/network
parent: bugfix: crashing vlc when pressing Ctrl-O (diff)
download: firejail-35004af7d8f6ff19908fb89e25e532113afa26f4.tar.gz
firejail-35004af7d8f6ff19908fb89e25e532113afa26f4.tar.zst
firejail-35004af7d8f6ff19908fb89e25e532113afa26f4.zip
13 files changed, 266 insertions, 27 deletions
diff --git a/test/network/4bridges_arp.exp b/test/network/4bridges_arp.exp
index 4ffa715cc..6383aad5e 100755
--- a/test/network/4bridges_arp.exp
+++ b/test/network/4bridges_arp.exp
@@ -29,9 +29,9 @@ expect {
        timeout {puts "TESTING ERROR 0.4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
 # check eth1
 send -- "firejail --net=br0 --net=br1 --net=br2 --net=br3\r"
@@ -55,9 +55,9 @@ expect {
        timeout {puts "TESTING ERROR 1.4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
 # check eth2
@@ -82,9 +82,9 @@ expect {
        timeout {puts "TESTING ERROR 2.4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
@@ -110,9 +110,9 @@ expect {
        timeout {puts "TESTING ERROR 4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
diff --git a/test/network/4bridges_ip.exp b/test/network/4bridges_ip.exp
index 3cfd71be0..e762ac285 100755
--- a/test/network/4bridges_ip.exp
+++ b/test/network/4bridges_ip.exp
@@ -29,9 +29,9 @@ expect {
        timeout {puts "TESTING ERROR 0.4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
 # check eth1
 send -- "firejail --net=br0 --net=br1 --ip=10.10.30.50 --net=br2 --ip=10.10.40.100 --net=br3\r"
@@ -55,9 +55,9 @@ expect {
        timeout {puts "TESTING ERROR 1.4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
 # check eth2
@@ -82,9 +82,9 @@ expect {
        timeout {puts "TESTING ERROR 2.4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
@@ -110,9 +110,9 @@ expect {
        timeout {puts "TESTING ERROR 4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
diff --git a/test/network/README b/test/network/README
index a715d8edf..4404c53b0 100644
--- a/test/network/README
+++ b/test/network/README
@@ -11,5 +11,4 @@ Limitations - to be investigated and fixed:
        - macvlan interfaces don't seem to work correctly under VirtualBox
 Run the test:
-        $ sudo ./configure
        $ ./network.sh | grep TESTING
diff --git a/test/network/bandwidth.exp b/test/network/bandwidth.exp
index 8f3a706a8..8a2e46e04 100755
--- a/test/network/bandwidth.exp
+++ b/test/network/bandwidth.exp
@@ -12,7 +12,7 @@ expect {
        timeout {puts "TESTING ERROR 0\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 spawn $env(SHELL)
 send -- "firejail --bandwidth=test status\r"
diff --git a/test/network/firemon-arp.exp b/test/network/firemon-arp.exp
new file mode 100755
index 000000000..0a543c3b4
--- /dev/null
+++ b/test/network/firemon-arp.exp
@@ -0,0 +1,50 @@
+#!/usr/bin/expect -f
+set timeout 10
+spawn $env(SHELL)
+match_max 100000
+send -- "ping -c 3 192.168.1.1\r"
+expect {
+        timeout {puts "TESTING ERROR 0\n";exit}
+        "3 packets transmitted"
+}
+sleep 1
+send --  "firejail --name=test1\r"
+expect {
+        timeout {puts "TESTING ERROR 1\n";exit}
+        "Child process initialized"
+}
+sleep 1
+spawn $env(SHELL)
+send --  "firejail --name=test2\r"
+expect {
+        timeout {puts "TESTING ERROR 2\n";exit}
+        "Child process initialized"
+}
+sleep 1
+spawn $env(SHELL)
+send -- "firemon --arp\r"
