aboutsummaryrefslogtreecommitdiffstats
path: root/test/root
diff options
context:
space:
mode:
authorLibravatar netblue30 <netblue30@yahoo.com>2016-11-29 21:38:09 -0500
committerLibravatar netblue30 <netblue30@yahoo.com>2016-11-29 21:38:09 -0500
commit84fa03cd77b0afcdee5cc6816596ab5c8a633185 (patch)
tree97b0ef919fbe2a32cbfcf61ccad86cc20ef41ce4 /test/root
parenttesting (diff)
downloadfirejail-84fa03cd77b0afcdee5cc6816596ab5c8a633185.tar.gz
firejail-84fa03cd77b0afcdee5cc6816596ab5c8a633185.tar.zst
firejail-84fa03cd77b0afcdee5cc6816596ab5c8a633185.zip
private-opt and private-srv
Diffstat (limited to 'test/root')
-rwxr-xr-xtest/root/private.exp57
-rwxr-xr-xtest/root/root.sh4
-rwxr-xr-xtest/root/whitelist-mnt.exp105
-rwxr-xr-xtest/root/whitelist.exp118
4 files changed, 177 insertions, 107 deletions
diff --git a/test/root/private.exp b/test/root/private.exp
index 4040081ee..9ce9716f9 100755
--- a/test/root/private.exp
+++ b/test/root/private.exp
@@ -29,5 +29,62 @@ expect {
29after 100 29after 100
30 30
31send -- "exit\r" 31send -- "exit\r"
32sleep 1
33
34
35
36send -- "touch /opt/firejail-test-file\r"
37after 100
38send -- "mkdir /opt/firejail-test-dir\r"
39after 100
40send -- "touch /opt/firejail-test-dir/firejail-test-file\r"
41after 100
42send -- "firejail --private-opt=firejail-test-file,firejail-test-dir --debug\r"
43expect {
44 timeout {puts "TESTING ERROR 3\n";exit}
45 "Child process initialized"
46}
47sleep 1
48
49send -- "find /opt | wc -l\r"
50expect {
51 timeout {puts "TESTING ERROR 4\n";exit}
52 "4"
53}
54after 100
55send -- "exit\r"
56sleep 1
57
58
59send -- "touch /srv/firejail-test-file\r"
60after 100
61send -- "mkdir /srv/firejail-test-dir\r"
62after 100
63send -- "touch /srv/firejail-test-dir/firejail-test-file\r"
32after 100 64after 100
65send -- "firejail --private-srv=firejail-test-file,firejail-test-dir --debug\r"
66expect {
67 timeout {puts "TESTING ERROR 5\n";exit}
68 "Child process initialized"
69}
70sleep 1
71
72send -- "find /srv | wc -l\r"
73expect {
74 timeout {puts "TESTING ERROR 6\n";exit}
75 "4"
76}
77after 100
78send -- "exit\r"
79sleep 1
80
81
82
83
84
85
86
87
88
89
33puts "\nall done\n" 90puts "\nall done\n"
diff --git a/test/root/root.sh b/test/root/root.sh
index 01c372f68..371bccdff 100755
--- a/test/root/root.sh
+++ b/test/root/root.sh
@@ -53,8 +53,8 @@ fi
53echo "TESTING: fs private (test/root/private.exp)" 53echo "TESTING: fs private (test/root/private.exp)"
54./private.exp 54./private.exp
55 55
56echo "TESTING: fs whitelist mnt, opt, media(test/root/whitelist-mnt.exp)" 56echo "TESTING: fs whitelist mnt, opt, media (test/root/whitelist-mnt.exp)"
57./whitelist-mnt.exp 57./whitelist.exp
58 58
59#******************************** 59#********************************
60# seccomp 60# seccomp
diff --git a/test/root/whitelist-mnt.exp b/test/root/whitelist-mnt.exp
deleted file mode 100755
index a21446afe..000000000
--- a/test/root/whitelist-mnt.exp
+++ /dev/null
@@ -1,105 +0,0 @@
1#!/usr/bin/expect -f
2# This file is part of Firejail project
3# Copyright (C) 2014-2016 Firejail Authors
4# License GPL v2
5
6set timeout 10
7spawn $env(SHELL)
8match_max 100000
9
10send -- "touch /mnt/firejail-test-file\r"
11after 100
12send -- "firejail --whitelist=/mnt/firejail-test-file --debug\r"
13expect {
14 timeout {puts "TESTING ERROR 0\n";exit}
15 "Child process initialized"
16}
17sleep 1
18
19send -- "find /mnt | wc -l\r"
20expect {
21 timeout {puts "TESTING ERROR 1\n";exit}
22 "2"
23}
24after 100
25send -- "exit\r"
26sleep 1
27
28
29send -- "touch /opt/firejail-test-file\r"
30after 100
31send -- "firejail --whitelist=/opt/firejail-test-file --debug\r"
32expect {
33 timeout {puts "TESTING ERROR 0\n";exit}
34 "Child process initialized"
35}
36sleep 1
37
38send -- "find /opt | wc -l\r"
39expect {
40 timeout {puts "TESTING ERROR 1\n";exit}
41 "2"
42}
43after 100
44send -- "exit\r"
45sleep 1
46
47send -- "touch /media/firejail-test-file\r"
48after 100
