# control-files -- lintian check script -*- perl -*- # Copyright (C) 1998 Christian Schwarz and Richard Braakman # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, you can find it on the World Wide # Web at http://www.gnu.org/copyleft/gpl.html, or write to the Free # Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, # MA 02110-1301, USA. package Lintian::control_files; use strict; use warnings; use Util; use Lintian::Tags qw(tag); sub octify { my (undef, $val) = @_; return oct($val); } my $DEB_PERMISSIONS = Lintian::Data->new('control-files/deb-permissions', qr/\s++/o, \&octify); my $UDEB_PERMISSIONS = Lintian::Data->new('control-files/udeb-permissions', qr/\s++/o, \&octify); sub run { my $pkg = shift; my $type = shift; my $info = shift; my $ctrl = $type eq 'udeb' ? $UDEB_PERMISSIONS : $DEB_PERMISSIONS; my $ctrl_alt = $type eq 'udeb' ? $DEB_PERMISSIONS : $UDEB_PERMISSIONS; # process control-index file my $cindex = $info->control_index; foreach my $file (sort keys %$cindex) { next unless $file; my $cindex_info = $cindex->{$file}; my $owner; my $operm; my $experm; # the control.tar.gz should only contain files (and the "root" # dir, but that /should/ the "empty file" case in the beginning of # the loop) In any event, allow directories just in case - the # check here is mostly to catch symlinks (and "devices" etc.) if ($cindex_info->{type} !~ m/^[-d]$/o) { tag 'control-file-is-not-a-file', $file; # Doing further checks is probably not going to yield anything # remotely useful. next; } # valid control file? unless ( $ctrl->known($file) ) { if ( $ctrl_alt->known($file) ) { tag 'not-allowed-control-file', $file; next; } else { tag 'unknown-control-file', $file; next; } } $experm = $ctrl->value($file); # I'm not sure about the udeb case if ($type ne 'udeb' and $cindex_info->{size} == 0) { tag 'control-file-is-empty', $file; } # skip `control' control file (that's an exception: dpkg doesn't care and # this file isn't installed on the systems anyways) next if $file eq 'control'; $operm = $cindex_info->{operm}; # correct permissions? unless ($operm == $experm) { tag 'control-file-has-bad-permissions', sprintf('%s %04o != %04o', $file, $operm, $experm); } $owner = $cindex_info->{owner} . '/' . $cindex_info->{group}; # correct owner? unless ($owner eq 'root/root') { tag 'control-file-has-bad-owner', "$file $owner != root/root"; } # for other maintainer scripts checks, see the scripts check } close IN; } # 1; # Local Variables: # indent-tabs-mode: nil # cperl-indent-level: 4 # End: # vim: syntax=perl sw=4 sts=4 sr et