| Andrew Geissler | d583833 | 2022-05-27 11:33:10 -0500 | [diff] [blame^] | 1 | from oeqa.selftest.case import OESelftestTestCase |
| 2 | from oeqa.utils.commands import bitbake |
| 3 | |
| 4 | class GitCheck(OESelftestTestCase): |
| 5 | def test_git_intercept(self): |
| 6 | """ |
| 7 | Git binaries with CVE-2022-24765 fixed will refuse to operate on a |
| 8 | repository which is owned by a different user. This breaks our |
| 9 | do_install task as that runs inside pseudo, so the git repository is |
| 10 | owned by the build user but git is running as (fake)root. |
| 11 | |
| 12 | We have an intercept which disables pseudo, so verify that it works. |
| 13 | """ |
| 14 | bitbake("git-submodule-test -c test_git_as_user") |
| 15 | bitbake("git-submodule-test -c test_git_as_root") |