1 files changed, 60 insertions, 0 deletions
diff --git a/test/utils/audit.exp b/test/utils/audit.exp
index 684886af7..6352dc62d 100755
--- a/test/utils/audit.exp
+++ b/test/utils/audit.exp
@@ -96,4 +96,64 @@ expect {
 }
 after 100
+# test seccomp
+send -- "firejail --seccomp.drop=mkdir --audit\r"
+expect {
+        timeout {puts "TESTING ERROR 17\n";exit}
+        "Firejail Audit"
+}
+expect {
+        timeout {puts "TESTING ERROR 18\n";exit}
+        "GOOD: seccomp BPF enabled"
+}
+expect {
+        timeout {puts "TESTING ERROR 19\n";exit}
+        "UGLY: mount syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 20\n";exit}
+        "UGLY: umount2 syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 21\n";exit}
+        "UGLY: ptrace syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 22\n";exit}
+        "UGLY: swapon syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 23\n";exit}
+        "UGLY: swapoff syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 24\n";exit}
+        "UGLY: init_module syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 25\n";exit}
+        "UGLY: delete_module syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 26\n";exit}
+        "UGLY: chroot syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 27\n";exit}
+        "UGLY: pivot_root syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 28\n";exit}
+        "UGLY: iopl syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 29\n";exit}
+        "UGLY: ioperm syscall permitted"
+}
+expect {
+        timeout {puts "TESTING ERROR 30\n";exit}
+        "GOOD: all capabilities are disabled"
+}
+after 100
 puts "\nall done\n"

diff --git a/test/utils/audit.exp b/test/utils/audit.exp index 684886af7..6352dc62d 100755 --- a/test/utils/audit.exp +++ b/test/utils/audit.exp
@@ -96,4 +96,64 @@ expect {
96	}	96	}
97	after 100	97	after 100
98		98
		99	# test seccomp
		100	send -- "firejail --seccomp.drop=mkdir --audit\r"
		101	expect {
		102	timeout {puts "TESTING ERROR 17\n";exit}
		103	"Firejail Audit"
		104	}
		105	expect {
		106	timeout {puts "TESTING ERROR 18\n";exit}
		107	"GOOD: seccomp BPF enabled"
		108	}
		109	expect {
		110	timeout {puts "TESTING ERROR 19\n";exit}
		111	"UGLY: mount syscall permitted"
		112	}
		113	expect {
		114	timeout {puts "TESTING ERROR 20\n";exit}
		115	"UGLY: umount2 syscall permitted"
		116	}
		117	expect {
		118	timeout {puts "TESTING ERROR 21\n";exit}
		119	"UGLY: ptrace syscall permitted"
		120	}
		121	expect {
		122	timeout {puts "TESTING ERROR 22\n";exit}
		123	"UGLY: swapon syscall permitted"
		124	}
		125	expect {
		126	timeout {puts "TESTING ERROR 23\n";exit}
		127	"UGLY: swapoff syscall permitted"
		128	}
		129	expect {
		130	timeout {puts "TESTING ERROR 24\n";exit}
		131	"UGLY: init_module syscall permitted"
		132	}
		133	expect {
		134	timeout {puts "TESTING ERROR 25\n";exit}
		135	"UGLY: delete_module syscall permitted"
		136	}
		137	expect {
		138	timeout {puts "TESTING ERROR 26\n";exit}
		139	"UGLY: chroot syscall permitted"
		140	}
		141	expect {
		142	timeout {puts "TESTING ERROR 27\n";exit}
		143	"UGLY: pivot_root syscall permitted"
		144	}
		145	expect {
		146	timeout {puts "TESTING ERROR 28\n";exit}
		147	"UGLY: iopl syscall permitted"
		148	}
		149	expect {
		150	timeout {puts "TESTING ERROR 29\n";exit}
		151	"UGLY: ioperm syscall permitted"
		152	}
		153	expect {
		154	timeout {puts "TESTING ERROR 30\n";exit}
		155	"GOOD: all capabilities are disabled"
		156	}
		157	after 100
		158
99	puts "\nall done\n"	159	puts "\nall done\n"