Exemplo n.º 1
0
def upload_filter_to_kinto(generation_time, is_base=True, upload_stash=False):
    server = KintoServer(KINTO_BUCKET,
                         KINTO_COLLECTION_MLBF,
                         kinto_sign_off_needed=False)
    mlbf = MLBF(generation_time)
    if is_base:
        # clear the collection for the base - we want to be the only filter
        server.delete_all_records()
    # Deal with possible stashes first
    if upload_stash:
        # If we have a stash, write that
        stash_data = {
            'key_format': MLBF.KEY_FORMAT,
            'stash_time': generation_time,
            'stash': mlbf.stash_json,
        }
        server.publish_record(stash_data)

    # Then the bloomfilter
    data = {
        'key_format':
        MLBF.KEY_FORMAT,
        'generation_time':
        generation_time,
        'attachment_type':
        BLOCKLIST_RECORD_MLBF_BASE
        if is_base else BLOCKLIST_RECORD_MLBF_UPDATE,
    }
    with storage.open(mlbf.filter_path, 'rb') as filter_file:
        attachment = ('filter.bin', filter_file, 'application/octet-stream')
        server.publish_attachment(data, attachment)
    server.complete_session()
    set_config(MLBF_TIME_CONFIG_KEY, generation_time, json_value=True)
    if is_base:
        set_config(MLBF_BASE_ID_CONFIG_KEY, generation_time, json_value=True)
Exemplo n.º 2
0
    def test_publish_record(self):
        server = KintoServer('foo', 'baa')
        server._setup_done = True
        assert not server._changes
        responses.add(
            responses.POST,
            settings.REMOTE_SETTINGS_WRITER_URL +
            'buckets/foo/collections/baa/records',
            content_type='application/json',
            json={'data': {'id': 'new!'}})

        record = server.publish_record({'something': 'somevalue'})
        assert server._changes
        assert record == {'id': 'new!'}

        url = (
            settings.REMOTE_SETTINGS_WRITER_URL +
            'buckets/foo/collections/baa/records/an-id')
        responses.add(
            responses.PUT,
            url,
            content_type='application/json',
            json={'data': {'id': 'updated'}})

        record = server.publish_record({'something': 'somevalue'}, 'an-id')
        assert record == {'id': 'updated'}
Exemplo n.º 3
0
 def test_setup_server_bucket(self):
     server = KintoServer('foo', 'baa')
     # if the server 403s on the bucket it's because it doesn't exist
     responses.add(
         responses.GET,
         settings.REMOTE_SETTINGS_WRITER_URL + 'buckets/foo',
         content_type='application/json',
         status=403)
     responses.add(
         responses.PUT,
         settings.REMOTE_SETTINGS_WRITER_URL + 'buckets/foo',
         content_type='application/json')
     # if the server 404s on the collection it's because it doesn't exist
     responses.add(
         responses.GET,
         settings.REMOTE_SETTINGS_WRITER_URL +
         'buckets/foo/collections/baa',
         content_type='application/json',
         status=404)
     responses.add(
         responses.PUT,
         settings.REMOTE_SETTINGS_WRITER_URL +
         'buckets/foo/collections/baa',
         content_type='application/json',
         status=201)
     server.setup_test_server_collection()
Exemplo n.º 4
0
    def test_publish_attachment(self, uuidmock):
        uuidmock.uuid4.return_value = 1234567890
        server = KintoServer('foo', 'baa')
        server._setup_done = True
        assert not server._changes
        url = (
            settings.REMOTE_SETTINGS_WRITER_URL +
            'buckets/foo/collections/baa/records/1234567890/attachment')
        responses.add(
            responses.POST,
            url,
            json={'data': {'id': '1234567890'}})

        with tempfile.TemporaryFile() as attachment:
            record = server.publish_attachment(
                {'something': 'somevalue'}, ('file', attachment))
        assert server._changes
        assert record == {'id': '1234567890'}

        url = (
            settings.REMOTE_SETTINGS_WRITER_URL +
            'buckets/foo/collections/baa/records/an-id/attachment')
        responses.add(
            responses.POST,
            url,
            json={'data': {'id': 'an-id'}})

