Merge pull request diffblue#515 from diffblue/jd/feature/AEPD_unit_tests

[SEC-553] AEPD unit tests

Author: JohnDumbell

driver/mkbench.py

@@ -157,16 +157,17 @@ def collect_java_binaries(cmdline):
         method_data = ep_data["method"]
 
         # We don't add the descriptor here as it's not recognized (and makes folder names too long).
-        fully_qualified_method = ep_data["className"] + "." + method_data["name"]
+        friendly_method_name = ep_data["className"] + "." + method_data["name"]
+        raw_method_name = ep_data["className"] + "." + method_data["signature"]
 
         # Try to make sure the folder name isn't invalid.
-        folder_name = fully_qualified_method.replace(os.path.sep, '.')
+        folder_name = friendly_method_name.replace(os.path.sep, '.')
         output_folder = os.path.join(cmdline.results_dir, folder_name)
 
         # If our folder exists then just add (#number) to it and try creation again.
         incrementor = 1
         while os.path.exists(output_folder):
-            folder_name = fully_qualified_method.replace(os.path.sep, '.') + " (" + str(incrementor) + ")"
+            folder_name = friendly_method_name.replace(os.path.sep, '.') + " (" + str(incrementor) + ")"
             output_folder = os.path.join(cmdline.results_dir, folder_name)
             incrementor += 1
 
@@ -180,7 +181,7 @@ def collect_java_binaries(cmdline):
             # The file should not exist yet. Here we only record the prefered/desired location
             #  of the file on disk. Analyser will create it, if it does not exist (in the first run)
             "gbf": os.path.join(generated_temp_folder, "input_program.gbf"),
-            "entry-point": fully_qualified_method
+            "entry-point": raw_method_name
         }
 
         program_file = os.path.join(output_folder, "program.json")
@@ -191,11 +192,11 @@ def collect_java_binaries(cmdline):
 
         # Update our copied commandline with accurate / new values.
         copied_command_line.update({
-            "name": "[" + cmdline.name + "] " + fully_qualified_method,
+            "name": "[" + cmdline.name + "] " + friendly_method_name,
             "output-dir": output_folder,
             "results-dir": output_folder,
             "temp-dir": generated_temp_folder,
-            "entry-point": fully_qualified_method
+            "entry-point": raw_method_name
         })
 
         # Save the commandline file.

driver/run.py

@@ -212,19 +212,19 @@ def prepare_scan(cmdline):
         configuration = json.load(config_file)
         file_name = os.path.basename(config_file.name)
 
-    if not configuration["detectedEntryPointsPath"]:
+    if not configuration.get("detectedEntryPointsPath", None):
         configuration["detectedEntryPointsPath"] = \
             os.path.join(cmdline.common_dir, "detected_entry_points.json")
 
-    if not configuration["diConfigurationPath"]:
+    if not configuration.get("diConfigurationPath", None):
         configuration["diConfigurationPath"] = \
             os.path.join(cmdline.common_dir, "di_configuration.json")
 
-    if not configuration["collectedClassesPath"]:
+    if not configuration.get("collectedClassesPath", None):
         configuration["collectedClassesPath"] = \
             os.path.join(cmdline.common_dir, "collected_classes.json")
 
-    if not configuration["collectedClassesInfoPath"]:
+    if not configuration.get("collectedClassesInfoPath", None):
         configuration["collectedClassesInfoPath"] = \
             os.path.join(cmdline.common_dir, "collected_classes_info.json")
 

regression/end_to_end/driver.py

@@ -72,7 +72,7 @@ def __exit__(self, exc_type, exc_value, traceback):
             print("Failure may relate to command: ", self.cmdline, file=sys.stderr)
 
 
-def quote_pathnames_in_command_line(cmdline):
+def pretty_print_commandline(cmdline):
     assert isinstance(cmdline, list) and len(cmdline) > 0
     result = cmdline[:1]
     for idx in range(1, len(cmdline)):
@@ -81,7 +81,26 @@ def quote_pathnames_in_command_line(cmdline):
             result.append("'" + cmdline[idx] + "'")
         else:
             result.append(cmdline[idx])
-    return result
+
+    return " ".join(result)
+
+
+def run_security_driver_script(
+        extra_commandline):
+
+    file_path = os.path.dirname(os.path.realpath(__file__))
+    pipeline_driver_path = \
+        os.path.realpath(os.path.join(file_path, "..", "..", "driver", "run.py"))
+
+    cmdline = ["python3", pipeline_driver_path]
+    cmdline.extend(extra_commandline)
+
+    executable_runner = ExecutableRunner(cmdline)
+    (stdout, stderr, ret) = executable_runner.run()
+    if ret != 0:
+        raise Exception(
+            "Failed running \"%s\":\nstdout:\n\n%s\nstderr\n\n%s" % \
+            (pretty_print_commandline(cmdline), stdout, stderr))
 
 
 def run_security_analyser_pipeline(
@@ -95,12 +114,9 @@ def run_security_analyser_pipeline(
     if extra_args is None:
         extra_args = []
 
