encryptors: Mock os_brick.executor correctly

Previously the encryptor test classes would mock the privileged rootwrap executor directly in the setUp method of each class. This will potentially race and is not required when mocking out execute calls within os_brick. This change also introduces a BaseEncryptorTestCase test class to avoid duplicate runs of the various get_encryptors test methods. Change-Id: I170fbcc07672c9c77b613c1eb84bcefbcd42ce77
2016-11-15 15:58:15 +00:00 · 2016-11-15 15:58:15 +00:00 · 6f1bb596dc
parent 2a092e28f9
commit 6f1bb596dc
4 changed files with 84 additions and 104 deletions
--- a/os_brick/tests/encryptors/test_base.py
+++ b/os_brick/tests/encryptors/test_base.py
@ -23,12 +23,11 @@ from os_brick.tests import base


 class VolumeEncryptorTestCase(base.TestCase):
-    def _create(self, root_helper, connection_info, keymgr, execute):
+    def _create(self):
        pass

    def setUp(self):
        super(VolumeEncryptorTestCase, self).setUp()
-        self.cmds = []
        self.connection_info = {
            "data": {
                "device_path": "/dev/disk/by-path/"
@ -36,36 +35,23 @@ class VolumeEncryptorTestCase(base.TestCase):
                ":volume-fake_uuid-lun-1",
            },
        }
-        patcher = mock.patch("os_brick.privileged.rootwrap.execute")
-        self.mock_execute = patcher.start()
-        self.addCleanup(patcher.stop)
        _hex = codecs.getdecoder("hex_codec")('0' * 32)[0]
        self.encryption_key = array.array('B', _hex).tolist()
        self.root_helper = None
-        self.encryptor = self._create(root_helper=self.root_helper,
-                                      connection_info=self.connection_info,
-                                      keymgr=fake.fake_api(),
-                                      execute=self.mock_execute)
+        self.keymgr = fake.fake_api()
+        self.encryptor = self._create()

-    def assert_exec_has_calls(self, expected_calls, any_order=False):
-        """Check that the root exec mock has calls, excluding child calls."""
-        if any_order:
-            self.assertSetEqual(set(expected_calls),
-                                set(self.mock_execute.call_args_list))
-        else:
-            self.assertListEqual(expected_calls,
-                                 self.mock_execute.call_args_list)
+
+class BaseEncryptorTestCase(VolumeEncryptorTestCase):

    def test_get_encryptors(self):
-        root_helper = None

        encryption = {'control_location': 'front-end',
                      'provider': 'LuksEncryptor'}
        encryptor = encryptors.get_volume_encryptor(
-            root_helper=root_helper,
+            root_helper=self.root_helper,
            connection_info=self.connection_info,
-            keymgr=fake.fake_api(),
-            execute=self.mock_execute,
+            keymgr=self.keymgr,
            **encryption)

        self.assertIsInstance(encryptor,
@ -75,10 +61,9 @@ class VolumeEncryptorTestCase(base.TestCase):
        encryption = {'control_location': 'front-end',
                      'provider': 'CryptsetupEncryptor'}
        encryptor = encryptors.get_volume_encryptor(
-            root_helper=root_helper,
+            root_helper=self.root_helper,
            connection_info=self.connection_info,
-            keymgr=fake.fake_api(),
-            execute=self.mock_execute,
+            keymgr=self.keymgr,
            **encryption)

        self.assertIsInstance(encryptor,
@ -89,25 +74,23 @@ class VolumeEncryptorTestCase(base.TestCase):
        encryption = {'control_location': 'front-end',
                      'provider': 'NoOpEncryptor'}
        encryptor = encryptors.get_volume_encryptor(
-            root_helper=root_helper,
+            root_helper=self.root_helper,
            connection_info=self.connection_info,
-            keymgr=fake.fake_api(),
-            execute=self.mock_execute,
+            keymgr=self.keymgr,
            **encryption)

        self.assertIsInstance(encryptor,
                              encryptors.nop.NoOpEncryptor,
                              "encryptor is not an instance of NoOpEncryptor")

-    def test_get_error_encryptos(self):
+    def test_get_error_encryptors(self):
        encryption = {'control_location': 'front-end',
                      'provider': 'ErrorEncryptor'}
        self.assertRaises(ValueError,
                          encryptors.get_volume_encryptor,
-                          root_helper=None,
+                          root_helper=self.root_helper,
                          connection_info=self.connection_info,
-                          keymgr=fake.fake_api(),
-                          execute=self.mock_execute,
+                          keymgr=self.keymgr,
                          **encryption)