        with tempfile.TemporaryFile() as attachment:
            record = server.publish_attachment(
                {'something': 'somevalue'}, ('otherfile', attachment), 'an-id')
        assert record == {'id': 'an-id'}
Exemplo n.º 5
0
    def test_delete_all_records(self):
        server = KintoServer('foo', 'baa')
        server._setup_done = True
        assert not server._changes
        url = (settings.KINTO_API_URL + 'buckets/foo/collections/baa/records')
        responses.add(responses.DELETE, url, content_type='application/json')

        server.delete_all_records()
        assert server._changes
Exemplo n.º 6
0
    def test_delete_record(self):
        server = KintoServer('foo', 'baa')
        server._setup_done = True
        assert not server._needs_signoff
        url = (
            settings.KINTO_API_URL +
            'buckets/foo/collections/baa/records/an-id')
        responses.add(
            responses.DELETE,
            url,
            content_type='application/json')

        server.delete_record('an-id')
        assert server._needs_signoff
Exemplo n.º 7
0
    def test_delete_record(self):
        server = KintoServer('foo', 'baa')
        server._setup_done = True
        assert not server._changes
        url = (
            settings.REMOTE_SETTINGS_WRITER_URL +
            'buckets/foo/collections/baa/records/an-id')
        responses.add(
            responses.DELETE,
            url,
            content_type='application/json')

        server.delete_record('an-id')
        assert server._changes
Exemplo n.º 8
0
 def test_setup_server_collection(self):
     server = KintoServer('foo', 'baa')
     # But if the bucket exists then the collection should still be created
     responses.add(responses.GET,
                   settings.KINTO_API_URL + 'buckets/foo',
                   content_type='application/json')
     responses.add(responses.GET,
                   settings.KINTO_API_URL + 'buckets/foo/collections/baa',
                   content_type='application/json',
                   status=404)
     responses.add(responses.PUT,
                   settings.KINTO_API_URL + 'buckets/foo/collections/baa',
                   content_type='application/json',
                   status=201)
     server.setup_test_server_collection()
Exemplo n.º 9
0
def upload_mlbf_to_kinto():
    if not waffle.switch_is_active('blocklist_mlbf_submit'):
        log.info('Upload MLBF to kinto cron job disabled.')
        return
    log.info('Starting Upload MLBF to kinto cron job.')
    server = KintoServer(KINTO_BUCKET, KINTO_COLLECTION_MLBF)
    stats = {}
    key_format = get_mlbf_key_format()
    bloomfilter = generate_mlbf(stats, key_format)
    with tempfile.NamedTemporaryFile() as filter_file:
        bloomfilter.tofile(filter_file)
        filter_file.seek(0)
        # TODO: sign filter blob
        data = {'key_format': key_format}
        attachment = ('filter.bin', filter_file, 'application/octet-stream')
        server.publish_attachment(data, attachment)
    log.info(json.dumps(stats))
Exemplo n.º 10
0
    def test_setup_server_auth(self):
        server = KintoServer('foo', 'baa')
        responses.add(responses.GET,
                      settings.KINTO_API_URL,
                      content_type='application/json',
                      json={'user': {
                          'id': ''
                      }})
        responses.add(responses.PUT,
                      settings.KINTO_API_URL + 'accounts/test_username',
                      content_type='application/json',
                      json={'data': {
                          'password': '******'
                      }},
                      status=201)
        server.setup_test_server_auth()

        # If repeated then the account should exist the 2nd time
        responses.add(responses.GET,
                      settings.KINTO_API_URL,
                      content_type='application/json',
                      json={'user': {
                          'id': 'account:test_username'
                      }})
        server.setup_test_server_auth()
Exemplo n.º 11
0
def legacy_publish_blocks(blocks):
    bucket = settings.REMOTE_SETTINGS_WRITER_BUCKET
    server = KintoServer(bucket, REMOTE_SETTINGS_COLLECTION_LEGACY)
    for block in blocks:
        needs_updating = block.include_in_legacy and block.kinto_id
        needs_creating = block.include_in_legacy and not block.kinto_id
        needs_deleting = block.kinto_id and not block.include_in_legacy

