From 730fdbde15da006f920a8850e057e1fa270b3cc0 Mon Sep 17 00:00:00 2001 From: Luca Boccassi Date: Wed, 11 Dec 2024 18:31:08 +0000 Subject: [PATCH] test-capability: CAP_LINUX_IMMUTABLE is not available in unprivileged containers Origin: upstream, commit:058a07635f3ff70cc99943dcf4f2a079bc9c28b9 Forwarded: yes Gbp-Pq: Name test-capability-CAP_LINUX_IMMUTABLE-is-not-available-in-u.patch --- src/test/test-capability.c | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/src/test/test-capability.c b/src/test/test-capability.c index 51bd8063..127f5e3d 100644 --- a/src/test/test-capability.c +++ b/src/test/test-capability.c @@ -254,6 +254,13 @@ static void test_capability_get_ambient(void) { ASSERT_OK(capability_get_ambient(&c)); + r = prctl(PR_CAPBSET_READ, CAP_MKNOD); + if (r <= 0) + return (void) log_tests_skipped("Lacking CAP_MKNOD, skipping getambient test."); + r = prctl(PR_CAPBSET_READ, CAP_LINUX_IMMUTABLE); + if (r <= 0) + return (void) log_tests_skipped("Lacking CAP_LINUX_IMMUTABLE, skipping getambient test."); + r = safe_fork("(getambient)", FORK_RESET_SIGNALS|FORK_DEATHSIG_SIGTERM|FORK_WAIT|FORK_LOG, NULL); ASSERT_OK(r); -- 2.30.2