+expect {
+        timeout {puts "TESTING ERROR 3\n";exit}
+        "name=test1"
+}
+expect {
+        timeout {puts "TESTING ERROR 4\n";exit}
+        "192.168.1.1 dev eth0 lladdr" {puts "Debian testing\n";}
+        "192.168.1.1 dev enp0s3 lladdr" {puts "Centos 7 testing\n";}
+}
+expect {
+        timeout {puts "TESTING ERROR 5\n";exit}
+        "REACHABLE"
+}
+expect {
+        timeout {puts "TESTING ERROR 6\n";exit}
+        "name=test2"
+}
+after 100
+puts "\nall done\n""
diff --git a/test/network/firemon-route.exp b/test/network/firemon-route.exp
new file mode 100755
index 000000000..19a705778
--- /dev/null
+++ b/test/network/firemon-route.exp
@@ -0,0 +1,49 @@
+#!/usr/bin/expect -f
+set timeout 10
+spawn $env(SHELL)
+match_max 100000
+send --  "firejail --name=test1\r"
+expect {
+        timeout {puts "TESTING ERROR 0\n";exit}
+        "Child process initialized"
+}
+sleep 1
+spawn $env(SHELL)
+send --  "firejail --name=test2\r"
+expect {
+        timeout {puts "TESTING ERROR 1\n";exit}
+        "Child process initialized"
+}
+sleep 1
+spawn $env(SHELL)
+send -- "firemon --route\r"
+expect {
+        timeout {puts "TESTING ERROR 2\n";exit}
+        "name=test1"
+}
+expect {
+        timeout {puts "TESTING ERROR 3\n";exit}
+        "0.0.0.0/0 via 192.168.1.1, dev eth0, metric 0" {puts "Debian testing\n";}
+        "0.0.0.0/0 via 192.168.1.1, dev enp0s3, metric 1024" {puts "Centos 7 testing\n";}
+        "0.0.0.0/0 via 192.168.1.1, dev enp0s3, metric 0" {puts "OpenSUSE testing\n";}
+            "0.0.0.0/0 via 192.168.1.1, dev enp0s3, metric 100" {puts "Arch testing\n";}
+}
+expect {
+        timeout {puts "TESTING ERROR 4\n";exit}
+        "10.10.30.0/24, dev br1, scope link src 10.10.30.1"
+}
+expect {
+        timeout {puts "TESTING ERROR 5\n";exit}
+        "10.10.50.0/24, dev br3, scope link src 10.10.50.1"
+}
+expect {
+        timeout {puts "TESTING ERROR 6\n";exit}
+        "name=test2"
+}
+after 100
+puts "\nalldone\n"
diff --git a/test/network/interface.exp b/test/network/interface.exp
index b15563eec..bd8777c33 100755
--- a/test/network/interface.exp
+++ b/test/network/interface.exp
@@ -14,7 +14,7 @@ set chroot [lindex $argv 1]
 #
 # todo: seems to be unable to find interface eth0.7
 #send -- "firejail --noprofile --interface=eth0.5 --interface=eth0.6 --interface=eth0.7\r"
-send -- "firejail --noprofile --interface=eth0.7 --interface=eth0.6\r"
+send -- "firejail --noprofile --interface=eth0.5 --interface=eth0.6\r"
 expect {
        timeout {puts "TESTING ERROR 0\n";exit}
        "Child process initialized"
diff --git a/test/network/net_ip.exp b/test/network/net_ip.exp
index 32103050d..0fa84243a 100755
--- a/test/network/net_ip.exp
+++ b/test/network/net_ip.exp
@@ -29,9 +29,9 @@ expect {
        timeout {puts "TESTING ERROR 4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
 # check loopback
 send -- "firejail --net=br0 --ip=10.10.20.5 --protocol=unix,inet,netlink\r"
diff --git a/test/network/net_local.exp b/test/network/net_local.exp
index b72b9adaf..d58135785 100755
--- a/test/network/net_local.exp
+++ b/test/network/net_local.exp
@@ -17,9 +17,9 @@ expect {
        timeout {puts "TESTING ERROR 4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
-sleep 2
+sleep 1
 # check loopback
 send -- "firejail --noprofile\r"
