alpkit 0.1.0-pre.2

A library for reading metadata from the APKv2 package format and APKBUILD.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177

use indoc::indoc;

use super::*;
use crate::internal::test_utils::{assert, assert_let, dependency, S};

#[test]
fn read_apkbuild() {
    let fixture = Path::new("../fixtures/aports/sample/APKBUILD");

    let expected = Apkbuild {
        maintainer: Some(S!("Jakub Jirutka <jakub@jirutka.cz>")),
        contributors: vec![
            S!("Francesco Colista <fcolista@alpinelinux.org>"),
            S!("Natanael Copa <ncopa@alpinelinux.org>")
        ],
        pkgname: S!("sample"),
        pkgver: S!("1.2.3"),
        pkgrel: 2,
        pkgdesc: S!("A sample aport for testing"),
        url: S!("https://example.org/sample"),
        arch: vec![
            S!("all"),
            S!("!riscv64"),
            S!("!s390x")
        ],
        license: S!("ISC and BSD-2-Clause and BSD-3-Clause"),
        depends: vec![
            dependency("ruby>=3.0"),
            dependency("!sample-legacy"),
        ],
        makedepends: vec![
            dependency("openssl-dev>3"),
            dependency("zlib-dev"),
        ],
        makedepends_build: vec![],
        makedepends_host: vec![],
        checkdepends: vec![
            dependency("ruby-rspec"),
        ],
        install_if: vec![],
        pkgusers: vec![],
        pkggroups: vec![],
        provides: vec![
            dependency("sample2=1.2.3-r2"),
        ],
        provider_priority: Some(100),
        replaces: vec![
            dependency("sample2"),
        ],
        replaces_priority: None,
        install: vec![S!("sample.post-install"), S!("sample.post-upgrade")],
        triggers: vec![S!("sample.trigger=/usr/share/sample/*")],
        subpackages: vec![
            S!("sample-doc"),
            S!("sample-dev"),
        ],
        source: vec![
            Source::new("sample-1.2.3.tar.gz", "https://example.org/sample/sample-1.2.3.tar.gz", "54286070812a47b629f68757046d3c9a1bdd2b5d1c3b84a5c8e4cb92f1331afa745443f7238175835d8cfbe5b8dd442e00c75c3a5b5b8f8efd8d2ec8f636dad4"),
            Source::new("sample.initd", "sample.initd", "b512bcb8bae11853a3006e2122d7e652806d4bf2234638d8809fd823375b5b0bd590f7d6a90412baffcc3b7b6a0f197a10986728a70f24fe628f91bfb651d266"),
            Source::new("sample.confd", "sample.confd", "6eda39920cccb1238b104bb90ac4be2c32883897c72363560d8d39345819cdeff535680e78396052b2b8f981e169ad9b3c30da724def80a1501785d82ce7fa25")
        ],
        options: vec![S!("!check")],
        secfixes: vec![
            Secfix::new("1.2.3-r2", vec![S!("CVE-2022-12347"), S!("CVE-2022-12346")]),
            Secfix::new("1.2.0-r0", vec![S!("CVE-2021-12345")]),
        ]
    };

    assert!(ApkbuildReader::new().read_apkbuild(fixture).unwrap() == expected);
}

#[test]
#[rustfmt::skip]
fn test_parse_maintainer() {
    for (input, expected) in [
        ("\n# sample\n# Maintainer: Kevin Flynn\n", Some("Kevin Flynn")            ),
        ("#   Maintainer:  Kevin Flynn  \n"       , Some("Kevin Flynn")            ),
        ("# Maintainer: Flynn <flynn@encom.com>\n", Some("Flynn <flynn@encom.com>")),
        ("#Maintainer: No One\n"                  , None                           ),
        ("# Some comment\n\npkgname=sample\n"     , None                           ),
    ] {
        assert!(parse_maintainer(input) == expected);
    }
}

#[test]
#[rustfmt::skip]
fn test_parse_contributors() {
    for (input, expected) in [
        ("\n# sample\n#  Contributor: Kevin Flynn\n"         , vec!["Kevin Flynn"]),
        ("# Contributor: KF\n# Contributor: AB\n"            , vec!["KF", "AB"]   ),
        ("# Contributor: KF\n\n# sample\n# Contributor: AB\n", vec!["KF", "AB"]   ),
        ("# Maintainer: No One"                              , vec![]             ),
    ] {
        assert!(parse_contributors(input).collect::<Vec<_>>() == expected);
    }
}

