mirrors
/
sonarqube
зеркало из https://github.com/SonarSource/sonarqube.git
Следить 1
В избранное 0
Форкнуть 0
Код Задачи 0 Релизы 237 Вики Активность
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
36371 коммит
59 Ветки
Дерево: ce849ff5f2
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из 'ce849ff5f2'
${ noResults }
sonarqube/sonar-scanner-engine/src/test/java/org/sonar/scanner/bootstrap/PluginFilesTest.java

PluginFilesTest.java 10KB
Исходник Blame История

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2024 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.scanner.bootstrap;

  21. 

  22. import com.github.tomakehurst.wiremock.junit5.WireMockExtension;

  23. import java.io.File;

  24. import java.io.IOException;

  25. import java.io.InputStream;

  26. import java.net.SocketTimeoutException;

  27. import java.nio.file.Files;

  28. import java.nio.file.Path;

  29. import java.util.Collections;

  30. import java.util.Optional;

  31. import javax.annotation.Nullable;

  32. import org.apache.commons.codec.digest.DigestUtils;

  33. import org.apache.commons.lang3.RandomStringUtils;

  34. import org.junit.jupiter.api.BeforeEach;

  35. import org.junit.jupiter.api.Test;

  36. import org.junit.jupiter.api.extension.RegisterExtension;

  37. import org.junit.jupiter.api.io.TempDir;

  38. import org.sonar.api.config.internal.MapSettings;

  39. import org.sonar.api.notifications.AnalysisWarnings;

  40. import org.sonar.scanner.bootstrap.ScannerPluginInstaller.InstalledPlugin;

  41. import org.sonar.scanner.http.DefaultScannerWsClient;

  42. import org.sonarqube.ws.client.HttpConnector;

  43. import org.sonarqube.ws.client.WsClientFactories;

  44. 

  45. import static com.github.tomakehurst.wiremock.client.WireMock.anyRequestedFor;

  46. import static com.github.tomakehurst.wiremock.client.WireMock.anyUrl;

  47. import static com.github.tomakehurst.wiremock.client.WireMock.exactly;

  48. import static com.github.tomakehurst.wiremock.client.WireMock.get;

  49. import static com.github.tomakehurst.wiremock.client.WireMock.getRequestedFor;

  50. import static com.github.tomakehurst.wiremock.client.WireMock.notFound;

  51. import static com.github.tomakehurst.wiremock.client.WireMock.ok;

  52. import static com.github.tomakehurst.wiremock.client.WireMock.serverError;

  53. import static com.github.tomakehurst.wiremock.client.WireMock.urlEqualTo;

  54. import static com.github.tomakehurst.wiremock.client.WireMock.urlMatching;

  55. import static com.github.tomakehurst.wiremock.core.WireMockConfiguration.wireMockConfig;

  56. import static org.apache.commons.io.FileUtils.moveFile;

  57. import static org.assertj.core.api.Assertions.assertThat;

  58. import static org.assertj.core.api.Assertions.assertThatThrownBy;

  59. import static org.assertj.core.api.ThrowableAssert.ThrowingCallable;

  60. import static org.mockito.Mockito.mock;

  61. import static org.mockito.Mockito.when;

  62. import static org.sonar.scanner.bootstrap.PluginFiles.PLUGINS_DOWNLOAD_TIMEOUT_PROPERTY;

  63. 

  64. class PluginFilesTest {

  65. 

  66.   @RegisterExtension

  67.   static WireMockExtension sonarqube = WireMockExtension.newInstance()

  68.     .options(wireMockConfig().dynamicPort())

  69.     .build();

  70. 

  71.   @TempDir

  72.   private Path tempDir;

  73. 

  74.   private final SonarUserHome sonarUserHome = mock(SonarUserHome.class);

  75. 

  76.   private final AnalysisWarnings analysisWarnings = mock(AnalysisWarnings.class);

  77. 

  78.   private PluginFiles underTest;

  79. 

  80.   @BeforeEach

  81.   void setUp(@TempDir Path sonarUserHomeDir) throws Exception {

  82.     when(sonarUserHome.getPath()).thenReturn(sonarUserHomeDir);

  83. 

  84.     HttpConnector connector = HttpConnector.newBuilder().acceptGzip(true).url(sonarqube.url("/")).build();

  85.     GlobalAnalysisMode analysisMode = new GlobalAnalysisMode(new ScannerProperties(Collections.emptyMap()));

  86.     DefaultScannerWsClient wsClient = new DefaultScannerWsClient(WsClientFactories.getDefault().newClient(connector), false,

  87.       analysisMode, analysisWarnings);

  88. 