diff --git a/test/network/net_netfilter.exp b/test/network/net_netfilter.exp
index f011f3746..737485d07 100755
--- a/test/network/net_netfilter.exp
+++ b/test/network/net_netfilter.exp
@@ -29,7 +29,7 @@ expect {
        timeout {puts "TESTING ERROR 4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
 sleep 1
@@ -43,7 +43,7 @@ expect {
        "ACCEPT     icmp --  any    any     anywhere" {puts "TESTING ERROR 5.1\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "exit\r"
 sleep 1
@@ -57,7 +57,7 @@ expect {
        timeout {puts "TESTING ERROR 6.1\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "ping -c 1 -w 3 10.10.20.1\r"
 expect {
        timeout {puts "TESTING ERROR 6.2\n";exit}
diff --git a/test/network/net_profile.exp b/test/network/net_profile.exp
index dee0b2793..29008d811 100755
--- a/test/network/net_profile.exp
+++ b/test/network/net_profile.exp
@@ -33,7 +33,7 @@ expect {
        timeout {puts "TESTING ERROR 0.4\n";exit}
        "Child process initialized"
 }
-sleep 2
+sleep 1
 send -- "ip route show\r"
 expect {
diff --git a/test/network/net_veth.exp b/test/network/net_veth.exp
new file mode 100755
index 000000000..89dedcb24
--- /dev/null
+++ b/test/network/net_veth.exp
@@ -0,0 +1,130 @@
+#!/usr/bin/expect -f
+# This file is part of Firejail project
+# Copyright (C) 2014-2016 Firejail Authors
+# License GPL v2
+set timeout 10
+spawn $env(SHELL)
+match_max 100000
+send -- "firejail --net=eth0\r"
+expect {
+        timeout {puts "TESTING ERROR 1\n";exit}
+        "lo"
+}
+expect {
+        timeout {puts "TESTING ERROR 2\n";exit}
+        "127.0.0.1"
+}
+expect {
+        timeout {puts "TESTING ERROR 3\n";exit}
+        "255.0.0.0"
+}
+expect {
+        timeout {puts "TESTING ERROR 4\n";exit}
+        "UP"
+}
+expect {
+        timeout {puts "TESTING ERROR 5\n";exit}
+        "eth0-"
+}
+expect {
+        timeout {puts "TESTING ERROR 6\n";exit}
+        "255.255.255.0"
+}
+expect {
+        timeout {puts "TESTING ERROR 7\n";exit}
+        "UP"
+}
+expect {
+        timeout {puts "TESTING ERROR 8\n";exit}
+        "Default gateway"
+}
+expect {
+        timeout {puts "TESTING ERROR 9\n";exit}
+        "Child process initialized"
+}
+sleep 1
+send -- "exit\r"
+sleep 1
+send -- "firejail --net=eth0 --net=eth0 --net=eth0 --net=eth0\r"
+expect {
+        timeout {puts "TESTING ERROR 11\n";exit}
+        "lo"
+}
+expect {
+        timeout {puts "TESTING ERROR 12\n";exit}
+        "127.0.0.1"
+}
+expect {
+        timeout {puts "TESTING ERROR 13\n";exit}
+        "255.0.0.0"
+}
+expect {
+        timeout {puts "TESTING ERROR 14\n";exit}
+        "UP"
+}
+expect {
+        timeout {puts "TESTING ERROR 15\n";exit}
+        "eth0-"
+}
+expect {
+        timeout {puts "TESTING ERROR 16\n";exit}
+        "255.255.255.0"
+}
+expect {
+        timeout {puts "TESTING ERROR 17\n";exit}
+        "UP"
+}
+expect {
+        timeout {puts "TESTING ERROR 18\n";exit}
+        "eth1-"
+}
+expect {
+        timeout {puts "TESTING ERROR 19\n";exit}
+        "255.255.255.0"
+}
+expect {
+        timeout {puts "TESTING ERROR 20\n";exit}
+        "UP"
+}
+expect {
+        timeout {puts "TESTING ERROR 5\n";exit}
+        "eth2-"
+}
+expect {
+        timeout {puts "TESTING ERROR 21\n";exit}
+        "255.255.255.0"
+}
