Rewrite lock_test.py (#9614)

`lock_test.py` is a weird, heavily customized, standalone testing relic that's giving me trouble because the name currently conflicts with `certbot/tests/lock_test.py`. Moving `certbot/tests` inside the Certbot package as discussed at #7909 (comment) would avoid this, however, this is at least somewhat blocked on getting that test code passing lint and mypy checks again because we run those checks on the entirety of the Certbot package 🙃 Since `lock_test.py` could probably stand to be rewritten/refactored anyway, I took this approach. What I did is I rewrote something largely equivalent to `lock_test.py` inside Certbot's unit tests. I chose not to do this in `certbot-ci` because its not necessary to have an ACME server available. We're no longer explicitly testing things with the nginx plugin here like we were in `lock_test.py`, however, we are checking that `prepare` is called on the plugin at the right time and I added comments about the importance of checking that we lock the directory during the call to `prepare` in the Apache and nginx test code. As a bonus, this fixes #8121.
certbot · Mar 15, 2023 · c07b5ef · c07b5ef
1 parent 7a6752a
commit c07b5ef
Show file tree

Hide file tree

Showing 6 changed files with 92 additions and 300 deletions.
diff --git a/certbot-apache/tests/configurator_test.py b/certbot-apache/tests/configurator_test.py
@@ -70,6 +70,13 @@ def test_prepare_version(self, mock_exe_exists, _):
             self.config.prepare()
 
     def test_prepare_locked(self):
+        # It is important to test that server_root is locked during the call to
+        # prepare (as opposed to somewhere else during plugin execution) to
+        # ensure that this lock will be acquired after the Certbot package
+        # acquires all of its locks. (Tests that Certbot calls prepare after
+        # acquiring its locks are part of the Certbot package's tests.) Not
+        # doing this could result in deadlock from two versions of Certbot that
+        # acquire its locks in a different order.
         server_root = self.config.conf("server-root")
         self.config.config_test = mock.Mock()
         os.remove(os.path.join(server_root, ".certbot.lock"))

diff --git a/certbot-nginx/tests/configurator_test.py b/certbot-nginx/tests/configurator_test.py
@@ -63,6 +63,13 @@ def test_prepare_initializes_version(self, mock_run, mock_exe_exists):
         assert (1, 6, 2) == self.config.version
 
     def test_prepare_locked(self):
+        # It is important to test that server_root is locked during the call to
+        # prepare (as opposed to somewhere else during plugin execution) to
+        # ensure that this lock will be acquired after the Certbot package
+        # acquires all of its locks. (Tests that Certbot calls prepare after
+        # acquiring its locks are part of the Certbot package's tests.) Not
+        # doing this could result in deadlock from two versions of Certbot that
+        # acquire its locks in a different order.
         server_root = self.config.conf("server-root")
 
         from certbot import util as certbot_util

diff --git a/certbot/tests/main_test.py b/certbot/tests/main_test.py
@@ -1,6 +1,7 @@
 # coding=utf-8
 """Tests for certbot._internal.main."""
 # pylint: disable=too-many-lines
+import contextlib
 import datetime
 from importlib import reload as reload_module
 import io
@@ -33,6 +34,7 @@
 from certbot._internal.plugins import disco
 from certbot._internal.plugins import manual
 from certbot._internal.plugins import null
+from certbot._internal.plugins import standalone
 from certbot.compat import filesystem
 from certbot.compat import os
 from certbot.plugins import enhancements
@@ -2446,5 +2448,80 @@ def test_double_email(self):
                       '  Email contacts: foo@example.com, bar@example.com')])
 
