Running system tests with root privileges is potentially dangerous.
Only allow it when explicitly requested (by building with
--enable-developer).
# shellcheck source=conf.sh
. ${builddir}/conf.sh
+if [ "$(id -u)" -eq "0" ] && [ "@DEVELOPER_MODE@" != "yes" ]; then
+ echofail "Refusing to run test as root. Build with --enable-developer to override." >&2
+ exit 1
+fi
+
SYSTEMTESTTOP="$(cd -P -- "${builddir}" && pwd -P)"
if [ "$CYGWIN" ]; then
SYSTEMTESTTOP="$(cygpath -m "${SYSTEMTESTTOP}")"
[enable developer build settings])])
AS_IF([test "$enable_developer" = "yes"],
- [STD_CPPFLAGS="$STD_CPPFLAGS -DISC_MEM_DEFAULTFILL=1 -DISC_LIST_CHECKINIT=1"
+ [DEVELOPER_MODE=yes
+ STD_CPPFLAGS="$STD_CPPFLAGS -DISC_MEM_DEFAULTFILL=1 -DISC_LIST_CHECKINIT=1"
test "${enable_fixed_rrset+set}" = set || enable_fixed_rrset=yes
test "${enable_querytrace+set}" = set || enable_querytrace=yes
test "${with_cmocka+set}" = set || with_cmocka=yes
test "${enable_warn_error+set}" = set || enable_warn_error=yes
])
+AC_SUBST([DEVELOPER_MODE])
AC_SUBST([STD_CFLAGS])
AC_SUBST([STD_CPPFLAGS])
my %configtest;
my @substtest = ("CRYPTO",
+ "DEVELOPER_MODE",
"DNSTAP",
"FSTRM_CAPTURE",
"JSONSTATS",
# enable-developer expansion now
if ($enable_developer eq "yes") {
+ $configtest{"DEVELOPER_MODE"} = "yes";
$configdefh{"ISC_LIST_CHECKINIT"} = 1;
$enable_querytrace = "yes";
# no atf on WIN32
projects / thirdparty / bind9.git / commitdiff
