package testscript import ( "bytes" "context" "encoding/json" "flag" "fmt" "io" "math/rand" "net" "net/http" "net/url" "os" "os/exec" "path/filepath" "runtime" "strconv" "strings" "testing" "time" "github.com/charmbracelet/keygen" "github.com/charmbracelet/soft-serve/pkg/config" "github.com/charmbracelet/soft-serve/pkg/db" "github.com/charmbracelet/soft-serve/pkg/test" "github.com/rogpeppe/go-internal/testscript" "github.com/spf13/cobra" "golang.org/x/crypto/ssh" ) var ( update = flag.Bool("update", false, "update script files") binPath string ) func PrepareBuildCommand(binPath string) *exec.Cmd { _, disableRaceSet := os.LookupEnv("SOFT_SERVE_DISABLE_RACE_CHECKS") if disableRaceSet { // don't add the -race flag return exec.Command("go", "build", "-cover", "-o", binPath, filepath.Join("..", "cmd", "soft")) //nolint:noctx } return exec.Command("go", "build", "-race", "-cover", "-o", binPath, filepath.Join("..", "cmd", "soft")) //nolint:noctx } func TestMain(m *testing.M) { tmp, err := os.MkdirTemp("", "soft-serve*") if err != nil { fmt.Fprintf(os.Stderr, "failed to create temporary directory: %s", err) os.Exit(1) } defer os.RemoveAll(tmp) binPath = filepath.Join(tmp, "soft") if runtime.GOOS == "windows" { binPath += ".exe" } // Build the soft binary with -cover flag. cmd := PrepareBuildCommand(binPath) if err := cmd.Run(); err != nil { fmt.Fprintf(os.Stderr, "failed to build soft-serve binary: %s", err) os.Exit(1) } // Run tests os.Exit(m.Run()) } func TestScript(t *testing.T) { flag.Parse() mkkey := func(name string) (string, *keygen.SSHKeyPair) { path := filepath.Join(t.TempDir(), name) pair, err := keygen.New(path, keygen.WithKeyType(keygen.Ed25519), keygen.WithWrite()) if err != nil { t.Fatal(err) } return path, pair } admin1Key, admin1 := mkkey("admin1") _, admin2 := mkkey("admin2") user1Key, user1 := mkkey("user1") attackerKey, attacker := mkkey("attacker") attackerSigner := &maliciousSigner{ publicKey: admin1.PublicKey(), } testscript.Run(t, testscript.Params{ Dir: "./testdata/", UpdateScripts: *update, RequireExplicitExec: true, Cmds: map[string]func(ts *testscript.TestScript, neg bool, args []string){ "soft": cmdSoft("admin", admin1.Signer()), "usoft": cmdSoft("user1", user1.Signer()), "attacksoft": cmdSoft("attacker", attackerSigner, attacker.Signer()), "git": cmdGit(admin1Key), "ugit": cmdGit(user1Key), "agit": cmdGit(attackerKey), "curl": cmdCurl, "mkfile": cmdMkfile, "envfile": cmdEnvfile, "readfile": cmdReadfile, "dos2unix": cmdDos2Unix, "new-webhook": cmdNewWebhook, "ensureserverrunning": cmdEnsureServerRunning, "ensureservernotrunning": cmdEnsureServerNotRunning, "stopserver": cmdStopserver, "ui": cmdUI(admin1.Signer()), "uui": cmdUI(user1.Signer()), }, Setup: func(e *testscript.Env) error { // Add binPath to PATH e.Setenv("PATH", fmt.Sprintf("%s%c%s", filepath.Dir(binPath), os.PathListSeparator, e.Getenv("PATH"))) data := t.TempDir() sshPort := test.RandomPort() sshListen := fmt.Sprintf("localhost:%d", sshPort) gitPort := test.RandomPort() gitListen := fmt.Sprintf("localhost:%d", gitPort) httpPort := test.RandomPort() httpListen := fmt.Sprintf("localhost:%d", httpPort) statsPort := test.RandomPort() statsListen := fmt.Sprintf("localhost:%d", statsPort) serverName := "Test Soft Serve" e.Setenv("DATA_PATH", data) e.Setenv("SSH_PORT", fmt.Sprintf("%d", sshPort)) e.Setenv("HTTP_PORT", fmt.Sprintf("%d", httpPort)) e.Setenv("STATS_PORT", fmt.Sprintf("%d", statsPort)) e.Setenv("GIT_PORT", fmt.Sprintf("%d", gitPort)) e.Setenv("ADMIN1_AUTHORIZED_KEY", admin1.AuthorizedKey()) e.Setenv("ADMIN2_AUTHORIZED_KEY", admin2.AuthorizedKey()) e.Setenv("USER1_AUTHORIZED_KEY", user1.AuthorizedKey()) e.Setenv("ATTACKER_AUTHORIZED_KEY", attacker.AuthorizedKey()) e.Setenv("SSH_KNOWN_HOSTS_FILE", filepath.Join(t.TempDir(), "known_hosts")) e.Setenv("SSH_KNOWN_CONFIG_FILE", filepath.Join(t.TempDir(), "config")) // This