Coverage for tests/publisher/cve/test_cve_get_by_revision.py: 100%
58 statements
« prev ^ index » next coverage.py v7.8.0, created at 2025-04-28 22:05 +0000
1import unittest
2from unittest.mock import patch, MagicMock
3import json
4from webapp.publisher.cve.cve_helper import CveHelper
5from werkzeug.exceptions import NotFound
8class CveHGetByRevisionTest(unittest.TestCase):
10 def setUp(self):
12 self.file_metadata = {"download_url": "https://example.com/file.json"}
14 self.file_content = {
15 "format": 1,
16 "published_at": "2025-01-26T20:30:16+00:00",
17 "security_issues": {
18 "cves": {
19 "CVE-2023-31486": {
20 "cvss_score": 5.5,
21 "cvss_severity": "medium",
22 "description": "description-1",
23 "ubuntu_priority": "critical",
24 },
25 "CVE-2014-9984": {
26 "cvss_score": 9,
27 "cvss_severity": "high",
28 "description": "description-2",
29 "ubuntu_priority": "negligible",
30 },
31 "CVE-2024-52005": {
32 "cvss_score": 2.1,
33 "cvss_severity": "negligible",
34 "description": "description-3",
35 "ubuntu_priority": "medium",
36 },
37 },
38 "usns": {
39 "3009-1": {
40 "description": "USN description",
41 "published_at": "2016-06-20T16:35:09+00:00",
42 "related_cves": ["CVE-2014-9984"],
43 "related_launchpad_bugs": None,
44 }
45 },
46 },
47 "snaps": {
48 "my-snap": {
49 "revisions": {
50 "3053": {
51 "channels": ["edge"],
52 "fixed-cves": {
53 "CVE-2014-9984": {
54 "affected_binaries": [
55 {
56 "fixed_version": "2.27-3ubuntu1.6",
57 "name": "libc-dev-bin",
58 "status": "fixed",
59 "version": "2.27-3ubuntu1.4",
60 },
61 {
62 "fixed_version": "2.27-3ubuntu1.6",
63 "name": "libc6-dev",
64 "status": "fixed",
65 "version": "2.27-3ubuntu1.4",
66 },
67 ],
68 "channels_with_fix": [],
69 "usns": ["3009-1"],
70 },
71 "CVE-2023-31486": {
72 "affected_binaries": [
73 {
74 "fixed_version": "2.27-3ubuntu1.6",
75 "name": "libc-dev-bin21",
76 "status": "fixed",
77 "version": "2.27-3ubuntu1.4",
78 },
79 ],
80 "channels_with_fix": [],
81 "usns": ["3009-1"],
82 },
83 },
84 "unfixed-cves": {
85 "CVE-2024-52005": {
86 "affected_binaries": [
87 {
88 "fixed_version": None,
89 "name": "git-man",
90 "status": "unfixed",
91 "version": "1:2.34.1-1ubuntu1.12",
92 }
93 ],
94 "channels_with_fix": None,
95 "usns": None,
96 }
97 },
98 }
99 }
100 }
101 },
102 }
104 @patch("requests.get")
105 def test_get_cve_by_revision(self, mock_get):
106 mock_get.side_effect = [
107 MagicMock(status_code=200, json=lambda: self.file_metadata),
108 MagicMock(status_code=200, text=json.dumps(self.file_content)),
109 ]
111 result = CveHelper.get_cve_with_revision("my-snap", "3053")
113 self.assertEqual(len(result), 3)
114 self.assertEqual(result[0]["id"], "CVE-2014-9984")
115 self.assertEqual(result[0]["cvss_score"], 9)
116 self.assertEqual(result[0]["cvss_severity"], "high")
117 self.assertEqual(result[0]["description"], "description-2")
118 self.assertEqual(result[0]["ubuntu_priority"], "negligible")
119 self.assertEqual(len(result[0]["affected_binaries"]), 2)
120 self.assertEqual(
121 result[0]["affected_binaries"][0]["name"], "libc-dev-bin"
122 )
123 self.assertEqual(
124 result[0]["affected_binaries"][1]["name"], "libc6-dev"
125 )
126 self.assertEqual(len(result[0]["usns"]), 1)
127 self.assertEqual(result[0]["usns"][0]["id"], "3009-1")
128 self.assertEqual(
129 result[0]["usns"][0]["description"], "USN description"
130 )
132 self.assertEqual(result[1]["id"], "CVE-2023-31486")
133 self.assertEqual(result[1]["cvss_score"], 5.5)
134 self.assertEqual(result[1]["cvss_severity"], "medium")
135 self.assertEqual(result[1]["description"], "description-1")
136 self.assertEqual(result[1]["ubuntu_priority"], "critical")
137 self.assertEqual(len(result[1]["affected_binaries"]), 1)
138 self.assertEqual(
139 result[1]["affected_binaries"][0]["name"], "libc-dev-bin21"
140 )
141 self.assertEqual(result[1]["affected_binaries"][0]["status"], "fixed")
142 self.assertEqual(
143 result[1]["affected_binaries"][0]["fixed_version"],
144 "2.27-3ubuntu1.6",
145 )
146 self.assertEqual(
147 result[1]["affected_binaries"][0]["version"], "2.27-3ubuntu1.4"
148 )
149 self.assertEqual(len(result[1]["usns"]), 1)
150 self.assertEqual(result[1]["usns"][0]["id"], "3009-1")
152 self.assertEqual(result[2]["id"], "CVE-2024-52005")
153 self.assertEqual(result[2]["cvss_score"], 2.1)
154 self.assertEqual(result[2]["cvss_severity"], "negligible")
155 self.assertEqual(result[2]["description"], "description-3")
156 self.assertEqual(result[2]["ubuntu_priority"], "medium")
157 self.assertEqual(len(result[2]["affected_binaries"]), 1)
158 self.assertEqual(result[2]["affected_binaries"][0]["name"], "git-man")
159 self.assertEqual(
160 result[2]["affected_binaries"][0]["status"], "unfixed"
161 )
162 self.assertEqual(
163 result[2]["affected_binaries"][0]["fixed_version"], None
164 )
165 self.assertEqual(
166 result[2]["affected_binaries"][0]["version"],
167 "1:2.34.1-1ubuntu1.12",
168 )
169 self.assertEqual(len(result[2]["usns"]), 0)
171 @patch("requests.get")
172 def test_get_cve_by_revision_metadata_not_found(self, mock_get):
173 mock_get.side_effect = [
174 MagicMock(status_code=404, json=lambda: {}),
175 MagicMock(status_code=200, text=json.dumps(self.file_content)),
176 ]
177 with self.assertRaises(NotFound):
178 CveHelper.get_cve_with_revision("my-snap", "3053")
180 @patch("requests.get")
181 def test_get_cve_by_revision_file_content_not_found(self, mock_get):
182 mock_get.side_effect = [
183 MagicMock(status_code=200, json=lambda: self.file_metadata),
184 MagicMock(status_code=404, text=json.dumps(self.file_content)),
185 ]
186 with self.assertRaises(NotFound):
187 CveHelper.get_cve_with_revision("my-snap", "3053")