diff options
| author | Eric Biggers <ebiggers@google.com> | 2020-05-09 15:21:07 -0700 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-05-09 15:21:07 -0700 |
| commit | 1cdefc21b8b07aad7aafeefd05d3124cf93b9216 (patch) | |
| tree | b5f304a4ecc101a5410bb2274d129dbc7dad6441 /cli-tests/t_v1_policy.sh | |
| parent | 338347ac4766f899fdc471d57f293798ff0e6c29 (diff) | |
| parent | de51add609bc74b7247ec4776bd694abbea24a45 (diff) | |
Merge pull request #217 from ebiggers/detect-incomplete-v1-locking
Try to detect incomplete locking of v1-encrypted directory
Diffstat (limited to 'cli-tests/t_v1_policy.sh')
| -rwxr-xr-x | cli-tests/t_v1_policy.sh | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/cli-tests/t_v1_policy.sh b/cli-tests/t_v1_policy.sh index 1ebfae5..e9f3acf 100755 --- a/cli-tests/t_v1_policy.sh +++ b/cli-tests/t_v1_policy.sh @@ -54,3 +54,18 @@ _print_header "Lock v1-encrypted directory" fscrypt lock "$dir" --user="$TEST_USER" _user_do "fscrypt status '$dir'" _expect_failure "cat '$dir/file'" + +# 'fscrypt lock' and 'fscrypt status' implement a heuristic that should detect +# the "files busy" case with v1. +_print_header "Testing incompletely locking v1-encrypted directory" +_user_do "echo hunter2 | fscrypt unlock '$dir'" +exec 3<"$dir/file" +_expect_failure "fscrypt lock '$dir' --user='$TEST_USER'" +_user_do "fscrypt status '$dir'" +# ... except in this case, because we can't detect it without a directory path. +_user_do "fscrypt status '$MNT'" +exec 3<&- +_print_header "Finishing locking v1-encrypted directory" +fscrypt lock "$dir" --user="$TEST_USER" +_user_do "fscrypt status '$dir'" +_expect_failure "cat '$dir/file'" |