cgitsb/tests/t0109-gitconfig.sh

#!/bin/sh

test_description='Ensure that git does not access $HOME'
. ./setup.sh

test -n "$(which strace 2>/dev/null)" || {
	skip_all='Skipping access validation tests: strace not found'
	test_done
	exit
}

test_no_home_access () {
	non_existant_path="/path/to/some/place/that/does/not/possibly/exist"
	while test -d "$non_existant_path"; do
		non_existant_path="$non_existant_path/$(date +%N)"
	done &&
	strace \
		-E HOME="$non_existant_path" \
		-E CGIT_CONFIG="$PWD/cgitrc" \
		-E QUERY_STRING="url=$1" \
		-e access -f -o strace.out cgit &&
	test_must_fail grep "$non_existant_path" strace.out
}

test_no_home_access_success() {
	test_expect_success "do not access \$HOME: $1" "
		test_no_home_access '$1'
	"
}

test_no_home_access_success
test_no_home_access_success foo
test_no_home_access_success foo/refs
test_no_home_access_success foo/log
test_no_home_access_success foo/tree
test_no_home_access_success foo/tree/file-1
test_no_home_access_success foo/commit
test_no_home_access_success foo/diff
test_no_home_access_success foo/patch
test_no_home_access_success foo/snapshot/master.tar.gz

test_done
tests: Make sure that git does not access $HOME With the latest changes to prevent git from accessing configuration files that it should not, it's important to be sure that we won't have further breakage in the future. Use strace to implement a test to make sure cgit does not access() anything built from $HOME. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2013-04-08 22:18:21 +02:00			`#!/bin/sh`

			`test_description='Ensure that git does not access $HOME'`
			`. ./setup.sh`

			`test -n "$(which strace 2>/dev/null)" \|\| {`
			`skip_all='Skipping access validation tests: strace not found'`
			`test_done`
			`exit`
			`}`

t0109: test more URLs In order to ensure that we don't access $HOME at some point after initial startup when rendering a specific view, run the strace test on a range of different pages. This ensures that we don't end up reading a configuration later for some specific view. Signed-off-by: John Keeping <john@keeping.me.uk> 2013-04-14 18:07:41 +02:00			`test_no_home_access () {`
tests: Make sure that git does not access $HOME With the latest changes to prevent git from accessing configuration files that it should not, it's important to be sure that we won't have further breakage in the future. Use strace to implement a test to make sure cgit does not access() anything built from $HOME. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2013-04-08 22:18:21 +02:00			`non_existant_path="/path/to/some/place/that/does/not/possibly/exist"`
			`while test -d "$non_existant_path"; do`
			`non_existant_path="$non_existant_path/$(date +%N)"`
t0109: test more URLs In order to ensure that we don't access $HOME at some point after initial startup when rendering a specific view, run the strace test on a range of different pages. This ensures that we don't end up reading a configuration later for some specific view. Signed-off-by: John Keeping <john@keeping.me.uk> 2013-04-14 18:07:41 +02:00			`done &&`
tests: Make sure that git does not access $HOME With the latest changes to prevent git from accessing configuration files that it should not, it's important to be sure that we won't have further breakage in the future. Use strace to implement a test to make sure cgit does not access() anything built from $HOME. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2013-04-08 22:18:21 +02:00			`strace \`
			`-E HOME="$non_existant_path" \`
			`-E CGIT_CONFIG="$PWD/cgitrc" \`
t0109: test more URLs In order to ensure that we don't access $HOME at some point after initial startup when rendering a specific view, run the strace test on a range of different pages. This ensures that we don't end up reading a configuration later for some specific view. Signed-off-by: John Keeping <john@keeping.me.uk> 2013-04-14 18:07:41 +02:00			`-E QUERY_STRING="url=$1" \`
t0109: chain operations with && Without '&&' between operations, we will not detect if strace or cgit exit with an error status, which would cause a false positive test status in this case. Signed-off-by: John Keeping <john@keeping.me.uk> 2013-04-10 14:11:57 +02:00			`-e access -f -o strace.out cgit &&`
tests: Make sure that git does not access $HOME With the latest changes to prevent git from accessing configuration files that it should not, it's important to be sure that we won't have further breakage in the future. Use strace to implement a test to make sure cgit does not access() anything built from $HOME. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2013-04-08 22:18:21 +02:00			`test_must_fail grep "$non_existant_path" strace.out`
t0109: test more URLs In order to ensure that we don't access $HOME at some point after initial startup when rendering a specific view, run the strace test on a range of different pages. This ensures that we don't end up reading a configuration later for some specific view. Signed-off-by: John Keeping <john@keeping.me.uk> 2013-04-14 18:07:41 +02:00			`}`

t0109: "function" is a bash-ism We try to stick to POSIX shell in the tests but a "function" keyword has found its way into t0109. Remove it. This makes the tests work with dash again. Signed-off-by: John Keeping <john@keeping.me.uk> 2013-05-09 20:40:58 +02:00			`test_no_home_access_success() {`
t0109: test more URLs In order to ensure that we don't access $HOME at some point after initial startup when rendering a specific view, run the strace test on a range of different pages. This ensures that we don't end up reading a configuration later for some specific view. Signed-off-by: John Keeping <john@keeping.me.uk> 2013-04-14 18:07:41 +02:00			`test_expect_success "do not access \$HOME: $1" "`
			`test_no_home_access '$1'`
			`"`
			`}`

			`test_no_home_access_success`
			`test_no_home_access_success foo`
			`test_no_home_access_success foo/refs`
			`test_no_home_access_success foo/log`
			`test_no_home_access_success foo/tree`
			`test_no_home_access_success foo/tree/file-1`
			`test_no_home_access_success foo/commit`
			`test_no_home_access_success foo/diff`
			`test_no_home_access_success foo/patch`
ui-snapshot: do not access $HOME It's a bit tedious to have to do this here too. If we encounter other issues with $HOME down the line, I'll look into adding some nice utility functions to handle this, or perhaps giving up on the hope that we could keep $HOME defined for scripts. This commit additionally adds a test case, should the issue surface again. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2013-04-30 12:27:41 +02:00			`test_no_home_access_success foo/snapshot/master.tar.gz`
tests: Make sure that git does not access $HOME With the latest changes to prevent git from accessing configuration files that it should not, it's important to be sure that we won't have further breakage in the future. Use strace to implement a test to make sure cgit does not access() anything built from $HOME. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2013-04-08 22:18:21 +02:00
			`test_done`