fix broken func test in SignatureUtilityTests #3245
Conversation
kartheekp-ms
requested review from
dominoFire,
donnie-msft,
dtivel,
heng-liu,
nkolev92,
zivkan and
zkat
as code owners
kartheekp-ms
changed the title
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateFixture.cs
Outdated
Show resolved
Hide resolved
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateFixture.cs
Outdated
Show resolved
Hide resolved
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateSignedPackages.cs
Outdated
Show resolved
Hide resolved
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Verify.Test/VerifySignedPackages.cs
Outdated
Show resolved
Hide resolved
| public async Task VerifySignaturesAsync_PreGenerateSignedPackages_AuthorSigned_TimeStampedWithNoSigningCertificateUsage_Throws(string dir) | ||
| { | ||
| // Arrange | ||
| var caseName = "ATNOCERTIFICATEUSAGE"; |
There was a problem hiding this comment.
A couple problems:
- This test naming scheme is cryptic. It's not clear how this was generated, what it means, or how I would generate a new name successfully.
caseNameis confusing; don't we already have a test case name withVerifySignaturesAsync_PreGenerateSignedPackages_AuthorSigned_TimeStampedWithNoSigningCertificateUsage_Throws?- Two files are expected to have the same string literal for everything to work successfully.
There was a problem hiding this comment.
Discussed few possible options with @dtivel
- Build case names dynamically using a builder design pattern. The problem with this approach is it will be hard to search for case names during design/compile time.
- Use string constants for case names but we can't avoid duplicates values (if created unintentionally).
@dtivel suggested to use enum that can help solve above drawabacks.
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Verify.Test/VerifySignedPackages.cs
Outdated
Show resolved
Hide resolved
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Verify.Test/VerifySignedPackages.cs
Outdated
Show resolved
Hide resolved
| @@ -126,6 +126,10 @@ | |||
| <data name="Argument_Must_Be_GreaterThanOrEqualTo" xml:space="preserve"> | |||
| <value>Value must be greater than or equal to {0}</value> | |||
| </data> | |||
| <data name="Error_DirectoryDoesNotExist" xml:space="preserve"> | |||
| <value>Directory {0} does not exist.</value> | |||
There was a problem hiding this comment.
Should we add single quotes, or similar, around the {0}, to better handle the long name, with potential spaces? What do we usually do?
| if (!Directory.Exists(path)) | ||
| { | ||
| Directory.CreateDirectory(path); | ||
| } | ||
|
|
||
| //Create a folder for a each platform, under PreGenPackages folder. | ||
| //Create a folder for a each platform, under GeneratedPackages folder. | ||
| //For functional test on windows, 2 folders will be created. |
There was a problem hiding this comment.
is this comment about "2 folders" will be created still true. it isn't clear to my why that is true. should the comment be enhanced?
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateSignedPackages.cs
Outdated
Show resolved
Hide resolved
| /// </summary> | ||
| public enum FolderNames | ||
| { | ||
| One, |
There was a problem hiding this comment.
these enum values didn't give me a clue about the purpose...the summary helps. Perhaps better enum name or value names could make it more obvious??
There was a problem hiding this comment.
How about:
public enum TestPackages
{
Package1
}You could be fancier than Package1 and do what you did before and embed more scenario information in the name. I would avoid trying to encode everything in the name (e.g.: "ATNOCERTIFICATE" for "Author signed with Timestamp with No Certificate in the timestamp signature").
My issues with the previous approach were:
- It's not easy to understand the string. ("A" and "T" are not common abbreviations and "NOCERTIFICATE" is vague about which certificate and how it is missing.)
- It's not easy to enforce uniqueness in string values. (It's possible that another test could use the same string and overwrite/use another test package.)
- There are rules around these string literals which are not easily enforced. (The same string literal needs to be used on both the package generation side and the package consumption side.)
An enum makes a good alternative and the member names don't matter too much. You could have an XML doc comment on the member which describes the package requirements in detail:
public enum TestPackages
{
/// <summary>
/// This package is author signed with a timestamp.
/// The timestamp signature does not include the signing certificate.
/// Certificates are otherwise trusted and valid.
/// </summary>
Package1
}| public static class TestFolderNames | ||
| { | ||
| public const string Windows_NetFullFrameworkFolder = "Windows_NetFullFramework"; | ||
| public const string Windows_NetCoreFolder = "Windows_NetCore"; |
There was a problem hiding this comment.
nit: netcore is about to be ".net 5"...
in a few years, netcore will be an old fashioned term.
