1271294Sngie#!/bin/sh 2271294Sngie# $FreeBSD: head/tools/regression/pjdfstest/tests/chflags/09.t 211352 2010-08-15 21:24:17Z pjd $ 3271294Sngie 4271294Sngiedesc="chflags returns EPERM when one of SF_IMMUTABLE, SF_APPEND, or SF_NOUNLINK is set and securelevel is greater than 0" 5271294Sngie 6271294Sngiedir=`dirname $0` 7271294Sngie. ${dir}/../misc.sh 8271294Sngie 9271294Sngierequire chflags 10271294Sngie 11271294Sngieecho "1..327" 12271294Sngie 13271294Sngien0=`namegen` 14271294Sngien1=`namegen` 15271294Sngien2=`namegen` 16271294Sngie 17271294Sngieold=`sysctl -n security.jail.chflags_allowed` 18271294Sngiesysctl security.jail.chflags_allowed=1 >/dev/null 19271294Sngie 20271294Sngieexpect 0 mkdir ${n0} 0755 21271294Sngiecdir=`pwd` 22271294Sngiecd ${n0} 23271294Sngie 24271294Sngiefor type in regular dir fifo block char socket symlink; do 25271294Sngie if [ "${type}" != "symlink" ]; then 26271294Sngie create_file ${type} ${n1} 27271294Sngie expect 0 chown ${n1} 65534 65534 28271294Sngie for flag in SF_IMMUTABLE SF_APPEND SF_NOUNLINK; do 29271294Sngie expect 0 chflags ${n1} ${flag} 30271294Sngie jexpect 1 `pwd` EPERM chflags ${n1} UF_NODUMP 31271294Sngie expect ${flag} stat ${n1} flags 32271294Sngie jexpect 1 `pwd` EPERM -u 65533 -g 65533 chflags ${n1} UF_NODUMP 33271294Sngie expect ${flag} stat ${n1} flags 34271294Sngie jexpect 1 `pwd` EPERM -u 65534 -g 65534 chflags ${n1} UF_NODUMP 35271294Sngie expect ${flag} stat ${n1} flags 36271294Sngie done 37271294Sngie expect 0 chflags ${n1} none 38271294Sngie if [ "${type}" = "dir" ]; then 39271294Sngie expect 0 rmdir ${n1} 40271294Sngie else 41271294Sngie expect 0 unlink ${n1} 42271294Sngie fi 43271294Sngie fi 44271294Sngie 45271294Sngie create_file ${type} ${n1} 46271294Sngie expect 0 lchown ${n1} 65534 65534 47271294Sngie for flag in SF_IMMUTABLE SF_APPEND SF_NOUNLINK; do 48271294Sngie expect 0 lchflags ${n1} ${flag} 49271294Sngie jexpect 1 `pwd` EPERM lchflags ${n1} UF_NODUMP 50271294Sngie expect ${flag} lstat ${n1} flags 51271294Sngie jexpect 1 `pwd` EPERM -u 65533 -g 65533 lchflags ${n1} UF_NODUMP 52271294Sngie expect ${flag} lstat ${n1} flags 53271294Sngie jexpect 1 `pwd` EPERM -u 65534 -g 65534 lchflags ${n1} UF_NODUMP 54271294Sngie expect ${flag} lstat ${n1} flags 55271294Sngie done 56271294Sngie expect 0 lchflags ${n1} none 57271294Sngie if [ "${type}" = "dir" ]; then 58271294Sngie expect 0 rmdir ${n1} 59271294Sngie else 60271294Sngie expect 0 unlink ${n1} 61271294Sngie fi 62271294Sngiedone 63271294Sngie 64271294Sngiesysctl security.jail.chflags_allowed=${old} >/dev/null 65271294Sngiecd ${cdir} 66271294Sngieexpect 0 rmdir ${n0} 67