gkit 0.3.0

gkit — a transparent git/ssh toolkit: ssh keys, hooked clone, log-off check, stmb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276

//! Network integration tests — **opt-in**, run only with `GKIT_NET_TESTS=1`.
//!
//! These prove the ssh-free real-world path: clone PUBLIC GitHub repos over
//! **HTTPS** (no ssh key — works on CI runners unauthenticated) and run `gkit
//! logoff` against them. `gkit clone` itself can't be exercised here (it emits
//! ssh-alias `host:ns/repo.git` URLs), so we clone with plain `git`.
//!
//! Strategy: clone a public repo once, then drive every logoff scenario by
//! **mutating the local clone** (dirty / unpushed / detached / local feature /
//! base config / `gkit.solo`), resetting to pristine between phases. This is
//! deterministic regardless of how the upstream repo's content moves.
//!
//! Pinned public repos:
//! - `octocat/Hello-World` — no submodules; its remote has feature branches
//!   (`test`, `octocat-patch-1`), which makes it a real test for the solo rule.
//! - `git-fixtures/submodule` — a stable fixture with an HTTPS submodule
//!   (`basic`); used to prove submodule recursion over HTTPS.

mod common;
use common::*;
use std::path::{Path, PathBuf};

const HELLO: &str = "https://github.com/octocat/Hello-World.git";
const SUBMOD: &str = "https://github.com/git-fixtures/submodule.git";

fn gated() -> bool {
    if std::env::var("GKIT_NET_TESTS").as_deref() == Ok("1") {
        true
    } else {
        eprintln!("skipping network test (set GKIT_NET_TESTS=1 to run)");
        false
    }
}

fn clone_public(repo: &str, tag: &str) -> PathBuf {
    let base = temp_dir(tag);
    let work = base.join("repo");
    git_ok(&base, &["clone", repo, work.to_str().unwrap()]);
    work
}

/// Restore a Hello-World clone to a pristine `master` checkout between phases.
fn pristine(work: &Path) {
    git_ok(work, &["checkout", "-qf", "master"]);
    git_ok(work, &["reset", "--hard", "-q", "origin/master"]);
    let _ = git(work, &["clean", "-fdq"]);
    // Drop any stray local branch (e.g. from a previous phase).
    let heads = git(
        work,
        &["for-each-ref", "--format=%(refname:short)", "refs/heads/*"],
    )
    .stdout;
    for b in heads.lines().map(str::trim).filter(|b| !b.is_empty()) {
        if b != "master" {
            let _ = git(work, &["branch", "-D", b]);
        }
    }
    let _ = git(work, &["config", "--unset", "gkit.solo"]);
    let _ = git(work, &["config", "--unset", "gkit.baseBranch"]);
}

fn logoff_v(work: &Path) -> Out {
    gkit(
        work,
        &["logoff", "-v", "--no-fetch", work.to_str().unwrap()],
    )
}

#[test]
fn net_logoff_scenarios_no_submodules() {
    if !gated() {
        return;
    }
    let work = clone_public(HELLO, "net-hw");

    // 1. Pristine clone on master -> all checks pass (team rule; only `master`
    //    is local, others' feature branches are remote-tracking and ignored).
    pristine(&work);
    let o = logoff_v(&work);
    assert_check(&o.stdout, &work, "committed", "true");
    assert_check(&o.stdout, &work, "all-commits-pushed", "true");
    assert_check(&o.stdout, &work, "branches-have-remote", "true");
    assert_check(
        &o.stdout,
        &work,
        "base-branch",
        "master (derived from remote origin/master)",
    );
    assert_check(&o.stdout, &work, "correct-branch", "true");
    assert!(
        !o.stdout.contains("branch-rule"),
        "team rule is silent:\n{}",
        o.stdout
    );
    assert_eq!(o.code, 0, "pristine clone should pass:\n{}", o.all());

    // 2. Uncommitted change -> committed false.
    pristine(&work);
    std::fs::write(work.join("DIRTY.txt"), "x\n").unwrap();
    let o = logoff_v(&work);
    assert_check(&o.stdout, &work, "committed", "false");
    assert_eq!(o.code, 1);

    // 3. Local commit not on any remote -> all-commits-pushed false.
    pristine(&work);
    std::fs::write(work.join("local.txt"), "x\n").unwrap();
    git_ok(&work, &["add", "."]);
    git_ok(&work, &["commit", "-m", "local only"]);
    let o = logoff_v(&work);
    assert_check(&o.stdout, &work, "all-commits-pushed", "false");
    assert_eq!(o.code, 1);

    // 4. Local branch with no remote counterpart -> branches-have-remote false.
    pristine(&work);
    git_ok(&work, &["checkout", "-q", "-b", "local-only"]);
    std::fs::write(work.join("f.txt"), "x\n").unwrap();
    git_ok(&work, &["add", "."]);
    git_ok(&work, &["commit", "-m", "wip"]);
    let o = logoff_v(&work);
    assert_check(&o.stdout, &work, "branches-have-remote", "false");
    assert_eq!(o.code, 1);

    // 5. Detached HEAD -> correct-branch false.
    pristine(&work);
    git_ok(&work, &["checkout", "-q", "--detach", "HEAD"]);
    let o = logoff_v(&work);
    assert_check(&o.stdout, &work, "correct-branch", "false");
    assert_eq!(o.code, 1);

