You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
281 lines
9.0 KiB
281 lines
9.0 KiB
// Copyright 2018 clair authors
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package notification
|
|
|
|
import (
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/stretchr/testify/assert"
|
|
"github.com/stretchr/testify/require"
|
|
|
|
"github.com/coreos/clair/database"
|
|
"github.com/coreos/clair/database/pgsql/page"
|
|
"github.com/coreos/clair/database/pgsql/testutil"
|
|
"github.com/coreos/clair/pkg/pagination"
|
|
)
|
|
|
|
type findVulnerabilityNotificationIn struct {
|
|
notificationName string
|
|
pageSize int
|
|
oldAffectedAncestryPage pagination.Token
|
|
newAffectedAncestryPage pagination.Token
|
|
}
|
|
|
|
type findVulnerabilityNotificationOut struct {
|
|
notification *database.VulnerabilityNotificationWithVulnerable
|
|
ok bool
|
|
err string
|
|
}
|
|
|
|
var testPaginationKey = pagination.Must(pagination.NewKey())
|
|
|
|
var findVulnerabilityNotificationTests = []struct {
|
|
title string
|
|
in findVulnerabilityNotificationIn
|
|
out findVulnerabilityNotificationOut
|
|
}{
|
|
{
|
|
title: "find notification with invalid page",
|
|
in: findVulnerabilityNotificationIn{
|
|
notificationName: "test",
|
|
pageSize: 1,
|
|
oldAffectedAncestryPage: pagination.FirstPageToken,
|
|
newAffectedAncestryPage: pagination.Token("random non sense"),
|
|
},
|
|
out: findVulnerabilityNotificationOut{
|
|
err: pagination.ErrInvalidToken.Error(),
|
|
},
|
|
},
|
|
{
|
|
title: "find non-existing notification",
|
|
in: findVulnerabilityNotificationIn{
|
|
notificationName: "non-existing",
|
|
pageSize: 1,
|
|
oldAffectedAncestryPage: pagination.FirstPageToken,
|
|
newAffectedAncestryPage: pagination.FirstPageToken,
|
|
},
|
|
out: findVulnerabilityNotificationOut{
|
|
ok: false,
|
|
},
|
|
},
|
|
{
|
|
title: "find existing notification first page",
|
|
in: findVulnerabilityNotificationIn{
|
|
notificationName: "test",
|
|
pageSize: 1,
|
|
oldAffectedAncestryPage: pagination.FirstPageToken,
|
|
newAffectedAncestryPage: pagination.FirstPageToken,
|
|
},
|
|
out: findVulnerabilityNotificationOut{
|
|
&database.VulnerabilityNotificationWithVulnerable{
|
|
NotificationHook: testutil.RealNotification[1].NotificationHook,
|
|
Old: &database.PagedVulnerableAncestries{
|
|
Vulnerability: testutil.RealVulnerability[2],
|
|
Limit: 1,
|
|
Affected: make(map[int]string),
|
|
Current: testutil.MustMarshalToken(testutil.TestPaginationKey, page.Page{0}),
|
|
Next: testutil.MustMarshalToken(testutil.TestPaginationKey, page.Page{0}),
|
|
End: true,
|
|
},
|
|
New: &database.PagedVulnerableAncestries{
|
|
Vulnerability: testutil.RealVulnerability[1],
|
|
Limit: 1,
|
|
Affected: map[int]string{3: "ancestry-3"},
|
|
Current: testutil.MustMarshalToken(testutil.TestPaginationKey, page.Page{0}),
|
|
Next: testutil.MustMarshalToken(testutil.TestPaginationKey, page.Page{4}),
|
|
End: false,
|
|
},
|
|
},
|
|
|
|
true,
|
|
"",
|
|
},
|
|
},
|
|
{
|
|
title: "find existing notification of second page of new affected ancestry",
