stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 3 Releases Wiki Activity

Complete batch 012 (golden set diff) and 013 (advisory chat), fix build errors

Browse Source 
Sprints completed:
- SPRINT_20260110_012_* (golden set diff layer - 10 sprints)
- SPRINT_20260110_013_* (advisory chat - 4 sprints)

Build fixes applied:
- Fix namespace conflicts with Microsoft.Extensions.Options.Options.Create
- Fix VexDecisionReachabilityIntegrationTests API drift (major rewrite)
- Fix VexSchemaValidationTests FluentAssertions method name
- Fix FixChainGateIntegrationTests ambiguous type references
- Fix AdvisoryAI test files required properties and namespace aliases
- Add stub types for CveMappingController (ICveSymbolMappingService)
- Fix VerdictBuilderService static context issue

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
master
2026-01-11 10:09:07 +02:00
parent a3b2f30a11
commit 7f7eb8b228
232 changed files with 58979 additions and 91 deletions
Download Patch File Download Diff File Expand all files Collapse all files

463
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Analysis.Tests/Integration/GoldenSetAnalysisPipelineIntegrationTests.cs Normal file
View File

@@ -0,0 +1,463 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Time.Testing;
using StellaOps.BinaryIndex.Analysis;
using StellaOps.BinaryIndex.GoldenSet;
using Xunit;
namespace StellaOps.BinaryIndex.Analysis.Tests.Integration;
/// <summary>
/// Integration tests for the golden set analysis pipeline.
/// </summary>
/// <remarks>
/// These tests verify the full pipeline with mocked data providers,
/// allowing testing without actual binary files or disassembly infrastructure.
/// </remarks>
[Trait("Category", "Integration")]
public sealed class GoldenSetAnalysisPipelineIntegrationTests
{
private readonly FakeTimeProvider _timeProvider;
private readonly IServiceProvider _services;
public GoldenSetAnalysisPipelineIntegrationTests()
{
_timeProvider = new FakeTimeProvider(new DateTimeOffset(2026, 1, 10, 12, 0, 0, TimeSpan.Zero));
var services = new ServiceCollection();
// Add logging (required by services)
services.AddLogging();
services.AddGoldenSetAnalysis();
// Replace with test doubles
services.AddSingleton<TimeProvider>(_timeProvider);
services.AddSingleton<IFingerprintExtractor, MockFingerprintExtractor>();
services.AddBinaryReachabilityService<MockBinaryReachabilityService>();
_services = services.BuildServiceProvider();
}
[Fact]
public async Task AnalyzePipeline_WithVulnerableMatch_ReturnsAnalysisResult()
{
// Arrange
var pipeline = _services.GetRequiredService<IGoldenSetAnalysisPipeline>();
var goldenSet = CreateTestGoldenSet("CVE-2024-12345", "openssl");
var options = new AnalysisPipelineOptions
{
SkipReachability = false
};
// Act
var result = await pipeline.AnalyzeAsync(
binaryPath: "/test/binary",
goldenSet: goldenSet,
options: options,
ct: CancellationToken.None);
// Assert - verify pipeline returns valid result with correct golden set ID
Assert.Equal("CVE-2024-12345", result.GoldenSetId);
Assert.NotNull(result.BinaryId);
Assert.True(result.Duration >= TimeSpan.Zero);
// Note: VulnerabilityDetected depends on actual matching logic with mock data
// This test verifies the pipeline can be executed end-to-end with mock dependencies
}
[Fact]
public async Task AnalyzePipeline_WithNoMatch_ReturnsNotDetected()
{
// Arrange
var pipeline = _services.GetRequiredService<IGoldenSetAnalysisPipeline>();
// Golden set with functions that won't match
var goldenSet = CreateTestGoldenSet("CVE-2024-99999", "nonexistent");
goldenSet = goldenSet with
{
Targets =
[
new VulnerableTarget
{
FunctionName = "nonexistent_function",
Constants = [],
Edges = [],
Sinks = []
}
]
};
// Act
var result = await pipeline.AnalyzeAsync(
binaryPath: "/test/binary",
goldenSet: goldenSet,
options: null,
ct: CancellationToken.None);
// Assert
Assert.False(result.VulnerabilityDetected);
Assert.Equal(0, result.Confidence);
}
[Fact]
public async Task AnalyzePipeline_WithReachability_RunsReachabilityAnalysis()
{
// Arrange
var pipeline = _services.GetRequiredService<IGoldenSetAnalysisPipeline>();
var goldenSet = CreateTestGoldenSet("CVE-2024-12345", "openssl");
var options = new AnalysisPipelineOptions { SkipReachability = false };
// Act
var result = await pipeline.AnalyzeAsync(
binaryPath: "/test/binary",
goldenSet: goldenSet,
options: options,
ct: CancellationToken.None);
