packaging
/
ostree
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
ostree/tests
History
Colin Walters 0c4b3a2b6d Canonicalize bare-user-only perms with 0755 mask 
For the flatpak use case where bare-user-only was introduced, we actually
don't want to support s{u,g} id files in particular.

Actually, I can't think of a reason to have anything outside of the
`0755 i.e. (u=rwx,g=rx,o=rx)` mask, so that's what we do here.

This will have the effect of treating existing `bare-user-only` repositories as
corrupted if they have files outside of that mask, but I think we should do this
now; most of the flatpak users will still be on `bare-user`, and we haven't
changed the semantics of that mode yet.

Note that in this patch we will also *reject* file content that doesn't
match this.  This is somewhat asymmetric, since we aren't similarly rejecting
e.g. directory metadata.  But, this will close off the biggest source
of the problem for flatpak (setuid binaries).

See: https://github.com/ostreedev/ostree/pull/908
See: https://github.com/flatpak/flatpak/pull/837

Closes: #909
Approved by: alexlarsson
 		2017-06-07 15:13:55 +00:00
..
coccinelle Add Coccinelle usage: one for blacklisting, one for patch collection 2017-03-30 19:19:54 +00:00
gpg-verify-data gpg: Regenerate test data for test-gpg-verify-result 2015-03-19 12:43:04 -04:00
gpghome tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
installed ci: Extend FAH rootfs for installed tests 2017-05-09 15:08:26 +00:00
.gitignore tests: Ignore some standard automake check output files 2017-04-27 13:43:49 +00:00
admin-test.sh Revert "Add a notion of "physical" sysroot, use for remote writing" 2017-06-02 14:11:58 +00:00
archive-test.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
basic-test.sh Canonicalize bare-user-only perms with 0755 mask 2017-06-07 15:13:55 +00:00
bootloader-entries-crosscheck.py Introducing ostree-grub-generator 2016-04-04 14:19:35 +00:00
ci-commitmessage-submodules.sh PAPR: migrate to the new name 2017-05-25 16:31:08 +00:00
coccinelle.sh Add Coccinelle usage: one for blacklisting, one for patch collection 2017-03-30 19:19:54 +00:00
corrupt-repo-ref.js Make corrupt-repo-ref.js executable 2017-01-19 13:54:59 +00:00
glib.supp glib.supp: Suppress g_task -> thread leaks 2016-07-28 10:10:17 +00:00
grub2-entries-crosscheck.py tests: Add a test script to cross-check loader config vs GRUB2 2015-05-28 14:21:30 -04:00
libostreetest.c libglnx: bump and use new helper methods 2017-05-12 21:02:16 +00:00
libostreetest.h tests/test-pull-c: New test that runs through the pull API via C 2016-06-07 15:58:37 +00:00
libtest-core.sh checkout: also chmod in the user checkout case 2017-06-02 17:46:16 +00:00
libtest.sh checkout: also chmod in the user checkout case 2017-06-02 17:46:16 +00:00
ostree-grub-generator Introducing ostree-grub-generator 2016-04-04 14:19:35 +00:00
ostree.supp tests: Modernize valgrind infrastructure 2016-06-09 21:10:35 +00:00
pre-endian-deltas-repo-big.tar.xz deltas: Heuristically detect endianness for older deltas 2016-02-26 08:19:01 -05:00
pre-endian-deltas-repo-little.tar.xz deltas: Heuristically detect endianness for older deltas 2016-02-26 08:19:01 -05:00
pull-test.sh pull-test: Add some 404 tests 2017-05-26 14:33:59 +00:00
readdir-rand.c tree-wide: Switch tabs ⭾ in various files over to spaces ␠ 2017-05-11 18:17:26 +00:00
test-admin-deploy-2.sh tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
test-admin-deploy-bootid-gc.sh ostree-repo: Make the lock with a long-lasting FD 2016-11-22 02:32:33 +00:00
test-admin-deploy-clean.sh tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
test-admin-deploy-etcmerge-cornercases.sh tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
test-admin-deploy-grub2.sh Revert "Add a notion of "physical" sysroot, use for remote writing" 2017-06-02 14:11:58 +00:00
test-admin-deploy-karg.sh Filter bootloader supplied kernel cmdline options 2016-11-01 18:00:37 +00:00
test-admin-deploy-switch.sh tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
test-admin-deploy-syslinux.sh Revert "Add a notion of "physical" sysroot, use for remote writing" 2017-06-02 14:11:58 +00:00
test-admin-deploy-uboot.sh Revert "Add a notion of "physical" sysroot, use for remote writing" 2017-06-02 14:11:58 +00:00
test-admin-instutil-set-kargs.sh Filter bootloader supplied kernel cmdline options 2016-11-01 18:00:37 +00:00
test-admin-locking.sh Probe for GNU parallel more accurately 2016-03-31 14:22:06 +00:00
test-admin-pull-deploy-commit.sh tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
test-admin-pull-deploy-split.sh upgrade: Add support for --pull-only and --deploy-only 2017-02-27 20:57:23 +00:00
test-admin-upgrade-endoflife.sh Allow commits to mark refs as EOL, replaced by others 2017-05-22 20:18:07 +00:00
test-admin-upgrade-not-backwards.sh tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
test-admin-upgrade-unconfigured.sh tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
test-archivez.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-auto-summary.sh tests: Remove extra $CMD_PREFIX from test-auto-summary.sh 2016-06-27 20:20:21 +00:00
