file analyzers test+ base class improved

Signed-off-by: pranjalg1331 <[email protected]>

Author: pranjalg1331

tests/api_app/analyzers_manager/unit_tests/file_analyzers/base_test_class.py

@@ -1,4 +1,5 @@
 import hashlib
+import logging
 import os
 from contextlib import ExitStack
 from types import SimpleNamespace
@@ -7,6 +8,8 @@
 from api_app.analyzers_manager.models import AnalyzerConfig
 from tests.mock_utils import MockUpResponse
 
+logger = logging.getLogger(__name__)
+
 
 class BaseFileAnalyzerTest(TestCase):
     analyzer_class = None
@@ -59,71 +62,83 @@ def get_all_supported_mimetypes(cls) -> set:
         return set(cls.MIMETYPE_TO_FILENAME.keys())
 
     @classmethod
-    def get_extra_config(self) -> dict:
+    def get_extra_config(cls) -> dict:
         """
         Subclasses can override this to provide additional runtime configuration
         specific to their analyzer (e.g., API keys, URLs, retry counts, etc.).
-
-        Returns:
-            dict: Extra configuration parameters for the analyzer
         """
         return {}
 
     def get_mocked_response(self):
         """
         Subclasses override this to define expected mocked output.
-
-        Can return:
-        1. A single patch object: patch('module.function')
-        2. A list of patch objects: [patch('module.func1'), patch('module.func2')]
-        3. A context manager: patch.multiple() or ExitStack()
         """
-        raise NotImplementedError
+        raise NotImplementedError("Subclasses must implement get_mocked_response()")
 
     @classmethod
-    def _apply_patches(self, patches):
+    def _apply_patches(cls, patches):
         """Helper method to apply single or multiple patches"""
         if patches is None:
             return ExitStack()  # No-op context manager
 
-        # If it's already a context manager, return as-is
         if hasattr(patches, "__enter__") and hasattr(patches, "__exit__"):
             return patches
 
-        # If it's a list of patches, use ExitStack to manage them
         if isinstance(patches, (list, tuple)):
             stack = ExitStack()
             for patch_obj in patches:
                 stack.enter_context(patch_obj)
             return stack
 
-        # Single patch object
         return patches
 
+    def setUp(self):
+        super().setUp()
+        logger.info("Setting up test environment for file analyzer")
+        if self.analyzer_class:
+            analyzer_module = self.analyzer_class.__module__
+            logging.getLogger(analyzer_module).setLevel(logging.CRITICAL)
+            logging.getLogger("api_app.analyzers_manager").setLevel(logging.WARNING)
+
+    def tearDown(self):
+        super().tearDown()
+        logger.info("Tearing down test environment for file analyzer")
+        if self.analyzer_class:
+            analyzer_module = self.analyzer_class.__module__
+            logging.getLogger(analyzer_module).setLevel(logging.NOTSET)
+            logging.getLogger("api_app.analyzers_manager").setLevel(logging.NOTSET)
+
     def test_analyzer_on_supported_filetypes(self):
         if self.analyzer_class is None:
             self.skipTest("analyzer_class is not set")
-        config = AnalyzerConfig.objects.get(
-            python_module=self.analyzer_class.python_module
-        )
-        print(config)
 
-        # If supported_filetypes is None or empty, use all available mimetypes
-        if config.supported_filetypes:
-            supported_types = config.supported_filetypes
-        else:
-            supported_types = self.get_all_supported_mimetypes()
+        logger.info("Starting file analyzer test for: %s", self.analyzer_class.__name__)
+
+        try:
+            config = AnalyzerConfig.objects.get(
+                python_module=self.analyzer_class.python_module
+            )
+        except AnalyzerConfig.DoesNotExist:
+            self.fail(
+                f"No AnalyzerConfig found for {self.analyzer_class.python_module}"
+            )
+
+        logger.debug("Loaded analyzer config: %s", config)
+
+        supported_types = (
+            config.supported_filetypes or self.get_all_supported_mimetypes()
+        )
 
         for mimetype in supported_types:
             with self.subTest(mimetype=mimetype):
+                logger.info("Testing mimetype: %s", mimetype)
 
                 try:
                     file_bytes = self.get_sample_file_bytes(mimetype)
-                except (ValueError, OSError):
-                    print(f"SKIPPING {mimetype}")
+                except (ValueError, OSError) as e:
+                    logger.warning("Skipping %s due to error: %s", mimetype, str(e))
                     continue
 
