mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
34807 Commits
59 Branches
Tree: f3028f6327
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f3028f6327'
${ noResults }
sonarqube/sonar-scanner-engine/src/test/java/org/sonar/scanner/issue/IssuePublisherTest.java

IssuePublisherTest.java 12KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2023 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.scanner.issue;

  21. 

  22. import java.io.IOException;

  23. import java.util.Collections;

  24. import java.util.HashSet;

  25. import java.util.List;

  26. import org.junit.Before;

  27. import org.junit.Rule;

  28. import org.junit.Test;

  29. import org.junit.rules.TemporaryFolder;

  30. import org.junit.runner.RunWith;

  31. import org.mockito.ArgumentCaptor;

  32. import org.mockito.junit.MockitoJUnitRunner;

  33. import org.sonar.api.batch.bootstrap.ProjectDefinition;

  34. import org.sonar.api.batch.fs.InputComponent;

  35. import org.sonar.api.batch.fs.internal.DefaultInputFile;

  36. import org.sonar.api.batch.fs.internal.DefaultInputProject;

  37. import org.sonar.api.batch.fs.internal.TestInputFileBuilder;

  38. import org.sonar.api.batch.rule.internal.ActiveRulesBuilder;

  39. import org.sonar.api.batch.rule.internal.NewActiveRule;

  40. import org.sonar.api.batch.sensor.issue.NewIssue;

  41. import org.sonar.api.batch.sensor.issue.internal.DefaultExternalIssue;

  42. import org.sonar.api.batch.sensor.issue.internal.DefaultIssue;

  43. import org.sonar.api.batch.sensor.issue.internal.DefaultIssueLocation;

  44. import org.sonar.api.batch.sensor.issue.internal.DefaultMessageFormatting;

  45. import org.sonar.api.issue.impact.SoftwareQuality;

  46. import org.sonar.api.rule.RuleKey;

  47. import org.sonar.api.rule.Severity;

  48. import org.sonar.api.rules.RuleType;

  49. import org.sonar.scanner.protocol.output.ScannerReport;

  50. import org.sonar.scanner.protocol.output.ScannerReport.FlowType;

  51. import org.sonar.scanner.report.ReportPublisher;

  52. 

  53. import static org.assertj.core.api.Assertions.assertThat;

  54. import static org.assertj.core.api.Assertions.tuple;

  55. import static org.mockito.ArgumentMatchers.any;

  56. import static org.mockito.ArgumentMatchers.eq;

  57. import static org.mockito.Mockito.RETURNS_DEEP_STUBS;

  58. import static org.mockito.Mockito.mock;

  59. import static org.mockito.Mockito.verify;

  60. import static org.mockito.Mockito.verifyNoInteractions;

  61. import static org.mockito.Mockito.when;

  62. import static org.sonar.api.batch.sensor.issue.MessageFormatting.Type.CODE;

  63. import static org.sonar.api.issue.impact.SoftwareQuality.*;

  64. 

  65. @RunWith(MockitoJUnitRunner.class)

  66. public class IssuePublisherTest {

  67.   private static final RuleKey JAVA_RULE_KEY = RuleKey.of("java", "AvoidCycle");

  68.   private static final RuleKey NOSONAR_RULE_KEY = RuleKey.of("java", "NoSonarCheck");

  69. 

  70.   private DefaultInputProject project;

  71. 

  72.   @Rule

  73.   public TemporaryFolder temp = new TemporaryFolder();

  74.   public IssueFilters filters = mock(IssueFilters.class);

  75. 

  76.   private final ActiveRulesBuilder activeRulesBuilder = new ActiveRulesBuilder();

  77.   private IssuePublisher moduleIssues;

  78.   private final DefaultInputFile file = new TestInputFileBuilder("foo", "src/Foo.php").initMetadata("Foo\nBar\nBiz\n").build();

  79.   private final ReportPublisher reportPublisher = mock(ReportPublisher.class, RETURNS_DEEP_STUBS);

  80. 

