diff options
author | netblue30 <netblue30@yahoo.com> | 2015-08-08 19:12:30 -0400 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2015-08-08 19:12:30 -0400 |
commit | 1379851360349d6617ad32944a25ee5e2bb74fc2 (patch) | |
tree | f69b48e90708bfa3c2723d5a27ed3e024c827b43 /test/seccomp-empty.exp | |
parent | delete files (diff) | |
download | firejail-1379851360349d6617ad32944a25ee5e2bb74fc2.tar.gz firejail-1379851360349d6617ad32944a25ee5e2bb74fc2.tar.zst firejail-1379851360349d6617ad32944a25ee5e2bb74fc2.zip |
Baseline firejail 0.9.28
Diffstat (limited to 'test/seccomp-empty.exp')
-rwxr-xr-x | test/seccomp-empty.exp | 145 |
1 files changed, 145 insertions, 0 deletions
diff --git a/test/seccomp-empty.exp b/test/seccomp-empty.exp new file mode 100755 index 000000000..11abf2e00 --- /dev/null +++ b/test/seccomp-empty.exp | |||
@@ -0,0 +1,145 @@ | |||
1 | #!/usr/bin/expect -f | ||
2 | |||
3 | set timeout 10 | ||
4 | spawn $env(SHELL) | ||
5 | match_max 100000 | ||
6 | |||
7 | send -- "firejail --debug --seccomp=chmod,fchmod,fchmodat --private\r" | ||
8 | expect { | ||
9 | timeout {puts "TESTING ERROR 0\n";exit} | ||
10 | "VALIDATE_ARCHITECTURE" | ||
11 | } | ||
12 | expect { | ||
13 | timeout {puts "TESTING ERROR 0.1\n";exit} | ||
14 | "mount" | ||
15 | } | ||
16 | expect { | ||
17 | timeout {puts "TESTING ERROR 0.2\n";exit} | ||
18 | "ptrace" | ||
19 | } | ||
20 | expect { | ||
21 | timeout {puts "TESTING ERROR 0.3\n";exit} | ||
22 | "chmod" | ||
23 | } | ||
24 | expect { | ||
25 | timeout {puts "TESTING ERROR 0.4\n";exit} | ||
26 | "fchmod" | ||
27 | } | ||
28 | expect { | ||
29 | timeout {puts "TESTING ERROR 0.5\n";exit} | ||
30 | "fchmodat" | ||
31 | } | ||
32 | expect { | ||
33 | timeout {puts "TESTING ERROR 0.6\n";exit} | ||
34 | "RETURN_ALLOW" | ||
35 | } | ||
36 | expect { | ||
37 | timeout {puts "TESTING ERROR 0.7\n";exit} | ||
38 | "Child process initialized" | ||
39 | } | ||
40 | sleep 2 | ||
41 | send -- "exit\r" | ||
42 | sleep 3 | ||
43 | puts "\n" | ||
44 | |||
45 | send -- "firejail --debug --seccomp.drop=chmod,fchmod,fchmodat --private\r" | ||
46 | expect { | ||
47 | timeout {puts "TESTING ERROR 1\n";exit} | ||
48 | "VALIDATE_ARCHITECTURE" | ||
49 | } | ||
50 | expect { | ||
51 | timeout {puts "TESTING ERROR 1.1\n";exit} | ||
52 | "mount" {puts "TESTING ERROR 1.2\n";exit} | ||
53 | "ptrace" {puts "TESTING ERROR 1.3\n";exit} | ||
54 | "chmod" | ||
55 | } | ||
56 | expect { | ||
57 | timeout {puts "TESTING ERROR 1.4\n";exit} | ||
58 | "fchmod" | ||
59 | } | ||
60 | expect { | ||
61 | timeout {puts "TESTING ERROR 1.5\n";exit} | ||
62 | "fchmodat" | ||
63 | } | ||
64 | expect { | ||
65 | timeout {puts "TESTING ERROR 1.6\n";exit} | ||
66 | "RETURN_ALLOW" | ||
67 | } | ||
68 | expect { | ||
69 | timeout {puts "TESTING ERROR 1.7\n";exit} | ||
70 | "Child process initialized" | ||
71 | } | ||
72 | sleep 2 | ||
73 | send -- "exit\r" | ||
74 | puts "\n" | ||
75 | |||
76 | sleep 2 | ||
77 | send -- "firejail --debug --profile=seccomp.profile --private\r" | ||
78 | expect { | ||
79 | timeout {puts "TESTING ERROR 2\n";exit} | ||
80 | "VALIDATE_ARCHITECTURE" | ||
81 | } | ||
82 | expect { | ||
83 | timeout {puts "TESTING ERROR 2.1\n";exit} | ||
84 | "mount" | ||
85 | } | ||
86 | expect { | ||
87 | timeout {puts "TESTING ERROR 2.2\n";exit} | ||
88 | "ptrace" | ||
89 | } | ||
90 | expect { | ||
91 | timeout {puts "TESTING ERROR 2.3\n";exit} | ||
92 | "chmod" | ||
93 | } | ||
94 | expect { | ||
95 | timeout {puts "TESTING ERROR 2.4\n";exit} | ||
96 | "fchmod" | ||
97 | } | ||
98 | expect { | ||
99 | timeout {puts "TESTING ERROR 2.5\n";exit} | ||
100 | "fchmodat" | ||
101 | } | ||
102 | expect { | ||
103 | timeout {puts "TESTING ERROR 2.6\n";exit} | ||
104 | "RETURN_ALLOW" | ||
105 | } | ||
106 | expect { | ||
107 | timeout {puts "TESTING ERROR 2.7\n";exit} | ||
108 | "Child process initialized" | ||
109 | } | ||
110 | sleep 2 | ||
111 | send -- "exit\r" | ||
112 | sleep 3 | ||
113 | puts "\n" | ||
114 | |||
115 | send -- "firejail --debug --profile=seccomp-empty.profile --private\r" | ||
116 | expect { | ||
117 | timeout {puts "TESTING ERROR 3\n";exit} | ||
118 | "VALIDATE_ARCHITECTURE" | ||
119 | } | ||
120 | expect { | ||
121 | timeout {puts "TESTING ERROR 3.1\n";exit} | ||
122 | "mount" {puts "TESTING ERROR 3.2\n";exit} | ||
123 | "ptrace" {puts "TESTING ERROR 3.3\n";exit} | ||
124 | "chmod" | ||
125 | } | ||
126 | expect { | ||
127 | timeout {puts "TESTING ERROR 3.4\n";exit} | ||
128 | "fchmod" | ||
129 | } | ||
130 | expect { | ||
131 | timeout {puts "TESTING ERROR 3.5\n";exit} | ||
132 | "fchmodat" | ||
133 | } | ||
134 | expect { | ||
135 | timeout {puts "TESTING ERROR 3.6\n";exit} | ||
136 | "RETURN_ALLOW" | ||
137 | } | ||
138 | expect { | ||
139 | timeout {puts "TESTING ERROR 3.7\n";exit} | ||
140 | "Child process initialized" | ||
141 | } | ||
142 | sleep 2 | ||
143 | send -- "exit\r" | ||
144 | puts "\n" | ||
145 | |||