Sat, 26 Oct 2019 12:40:35 +0200
increase security in case of broken secret stores
#!/bin/sh # # DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER. # # Copyright 2019 Olaf Wintermann. All rights reserved. # # Redistribution and use in source and binary forms, with or without # modification, are permitted provided that the following conditions are met: # # 1. Redistributions of source code must retain the above copyright # notice, this list of conditions and the following disclaimer. # # 2. Redistributions in binary form must reproduce the above copyright # notice, this list of conditions and the following disclaimer in the # documentation and/or other materials provided with the distribution. # # THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" # AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE # IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE # ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE # LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR # CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF # SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS # INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN # CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) # ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE # POSSIBILITY OF SUCH DAMAGE. # if [ -z "$DAV_BIN" ]; then echo "DAV_BIN variable not set" exit 1 fi if [ -z "$DAV_SYNC_BIN" ]; then echo "DAV_BIN variable not set" exit 1 fi XATTR=../../build/xattrtool # checks if tmp-sync/out.txt contains a specific text # arg1: pattern # arg2: errormsg check_tmpout() { TEST=`cat tmp-sync/out.txt | grep "$1"` if [ $? -ne 0 ]; then echo "$2" exit 2 fi } # do dav-sync push and check return value # arg1: dir # arg2: errormsg dav_sync_push() { $DAV_SYNC_BIN push $1 > tmp-sync/out.txt if [ $? -ne 0 ]; then echo "$2" exit 2 fi } # do dav-sync pull and check return value # arg1: dir # arg2: errormsg dav_sync_pull() { $DAV_SYNC_BIN pull $1 > tmp-sync/out.txt if [ $? -ne 0 ]; then echo "$2" exit 2 fi } rm -f .dav/dav-sync-tests-test4a-db.xml rm -f .dav/dav-sync-tests-test4b-db.xml $DAV_BIN rm dav-test-repo/sync/test4 2> /dev/null $DAV_BIN mkcol dav-test-repo/sync/test4 2> /dev/null # tmp sync dir rm -Rf tmp-sync mkdir tmp-sync mkdir tmp-sync/test4a mkdir tmp-sync/test4b # ---------------------------------------------------------------------------- # test 1: add file with all kinds of metadata and sync # expected result: everything synced mkdir tmp-sync/test4a/dir1 echo "#!/bin/sh" > tmp-sync/test4a/file1 echo "echo file1out" >> tmp-sync/test4a/file1 cp synctest/file2 tmp-sync/test4a/ cp synctest/file3 tmp-sync/test4a/dir1/ cp synctest/file4 tmp-sync/test4a/dir1/ # add tags $DAV_SYNC_BIN add-tag -s test4a tmp-sync/test4a/file1 mytag $DAV_SYNC_BIN add-tag -s test4a tmp-sync/test4a/file1 test1 # add xattr ../../build/xattrtool set tmp-sync/test4a/file1 attr1 testvalue # set mtime touch -t 01011200 tmp-sync/test4a/file1 # +x chmod +x tmp-sync/test4a/file1 dav_sync_push test4a "test 1: push failed" check_tmpout "4 files pushed" "test 1: wrong push counter" check_tmpout "0 conflicts" "test 1: wrong conflict counter (push)" check_tmpout "0 errors" "test 1: wrong error counter (push)" dav_sync_pull test4b "test 1: pull failed" check_tmpout "4 files pulled" "test 1: wrong pull counter" check_tmpout "0 conflicts" "test 1: wrong conflict counter (pull)" check_tmpout "0 errors" "test 1: wrong error counter (pull)" # check metadata MTIMEA1=`stat -c %Y tmp-sync/test4a/file1` MTIMEB1=`stat -c %Y tmp-sync/test4b/file1` if [ "$MTIMEA1" != "$MTIMEB1" ]; then echo "test 1: mtime not synced" exit 2 fi OUT=`tmp-sync/test4b/file1 2> /dev/null` if [ "$OUT" != "file1out" ]; then echo "test 1: not executable" exit 2 fi OUT=`../../build/xattrtool get tmp-sync/test4b/file1 attr1 2> /dev/null` if [ "$OUT" != "testvalue" ]; then echo "test 1: xattr not synced" exit 2 fi TAGS=`$DAV_SYNC_BIN list-tags -s test4b tmp-sync/test4b/file1 > tmp-sync/out.txt 2> /dev/null` if [ $? -ne 0 ]; then echo "test 1: list-tags failed" exit 2 fi check_tmpout "mytag" "test 1: file1: missing tag mytag" check_tmpout "test1" "test 1: file1: missing tag test1" # ---------------------------------------------------------------------------- # test 2: copy file (without xattr and tags) and sync # expected result: WebDAV COPY, but metadata adjusted cp tmp-sync/test4a/file1 tmp-sync/test4a/copy1 ../../xattrtool remove tmp-sync/test4a/copy1 tags > /dev/null 2>&1 ../../xattrtool remove tmp-sync/test4a/copy1 attr1 > /dev/null 2>&1 chmod -x tmp-sync/test4a/copy1 touch tmp-sync/test4a/copy1 dav_sync_push test4a "test 2: push failed" check_tmpout "1 file pushed" "test 2: wrong push counter" check_tmpout "0 conflicts" "test 2: wrong conflict counter (push)" check_tmpout "0 errors" "test 2: wrong error counter (push)" check_tmpout "copy" "test 2: no copy (push)" dav_sync_pull test4b "test 2: pull failed" check_tmpout "1 file pulled" "test 2: wrong pull counter" check_tmpout "0 conflicts" "test 2: wrong conflict counter (pull)" check_tmpout "0 errors" "test 2: wrong error counter (pull)" # check metadata MTIMEA1=`stat -c %Y tmp-sync/test4a/copy1 2> /dev/null` MTIMEB1=`stat -c %Y tmp-sync/test4b/copy1 2> /dev/null` if [ "$MTIMEA1" != "$MTIMEB1" ]; then echo "test 2: mtime not synced" exit 2 fi OUT=`tmp-sync/test4b/copy1 2> /dev/null` if [ $? -eq 0 ]; then echo "test 2: copy1 should be executable" exit 2 fi TAGS=`$DAV_SYNC_BIN list-tags -s test4b tmp-sync/test4b/copy1 > tmp-sync/out.txt 2> /dev/null` if [ $? -ne 0 ]; then echo "test 2: list-tags failed" exit 2 fi LN=`cat tmp-sync/out.txt | wc -l` if [ $LN -ne 0 ]; then echo "test 2: list-tags not empty" exit 2 fi