 
+class TestLockOrder:
+    """Tests that Certbot's directory locks were acquired in the right order."""
+    EXPECTED_ERROR_TYPE = errors.Error
+    EXPECTED_ERROR_STR = 'Expected TestLockOrder error'
+    # This regex is needed because certbot renew captures raised errors and
+    # raises its own.
+    EXPECTED_ERROR_STR_REGEX = f'{EXPECTED_ERROR_STR}|1 renew failure'
+
+    @pytest.fixture
+    def mock_lock_dir(self):
+        with mock.patch('certbot._internal.lock.lock_dir') as mock_lock_dir:
+            yield mock_lock_dir
+
+    @contextlib.contextmanager
+    def mock_plugin_prepare(self, authenticator_dir, installer_dir, mock_lock_dir, subcommand):
+        """Patches plugin prepare to call mock_lock_dir and raise the expected error."""
+        def authenticator_lock(unused_self):
+            mock_lock_dir(authenticator_dir)
+            raise self.EXPECTED_ERROR_TYPE(self.EXPECTED_ERROR_STR)
+
+        def installer_lock(unused_self):
+            mock_lock_dir(installer_dir)
+            # Unless an installer isn't needed (e.g. certbot install), we
+            # expect the authenticator to raise the expected error because it
+            # is prepared last. See
+            # https://github.com/certbot/certbot/blob/7a6752a68ed77e73c2b29ab20d3ca8927f4fa7b0/certbot/certbot/_internal/plugins/selection.py#L246-L249
+            if subcommand == 'install':
+                raise self.EXPECTED_ERROR_TYPE(self.EXPECTED_ERROR_STR)
+
+        with mock.patch.object(standalone.Authenticator, 'prepare', authenticator_lock):
+            with mock.patch.object(null.Installer, 'prepare', installer_lock):
+                yield
+
+    @pytest.fixture(params='certonly install renew run'.split())
+    def args_and_lock_order(self, mock_lock_dir, request, tmp_path):
+        """Sets up Certbot with args and mocks to error after acquiring the last lock.
+
+        This fixture yields the CLI arguments that should be given to Certbot
+        and the expected order of directories to be locked. An error is raised
+        after acquiring the last lock just as a means of stopping Certbot's
+        execution.
+
+        """
+        # select directories
+        authenticator_dir = str(tmp_path / 'authenticator')
+        config_dir = str(tmp_path / 'config')
+        installer_dir = str(tmp_path / 'installer')
+        logs_dir = str(tmp_path / 'logs')
+        work_dir = str(tmp_path / 'work')
+
+        # prepare args and lineage
+        subcommand = request.param
+        args = [subcommand, '-a', 'standalone', '-i', 'null', '--no-random-sleep-on-renew',
+                '--config-dir', config_dir, '--logs-dir', logs_dir, '--work-dir',
+                work_dir]
+        test_util.make_lineage(config_dir, 'sample-renewal.conf')
+
+        with self.mock_plugin_prepare(authenticator_dir, installer_dir, mock_lock_dir, subcommand):
+            lock_order = [logs_dir, config_dir, work_dir, installer_dir]
+            if subcommand == 'install':
+                yield args, lock_order
+            else:
+                # We expect the installer to be prepared even for certonly
+                # because an installer was requested on the command line.
+                yield args, lock_order + [authenticator_dir]
+
+    def test_lock_order(self, args_and_lock_order, mock_lock_dir):
+        args, lock_order = args_and_lock_order
+        with pytest.raises(self.EXPECTED_ERROR_TYPE, match=self.EXPECTED_ERROR_STR_REGEX):
+            main.main(args)
+        assert mock_lock_dir.call_count == len(lock_order)
+        for call, locked_dir in zip(mock_lock_dir.call_args_list, lock_order):
+            assert call[0][0] == locked_dir
+
+
 if __name__ == '__main__':
     sys.exit(pytest.main(sys.argv[1:] + [__file__]))  # pragma: no cover
diff --git a/linter_plugin.py b/linter_plugin.py
@@ -17,7 +17,6 @@
     '/acme/acme/',
     '/certbot-ci/',
     '/certbot-compatibility-test/',
-    '/tests/lock_test',
 ]