From owner-svn-src-head@FreeBSD.ORG  Sat Mar 16 23:13:49 2013
Return-Path: <owner-svn-src-head@FreeBSD.ORG>
Delivered-To: svn-src-head@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by hub.freebsd.org (Postfix) with ESMTP id CDE83FF6;
 Sat, 16 Mar 2013 23:13:49 +0000 (UTC) (envelope-from pjd@FreeBSD.org)
Received: from svn.freebsd.org (svn.freebsd.org
 [IPv6:2001:1900:2254:2068::e6a:0])
 by mx1.freebsd.org (Postfix) with ESMTP id B1A9981A;
 Sat, 16 Mar 2013 23:13:49 +0000 (UTC)
Received: from svn.freebsd.org ([127.0.1.70])
 by svn.freebsd.org (8.14.6/8.14.6) with ESMTP id r2GNDnVt046305;
 Sat, 16 Mar 2013 23:13:49 GMT (envelope-from pjd@svn.freebsd.org)
Received: (from pjd@localhost)
 by svn.freebsd.org (8.14.6/8.14.5/Submit) id r2GNDnbD046304;
 Sat, 16 Mar 2013 23:13:49 GMT (envelope-from pjd@svn.freebsd.org)
Message-Id: <201303162313.r2GNDnbD046304@svn.freebsd.org>
From: Pawel Jakub Dawidek <pjd@FreeBSD.org>
Date: Sat, 16 Mar 2013 23:13:49 +0000 (UTC)
To: src-committers@freebsd.org, svn-src-all@freebsd.org,
 svn-src-head@freebsd.org
Subject: svn commit: r248396 - head/tools/regression/security/cap_test
X-SVN-Group: head
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: svn-src-head@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: SVN commit messages for the src tree for head/-current
 <svn-src-head.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/svn-src-head>,
 <mailto:svn-src-head-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-head>
List-Post: <mailto:svn-src-head@freebsd.org>
List-Help: <mailto:svn-src-head-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/svn-src-head>,
 <mailto:svn-src-head-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 16 Mar 2013 23:13:49 -0000

Author: pjd
Date: Sat Mar 16 23:13:49 2013
New Revision: 248396
URL: http://svnweb.freebsd.org/changeset/base/248396

Log:
  Update the tests now that absence of the O_APPEND flag requires CAP_SEEK
  capability. Add some more tests.
  
  Sponsored by:	The FreeBSD Foundation

Modified:
  head/tools/regression/security/cap_test/cap_test_capabilities.c

Modified: head/tools/regression/security/cap_test/cap_test_capabilities.c
==============================================================================
--- head/tools/regression/security/cap_test/cap_test_capabilities.c	Sat Mar 16 23:11:55 2013	(r248395)
+++ head/tools/regression/security/cap_test/cap_test_capabilities.c	Sat Mar 16 23:13:49 2013	(r248396)
@@ -184,19 +184,19 @@ try_file_ops(int filefd, int dirfd, cap_
 	    MAP_SHARED, fd_cap, 0);
 	CHECK_MMAP_RESULT(CAP_MMAP_RWX);
 
