blob: 7a8ea192adc33809a8fa362719cb2f46425c562f (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
|
#!/bin/bash
. $(dirname $0)/../include.rc
. $(dirname $0)/../nfs.rc
cleanup
# prepare the users and groups
NEW_USER=bug1053579
NEW_UID=1053579
NEW_GID=1053579
LAST_GID=1053779
NEW_GIDS=${NEW_GID}
# create a user that belongs to many groups
for GID in $(seq ${NEW_GID} ${LAST_GID})
do
groupadd -o -g ${GID} ${NEW_USER}-${GID}
NEW_GIDS="${NEW_GIDS},${NEW_USER}-${GID}"
done
TEST useradd -o -M -u ${NEW_UID} -g ${NEW_GID} -G ${NEW_USER}-${NEW_GIDS} ${NEW_USER}
# preparation done, start the tests
TEST glusterd
TEST pidof glusterd
TEST $CLI volume create $V0 $H0:$B0/${V0}1
TEST $CLI volume set $V0 nfs.server-aux-gids on
TEST $CLI volume start $V0
EXPECT_WITHIN $NFS_EXPORT_TIMEOUT "1" is_nfs_export_available
# mount the volume
TEST mount_nfs $H0:/$V0 $N0 nolock
TEST glusterfs --volfile-id=/$V0 --volfile-server=$H0 $M0
# the actual test, this used to crash
su -c "stat $N0/. > /dev/null" ${NEW_USER}
TEST [ $? -eq 0 ]
# create a file that only a user in a high-group can access
echo 'Hello World!' > $N0/README
chgrp ${LAST_GID} $N0/README
chmod 0640 $N0/README
su -c "cat $N0/README 2>&1 > /dev/null" ${NEW_USER}
TEST [ $? -ne 0 ]
# This passes only on build.gluster.org, not reproducible on other machines?!
#su -c "cat $M0/README 2>&1 > /dev/null" ${NEW_USER}
#TEST [ $? -ne 0 ]
# enable server.manage-gids and things should work
TEST $CLI volume set $V0 server.manage-gids on
su -c "cat $N0/README 2>&1 > /dev/null" ${NEW_USER}
TEST [ $? -eq 0 ]
su -c "cat $M0/README 2>&1 > /dev/null" ${NEW_USER}
TEST [ $? -eq 0 ]
# cleanup
userdel --force ${NEW_USER}
for GID in $(seq ${NEW_GID} ${LAST_GID})
do
groupdel ${NEW_USER}-${GID}
done
rm -f $N0/README
TEST umount $N0
TEST umount $M0
TEST $CLI volume stop $V0
TEST $CLI volume delete $V0
cleanup
|