blvm-node 0.1.0

Bitcoin Commons BLVM: Minimal Bitcoin node implementation using blvm-protocol and blvm-consensus
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165

//! Tests for filesystem sandbox

use blvm_node::module::sandbox::FileSystemSandbox;
use blvm_node::module::traits::ModuleError;
use tempfile::TempDir;

fn create_test_sandbox() -> (TempDir, FileSystemSandbox) {
    let temp_dir = TempDir::new().unwrap();
    let data_dir = temp_dir.path().join("data");
    std::fs::create_dir_all(&data_dir).unwrap();

    let sandbox = FileSystemSandbox::new(&data_dir);
    (temp_dir, sandbox)
}

#[test]
fn test_filesystem_sandbox_creation() {
    let (_temp_dir, _sandbox) = create_test_sandbox();
    // Should create successfully
    assert!(true);
}

#[test]
fn test_validate_path_within_sandbox() {
    let (temp_dir, sandbox) = create_test_sandbox();
    let data_dir = temp_dir.path().join("data");
    let test_file = data_dir.join("test.txt");

    // Create a test file
    std::fs::write(&test_file, "test").unwrap();

    // Validate path should succeed
    let result = sandbox.validate_path(&test_file);
    assert!(result.is_ok());

    let validated_path = result.unwrap();
    assert!(validated_path.exists());
}

#[test]
fn test_validate_path_outside_sandbox() {
    let (temp_dir, sandbox) = create_test_sandbox();
    let outside_file = temp_dir.path().join("outside.txt");

    // Create a file outside the sandbox
    std::fs::write(&outside_file, "test").unwrap();

    // Validate path should fail
    let result = sandbox.validate_path(&outside_file);
    assert!(result.is_err());

    match result.unwrap_err() {
        ModuleError::OperationError(msg) => {
            assert!(msg.contains("outside") || msg.contains("denied"));
        }
        _ => panic!("Expected OperationError"),
    }
}

#[test]
fn test_validate_path_relative() {
    let (temp_dir, sandbox) = create_test_sandbox();
    let data_dir = temp_dir.path().join("data");
    let test_file = data_dir.join("test.txt");

    // Create a test file
    std::fs::write(&test_file, "test").unwrap();

    // Change to data directory and use relative path
    let original_dir = std::env::current_dir().unwrap();
    std::env::set_current_dir(&data_dir).unwrap();

    // Validate relative path
    let result = sandbox.validate_path("test.txt");
    assert!(result.is_ok());

    // Restore original directory
    std::env::set_current_dir(original_dir).unwrap();
}

#[test]
fn test_validate_path_nonexistent() {
    let (temp_dir, sandbox) = create_test_sandbox();
    let data_dir = temp_dir.path().join("data");
    let nonexistent = data_dir.join("nonexistent.txt");

    // Validate nonexistent path should fail (canonicalize will fail)
    let result = sandbox.validate_path(&nonexistent);
    assert!(result.is_err());
}

#[test]
fn test_is_within_sandbox() {
    let (temp_dir, sandbox) = create_test_sandbox();
    let data_dir = temp_dir.path().join("data");
    let test_file = data_dir.join("test.txt");

    // Create a test file
    std::fs::write(&test_file, "test").unwrap();

    // Should be within sandbox
    assert!(sandbox.is_within_sandbox(&test_file));

    // Path outside should not be within sandbox
    let outside_file = temp_dir.path().join("outside.txt");
    assert!(!sandbox.is_within_sandbox(&outside_file));
}

#[test]
fn test_is_within_sandbox_relative() {
    let (temp_dir, sandbox) = create_test_sandbox();
    let data_dir = temp_dir.path().join("data");

    // Relative path within data directory
    let relative_path = data_dir.join("subdir").join("file.txt");
    std::fs::create_dir_all(relative_path.parent().unwrap()).unwrap();
    std::fs::write(&relative_path, "test").unwrap();

    // Should be within sandbox
    assert!(sandbox.is_within_sandbox(&relative_path));
}

#[test]
fn test_allowed_path() {
    let (temp_dir, sandbox) = create_test_sandbox();
    let data_dir = temp_dir.path().join("data");

    // Should return the allowed path
    assert_eq!(sandbox.allowed_path(), data_dir);
}

#[test]
fn test_validate_path_subdirectory() {
    let (temp_dir, sandbox) = create_test_sandbox();
    let data_dir = temp_dir.path().join("data");
    let subdir = data_dir.join("subdir");
    let test_file = subdir.join("test.txt");

    // Create subdirectory and file
    std::fs::create_dir_all(&subdir).unwrap();
    std::fs::write(&test_file, "test").unwrap();

    // Should validate successfully
    let result = sandbox.validate_path(&test_file);
    assert!(result.is_ok());
}

#[test]
fn test_validate_path_parent_directory_traversal() {
    let (temp_dir, sandbox) = create_test_sandbox();
    let data_dir = temp_dir.path().join("data");
    let subdir = data_dir.join("subdir");

    // Create subdirectory
    std::fs::create_dir_all(&subdir).unwrap();

    // Try to access parent directory using ../
    let traversal_path = subdir.join("..").join("outside.txt");
    let outside_file = temp_dir.path().join("outside.txt");
    std::fs::write(&outside_file, "test").unwrap();

    // Should fail (canonicalize should resolve to outside sandbox)
    let result = sandbox.validate_path(&traversal_path);
    assert!(result.is_err());
}