tests/sources/tar.py: chown+chmod instead of giving 777 permissionstlater/tar-test-security

While this is deep in our test suite, and should therefore never create files that leak information, our code security linter complains. So instead we perform a slightly safer chown + chmod to ensure we have write permissions, because there is no practical reason not to and it makes for nicer code to copy + paste.
author: Tristan Maat <tristan.maat@codethink.co.uk> 2019-12-09 17:38:34 +0000
committer: Tristan Maat <tristan.maat@codethink.co.uk> 2019-12-09 17:38:34 +0000
commit: 02f9939163b54b61110e99fec89fa03dad591a17 (patch)
tree: 02ab305c268a650367d624e2d1fede2ec19a4e0c
parent: 142ada1c7ad891c2fceadd525debc7075bf0fd03 (diff)
download: buildstream-tlater/tar-test-security.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/tests/sources/tar.py b/tests/sources/tar.py
index f5f3dde2d..acf0a99a5 100644
--- a/tests/sources/tar.py
+++ b/tests/sources/tar.py
@@ -306,7 +306,8 @@ def test_read_only_dir(cli, tmpdir, datafiles, tar_name, base_dir):
 
         # Make tmpdir deletable no matter what happens
         def make_dir_writable(_fn, path, _excinfo):
-            os.chmod(os.path.dirname(path), 0o777)
+            os.chown(os.path.dirname(path), os.geteuid())
+            os.chmod(os.path.dirname(path), 0o700)
             if os.path.isdir(path):
                 os.rmdir(path)
             else:
author	Tristan Maat <tristan.maat@codethink.co.uk>	2019-12-09 17:38:34 +0000
committer	Tristan Maat <tristan.maat@codethink.co.uk>	2019-12-09 17:38:34 +0000
commit	02f9939163b54b61110e99fec89fa03dad591a17 (patch)
tree	02ab305c268a650367d624e2d1fede2ec19a4e0c
parent	142ada1c7ad891c2fceadd525debc7075bf0fd03 (diff)
download	buildstream-tlater/tar-test-security.tar.gz