Comment 7 for bug 1262440
Revision history for this message
| Tyler Hicks (tyhicks) wrote Re: [Bug 1262440] Re: It should be possible to grant D-Bus eavesdropping permission to AppArmor confined processes | #7 |
On 2013-12-19 13:46:31, Jamie Strandboge wrote:
> Can you add a landing ask and enumerate your testing?
I see that you've already added a landing ask. Thanks!
Tests added:
1) I've added functional/
are ran by QRT's test-apparmor.py
- These tests start up a bus and then spawn processes, in a mixture
of confinement scenarios, that attempt to eavesdrop
2) I've added rule parsing tests to the apparmor source that are ran at
build time and by QRT's test-apparmor.py
- These tests generate test profiles containing D-Bus eavesdrop rule
and ensure that the parser acts as expected
- Additionally, there are tests that look at the parser's output
when parsing binary equal, but syntax unequal, profiles
3) I've added functional tests to the test-dbus.py script in QRT
- These tests are similar to the tests mentioned in #1 but they use
the python-dbus bindings
Tests performed:
1) QRT's test-apparmor.py and test-dbus.py on amd64
- Successful, but test-dbus.py has a pre-existing failure in the
dbus-glib test that I wasn't able to fix
2) QRT's test-click-
tests/
3) Manually installed an app on goldfish