        if needs_updating or needs_creating:
            if block.is_imported_from_kinto_regex:
                log.debug(
                    f'Block [{block.guid}] was imported from a regex guid so '
                    'can\'t be safely updated.  Skipping.')
                continue
            data = {
                'guid':
                block.guid,
                'details': {
                    'bug': block.url,
                    'why': block.reason,
                    'name': str(block.reason).partition('.')[0],  # required
                },
                'enabled':
                True,
                'versionRange': [{
                    'severity': 3,  # Always high severity now.
                    'minVersion': block.min_version,
                    'maxVersion': block.max_version,
                }],
            }
            if needs_creating:
                record = server.publish_record(data)
                block.update(kinto_id=record.get('id', ''))
            else:
                server.publish_record(data, block.kinto_id)
        elif needs_deleting:
            if block.is_imported_from_kinto_regex:
                log.debug(
                    f'Block [{block.guid}] was imported from a regex guid so '
                    'can\'t be safely deleted.  Skipping.')
            else:
                server.delete_record(block.kinto_id)
            block.update(kinto_id='')
        # else no existing kinto record and it shouldn't be in legacy so skip
    server.complete_session()
Exemplo n.º 12
0
    def test_signoff(self):
        server = KintoServer('foo', 'baa')
        server._setup_done = True
        # should return because nothing to signoff
        server.signoff_request()

        server._needs_signoff = True
        url = (
            settings.KINTO_API_URL +
            'buckets/foo/collections/baa')
        responses.add(
            responses.PATCH,
            url,
            content_type='application/json')
        server.signoff_request()
        assert not server._needs_signoff
Exemplo n.º 13
0
    def test_complete_session_no_kinto_signoff(self):
        server = KintoServer('foo', 'baa', kinto_sign_off_needed=False)
        server._setup_done = True
        # should return because nothing to signoff
        server.complete_session()

        server._changes = True
        url = (settings.KINTO_API_URL + 'buckets/foo/collections/baa')
        responses.add(responses.PATCH, url, content_type='application/json')
        server.complete_session()
        assert not server._changes
        assert responses.calls[0].request.body == json.dumps({
            'data': {
                'status': 'to-sign'
            }
        }).encode()
Exemplo n.º 14
0
    def test_complete_session(self):
        server = KintoServer('foo', 'baa')
        server._setup_done = True
        # should return because nothing to signoff
        server.complete_session()

        server._changes = True
        url = (
            settings.REMOTE_SETTINGS_WRITER_URL +
            'buckets/foo/collections/baa')
        responses.add(
            responses.PATCH,
            url,
            content_type='application/json')
        server.complete_session()
        assert not server._changes
        assert responses.calls[0].request.body == json.dumps(
            {'data': {'status': 'to-review'}}).encode()
Exemplo n.º 15
0
def legacy_delete_blocks(blocks):
    server = KintoServer(KINTO_BUCKET, KINTO_COLLECTION_LEGACY)
    for block in blocks:
        if block.kinto_id and block.include_in_legacy:
            if block.is_imported_from_kinto_regex:
                log.debug(
                    f'Block [{block.guid}] was imported from a regex guid so '
                    'can\'t be safely deleted.  Skipping.')
            else:
                server.delete_record(block.kinto_id)
            block.update(kinto_id='')
    server.complete_session()
Exemplo n.º 16
0
def upload_filter_to_kinto(generation_time):
    server = KintoServer(KINTO_BUCKET,
                         KINTO_COLLECTION_MLBF,
                         kinto_sign_off_needed=False)
    data = {
        'key_format': MLBF.KEY_FORMAT,
        'generation_time': generation_time,
    }
    mlbf_path = MLBF(generation_time).filter_path
    with storage.open(mlbf_path) as filter_file:
        attachment = ('filter.bin', filter_file, 'application/octet-stream')
        server.publish_attachment(data, attachment)
    server.complete_session()
    set_config(MLBF_TIME_CONFIG_KEY, generation_time, json_value=True)
Exemplo n.º 17
0
    def test_setup(self):
        server = KintoServer('foo', 'baa')
        responses.add(
            responses.GET,
            settings.KINTO_API_URL,
            content_type='application/json',
            json={'user': {'id': 'account:test_username'}})
        records_url = (
            settings.KINTO_API_URL +
            'buckets/foo_test_username/collections/baa/records')
        responses.add(
            responses.GET,
            records_url,
            content_type='application/json')