+expect {
+        timeout {puts "TESTING ERROR 22\n";exit}
+        "UP"
+}
+expect {
+        timeout {puts "TESTING ERROR 23\n";exit}
+        "eth3-"
+}
+expect {
+        timeout {puts "TESTING ERROR 24\n";exit}
+        "255.255.255.0"
+}
+expect {
+        timeout {puts "TESTING ERROR 25\n";exit}
+        "UP"
+}
+expect {
+        timeout {puts "TESTING ERROR 26\n";exit}
+        "Default gateway"
+}
+expect {
+        timeout {puts "TESTING ERROR 27\n";exit}
+        "Child process initialized"
+}
+sleep 1
+send -- "exit\r"
+after 100
+puts "\n"
diff --git a/test/network/network.sh b/test/network/network.sh
index e0087411d..28f707952 100755
--- a/test/network/network.sh
+++ b/test/network/network.sh
@@ -6,6 +6,14 @@
 export MALLOC_CHECK_=3
 export MALLOC_PERTURB_=$(($RANDOM % 255 + 1))
+sudo ./configure
+echo "TESTING: firemon arp (firemon-arp.exp)"
+./firemon-arp.exp
+echo "TESTING: firemon route (firemon-route.exp)"
+./firemon-route.exp
 echo "TESTING: network profile (net_profile.exp)"
 ./net_profile.exp
@@ -58,6 +66,9 @@ echo "TESTING: scan (net_scan.exp)"
 echo "TESTING: interface (interface.exp)"
 ./interface.exp
+echo "TESTING: veth (net_veth.exp)"
+./net_veth.exp
 echo "TESTING: netfilter (net_netfilter.exp)"
 ./net_netfilter.exp
author	netblue30 <netblue30@yahoo.com>	2016-11-09 19:17:06 -0500
committer	netblue30 <netblue30@yahoo.com>	2016-11-09 19:17:06 -0500
commit	35004af7d8f6ff19908fb89e25e532113afa26f4 (patch)
tree	991c7c279e0629e3de36a1d9453ab2513a38be1d /test/network
parent	bugfix: crashing vlc when pressing Ctrl-O (diff)
download	firejail-35004af7d8f6ff19908fb89e25e532113afa26f4.tar.gz firejail-35004af7d8f6ff19908fb89e25e532113afa26f4.tar.zst firejail-35004af7d8f6ff19908fb89e25e532113afa26f4.zip

diff --git a/test/network/4bridges_arp.exp b/test/network/4bridges_arp.exp index 4ffa715cc..6383aad5e 100755 --- a/test/network/4bridges_arp.exp +++ b/test/network/4bridges_arp.exp
@@ -29,9 +29,9 @@ expect {
29	timeout {puts "TESTING ERROR 0.4\n";exit}	29	timeout {puts "TESTING ERROR 0.4\n";exit}
30	"Child process initialized"	30	"Child process initialized"
31	}	31	}
32	sleep 2	32	sleep 1
33	send -- "exit\r"	33	send -- "exit\r"
34	sleep 2	34	sleep 1
35		35
36	# check eth1	36	# check eth1
37	send -- "firejail --net=br0 --net=br1 --net=br2 --net=br3\r"	37	send -- "firejail --net=br0 --net=br1 --net=br2 --net=br3\r"
@@ -55,9 +55,9 @@ expect {
55	timeout {puts "TESTING ERROR 1.4\n";exit}	55	timeout {puts "TESTING ERROR 1.4\n";exit}
56	"Child process initialized"	56	"Child process initialized"
57	}	57	}
58	sleep 2	58	sleep 1
59	send -- "exit\r"	59	send -- "exit\r"
60	sleep 2	60	sleep 1
61		61
62		62
63	# check eth2	63	# check eth2
@@ -82,9 +82,9 @@ expect {
82	timeout {puts "TESTING ERROR 2.4\n";exit}	82	timeout {puts "TESTING ERROR 2.4\n";exit}
83	"Child process initialized"	83	"Child process initialized"
84	}	84	}
85	sleep 2	85	sleep 1
86	send -- "exit\r"	86	send -- "exit\r"
87	sleep 2	87	sleep 1
88		88
89		89
90		90
@@ -110,9 +110,9 @@ expect {
110	timeout {puts "TESTING ERROR 4\n";exit}	110	timeout {puts "TESTING ERROR 4\n";exit}
111	"Child process initialized"	111	"Child process initialized"
112	}	112	}
113	sleep 2	113	sleep 1
114	send -- "exit\r"	114	send -- "exit\r"
115	sleep 2	115	sleep 1
116		116
117		117
118		118


