Nothing
tests/testthat/test-apparmor.R
In RAppArmor: Bindings to AppArmor and Security Related Linux Tools
context("apparmor")
test_that("profiles available", {
skip_if_no_apparmor()
expect_that(eval_safe(aa_getcon()$con, profile="r-base"), equals("r-base"))
expect_that(eval_safe(aa_getcon()$con, profile="r-user"), equals("r-user"))
expect_that(eval_safe(aa_getcon()$con, profile="r-compile"), equals("r-compile"))
expect_that(eval_safe(aa_getcon()$con, profile="testprofile"), equals("testprofile"))
});
test_that("changing hats", {
skip_if_no_apparmor()
expect_that(eval_safe({
aa_change_profile("testprofile");
aa_change_hat("testhat", 1234);
read.table("/etc/group")
}), throws_error("connection"));
expect_that(eval_safe({
aa_change_profile("testprofile");
aa_change_hat("testhat", 1234);
aa_revert_hat(1234)
read.table("/etc/group")
}), is_a("data.frame"));
});
test_that("basic profiles permissions", {
#list /
skip_if_no_apparmor()
if(length(list.files("/")) > 0){
expect_that(length(eval_safe(list.files("/"))) > 0, is_true());
expect_that(length(eval_safe(list.files("/"), profile="r-base")) > 0, is_false());
expect_that(length(eval_safe(list.files("/"), profile="r-user")) > 0, is_false());
}
#list /tmp
if(length(list.files("/tmp")) > 0){
expect_that(length(eval_safe(list.files("/tmp"))) > 0, is_true());
expect_that(length(eval_safe(list.files("/tmp"), profile="r-base")) > 0, is_false());
expect_that(length(eval_safe(list.files("/tmp"), profile="r-user")) > 0, is_false());
}
#list /home/user/
if(length(list.files("~")) > 0){
expect_that(length(eval_safe(list.files("~"))) > 0, is_true());
expect_that(length(eval_safe(list.files("~"), profile="r-base")) > 0, is_false());
expect_that(length(eval_safe(list.files("~"), profile="r-user")) > 0, is_true());
}
});
Try the RAppArmor package in your browser
Any scripts or data that you put into this service are public.
RAppArmor documentation built on Oct. 18, 2022, 5:08 p.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
context("apparmor")
test_that("profiles available", {
skip_if_no_apparmor()
expect_that(eval_safe(aa_getcon()$con, profile="r-base"), equals("r-base"))
expect_that(eval_safe(aa_getcon()$con, profile="r-user"), equals("r-user"))
expect_that(eval_safe(aa_getcon()$con, profile="r-compile"), equals("r-compile"))
expect_that(eval_safe(aa_getcon()$con, profile="testprofile"), equals("testprofile"))
});
test_that("changing hats", {
skip_if_no_apparmor()
expect_that(eval_safe({
aa_change_profile("testprofile");
aa_change_hat("testhat", 1234);
read.table("/etc/group")
}), throws_error("connection"));
expect_that(eval_safe({
aa_change_profile("testprofile");
aa_change_hat("testhat", 1234);
aa_revert_hat(1234)
read.table("/etc/group")
}), is_a("data.frame"));
});
test_that("basic profiles permissions", {
#list /
skip_if_no_apparmor()
if(length(list.files("/")) > 0){
expect_that(length(eval_safe(list.files("/"))) > 0, is_true());
expect_that(length(eval_safe(list.files("/"), profile="r-base")) > 0, is_false());
expect_that(length(eval_safe(list.files("/"), profile="r-user")) > 0, is_false());
}
#list /tmp
if(length(list.files("/tmp")) > 0){
expect_that(length(eval_safe(list.files("/tmp"))) > 0, is_true());
expect_that(length(eval_safe(list.files("/tmp"), profile="r-base")) > 0, is_false());
expect_that(length(eval_safe(list.files("/tmp"), profile="r-user")) > 0, is_false());
}
#list /home/user/
if(length(list.files("~")) > 0){
expect_that(length(eval_safe(list.files("~"))) > 0, is_true());
expect_that(length(eval_safe(list.files("~"), profile="r-base")) > 0, is_false());
expect_that(length(eval_safe(list.files("~"), profile="r-user")) > 0, is_true());
}
});
Try the RAppArmor package in your browser
Any scripts or data that you put into this service are public.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.