diff --git a/tests/basic-test.sh b/tests/basic-test.sh index ba88cc7317..5434449608 100644 --- a/tests/basic-test.sh +++ b/tests/basic-test.sh @@ -21,7 +21,7 @@ set -euo pipefail -echo "1..$((88 + ${extra_basic_tests:-0}))" +echo "1..$((85 + ${extra_basic_tests:-0}))" CHECKOUT_U_ARG="" CHECKOUT_H_ARGS="-H" @@ -1013,17 +1013,6 @@ stat '--format=%Y' test2-checkout/baz/deeper > deeper-mtime assert_file_has_content deeper-mtime 0 echo "ok content mtime" -cd ${test_tmpdir} -rm -rf test2-checkout -mkdir -p test2-checkout -cd test2-checkout -mkfifo afifo -if $OSTREE commit ${COMMIT_ARGS} -b test2 -s "Attempt to commit a FIFO" 2>../errmsg; then - assert_not_reached "Committing a FIFO unexpetedly succeeded!" - assert_file_has_content ../errmsg "Unsupported file type" -fi -echo "ok commit of fifo was rejected" - cd ${test_tmpdir} rm repo2 -rf mkdir repo2 @@ -1162,22 +1151,3 @@ if test "$(id -u)" != "0"; then else echo "ok # SKIP not run when root" fi - -cd ${test_tmpdir} -rm -rf test2-checkout -mkdir -p test2-checkout -cd test2-checkout -touch blah -stat --printf="%.Y\n" ${test_tmpdir}/repo > ${test_tmpdir}/timestamp-orig.txt -$OSTREE commit ${COMMIT_ARGS} -b test2 -s "Should bump the mtime" -stat --printf="%.Y\n" ${test_tmpdir}/repo > ${test_tmpdir}/timestamp-new.txt -cd .. -if cmp timestamp-{orig,new}.txt; then - assert_not_reached "failed to update mtime on repo" -fi -echo "ok mtime updated" - -cd ${test_tmpdir} -$OSTREE init --mode=bare --repo=repo-extensions -assert_has_dir repo-extensions/extensions -echo "ok extensions dir" diff --git a/tests/inst/.gitignore b/tests/inst/.gitignore new file mode 100644 index 0000000000..2c96eb1b65 --- /dev/null +++ b/tests/inst/.gitignore @@ -0,0 +1,2 @@ +target/ +Cargo.lock diff --git a/tests/inst/Cargo.toml b/tests/inst/Cargo.toml new file mode 100644 index 0000000000..7e6dd32c08 --- /dev/null +++ b/tests/inst/Cargo.toml @@ -0,0 +1,32 @@ +[package] +name = "ostree-test" +version = "0.1.0" +authors = ["Colin Walters "] +edition = "2018" + +[[bin]] +name = "ostree-test" +path = "src/insttest.rs" + +[dependencies] +clap = "2.32.0" +structopt = "0.2" +commandspec = "0.12.2" +anyhow = "1.0" +tempfile = "3.1.0" +gio = "0.8" +ostree = { version = "0.7.1", features = ["v2020_1"] } +libtest-mimic = "0.2.0" +twoway = "0.2.1" +hyper = "0.13" +futures = "0.3.4" +http = "0.2.0" +hyper-staticfile = "0.5.1" +tokio = { version = "0.2", features = ["full"] } +futures-util = "0.3.1" +base64 = "0.12.0" + +# See https://github.com/tcr/commandspec/pulls?q=is%3Apr+author%3Acgwalters+ +[patch.crates-io] +commandspec = { git = "https://github.com/cgwalters/commandspec", branch = 'walters-master' } +#commandspec = { path = "/var/srv/walters/src/github/tcr/commandspec" } diff --git a/tests/inst/src/insttest.rs b/tests/inst/src/insttest.rs new file mode 100644 index 0000000000..732610fca7 --- /dev/null +++ b/tests/inst/src/insttest.rs @@ -0,0 +1,39 @@ +use anyhow::Result; +// use structopt::StructOpt; +// // https://github.com/clap-rs/clap/pull/1397 +// #[macro_use] +// extern crate clap; + +mod repobin; +mod sysroot; +mod test; + +fn nondestructive_tests() -> Vec { + repobin::tests() + .into_iter() + .chain(sysroot::tests().into_iter()) + .collect() +} + +fn run_test(test: &test::Test) -> libtest_mimic::Outcome { + if let Err(e) = (test.data)() { + libtest_mimic::Outcome::Failed { + msg: Some(e.to_string()), + } + } else { + libtest_mimic::Outcome::Passed + } +} + +fn main() -> Result<()> { + // Ensure we're always in tempdir so we can rely on it globally + let tmp_dir = tempfile::Builder::new() + .prefix("ostree-insttest-top") + .tempdir()?; + std::env::set_current_dir(tmp_dir.path())?; + + let