diff --git a/test/network/4bridges_ip.exp b/test/network/4bridges_ip.exp index 3cfd71be0..e762ac285 100755 --- a/test/network/4bridges_ip.exp +++ b/test/network/4bridges_ip.exp
@@ -29,9 +29,9 @@ expect {
29	timeout {puts "TESTING ERROR 0.4\n";exit}	29	timeout {puts "TESTING ERROR 0.4\n";exit}
30	"Child process initialized"	30	"Child process initialized"
31	}	31	}
32	sleep 2	32	sleep 1
33	send -- "exit\r"	33	send -- "exit\r"
34	sleep 2	34	sleep 1
35		35
36	# check eth1	36	# check eth1
37	send -- "firejail --net=br0 --net=br1 --ip=10.10.30.50 --net=br2 --ip=10.10.40.100 --net=br3\r"	37	send -- "firejail --net=br0 --net=br1 --ip=10.10.30.50 --net=br2 --ip=10.10.40.100 --net=br3\r"
@@ -55,9 +55,9 @@ expect {
55	timeout {puts "TESTING ERROR 1.4\n";exit}	55	timeout {puts "TESTING ERROR 1.4\n";exit}
56	"Child process initialized"	56	"Child process initialized"
57	}	57	}
58	sleep 2	58	sleep 1
59	send -- "exit\r"	59	send -- "exit\r"
60	sleep 2	60	sleep 1
61		61
62		62
63	# check eth2	63	# check eth2
@@ -82,9 +82,9 @@ expect {
82	timeout {puts "TESTING ERROR 2.4\n";exit}	82	timeout {puts "TESTING ERROR 2.4\n";exit}
83	"Child process initialized"	83	"Child process initialized"
84	}	84	}
85	sleep 2	85	sleep 1
86	send -- "exit\r"	86	send -- "exit\r"
87	sleep 2	87	sleep 1
88		88
89		89
90		90
@@ -110,9 +110,9 @@ expect {
110	timeout {puts "TESTING ERROR 4\n";exit}	110	timeout {puts "TESTING ERROR 4\n";exit}
111	"Child process initialized"	111	"Child process initialized"
112	}	112	}
113	sleep 2	113	sleep 1
114	send -- "exit\r"	114	send -- "exit\r"
115	sleep 2	115	sleep 1
116		116
117		117
118		118


diff --git a/test/network/README b/test/network/README index a715d8edf..4404c53b0 100644 --- a/test/network/README +++ b/test/network/README
@@ -11,5 +11,4 @@ Limitations - to be investigated and fixed:
11	- macvlan interfaces don't seem to work correctly under VirtualBox	11	- macvlan interfaces don't seem to work correctly under VirtualBox
12		12
13	Run the test:	13	Run the test:
14	$ sudo ./configure
15	$ ./network.sh \| grep TESTING	14	$ ./network.sh \| grep TESTING


diff --git a/test/network/bandwidth.exp b/test/network/bandwidth.exp index 8f3a706a8..8a2e46e04 100755 --- a/test/network/bandwidth.exp +++ b/test/network/bandwidth.exp
@@ -12,7 +12,7 @@ expect {
12	timeout {puts "TESTING ERROR 0\n";exit}	12	timeout {puts "TESTING ERROR 0\n";exit}
13	"Child process initialized"	13	"Child process initialized"
14	}	14	}
15	sleep 2	15	sleep 1
16		16
17	spawn $env(SHELL)	17	spawn $env(SHELL)
18	send -- "firejail --bandwidth=test status\r"	18	send -- "firejail --bandwidth=test status\r"


diff --git a/test/network/firemon-arp.exp b/test/network/firemon-arp.exp new file mode 100755 index 000000000..0a543c3b4 --- /dev/null +++ b/test/network/firemon-arp.exp
@@ -0,0 +1,50 @@
		1	#!/usr/bin/expect -f
		2
		3	set timeout 10
		4	spawn $env(SHELL)
		5	match_max 100000
		6
		7	send -- "ping -c 3 192.168.1.1\r"
		8	expect {
		9	timeout {puts "TESTING ERROR 0\n";exit}
		10	"3 packets transmitted"
		11	}
		12	sleep 1
		13
		14	send -- "firejail --name=test1\r"
		15	expect {
		16	timeout {puts "TESTING ERROR 1\n";exit}
		17	"Child process initialized"
		18	}
		19	sleep 1
		20
		21	spawn $env(SHELL)
		22	send -- "firejail --name=test2\r"
		23	expect {