#[test]
fn test_parse_secfixes() {
    let input = indoc! {"
        # Maintainer: me
        pkgname=sample

        # secfixes:
        #   1.1-r0:
        #   - CVE-2022-1236  # comment
        #   1.0-r0:
        #     - CVE-2022-1235
        #      -  CVE-2022-1234
        #
    "};
    let expected = vec![
        Secfix::new("1.1-r0", vec!["CVE-2022-1236".to_owned()]),
        Secfix::new(
            "1.0-r0",
            vec!["CVE-2022-1235".to_owned(), "CVE-2022-1234".to_owned()],
        ),
    ];
    assert!(parse_secfixes(input).unwrap() == expected);

    let input = indoc! {"
        # Maintainer: me
        pkgname=sample
    "};
    assert!(parse_secfixes(input).unwrap() == vec![]);

    let input = indoc! {"
        # secfixes:
        #   - CVE-2022-1236
        #   - CVE-2022-1235
    "};
    assert_let!(Err(err @ Error::MalformedSecfixes(..)) = parse_secfixes(input));
    assert!(format!("{}", err) == "syntax error in secfixes on line 2: '- CVE-2022-1236'");

    let input = indoc! {"
        # secfixes:
        #   1.2-r0:
        #     - CVE-2022-1235
        #   1.1-r0
        #     - CVE-2022-1234
    "};
    assert_let!(Err(err @ Error::MalformedSecfixes(..)) = parse_secfixes(input));
    assert!(format!("{}", err) == "syntax error in secfixes on line 4: '1.1-r0'");
}

#[test]
fn test_decode_source_and_sha512sums() {
    let source = indoc! {"
        https://example.org/sample-1.2.3.tar.gz
        bar-1.2.tar.gz::https://example.org/bar/1.2.tar.gz
        sample.initd
    "};
    let sha512sums = indoc! {"
        1d468dcfa9bbd348b8a5dc514ac1428a789e73a92384c039b73a51ce376785f74bf942872c5594a9fcda6bbf44758bd727ce15ac2395f1aa989c507014647dcc sample-1.2.3.tar.gz
        0acd8bf9aedeabeef590909c83ad9057063b4d3165fe5e0b0ff2205df6e0d1b97f3fcfd27384a55b4816bbe975e93a737e58df9c6ee01baf7e46ceaabc43c64a bar-1.2.tar.gz
        ee10a5687740dde0c3d18d8b3555f49fcdc6abfc0a3bc2de1de3be0e99951a346fe8027d916aab73071ecd4e2c50871e7c867aca3a7a0fd16e3374c5caed1c57 sample.initd
    "};
    let expected = vec!(
        Source::new("sample-1.2.3.tar.gz", "https://example.org/sample-1.2.3.tar.gz", "1d468dcfa9bbd348b8a5dc514ac1428a789e73a92384c039b73a51ce376785f74bf942872c5594a9fcda6bbf44758bd727ce15ac2395f1aa989c507014647dcc"),
        Source::new("bar-1.2.tar.gz", "https://example.org/bar/1.2.tar.gz", "0acd8bf9aedeabeef590909c83ad9057063b4d3165fe5e0b0ff2205df6e0d1b97f3fcfd27384a55b4816bbe975e93a737e58df9c6ee01baf7e46ceaabc43c64a"),
        Source::new("sample.initd", "sample.initd", "ee10a5687740dde0c3d18d8b3555f49fcdc6abfc0a3bc2de1de3be0e99951a346fe8027d916aab73071ecd4e2c50871e7c867aca3a7a0fd16e3374c5caed1c57"),
    );

    assert!(decode_source_and_sha512sums(source, sha512sums).unwrap() == expected);

    let sha512sums = indoc! {"
        1d468dcfa9bbd348b8a5dc514ac1428a789e73a92384c039b73a51ce376785f74bf942872c5594a9fcda6bbf44758bd727ce15ac2395f1aa989c507014647dcc sample-1.2.3.tar.gz
        ee10a5687740dde0c3d18d8b3555f49fcdc6abfc0a3bc2de1de3be0e99951a346fe8027d916aab73071ecd4e2c50871e7c867aca3a7a0fd16e3374c5caed1c57 sample.initd
    "};

    assert_let!(Err(err @ Error::MissingChecksum(..)) = decode_source_and_sha512sums(source, sha512sums));
    assert!(
        format!("{}", err).contains("bar-1.2.tar.gz"),
        "error message should contain name of the missing checksum"
    );
}