    // 6. Local feature branch unmerged into base (team rule) -> correct-branch false.
    pristine(&work);
    git_ok(&work, &["checkout", "-q", "-b", "feature-x"]);
    std::fs::write(work.join("feat.txt"), "x\n").unwrap();
    git_ok(&work, &["add", "."]);
    git_ok(&work, &["commit", "-m", "feature"]);
    git_ok(&work, &["checkout", "-q", "master"]);
    let o = logoff_v(&work);
    assert_check(&o.stdout, &work, "correct-branch", "false");
    assert_eq!(o.code, 1);

    // 7. base-branch from git config.
    pristine(&work);
    git_ok(&work, &["config", "gkit.baseBranch", "dev"]);
    let o = logoff_v(&work);
    assert_check(
        &o.stdout,
        &work,
        "base-branch",
        "dev (from git config gkit.baseBranch)",
    );

    // 8. SOLO rule on a real repo: the remote has feature branches (`test`,
    //    `octocat-patch-1`), so on `master` the solo rule FAILS where team passes.
    pristine(&work);
    git_ok(&work, &["config", "gkit.solo", "true"]);
    let o = logoff_v(&work);
    assert_check(
        &o.stdout,
        &work,
        "branch-rule",
        "solo (gkit.solo on) — flags any feature branch on the remote",
    );
    assert_check(&o.stdout, &work, "correct-branch", "false");
    assert_eq!(
        o.code,
        1,
        "solo rule should fail (remote has feature branches):\n{}",
        o.all()
    );

    // 8b. Same repo, solo off -> team rule passes (the contrast).
    pristine(&work);
    let o = logoff_v(&work);
    assert_check(&o.stdout, &work, "correct-branch", "true");
    assert_eq!(
        o.code,
        0,
        "team rule passes where solo failed:\n{}",
        o.all()
    );
}

#[test]
fn net_stmb_switch_and_delete() {
    if !gated() {
        return;
    }
    // stmb against a real public repo over HTTPS: it checks out base, `pull
    // --rebase origin <base>` (a read-only fetch — no push), deletes the merged
    // feature branch, then verifies with a logoff. No ssh needed.
    let work = clone_public(HELLO, "net-stmb");
    git_ok(&work, &["checkout", "-q", "-b", "feat-net"]); // at master HEAD -> merged

    let o = gkit(
        &work,
        &["stmb", "--yes", "--base", "master", work.to_str().unwrap()],
    );
    assert_contains(&o.stdout, "+ git checkout master");
    assert_contains(&o.stdout, "+ git branch -d feat-net");
    assert_contains(&o.stdout, "--- logoff ---");
    assert!(
        git(&work, &["branch", "--list", "feat-net"])
            .stdout
            .trim()
            .is_empty(),
        "feat-net should be deleted:\n{}",
        o.all()
    );
    assert_eq!(
        o.code,
        0,
        "stmb + verifying logoff should pass:\n{}",
        o.all()
    );
}

#[test]
fn net_logoff_submodule_recursion() {
    if !gated() {
        return;
    }
    // Clone the superproject (without --recurse), then init ONLY the `basic`
    // submodule over HTTPS (the fixture's other submodule `itself` is
    // self-referential — leave it uninitialized so recursion is bounded).
    let base = temp_dir("net-sub");
    let sup = base.join("super");
    git_ok(&base, &["clone", SUBMOD, sup.to_str().unwrap()]);
    git_ok(&sup, &["submodule", "update", "--init", "basic"]);
    let basic = sup.join("basic");

    // Phase 1: a freshly-updated submodule is at a DETACHED HEAD — gkit recurses
    // into it (post-order: submodule before superproject) and flags it.
    let o = logoff_v(&sup);
    assert_check(&o.stdout, &basic, "correct-branch", "false"); // detached
    assert!(
        result_index(&o.stdout, "basic") < result_index(&o.stdout, "super"),
        "submodule should be reported before superproject:\n{}",
        o.stdout
    );
    assert_eq!(
        o.code,
        1,
        "detached submodule should fail the gate:\n{}",
        o.all()
    );

    // Phase 2: put the submodule on its branch (as `gkit clone` would) -> clean
    // recursion pass over an HTTPS-cloned submodule.
    git_ok(&basic, &["checkout", "-q", "master"]);
    let o = logoff_v(&sup);
    assert_check(&o.stdout, &basic, "correct-branch", "true");
    assert_check(&o.stdout, &sup, "correct-branch", "true");
    assert_eq!(
        o.code,
        0,
        "super + on-branch submodule should pass:\n{}",
        o.all()
    );
}

/// Index of the `RESULT` line whose path's last component is `last` (for post-order
/// checks; normalizes `\` so it's Windows-safe).
fn result_index(out: &str, last: &str) -> usize {
    out.lines()
        .position(|l| {
            l.contains("\tRESULT\t")
                && l.split('\t')
                    .next()
                    .unwrap()
                    .replace('\\', "/")
                    .rsplit('/')
                    .next()
                    == Some(last)
        })
        .unwrap_or_else(|| panic!("no RESULT line with last component {last}:\n{out}"))
}