  89.     MapSettings settings = new MapSettings();

  90.     settings.setProperty(PLUGINS_DOWNLOAD_TIMEOUT_PROPERTY, 1);

  91. 

  92.     underTest = new PluginFiles(wsClient, settings.asConfig(), sonarUserHome);

  93.   }

  94. 

  95.   @Test

  96.   void get_jar_from_cache_if_present() throws Exception {

  97.     FileAndMd5 jar = createFileInCache("foo");

  98. 

  99.     File result = underTest.get(newInstalledPlugin("foo", jar.md5)).get();

  100. 

  101.     verifySameContent(result.toPath(), jar);

  102.     // no requests to server

  103.     sonarqube.verify(0, anyRequestedFor(anyUrl()));

  104.   }

  105. 

  106.   @Test

  107.   void download_and_add_jar_to_cache_if_missing() throws Exception {

  108.     FileAndMd5 tempJar = new FileAndMd5();

  109.     stubDownload(tempJar);

  110. 

  111.     InstalledPlugin plugin = newInstalledPlugin("foo", tempJar.md5);

  112.     File result = underTest.get(plugin).get();

  113. 

  114.     verifySameContent(result.toPath(), tempJar);

  115. 

  116.     sonarqube.verify(exactly(1), getRequestedFor(urlEqualTo("/api/plugins/download?plugin=foo")));

  117. 

  118.     // get from cache on second call

  119.     result = underTest.get(plugin).get();

  120.     verifySameContent(result.toPath(), tempJar);

  121. 

  122.     sonarqube.verify(exactly(1), getRequestedFor(urlEqualTo("/api/plugins/download?plugin=foo")));

  123.   }

  124. 

  125.   @Test

  126.   void return_empty_if_plugin_not_found_on_server() {

  127.     sonarqube.stubFor(get(anyUrl())

  128.       .willReturn(notFound()));

  129. 

  130.     InstalledPlugin plugin = newInstalledPlugin("foo", "abc");

  131.     Optional<File> result = underTest.get(plugin);

  132. 

  133.     assertThat(result).isEmpty();

  134.   }

  135. 

  136.   @Test

  137.   void fail_if_integrity_of_download_is_not_valid() throws IOException {

  138.     FileAndMd5 tempJar = new FileAndMd5();

  139.     stubDownload(tempJar.file, "invalid_hash");

  140.     InstalledPlugin plugin = newInstalledPlugin("foo", "abc");

  141. 

  142.     expectISE("foo", "was expected to have checksum invalid_hash but had " + tempJar.md5,

  143.       () -> underTest.get(plugin));

  144.   }

  145. 

  146.   @Test

  147.   void fail_if_md5_header_is_missing_from_response(@TempDir Path tempDir) throws IOException {

  148.     var tempJar = Files.createTempFile(tempDir, "plugin", ".jar");

  149.     stubDownload(tempJar, null);

  150.     InstalledPlugin plugin = newInstalledPlugin("foo", "abc");

  151. 

  152.     expectISE("foo", "did not return header Sonar-MD5", () -> underTest.get(plugin));

  153.   }

  154. 

  155.   @Test

  156.   void fail_if_server_returns_error() {

  157.     sonarqube.stubFor(get(anyUrl())

  158.       .willReturn(serverError()));

  159. 

  160.     InstalledPlugin plugin = newInstalledPlugin("foo", "abc");

  161. 

  162.     expectISE("foo", "returned code 500", () -> underTest.get(plugin));

  163.   }

  164. 

  165.   @Test

  166.   void getPlugin_whenTimeOutReached_thenDownloadFails() {

  167.     sonarqube.stubFor(get(anyUrl())

  168.       .willReturn(ok()

  169.         .withFixedDelay(5000)));

  170. 

  171.     InstalledPlugin plugin = newInstalledPlugin("foo", "abc");

  172. 

  173.     assertThatThrownBy(() -> underTest.get(plugin))

  174.       .isInstanceOf(IllegalStateException.class)

  175.       .hasMessageStartingWith("Fail to request url")

  176.       .cause().isInstanceOf(SocketTimeoutException.class);

  177.   }

  178. 

  179.   @Test

  180.   void download_a_new_version_of_plugin_during_blue_green_switch() throws IOException {

  181.     FileAndMd5 tempJar = new FileAndMd5();

  182.     stubDownload(tempJar);

  183. 

  184.     // expecting to download plugin foo with checksum "abc"

  185.     InstalledPlugin pluginV1 = newInstalledPlugin("foo", "abc");

  186. 

  187.     File result = underTest.get(pluginV1).get();

  188.     verifySameContent(result.toPath(), tempJar);

  189. 

