forked from netblue30/firejail
-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
netblue30
committed
Nov 21, 2016
1 parent
62b9173
commit 13ef7fb
Showing
6 changed files
with
174 additions
and
22 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,15 @@ | ||
# This file is written by xdg-user-dirs-update | ||
# If you want to change or add directories, just edit the line you're | ||
# interested in. All local changes will be retained on the next run | ||
# Format is XDG_xxx_DIR="$HOME/yyy", where yyy is a shell-escaped | ||
# homedir-relative path, or XDG_xxx_DIR="/yyy", where /yyy is an | ||
# absolute path. No other format is supported. | ||
# | ||
XDG_DESKTOP_DIR="$HOME/Desktop" | ||
XDG_DOWNLOAD_DIR="$HOME/Downloads" | ||
XDG_TEMPLATES_DIR="$HOME/Templates" | ||
XDG_PUBLICSHARE_DIR="$HOME/Public" | ||
XDG_DOCUMENTS_DIR="$HOME/Documents" | ||
XDG_MUSIC_DIR="$HOME/Music" | ||
XDG_PICTURES_DIR="$HOME/Pictures" | ||
XDG_VIDEOS_DIR="$HOME/Videos" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,49 @@ | ||
#!/usr/bin/expect -f | ||
# This file is part of Firejail project | ||
# Copyright (C) 2014-2016 Firejail Authors | ||
# License GPL v2 | ||
|
||
set timeout 10 | ||
spawn $env(SHELL) | ||
match_max 100000 | ||
|
||
send -- "cp user-dirs.dirs /tmp/.\r" | ||
after 100 | ||
|
||
send -- "firejail --private --noprofile\r" | ||
expect { | ||
timeout {puts "TESTING ERROR 0\n";exit} | ||
"Child process initialized" | ||
} | ||
after 100 | ||
|
||
send -- "firejail --force --profile=/etc/firejail/firefox.profile\r" | ||
expect { | ||
timeout {puts "TESTING ERROR 1\n";exit} | ||
"cannot whitelist Downloads directory" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 2\n";exit} | ||
"Child process initialized" | ||
} | ||
after 100 | ||
|
||
send -- "exit\r" | ||
after 100 | ||
|
||
send -- "cp /tmp/user-dirs.dirs ~/.config/.\r" | ||
after 100 | ||
|
||
send -- "firejail --force --profile=/etc/firejail/firefox.profile\r" | ||
expect { | ||
timeout {puts "TESTING ERROR 3\n";exit} | ||
"cannot whitelist Downloads directory" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 4\n";exit} | ||
"Child process initialized" | ||
} | ||
after 100 | ||
|
||
puts "\nall done\n" | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,79 @@ | ||
#!/usr/bin/expect -f | ||
# This file is part of Firejail project | ||
# Copyright (C) 2014-2016 Firejail Authors | ||
# License GPL v2 | ||
|
||
set timeout 10 | ||
spawn $env(SHELL) | ||
match_max 100000 | ||
|
||
send -- "firejail --audit\r" | ||
expect { | ||
timeout {puts "TESTING ERROR 0\n";exit} | ||
"Firejail Audit" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 1\n";exit} | ||
"is running in a PID namespace" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 2\n";exit} | ||
"container/sandbox firejail" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 3\n";exit} | ||
"seccomp BPF enabled" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 4\n";exit} | ||
"all capabilities are disabled" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 5\n";exit} | ||
"dev directory seems to be fully populated" | ||
} | ||
after 100 | ||
|
||
|
||
send -- "firejail --audit=/usr/lib/firejail/faudit\r" | ||
expect { | ||
timeout {puts "TESTING ERROR 6\n";exit} | ||
"Firejail Audit" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 7\n";exit} | ||
"is running in a PID namespace" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 8\n";exit} | ||
"container/sandbox firejail" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 9\n";exit} | ||
"seccomp BPF enabled" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 10\n";exit} | ||
"all capabilities are disabled" | ||
} | ||
expect { | ||
timeout {puts "TESTING ERROR 11\n";exit} | ||
"dev directory seems to be fully populated" | ||
} | ||
after 100 | ||
|
||
send -- "firejail --audit=blablabla\r" | ||
expect { | ||
timeout {puts "TESTING ERROR 12\n";exit} | ||
"cannot find the audit program" | ||
} | ||
after 100 | ||
|
||
send -- "firejail --audit=\r" | ||
expect { | ||
timeout {puts "TESTING ERROR 12\n";exit} | ||
"invalid audit program" | ||
} | ||
after 100 | ||
|
||
puts "\nall done\n" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters