zuul
/
zuul
Code Issues Proposed changes
zuul/tests/unit
History
Tobias Henkel 9cbb681446
Fix plugin injection vulnerability 
Currently it is possible to inject speculative plugins into untrusted
jobs. These plugins are run locally on the executor and make it
possible to run arbitraty code within the bwrap context.

There are two problems here. First the path check is broken such it
never matches a plugin dir. Further we don't check paths residing
within playbook dirs.

Change-Id: Idf1b940de2be7819afeb2dbad943fad2ae7ebc55
 		2018-03-16 18:12:35 +01:00
..
__init__.py Move tests into test/unit 2017-01-24 10:18:38 -08:00
test_bubblewrap.py Write secrets to tmpfs 2017-08-19 08:08:19 -07:00
test_change_matcher.py Fix branch matching logic 2017-10-02 17:30:51 -04:00
test_clonemapper.py Tests: store debug logs on error 2017-02-06 10:10:48 -08:00
test_cloner_cmd.py Replace equals None with is None 2017-06-05 13:06:10 -05:00
test_configloader.py Do not call merger:cat when all config items are excluded 2018-02-07 12:12:25 +01:00
test_connection.py sql: add buildset.branch column 2018-02-21 02:03:34 +00:00
test_cross_crd.py Add cross-source tests 2018-01-16 09:37:59 -08:00
test_daemon.py Move tests into test/unit 2017-01-24 10:18:38 -08:00
test_disk_accountant.py Use nested tempfile fixture for cleanups 2018-02-06 15:18:45 -08:00
test_encryption.py Use nested tempfile fixture for cleanups 2018-02-06 15:18:45 -08:00
test_executor.py Add host/group vars 2018-02-15 08:57:32 -08:00
test_gerrit.py change assert(Not)Equals to assert(Not)Equal 2017-09-13 17:34:24 -06:00
test_gerrit_crd.py Support the fragment form of Gerrit URLs 2018-01-31 14:11:39 -08:00
test_gerrit_legacy_crd.py Fix dependency cycle false positive 2018-01-17 04:23:39 +00:00
test_git_driver.py Stabilize git driver tests 2018-01-17 09:53:18 -08:00
test_github_crd.py Implement Depends-On for github 2017-06-29 11:26:19 -07:00
test_github_driver.py Fix AttributeError when handle periodic job with github driver 2018-02-05 15:16:15 +08:00
test_github_requirements.py Match github model of granting admins write 2018-03-05 11:23:09 -08:00
test_inventory.py Add specific setup inventory 2017-12-28 18:13:44 +01:00
test_merger_repo.py Set remote url on every getRepo in merger 2018-02-13 17:01:09 +01:00
test_model.py Revert "Don't store references to secret objects from jobs" 2018-03-15 05:45:15 +00:00
test_multi_driver.py Remove status handling from FakeGithubConnection 2017-08-03 19:22:54 +00:00
test_nodepool.py Add support for shared ansible_host in inventory 2017-11-18 16:22:01 -05:00
test_openstack.py Use correct label casing in tests 2017-07-27 07:50:03 +02:00
test_push_reqs.py Ensure ref-updated jobs run with their ref 2017-08-02 16:56:18 -07:00
test_requirements.py Use correct label casing in tests 2017-07-27 07:50:03 +02:00
test_scheduler.py Decode gearman function into utf 2018-03-14 23:11:11 +11:00
test_ssh_agent.py Add SSH Agent Primitives and usage 2017-05-26 09:52:22 -07:00
test_stack_dump.py Several executor threading fixes 2017-10-17 09:49:29 -07:00
test_streaming.py Add test for fingergw on ipv4 / ipv6 addresses 2018-03-13 16:19:29 -04:00
test_v3.py Fix plugin injection vulnerability 2018-03-16 18:12:35 +01:00
test_web.py Add queue size to tenant overview 2018-03-08 07:27:33 +01:00
test_web_urls.py Use yarn and webpack to manage zuul-web javascript 2018-03-04 07:20:40 -06:00
test_zuultrigger.py Support cross-source dependencies 2018-01-16 09:37:40 -08:00