-                # Apply patches using the improved system
                 patches = self.get_mocked_response()
                 with self._apply_patches(patches):
                     md5 = hashlib.md5(file_bytes).hexdigest()
@@ -133,23 +148,37 @@ def test_analyzer_on_supported_filetypes(self):
                     analyzer.filename = f"test_file_{mimetype}"
                     analyzer.md5 = md5
                     analyzer.read_file_bytes = lambda: file_bytes
+
                     analyzer._job = SimpleNamespace()
                     analyzer._job.analyzable = SimpleNamespace()
                     analyzer._job.analyzable.name = analyzer.filename
                     analyzer._job.analyzable.mimetype = mimetype
+                    analyzer._job.analyzable.sha256 = hashlib.sha256(
+                        file_bytes
+                    ).hexdigest()
+                    analyzer._job_id = ""
 
-                    test_file_path = self.get_sample_file_path(mimetype)
-                    analyzer._FileAnalyzer__filepath = test_file_path
+                    analyzer._FileAnalyzer__filepath = self.get_sample_file_path(
+                        mimetype
+                    )
 
-                    extra_config = self.get_extra_config()
-                    for key, value in extra_config.items():
+                    for key, value in self.get_extra_config().items():
                         setattr(analyzer, key, value)
 
-                    response = analyzer.run()
+                    try:
+                        response = analyzer.run()
+                        logger.info("Analyzer ran successfully for %s", mimetype)
+                    except Exception as e:
+                        logger.exception(
+                            "Analyzer raised an exception for %s", mimetype
+                        )
+                        self.fail(
+                            f"Analyzer run failed for {mimetype}: {type(e).__name__}: {e}"
+                        )
+
                     self.assertIsInstance(
                         response,
                         (dict, MockUpResponse),
                         f"Expected dict or MockUpResponse, got {type(response)} with value: {response}",
                     )
-
-                    print(f"SUCCESS {mimetype}")
+                    logger.debug("Successful result for %s: %s", mimetype, response)

tests/api_app/analyzers_manager/unit_tests/file_analyzers/test_elf_info.py

@@ -0,0 +1,68 @@
+# from unittest.mock import patch, mock_open, MagicMock
+# from api_app.analyzers_manager.file_analyzers.elf_info import ELFInfo
+# from .base_test_class import BaseFileAnalyzerTest
+# from elftools.construct import Container
+
+
+# class TestELFInfo(BaseFileAnalyzerTest):
+#     analyzer_class = ELFInfo
+
+#     def get_mocked_response(self):
+#         # Mock ELF file content and structure
+#         mock_elf = MagicMock()
+
+#         # Mock ELF header as Container object
+#         mock_e_ident = Container()
+#         mock_e_ident.EI_MAG = [0x7f, 0x45, 0x4c, 0x46]  # ELF magic number
+#         mock_e_ident.EI_CLASS = 2  # 64-bit
+#         mock_e_ident.EI_DATA = 1   # Little endian
+#         mock_e_ident.EI_VERSION = 1
+#         mock_e_ident.EI_OSABI = 0
+#         mock_e_ident.EI_ABIVERSION = 0
+
+#         mock_header = Container()
+#         mock_header.e_ident = mock_e_ident
+#         mock_header.e_type = 2      # ET_EXEC
+#         mock_header.e_machine = 62  # EM_X86_64
+#         mock_header.e_version = 1
+#         mock_header.e_entry = 0x400000
+#         mock_header.e_phoff = 64
+#         mock_header.e_shoff = 4096
+#         mock_header.e_flags = 0
+#         mock_header.e_ehsize = 64
+#         mock_header.e_phentsize = 56
+#         mock_header.e_phnum = 8
+#         mock_header.e_shentsize = 64
+#         mock_header.e_shnum = 29
+#         mock_header.e_shstrndx = 28
+
+#         # Configure mock ELF object
+#         mock_elf.header = mock_header
+#         mock_elf.elfclass = 64
+#         mock_elf.little_endian = True
+
+#         # Mock telfhash result
+#         mock_telfhash_result = ({
+#             'telfhash': 'T1234567890ABCDEF1234567890ABCDEF12345678',
+#             'header': {
+#                 'machine': 'x86_64',
+#                 'class': 'ELF64',
+#                 'data': 'little_endian'
+#             },
+#             'sections': [
+#                 {'name': '.text', 'size': 1024},
+#                 {'name': '.data', 'size': 512}
+#             ],
+#             'symbols': 42,
+#             'imports': 15,
+#             'exports': 8
+#         },)
+
+#         # Create patches for all the dependencies
+#         patches = [
+#             patch('builtins.open', mock_open()),
+#             patch('elftools.elf.elffile.ELFFile', return_value=mock_elf),
+#             patch('telfhash.telfhash', return_value=mock_telfhash_result)
+#         ]
+
+#         return patches

