upstream/mercurial-mirror Files · tests/test-ctxmanager.py

convert: test for shell injection in git calls (SEC)...

convert: test for shell injection in git calls (SEC) CVE-2016-3069 (5/5) Before recent refactoring we were not escaping calls to git at all which made such injections possible. Let's have a test for that to avoid this problem in the future. Reported by Blake Burkhart.

Bryan O'Sullivan - - Load All Authors

File last commit:

r27786:4a7dc29b default


                r28663:ae279d4a

3.7.3 stable

Download file

             test-ctxmanager.py
        
                    79 lines
            
             | 2.4 KiB
            
                | text/x-python
            
             |
                PythonLexer
            
             / tests / test-ctxmanager.py
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      from __future__ import absolute_import

      import silenttestrunner

      import unittest

      from mercurial.util import ctxmanager

      class contextmanager(object):

          def __init__(self, name, trace):

              self.name = name

              self.entered = False

              self.exited = False

              self.trace = trace

          def __enter__(self):

              self.entered = True

              self.trace(('enter', self.name))

              return self

          def __exit__(self, exc_type, exc_val, exc_tb):

              self.exited = exc_type, exc_val, exc_tb

              self.trace(('exit', self.name))

          def __repr__(self):

              return '<ctx %r>' % self.name

      class ctxerror(Exception):

          pass

      class raise_on_enter(contextmanager):

          def __enter__(self):

              self.trace(('raise', self.name))

              raise ctxerror(self.name)

      class raise_on_exit(contextmanager):

          def __exit__(self, exc_type, exc_val, exc_tb):

              self.trace(('raise', self.name))

              raise ctxerror(self.name)

      def ctxmgr(name, trace):

          return lambda: contextmanager(name, trace)

      class test_ctxmanager(unittest.TestCase):

          def test_basics(self):

              trace = []

              addtrace = trace.append

              with ctxmanager(ctxmgr('a', addtrace), ctxmgr('b', addtrace)) as c:

                  a, b = c.enter()

                  c.atexit(addtrace, ('atexit', 'x'))

                  c.atexit(addtrace, ('atexit', 'y'))

              self.assertEqual(trace, [('enter', 'a'), ('enter', 'b'),

                                       ('atexit', 'y'), ('atexit', 'x'),

                                       ('exit', 'b'), ('exit', 'a')])

          def test_raise_on_enter(self):

              trace = []

              addtrace = trace.append

              def go():

                  with ctxmanager(ctxmgr('a', addtrace),

                                 lambda: raise_on_enter('b', addtrace)) as c:

                      c.enter()

                      addtrace('unreachable')

              self.assertRaises(ctxerror, go)

              self.assertEqual(trace, [('enter', 'a'), ('raise', 'b'), ('exit', 'a')])

          def test_raise_on_exit(self):

              trace = []

              addtrace = trace.append

              def go():

                  with ctxmanager(ctxmgr('a', addtrace),

                                 lambda: raise_on_exit('b', addtrace)) as c:

                      c.enter()

                      addtrace('running')

              self.assertRaises(ctxerror, go)

              self.assertEqual(trace, [('enter', 'a'), ('enter', 'b'), 'running',

                                       ('raise', 'b'), ('exit', 'a')])

      if __name__ == '__main__':

          silenttestrunner.main(__name__)

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				from __future__ import absolute_import

				import silenttestrunner
				import unittest

				from mercurial.util import ctxmanager

				class contextmanager(object):
				def __init__(self, name, trace):
				self.name = name
				self.entered = False
				self.exited = False
				self.trace = trace

				def __enter__(self):
				self.entered = True
				self.trace(('enter', self.name))
				return self

				def __exit__(self, exc_type, exc_val, exc_tb):
				self.exited = exc_type, exc_val, exc_tb
				self.trace(('exit', self.name))

				def __repr__(self):
				return '<ctx %r>' % self.name

				class ctxerror(Exception):
				pass

				class raise_on_enter(contextmanager):
				def __enter__(self):
				self.trace(('raise', self.name))
				raise ctxerror(self.name)

				class raise_on_exit(contextmanager):
				def __exit__(self, exc_type, exc_val, exc_tb):
				self.trace(('raise', self.name))
				raise ctxerror(self.name)

				def ctxmgr(name, trace):
				return lambda: contextmanager(name, trace)

				class test_ctxmanager(unittest.TestCase):
				def test_basics(self):
				trace = []
				addtrace = trace.append
				with ctxmanager(ctxmgr('a', addtrace), ctxmgr('b', addtrace)) as c:
				a, b = c.enter()
				c.atexit(addtrace, ('atexit', 'x'))
				c.atexit(addtrace, ('atexit', 'y'))
				self.assertEqual(trace, [('enter', 'a'), ('enter', 'b'),
				('atexit', 'y'), ('atexit', 'x'),
				('exit', 'b'), ('exit', 'a')])

				def test_raise_on_enter(self):
				trace = []
				addtrace = trace.append
				def go():
				with ctxmanager(ctxmgr('a', addtrace),
				lambda: raise_on_enter('b', addtrace)) as c:
				c.enter()
				addtrace('unreachable')
				self.assertRaises(ctxerror, go)
				self.assertEqual(trace, [('enter', 'a'), ('raise', 'b'), ('exit', 'a')])

				def test_raise_on_exit(self):
				trace = []
				addtrace = trace.append
				def go():
				with ctxmanager(ctxmgr('a', addtrace),
				lambda: raise_on_exit('b', addtrace)) as c:
				c.enter()
				addtrace('running')
				self.assertRaises(ctxerror, go)
				self.assertEqual(trace, [('enter', 'a'), ('enter', 'b'), 'running',
				('raise', 'b'), ('exit', 'a')])

				if __name__ == '__main__':
				silenttestrunner.main(__name__)