49send -- "firejail --whitelist=/media/firejail-test-file --debug\r"
50expect {
51 timeout {puts "TESTING ERROR 0\n";exit}
52 "Child process initialized"
53}
54sleep 1
55
56send -- "find /media | wc -l\r"
57expect {
58 timeout {puts "TESTING ERROR 1\n";exit}
59 "2"
60}
61after 100
62send -- "exit\r"
63sleep 1
64
65
66send -- "firejail --whitelist=/var/run --whitelist=/var/lock --debug\r"
67expect {
68 timeout {puts "TESTING ERROR 0\n";exit}
69 "Child process initialized"
70}
71sleep 1
72
73send -- "find /var | wc -l\r"
74expect {
75 timeout {puts "TESTING ERROR 1\n";exit}
76 ""
77}
78after 100
79send -- "exit\r"
80sleep 1
81
82send -- "touch /srv/firejail-test-file\r"
83after 100
84send -- "firejail --whitelist=/srv/firejail-test-file --debug\r"
85expect {
86 timeout {puts "TESTING ERROR 0\n";exit}
87 "Child process initialized"
88}
89sleep 1
90
91send -- "find /srv | wc -l\r"
92expect {
93 timeout {puts "TESTING ERROR 1\n";exit}
94 "2"
95}
96after 100
97send -- "exit\r"
98sleep 1
99
100
101
102
103after 100
104puts "\nall done\n"
105
diff --git a/test/root/whitelist.exp b/test/root/whitelist.exp
new file mode 100755
index 000000000..f6936c048
--- /dev/null
+++ b/test/root/whitelist.exp
@@ -0,0 +1,118 @@
1#!/usr/bin/expect -f
2# This file is part of Firejail project
3# Copyright (C) 2014-2016 Firejail Authors
4# License GPL v2
5
6set timeout 10
7spawn $env(SHELL)
8match_max 100000
9
10send -- "touch /mnt/firejail-test-file\r"
11after 100
12send -- "mkdir /mnt/firejail-test-dir\r"
13after 100
14send -- "touch /mnt/firejail-test-dir/firejail-test-file\r"
15after 100
16send -- "firejail --whitelist=/mnt/firejail-test-file --whitelist=/mnt/firejail-test-dir --debug\r"
17expect {
18 timeout {puts "TESTING ERROR 0\n";exit}
19 "Child process initialized"
20}
21sleep 1
22
23send -- "find /mnt | wc -l\r"
24expect {
25 timeout {puts "TESTING ERROR 1\n";exit}
26 "4"
27}
28after 100
29send -- "exit\r"
30sleep 1
31
32
33send -- "touch /opt/firejail-test-file\r"
34after 100
35send -- "mkdir /opt/firejail-test-dir\r"
36after 100
37send -- "touch /opt/firejail-test-dir/firejail-test-file\r"
38after 100
39send -- "firejail --whitelist=/opt/firejail-test-file --whitelist=/opt/firejail-test-dir --debug\r"
40expect {
41 timeout {puts "TESTING ERROR 2\n";exit}
42 "Child process initialized"
43}
44sleep 1
45
46send -- "find /opt | wc -l\r"
47expect {
48 timeout {puts "TESTING ERROR 3\n";exit}
49 "4"
50}
51after 100
52send -- "exit\r"
53sleep 1
54
55send -- "touch /media/firejail-test-file\r"
56after 100
57send -- "mkdir /media/firejail-test-dir\r"
58after 100
59send -- "touch /media/firejail-test-dir/firejail-test-file\r"
60after 100
61send -- "firejail --whitelist=/media/firejail-test-file --whitelist=/media/firejail-test-dir --debug\r"
62expect {
63 timeout {puts "TESTING ERROR 4\n";exit}
64 "Child process initialized"
65}
66sleep 1
67
68send -- "find /media | wc -l\r"
69expect {
70 timeout {puts "TESTING ERROR 5\n";exit}
71 "4"
72}
73after 100
74send -- "exit\r"
75sleep 1
76
77
78send -- "firejail --whitelist=/var/run --whitelist=/var/lock --debug\r"
79expect {
80 timeout {puts "TESTING ERROR 6\n";exit}
81 "Child process initialized"
82}
83sleep 1
84
85send -- "find /var | wc -l\r"
86expect {
87 timeout {puts "TESTING ERROR 7\n";exit}
88 ""
89}
90after 100
91send -- "exit\r"
92sleep 1
93
94send -- "touch /srv/firejail-test-file\r"
95after 100
96send -- "mkdir /srv/firejail-test-dir\r"
97after 100
98send -- "touch /srv/firejail-test-dir/firejail-test-file\r"
99after 100
100send -- "firejail --whitelist=/srv/firejail-test-file --whitelist=/srv/firejail-test-dir --debug\r"
101expect {
102 timeout {puts "TESTING ERROR 8\n";exit}
103 "Child process initialized"
104}
105sleep 1
106
107send -- "find /srv | wc -l\r"
108expect {
109 timeout {puts "TESTING ERROR 9\n";exit}
110 "4"
111}
112after 100
113send -- "exit\r"
114
115
116after 100
117puts "\nall done\n"
118
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-06-26 13:16:51 +0000