test: test_seccomp_blacklisted_call_permitted(): Add missing default policy
This commit is contained in:
parent
b0d0beab22
commit
68fd1a0a87
1
test.c
1
test.c
@ -42,6 +42,7 @@ int test_seccomp_blacklisted_call_permitted(int argc, char *argv[])
|
|||||||
struct qssb_policy *policy = qssb_init_policy();
|
struct qssb_policy *policy = qssb_init_policy();
|
||||||
|
|
||||||
qssb_append_syscall_policy(policy, QSSB_SYSCALL_DENY_KILL_PROCESS, QSSB_SYS(getuid));
|
qssb_append_syscall_policy(policy, QSSB_SYSCALL_DENY_KILL_PROCESS, QSSB_SYS(getuid));
|
||||||
|
qssb_append_syscall_default_policy(policy, QSSB_SYSCALL_ALLOW);
|
||||||
|
|
||||||
int ret = qssb_enable_policy(policy);
|
int ret = qssb_enable_policy(policy);
|
||||||
//geteuid is not blacklisted, so must succeed
|
//geteuid is not blacklisted, so must succeed
|
||||||
|
Loading…
Reference in New Issue
Block a user