Adding upstream version 247.3.upstream/247.3 upstream

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
author: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-04-27 13:00:47 +0000
committer: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-04-27 13:00:47 +0000
commit: 2cb7e0aaedad73b076ea18c6900b0e86c5760d79 (patch)
tree: da68ca54bb79f4080079bf0828acda937593a4e1 /test/test-execute/exec-privatedevices-yes-with-group.service
parent: Initial commit. (diff)
download: systemd-2cb7e0aaedad73b076ea18c6900b0e86c5760d79.tar.xz
systemd-2cb7e0aaedad73b076ea18c6900b0e86c5760d79.zip
1 files changed, 16 insertions, 0 deletions
diff --git a/test/test-execute/exec-privatedevices-yes-with-group.service b/test/test-execute/exec-privatedevices-yes-with-group.service
new file mode 100644
index 0000000..70a7ed2
--- /dev/null
+++ b/test/test-execute/exec-privatedevices-yes-with-group.service
@@ -0,0 +1,16 @@
+[Unit]
+Description=Test Group=group is applied after PrivateDevices=yes
+
+[Service]
+PrivateDevices=yes
+Group=daemon
+Type=oneshot
+
+# Check the group applied
+ExecStart=/bin/sh -x -c 'test "$$(id -n -g)" = "daemon"'
+
+# Check that the namespace applied
+ExecStart=/bin/sh -c 'test ! -c /dev/kmsg'
+
+# Check that the owning group of a node is not daemon (should be the host root)
+ExecStart=/bin/sh -x -c 'test ! "$$(stat -c %%G /dev/stderr)" = "daemon"'
author	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-04-27 13:00:47 +0000
committer	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-04-27 13:00:47 +0000
commit	2cb7e0aaedad73b076ea18c6900b0e86c5760d79 (patch)
tree	da68ca54bb79f4080079bf0828acda937593a4e1 /test/test-execute/exec-privatedevices-yes-with-group.service
parent	Initial commit. (diff)
download	systemd-2cb7e0aaedad73b076ea18c6900b0e86c5760d79.tar.xz systemd-2cb7e0aaedad73b076ea18c6900b0e86c5760d79.zip