  190.     // new version of downloaded jar is put in cache with the new md5

  191.     InstalledPlugin pluginV2 = newInstalledPlugin("foo", tempJar.md5);

  192.     result = underTest.get(pluginV2).get();

  193.     verifySameContent(result.toPath(), tempJar);

  194. 

  195.     sonarqube.verify(exactly(1), getRequestedFor(urlEqualTo("/api/plugins/download?plugin=foo")));

  196. 

  197.     // v1 still requests server and downloads v2

  198.     stubDownload(tempJar);

  199.     result = underTest.get(pluginV1).get();

  200.     verifySameContent(result.toPath(), tempJar);

  201. 

  202.     sonarqube.verify(exactly(2), getRequestedFor(urlEqualTo("/api/plugins/download?plugin=foo")));

  203.   }

  204. 

  205.   @Test

  206.   void fail_if_cached_file_is_outside_cache_dir() throws IOException {

  207.     FileAndMd5 tempJar = new FileAndMd5();

  208.     stubDownload(tempJar);

  209. 

  210.     InstalledPlugin plugin = newInstalledPlugin("foo/bar", "abc");

  211. 

  212.     assertThatThrownBy(() -> underTest.get(plugin))

  213.       .isInstanceOf(IllegalStateException.class)

  214.       .hasMessage("Fail to download plugin [foo/bar]. Key is not valid.");

  215.   }

  216. 

  217.   private FileAndMd5 createFileInCache(String pluginKey) throws IOException {

  218.     FileAndMd5 tempFile = new FileAndMd5();

  219.     return moveToCache(pluginKey, tempFile);

  220.   }

  221. 

  222.   private FileAndMd5 moveToCache(String pluginKey, FileAndMd5 jar) throws IOException {

  223.     Path jarInCache = sonarUserHome.getPath().resolve("cache/" + jar.md5 + "/sonar-" + pluginKey + "-plugin.jar");

  224.     moveFile(jar.file.toFile(), jarInCache.toFile());

  225.     return new FileAndMd5(jarInCache, jar.md5);

  226.   }

  227. 

  228.   /**

  229.    * Enqueue download of file with valid MD5

  230.    */

  231.   private void stubDownload(FileAndMd5 file) throws IOException {

  232.     stubDownload(file.file, file.md5);

  233.   }

  234. 

  235.   /**

  236.    * Enqueue download of file with a MD5 that may not be returned (null) or not valid

  237.    */

  238.   private void stubDownload(Path file, @Nullable String md5) throws IOException {

  239.     var responseDefBuilder = ok();

  240.     if (md5 != null) {

  241.       responseDefBuilder.withHeader("Sonar-MD5", md5);

  242.     }

  243.     responseDefBuilder.withBody(Files.readAllBytes(file));

  244.     sonarqube.stubFor(get(urlMatching("/api/plugins/download\\?plugin=.*"))

  245.       .willReturn(responseDefBuilder));

  246.   }

  247. 

  248.   private static InstalledPlugin newInstalledPlugin(String pluginKey, String fileChecksum) {

  249.     InstalledPlugin plugin = new InstalledPlugin();

  250.     plugin.key = pluginKey;

  251.     plugin.hash = fileChecksum;

  252.     return plugin;

  253.   }

  254. 

  255.   private static void verifySameContent(Path file1, FileAndMd5 file2) {

  256.     assertThat(file1).isRegularFile();

  257.     assertThat(file2.file).isRegularFile();

  258.     assertThat(file1).hasSameTextualContentAs(file2.file);

  259.   }

  260. 

  261.   private void expectISE(String pluginKey, String message, ThrowingCallable shouldRaiseThrowable) {

  262.     assertThatThrownBy(shouldRaiseThrowable)

  263.       .isInstanceOf(IllegalStateException.class)

  264.       .hasMessageStartingWith("Fail to download plugin [" + pluginKey + "]")

  265.       .hasMessageContaining(message);

  266.   }

  267. 

  268.   private class FileAndMd5 {

  269.     private final Path file;

  270.     private final String md5;

  271. 

  272.     FileAndMd5(Path file, String md5) {

  273.       this.file = file;

  274.       this.md5 = md5;

  275.     }

  276. 

  277.     FileAndMd5() throws IOException {

  278.       this.file = Files.createTempFile(tempDir, "jar", null);

  279.       Files.write(this.file, RandomStringUtils.random(3).getBytes());

  280.       try (InputStream fis = Files.newInputStream(this.file)) {

  281.         this.md5 = DigestUtils.md5Hex(fis);

  282.       } catch (IOException e) {

  283.         throw new IllegalStateException("Fail to compute md5 of " + this.file, e);

  284.       }

  285.     }

  286. 

  287.   }

  288. }