		24	timeout {puts "TESTING ERROR 2\n";exit}
		25	"Child process initialized"
		26	}
		27	sleep 1
		28
		29	spawn $env(SHELL)
		30	send -- "firemon --arp\r"
		31	expect {
		32	timeout {puts "TESTING ERROR 3\n";exit}
		33	"name=test1"
		34	}
		35	expect {
		36	timeout {puts "TESTING ERROR 4\n";exit}
		37	"192.168.1.1 dev eth0 lladdr" {puts "Debian testing\n";}
		38	"192.168.1.1 dev enp0s3 lladdr" {puts "Centos 7 testing\n";}
		39	}
		40	expect {
		41	timeout {puts "TESTING ERROR 5\n";exit}
		42	"REACHABLE"
		43	}
		44	expect {
		45	timeout {puts "TESTING ERROR 6\n";exit}
		46	"name=test2"
		47	}
		48	after 100
		49
		50	puts "\nall done\n""


diff --git a/test/network/firemon-route.exp b/test/network/firemon-route.exp new file mode 100755 index 000000000..19a705778 --- /dev/null +++ b/test/network/firemon-route.exp
@@ -0,0 +1,49 @@
		1	#!/usr/bin/expect -f
		2
		3	set timeout 10
		4	spawn $env(SHELL)
		5	match_max 100000
		6
		7	send -- "firejail --name=test1\r"
		8	expect {
		9	timeout {puts "TESTING ERROR 0\n";exit}
		10	"Child process initialized"
		11	}
		12	sleep 1
		13
		14	spawn $env(SHELL)
		15	send -- "firejail --name=test2\r"
		16	expect {
		17	timeout {puts "TESTING ERROR 1\n";exit}
		18	"Child process initialized"
		19	}
		20	sleep 1
		21
		22	spawn $env(SHELL)
		23	send -- "firemon --route\r"
		24	expect {
		25	timeout {puts "TESTING ERROR 2\n";exit}
		26	"name=test1"
		27	}
		28	expect {
		29	timeout {puts "TESTING ERROR 3\n";exit}
		30	"0.0.0.0/0 via 192.168.1.1, dev eth0, metric 0" {puts "Debian testing\n";}
		31	"0.0.0.0/0 via 192.168.1.1, dev enp0s3, metric 1024" {puts "Centos 7 testing\n";}
		32	"0.0.0.0/0 via 192.168.1.1, dev enp0s3, metric 0" {puts "OpenSUSE testing\n";}
		33	"0.0.0.0/0 via 192.168.1.1, dev enp0s3, metric 100" {puts "Arch testing\n";}
		34	}
		35	expect {
		36	timeout {puts "TESTING ERROR 4\n";exit}
		37	"10.10.30.0/24, dev br1, scope link src 10.10.30.1"
		38	}
		39	expect {
		40	timeout {puts "TESTING ERROR 5\n";exit}
		41	"10.10.50.0/24, dev br3, scope link src 10.10.50.1"
		42	}
		43	expect {
		44	timeout {puts "TESTING ERROR 6\n";exit}
		45	"name=test2"
		46	}
		47	after 100
		48
		49	puts "\nalldone\n"


diff --git a/test/network/interface.exp b/test/network/interface.exp index b15563eec..bd8777c33 100755 --- a/test/network/interface.exp +++ b/test/network/interface.exp
@@ -14,7 +14,7 @@ set chroot [lindex $argv 1]
14	#	14	#
15	# todo: seems to be unable to find interface eth0.7	15	# todo: seems to be unable to find interface eth0.7
16	#send -- "firejail --noprofile --interface=eth0.5 --interface=eth0.6 --interface=eth0.7\r"	16	#send -- "firejail --noprofile --interface=eth0.5 --interface=eth0.6 --interface=eth0.7\r"
17	send -- "firejail --noprofile --interface=eth0.7 --interface=eth0.6\r"	17	send -- "firejail --noprofile --interface=eth0.5 --interface=eth0.6\r"
18	expect {	18	expect {
19	timeout {puts "TESTING ERROR 0\n";exit}	19	timeout {puts "TESTING ERROR 0\n";exit}
20	"Child process initialized"	20	"Child process initialized"


diff --git a/test/network/net_ip.exp b/test/network/net_ip.exp index 32103050d..0fa84243a 100755 --- a/test/network/net_ip.exp +++ b/test/network/net_ip.exp
@@ -29,9 +29,9 @@ expect {
29	timeout {puts "TESTING ERROR 4\n";exit}	29	timeout {puts "TESTING ERROR 4\n";exit}
