blob: 0857773526eeb16033f1b35744241931d23c6a39 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
|
#!/usr/bin/env bash
# SPDX-License-Identifier: LGPL-2.1-or-later
set -eux
set -o pipefail
# Make sure that the "stat" output is not locale dependent.
export LANG=C LC_ALL=C
# first, create file without suid/sgid
systemd-tmpfiles --create - <<EOF
f /tmp/xxx 0755 1 1 - -
f /tmp/yyy 0755 1 1 - -
EOF
test "$(stat -c %F:%u:%g:%a /tmp/xxx)" = "regular empty file:1:1:755"
test "$(stat -c %F:%u:%g:%a /tmp/yyy)" = "regular empty file:1:1:755"
# then, add suid/sgid
systemd-tmpfiles --create - <<EOF
f /tmp/xxx 04755
f /tmp/yyy 02755
EOF
test "$(stat -c %F:%u:%g:%a /tmp/xxx)" = "regular empty file:1:1:4755"
test "$(stat -c %F:%u:%g:%a /tmp/yyy)" = "regular empty file:1:1:2755"
# then, chown the files to somebody else
systemd-tmpfiles --create - <<EOF
f /tmp/xxx - 2 2
f /tmp/yyy - 2 2
EOF
test "$(stat -c %F:%u:%g:%a /tmp/xxx)" = "regular empty file:2:2:4755"
test "$(stat -c %F:%u:%g:%a /tmp/yyy)" = "regular empty file:2:2:2755"
# then, chown the files to a third user/group but also drop to a mask that has
# both more and fewer bits set
systemd-tmpfiles --create - <<EOF
f /tmp/xxx 0770 3 3
f /tmp/yyy 0770 3 3
EOF
test "$(stat -c %F:%u:%g:%a /tmp/xxx)" = "regular empty file:3:3:770"
test "$(stat -c %F:%u:%g:%a /tmp/yyy)" = "regular empty file:3:3:770"
# return to the beginning
systemd-tmpfiles --create - <<EOF
f /tmp/xxx 0755 1 1 - -
f /tmp/yyy 0755 1 1 - -
EOF
test "$(stat -c %F:%u:%g:%a /tmp/xxx)" = "regular empty file:1:1:755"
test "$(stat -c %F:%u:%g:%a /tmp/yyy)" = "regular empty file:1:1:755"
# remove everything
systemd-tmpfiles --remove - <<EOF
r /tmp/xxx
r /tmp/yyy
EOF
|