openstack
/
congress
Code Issues Proposed changes
congress/congress/tests/api/test_rule_model.py

186 lines
7.4 KiB
Python
Raw Blame History

# Copyright 2015 NEC Corporation. All rights reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
from __future__ import print_function
from __future__ import division
from __future__ import absolute_import
from unittest import mock
from congress.api import rule_model
from congress.api import webservice
from congress.tests.api import base as api_base
from congress.tests import base
class TestRuleModel(base.SqlTestCase):
def setUp(self):
super(TestRuleModel, self).setUp()
services = api_base.setup_config()
self.policy_model = services['api']['api-policy']
self.rule_model = services['api']['api-rule']
self.node = services['node']
self.action_policy = self.policy_model.get_item('action', {})
self.context = {'policy_id': self.action_policy["name"]}
self._add_test_rule()
def _add_test_rule(self):
test_rule1 = {
"rule": "p(x) :- q(x)",
"name": "test-rule1",
"comment": "test-comment"
}
test_rule2 = {
"rule": 'p(x) :- q(x), not r(x)',
"name": "test-rule2",
"comment": "test-comment-2"
}
test_rule_id, obj = self.rule_model.add_item(test_rule1, {},
context=self.context)
test_rule1["id"] = test_rule_id
self.rule1 = test_rule1
test_rule_id, obj = self.rule_model.add_item(test_rule2, {},
context=self.context)
test_rule2["id"] = test_rule_id
self.rule2 = test_rule2
@mock.patch.object(rule_model.RuleModel, 'policy_name')
def test_add_rule_with_invalid_policy(self, policy_name_mock):
test_rule = {'rule': 'p()', 'name': 'test'}
policy_name_mock.return_value = 'invalid'
self.assertRaises(webservice.DataModelException,
self.rule_model.add_item,
test_rule, {})
# TODO(dse2): Fix this test; it must create a 'beta' service on the dse
# so that when it subscribes, the snapshot can be returned.
# Or fix the subscribe() implementation so that we can subscribe before
# the service has been created.
# def test_add_rule_with_colrefs(self):
# engine = self.engine
# engine.create_policy('beta', kind=datalogbase.DATASOURCE_POLICY_TYPE)
# engine.set_schema(
# 'beta', compile.Schema({'q': ("name", "status", "year")}))
# # insert/retrieve rule with column references
# # just testing that no errors are thrown--correctness elsewhere
# # Assuming that api-models are pass-throughs to functionality
# (id1, _) = self.rule_model.add_item(
# {'rule': 'p(x) :- beta:q(name=x)'},
# {}, context=self.context)
# self.rule_model.get_item(id1, {}, context=self.context)
# def test_add_rule_with_bad_colrefs(self):
# engine = self.engine
# engine.create_policy('beta') # not datasource policy
# # insert/retrieve rule with column references
# # just testing that no errors are thrown--correctness elsewhere
# # Assuming that api-models are pass-throughs to functionality
# self.assertRaises(
# webservice.DataModelException,
# self.rule_model.add_item,
# {'rule': 'p(x) :- beta:q(name=x)'},
# {}, context=self.context)
def test_add_rule_with_cross_policy_table(self):
test_rule = {
"rule": "p(x) :- classification:q(x)",
"name": "test-rule-cross",
"comment": "test-comment"
}
test_rule_id, obj = self.rule_model.add_item(test_rule, {},
context=self.context)
test_rule['id'] = test_rule_id
ret = self.rule_model.get_item(test_rule_id, {},
context=self.context)
self.assertEqual(test_rule, ret)
def test_get_items(self):
ret = self.rule_model.get_items({}, context=self.context)
self.assertTrue(all(p in ret['results']
for p in [self.rule1, self.rule2]))
def test_get_item(self):
expected_ret = self.rule1
ret = self.rule_model.get_item(self.rule1["id"], {},
context=self.context)
self.assertEqual(expected_ret, ret)
def test_get_invalid_item(self):
expected_ret = None
ret = self.rule_model.get_item('invalid-id', {}, context=self.context)
self.assertEqual(expected_ret, ret)
def test_delete_item(self):
expected_ret = self.rule1
ret = self.rule_model.delete_item(self.rule1['id'], {},
context=self.context)
self.assertEqual(expected_ret, ret)
expected_ret = None
ret = self.rule_model.get_item(self.rule1['id'], {},
context=self.context)
self.assertEqual(expected_ret, ret)
def test_rule_api_model_errors(self):
"""Test syntax errors.
Test that syntax errors thrown by the policy runtime
are returned properly to the user so they can see the
error messages.
"""
# lexer error
with self.assertRaisesRegex(
webservice.DataModelException,
"Lex failure"):
self.rule_model.add_item({'rule': 'p#'}, {},
context=self.context)
# parser error
with self.assertRaisesRegex(
webservice.DataModelException,
"Parse failure"):
self.rule_model.add_item({'rule': 'p('}, {},
context=self.context)
# single-rule error: safety in the head
with self.assertRaisesRegex(
webservice.DataModelException,
"Variable x found in head but not in body"):
# TODO(ramineni):check for action
self.context = {'policy_id': 'classification'}
self.rule_model.add_item({'rule': 'p(x,y) :- q(y)'}, {},
context=self.context)
# multi-rule error: recursion through negation
self.rule_model.add_item({'rule': 'p(x) :- q(x), not r(x)'}, {},
context=self.context)
with self.assertRaisesRegex(
webservice.DataModelException,
"Rules are recursive"):
self.rule_model.add_item({'rule': 'r(x) :- q(x), not p(x)'}, {},
context=self.context)
self.rule_model.add_item({'rule': 'p1(x) :- q1(x)'}, {},
context=self.context)
# duplicate rules
with self.assertRaisesRegex(
webservice.DataModelException,
"Rule already exists"):
self.rule_model.add_item({'rule': 'p1(x) :- q1(x)'}, {},
context=self.context)
View Git Blame Copy Permalink