2022-03-15 09:34:39 -05:00
|
|
|
//go:build needprivileges
|
|
|
|
// +build needprivileges
|
|
|
|
|
2022-09-30 12:35:16 -05:00
|
|
|
package local_test
|
2022-03-15 09:34:39 -05:00
|
|
|
|
|
|
|
import (
|
|
|
|
"bytes"
|
|
|
|
_ "crypto/sha256"
|
|
|
|
"os"
|
|
|
|
"os/exec"
|
|
|
|
"path"
|
|
|
|
"strings"
|
|
|
|
"testing"
|
|
|
|
|
|
|
|
godigest "github.com/opencontainers/go-digest"
|
|
|
|
"github.com/rs/zerolog"
|
|
|
|
. "github.com/smartystreets/goconvey/convey"
|
2022-10-20 11:39:20 -05:00
|
|
|
|
2022-03-15 09:34:39 -05:00
|
|
|
"zotregistry.io/zot/pkg/extensions/monitoring"
|
|
|
|
"zotregistry.io/zot/pkg/log"
|
|
|
|
"zotregistry.io/zot/pkg/storage"
|
2022-11-02 17:53:08 -05:00
|
|
|
"zotregistry.io/zot/pkg/storage/cache"
|
2022-09-30 12:35:16 -05:00
|
|
|
"zotregistry.io/zot/pkg/storage/local"
|
2022-03-15 09:34:39 -05:00
|
|
|
)
|
|
|
|
|
|
|
|
func TestElevatedPrivilegesInvalidDedupe(t *testing.T) {
|
|
|
|
Convey("Invalid dedupe scenarios", t, func() {
|
|
|
|
dir := t.TempDir()
|
|
|
|
|
|
|
|
log := log.Logger{Logger: zerolog.New(os.Stdout)}
|
|
|
|
metrics := monitoring.NewMetricsServer(false, log)
|
2022-11-02 17:53:08 -05:00
|
|
|
|
|
|
|
cacheDriver, _ := storage.Create("boltdb", cache.BoltDBDriverParameters{
|
|
|
|
RootDir: dir,
|
|
|
|
Name: "cache",
|
|
|
|
UseRelPaths: true,
|
|
|
|
}, log)
|
2023-09-22 13:51:20 -05:00
|
|
|
imgStore := local.NewImageStore(dir, true, true, log, metrics, nil, cacheDriver)
|
2022-03-15 09:34:39 -05:00
|
|
|
|
|
|
|
upload, err := imgStore.NewBlobUpload("dedupe1")
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(upload, ShouldNotBeEmpty)
|
|
|
|
|
|
|
|
content := []byte("test-data3")
|
|
|
|
buf := bytes.NewBuffer(content)
|
|
|
|
buflen := buf.Len()
|
|
|
|
digest := godigest.FromBytes(content)
|
|
|
|
blob, err := imgStore.PutBlobChunkStreamed("dedupe1", upload, buf)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(blob, ShouldEqual, buflen)
|
|
|
|
|
|
|
|
blobDigest1 := strings.Split(digest.String(), ":")[1]
|
|
|
|
So(blobDigest1, ShouldNotBeEmpty)
|
|
|
|
|
2022-10-22 15:46:13 -05:00
|
|
|
err = imgStore.FinishBlobUpload("dedupe1", upload, buf, digest)
|
2022-03-15 09:34:39 -05:00
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(blob, ShouldEqual, buflen)
|
|
|
|
|
|
|
|
// Create a file at the same place where FinishBlobUpload will create
|
|
|
|
err = imgStore.InitRepo("dedupe2")
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
|
|
|
|
err = os.MkdirAll(path.Join(dir, "dedupe2", "blobs/sha256"), 0o755)
|
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
2022-10-05 05:21:14 -05:00
|
|
|
err = os.WriteFile(path.Join(dir, "dedupe2", "blobs/sha256", blobDigest1), content, 0o755) //nolint: gosec
|
2022-03-15 09:34:39 -05:00
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
|
|
|
upload, err = imgStore.NewBlobUpload("dedupe2")
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(upload, ShouldNotBeEmpty)
|
|
|
|
|
|
|
|
content = []byte("test-data3")
|
|
|
|
buf = bytes.NewBuffer(content)
|
|
|
|
buflen = buf.Len()
|
|
|
|
digest = godigest.FromBytes(content)
|
|
|
|
blob, err = imgStore.PutBlobChunkStreamed("dedupe2", upload, buf)
|
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(blob, ShouldEqual, buflen)
|
|
|
|
|
2022-10-05 05:21:14 -05:00
|
|
|
cmd := exec.Command("chattr", "+i", path.Join(dir, "dedupe2", "blobs/sha256", blobDigest1)) //nolint: gosec
|
2022-03-15 09:34:39 -05:00
|
|
|
_, err = cmd.Output()
|
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
2022-10-22 15:46:13 -05:00
|
|
|
err = imgStore.FinishBlobUpload("dedupe2", upload, buf, digest)
|
2022-03-15 09:34:39 -05:00
|
|
|
So(err, ShouldNotBeNil)
|
|
|
|
So(blob, ShouldEqual, buflen)
|
|
|
|
|
2022-10-05 05:21:14 -05:00
|
|
|
cmd = exec.Command("chattr", "-i", path.Join(dir, "dedupe2", "blobs/sha256", blobDigest1)) //nolint: gosec
|
2022-03-15 09:34:39 -05:00
|
|
|
_, err = cmd.Output()
|
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
2022-10-22 15:46:13 -05:00
|
|
|
err = imgStore.FinishBlobUpload("dedupe2", upload, buf, digest)
|
2022-03-15 09:34:39 -05:00
|
|
|
So(err, ShouldBeNil)
|
|
|
|
So(blob, ShouldEqual, buflen)
|
|
|
|
})
|
|
|
|
}
|