Strona główna Odkrywaj Pomoc
Zaloguj się
Red_Acid_Bunny
/
neovim
kopia lustrzana https://github.com/neovim/neovim
Obserwuj 1
Polub 0
Forkuj 0
Pliki Problemy 0 Wiki
Gałąź: release-0.9
Gałęzie Tagi
neovim
/
test
/
functional
/
lua
/
secure_spec.lua

secure_spec.lua 14 KB
Bezpośredni odnośnik Historia Czysty

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280 
  1. local helpers = require('test.functional.helpers')(after_each)
    2. 

  2. local Screen = require('test.functional.ui.screen')
    3. 

  3. 

  4. local eq = helpers.eq
    5. 

  5. local clear = helpers.clear
    6. 

  6. local command = helpers.command
    7. 

  7. local pathsep = helpers.get_pathsep()
    8. 

  8. local is_os = helpers.is_os
    9. 

  9. local curbufmeths = helpers.curbufmeths
    10. 

  10. local exec_lua = helpers.exec_lua
    11. 

  11. local feed_command = helpers.feed_command
    12. 

  12. local feed = helpers.feed
    13. 

  13. local funcs = helpers.funcs
    14. 

  14. local pcall_err = helpers.pcall_err
    15. 

  15. local matches = helpers.matches
    16. 

  16. 

  17. describe('vim.secure', function()
    18. 

  18.   describe('read()', function()
    19. 

  19.     local xstate = 'Xstate'
    20. 

  20. 

  21.     setup(function()
    22. 

  22.       clear{env={XDG_STATE_HOME=xstate}}
    23. 

  23.       helpers.mkdir_p(xstate .. pathsep .. (is_os('win') and 'nvim-data' or 'nvim'))
    24. 

  24.       helpers.write_file('Xfile', [[
    25. 

  25.         let g:foobar = 42
    26. 

  26.       ]])
    27. 

  27.     end)
    28. 

  28. 

  29.     teardown(function()
    30. 

  30.       os.remove('Xfile')
    31. 

  31.       helpers.rmdir(xstate)
    32. 

  32.     end)
    33. 

  33. 

  34.     it('works', function()
    35. 

  35.       local screen = Screen.new(80, 8)
    36. 

  36.       screen:attach()
    37. 

  37.       screen:set_default_attr_ids({
    38. 

  38.         [1] = {bold = true, foreground = Screen.colors.Blue1},
    39. 

  39.         [2] = {bold = true, reverse = true},
    40. 

  40.         [3] = {bold = true, foreground = Screen.colors.SeaGreen},
    41. 

  41.         [4] = {reverse = true},
    42. 

  42.       })
    43. 

  43. 

  44.       --- XXX: screen:expect() may fail if this path is too long.
    45. 

  45.       local cwd = funcs.getcwd()
    46. 

  46. 

  47.       -- Need to use feed_command instead of exec_lua because of the confirmation prompt
    48. 

  48.       feed_command([[lua vim.secure.read('Xfile')]])
    49. 

  49.       screen:expect{grid=[[
    50. 

  50.                                                                                         |
    51. 

  51.         {1:~                                                                               }|
    52. 

  52.         {1:~                                                                               }|
    53. 

  53.         {1:~                                                                               }|
    54. 

  54.         {2:                                                                                }|
    55. 

  55.         :lua vim.secure.read('Xfile')                                                   |
    56. 

  56.         {3:]] .. cwd .. pathsep .. [[Xfile is not trusted.}{MATCH:%s+}|
    57. 

  57.         {3:[i]gnore, (v)iew, (d)eny, (a)llow: }^                                             |
    58. 

  58.       ]]}
    59. 

  59.       feed('d')
    60. 

  60.       screen:expect{grid=[[
    61. 

  61.         ^                                                                                |
    62. 

  62.         {1:~                                                                               }|
    63. 

  63.         {1:~                                                                               }|
    64. 

  64.         {1:~                                                                               }|
    65. 

  65.         {1:~                                                                               }|
    66. 

  66.         {1:~                                                                               }|
    67. 

  67.         {1:~                                                                               }|
    68. 

  68.                                                                                         |
    69. 

  69.       ]]}
    70. 

  70. 

  71.       local trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    72. 

  72.       eq(string.format('! %s', cwd .. pathsep .. 'Xfile'), vim.trim(trust))
    73. 

  73.       eq(helpers.NIL, exec_lua([[return vim.secure.read('Xfile')]]))
    74. 

  74. 

  75.       os.remove(funcs.stdpath('state') .. pathsep .. 'trust')
    76. 

  76. 

  77.       feed_command([[lua vim.secure.read('Xfile')]])
    78. 

  78.       screen:expect{grid=[[
    79. 

  79.                                                                                         |
    80. 

  80.         {1:~                                                                               }|
    81. 

  81.         {1:~                                                                               }|
    82. 

  82.         {1:~                                                                               }|
    83. 

  83.         {2:                                                                                }|
    84. 

  84.         :lua vim.secure.read('Xfile')                                                   |
    85. 

