Package repocop-unittest-unsafe-tmp-usage-in-scripts: Specfile

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
%define testname unsafe-tmp-usage-in-scripts
Name: repocop-unittest-%testname
Version: 0.6
Release: alt7
BuildArch: noarch
Packager: Igor Yu. Vlasenko <viy@altlinux.org>

Summary: %testname integration tests for repocop test platform
Group: Development/Other
License: GPL or Artistic
Url: http://repocop.altlinux.org 
Requires: repocop

%description
%testname integration test for repocop test platform.
The test checks packages for unsafe /tmp usage.
The test is based on work of Dmitry E. Oboukhov <unera <at> debian.org>
(http://uvw.ru/find_the_bug2.sh) adapted for repocop.

%prep

%build
cat > %testname.whitelist <<'EOF'
firehol
installer-common-stage2
installer-feature-desktop-other-fs-stage2
installer-feature-services
make-initrd-propagator-resume
mkimage
mkimage-profiles
mkinitrd-initramfs
mod_security-doc
spt
spt-profiles-junior
strongswan
EOF
cat > %testname.graylist <<'EOF'
bash-examples
lbuscd
python-module-pyinotify-examples
tcl-httpd-manual
EOF

cat > %testname.test <<'EOF'
#!/bin/sh

# based on work of Dmitry E. Oboukhov <unera <at> debian.org>
# http://uvw.ru/find_the_bug2.sh
# adapted for repocop by viy at altlinux.org

cwd=`pwd`
report_name="$REPOCOP_TEST_TMPDIR/report"
cat > $report_name <<'EOH'
The test discovered scripts with errors which may be used
by a user for damaging important system files.

For example if a script uses in its work a temp file which is created
in /tmp directory, then every user can create symlinks with the same
name (pattern) in this directory in order to destroy or rewrite some 
system or another user's files.

Scripts _must_ _use_ mktemp/tempfile or must use $TMPDIR.
mktemp/tempfile is safest. $TMPDIR is safer than /tmp/ 
because libpam-tmpdir creates a subdirectory of /tmp
that is only accessible by that user, and then sets TMPDIR and other
variables to that. Hence, it doesn't matter nearly as much if you
create a non-random filename, because nobody but you can access it.

EOH

cd $REPOCOP_PKG_ROOT
not_an_example_flag="$REPOCOP_TEST_TMPDIR/notanexample"
rm -f "$not_an_example_flag"
find . -type f -perm /111 | while read package_efile; do
        file $package_efile|grep -q script || continue
        if ! sed 's/#.*//' $package_efile|grep -q '/tmp/'; then
            continue
        fi

        file_found=''
        # checks
        sed 's/#.*//' $package_efile| \
            grep -q '>[[:space:]]*/tmp/' && file_found=1
        sed 's/#.*//' $package_efile| \
            grep -q 'tee[[:space:]][^|]*/tmp/' && file_found=1

        if test -z "$file_found"; then
            continue
        fi
        root_path_efile=`echo $package_efile|sed 's/^.//'`
        echo "Found error in $root_path_efile:" >> $report_name
        echo -e "\t\$ grep -A5 -B5 /tmp/ $root_path_efile" >> $report_name
        grep -A5 -B5 /tmp/ $package_efile|sed 's/^/\t/' >> $report_name
	case $root_path_efile in 
	     /usr/share/doc/*/examples/*) : ;;
	     *) touch "$not_an_example_flag" ;;
	esac
done
cd $cwd

if grep 'Found error' $report_name; then
    if grep '^'$REPOCOP_PKG_NAME'$' %_datadir/repocop/pkgtests/%testname/whitelist >/dev/null; then
        : # skip
    elif grep '^'$REPOCOP_PKG_NAME'$' %_datadir/repocop/pkgtests/%testname/graylist >/dev/null; then
        repocop-test-info `cat $report_name`
    elif [ -e "$not_an_example_flag" ]; then
        repocop-test-fail `cat $report_name`
    else
        repocop-test-info `cat $report_name`
    fi
else
    repocop-test-ok
fi
rm -f $report_name
EOF

%install
install -Dm 755 %testname.test %buildroot%_datadir/repocop/pkgtests/%testname/test
install -Dm 755 %testname.whitelist %buildroot%_datadir/repocop/pkgtests/%testname/whitelist
install -Dm 755 %testname.graylist %buildroot%_datadir/repocop/pkgtests/%testname/graylist

%files
#doc README ChangeLog
%_datadir/repocop/pkgtests/%testname

%changelog
* Thu Nov 03 2016 Igor Vlasenko <viy@altlinux.ru> 0.6-alt7
- added firehol to whitelist

* Wed Sep 05 2012 Igor Vlasenko <viy@altlinux.ru> 0.6-alt6
- bugfixes

* Wed Sep 05 2012 Igor Vlasenko <viy@altlinux.ru> 0.6-alt5
- added strongswan to whitelist

* Wed Sep 05 2012 Igor Vlasenko <viy@altlinux.ru> 0.6-alt4
- added graylist and exceptions

* Thu Mar 22 2012 Igor Vlasenko <viy@altlinux.ru> 0.6-alt3
- added whitelist

* Tue Mar 31 2009 Igor Vlasenko <viy@altlinux.ru> 0.6-alt2
- added url

* Wed Dec 03 2008 Igor Vlasenko <viy@altlinux.ru> 0.6-alt1
- really fixed bug: info instead of fail everywhere.

* Wed Dec 03 2008 Igor Vlasenko <viy@altlinux.ru> 0.5-alt1
- fixed bug: info instead of fail everywhere.

* Sat Nov 15 2008 Igor Vlasenko <viy@altlinux.ru> 0.4-alt1
- set to info level for /usr/share/doc/*/examples/*

* Sat Sep 06 2008 Igor Vlasenko <viy@altlinux.ru> 0.3-alt1
- another bugfix

* Sat Sep 06 2008 Igor Vlasenko <viy@altlinux.ru> 0.2-alt1
- fixed bugs in scripts

* Fri Sep 05 2008 Igor Vlasenko <viy@altlinux.ru> 0.1-alt1
- First build for Sisyphus.
VKontakte|Telegram|YouTube|Forum|ALT Linux Space|Bugzilla
Version: v25.10.0
Back to top