    @mock.patch('os_brick.encryptors.LOG')
@ -117,10 +100,9 @@ class VolumeEncryptorTestCase(base.TestCase):
        provider = 'TestEncryptor'
        try:
            encryptors.get_volume_encryptor(
-                root_helper=None,
+                root_helper=self.root_helper,
                connection_info=self.connection_info,
-                keymgr=fake.fake_api(),
-                execute=self.mock_execute,
+                keymgr=self.keymgr,
                **encryption)
        except Exception as e:
            log.error.assert_called_once_with("Error instantiating "
--- a/os_brick/tests/encryptors/test_cryptsetup.py
+++ b/os_brick/tests/encryptors/test_cryptsetup.py
@ -33,16 +33,14 @@ def fake__get_key(context):
    return symmetric_key


-@mock.patch('os_brick.executor.encodeutils.safe_decode',
-            lambda x, errors=None: x)
 class CryptsetupEncryptorTestCase(test_base.VolumeEncryptorTestCase):
+
    @mock.patch('os.path.exists', return_value=False)
-    def _create(self, mock_exists, root_helper,
-                connection_info, keymgr, execute):
-        return cryptsetup.CryptsetupEncryptor(root_helper=root_helper,
-                                              connection_info=connection_info,
-                                              keymgr=keymgr,
-                                              execute=execute)
+    def _create(self, mock_exists):
+        return cryptsetup.CryptsetupEncryptor(
+            root_helper=self.root_helper,
+            connection_info=self.connection_info,
+            keymgr=self.keymgr)

    def setUp(self):
        super(CryptsetupEncryptorTestCase, self).setUp()
@ -52,10 +50,11 @@ class CryptsetupEncryptorTestCase(test_base.VolumeEncryptorTestCase):

        self.symlink_path = self.dev_path

-    def test__open_volume(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test__open_volume(self, mock_execute):
        self.encryptor._open_volume("passphrase")

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'create', '--key-file=-', self.dev_name,
                      self.dev_path, process_input='passphrase',
                      run_as_root=True,
@ -63,13 +62,14 @@ class CryptsetupEncryptorTestCase(test_base.VolumeEncryptorTestCase):
                      check_exit_code=True),
        ])

-    def test_attach_volume(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test_attach_volume(self, mock_execute):
        self.encryptor._get_key = mock.MagicMock()
        self.encryptor._get_key.return_value = fake__get_key(None)

        self.encryptor.attach_volume(None)

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'create', '--key-file=-', self.dev_name,
                      self.dev_path, process_input='0' * 32,
                      root_helper=self.root_helper,
@ -80,19 +80,21 @@ class CryptsetupEncryptorTestCase(test_base.VolumeEncryptorTestCase):
                      run_as_root=True, check_exit_code=True),
        ])

-    def test__close_volume(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test__close_volume(self, mock_execute):
        self.encryptor.detach_volume()

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'remove', self.dev_name,
                      root_helper=self.root_helper,
                      run_as_root=True, check_exit_code=True),
        ])

-    def test_detach_volume(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test_detach_volume(self, mock_execute):
        self.encryptor.detach_volume()

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'remove', self.dev_name,
                      root_helper=self.root_helper,
                      run_as_root=True, check_exit_code=True),
@ -111,26 +113,27 @@ class CryptsetupEncryptorTestCase(test_base.VolumeEncryptorTestCase):
                                keymgr=fake.fake_api())
        self.assertIn(type, six.text_type(exc))

+    @mock.patch('os_brick.executor.Executor._execute')
    @mock.patch('os.path.exists', return_value=True)
-    def test_init_volume_encryption_with_old_name(self,
-                                                  mock_exists):
+    def test_init_volume_encryption_with_old_name(self, mock_exists,
+                                                  mock_execute):
        # If an old name crypt device exists, dev_path should be the old name.
        old_dev_name = self.dev_path.split('/')[-1]
        encryptor = cryptsetup.CryptsetupEncryptor(
            root_helper=self.root_helper,
            connection_info=self.connection_info,
-            keymgr=fake.fake_api(),
-            execute=self.mock_execute)
+            keymgr=self.keymgr)
        self.assertFalse(encryptor.dev_name.startswith('crypt-'))
        self.assertEqual(old_dev_name, encryptor.dev_name)
        self.assertEqual(self.dev_path, encryptor.dev_path)
        self.assertEqual(self.symlink_path, encryptor.symlink_path)
        mock_exists.assert_called_once_with('/dev/mapper/%s' % old_dev_name)
-        self.mock_execute.assert_called_once_with(
+        mock_execute.assert_called_once_with(
            'cryptsetup', 'status', old_dev_name, run_as_root=True)