        server.setup()
        assert server._setup_done
        assert server.bucket == 'foo_test_username'

        server.setup()  # a second time shouldn't make any requests
Exemplo n.º 18
0
def upload_mlbf_to_kinto():
    if not waffle.switch_is_active('blocklist_mlbf_submit'):
        log.info('Upload MLBF to kinto cron job disabled.')
        return
    last_generation_time = get_config(MLBF_TIME_CONFIG_KEY, 0, json_value=True)
    if last_generation_time > _get_blocklist_last_modified_time():
        log.info(
            'No new/modified Blocks in database; skipping MLBF generation')
        return

    log.info('Starting Upload MLBF to kinto cron job.')
    server = KintoServer(KINTO_BUCKET,
                         KINTO_COLLECTION_MLBF,
                         kinto_sign_off_needed=False)
    stats = {}
    key_format = get_mlbf_key_format()
    # This timestamp represents the point in time when all previous addon
    # guid + versions and blocks were used to generate the bloomfilter.
    # An add-on version/file from before this time will definitely be accounted
    # for in the bloomfilter so we can reliably assert if it's blocked or not.
    # An add-on version/file from after this time can't be reliably asserted -
    # there may be false positives or false negatives.
    # https://github.com/mozilla/addons-server/issues/13695
    generation_time = int(time.time() * 1000)
    bloomfilter = generate_mlbf(stats, key_format)
    with tempfile.NamedTemporaryFile() as filter_file:
        bloomfilter.tofile(filter_file)
        filter_file.seek(0)
        data = {
            'key_format': key_format,
            'generation_time': generation_time,
        }
        attachment = ('filter.bin', filter_file, 'application/octet-stream')
        server.publish_attachment(data, attachment)
    server.complete_session()
    set_config(MLBF_TIME_CONFIG_KEY, generation_time, json_value=True)
    log.info(json.dumps(stats))
Exemplo n.º 19
0
    def test_setup(self):
        server = KintoServer('foo', 'baa')
        responses.add(
            responses.GET,
            settings.REMOTE_SETTINGS_WRITER_URL,
            content_type='application/json',
            json={'user': {'id': 'account:test_username'}})
        bucket_url = (
            settings.REMOTE_SETTINGS_WRITER_URL +
            'buckets/foo_test_username')
        responses.add(
            responses.GET,
            bucket_url,
            content_type='application/json')
        responses.add(
            responses.GET,
            bucket_url + '/collections/baa',
            content_type='application/json')

        server.setup()
        assert server._setup_done
        assert server.bucket == 'foo_test_username'

        server.setup()  # a second time shouldn't make any requests
Exemplo n.º 20
0
    def test_setup_test_server_collection(self):
        server = KintoServer('foo', 'baa')
        responses.add(
            responses.GET,
            settings.KINTO_API_URL + 'buckets/foo/collections/baa/records',
            content_type='application/json',
            status=403)
        responses.add(
            responses.PUT,
            settings.KINTO_API_URL + 'buckets/foo',
            content_type='application/json')
        responses.add(
            responses.PUT,
            settings.KINTO_API_URL + 'buckets/foo/collections/baa',
            content_type='application/json',
            status=201)
        server.setup_test_server_collection()

        # If repeated then the collection shouldn't 403 a second time
        responses.add(
            responses.GET,
            settings.KINTO_API_URL + 'buckets/foo/collections/baa/records',
            content_type='application/json')
        server.setup_test_server_collection()
Exemplo n.º 21
0
    def test_setup_not_test_server(self):
        server = KintoServer('foo', 'baa')

        server.setup()  # will just return
        assert server._setup_done
        assert server.bucket == 'foo'