morgan/systemd
1
0
Fork 0
mirror of https://github.com/morgan9e/systemd synced 2026-04-14 00:14:32 +09:00
Code Issues Packages Projects Releases Wiki Activity

TEST-07-PID1: check if PrivateBPF=yes is gracefully ignored

Browse Source
This commit is contained in:
Yu Watanabe
2025-07-16 09:41:50 +09:00
parent 8abdceac77
commit a673826003
1 changed files with 16 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
test/units/TEST-07-PID1.private-bpf.sh
View File

@@ -13,12 +13,26 @@ systemd-run --wait \
grep -q '/sys/fs/bpf .* ro,' /proc/mounts
# Check that with PrivateBPF=yes, a new bpffs instance is mounted
systemd-run --wait \
if ! systemd-run --wait \
-p PrivateUsers=yes \
-p PrivateMounts=yes \
-p DelegateNamespaces=mnt \
-p PrivateBPF=yes \
grep -q '^none /sys/fs/bpf bpf rw' /proc/mounts
grep -q '^none /sys/fs/bpf bpf rw' /proc/mounts; then
# If it does not work, maybe the kernel is old or the system has buggy ubuntu kernel.
# Let's check if PrivateBPF=yes is ignored gracefully in that case.
systemd-run --wait \
-p PrivateUsers=yes \
-p PrivateMounts=yes \
-p DelegateNamespaces=mnt \
-p ProtectKernelTunables=yes \
-p PrivateBPF=yes \
grep -q '/sys/fs/bpf .* ro,' /proc/mounts
# Skip all remaining tests.
exit 0
fi
# Check that when specifying the delegate arguments, the mount options are set properly
check_mount_opts() {