about summary refs log tree commit diff
path: root/tests/sandbox.nix
diff options
context:
space:
mode:
authoraszlig <aszlig@redmoonstudios.org>2016-11-16T16·25+0100
committeraszlig <aszlig@redmoonstudios.org>2016-11-16T16·29+0100
commited64976cec43f9f067a40fc6921b5513a19fd757 (patch)
tree3655ae9476e89b896ce38309ea37eaab16fa26ea /tests/sandbox.nix
parent651a18dd2466662e7027e4dc04147e4f38c7bbf8 (diff)
seccomp: Forge return codes for POSIX ACL syscalls
Commands such as "cp -p" also use fsetxattr() in addition to fchown(),
so we need to make sure these syscalls always return successful as well
in order to avoid nasty "Invalid value" errors.

Signed-off-by: aszlig <aszlig@redmoonstudios.org>
Diffstat (limited to 'tests/sandbox.nix')
-rw-r--r--tests/sandbox.nix3
1 files changed, 2 insertions, 1 deletions
diff --git a/tests/sandbox.nix b/tests/sandbox.nix
index 7e2055038c91..dc72a5985ef7 100644
--- a/tests/sandbox.nix
+++ b/tests/sandbox.nix
@@ -16,7 +16,7 @@ let
 
   sandboxTestScript = pkgs.writeText "sandbox-testscript.sh" ''
     [ $(id -u) -eq 0 ]
-    touch foo
+    cp -p "$testfile" foo
     chown 1024:1024 foo
     touch "$out"
   '';
@@ -31,6 +31,7 @@ let
       builder = "''${utils}/bin/bash";
       args = ["-e" ${sandboxTestScript}];
       PATH = "''${utils}/bin";
+      testfile = builtins.toFile "test" "i am a test file";
     }
   '';