9969286224
This giant patch makes some much needed improvements to the code base. * The engine has been rewritten and lives within engine/graph/ * All of the common interfaces and code now live in engine/ * All of the resources are in one package called engine/resources/ * The Res API can use different "traits" from engine/traits/ * The Res API has been simplified to hide many of the old internals * The Watch & Process loops were previously inverted, but is now fixed * The likelihood of package cycles has been reduced drastically * And much, much more... Unfortunately, some code had to be temporarily removed. The remote code had to be taken out, as did the prometheus code. We hope to have these back in new forms as soon as possible.
77 lines
1.9 KiB
Bash
Executable File
77 lines
1.9 KiB
Bash
Executable File
#!/bin/bash
|
|
|
|
set -x
|
|
set -o pipefail
|
|
|
|
if ! timeout 1s sudo -A true; then
|
|
echo "sudo disabled: not checking exec user and group"
|
|
exit
|
|
fi
|
|
|
|
BASE_PATH="/tmp/mgmt/"
|
|
BASE_PATH_TEST="${BASE_PATH}test-exec-usergroup/"
|
|
# on Fedora, it's nobody while on ubuntu it's nogroup
|
|
GROUP="nogroup"
|
|
if grep -q nobody /etc/group; then
|
|
GROUP="nobody"
|
|
fi
|
|
|
|
function setup {
|
|
mkdir -p "${BASE_PATH_TEST}"
|
|
sudo -A chown nobody:${GROUP} "${BASE_PATH_TEST}"
|
|
sudo -A chmod ug=rwx,o=rx "${BASE_PATH_TEST}"
|
|
}
|
|
|
|
function cleanup {
|
|
sudo -A rm -rf "${BASE_PATH_TEST}"
|
|
}
|
|
|
|
# run_test will run each test. It takes 3 parameters:
|
|
# - $1: graph (e.g. exec-usergroup-nobody.yaml)
|
|
# - $2: user to be tested (e.g. nobody or "")
|
|
# - $3: group to be tested (e.g. nobody or "")
|
|
function run_usergroup_test() {
|
|
graph=$1
|
|
user=$2
|
|
group=$3
|
|
|
|
setup
|
|
|
|
# run till completion
|
|
sudo -A timeout --kill-after=45s 40s "$MGMT" run --yaml ./exec-usergroup/${graph} --converged-timeout=15 --no-watch --tmp-prefix &
|
|
pid=$!
|
|
wait $pid # get exit status
|
|
e=$?
|
|
|
|
# tests
|
|
test -e "${BASE_PATH_TEST}/result-exec-usergroup"
|
|
if [ $? != 0 ]; then
|
|
echo "${BASE_PATH_TEST}result-exec-usergroup has not been created"
|
|
exit 1
|
|
fi
|
|
if [ "${user}" != "" ]; then
|
|
test $(stat -c%U "${BASE_PATH_TEST}/result-exec-usergroup") = $user
|
|
if [ $? != 0 ]; then
|
|
echo "${BASE_PATH_TEST}result-exec-usergroup owner is not ${user}"
|
|
exit 1
|
|
fi
|
|
fi
|
|
if [ "${group}" != "" ]; then
|
|
test $(stat -c%G "${BASE_PATH_TEST}/result-exec-usergroup") = $group
|
|
if [ $? != 0 ]; then
|
|
echo "${BASE_PATH_TEST}result-exec-usergroup group is not ${group}"
|
|
exit 1
|
|
fi
|
|
fi
|
|
|
|
cleanup
|
|
}
|
|
|
|
# ensure the workspace is clean
|
|
cleanup
|
|
|
|
# run_usergroup_test <yaml file in ./exec-usergroup> <user to test> <group to test>
|
|
run_usergroup_test "exec-usergroup-${GROUP}.yaml" "nobody" "${GROUP}"
|
|
run_usergroup_test "exec-usergroup-user.yaml" "nobody" ""
|
|
run_usergroup_test "exec-usergroup-group-${GROUP}.yaml" "" "${GROUP}"
|