is used to set up test specific configuration and http endpoints e.Setenv("SOFT_SERVE_TESTRUN", "1") // This will disable the default lipgloss renderer colors e.Setenv("SOFT_SERVE_NO_COLOR", "1") // Soft Serve debug environment variables for _, env := range []string{ "SOFT_SERVE_DEBUG", "SOFT_SERVE_VERBOSE", } { if v, ok := os.LookupEnv(env); ok { e.Setenv(env, v) } } // TODO: test different configs cfg := config.DefaultConfig() cfg.DataPath = data cfg.Name = serverName cfg.InitialAdminKeys = []string{admin1.AuthorizedKey()} cfg.SSH.ListenAddr = sshListen cfg.SSH.PublicURL = "ssh://" + sshListen cfg.Git.ListenAddr = gitListen cfg.HTTP.ListenAddr = httpListen cfg.HTTP.PublicURL = "http://" + httpListen cfg.Stats.ListenAddr = statsListen cfg.LFS.Enabled = true // Parse os SOFT_SERVE environment variables if err := cfg.ParseEnv(); err != nil { return err } // Override the database data source if we're using postgres // so we can create a temporary database for the tests. if cfg.DB.Driver == "postgres" { cleanup, err := setupPostgres(e.T(), cfg) if err != nil { return err } if cleanup != nil { e.Defer(cleanup) } } for _, env := range cfg.Environ() { parts := strings.SplitN(env, "=", 2) if len(parts) != 2 { e.T().Fatal("invalid environment variable", env) } e.Setenv(parts[0], parts[1]) } return nil }, }) } func cmdSoft(user string, keys ...ssh.Signer) func(ts *testscript.TestScript, neg bool, args []string) { return func(ts *testscript.TestScript, neg bool, args []string) { cli, err := ssh.Dial( "tcp", net.JoinHostPort("localhost", ts.Getenv("SSH_PORT")), &ssh.ClientConfig{ User: user, Auth: []ssh.AuthMethod{ssh.PublicKeys(keys...)}, HostKeyCallback: ssh.InsecureIgnoreHostKey(), }, ) ts.Check(err) defer cli.Close() sess, err := cli.NewSession() ts.Check(err) defer sess.Close() sess.Stdout = ts.Stdout() sess.Stderr = ts.Stderr() check(ts, sess.Run(strings.Join(args, " ")), neg) } } func cmdUI(key ssh.Signer) func(ts *testscript.TestScript, neg bool, args []string) { return func(ts *testscript.TestScript, neg bool, args []string) { if len(args) < 1 { ts.Fatalf("usage: ui ") return } cli, err := ssh.Dial( "tcp", net.JoinHostPort("localhost", ts.Getenv("SSH_PORT")), &ssh.ClientConfig{ User: "git", Auth: []ssh.AuthMethod{ssh.PublicKeys(key)}, HostKeyCallback: ssh.InsecureIgnoreHostKey(), }, ) check(ts, err, neg) defer cli.Close() sess, err := cli.NewSession() check(ts, err, neg) defer sess.Close() // XXX: this is a hack to make the UI tests work // cmp command always complains about an extra newline // in the output defer ts.Stdout().Write([]byte("\n")) sess.Stdout = ts.Stdout() sess.Stderr = ts.Stderr() stdin, err := sess.StdinPipe() check(ts, err, neg) err = sess.RequestPty("dumb", 40, 80, ssh.TerminalModes{}) check(ts, err, neg) check(ts, sess.Start(""), neg) in, err := strconv.Unquote(args[0]) check(ts, err, neg) reader := strings.NewReader(in) go func() { defer stdin.Close() for { r, _, err := reader.ReadRune() if err == io.EOF { break } check(ts, err, neg) _, _ = io.WriteString(stdin, string(r)) // Wait for the UI to process the input time.Sleep(100 * time.Millisecond) } }() check(ts, sess.Wait(), neg) } } func cmdDos2Unix(ts *testscript.TestScript, neg bool, args []string) { if neg { ts.Fatalf("unsupported: ! dos2unix") } if len(args) < 1 { ts.Fatalf("usage: dos2unix paths...") } for _, arg := range args { filename := ts.MkAbs(arg) data, err := os.ReadFile(filename) if err != nil { ts.Fatalf("%s: %v", filename, err) } // Replace all '\r\n' with '\n'. data = bytes.ReplaceAll(data, []byte{'\r', '\n'}, []byte{'\n'}) if err := os.WriteFile(filename, data, 0o644); err != nil { ts.Fatalf("%s: %v", filename, err) } } } var sshConfig = ` Host * UserKnownHostsFile %q StrictHostKeyChecking no IdentityAgent none IdentitiesOnly yes