There was a problem hiding this comment.
how should we be distinguishing between legacy framework and .net "core" going forward, then?
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateFixture.cs
Outdated
Show resolved
Hide resolved
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Verify.Test/VerifySignedPackages.cs
Outdated
Show resolved
Hide resolved
| /// <summary> | ||
| /// Folder names ensure uniqueness in path when signed packages are stored on disk for verification in later steps | ||
| /// </summary> | ||
| public enum FolderNames |
There was a problem hiding this comment.
One type per file, so FolderNames in FolderNames.cs and TestFolderNames in TestFolderNames.cs
| /// </summary> | ||
| public enum FolderNames | ||
| { | ||
| One, |
There was a problem hiding this comment.
How about:
public enum TestPackages
{
Package1
}You could be fancier than Package1 and do what you did before and embed more scenario information in the name. I would avoid trying to encode everything in the name (e.g.: "ATNOCERTIFICATE" for "Author signed with Timestamp with No Certificate in the timestamp signature").
My issues with the previous approach were:
- It's not easy to understand the string. ("A" and "T" are not common abbreviations and "NOCERTIFICATE" is vague about which certificate and how it is missing.)
- It's not easy to enforce uniqueness in string values. (It's possible that another test could use the same string and overwrite/use another test package.)
- There are rules around these string literals which are not easily enforced. (The same string literal needs to be used on both the package generation side and the package consumption side.)
An enum makes a good alternative and the member names don't matter too much. You could have an XML doc comment on the member which describes the package requirements in detail:
public enum TestPackages
{
/// <summary>
/// This package is author signed with a timestamp.
/// The timestamp signature does not include the signing certificate.
/// Certificates are otherwise trusted and valid.
/// </summary>
Package1
}
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateFixture.cs
Show resolved
Hide resolved
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateFixture.cs
Outdated
Show resolved
Hide resolved
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateSignedPackages.cs
Outdated
Show resolved
Hide resolved
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Verify.Test/VerifySignedPackages.cs
Show resolved
Hide resolved
kartheekp-ms
force-pushed
the
dev-kartheekp-ms-xplat-tests-8937
branch
2 times, most recently
from
4ccbdeb to
e9e6262
Compare
zkat
force-pushed
the
dev-zkat-cross-verification-tests
branch
from
41bb593 to
cd7e2e1
Compare
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateSignedPackages.cs
Show resolved
Hide resolved
test/NuGet.Core.FuncTests/NuGet.Packaging.CrossVerify.Generate.Test/GenerateSignedPackages.cs
Outdated
Show resolved
Hide resolved
zkat
force-pushed
the
dev-zkat-cross-verification-tests
branch
from
cd7e2e1 to
aaf2c39
Compare
kartheekp-ms
force-pushed
the
dev-kartheekp-ms-xplat-tests-8937
branch
from
cc29df2 to
ee79ceb
Compare
kartheekp-ms
changed the base branch from
dev-zkat-cross-verification-tests
to
dev-feature-xplatVerification
zkat
changed the base branch from
dev-feature-xplatVerification
to
dev-zkat-cross-verification-tests
kartheekp-ms
changed the base branch from
dev-zkat-cross-verification-tests
to
dev-feature-xplatVerification
zkat
changed the base branch from
dev-feature-xplatVerification
to
dev-zkat-cross-verification-tests
…ws func test into 2 func tests where 1 test generates the signed package in windows net472 platform and another tests verfies the package on all the runtimes
…entry as this is no longer referenced
…verted the latest commit
kartheekp-ms
force-pushed
the
dev-kartheekp-ms-xplat-tests-8937
branch
from
ee79ceb to
42fc69c
Compare
Bug
Fixes: NuGet/Home#8937
Regression: No
Fix
Details: A func test to generate a signed package with no certificate usage is working in only
net472platform but fails in all thenetcoreplatforms. As per my conversation with @dtivel, I came to know that package signing libraries fornet472platform were built by NuGet team where as fornetcoreplatforms we rely ondotnetlibraires. It looks like modifyingnet472NuGet libraries to fix this func test is not a good long-term solution. Hence submitting this PR to split the failing func test into 2 where one test generates a signed package with no certificate usage onnet472platform and other test verifies the package content across all the platforms. @heng-liu - thank you for developing the new build infrastructure where signed packages generated by various func tests are uploaded to a container and downloaded later for verification purposes.Testing/Validation
Tests Added: Yes