30	"Child process initialized"	30	"Child process initialized"
31	}	31	}
32	sleep 2	32	sleep 1
33	send -- "exit\r"	33	send -- "exit\r"
34	sleep 2	34	sleep 1
35		35
36	# check loopback	36	# check loopback
37	send -- "firejail --net=br0 --ip=10.10.20.5 --protocol=unix,inet,netlink\r"	37	send -- "firejail --net=br0 --ip=10.10.20.5 --protocol=unix,inet,netlink\r"


diff --git a/test/network/net_local.exp b/test/network/net_local.exp index b72b9adaf..d58135785 100755 --- a/test/network/net_local.exp +++ b/test/network/net_local.exp
@@ -17,9 +17,9 @@ expect {
17	timeout {puts "TESTING ERROR 4\n";exit}	17	timeout {puts "TESTING ERROR 4\n";exit}
18	"Child process initialized"	18	"Child process initialized"
19	}	19	}
20	sleep 2	20	sleep 1
21	send -- "exit\r"	21	send -- "exit\r"
22	sleep 2	22	sleep 1
23		23
24	# check loopback	24	# check loopback
25	send -- "firejail --noprofile\r"	25	send -- "firejail --noprofile\r"


diff --git a/test/network/net_netfilter.exp b/test/network/net_netfilter.exp index f011f3746..737485d07 100755 --- a/test/network/net_netfilter.exp +++ b/test/network/net_netfilter.exp
@@ -29,7 +29,7 @@ expect {
29	timeout {puts "TESTING ERROR 4\n";exit}	29	timeout {puts "TESTING ERROR 4\n";exit}
30	"Child process initialized"	30	"Child process initialized"
31	}	31	}
32	sleep 2	32	sleep 1
33	send -- "exit\r"	33	send -- "exit\r"
34	sleep 1	34	sleep 1
35		35
@@ -43,7 +43,7 @@ expect {
43	"ACCEPT icmp -- any any anywhere" {puts "TESTING ERROR 5.1\n";exit}	43	"ACCEPT icmp -- any any anywhere" {puts "TESTING ERROR 5.1\n";exit}
44	"Child process initialized"	44	"Child process initialized"
45	}	45	}
46	sleep 2	46	sleep 1
47	send -- "exit\r"	47	send -- "exit\r"
48	sleep 1	48	sleep 1
49		49
@@ -57,7 +57,7 @@ expect {
57	timeout {puts "TESTING ERROR 6.1\n";exit}	57	timeout {puts "TESTING ERROR 6.1\n";exit}
58	"Child process initialized"	58	"Child process initialized"
59	}	59	}
60	sleep 2	60	sleep 1
61	send -- "ping -c 1 -w 3 10.10.20.1\r"	61	send -- "ping -c 1 -w 3 10.10.20.1\r"
62	expect {	62	expect {
63	timeout {puts "TESTING ERROR 6.2\n";exit}	63	timeout {puts "TESTING ERROR 6.2\n";exit}


diff --git a/test/network/net_profile.exp b/test/network/net_profile.exp index dee0b2793..29008d811 100755 --- a/test/network/net_profile.exp +++ b/test/network/net_profile.exp
@@ -33,7 +33,7 @@ expect {
33	timeout {puts "TESTING ERROR 0.4\n";exit}	33	timeout {puts "TESTING ERROR 0.4\n";exit}
34	"Child process initialized"	34	"Child process initialized"
35	}	35	}
36	sleep 2	36	sleep 1
37		37
38	send -- "ip route show\r"	38	send -- "ip route show\r"
39	expect {	39	expect {


diff --git a/test/network/net_veth.exp b/test/network/net_veth.exp new file mode 100755 index 000000000..89dedcb24 --- /dev/null +++ b/test/network/net_veth.exp
@@ -0,0 +1,130 @@
		1	#!/usr/bin/expect -f
		2	# This file is part of Firejail project
		3	# Copyright (C) 2014-2016 Firejail Authors
		4	# License GPL v2
		5
		6	set timeout 10
		7	spawn $env(SHELL)
		8	match_max 100000
		9
		10	send -- "firejail --net=eth0\r"
		11	expect {
		12	timeout {puts "TESTING ERROR 1\n";exit}
		13	"lo"
		14	}
		15	expect {
		16	timeout {puts "TESTING ERROR 2\n";exit}
		17	"127.0.0.1"
		18	}
		19	expect {
		20	timeout {puts "TESTING ERROR 3\n";exit}
		21	"255.0.0.0"
		22	}
		23	expect {
