1# Copyright (c) 2010 The Chromium OS Authors. All rights reserved. 2# Use of this source code is governed by a BSD-style license that can be 3# found in the LICENSE file. 4 5TIME="SHORT" 6AUTHOR = "The Chromium OS Authors" 7DOC = """ 8Enforces a whitelist of known, allowed setuid/gid binaries on the system 9""" 10NAME = "security_SuidBinaries" 11PURPOSE = "To maintain a minimal set of setuid/gid binaries on the system" 12CRITERIA = """ 13Fail if the list of setuid/gid binaries doesn't match the baseline 14""" 15ATTRIBUTES = "suite:bvt-inline, suite:smoke" 16SUITE = "bvt-inline, smoke" 17TEST_CLASS = "security" 18TEST_CATEGORY = "Functional" 19TEST_TYPE = "client" 20JOB_RETRIES = 2 21 22job.run_test("security_SuidBinaries", baseline='suid', tag='suid') 23job.run_test("security_SuidBinaries", baseline='sgid', tag='sgid') 24job.run_test("security_SuidBinaries", baseline='fscap', tag='fscap') 25