archive
/
mitogen
mirror of https://github.com/mitogen-hq/mitogen.git
1
0
Fork 0
Code Releases Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
docs-master
master
stable
pr683
0.2-release
pull-request-checklist
dmw
circleci-project-setup
new-serialization
gh-pages
redirect
issue531
issue510
issue260
issue72
wip-fakessh-exit-status
v0.2.10rc1
v0.3.0rc1
v0.2.9
v0.2.8
v0.2.7
v0.2.6
v0.2.5
v0.2.4
v0.2.3
working-django
working
v0.2.0
v0.2.1
v0.2.10
v0.2.10-rc.0
v0.2.2
v0.3.0
v0.3.0-rc.0
v0.3.1
v0.3.10
v0.3.11
v0.3.12
v0.3.13
v0.3.14
v0.3.15
v0.3.16
v0.3.17
v0.3.18
v0.3.19
v0.3.2
v0.3.20
v0.3.21
v0.3.22
v0.3.23
v0.3.24
v0.3.25
v0.3.25a1
v0.3.25a2
v0.3.25a3
v0.3.25b1
v0.3.26
v0.3.27
v0.3.28
v0.3.29
v0.3.3
v0.3.30
v0.3.31
v0.3.32
v0.3.33
v0.3.34
v0.3.35
v0.3.36
v0.3.4
v0.3.5
v0.3.6
v0.3.7
v0.3.8
v0.3.9
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '8a34b925a4'
${ noResults }
mitogen/tests/ansible
History
Alex Willmer 8a34b925a4 tests: Re-enable become/sudo tests, fix them on macOS runners 
The tasks in tests/imageprep/_user_accounts.yml that create users did not
specify a primary group for those users - this left the decision to Ansible's
user module, and/or the underlying OS. In Ansible 9+ (ansible-core 2.16+ the
user module defaults to primary group "staff." Earlier don't supply a default,
which releases probably results in a primary group nameed "None" (due to
stringifying the Python singleton of the same name), or whatever the macOS
Directory Services has for no data/NULL.

The invalid GID 4294967295 (MAX_UINT32 == 2**32-1) in the sudo error probably
enters the mix via something similar to sudo CVE-2019-14287.

Fixes #692

See
- https://github.com/ansible/ansible/pull/79999
- https://github.com/ansible/ansible/commit/c69c83c962f987c78af98da0746527df
- https://www.sudo.ws/security/advisories/minus_1_uid/

> Bruce Wayne : [confused]  Am I meant to understand any of that?
> Lucius Fox : Not at all, I just wanted you to know how hard it was.
> -- Batman Begins
 		1 year ago
..
bench tests: Fix duplicate local task executions 2 years ago
files tests: Enable su tests under vanilla Ansible >= 2.11 2 years ago
hosts ansible_mitogen: Template ssh_*_args connection options 1 year ago
integration tests: Re-enable become/sudo tests, fix them on macOS runners 1 year ago
lib tests: Use a subprocess to check discovered python == running 1 year ago
regression tests: Improve Ansible fail_msg formatting 1 year ago
setup tests: Add regression for add_host with host_key_checking 2 years ago
soak tests: Replace uses of ``include:``, unify skipping of mitogen only tests 2 years ago
templates ansible_mitogen: Template ssh_*_args connection options 1 year ago
tests trivia: Fix trailing whitespace 1 year ago
.gitignore Merge devel/290 @ 79b979ec8544ef5d8620c64068d4a42fabf50415 6 years ago
Makefile tests: import custom binaries for tests 7 years ago
README.md tests/ansible/README: Replace reference with actual link 4 years ago
all.yml Revert "Revert "fixed tests for ansible 2.12"" 4 years ago
ansible.cfg tests: Ignore inventory files of inactive tests & benchmarks 1 year ago
ara_env.py tests: import ara_env helper script. 7 years ago
compare_output_test.py tests: prevent compare_output_test running on import. 7 years ago
mitogen_ansible_playbook.py tests: Remove unused imports 4 years ago
requirements.txt CI: Workaround "No module named 'setuptools.command.test'" 1 year ago
run_ansible_playbook.py tests: Eliminate MITOGEN_INVENTORY_FILE 3 years ago

README.md

tests/ansible Directory

This is an an organically growing collection of integration and regression tests used for development and end-user bug reports.

It will be tidied up over time, meanwhile, the playbooks here are a useful demonstrator for what does and doesn't work.

Preparation

See ../image_prep/README.md.

run_ansible_playbook.py

This is necessary to set some environment variables used by future tests, as there appears to be no better way to inject them into the top-level process environment before the Mitogen connection process forks.

Running Everything

ANSIBLE_STRATEGY=mitogen_linear ./run_ansible_playbook.py all.yml

hosts/ and common-hosts

To support running the tests against a dev machine that has the requisite user accounts, the the default inventory is a directory containing a 'localhost' file that defines 'localhost' to be named 'target' in Ansible inventory, and a symlink to 'common-hosts', which defines additional targets that all derive from 'target'.

This allows ansible_tests.sh to reuse the common-hosts definitions while replacing localhost as the test target by creating a new directory that similarly symlinks in common-hosts.

There may be a better solution for this, but it works fine for now.