test-basic-c.c tests: Add some C tests for object writing 2017-05-25 14:24:05 +00:00
test-basic-root.sh checkout: Merge union/add logic for copies during checkout 2017-04-25 13:52:35 +00:00
test-basic-user-only.sh Add basic tests for bare-user-only repo modes 2017-03-27 13:48:41 +00:00
test-basic-user.sh Fix TAP syntax in test-basic-user.sh, and run it 2017-01-19 13:54:59 +00:00
test-basic.sh tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
test-bsdiff.c [ASAN] tests: Cleanup all current remaining leaks 2016-12-05 15:20:56 +00:00
test-checksum.c static-delta: add some error handling 2016-09-09 19:06:11 +00:00
test-commit-sign.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-core.js commit: Mark ostree_repo_transaction_set_ref* checksums nullable 2017-05-08 16:35:09 +00:00
test-corruption.sh fsck: Check for refs missing corresponding commit 2017-05-09 14:05:46 +00:00
test-delta.sh pull: Support deltas for explicit commits 2017-04-12 21:30:33 +00:00
test-demo-buildsystem.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-export.sh ostree export: Add --prefix option 2016-04-19 12:28:06 +00:00
test-gpg-signed-commit.sh libtest: add has_gpgme() helper function 2016-08-31 16:52:12 +00:00
test-gpg-verify-result.c tree-wide: Convert to using autoptr(GString) vs g_string_free(...,TRUE) 2017-05-05 15:10:51 +00:00
test-help.sh tests: Use "bash strict mode" 2016-01-27 11:44:10 -05:00
test-keyfile-utils.c tests/keyfile-utils: Drop tests covering preconditions 2016-12-06 14:50:08 +00:00
test-libarchive-import.c Define and use cleanup helpers for libarchive 2016-12-05 15:20:56 +00:00
test-libarchive.sh main: Make ostree --version output YAML (and add gitrev) 2017-02-22 18:57:18 +00:00
test-local-pull-depth.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-local-pull.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-lzma.c [ASAN] tests: Cleanup all current remaining leaks 2016-12-05 15:20:56 +00:00
test-mutable-tree.c [ASAN] tests: Cleanup all current remaining leaks 2016-12-05 15:20:56 +00:00
test-oldstyle-partial.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-ot-opt-utils.c [ASAN] tests: Cleanup all current remaining leaks 2016-12-05 15:20:56 +00:00
test-ot-tool-util.c [ASAN] tests: Cleanup all current remaining leaks 2016-12-05 15:20:56 +00:00
test-ot-unix-utils.c [ASAN] tests: Cleanup all current remaining leaks 2016-12-05 15:20:56 +00:00
test-parent.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-prune.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-archive-z.sh libtest.sh: use G_TEST_SRCDIR, G_TEST_BUILDDIR to find resources 2016-03-31 18:54:13 +00:00
test-pull-c.c tests: Don't inject newline in URL 2017-01-19 10:47:15 +00:00
test-pull-commit-only.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-contenturl.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-corruption.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-depth.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-large-metadata.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-metalink.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-mirror-summary.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-mirrorlist.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-override-url.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-repeated.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-resume.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-subpath.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-summary-sigs.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-pull-untrusted.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-refs.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-remote-add.sh tests: Port to glib-tap.mk, make `make check` run all of the tests 2016-03-03 08:50:19 -05:00
test-remote-cookies.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00
test-remote-gpg-import.sh core: Fix default value of disable_xattrs 2017-04-04 15:54:46 +00:00
test-remote-headers.sh pull: complete detached meta fetch before scanning 2017-05-18 01:14:15 +00:00
test-reset-nonlinear.sh tests: Use "bash strict mode" 2016-01-27 11:44:10 -05:00
test-rofiles-fuse.sh repo/checkout: Verify early if src/destination are on same device 2017-03-06 20:58:04 +00:00
test-rollsum-cli.c Add Coccinelle usage: one for blacklisting, one for patch collection 2017-03-30 19:19:54 +00:00
test-rollsum.c tree-wide: Switch tabs ⭾ in various files over to spaces ␠ 2017-05-11 18:17:26 +00:00
test-sizes.js core: Add size information to commit metadata 2013-10-19 11:56:51 -04:00
test-summary-view.sh tests: Fix regex escaping in test-summary-view.sh 2017-05-08 17:36:33 +00:00
test-switchroot.sh ostree-prepare-root: Fix running with musl 2016-09-01 20:17:58 +00:00
test-symbols.sh tests/test-symbols.sh: Fix with --enable-experimental-api 2017-05-19 15:02:00 +00:00
test-sysroot-c.c lib: Add ostree_sysroot_load_if_changed() API 2016-03-03 21:56:23 -05:00
test-sysroot.js tests: Port sysroot.js away from libgsystem 2016-08-09 19:01:35 +00:00
test-varint.c [ASAN] tests: Cleanup all current remaining leaks 2016-12-05 15:20:56 +00:00
test-xattrs.sh repo+tests: Add [core]disable-xattrs=true, use it on overlayfs 2017-03-24 22:16:43 +00:00