		24	timeout {puts "TESTING ERROR 4\n";exit}
		25	"UP"
		26	}
		27	expect {
		28	timeout {puts "TESTING ERROR 5\n";exit}
		29	"eth0-"
		30	}
		31	expect {
		32	timeout {puts "TESTING ERROR 6\n";exit}
		33	"255.255.255.0"
		34	}
		35	expect {
		36	timeout {puts "TESTING ERROR 7\n";exit}
		37	"UP"
		38	}
		39	expect {
		40	timeout {puts "TESTING ERROR 8\n";exit}
		41	"Default gateway"
		42	}
		43	expect {
		44	timeout {puts "TESTING ERROR 9\n";exit}
		45	"Child process initialized"
		46	}
		47	sleep 1
		48	send -- "exit\r"
		49	sleep 1
		50
		51	send -- "firejail --net=eth0 --net=eth0 --net=eth0 --net=eth0\r"
		52	expect {
		53	timeout {puts "TESTING ERROR 11\n";exit}
		54	"lo"
		55	}
		56	expect {
		57	timeout {puts "TESTING ERROR 12\n";exit}
		58	"127.0.0.1"
		59	}
		60	expect {
		61	timeout {puts "TESTING ERROR 13\n";exit}
		62	"255.0.0.0"
		63	}
		64	expect {
		65	timeout {puts "TESTING ERROR 14\n";exit}
		66	"UP"
		67	}
		68	expect {
		69	timeout {puts "TESTING ERROR 15\n";exit}
		70	"eth0-"
		71	}
		72	expect {
		73	timeout {puts "TESTING ERROR 16\n";exit}
		74	"255.255.255.0"
		75	}
		76	expect {
		77	timeout {puts "TESTING ERROR 17\n";exit}
		78	"UP"
		79	}
		80	expect {
		81	timeout {puts "TESTING ERROR 18\n";exit}
		82	"eth1-"
		83	}
		84	expect {
		85	timeout {puts "TESTING ERROR 19\n";exit}
		86	"255.255.255.0"
		87	}
		88	expect {
		89	timeout {puts "TESTING ERROR 20\n";exit}
		90	"UP"
		91	}
		92	expect {
		93	timeout {puts "TESTING ERROR 5\n";exit}
		94	"eth2-"
		95	}
		96	expect {
		97	timeout {puts "TESTING ERROR 21\n";exit}
		98	"255.255.255.0"
		99	}
		100	expect {
		101	timeout {puts "TESTING ERROR 22\n";exit}
		102	"UP"
		103	}
		104	expect {
		105	timeout {puts "TESTING ERROR 23\n";exit}
		106	"eth3-"
		107	}
		108	expect {
		109	timeout {puts "TESTING ERROR 24\n";exit}
		110	"255.255.255.0"
		111	}
		112	expect {
		113	timeout {puts "TESTING ERROR 25\n";exit}
		114	"UP"
		115	}
		116	expect {
		117	timeout {puts "TESTING ERROR 26\n";exit}
		118	"Default gateway"
		119	}
		120	expect {
		121	timeout {puts "TESTING ERROR 27\n";exit}
		122	"Child process initialized"
		123	}
		124	sleep 1
		125	send -- "exit\r"
		126
		127	after 100
		128
		129	puts "\n"
		130


diff --git a/test/network/network.sh b/test/network/network.sh index e0087411d..28f707952 100755 --- a/test/network/network.sh +++ b/test/network/network.sh
@@ -6,6 +6,14 @@
6	export MALLOC_CHECK_=3	6	export MALLOC_CHECK_=3
7	export MALLOC_PERTURB_=$(($RANDOM % 255 + 1))	7	export MALLOC_PERTURB_=$(($RANDOM % 255 + 1))
8		8
		9	sudo ./configure
		10
		11	echo "TESTING: firemon arp (firemon-arp.exp)"
		12	./firemon-arp.exp
		13
		14	echo "TESTING: firemon route (firemon-route.exp)"
		15	./firemon-route.exp
		16
9	echo "TESTING: network profile (net_profile.exp)"	17	echo "TESTING: network profile (net_profile.exp)"
10	./net_profile.exp	18	./net_profile.exp
11		19
@@ -58,6 +66,9 @@ echo "TESTING: scan (net_scan.exp)"
58	echo "TESTING: interface (interface.exp)"	66	echo "TESTING: interface (interface.exp)"
59	./interface.exp	67	./interface.exp
60		68
		69	echo "TESTING: veth (net_veth.exp)"
		70	./net_veth.exp
		71
61	echo "TESTING: netfilter (net_netfilter.exp)"	72	echo "TESTING: netfilter (net_netfilter.exp)"
62	./net_netfilter.exp	73	./net_netfilter.exp
63		74