-	/* TODO: openat(O_APPEND) */
 	ret = openat(dfd_cap, "cap_create", O_CREAT | O_RDONLY, 0600);
 	CHECK_RESULT(openat(O_CREATE | O_RDONLY),
 	    CAP_CREATE | CAP_READ | CAP_LOOKUP, ret >= 0);
 	CHECK(ret == -1 || close(ret) == 0);
 	CHECK(ret == -1 || unlinkat(dirfd, "cap_create", 0) == 0);
-	ret = openat(dfd_cap, "cap_create", O_CREAT | O_WRONLY, 0600);
-	CHECK_RESULT(openat(O_CREATE | O_WRONLY),
+	ret = openat(dfd_cap, "cap_create", O_CREAT | O_WRONLY | O_APPEND,
+	    0600);
+	CHECK_RESULT(openat(O_CREATE | O_WRONLY | O_APPEND),
 	    CAP_CREATE | CAP_WRITE | CAP_LOOKUP, ret >= 0);
 	CHECK(ret == -1 || close(ret) == 0);
 	CHECK(ret == -1 || unlinkat(dirfd, "cap_create", 0) == 0);
-	ret = openat(dfd_cap, "cap_create", O_CREAT | O_RDWR, 0600);
-	CHECK_RESULT(openat(O_CREATE | O_RDWR),
+	ret = openat(dfd_cap, "cap_create", O_CREAT | O_RDWR | O_APPEND, 0600);
+	CHECK_RESULT(openat(O_CREATE | O_RDWR | O_APPEND),
 	    CAP_CREATE | CAP_READ | CAP_WRITE | CAP_LOOKUP, ret >= 0);
 	CHECK(ret == -1 || close(ret) == 0);
 	CHECK(ret == -1 || unlinkat(dirfd, "cap_create", 0) == 0);
@@ -211,24 +211,24 @@ try_file_ops(int filefd, int dirfd, cap_
 	CHECK_RESULT(openat(O_FSYNC | O_RDONLY),
 	    CAP_FSYNC | CAP_READ | CAP_LOOKUP, ret >= 0);
 	CHECK(ret == -1 || close(ret) == 0);
-	ret = openat(dfd_cap, "cap_fsync", O_FSYNC | O_WRONLY);
-	CHECK_RESULT(openat(O_FSYNC | O_WRONLY),
+	ret = openat(dfd_cap, "cap_fsync", O_FSYNC | O_WRONLY | O_APPEND);
+	CHECK_RESULT(openat(O_FSYNC | O_WRONLY | O_APPEND),
 	    CAP_FSYNC | CAP_WRITE | CAP_LOOKUP, ret >= 0);
 	CHECK(ret == -1 || close(ret) == 0);
-	ret = openat(dfd_cap, "cap_fsync", O_FSYNC | O_RDWR);
-	CHECK_RESULT(openat(O_FSYNC | O_RDWR),
+	ret = openat(dfd_cap, "cap_fsync", O_FSYNC | O_RDWR | O_APPEND);
+	CHECK_RESULT(openat(O_FSYNC | O_RDWR | O_APPEND),
 	    CAP_FSYNC | CAP_READ | CAP_WRITE | CAP_LOOKUP, ret >= 0);
 	CHECK(ret == -1 || close(ret) == 0);
 	ret = openat(dfd_cap, "cap_fsync", O_SYNC | O_RDONLY);
 	CHECK_RESULT(openat(O_SYNC | O_RDONLY),
 	    CAP_FSYNC | CAP_READ | CAP_LOOKUP, ret >= 0);
 	CHECK(ret == -1 || close(ret) == 0);
-	ret = openat(dfd_cap, "cap_fsync", O_SYNC | O_WRONLY);
-	CHECK_RESULT(openat(O_SYNC | O_WRONLY),
+	ret = openat(dfd_cap, "cap_fsync", O_SYNC | O_WRONLY | O_APPEND);
+	CHECK_RESULT(openat(O_SYNC | O_WRONLY | O_APPEND),
 	    CAP_FSYNC | CAP_WRITE | CAP_LOOKUP, ret >= 0);
 	CHECK(ret == -1 || close(ret) == 0);
-	ret = openat(dfd_cap, "cap_fsync", O_SYNC | O_RDWR);
-	CHECK_RESULT(openat(O_SYNC | O_RDWR),
+	ret = openat(dfd_cap, "cap_fsync", O_SYNC | O_RDWR | O_APPEND);
+	CHECK_RESULT(openat(O_SYNC | O_RDWR | O_APPEND),
 	    CAP_FSYNC | CAP_READ | CAP_WRITE | CAP_LOOKUP, ret >= 0);
 	CHECK(ret == -1 || close(ret) == 0);
 	CHECK(unlinkat(dirfd, "cap_fsync", 0) == 0);
@@ -253,6 +253,39 @@ try_file_ops(int filefd, int dirfd, cap_
 	CHECK(ret == -1 || close(ret) == 0);
 	CHECK(unlinkat(dirfd, "cap_ftruncate", 0) == 0);
 
+	ret = openat(dfd_cap, "cap_create", O_CREAT | O_WRONLY, 0600);
+	CHECK_RESULT(openat(O_CREATE | O_WRONLY),
+	    CAP_CREATE | CAP_WRITE | CAP_SEEK | CAP_LOOKUP, ret >= 0);
+	CHECK(ret == -1 || close(ret) == 0);
+	CHECK(ret == -1 || unlinkat(dirfd, "cap_create", 0) == 0);
+	ret = openat(dfd_cap, "cap_create", O_CREAT | O_RDWR, 0600);
+	CHECK_RESULT(openat(O_CREATE | O_RDWR),
+	    CAP_CREATE | CAP_READ | CAP_WRITE | CAP_SEEK | CAP_LOOKUP,
+	    ret >= 0);
+	CHECK(ret == -1 || close(ret) == 0);
+	CHECK(ret == -1 || unlinkat(dirfd, "cap_create", 0) == 0);
+
+	ret = openat(dirfd, "cap_fsync", O_CREAT, 0600);
+	CHECK(ret >= 0);
+	CHECK(close(ret) == 0);
+	ret = openat(dfd_cap, "cap_fsync", O_FSYNC | O_WRONLY);
+	CHECK_RESULT(openat(O_FSYNC | O_WRONLY),
+	    CAP_FSYNC | CAP_WRITE | CAP_SEEK | CAP_LOOKUP, ret >= 0);
+	CHECK(ret == -1 || close(ret) == 0);
+	ret = openat(dfd_cap, "cap_fsync", O_FSYNC | O_RDWR);
+	CHECK_RESULT(openat(O_FSYNC | O_RDWR),
+	    CAP_FSYNC | CAP_READ | CAP_WRITE | CAP_SEEK | CAP_LOOKUP, ret >= 0);
+	CHECK(ret == -1 || close(ret) == 0);
+	ret = openat(dfd_cap, "cap_fsync", O_SYNC | O_WRONLY);
+	CHECK_RESULT(openat(O_SYNC | O_WRONLY),
+	    CAP_FSYNC | CAP_WRITE | CAP_SEEK | CAP_LOOKUP, ret >= 0);
+	CHECK(ret == -1 || close(ret) == 0);
+	ret = openat(dfd_cap, "cap_fsync", O_SYNC | O_RDWR);
+	CHECK_RESULT(openat(O_SYNC | O_RDWR),
+	    CAP_FSYNC | CAP_READ | CAP_WRITE | CAP_SEEK | CAP_LOOKUP, ret >= 0);
+	CHECK(ret == -1 || close(ret) == 0);
+	CHECK(unlinkat(dirfd, "cap_fsync", 0) == 0);
+
 	/*
 	 * Note: this is not expected to work over NFS.
 	 */