mirror of
https://gitlab.com/apparmor/apparmor.git
synced 2025-03-07 01:41:00 +01:00
54 lines
1.2 KiB
Bash
Executable file
54 lines
1.2 KiB
Bash
Executable file
#! /bin/bash
|
|
# $Id: open.sh 6040 2006-01-11 00:15:48Z tonyj $
|
|
|
|
# Copyright (C) 2002-2005 Novell/SUSE
|
|
#
|
|
# This program is free software; you can redistribute it and/or
|
|
# modify it under the terms of the GNU General Public License as
|
|
# published by the Free Software Foundation, version 2 of the
|
|
# License.
|
|
|
|
#=NAME open
|
|
#=DESCRIPTION
|
|
# Verify that the open syscall is correctly managed for confined profiles.
|
|
# A test should be added verifying for non-confined.
|
|
#=END
|
|
|
|
pwd=`dirname $0`
|
|
pwd=`cd $pwd ; /bin/pwd`
|
|
|
|
bin=$pwd
|
|
|
|
. $bin/prologue.inc
|
|
|
|
file=$tmpdir/file
|
|
okperm=rw
|
|
badperm1=r
|
|
badperm2=w
|
|
|
|
#touch $file
|
|
#chmod 600 $file
|
|
|
|
# PASS TEST (the file shouldn't exist, so open should create it
|
|
genprofile $file:$okperm
|
|
runchecktest "OPEN RW (create) " pass $file
|
|
|
|
# PASS TEST
|
|
genprofile $file:$okperm
|
|
runchecktest "OPEN RW" pass $file
|
|
|
|
# FAILURE TEST (1)
|
|
genprofile $file:$badperm1
|
|
runchecktest "OPEN R" fail $file
|
|
|
|
# FAILURE TEST (2)
|
|
genprofile $file:$badperm2
|
|
runchecktest "OPEN W" fail $file
|
|
|
|
# FAILURE TEST (3)
|
|
# This is testing for bug: https://bugs.wirex.com/show_bug.cgi?id=2885
|
|
# When we open O_CREAT|O_RDWR, we are (were?) allowing only write access
|
|
# to be required.
|
|
rm -f ${file}
|
|
genprofile $file:$badperm2
|
|
runchecktest "OPEN W (create)" fail $file
|