From bb579d5a4c1c889a1547f228b006bdd281ee307f Mon Sep 17 00:00:00 2001
From: Kunhoon Baik <knhoon.baik@samsung.com>
Date: Wed, 21 Jul 2021 17:44:08 +0900
Subject: [PATCH] Add /dev and /tmp for Testing

 - some program may access to /dev/random by using random function
   For that, add /dev bind mount until finding better way

 - Tizen application cannot write some volatile data to /opt/var
   For that, provide /tmp mount until finding better way
---
 test/runner-sandbox.cfg | 40 ++++++++++++++++++++++++++++++++++++++--
 1 file changed, 38 insertions(+), 2 deletions(-)

diff --git a/test/runner-sandbox.cfg b/test/runner-sandbox.cfg
index f5767af..1d11ac4 100644
--- a/test/runner-sandbox.cfg
+++ b/test/runner-sandbox.cfg
@@ -88,14 +88,50 @@ mount {
 }
 
 mount {
-    src: "/usr"
-    dst: "/usr"
+    src: "/usr/share"
+    dst: "/usr/share"
     is_bind: true
     nosuid: true
     nodev: true
     rw: false
 }
 
+mount {
+    src: "/usr/lib"
+    dst: "/usr/lib"
+    is_bind: true
+    nosuid: true
+    nodev: true
+    rw: false
+}
+
+mount {
+    src: "/usr/bin"
+    dst: "/usr/bin"
+    is_bind: true
+    nosuid: true
+    nodev: true
+    rw: false
+}
+
+mount {
+    src: "/tmp"
+    dst: "/tmp"
+    is_bind: true
+    nosuid: true
+    nodev: true
+    rw: true
+}
+
+mount {
+    src: "/dev"
+    dst: "/dev"
+    is_bind: true
+    nosuid: true
+    nodev: false
+    rw: false
+}
+
 # Seccomp settings
 seccomp_string: "ALLOW {"
 seccomp_string: "    SYSCALL[1]," #exit
-- 
2.34.1