  85.         {3:]] .. cwd .. pathsep .. [[Xfile is not trusted.}{MATCH:%s+}|
    86. 

  86.         {3:[i]gnore, (v)iew, (d)eny, (a)llow: }^                                             |
    87. 

  87.       ]]}
    88. 

  88.       feed('a')
    89. 

  89.       screen:expect{grid=[[
    90. 

  90.         ^                                                                                |
    91. 

  91.         {1:~                                                                               }|
    92. 

  92.         {1:~                                                                               }|
    93. 

  93.         {1:~                                                                               }|
    94. 

  94.         {1:~                                                                               }|
    95. 

  95.         {1:~                                                                               }|
    96. 

  96.         {1:~                                                                               }|
    97. 

  97.                                                                                         |
    98. 

  98.       ]]}
    99. 

  99. 

  100.       local hash = funcs.sha256(helpers.read_file('Xfile'))
    101. 

  101.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    102. 

  102.       eq(string.format('%s %s', hash, cwd .. pathsep .. 'Xfile'), vim.trim(trust))
    103. 

  103.       eq(helpers.NIL, exec_lua([[vim.secure.read('Xfile')]]))
    104. 

  104. 

  105.       os.remove(funcs.stdpath('state') .. pathsep .. 'trust')
    106. 

  106. 

  107.       feed_command([[lua vim.secure.read('Xfile')]])
    108. 

  108.       screen:expect{grid=[[
    109. 

  109.                                                                                         |
    110. 

  110.         {1:~                                                                               }|
    111. 

  111.         {1:~                                                                               }|
    112. 

  112.         {1:~                                                                               }|
    113. 

  113.         {2:                                                                                }|
    114. 

  114.         :lua vim.secure.read('Xfile')                                                   |
    115. 

  115.         {3:]] .. cwd .. pathsep .. [[Xfile is not trusted.}{MATCH:%s+}|
    116. 

  116.         {3:[i]gnore, (v)iew, (d)eny, (a)llow: }^                                             |
    117. 

  117.       ]]}
    118. 

  118.       feed('i')
    119. 

  119.       screen:expect{grid=[[
    120. 

  120.         ^                                                                                |
    121. 

  121.         {1:~                                                                               }|
    122. 

  122.         {1:~                                                                               }|
    123. 

  123.         {1:~                                                                               }|
    124. 

  124.         {1:~                                                                               }|
    125. 

  125.         {1:~                                                                               }|
    126. 

  126.         {1:~                                                                               }|
    127. 

  127.                                                                                         |
    128. 

  128.       ]]}
    129. 

  129. 

  130.       -- Trust database is not updated
    131. 

  131.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    132. 

  132.       eq(nil, trust)
    133. 

  133. 

  134.       feed_command([[lua vim.secure.read('Xfile')]])
    135. 

  135.       screen:expect{grid=[[
    136. 

  136.                                                                                         |
    137. 

  137.         {1:~                                                                               }|
    138. 

  138.         {1:~                                                                               }|
    139. 

  139.         {1:~                                                                               }|
    140. 

  140.         {2:                                                                                }|
    141. 

  141.         :lua vim.secure.read('Xfile')                                                   |
    142. 

  142.         {3:]] .. cwd .. pathsep .. [[Xfile is not trusted.}{MATCH:%s+}|
    143. 

  143.         {3:[i]gnore, (v)iew, (d)eny, (a)llow: }^                                             |
    144. 

  144.       ]]}
    145. 

  145.       feed('v')
    146. 

  146.       screen:expect{grid=[[
    147. 

  147.           ^let g:foobar = 42                                                             |
    148. 

  148.         {1:~                                                                               }|
    149. 

  149.         {1:~                                                                               }|
    150. 

  150.         {2:]] .. funcs.fnamemodify(cwd, ':~') .. pathsep .. [[Xfile [RO]{MATCH:%s+}}|
    151. 

  151.                                                                                         |
    152. 

  152.         {1:~                                                                               }|
    153. 

  153.         {4:[No Name]                                                                       }|
    154. 

  154.                                                                                         |
    155. 

  155.       ]]}
    156. 

  156. 

  157.       -- Trust database is not updated
    158. 

  158.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    159. 

  159.       eq(nil, trust)
    160. 

  160. 

  161.       -- Cannot write file
    162. 

  162.       pcall_err(command, 'write')
    163. 

  163.       eq(true, curbufmeths.get_option('readonly'))
    164. 

  164.     end)
    165. 

  165.   end)
    166. 

  166. 

  167.   describe('trust()', function()
    168. 

  168.     local xstate = 'Xstate'
    169. 

  169. 

  170.     setup(function()
    171. 

  171.       clear{env={XDG_STATE_HOME=xstate}}
    172. 

  172.       helpers.mkdir_p(xstate .. pathsep .. (is_os('win') and 'nvim-data' or 'nvim'))
    173. 

  173.     end)
    174. 

  174. 

  175.     teardown(function()
    176. 

  176.       helpers.rmdir(xstate)
    177. 

  177.     end)
    178. 

  178. 

  179.     before_each(function()
    180. 

  180.       helpers.write_file('test_file', 'test')
    181. 

