colin/bubblewrap
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #510 from smcv/etc-shadow

Browse Source 
Adjust tests related to /etc/shadow
This commit is contained in:
Simon McVittie
2022-07-26 19:54:46 +01:00
committed by GitHub
parent 7d54d050a2 2b4c4a7899
commit 8af578d088
1 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
tests/test-run.sh
View File

@@ -39,9 +39,16 @@ for ALT in "" "--unshare-user-try" "--unshare-pid" "--unshare-user-try --unshare
CAP="" CAP=""
fi fi
if ! ${is_uidzero} && $RUN $CAP $ALT --unshare-net --proc /proc --bind /etc/shadow /tmp/foo cat /etc/shadow; then if ! cat /etc/shadow >/dev/null &&
$RUN $CAP $ALT --unshare-net --proc /proc --bind /etc/shadow /tmp/foo cat /tmp/foo; then
assert_not_reached Could read /etc/shadow via /tmp/foo bind-mount
fi
if ! cat /etc/shadow >/dev/null &&
$RUN $CAP $ALT --unshare-net --proc /proc --bind /etc/shadow /tmp/foo cat /etc/shadow; then
assert_not_reached Could read /etc/shadow assert_not_reached Could read /etc/shadow
fi fi
echo "ok - cannot read /etc/shadow with $ALT" echo "ok - cannot read /etc/shadow with $ALT"
# Unreadable dir # Unreadable dir
if [ "x$UNREADABLE" != "x" ]; then if [ "x$UNREADABLE" != "x" ]; then