  81.   @Before

  82.   public void prepare() throws IOException {

  83.     project = new DefaultInputProject(ProjectDefinition.create()

  84.       .setKey("foo")

  85.       .setBaseDir(temp.newFolder())

  86.       .setWorkDir(temp.newFolder()));

  87. 

  88.     activeRulesBuilder.addRule(new NewActiveRule.Builder()

  89.       .setRuleKey(JAVA_RULE_KEY)

  90.       .setSeverity(Severity.INFO)

  91.       .setQProfileKey("qp-1")

  92.       .build());

  93.     initModuleIssues();

  94.   }

  95. 

  96.   @Test

  97.   public void ignore_null_active_rule() {

  98.     RuleKey INACTIVE_RULE_KEY = RuleKey.of("repo", "inactive");

  99.     initModuleIssues();

  100.     DefaultIssue issue = new DefaultIssue(project)

  101.       .at(new DefaultIssueLocation().on(file).at(file.selectLine(3)).message("Foo"))

  102.       .forRule(INACTIVE_RULE_KEY);

  103.     boolean added = moduleIssues.initAndAddIssue(issue);

  104. 

  105.     assertThat(added).isFalse();

  106.     verifyNoInteractions(reportPublisher);

  107.   }

  108. 

  109.   @Test

  110.   public void ignore_null_rule_of_active_rule() {

  111.     initModuleIssues();

  112. 

  113.     DefaultIssue issue = new DefaultIssue(project)

  114.       .at(new DefaultIssueLocation().on(file).at(file.selectLine(3)).message("Foo"))

  115.       .forRule(JAVA_RULE_KEY);

  116.     boolean added = moduleIssues.initAndAddIssue(issue);

  117. 

  118.     assertThat(added).isFalse();

  119.     verifyNoInteractions(reportPublisher);

  120.   }

  121. 

  122.   @Test

  123.   public void add_issue_to_cache() {

  124.     initModuleIssues();

  125. 

  126.     final String ruleDescriptionContextKey = "spring";

  127.     DefaultIssue issue = new DefaultIssue(project)

  128.       .at(new DefaultIssueLocation().on(file).at(file.selectLine(3)).message("Foo"))

  129.       .forRule(JAVA_RULE_KEY)

  130.       .overrideSeverity(org.sonar.api.batch.rule.Severity.CRITICAL)

  131.       .setQuickFixAvailable(true)

  132.       .setRuleDescriptionContextKey(ruleDescriptionContextKey)

  133.       .setCodeVariants(List.of("variant1", "variant2"))

  134.       .overrideImpact(MAINTAINABILITY, org.sonar.api.issue.impact.Severity.HIGH)

  135.       .overrideImpact(RELIABILITY, org.sonar.api.issue.impact.Severity.LOW);

  136. 

  137.     when(filters.accept(any(InputComponent.class), any(ScannerReport.Issue.class))).thenReturn(true);

  138. 

  139.     boolean added = moduleIssues.initAndAddIssue(issue);

  140. 

  141.     assertThat(added).isTrue();

  142.     ArgumentCaptor<ScannerReport.Issue> argument = ArgumentCaptor.forClass(ScannerReport.Issue.class);

  143.     verify(reportPublisher.getWriter()).appendComponentIssue(eq(file.scannerId()), argument.capture());

  144.     assertThat(argument.getValue().getSeverity()).isEqualTo(org.sonar.scanner.protocol.Constants.Severity.CRITICAL);

  145.     assertThat(argument.getValue().getQuickFixAvailable()).isTrue();

  146.     assertThat(argument.getValue().getRuleDescriptionContextKey()).isEqualTo(ruleDescriptionContextKey);

  147.     assertThat(argument.getValue().getCodeVariantsList()).containsExactly("variant1", "variant2");

  148. 

  149.     ScannerReport.Impact impact1 = ScannerReport.Impact.newBuilder().setSoftwareQuality(MAINTAINABILITY.name()).setSeverity("HIGH").build();

  150.     ScannerReport.Impact impact2 = ScannerReport.Impact.newBuilder().setSoftwareQuality(RELIABILITY.name()).setSeverity("LOW").build();

  151.     assertThat(argument.getValue().getOverridenImpactsList()).containsExactly(impact1, impact2);

  152.   }

  153. 