ServerAliveInterval 60 ` func cmdGit(key string) func(ts *testscript.TestScript, neg bool, args []string) { return func(ts *testscript.TestScript, neg bool, args []string) { ts.Check(os.WriteFile( ts.Getenv("SSH_KNOWN_CONFIG_FILE"), []byte(fmt.Sprintf(sshConfig, ts.Getenv("SSH_KNOWN_HOSTS_FILE"))), 0o600, )) sshArgs := []string{ "-F", filepath.ToSlash(ts.Getenv("SSH_KNOWN_CONFIG_FILE")), "-i", filepath.ToSlash(key), } ts.Setenv( "GIT_SSH_COMMAND", strings.Join(append([]string{"ssh"}, sshArgs...), " "), ) // Disable git prompting for credentials. ts.Setenv("GIT_TERMINAL_PROMPT", "0") args = append([]string{ "-c", "user.email=john@example.com", "-c", "user.name=John Doe", }, args...) check(ts, ts.Exec("git", args...), neg) } } func cmdMkfile(ts *testscript.TestScript, neg bool, args []string) { if len(args) < 2 { ts.Fatalf("usage: mkfile path content") } check(ts, os.WriteFile( ts.MkAbs(args[0]), []byte(strings.Join(args[1:], " ")), 0o644, ), neg) } func check(ts *testscript.TestScript, err error, neg bool) { if neg && err == nil { ts.Fatalf("expected error, got nil") } if !neg { ts.Check(err) } } func cmdReadfile(ts *testscript.TestScript, neg bool, args []string) { ts.Stdout().Write([]byte(ts.ReadFile(args[0]))) } func cmdEnvfile(ts *testscript.TestScript, neg bool, args []string) { if len(args) < 1 { ts.Fatalf("usage: envfile key=file...") } for _, arg := range args { parts := strings.SplitN(arg, "=", 2) if len(parts) != 2 { ts.Fatalf("usage: envfile key=file...") } key := parts[0] file := parts[1] ts.Setenv(key, strings.TrimSpace(ts.ReadFile(file))) } } func cmdNewWebhook(ts *testscript.TestScript, neg bool, args []string) { type webhookSite struct { UUID string `json:"uuid"` } if len(args) != 1 { ts.Fatalf("usage: new-webhook ") } const whSite = "https://webhook.site" req, err := http.NewRequest(http.MethodPost, whSite+"/token", nil) //nolint:noctx check(ts, err, neg) resp, err := http.DefaultClient.Do(req) check(ts, err, neg) defer resp.Body.Close() var site webhookSite check(ts, json.NewDecoder(resp.Body).Decode(&site), neg) ts.Setenv(args[0], whSite+"/"+site.UUID) } func cmdCurl(ts *testscript.TestScript, neg bool, args []string) { var verbose bool var headers []string var data string method := http.MethodGet cmd := &cobra.Command{ Use: "curl", Args: cobra.MinimumNArgs(1), RunE: func(cmd *cobra.Command, args []string) error { url, err := url.Parse(args[0]) if err != nil { return err } req, err := http.NewRequest(method, url.String(), nil) //nolint:noctx if err != nil { return err } if data != "" { req.Body = io.NopCloser(strings.NewReader(data)) } if verbose { fmt.Fprintf(cmd.ErrOrStderr(), "< %s %s\n", req.Method, url.String()) } for _, header := range headers { parts := strings.SplitN(header, ":", 2) if len(parts) != 2 { return fmt.Errorf("invalid header: %s", header) } req.Header.Add(strings.TrimSpace(parts[0]), strings.TrimSpace(parts[1])) } if userInfo := url.User; userInfo != nil { password, _ := userInfo.Password() req.SetBasicAuth(userInfo.Username(), password) } if verbose { for key, values := range req.Header { for _, value := range values { fmt.Fprintf(cmd.ErrOrStderr(), "< %s: %s\n", key, value) } } } resp, err := http.DefaultClient.Do(req) if err != nil { return err } if verbose { fmt.Fprintf(ts.Stderr(), "> %s\n", resp.Status) for key, values := range resp.Header { for _, value := range values { fmt.Fprintf(cmd.ErrOrStderr(), "> %s: %s\n", key, value) } } } defer resp.Body.Close() buf, err := io.ReadAll(resp.Body) if err != nil { return err } cmd.Print(string(buf)) return nil }, } cmd.SetArgs(args) cmd.SetOut(ts.Stdout()) cmd.SetErr(ts.Stderr()) cmd.Flags().BoolVarP(&verbose, "verbose", "v", verbose, "verbose") cmd.Flags().StringArrayVarP(&headers, "header", "H", nil, "HTTP header") cmd.Flags().StringVarP(&method, "request", "X", method, "HTTP