0a7888b1fa
Closes #154 Currently this has three functions: one which returns the list of subuid ranges for a user, one returning the subgids, and one which frees the ranges lists. I might be mistaken about what -disable-man means; some of the code suggests it means just don't re-generate them, but not totally ignore them. But that doesn't seem to really work, so let's just ignore man/ when -disable-man. Remove --disable-shared. I'm not sure why it was there, but it stems from long, long ago, and I suspect it comes from some ancient toolchain bug. Create a tests/run_some, a shorter version of run_all. I'll slowly add tests to this as I verify they work, then I can work on fixing the once which don't. Also, don't touch man/ if not -enable-man. Changelog: Apr 22: change the subid list api as recomended by Dan Walsh. Apr 23: implement get_subid_owner Apr 24: implement range add/release Apr 25: finish tests and rebase May 10: make @owner const Signed-off-by: Serge Hallyn <serge@hallyn.com>
60 lines
1.3 KiB
Bash
Executable File
60 lines
1.3 KiB
Bash
Executable File
#!/bin/sh
|
|
|
|
set -e
|
|
|
|
cd $(dirname $0)
|
|
|
|
. ../../common/config.sh
|
|
. ../../common/log.sh
|
|
|
|
log_start "$0" "add and remove subid ranges"
|
|
|
|
save_config
|
|
|
|
# restore the files on exit
|
|
trap 'log_status "$0" "FAILURE"; restore_config' 0
|
|
|
|
change_config
|
|
|
|
echo -n "Existing ranges returned when possible..."
|
|
res=$(${build_path}/src/new_subid_range foo 500)
|
|
echo "debug"
|
|
echo "res is $res"
|
|
echo "wanted Subuid range 300000:10000"
|
|
echo "end debug"
|
|
[ "$res" = "Subuid range 300000:10000" ]
|
|
[ $(grep -c foo /etc/subuid) -eq 1 ]
|
|
echo "OK"
|
|
|
|
echo -n "New range returned if requested..."
|
|
res=$(${build_path}/src/new_subid_range foo 500 -n)
|
|
[ "$res" = "Subuid range 310000:500" ]
|
|
[ $(grep -c foo /etc/subuid) -eq 2 ]
|
|
echo "OK"
|
|
|
|
echo -n "Free works..."
|
|
res=$(${build_path}/src/free_subid_range foo 310000 500)
|
|
[ $(grep -c foo /etc/subuid) -eq 1 ]
|
|
echo "OK"
|
|
|
|
echo -n "Subgids work too..."
|
|
res=$(${build_path}/src/new_subid_range -g foo 100000)
|
|
echo "DEBUG: res is ${res}"
|
|
[ "$res" = "Subuid range 501000:100000" ]
|
|
echo "DEBUG: subgid is:"
|
|
cat /etc/subgid
|
|
[ $(grep -c foo /etc/subgid) -eq 2 ]
|
|
|
|
echo -n "Subgid free works..."
|
|
res=$(${build_path}/src/free_subid_range -g foo 501000 100000)
|
|
echo "DEBUG: res is ${res}"
|
|
echo "DEBUG: subgid is:"
|
|
cat /etc/subgid
|
|
[ $(grep -c foo /etc/subgid) -eq 1 ]
|
|
echo "OK"
|
|
|
|
log_status "$0" "SUCCESS"
|
|
restore_config
|
|
trap '' 0
|
|
|