From 5f1550157842c4e93f728efbc12720d87790c26f Mon Sep 17 00:00:00 2001
From: Matthew Heon <matthew.heon@pm.me>
Date: Wed, 4 Sep 2019 13:19:19 -0400
Subject: Add test to verify noexec works with volume mounts

Signed-off-by: Matthew Heon <matthew.heon@pm.me>
---
 test/e2e/run_volume_test.go | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'test')

diff --git a/test/e2e/run_volume_test.go b/test/e2e/run_volume_test.go
index 0441dad1c..5bad6744b 100644
--- a/test/e2e/run_volume_test.go
+++ b/test/e2e/run_volume_test.go
@@ -184,4 +184,10 @@ var _ = Describe("Podman run with volumes", func() {
 		Expect(matches[0]).To(Not(ContainSubstring("nodev")))
 		Expect(matches[0]).To(Not(ContainSubstring("nosuid")))
 	})
+
+	It("podman run with noexec can't exec", func() {
+		session := podmanTest.Podman([]string{"run", "--rm", "-v", "/bin:/hostbin:noexec", ALPINE, "/hostbin/ls", "/"})
+		session.WaitWithDefaultTimeout()
+		Expect(session.ExitCode()).To(Not(Equal(0)))
+	})
 })
-- 
cgit v1.2.3-54-g00ecf