  181.     end)
    182. 

  182. 

  183.     after_each(function()
    184. 

  184.       os.remove('test_file')
    185. 

  185.     end)
    186. 

  186. 

  187.     it('returns error when passing both path and bufnr', function()
    188. 

  188.       matches('"path" and "bufnr" are mutually exclusive',
    189. 

  189.         pcall_err(exec_lua, [[vim.secure.trust({action='deny', bufnr=0, path='test_file'})]]))
    190. 

  190.     end)
    191. 

  191. 

  192.     it('returns error when passing neither path or bufnr', function()
    193. 

  193.       matches('one of "path" or "bufnr" is required',
    194. 

  194.         pcall_err(exec_lua, [[vim.secure.trust({action='deny'})]]))
    195. 

  195.     end)
    196. 

  196. 

  197.     it('trust then deny then remove a file using bufnr', function()
    198. 

  198.       local cwd = funcs.getcwd()
    199. 

  199.       local hash = funcs.sha256(helpers.read_file('test_file'))
    200. 

  200.       local full_path = cwd .. pathsep .. 'test_file'
    201. 

  201. 

  202.       command('edit test_file')
    203. 

  203.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='allow', bufnr=0})}]]))
    204. 

  204.       local trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    205. 

  205.       eq(string.format('%s %s', hash, full_path), vim.trim(trust))
    206. 

  206. 

  207.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='deny', bufnr=0})}]]))
    208. 

  208.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    209. 

  209.       eq(string.format('! %s', full_path), vim.trim(trust))
    210. 

  210. 

  211.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='remove', bufnr=0})}]]))
    212. 

  212.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    213. 

  213.       eq('', vim.trim(trust))
    214. 

  214.     end)
    215. 

  215. 

  216.     it('deny then trust then remove a file using bufnr', function()
    217. 

  217.       local cwd = funcs.getcwd()
    218. 

  218.       local hash = funcs.sha256(helpers.read_file('test_file'))
    219. 

  219.       local full_path = cwd .. pathsep .. 'test_file'
    220. 

  220. 

  221.       command('edit test_file')
    222. 

  222.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='deny', bufnr=0})}]]))
    223. 

  223.       local trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    224. 

  224.       eq(string.format('! %s', full_path), vim.trim(trust))
    225. 

  225. 

  226.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='allow', bufnr=0})}]]))
    227. 

  227.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    228. 

  228.       eq(string.format('%s %s', hash, full_path), vim.trim(trust))
    229. 

  229. 

  230.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='remove', bufnr=0})}]]))
    231. 

  231.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    232. 

  232.       eq('', vim.trim(trust))
    233. 

  233.     end)
    234. 

  234. 

  235.     it('trust using bufnr then deny then remove a file using path', function()
    236. 

  236.       local cwd = funcs.getcwd()
    237. 

  237.       local hash = funcs.sha256(helpers.read_file('test_file'))
    238. 

  238.       local full_path = cwd .. pathsep .. 'test_file'
    239. 

  239. 

  240.       command('edit test_file')
    241. 

  241.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='allow', bufnr=0})}]]))
    242. 

  242.       local trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    243. 

  243.       eq(string.format('%s %s', hash, full_path), vim.trim(trust))
    244. 

  244. 

  245.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='deny', path='test_file'})}]]))
    246. 

  246.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    247. 

  247.       eq(string.format('! %s', full_path), vim.trim(trust))
    248. 

  248. 

  249.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='remove', path='test_file'})}]]))
    250. 

  250.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    251. 

  251.       eq('', vim.trim(trust))
    252. 

  252.     end)
    253. 

  253. 

  254.     it('deny then trust then remove a file using bufnr', function()
    255. 

  255.       local cwd = funcs.getcwd()
    256. 

  256.       local hash = funcs.sha256(helpers.read_file('test_file'))
    257. 

  257.       local full_path = cwd .. pathsep .. 'test_file'
    258. 

  258. 

  259.       command('edit test_file')
    260. 

  260.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='deny', path='test_file'})}]]))
    261. 

  261.       local trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    262. 

  262.       eq(string.format('! %s', full_path), vim.trim(trust))
    263. 

  263. 

  264.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='allow', bufnr=0})}]]))
    265. 

  265.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    266. 

  266.       eq(string.format('%s %s', hash, full_path), vim.trim(trust))
    267. 

  267. 

  268.       eq({true, full_path}, exec_lua([[return {vim.secure.trust({action='remove', path='test_file'})}]]))
    269. 

  269.       trust = helpers.read_file(funcs.stdpath('state') .. pathsep .. 'trust')
    270. 

  270.       eq('', vim.trim(trust))
    271. 

  271.     end)
    272. 

  272. 

  273.     it('trust returns error when buffer not associated to file', function()
    274. 

  274.       command('new')
    275. 

  275.       eq({false, 'buffer is not associated with a file'},
    276. 

  276.         exec_lua([[return {vim.secure.trust({action='allow', bufnr=0})}]]))
    277. 

  277.     end)
    278. 

  278.   end)
    279. 

  279. end)
    280. 

  280.