2016-04-18 14:15:35 +00:00
|
|
|
# This is a whitelist that allows accesses to files not in our
|
|
|
|
# build directory nor source directory. The records are in the
|
2018-07-09 08:53:17 +00:00
|
|
|
# following formats:
|
2016-04-18 14:15:35 +00:00
|
|
|
#
|
|
|
|
# $path: $progname: $testname
|
2018-07-09 08:53:17 +00:00
|
|
|
# $path: $action: $progname: $testname
|
2016-04-18 14:15:35 +00:00
|
|
|
#
|
2018-07-09 08:53:17 +00:00
|
|
|
# All these variables are evaluated as perl RE. So to allow
|
|
|
|
# /dev/sda and /dev/sdb, you can just '/dev/sd[a-b]', or to allow
|
2016-04-18 14:15:35 +00:00
|
|
|
# /proc/$pid/status you can '/proc/\d+/status' and so on.
|
2018-07-09 08:53:17 +00:00
|
|
|
# Moreover, $action, $progname and $testname can be empty, in which
|
|
|
|
# which case $path is allowed for all tests. However, $action (if
|
|
|
|
# specified) must be one of "open", "fopen", "access", "stat",
|
|
|
|
# "lstat", "connect".
|
2016-04-18 14:15:35 +00:00
|
|
|
|
|
|
|
/bin/cat: sysinfotest
|
|
|
|
/bin/dirname: sysinfotest: x86 sysinfo
|
|
|
|
/bin/sleep: commandtest
|
|
|
|
/bin/true: commandtest
|
|
|
|
/dev/null
|
|
|
|
/dev/urandom
|
|
|
|
/etc/hosts
|
|
|
|
/proc/\d+/status
|
|
|
|
|
2018-07-09 08:53:17 +00:00
|
|
|
/etc/passwd: fopen
|
|
|
|
|
2016-04-18 14:15:35 +00:00
|
|
|
# This is just a dummy example, DO NOT USE IT LIKE THAT!
|
|
|
|
.*: nonexistent-test-touching-everything
|