+    @mock.patch('os_brick.executor.Executor._execute')
    @mock.patch('os.path.exists', side_effect=[False, True])
-    def test_init_volume_encryption_with_wwn(self, mock_exists):
+    def test_init_volume_encryption_with_wwn(self, mock_exists, mock_execute):
        # If an wwn name crypt device exists, dev_path should be based on wwn.
        old_dev_name = self.dev_path.split('/')[-1]
        wwn = 'fake_wwn'
@ -140,7 +143,7 @@ class CryptsetupEncryptorTestCase(test_base.VolumeEncryptorTestCase):
            root_helper=self.root_helper,
            connection_info=connection_info,
            keymgr=fake.fake_api(),
-            execute=self.mock_execute)
+            execute=mock_execute)
        self.assertFalse(encryptor.dev_name.startswith('crypt-'))
        self.assertEqual(wwn, encryptor.dev_name)
        self.assertEqual(self.dev_path, encryptor.dev_path)
@ -148,5 +151,5 @@ class CryptsetupEncryptorTestCase(test_base.VolumeEncryptorTestCase):
        mock_exists.assert_has_calls([
            mock.call('/dev/mapper/%s' % old_dev_name),
            mock.call('/dev/mapper/%s' % wwn)])
-        self.mock_execute.assert_called_once_with(
+        mock_execute.assert_called_once_with(
            'cryptsetup', 'status', wwn, run_as_root=True)
--- a/os_brick/tests/encryptors/test_luks.py
+++ b/os_brick/tests/encryptors/test_luks.py
@ -21,34 +21,32 @@ from os_brick.tests.encryptors import test_cryptsetup
 from oslo_concurrency import processutils as putils


-@mock.patch('os_brick.executor.encodeutils.safe_decode',
-            lambda x, errors=None: x)
 class LuksEncryptorTestCase(test_cryptsetup.CryptsetupEncryptorTestCase):
-    def _create(self, root_helper, connection_info, keymgr, execute):
-        return luks.LuksEncryptor(root_helper=root_helper,
-                                  connection_info=connection_info,
-                                  keymgr=keymgr,
-                                  execute=execute)
+    def _create(self):
+        return luks.LuksEncryptor(root_helper=self.root_helper,
+                                  connection_info=self.connection_info,
+                                  keymgr=self.keymgr)

-    def test_is_luks(self):
-        luks.is_luks(self.root_helper, self.dev_path)
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test_is_luks(self, mock_execute):
+        luks.is_luks(self.root_helper, self.dev_path, execute=mock_execute)

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'isLuks', '--verbose', self.dev_path,
                      run_as_root=True, root_helper=self.root_helper,
                      check_exit_code=True),
        ], any_order=False)

+    @mock.patch('os_brick.executor.Executor._execute')
    @mock.patch('os_brick.encryptors.luks.LOG')
-    def test_is_luks_with_error(self, mock_log):
+    def test_is_luks_with_error(self, mock_log, mock_execute):
        error_msg = "Device %s is not a valid LUKS device." % self.dev_path
-        self.mock_execute.side_effect = \
-            putils.ProcessExecutionError(exit_code=1,
-                                         stderr=error_msg)
+        mock_execute.side_effect = putils.ProcessExecutionError(
+            exit_code=1, stderr=error_msg)

-        luks.is_luks(self.root_helper, self.dev_path)
+        luks.is_luks(self.root_helper, self.dev_path, execute=mock_execute)

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'isLuks', '--verbose', self.dev_path,
                      run_as_root=True, root_helper=self.root_helper,
                      check_exit_code=True),
@ -56,19 +54,11 @@ class LuksEncryptorTestCase(test_cryptsetup.CryptsetupEncryptorTestCase):

        self.assertEqual(1, mock_log.warning.call_count)  # warning logged

-    def test_is_luks_with_execute(self):
-        mock_execute = mock.Mock()
-        luks.is_luks(self.root_helper, self.dev_path, execute=mock_execute)
-        self.assertListEqual(
-            [mock.call('cryptsetup', 'isLuks', '--verbose', self.dev_path,
-                       run_as_root=True, root_helper=self.root_helper,
-                       check_exit_code=True)],
-            mock_execute.call_args_list)
-
-    def test__format_volume(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test__format_volume(self, mock_execute):
        self.encryptor._format_volume("passphrase")

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', '--batch-mode', 'luksFormat',
                      '--key-file=-', self.dev_path,
                      process_input='passphrase',
@ -76,24 +66,26 @@ class LuksEncryptorTestCase(test_cryptsetup.CryptsetupEncryptorTestCase):
                      run_as_root=True, check_exit_code=True, attempts=3),
        ])