tests/api_app/analyzers_manager/unit_tests/file_analyzers/test_file_info.py

@@ -0,0 +1,37 @@
+from unittest.mock import patch
+
+from api_app.analyzers_manager.file_analyzers.file_info import FileInfo
+
+from .base_test_class import BaseFileAnalyzerTest
+
+
+class TestFileInfo(BaseFileAnalyzerTest):
+    analyzer_class = FileInfo
+
+    def get_mocked_response(self):
+        return [
+            # Mock file type detection
+            patch(
+                "magic.from_file",
+                side_effect=lambda path, mime=False: (
+                    "application/pdf" if mime else "PDF document, version 1.4"
+                ),
+            ),
+            # Mock hash functions
+            patch(
+                "api_app.helpers.calculate_md5",
+                return_value="d41d8cd98f00b204e9800998ecf8427e",
+            ),
+            patch(
+                "api_app.helpers.calculate_sha1",
+                return_value="da39a3ee5e6b4b0d3255bfef95601890afd80709",
+            ),
+            patch(
+                "api_app.helpers.calculate_sha256",
+                return_value="e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855",
+            ),
+            patch("pydeep.hash_file", return_value=b"3:AOn4:An"),
+            patch("tlsh.hash", return_value="T1234567890ABCDEF"),
+            # Disable exiftool to avoid subprocess issues
+            patch.object(FileInfo, "exiftool_path", None),
+        ]

tests/api_app/analyzers_manager/unit_tests/file_analyzers/test_filescan.py

@@ -0,0 +1,36 @@
+from unittest.mock import patch
+
+from api_app.analyzers_manager.file_analyzers.filescan import FileScanUpload
+from tests.mock_utils import MockUpResponse
+
+from .base_test_class import BaseFileAnalyzerTest
+
+
+class TestFileScanUpload(BaseFileAnalyzerTest):
+    analyzer_class = FileScanUpload
+
+    def get_extra_config(self):
+        return {"_api_key": "sample_key"}
+
+    def get_mocked_response(self):
+        return [
+            patch(
+                "requests.post",
+                return_value=MockUpResponse({"flow_id": 1}, 200),
+            ),
+            patch(
+                "requests.get",
+                return_value=MockUpResponse(
+                    {
+                        "allFinished": True,
+                        "general": {
+                            "verdict": "clean",
+                            "file_type": "exe",
+                            "file_name": "test_file.exe",
+                        },
+                        "finalVerdict": "no threat detected",
+                    },
+                    200,
+                ),
+            ),
+        ]

tests/api_app/analyzers_manager/unit_tests/file_analyzers/test_floss.py

@@ -0,0 +1,32 @@
+from unittest.mock import patch
+
+from api_app.analyzers_manager.file_analyzers.floss import Floss
+
+from .base_test_class import BaseFileAnalyzerTest
+
+
+class TestFloss(BaseFileAnalyzerTest):
+    analyzer_class = Floss
+
+    def get_extra_config(self):
+        return {
+            "max_no_of_strings": {"decoded": 10, "stack": 5},
+            "rank_strings": {"decoded": True, "stack": False},
+        }
+
+    def get_mocked_response(self):
+        return [
+            patch(
+                "api_app.analyzers_manager.file_analyzers.floss.Floss._docker_run",
+                side_effect=[
+                    {
+                        "strings": {
+                            "decoded": ["de_string1", "de_string2"],
+                            "stack": ["st_string1", "st_string2"],
+                        }
+                    },
+                    # second call for ranking decoded strings only
+                    ["de_string1", "de_string2"],  # simulate ranked strings
+                ],
+            ),
+        ]

tests/api_app/analyzers_manager/unit_tests/file_analyzers/test_goresym.py

@@ -0,0 +1,35 @@
+from unittest.mock import patch
+
+from api_app.analyzers_manager.file_analyzers.goresym import GoReSym
+
+from .base_test_class import BaseFileAnalyzerTest
+
+
+class TestGoReSym(BaseFileAnalyzerTest):
+    analyzer_class = GoReSym
+
+    def get_extra_config(self):
+        return {
+            "default": True,
+            "paths": False,
+            "types": False,
+            "manual": "",
+            "version": "",
+        }
+
+    def get_mocked_response(self):
+        return [
+            patch(
+                "api_app.analyzers_manager.file_analyzers.goresym.GoReSym._docker_run",
+                return_value={
+                    "report": {
+                        "Version": "1.22.3",
+                        "OS": "linux",
+                        "BuildInfo": {
+                            "GoVersion": "go1.22.3",
+                            "Path": "github.com/example/project",
+                        },
+                    }
+                },
+            )
+        ]