From 447a73b797b6451a3be92af5a592298a488b6550 Mon Sep 17 00:00:00 2001
From: Ma Shimiao <mashimiao.fnst@cn.fujitsu.com>
Date: Wed, 25 May 2016 11:48:15 +0800
Subject: [PATCH] runtimetest: add readonly path validation

Signed-off-by: Ma Shimiao <mashimiao.fnst@cn.fujitsu.com>
---
 cmd/runtimetest/main.go | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/cmd/runtimetest/main.go b/cmd/runtimetest/main.go
index 45a67a36c..be5885775 100644
--- a/cmd/runtimetest/main.go
+++ b/cmd/runtimetest/main.go
@@ -233,6 +233,17 @@ func validateMaskedPaths(spec *rspec.Spec) error {
 	return nil
 }
 
+func validateROPaths(spec *rspec.Spec) error {
+	fmt.Println("validating readonlyPaths")
+	for _, v := range spec.Linux.ReadonlyPaths {
+		err := testWriteAccess(v)
+		if err == nil {
+			return fmt.Errorf("%v should be readonly", v)
+		}
+	}
+	return nil
+}
+
 func main() {
 	spec, err := loadSpecConfig()
 	if err != nil {
@@ -247,6 +258,7 @@ func main() {
 		validateRlimits,
 		validateSysctls,
 		validateMaskedPaths,
+		validateROPaths,
 	}
 
 	for _, v := range validations {