-    def test__open_volume(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test__open_volume(self, mock_execute):
        self.encryptor._open_volume("passphrase")

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'luksOpen', '--key-file=-', self.dev_path,
                      self.dev_name, process_input='passphrase',
                      root_helper=self.root_helper,
                      run_as_root=True, check_exit_code=True),
        ])

-    def test_attach_volume(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test_attach_volume(self, mock_execute):
        self.encryptor._get_key = mock.MagicMock()
        self.encryptor._get_key.return_value = (
            test_cryptsetup.fake__get_key(None))

        self.encryptor.attach_volume(None)

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'luksOpen', '--key-file=-', self.dev_path,
                      self.dev_name, process_input='0' * 32,
                      root_helper=self.root_helper,
@ -104,12 +96,13 @@ class LuksEncryptorTestCase(test_cryptsetup.CryptsetupEncryptorTestCase):
                      run_as_root=True, check_exit_code=True),
        ])

-    def test_attach_volume_not_formatted(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test_attach_volume_not_formatted(self, mock_execute):
        self.encryptor._get_key = mock.MagicMock()
        self.encryptor._get_key.return_value = (
            test_cryptsetup.fake__get_key(None))

-        self.mock_execute.side_effect = [
+        mock_execute.side_effect = [
            putils.ProcessExecutionError(exit_code=1),  # luksOpen
            putils.ProcessExecutionError(exit_code=1),  # isLuks
            mock.DEFAULT,  # luksFormat
@ -119,7 +112,7 @@ class LuksEncryptorTestCase(test_cryptsetup.CryptsetupEncryptorTestCase):

        self.encryptor.attach_volume(None)

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'luksOpen', '--key-file=-', self.dev_path,
                      self.dev_name, process_input='0' * 32,
                      root_helper=self.root_helper,
@ -141,12 +134,13 @@ class LuksEncryptorTestCase(test_cryptsetup.CryptsetupEncryptorTestCase):
                      run_as_root=True, check_exit_code=True),
        ], any_order=False)

-    def test_attach_volume_fail(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test_attach_volume_fail(self, mock_execute):
        self.encryptor._get_key = mock.MagicMock()
        self.encryptor._get_key.return_value = (
            test_cryptsetup.fake__get_key(None))

-        self.mock_execute.side_effect = [
+        mock_execute.side_effect = [
            putils.ProcessExecutionError(exit_code=1),  # luksOpen
            mock.DEFAULT,  # isLuks
        ]
@ -154,7 +148,7 @@ class LuksEncryptorTestCase(test_cryptsetup.CryptsetupEncryptorTestCase):
        self.assertRaises(putils.ProcessExecutionError,
                          self.encryptor.attach_volume, None)

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'luksOpen', '--key-file=-', self.dev_path,
                      self.dev_name, process_input='0' * 32,
                      root_helper=self.root_helper,
@ -164,19 +158,21 @@ class LuksEncryptorTestCase(test_cryptsetup.CryptsetupEncryptorTestCase):
                      run_as_root=True, check_exit_code=True),
        ], any_order=False)

-    def test__close_volume(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test__close_volume(self, mock_execute):
        self.encryptor.detach_volume()

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'luksClose', self.dev_name,
                      root_helper=self.root_helper,
                      attempts=3, run_as_root=True, check_exit_code=True),
        ])

-    def test_detach_volume(self):
+    @mock.patch('os_brick.executor.Executor._execute')
+    def test_detach_volume(self, mock_execute):
        self.encryptor.detach_volume()

-        self.assert_exec_has_calls([
+        mock_execute.assert_has_calls([
            mock.call('cryptsetup', 'luksClose', self.dev_name,
                      root_helper=self.root_helper,
                      attempts=3, run_as_root=True, check_exit_code=True),
--- a/os_brick/tests/encryptors/test_nop.py
+++ b/os_brick/tests/encryptors/test_nop.py
@ -18,11 +18,10 @@ from os_brick.tests.encryptors import test_base


 class NoOpEncryptorTestCase(test_base.VolumeEncryptorTestCase):
-    def _create(self, root_helper, connection_info, keymgr, execute):
-        return nop.NoOpEncryptor(root_helper=root_helper,
-                                 connection_info=connection_info,
-                                 keymgr=keymgr,
-                                 execute=execute)
+    def _create(self):
+        return nop.NoOpEncryptor(root_helper=self.root_helper,
+                                 connection_info=self.connection_info,
+                                 keymgr=self.keymgr)

    def test_attach_volume(self):
        self.encryptor.attach_volume(None)