args = libtest_mimic::Arguments::from_args(); + let tests = nondestructive_tests(); + + libtest_mimic::run_tests(&args, tests, run_test).exit(); +} diff --git a/tests/inst/src/repobin.rs b/tests/inst/src/repobin.rs new file mode 100644 index 0000000000..90f4f84a71 --- /dev/null +++ b/tests/inst/src/repobin.rs @@ -0,0 +1,135 @@ +//! Tests that mostly use the CLI and operate on temporary +//! repositories. + +use std::path::Path; + +use anyhow::{Context, Result}; +use commandspec::{sh_command, sh_execute}; +use tokio::runtime::Runtime; + +use crate::test::*; + +pub(crate) fn tests() -> impl IntoIterator { + crate::deftests_map!( + crate::test::with_tmpdir, + test_nofifo, + test_mtime, + test_extensions, + test_pull_basicauth + ) +} + +fn test_nofifo(tmp_dir: &Path) -> Result<()> { + sh_execute!( + r"cd {tmp_dir} + ostree --repo=repo init --mode=archive + mkdir tmproot + mkfifo tmproot/afile +", + tmp_dir = tmp_dir.to_str() + )?; + cmd_fails_with( + sh_command!( + r#"cd {tmp_dir} +ls -al +ostree --repo=repo commit -b fifotest -s "commit fifo" --tree=dir=./tmproot"#, + tmp_dir = tmp_dir.to_str() + ) + .unwrap(), + "Not a regular file or symlink", + )?; + Ok(()) +} + +fn test_mtime(tmp_dir: &Path) -> Result<()> { + sh_execute!( + r"cd {tmp_dir} + ostree --repo=repo init --mode=archive + mkdir tmproot + echo afile > tmproot/afile + ostree --repo=repo commit -b test --tree=dir=tmproot >/dev/null +", + tmp_dir = tmp_dir.to_str() + )?; + let ts = tmp_dir.join("repo").metadata()?.modified().unwrap(); + sh_execute!( + r#"cd {tmp_dir} + ostree --repo=repo commit -b test -s "bump mtime" --tree=dir=tmproot >/dev/null"#, + tmp_dir = tmp_dir.to_str() + )?; + assert_ne!(ts, tmp_dir.join("repo").metadata()?.modified().unwrap()); + Ok(()) +} + +fn test_extensions(tmp_dir: &Path) -> Result<()> { + sh_execute!( + r"ostree --repo={tmp_dir}/repo init --mode=bare", + tmp_dir = tmp_dir.to_str() + )?; + assert!(tmp_dir.join("repo/extensions").exists()); + Ok(()) +} + +async fn impl_test_pull_basicauth(tmp_dir: &Path) -> Result<()> { + let opts = TestHttpServerOpts { + basicauth: true, + ..Default::default() + }; + let serverrepo = tmp_dir.join("server/repo"); + std::fs::create_dir_all(&serverrepo)?; + let addr = http_server(&serverrepo, opts).await?; + let tmp_dir = tmp_dir.to_path_buf(); + tokio::task::spawn_blocking(move || -> Result<()> { + let baseuri = http::Uri::from_maybe_shared(format!("http://{}/", addr).into_bytes())?; + let unauthuri = + http::Uri::from_maybe_shared(format!("http://unknown:badpw@{}/", addr).into_bytes())?; + let authuri = http::Uri::from_maybe_shared( + format!("http://{}@{}/", TEST_HTTP_BASIC_AUTH, addr).into_bytes(), + )?; + let osroot = tmp_dir.join("osroot"); + mkroot(&osroot)?; + sh_execute!( + r#"cd {tmp_dir} + ostree --repo={serverrepo} init --mode=archive + ostree --repo={serverrepo} commit -b os --tree=dir={osroot} >/dev/null + mkdir client + cd client + ostree --repo=repo init --mode=archive + ostree --repo=repo remote add --set=gpg-verify=false origin-unauth {baseuri} + ostree --repo=repo remote add --set=gpg-verify=false origin-badauth {unauthuri} + ostree --repo=repo remote add --set=gpg-verify=false origin-goodauth {authuri} + "#, + tmp_dir = tmp_dir.to_str(), + osroot = osroot.to_str(), + serverrepo = serverrepo.to_str(), + baseuri = baseuri.to_string(), + unauthuri = unauthuri.to_string(), + authuri = authuri.to_string() + )?; + for rem in &["unauth", "badauth"] { + cmd_fails_with( + sh_command!( + r#"ostree --repo={tmp_dir}/client/repo pull origin-{rem} os >/dev/null"#, + tmp_dir = tmp_dir.to_str(), + rem = *rem + ) + .unwrap(), + "HTTP 403", + ) + .context(rem)?; + } + sh_execute!