-    regression_tests_path = os.getcwd()
     analyzer_home = utils.get_security_analyzer_home()
     if analyzer_home is None:
         raise Exception("Set SECURITY_SCANNER_HOME to a path containing the 'security-analyzer' binary")
-    pipeline_driver_path = \
-        os.path.realpath(os.path.join(regression_tests_path, "..", "driver", "run.py"))
     absolute_binary_path = \
         os.path.join(base_path, relative_binary_path)
     absolute_rules_path = \
@@ -113,8 +129,7 @@ def run_security_analyser_pipeline(
     common_dir = os.path.join(os.environ["SECURITY_ANALYSER_END_TO_END_TESTS_KEEP_RESULTS"], "TEMP") \
         if "SECURITY_ANALYSER_END_TO_END_TESTS_KEEP_RESULTS" in os.environ else tempfile.mkdtemp()
 
-    cmdline = ["python3", pipeline_driver_path,
-               "-C", absolute_rules_path,
+    cmdline = ["-C", absolute_rules_path,
                "-I", absolute_binary_path,
                "-R", results_dir,
                "-T", temporary_dir,
@@ -132,19 +147,12 @@ def run_security_analyser_pipeline(
         # optimisation matches:
         cmdline.append("--verify-csvsa-sparse-domains")
 
-    pretty_cmdline = " ".join(quote_pathnames_in_command_line(cmdline))
-
     with utils.working_dir(analyzer_home), \
          utils.temp_dir_deleter(results_dir), \
          utils.temp_dir_deleter(temporary_dir), \
          utils.temp_dir_deleter(common_dir):
 
-        executable_runner = ExecutableRunner(cmdline)
-        (stdout, stderr, ret) = executable_runner.run()
-        if ret != 0:
-            raise Exception(
-                "Failed running \"%s\":\nstdout:\n\n%s\nstderr\n\n%s" % \
-                (pretty_cmdline, stdout, stderr))
+        run_security_driver_script(cmdline)
 
         trace_list = \
             os.path.join(
@@ -163,6 +171,7 @@ def run_security_analyser_pipeline(
                         trace_json = json.load(trace_file)
                         inline_traces.append(trace_json)
 
+        pretty_cmdline = pretty_print_commandline(cmdline)
         if "SECURITY_ANALYSER_END_TO_END_TESTS_KEEP_RESULTS" in os.environ:
             print("Test \"%s\" kept results (%s) and temporary directory (%s)" %
                   (pretty_cmdline, results_dir, temporary_dir))

regression/end_to_end/prepare_scan/binaries/test/something/whatever/Annotation.class

@@ -0,0 +1,19 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "classPattern": {
+                        "annotations": [
+                            "test.something.whatever.Annotation"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/binaries/test/something/whatever/Classes.class

@@ -0,0 +1,24 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "classPattern": {
+                        "annotations": [
+                            "test.something.whatever.Annotation"
+                        ]
+                    },
+		    "methodPattern": {
+                        "annotations": [
+                            "test.something.whatever.Annotation"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/binaries/test/something/whatever/Interface.class

@@ -0,0 +1,19 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "classPattern": {
+                        "extends": [
+                            "test.something.whatever.MoreClasses"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/binaries/test/something/whatever/MoreClasses.class

@@ -0,0 +1,25 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "classPattern": {
+            "annotations": [
+                            "test.something.whatever.Annotation"
+                        ],
+			"extends": [
+                            "test.something.whatever.MoreClasses"
+                        ],
+			"implements": [
+                            "test.something.whatever.Interface"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/configurations/class_annotation.json

@@ -0,0 +1,19 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "classPattern": {
+                        "implements": [
+                            "test.something.whatever.Interface"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/configurations/class_annotation_and_method_annotation.json

@@ -0,0 +1,19 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "classPattern": {
+                        "annotations": [
+                            "test.something.whatever.Annotation"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/configurations/class_extends.json

@@ -0,0 +1,19 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "methodPattern": {
+                        "annotations": [
+                            "test.something.whatever.Annotation"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/configurations/class_full.json

@@ -0,0 +1,19 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "methodPattern": {
+                        "arguments": [
+                            "java.lang.String"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/configurations/class_implements.json

@@ -0,0 +1,29 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "methodPattern": {
+			"names": [
+                            "Testing"
+                        ],
+			"annotations": [
+                            "test.something.whatever.Annotation"
+                        ],
+			"arguments": [
+                            "java.lang.String",
+			    "test.something.whatever.Interface"
+                        ],
+			"returns": [
+                            "test.something.whatever.Classes"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/configurations/full_run.json

@@ -0,0 +1,19 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "methodPattern": {
+                        "names": [
+                            "Fake"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}

regression/end_to_end/prepare_scan/configurations/method_annotation.json

@@ -0,0 +1,19 @@
+{
+    "collectedClassesInfoPath": "",
+    "collectedClassesPath": "",
+    "detectedEntryPointsPath": "",
+    "patternGroup": [
+        {
+            "id": "General",
+            "patterns": [
+                {
+                    "methodPattern": {
+                        "returns": [
+                            "test.something.whatever.Classes"
+                        ]
+                    }
+                }
+            ]
+        }
+    ]
+}