method") cmd.Flags().StringVarP(&data, "data", "d", data, "HTTP data") check(ts, cmd.Execute(), neg) } func cmdEnsureServerRunning(ts *testscript.TestScript, neg bool, args []string) { if len(args) < 1 { ts.Fatalf("Must supply a TCP port of one of the services to connect to. " + "These are set as env vars as they are randomized. " + "Example usage: \"cmdensureserverrunning SSH_PORT\"\n" + "Valid values for the env var: SSH_PORT|HTTP_PORT|GIT_PORT|STATS_PORT") } port := ts.Getenv(args[0]) // verify that the server is up addr := net.JoinHostPort("localhost", port) for { conn, _ := net.DialTimeout( //nolint:noctx "tcp", addr, time.Second, ) if conn != nil { ts.Logf("Server is running on port: %s", port) conn.Close() break } } } func cmdEnsureServerNotRunning(ts *testscript.TestScript, neg bool, args []string) { if len(args) < 1 { ts.Fatalf("Must supply a TCP port of one of the services to connect to. " + "These are set as env vars as they are randomized. " + "Example usage: \"cmdensureservernotrunning SSH_PORT\"\n" + "Valid values for the env var: SSH_PORT|HTTP_PORT|GIT_PORT|STATS_PORT") } port := ts.Getenv(args[0]) // verify that the server is not up addr := net.JoinHostPort("localhost", port) conn, _ := net.DialTimeout( //nolint:noctx "tcp", addr, time.Second, ) if conn != nil { ts.Fatalf("server is running on port %s while it should not be running", port) conn.Close() } } func cmdStopserver(ts *testscript.TestScript, neg bool, args []string) { // stop the server resp, err := http.DefaultClient.Head(fmt.Sprintf("%s/__stop", ts.Getenv("SOFT_SERVE_HTTP_PUBLIC_URL"))) //nolint:noctx check(ts, err, neg) resp.Body.Close() time.Sleep(time.Second * 2) // Allow some time for the server to stop } func setupPostgres(t testscript.T, cfg *config.Config) (func(), error) { // Indicates postgres // Create a disposable database rnd := rand.New(rand.NewSource(time.Now().UnixNano())) dbName := fmt.Sprintf("softserve_test_%d", rnd.Int63()) dbDsn := cfg.DB.DataSource if dbDsn == "" { cfg.DB.DataSource = "postgres://postgres@localhost:5432/postgres?sslmode=disable" } dbUrl, err := url.Parse(cfg.DB.DataSource) if err != nil { return nil, err } scheme := dbUrl.Scheme if scheme == "" { scheme = "postgres" } host := dbUrl.Hostname() if host == "" { host = "localhost" } connInfo := fmt.Sprintf("host=%s sslmode=disable", host) username := dbUrl.User.Username() if username != "" { connInfo += fmt.Sprintf(" user=%s", username) password, ok := dbUrl.User.Password() if ok { username = fmt.Sprintf("%s:%s", username, password) connInfo += fmt.Sprintf(" password=%s", password) } username = fmt.Sprintf("%s@", username) } else { connInfo += " user=postgres" username = "postgres@" } port := dbUrl.Port() if port != "" { connInfo += fmt.Sprintf(" port=%s", port) port = fmt.Sprintf(":%s", port) } cfg.DB.DataSource = fmt.Sprintf("%s://%s%s%s/%s?sslmode=disable", scheme, username, host, port, dbName, ) // Create the database dbx, err := db.Open(context.TODO(), cfg.DB.Driver, connInfo) if err != nil { return nil, err } if _, err := dbx.ExecContext(context.TODO(), "CREATE DATABASE "+dbName); err != nil { return nil, err } return func() { dbx, err := db.Open(context.TODO(), cfg.DB.Driver, connInfo) if err != nil { t.Fatal("failed to open database", dbName, err) } if _, err := dbx.ExecContext(context.TODO(), "DROP DATABASE "+dbName); err != nil { t.Fatal("failed to drop database", dbName, err) } }, nil } type maliciousSigner struct { publicKey ssh.PublicKey } var _ ssh.Signer = (*maliciousSigner)(nil) // PublicKey implements ssh.Signer. func (m *maliciousSigner) PublicKey() ssh.PublicKey { return m.publicKey } // Sign implements ssh.Signer. func (m *maliciousSigner) Sign(rand io.Reader, data []byte) (*ssh.Signature, error) { // The attacker doesn't know how to sign the data without a private key. return &ssh.Signature{}, nil }