( + r#"ostree --repo={tmp_dir}/client/repo pull origin-goodauth os >/dev/null"#, + tmp_dir = tmp_dir.to_str() + )?; + Ok(()) + }) + .await??; + Ok(()) +} + +fn test_pull_basicauth(tmp_dir: &Path) -> Result<()> { + let mut rt = Runtime::new()?; + rt.block_on(async move { impl_test_pull_basicauth(tmp_dir).await })?; + Ok(()) +} diff --git a/tests/inst/src/sysroot.rs b/tests/inst/src/sysroot.rs new file mode 100644 index 0000000000..c2beb4ae93 --- /dev/null +++ b/tests/inst/src/sysroot.rs @@ -0,0 +1,38 @@ +//! Tests that mostly use the API and access the booted sysroot read-only. + +use anyhow::Result; +use gio::prelude::*; +use ostree::prelude::*; + +use crate::test::*; + +pub(crate) fn tests() -> impl IntoIterator { + let mut tests = crate::deftests!(test_sysroot_ro); + if !std::path::Path::new("/run/ostree-booted").exists() { + for t in &mut tests { + t.is_ignored = true + } + }; + tests +} + +fn test_sysroot_ro() -> Result<()> { + let cancellable = Some(gio::Cancellable::new()); + let sysroot = ostree::Sysroot::new_default(); + sysroot.load(cancellable.as_ref())?; + assert!(sysroot.is_booted()); + + let booted = sysroot.get_booted_deployment().expect("booted deployment"); + assert!(!booted.is_staged()); + let repo = sysroot.repo().expect("repo"); + + let csum = booted.get_csum().expect("booted csum"); + let csum = csum.as_str(); + + let (root, rev) = repo.read_commit(csum, cancellable.as_ref())?; + assert_eq!(rev, csum); + let root = root.downcast::().expect("downcast"); + root.ensure_resolved()?; + + Ok(()) +} diff --git a/tests/inst/src/test.rs b/tests/inst/src/test.rs new file mode 100644 index 0000000000..45eadefd26 --- /dev/null +++ b/tests/inst/src/test.rs @@ -0,0 +1,200 @@ +use std::borrow::BorrowMut; +use std::fs::File; +use std::io::prelude::*; +use std::path::Path; +use std::process::Command; + +use anyhow::{bail, Context, Result}; + +// HTTP Server deps +use futures_util::future; +use hyper::service::{make_service_fn, service_fn}; +use hyper::{Body, Request, Response}; +use hyper_staticfile::Static; + +pub(crate) type TestFn = Box Result<()>>; +pub(crate) type TmpDirTestFn = Box Result<()>>; +pub(crate) type Test = libtest_mimic::Test; + +pub(crate) fn newtest(name: &str, f: TestFn) -> Test { + Test { + name: name.into(), + kind: "".into(), + is_ignored: false, + is_bench: false, + data: f, + } +} + +#[macro_export] +macro_rules! deftests { + ( $($n:ident),* ) => {{ + vec![$( crate::test::newtest(stringify!($n), Box::new($n) ), )*] + }}; +} + +#[macro_export] +macro_rules! deftests_map { + ( $m:path, $($n:ident),* ) => {{ + vec![$( crate::test::newtest(stringify!($n), $m(Box::new($n) )), )*] + }}; +} + +pub(crate) fn with_tmpdir(f: TmpDirTestFn) -> TestFn { + Box::new(move || { + let tmp_dir = tempfile::Builder::new() + .prefix("ostree-insttest") + .tempdir()?; + f(tmp_dir.path()) + }) +} + +/// Run command and assert that its stderr contains pat +pub(crate) fn cmd_fails_with>(mut c: C, pat: &str) -> Result<()> { + let c = c.borrow_mut(); + let o = c.output()?; + if o.status.success() { + bail!("Command {:?} unexpectedly succeeded", c); + } + if !twoway::find_bytes(&o.stderr, pat.as_bytes()).is_some() { + dbg!(String::from_utf8_lossy(&o.stdout)); + dbg!(String::from_utf8_lossy(&o.stderr)); + bail!("Command {:?