upstream/mercurial-mirror Files · tests/test-bugzilla.t

dispatch: protect against malicious 'hg serve --stdio' invocations (sec)...

dispatch: protect against malicious 'hg serve --stdio' invocations (sec) Some shared-ssh installations assume that 'hg serve --stdio' is a safe command to run for minimally trusted users. Unfortunately, the messy implementation of argument parsing here meant that trying to access a repo named '--debugger' would give the user a pdb prompt, thereby sidestepping any hoped-for sandboxing. Serving repositories over HTTP(S) is unaffected. We're not currently hardening any subcommands other than 'serve'. If your service exposes other commands to users with arbitrary repository names, it is imperative that you defend against repository names of '--debugger' and anything starting with '--config'. The read-only mode of hg-ssh stopped working because it provided its hook configuration to "hg serve --stdio" via --config parameter. This is banned for security reasons now. This patch switches it to directly call ui.setconfig(). If your custom hosting infrastructure relies on passing --config to "hg serve --stdio", you'll need to find a different way to get that configuration into Mercurial, either by using ui.setconfig() as hg-ssh does in this patch, or by placing an hgrc file someplace where Mercurial will read it. mitrandir@fb.com provided some extra fixes for the dispatch code and for hg-ssh in places that I overlooked.

Matt Harbison - - Load All Authors

File last commit:

r29102:22c53b3a default


                r32050:77eaf953

4.1.3 stable

Download file

             test-bugzilla.t
        
                    97 lines
            
             | 2.8 KiB
            
                | text/troff
            
             |
                Tads3Lexer
            
             / tests / test-bugzilla.t
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      mock bugzilla driver for testing template output:

        $ cat <<EOF > bzmock.py

        > from __future__ import absolute_import

        > from mercurial import extensions

        > 

        > def extsetup(ui):

        >     bugzilla = extensions.find('bugzilla')

        >     class bzmock(bugzilla.bzaccess):

        >         def __init__(self, ui):

        >             super(bzmock, self).__init__(ui)

        >             self._logfile = ui.config('bugzilla', 'mocklog')

        >         def updatebug(self, bugid, newstate, text, committer):

        >             with open(self._logfile, 'a') as f:

        >                 f.write('update bugid=%r, newstate=%r, committer=%r\n'

        >                         % (bugid, newstate, committer))

        >                 f.write('----\n' + text + '\n----\n')

        >         def notify(self, bugs, committer):

        >             with open(self._logfile, 'a') as f:

        >                 f.write('notify bugs=%r, committer=%r\n'

        >                         % (bugs, committer))

        >     bugzilla.bugzilla._versions['mock'] = bzmock

        > EOF

      set up mock repository:

        $ hg init mockremote

        $ cat <<EOF > mockremote/.hg/hgrc

        > [extensions]

        > bugzilla =

        > bzmock = $TESTTMP/bzmock.py

        > 

        > [bugzilla]

        > version = mock

        > mocklog = $TESTTMP/bzmock.log

        > 

        > [hooks]

        > incoming.bugzilla = python:hgext.bugzilla.hook

        > 

        > [web]

        > baseurl=http://example.org/hg

        > 

        > %include $TESTTMP/bzstyle.hgrc

        > EOF

        $ hg clone -q mockremote mocklocal

      push with default template:

        $ echo '[bugzilla]' > bzstyle.hgrc

        $ echo foo > mocklocal/foo

        $ hg ci -R mocklocal -Aqm 'Fixes bug 123'

        $ hg -R mocklocal push -q

        $ cat bzmock.log && rm bzmock.log

        update bugid=123, newstate={}, committer='test'

        ----

        changeset 7875a8342c6f in repo $TESTTMP/mockremote refers to bug 123. (glob)

        details:

        	Fixes bug 123

        ----

        notify bugs={123: {}}, committer='test'

      push with style:

        $ cat <<EOF > bzstyle.map

        > changeset = "{node|short} refers to bug {bug}."

        > EOF

        $ echo "style = $TESTTMP/bzstyle.map" >> bzstyle.hgrc

        $ echo foo >> mocklocal/foo

        $ hg ci -R mocklocal -qm 'Fixes bug 456'

        $ hg -R mocklocal push -q

        $ cat bzmock.log && rm bzmock.log

        update bugid=456, newstate={}, committer='test'

        ----

        2808b172464b refers to bug 456.

