logo

pleroma

My custom branche(s) on git.pleroma.social/pleroma/pleroma git clone https://hacktivis.me/git/pleroma.git

steal_emoji_policy_test.exs (5010B)

    

  1. # Pleroma: A lightweight social networking server
  2. # Copyright © 2017-2022 Pleroma Authors <https://pleroma.social/>
  3. # SPDX-License-Identifier: AGPL-3.0-only
  5. defmodule Pleroma.Web.ActivityPub.MRF.StealEmojiPolicyTest do
  6.   use Pleroma.DataCase
  8.   alias Pleroma.Config
  9.   alias Pleroma.Emoji
  10.   alias Pleroma.Web.ActivityPub.MRF.StealEmojiPolicy
  12.   setup do
  13.     emoji_path = [:instance, :static_dir] |> Config.get() |> Path.join("emoji/stolen")
  15.     Emoji.reload()
  17.     message = %{
  18.       "type" => "Create",
  19.       "object" => %{
  20.         "emoji" => [{"firedfox", "https://example.org/emoji/firedfox.png"}],
  21.         "actor" => "https://example.org/users/admin"
  22.       }
  23.     }
  25.     on_exit(fn ->
  26.       File.rm_rf!(emoji_path)
  27.     end)
  29.     [message: message, path: emoji_path]
  30.   end
  32.   test "does nothing by default", %{message: message} do
  33.     refute "firedfox" in installed()
  35.     assert {:ok, _message} = StealEmojiPolicy.filter(message)
  37.     refute "firedfox" in installed()
  38.   end
  40.   test "Steals emoji on unknown shortcode from allowed remote host", %{
  41.     message: message,
  42.     path: path
  43.   } do
  44.     refute "firedfox" in installed()
  45.     refute File.exists?(path)
  47.     Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/firedfox.png"} ->
  48.       %Tesla.Env{status: 200, body: File.read!("test/fixtures/image.jpg")}
  49.     end)
  51.     clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 284_468)
  53.     assert {:ok, _message} = StealEmojiPolicy.filter(message)
  55.     assert "firedfox" in installed()
  56.     assert File.exists?(path)
  58.     assert path
  59.            |> Path.join("firedfox.png")
  60.            |> File.exists?()
  61.   end
  63.   test "works with unknown extension", %{path: path} do
  64.     message = %{
  65.       "type" => "Create",
  66.       "object" => %{
  67.         "emoji" => [{"firedfox", "https://example.org/emoji/firedfox"}],
  68.         "actor" => "https://example.org/users/admin"
  69.       }
  70.     }
  72.     fullpath = Path.join(path, "firedfox.png")
  74.     Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/firedfox"} ->
  75.       %Tesla.Env{status: 200, body: File.read!("test/fixtures/image.jpg")}
  76.     end)
  78.     clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 284_468)
  80.     refute "firedfox" in installed()
  81.     refute File.exists?(path)
  83.     assert {:ok, _message} = StealEmojiPolicy.filter(message)
  85.     assert "firedfox" in installed()
  86.     assert File.exists?(path)
  87.     assert File.exists?(fullpath)
  88.   end
  90.   test "rejects invalid shortcodes", %{path: path} do
  91.     message = %{
  92.       "type" => "Create",
  93.       "object" => %{
  94.         "emoji" => [{"fired/fox", "https://example.org/emoji/firedfox"}],
  95.         "actor" => "https://example.org/users/admin"
  96.       }
  97.     }
  99.     fullpath = Path.join(path, "fired/fox.png")
  101.     Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/firedfox"} ->
  102.       %Tesla.Env{status: 200, body: File.read!("test/fixtures/image.jpg")}
  103.     end)
  105.     clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 284_468)
  107.     refute "firedfox" in installed()
  108.     refute File.exists?(path)
  110.     assert {:ok, _message} = StealEmojiPolicy.filter(message)
  112.     refute "fired/fox" in installed()
  113.     refute File.exists?(fullpath)
  114.   end
  116.   test "reject regex shortcode", %{message: message} do
  117.     refute "firedfox" in installed()
  119.     clear_config(:mrf_steal_emoji,
  120.       hosts: ["example.org"],
  121.       size_limit: 284_468,
  122.       rejected_shortcodes: [~r/firedfox/]
  123.     )
  125.     assert {:ok, _message} = StealEmojiPolicy.filter(message)
  127.     refute "firedfox" in installed()
  128.   end
  130.   test "reject string shortcode", %{message: message} do
  131.     refute "firedfox" in installed()
  133.     clear_config(:mrf_steal_emoji,
  134.       hosts: ["example.org"],
  135.       size_limit: 284_468,
  136.       rejected_shortcodes: ["firedfox"]
  137.     )
  139.     assert {:ok, _message} = StealEmojiPolicy.filter(message)
  141.     refute "firedfox" in installed()
  142.   end
  144.   test "reject if size is above the limit", %{message: message} do
  145.     refute "firedfox" in installed()
  147.     Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/firedfox.png"} ->
  148.       %Tesla.Env{status: 200, body: File.read!("test/fixtures/image.jpg")}
  149.     end)
  151.     clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 50_000)
  153.     assert {:ok, _message} = StealEmojiPolicy.filter(message)
  155.     refute "firedfox" in installed()
  156.   end
  158.   test "reject if host returns error", %{message: message} do
  159.     refute "firedfox" in installed()
  161.     Tesla.Mock.mock(fn %{method: :get, url: "https://example.org/emoji/firedfox.png"} ->
  162.       {:ok, %Tesla.Env{status: 404, body: "Not found"}}
  163.     end)
  165.     clear_config(:mrf_steal_emoji, hosts: ["example.org"], size_limit: 284_468)
  167.     ExUnit.CaptureLog.capture_log(fn ->
  168.       assert {:ok, _message} = StealEmojiPolicy.filter(message)
  169.     end) =~ "MRF.StealEmojiPolicy: Failed to fetch https://example.org/emoji/firedfox.png"
  171.     refute "firedfox" in installed()
  172.   end
  174.   defp installed, do: Emoji.get_all() |> Enum.map(fn {k, _} -> k end)
  175. end