} stderr did not match: {}", c, pat); + } + Ok(()) +} + +pub(crate) fn write_file>(p: P, buf: &str) -> Result<()> { + let p = p.as_ref(); + let mut f = File::create(p)?; + f.write_all(buf.as_bytes())?; + f.flush()?; + Ok(()) +} + +pub(crate) fn mkroot>(p: P) -> Result<()> { + let p = p.as_ref(); + for v in &["usr/bin", "etc"] { + std::fs::create_dir_all(p.join(v))?; + } + let verpath = p.join("etc/version"); + let v: u32 = if verpath.exists() { + let s = std::fs::read_to_string(&verpath)?; + let v: u32 = s.trim_end().parse()?; + v + 1 + } else { + 0 + }; + write_file(&verpath, &format!("{}", v))?; + write_file(p.join("usr/bin/somebinary"), &format!("somebinary v{}", v))?; + write_file(p.join("etc/someconf"), &format!("someconf v{}", v))?; + write_file(p.join("usr/bin/vmod2"), &format!("somebinary v{}", v % 2))?; + write_file(p.join("usr/bin/vmod3"), &format!("somebinary v{}", v % 3))?; + Ok(()) +} + +#[derive(Default, Debug, Copy, Clone)] +pub(crate) struct TestHttpServerOpts { + pub(crate) basicauth: bool, +} + +pub(crate) const TEST_HTTP_BASIC_AUTH: &'static str = "foouser:barpw"; + +fn validate_authz(value: &[u8]) -> Result { + let buf = std::str::from_utf8(&value)?; + if let Some(o) = buf.find("Basic ") { + let (_, buf) = buf.split_at(o + "Basic ".len()); + let buf = base64::decode(buf).context("decoding")?; + let buf = std::str::from_utf8(&buf)?; + Ok(buf == TEST_HTTP_BASIC_AUTH) + } else { + bail!("Missing Basic") + } +} + +pub(crate) async fn http_server>( + p: P, + opts: TestHttpServerOpts, +) -> Result { + let addr = ([127, 0, 0, 1], 0).into(); + let sv = Static::new(p.as_ref()); + + async fn handle_request( + req: Request, + sv: Static, + opts: TestHttpServerOpts, + ) -> Result> { + if opts.basicauth { + if let Some(ref authz) = req.headers().get(http::header::AUTHORIZATION) { + match validate_authz(authz.as_ref()) { + Ok(true) => { + return Ok(sv.clone().serve(req).await?); + } + Ok(false) => { + // Fall through + } + Err(e) => { + return Ok(Response::builder() + .status(hyper::StatusCode::INTERNAL_SERVER_ERROR) + .body(Body::from(e.to_string())) + .unwrap()); + } + } + }; + return Ok(Response::builder() + .status(hyper::StatusCode::FORBIDDEN) + .header("x-test-auth", "true") + .body(Body::from("not authorized\n")) + .unwrap()); + } + Ok(sv.clone().serve(req).await?) + } + + let make_service = make_service_fn(move |_| { + let sv = sv.clone(); + let opts = opts.clone(); + future::ok::<_, hyper::Error>(service_fn(move |req| handle_request(req, sv.clone(), opts))) + }); + let server: hyper::Server<_, _, _> = hyper::Server::bind(&addr).serve(make_service); + let addr = server.local_addr(); + tokio::spawn(async move { + let r = server.await; + dbg!("server finished!"); + r + }); + Ok(addr) +} + +// I put tests in your tests so you can test while you test +#[cfg(test)] +mod tests { + use super::*; + + fn oops() -> Command { + let mut c = Command::new("/bin/bash"); + c.args(&["-c", "echo oops 1>&2; exit 1"]); + c + } + + #[test] + fn test_fails_with_matches() -> Result<()> { + cmd_fails_with(Command::new("false"), "")?; + cmd_fails_with(oops(), "oops")?; + Ok(()) + } + + #[test] + fn test_fails_with_fails() { + cmd_fails_with(Command::new("true"), "somepat").expect_err("true"); + cmd_fails_with(oops(), "nomatch").expect_err("nomatch"); + } + + #[test] + fn test_validate_authz() -> Result<()> { + assert!(validate_authz("Basic Zm9vdXNlcjpiYXJwdw==".as_bytes())?); + assert!(!validate_authz("Basic dW5rbm93bjpiYWRwdw==".as_bytes())?); + assert!(validate_authz("Basic oops".as_bytes()).is_err()); + assert!(validate_authz("oops".as_bytes()).is_err()); + Ok(()) + } +} diff --git a/tests/kola/nondestructive/.gitignore b/tests/kola/nondestructive/.gitignore new file mode 100644 index 0000000000..e2a0c38a35 --- /dev/null +++ b/tests/kola/nondestructive/.gitignore @@ -0,0 +1,2 @@ +# Generated by runkola.sh +insttest-rs