nixos/tests: expand hardened tests

2017-09-16 11:46:26 +02:00
parent 62fa45eac5
commit 586d04c588
1 changed files with 10 additions and 0 deletions
--- a/nixos/tests/hardened.nix
+++ b/nixos/tests/hardened.nix
@@ -32,5 +32,15 @@ import ./make-test.nix ({ pkgs, ...} : {
      subtest "userns", sub {
          $machine->fail("unshare --user");
      };
+
+      # Test dmesg restriction
+      subtest "dmesg", sub {
+          $machine->fail("su -l alice -c dmesg");
+      };
+
+      # Test access to kcore
+      subtest "kcore", sub {
+          $machine->fail("cat /proc/kcore");
+      };
    '';
 })