MCP Server for OSCAL

test_file_integrity_utils.py•13 KiB

""" Test utilities for file integrity testing. This module provides utilities for creating and manipulating test packages to support comprehensive testing of the verify_package_integrity function. """ import hashlib import json import logging import shutil import tempfile from pathlib import Path logger = logging.getLogger(__name__) class TestPackageManager: """Manages creation and manipulation of test packages for integrity testing.""" _temp_dir: Path = Path(tempfile.mkdtemp(prefix="oscal_integrity_test_")) _created_packages: list[Path] = [] def __enter__(self): """Context manager entry.""" return self def __exit__(self, exc_type, exc_val, exc_tb): """Context manager exit - cleanup temporary directories.""" self.cleanup() @property def temp_dir(self) -> Path: """Get the temporary directory path.""" return self._temp_dir def create_test_package( self, package_name: str, files: dict[str, str | bytes] ) -> Path: """Create a test package with specified files and generate hash manifest. Args: package_name: Name of the package directory files: Dictionary mapping filename to content (str or bytes) Returns: Path to the created package directory Requirements: 7.1, 7.6 """ if self._created_packages is None: list[Path] = [] package_dir = self._temp_dir / package_name package_dir.mkdir(parents=True, exist_ok=True) # Create files in the package directory for filename, content in files.items(): file_path = package_dir / filename if isinstance(content, str): file_path.write_text(content, encoding="utf-8") else: file_path.write_bytes(content) # Generate hash manifest using bin/update_hashes.py self._generate_hash_manifest(package_dir) self._created_packages.append(package_dir) return package_dir def _generate_hash_manifest(self, package_dir: Path) -> None: """Generate hashes.json file using our own implementation. This creates a hash manifest compatible with the verify_package_integrity function without relying on the bin/update_hashes.py script which has issues. Args: package_dir: Directory to generate hashes for Requirements: 7.1 """ # Generate file hashes for all regular files (excluding hashes.json) file_hashes = {} for file_path in package_dir.iterdir(): if file_path.is_file() and file_path.name != "hashes.json": with open(file_path, "rb") as f: file_hashes[file_path.name] = hashlib.sha256(f.read()).hexdigest() # Create the hash manifest structure # We use a dummy commit hash since we're not using git for tests manifest = { "commit": "'test-commit-hash-for-testing'", "file_hashes": file_hashes, } # Write the manifest to hashes.json manifest_path = package_dir / "hashes.json" with open(manifest_path, "w", encoding="utf-8") as f: json.dump(manifest, f, indent=2) def tamper_file( self, package_dir: Path, filename: str, modification: str = "append" ) -> None: """Modify a file to simulate tampering. Args: package_dir: Package directory containing the file filename: Name of file to tamper with modification: Type of modification ('append', 'prepend', 'replace', 'truncate') Requirements: 7.2 """ file_path = package_dir / filename if not file_path.exists(): raise FileNotFoundError( f"File {filename} not found in package {package_dir}" ) if modification == "append": with open(file_path, "a", encoding="utf-8") as f: f.write("\n# TAMPERED CONTENT") elif modification == "prepend": original_content = file_path.read_text(encoding="utf-8") file_path.write_text( "# TAMPERED CONTENT\n" + original_content, encoding="utf-8" ) elif modification == "replace": file_path.write_text("COMPLETELY REPLACED CONTENT", encoding="utf-8") elif modification == "truncate": file_path.write_text("", encoding="utf-8") else: raise ValueError(f"Unknown modification type: {modification}") def remove_file(self, package_dir: Path, filename: str) -> None: """Remove a file to simulate missing files. Args: package_dir: Package directory containing the file filename: Name of file to remove Requirements: 7.3 """ file_path = package_dir / filename if file_path.exists(): file_path.unlink() else: logger.warning(f"File {filename} not found in package {package_dir}") def add_orphaned_file( self, package_dir: Path, filename: str, content: str | bytes = "orphaned content", ) -> None: """Add a file that's not in the hash manifest (orphaned file). Args: package_dir: Package directory to add file to filename: Name of orphaned file to create content: Content for the orphaned file Requirements: 7.4 """ file_path = package_dir / filename if isinstance(content, str): file_path.write_text(content, encoding="utf-8") else: file_path.write_bytes(content) def create_malformed_manifest( self, package_dir: Path, error_type: str = "invalid_json" ) -> None: """Create a malformed hash manifest. Args: package_dir: Package directory containing hashes.json error_type: Type of error to introduce ('invalid_json', 'missing_section', 'invalid_hash') Requirements: 7.5 """ manifest_path = package_dir / "hashes.json" if error_type == "invalid_json": manifest_path.write_text('{"invalid": json}', encoding="utf-8") elif error_type == "missing_section": manifest_path.write_text('{"commit": "abc123"}', encoding="utf-8") elif error_type == "invalid_hash": manifest_path.write_text( '{"commit": "abc123", "file_hashes": {"test.txt": "invalid_hash"}}', encoding="utf-8", ) else: raise ValueError(f"Unknown error type: {error_type}") def