|
|
in: findVulnerabilityNotificationIn{
|
|
notificationName: "test",
|
|
pageSize: 1,
|
|
oldAffectedAncestryPage: pagination.FirstPageToken,
|
|
newAffectedAncestryPage: testutil.MustMarshalToken(testutil.TestPaginationKey, page.Page{4}),
|
|
},
|
|
out: findVulnerabilityNotificationOut{
|
|
&database.VulnerabilityNotificationWithVulnerable{
|
|
NotificationHook: testutil.RealNotification[1].NotificationHook,
|
|
Old: &database.PagedVulnerableAncestries{
|
|
Vulnerability: testutil.RealVulnerability[2],
|
|
Limit: 1,
|
|
Affected: make(map[int]string),
|
|
Current: testutil.MustMarshalToken(testutil.TestPaginationKey, page.Page{0}),
|
|
Next: testutil.MustMarshalToken(testutil.TestPaginationKey, page.Page{0}),
|
|
End: true,
|
|
},
|
|
New: &database.PagedVulnerableAncestries{
|
|
Vulnerability: testutil.RealVulnerability[1],
|
|
Limit: 1,
|
|
Affected: map[int]string{4: "ancestry-4"},
|
|
Current: testutil.MustMarshalToken(testutil.TestPaginationKey, page.Page{4}),
|
|
Next: testutil.MustMarshalToken(testutil.TestPaginationKey, page.Page{0}),
|
|
End: true,
|
|
},
|
|
},
|
|
|
|
true,
|
|
"",
|
|
},
|
|
},
|
|
}
|
|
|
|
func TestFindVulnerabilityNotification(t *testing.T) {
|
|
tx, cleanup := testutil.CreateTestTxWithFixtures(t, "pagination")
|
|
defer cleanup()
|
|
|
|
for _, test := range findVulnerabilityNotificationTests {
|
|
t.Run(test.title, func(t *testing.T) {
|
|
notification, ok, err := FindVulnerabilityNotification(tx, test.in.notificationName, test.in.pageSize, test.in.oldAffectedAncestryPage, test.in.newAffectedAncestryPage, testutil.TestPaginationKey)
|
|
if test.out.err != "" {
|
|
require.EqualError(t, err, test.out.err)
|
|
return
|
|
}
|
|
|
|
require.Nil(t, err)
|
|
if !test.out.ok {
|
|
require.Equal(t, test.out.ok, ok)
|
|
return
|
|
}
|
|
|
|
require.True(t, ok)
|
|
testutil.AssertVulnerabilityNotificationWithVulnerableEqual(t, testutil.TestPaginationKey, test.out.notification, ¬ification)
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestInsertVulnerabilityNotifications(t *testing.T) {
|
|
datastore, cleanup := testutil.CreateTestDBWithFixture(t, "InsertVulnerabilityNotifications")
|
|
defer cleanup()
|
|
|
|
n1 := database.VulnerabilityNotification{}
|
|
n3 := database.VulnerabilityNotification{
|
|
NotificationHook: database.NotificationHook{
|
|
Name: "random name",
|
|
Created: time.Now(),
|
|
},
|
|
Old: nil,
|
|
New: &database.Vulnerability{},
|
|
}
|
|
n4 := database.VulnerabilityNotification{
|
|
NotificationHook: database.NotificationHook{
|
|
Name: "random name",
|
|
Created: time.Now(),
|
|
},
|
|
Old: nil,
|
|
New: &database.Vulnerability{
|
|
Name: "CVE-OPENSSL-1-DEB7",
|
|
Namespace: database.Namespace{
|
|
Name: "debian:7",
|
|
VersionFormat: "dpkg",
|
|
},
|
|
},
|
|
}
|
|
|
|
tx, err := datastore.Begin()
|
|
require.Nil(t, err)
|
|
|
|
// invalid case
|
|
err = InsertVulnerabilityNotifications(tx, []database.VulnerabilityNotification{n1})
|
|
require.NotNil(t, err)
|
|
|
|
// invalid case: unknown vulnerability
