Thijs/wiki.techinc.nl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
wiki.techinc.nl/tests/phpunit/includes/shell
History
Kunal Mehta 416975c3ac shell: Run firejail inside limit.sh, make NO_EXECVE work 
NO_EXECVE doesn't work because limit.sh needs to execute the main
command, and does so through the execve syscall. Eventually we should be
able to replace limit.sh with firejail functionality entirely (T179021),
but in the meantime we can run firejail inside limit.sh.

We also need to stop firejail from running the command in a bash shell
via --shell=none, since that shell would also use the execve syscall.

Bug: T182489
Change-Id: I3fc8ad2f9e5eb5bf13b49d0bccd6094668a5ec55
2017-12-09 04:07:32 -08:00
..
CommandFactoryTest.php shell: Optionally restrict commands' access with firejail 2017-11-28 00:06:40 +00:00
CommandTest.php Add @covers for includes/shell/ tests 2017-12-08 22:08:28 -08:00
FirejailCommandTest.php shell: Run firejail inside limit.sh, make NO_EXECVE work 2017-12-09 04:07:32 -08:00
ShellTest.php Add @covers for includes/shell/ tests 2017-12-08 22:08:28 -08:00