  154.   @Test

  155.   public void add_issue_flows_to_cache() {

  156.     initModuleIssues();

  157. 

  158.     DefaultMessageFormatting messageFormatting = new DefaultMessageFormatting().start(0).end(4).type(CODE);

  159.     DefaultIssue issue = new DefaultIssue(project)

  160.       .at(new DefaultIssueLocation().on(file))

  161.       // Flow without type

  162.       .addFlow(List.of(new DefaultIssueLocation().on(file).at(file.selectLine(1)).message("Foo1", List.of(messageFormatting)),

  163.         new DefaultIssueLocation().on(file).at(file.selectLine(2)).message("Foo2")))

  164.       // Flow with type and description

  165.       .addFlow(List.of(new DefaultIssueLocation().on(file)), NewIssue.FlowType.DATA, "description")

  166.       // Flow with execution type and no description

  167.       .addFlow(List.of(new DefaultIssueLocation().on(file)), NewIssue.FlowType.EXECUTION, null)

  168.       .forRule(JAVA_RULE_KEY);

  169. 

  170.     when(filters.accept(any(InputComponent.class), any(ScannerReport.Issue.class))).thenReturn(true);

  171.     moduleIssues.initAndAddIssue(issue);

  172. 

  173.     ArgumentCaptor<ScannerReport.Issue> argument = ArgumentCaptor.forClass(ScannerReport.Issue.class);

  174.     verify(reportPublisher.getWriter()).appendComponentIssue(eq(file.scannerId()), argument.capture());

  175.     List<ScannerReport.Flow> writtenFlows = argument.getValue().getFlowList();

  176. 

  177.     assertThat(writtenFlows)

  178.       .extracting(ScannerReport.Flow::getDescription, ScannerReport.Flow::getType)

  179.       .containsExactly(tuple("", FlowType.UNDEFINED), tuple("description", FlowType.DATA), tuple("", FlowType.EXECUTION));

  180. 

  181.     assertThat(writtenFlows.get(0).getLocationCount()).isEqualTo(2);

  182.     assertThat(writtenFlows.get(0).getLocationList()).containsExactly(

  183.       ScannerReport.IssueLocation.newBuilder()

  184.         .setComponentRef(file.scannerId())

  185.         .setMsg("Foo1")

  186.         .addMsgFormatting(ScannerReport.MessageFormatting.newBuilder().setStart(0).setEnd(4).setType(ScannerReport.MessageFormattingType.CODE).build())

  187.         .setTextRange(ScannerReport.TextRange.newBuilder().setStartLine(1).setEndLine(1).setEndOffset(3).build())

  188.         .build(),

  189.       ScannerReport.IssueLocation.newBuilder()

  190.         .setComponentRef(file.scannerId())

  191.         .setMsg("Foo2")

  192.         .setTextRange(ScannerReport.TextRange.newBuilder().setStartLine(2).setEndLine(2).setEndOffset(3).build())

  193.         .build());

  194.   }

  195. 

  196.   @Test

  197.   public void add_external_issue_to_cache() {

  198.     initModuleIssues();

  199. 

  200.     DefaultExternalIssue issue = new DefaultExternalIssue(project)

  201.       .at(new DefaultIssueLocation().on(file).at(file.selectLine(3)).message("Foo"))

  202.       .type(RuleType.BUG)

  203.       .forRule(JAVA_RULE_KEY)

  204.       .severity(org.sonar.api.batch.rule.Severity.CRITICAL);

  205. 

  206.     moduleIssues.initAndAddExternalIssue(issue);

  207. 

  208.     ArgumentCaptor<ScannerReport.ExternalIssue> argument = ArgumentCaptor.forClass(ScannerReport.ExternalIssue.class);

  209.     verify(reportPublisher.getWriter()).appendComponentExternalIssue(eq(file.scannerId()), argument.capture());

  210.     assertThat(argument.getValue().getSeverity()).isEqualTo(org.sonar.scanner.protocol.Constants.Severity.CRITICAL);

  211.   }

  212. 