|
|
err = InsertVulnerabilityNotifications(tx, []database.VulnerabilityNotification{n3})
|
|
require.NotNil(t, err)
|
|
|
|
// invalid case: duplicated input notification
|
|
err = InsertVulnerabilityNotifications(tx, []database.VulnerabilityNotification{n4, n4})
|
|
require.NotNil(t, err)
|
|
tx = testutil.RestartTransaction(datastore, tx, false)
|
|
|
|
// valid case
|
|
err = InsertVulnerabilityNotifications(tx, []database.VulnerabilityNotification{n4})
|
|
require.Nil(t, err)
|
|
// invalid case: notification is already in database
|
|
err = InsertVulnerabilityNotifications(tx, []database.VulnerabilityNotification{n4})
|
|
require.NotNil(t, err)
|
|
|
|
require.Nil(t, tx.Rollback())
|
|
}
|
|
|
|
func TestFindNewNotification(t *testing.T) {
|
|
tx, cleanup := testutil.CreateTestTxWithFixtures(t, "TestFindNewNotification")
|
|
defer cleanup()
|
|
|
|
noti, ok, err := FindNewNotification(tx, time.Now())
|
|
if assert.Nil(t, err) && assert.True(t, ok) {
|
|
assert.Equal(t, "test", noti.Name)
|
|
assert.Equal(t, time.Time{}, noti.Notified)
|
|
assert.Equal(t, time.Time{}, noti.Created)
|
|
assert.Equal(t, time.Time{}, noti.Deleted)
|
|
}
|
|
|
|
// can't find the notified
|
|
assert.Nil(t, MarkNotificationAsRead(tx, "test"))
|
|
// if the notified time is before
|
|
noti, ok, err = FindNewNotification(tx, time.Now().Add(-time.Duration(10*time.Second)))
|
|
assert.Nil(t, err)
|
|
assert.False(t, ok)
|
|
// can find the notified after a period of time
|
|
noti, ok, err = FindNewNotification(tx, time.Now().Add(time.Duration(10*time.Second)))
|
|
if assert.Nil(t, err) && assert.True(t, ok) {
|
|
assert.Equal(t, "test", noti.Name)
|
|
assert.NotEqual(t, time.Time{}, noti.Notified)
|
|
assert.Equal(t, time.Time{}, noti.Created)
|
|
assert.Equal(t, time.Time{}, noti.Deleted)
|
|
}
|
|
|
|
assert.Nil(t, DeleteNotification(tx, "test"))
|
|
// can't find in any time
|
|
noti, ok, err = FindNewNotification(tx, time.Now().Add(-time.Duration(1000)))
|
|
assert.Nil(t, err)
|
|
assert.False(t, ok)
|
|
|
|
noti, ok, err = FindNewNotification(tx, time.Now().Add(time.Duration(1000)))
|
|
assert.Nil(t, err)
|
|
assert.False(t, ok)
|
|
}
|
|
|
|
func TestMarkNotificationAsRead(t *testing.T) {
|
|
tx, cleanup := testutil.CreateTestTxWithFixtures(t, "MarkNotificationAsRead")
|
|
defer cleanup()
|
|
|
|
// invalid case: notification doesn't exist
|
|
assert.NotNil(t, MarkNotificationAsRead(tx, "non-existing"))
|
|
// valid case
|
|
assert.Nil(t, MarkNotificationAsRead(tx, "test"))
|
|
// valid case
|
|
assert.Nil(t, MarkNotificationAsRead(tx, "test"))
|
|
}
|
|
|
|
func TestDeleteNotification(t *testing.T) {
|
|
tx, cleanup := testutil.CreateTestTxWithFixtures(t, "DeleteNotification")
|
|
defer cleanup()
|
|
|
|
// invalid case: notification doesn't exist
|
|
assert.NotNil(t, DeleteNotification(tx, "non-existing"))
|
|
// valid case
|
|
assert.Nil(t, DeleteNotification(tx, "test"))
|
|
// invalid case: notification is already deleted
|
|
assert.NotNil(t, DeleteNotification(tx, "test"))
|
|
}
|