1# Copyright (c) 2010 The Chromium OS Authors. All rights reserved.
2# Use of this source code is governed by a BSD-style license that can be
3# found in the LICENSE file.
4
5TIME="SHORT"
6AUTHOR = "The Chromium OS Authors"
7DOC = """
8Enforces a whitelist of known, allowed setuid/gid binaries on the system
9"""
10NAME = "security_SuidBinaries"
11PURPOSE = "To maintain a minimal set of setuid/gid binaries on the system"
12CRITERIA = """
13Fail if the list of setuid/gid binaries doesn't match the baseline
14"""
15ATTRIBUTES = "suite:bvt-inline, suite:smoke"
16SUITE = "bvt-inline, smoke"
17TEST_CLASS = "security"
18TEST_CATEGORY = "Functional"
19TEST_TYPE = "client"
20JOB_RETRIES = 2
21
22job.run_test("security_SuidBinaries", baseline='suid', tag='suid')
23job.run_test("security_SuidBinaries", baseline='sgid', tag='sgid')
24job.run_test("security_SuidBinaries", baseline='fscap', tag='fscap')
25