  213.   @Test

  214.   public void use_severity_from_active_rule_if_no_severity_on_issue() {

  215.     initModuleIssues();

  216. 

  217.     DefaultIssue issue = new DefaultIssue(project)

  218.       .at(new DefaultIssueLocation().on(file).at(file.selectLine(3)).message("Foo"))

  219.       .forRule(JAVA_RULE_KEY);

  220.     when(filters.accept(any(InputComponent.class), any(ScannerReport.Issue.class))).thenReturn(true);

  221.     moduleIssues.initAndAddIssue(issue);

  222. 

  223.     ArgumentCaptor<ScannerReport.Issue> argument = ArgumentCaptor.forClass(ScannerReport.Issue.class);

  224.     verify(reportPublisher.getWriter()).appendComponentIssue(eq(file.scannerId()), argument.capture());

  225.     assertThat(argument.getValue().getSeverity()).isEqualTo(org.sonar.scanner.protocol.Constants.Severity.INFO);

  226.   }

  227. 

  228.   @Test

  229.   public void filter_issue() {

  230.     DefaultIssue issue = new DefaultIssue(project)

  231.       .at(new DefaultIssueLocation().on(file).at(file.selectLine(3)).message(""))

  232.       .forRule(JAVA_RULE_KEY);

  233. 

  234.     when(filters.accept(any(InputComponent.class), any(ScannerReport.Issue.class))).thenReturn(false);

  235. 

  236.     boolean added = moduleIssues.initAndAddIssue(issue);

  237. 

  238.     assertThat(added).isFalse();

  239.     verifyNoInteractions(reportPublisher);

  240.   }

  241. 

  242.   @Test

  243.   public void should_ignore_lines_commented_with_nosonar() {

  244.     initModuleIssues();

  245. 

  246.     DefaultIssue issue = new DefaultIssue(project)

  247.       .at(new DefaultIssueLocation().on(file).at(file.selectLine(3)).message(""))

  248.       .forRule(JAVA_RULE_KEY);

  249. 

  250.     file.noSonarAt(new HashSet<>(Collections.singletonList(3)));

  251. 

  252.     boolean added = moduleIssues.initAndAddIssue(issue);

  253. 

  254.     assertThat(added).isFalse();

  255.     verifyNoInteractions(reportPublisher);

  256.   }

  257. 

  258.   @Test

  259.   public void should_accept_issues_on_no_sonar_rules() {

  260.     // The "No Sonar" rule logs violations on the lines that are flagged with "NOSONAR" !!

  261.     activeRulesBuilder.addRule(new NewActiveRule.Builder()

  262.       .setRuleKey(NOSONAR_RULE_KEY)

  263.       .setSeverity(Severity.INFO)

  264.       .setQProfileKey("qp-1")

  265.       .build());

  266.     initModuleIssues();

  267. 

  268.     file.noSonarAt(new HashSet<>(Collections.singletonList(3)));

  269. 

  270.     DefaultIssue issue = new DefaultIssue(project)

  271.       .at(new DefaultIssueLocation().on(file).at(file.selectLine(3)).message(""))

  272.       .forRule(NOSONAR_RULE_KEY);

  273. 

  274.     when(filters.accept(any(InputComponent.class), any(ScannerReport.Issue.class))).thenReturn(true);

  275. 

  276.     boolean added = moduleIssues.initAndAddIssue(issue);

  277. 

  278.     assertThat(added).isTrue();

  279.     verify(reportPublisher.getWriter()).appendComponentIssue(eq(file.scannerId()), any());

  280.   }

  281. 

  282.   /**

  283.    * Every rules and active rules has to be added in builders before creating IssuePublisher

  284.    */

  285.   private void initModuleIssues() {

  286.     moduleIssues = new IssuePublisher(activeRulesBuilder.build(), filters, reportPublisher);

  287.   }

  288. 

  289. }