get_valid_hash_manifest(self, package_dir: Path) -> dict: """Get the current valid hash manifest from a package. Args: package_dir: Package directory containing hashes.json Returns: Dictionary containing the hash manifest data """ manifest_path = package_dir / "hashes.json" if not manifest_path.exists(): raise FileNotFoundError(f"Hash manifest not found at {manifest_path}") with open(manifest_path, encoding="utf-8") as f: return json.load(f) def compute_file_hash(self, file_path: Path) -> str: """Compute SHA-256 hash of a file. Args: file_path: Path to file to hash Returns: Hexadecimal SHA-256 hash string """ with open(file_path, "rb") as f: return hashlib.sha256(f.read()).hexdigest() def cleanup(self) -> None: """Clean up all created temporary directories and files. Requirements: 7.6 """ if self._temp_dir.exists(): shutil.rmtree(self._temp_dir) self._created_packages.clear() def create_sample_oscal_files() -> dict[str, str]: """Create sample OSCAL-like files for testing. Returns: Dictionary mapping filename to content """ return { "catalog.json": json.dumps( { "catalog": { "uuid": "12345678-1234-5678-9012-123456789012", "metadata": { "title": "Test Catalog", "last-modified": "2024-01-01T00:00:00Z", "version": "1.0", "oscal-version": "1.1.2", }, } }, indent=2, ), "profile.json": json.dumps( { "profile": { "uuid": "87654321-4321-8765-2109-876543210987", "metadata": { "title": "Test Profile", "last-modified": "2024-01-01T00:00:00Z", "version": "1.0", "oscal-version": "1.1.2", }, } }, indent=2, ), "README.md": "# Test OSCAL Package\n\nThis is a test package for integrity testing.", "schema.xsd": '<?xml version="1.0" encoding="UTF-8"?>\n<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema"/>', } def create_binary_test_files() -> dict[str, bytes]: """Create sample binary files for testing. Returns: Dictionary mapping filename to binary content """ return { "test.bin": b"\x00\x01\x02\x03\x04\x05\x06\x07\x08\x09", "image.png": b"\x89PNG\r\n\x1a\n\x00\x00\x00\rIHDR\x00\x00\x00\x01\x00\x00\x00\x01\x08\x02\x00\x00\x00\x90wS\xde", "data.dat": bytes(range(256)), } # Assertion utilities for tests def assert_integrity_passes(package_dir: Path) -> None: """Assert that integrity verification passes for a package directory. Args: package_dir: Package directory to verify Raises: AssertionError: If integrity verification fails """ from mcp_server_for_oscal.tools.utils import verify_package_integrity try: verify_package_integrity(package_dir) except Exception as e: raise AssertionError(f"Expected integrity verification to pass, but got: {e}") def assert_integrity_fails(package_dir: Path, expected_error_pattern: str) -> None: """Assert that integrity verification fails with expected error. Args: package_dir: Package directory to verify expected_error_pattern: Expected error message pattern Raises: AssertionError: If integrity verification passes or fails with unexpected error """ from mcp_server_for_oscal.tools.utils import verify_package_integrity try: verify_package_integrity(package_dir) raise AssertionError("Expected integrity verification to fail, but it passed") except RuntimeError as e: if expected_error_pattern not in str(e): raise AssertionError( f"Expected error containing '{expected_error_pattern}', but got: {e}" ) except KeyError as e: # Handle orphaned file detection which currently raises KeyError # The key name should match the expected error pattern (filename) if expected_error_pattern not in str(e): raise AssertionError( f"Expected error containing '{expected_error_pattern}', " f"but got KeyError: {e}" ) except Exception as e: raise AssertionError( f"Expected RuntimeError or KeyError, but got {type(e).__name__}: {e}" ) def assert_file_exists(package_dir: Path, filename: str) -> None: """Assert that a file exists in the package directory. Args: package_dir: Package directory filename: Name of file to check Raises: AssertionError: If file doesn't exist """ file_path = package_dir / filename if not file_path.exists(): raise AssertionError(f"Expected file {filename} to exist in {package_dir}") def assert_file_not_exists(package_dir: Path, filename: str) -> None: """Assert that a file does not exist in the package directory. Args: package_dir: Package directory filename: Name of file to check Raises: AssertionError: If file exists """ file_path = package_dir / filename if file_path.exists(): raise AssertionError(f"Expected file {filename} to not exist in {package_dir}") def assert_hash_manifest_valid(package_dir: Path) -> None: """Assert that the hash manifest is valid JSON with required sections. Args: package_dir: Package directory containing hashes.json Raises: AssertionError: If manifest is invalid """ manifest_path = package_dir / "hashes.json" if not manifest_path.exists(): raise AssertionError(f"Hash manifest not found at {manifest_path}") try: with open(manifest_path, encoding="utf-8") as f: manifest = json.load(f) except json.JSONDecodeError as e: raise AssertionError(f"Hash manifest is not valid JSON: {e}") if "file_hashes" not in manifest: raise AssertionError("Hash manifest missing 'file_hashes' section") if not isinstance(manifest["file_hashes"], dict): raise AssertionError("'file_hashes' section must be a dictionary")

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/awslabs/mcp-server-for-oscal'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

test_file_integrity_utils.py•13 KiB