        ----

        notify bugs={456: {}}, committer='test'

      push with template (overrides style):

        $ cat <<EOF >> bzstyle.hgrc

        > template = Changeset {node|short} in {root|basename}.

        >            {hgweb}/rev/{node|short}\n

        >            {desc}

        > EOF

        $ echo foo >> mocklocal/foo

        $ hg ci -R mocklocal -qm 'Fixes bug 789'

        $ hg -R mocklocal push -q

        $ cat bzmock.log && rm bzmock.log

        update bugid=789, newstate={}, committer='test'

        ----

        Changeset a770f3e409f2 in mockremote.

        http://example.org/hg/rev/a770f3e409f2

        Fixes bug 789

        ----

        notify bugs={789: {}}, committer='test'

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				mock bugzilla driver for testing template output:

				$ cat <<EOF > bzmock.py
				> from __future__ import absolute_import
				> from mercurial import extensions
				>
				> def extsetup(ui):
				> bugzilla = extensions.find('bugzilla')
				> class bzmock(bugzilla.bzaccess):
				> def __init__(self, ui):
				> super(bzmock, self).__init__(ui)
				> self._logfile = ui.config('bugzilla', 'mocklog')
				> def updatebug(self, bugid, newstate, text, committer):
				> with open(self._logfile, 'a') as f:
				> f.write('update bugid=%r, newstate=%r, committer=%r\n'
				> % (bugid, newstate, committer))
				> f.write('----\n' + text + '\n----\n')
				> def notify(self, bugs, committer):
				> with open(self._logfile, 'a') as f:
				> f.write('notify bugs=%r, committer=%r\n'
				> % (bugs, committer))
				> bugzilla.bugzilla._versions['mock'] = bzmock
				> EOF

				set up mock repository:

				$ hg init mockremote
				$ cat <<EOF > mockremote/.hg/hgrc
				> [extensions]
				> bugzilla =
				> bzmock = $TESTTMP/bzmock.py
				>
				> [bugzilla]
				> version = mock
				> mocklog = $TESTTMP/bzmock.log
				>
				> [hooks]
				> incoming.bugzilla = python:hgext.bugzilla.hook
				>
				> [web]
				> baseurl=http://example.org/hg
				>
				> %include $TESTTMP/bzstyle.hgrc
				> EOF

				$ hg clone -q mockremote mocklocal

				push with default template:

				$ echo '[bugzilla]' > bzstyle.hgrc
				$ echo foo > mocklocal/foo
				$ hg ci -R mocklocal -Aqm 'Fixes bug 123'
				$ hg -R mocklocal push -q
				$ cat bzmock.log && rm bzmock.log
				update bugid=123, newstate={}, committer='test'
				----
				changeset 7875a8342c6f in repo $TESTTMP/mockremote refers to bug 123. (glob)
				details:
				Fixes bug 123
				----
				notify bugs={123: {}}, committer='test'

				push with style:

				$ cat <<EOF > bzstyle.map
				> changeset = "{node\|short} refers to bug {bug}."
				> EOF
				$ echo "style = $TESTTMP/bzstyle.map" >> bzstyle.hgrc
				$ echo foo >> mocklocal/foo
				$ hg ci -R mocklocal -qm 'Fixes bug 456'
				$ hg -R mocklocal push -q
				$ cat bzmock.log && rm bzmock.log
				update bugid=456, newstate={}, committer='test'
				----
				2808b172464b refers to bug 456.
				----
				notify bugs={456: {}}, committer='test'

				push with template (overrides style):

				$ cat <<EOF >> bzstyle.hgrc
				> template = Changeset {node\|short} in {root\|basename}.
				> {hgweb}/rev/{node\|short}\n
				> {desc}
				> EOF
				$ echo foo >> mocklocal/foo
				$ hg ci -R mocklocal -qm 'Fixes bug 789'
				$ hg -R mocklocal push -q
				$ cat bzmock.log && rm bzmock.log
				update bugid=789, newstate={}, committer='test'
				----
				Changeset a770f3e409f2 in mockremote.
				http://example.org/hg/rev/a770f3e409f2

				Fixes bug 789
				----
				notify bugs={789: {}}, committer='test'