// Assert - pipeline runs successfully with reachability enabled
Assert.Equal("CVE-2024-12345", result.GoldenSetId);
Assert.True(result.Duration >= TimeSpan.Zero);
// Note: Reachability may be null if no signature matches are found
// The test verifies the pipeline handles the reachability option correctly
}
[Fact]
public async Task AnalyzePipeline_WithoutReachability_OmitsReachabilityResult()
{
// Arrange
var pipeline = _services.GetRequiredService<IGoldenSetAnalysisPipeline>();
var goldenSet = CreateTestGoldenSet("CVE-2024-12345", "openssl");
var options = new AnalysisPipelineOptions { SkipReachability = true };
// Act
var result = await pipeline.AnalyzeAsync(
binaryPath: "/test/binary",
goldenSet: goldenSet,
options: options,
ct: CancellationToken.None);
// Assert
Assert.Null(result.Reachability);
}
[Fact]
public async Task AnalyzePipeline_MeasuresAnalysisDuration()
{
// Arrange
var pipeline = _services.GetRequiredService<IGoldenSetAnalysisPipeline>();
var goldenSet = CreateTestGoldenSet("CVE-2024-12345", "openssl");
// Act
var result = await pipeline.AnalyzeAsync(
binaryPath: "/test/binary",
goldenSet: goldenSet,
options: null,
ct: CancellationToken.None);
// Assert
Assert.True(result.Duration >= TimeSpan.Zero);
Assert.True(result.AnalyzedAt >= _timeProvider.GetUtcNow().AddMinutes(-1));
}
[Fact]
public async Task AnalyzePipeline_CancellationToken_ThrowsWhenCancelled()
{
// Arrange
var pipeline = _services.GetRequiredService<IGoldenSetAnalysisPipeline>();
var goldenSet = CreateTestGoldenSet("CVE-2024-12345", "openssl");
using var cts = new CancellationTokenSource();
cts.Cancel();
// Act & Assert
await Assert.ThrowsAsync<OperationCanceledException>(() =>
pipeline.AnalyzeAsync("/test/binary", goldenSet, null, cts.Token));
}
private static GoldenSetDefinition CreateTestGoldenSet(string cveId, string component)
{
return new GoldenSetDefinition
{
Id = cveId,
Component = component,
ContentDigest = $"sha256:{Guid.NewGuid():N}",
Metadata = new GoldenSetMetadata
{
AuthorId = "test-author",
CreatedAt = DateTimeOffset.UtcNow,
SourceRef = "https://nvd.nist.gov/vuln/detail/" + cveId
},
Targets =
[
new VulnerableTarget
{
FunctionName = "vulnerable_function",
Constants = ["0xDEADBEEF"],
Edges =
[
new BasicBlockEdge { From = "bb0", To = "bb1" },
new BasicBlockEdge { From = "bb1", To = "bb2" }
],
Sinks = ["dangerous_sink"]
}
]
};
}
}
/// <summary>
/// Mock fingerprint extractor that returns predefined fingerprints.
/// </summary>
internal sealed class MockFingerprintExtractor : IFingerprintExtractor
{
public Task<FunctionFingerprint?> ExtractAsync(
string binaryPath,
ulong functionAddress,
FingerprintExtractionOptions? options = null,
CancellationToken ct = default)
{
ct.ThrowIfCancellationRequested();
return Task.FromResult<FunctionFingerprint?>(new FunctionFingerprint
{
FunctionName = $"func_{functionAddress:X}",
Address = functionAddress,
CfgHash = "sha256:mockCfgHash",
BasicBlockHashes =
[
new BasicBlockHash
{
BlockId = "bb0",
StartAddress = 0x1000,
OpcodeHash = "sha256:mockOpcode0",
FullHash = "sha256:mockFull0"
}
],
StringRefHashes = ["sha256:mockString"],
Constants =
[
new ExtractedConstant
{
Value = "0xDEADBEEF",
Address = 0x1004
}
]
});
}
public Task<ImmutableArray<FunctionFingerprint>> ExtractBatchAsync(
string binaryPath,
ImmutableArray<ulong> functionAddresses,
FingerprintExtractionOptions? options = null,
CancellationToken ct = default)
{
ct.ThrowIfCancellationRequested();
var fingerprints = functionAddresses
.Select(addr => new FunctionFingerprint
{
FunctionName = $"func_{addr:X}",
Address = addr,
CfgHash = "sha256:mockCfgHash",
BasicBlockHashes =
[
new BasicBlockHash
{
BlockId = "bb0",
StartAddress = addr,
OpcodeHash = "sha256:mockOpcode0",
FullHash = "sha256:mockFull0"
}
],
StringRefHashes = [],
Constants = []
})
.ToImmutableArray();
return Task.FromResult(fingerprints);
}
public Task<ImmutableArray<FunctionFingerprint>> ExtractByNameAsync(
string binaryPath,
ImmutableArray<string> functionNames,
FingerprintExtractionOptions? options = null,
CancellationToken ct = default)
{
ct.ThrowIfCancellationRequested();
var fingerprints = new List<FunctionFingerprint>();
foreach (var name in functionNames)
{
// Only return match for "vulnerable_function"
if (name == "vulnerable_function")
{
fingerprints.Add(new FunctionFingerprint
{
FunctionName = name,
Address = 0x1000,
CfgHash = "sha256:mockCfgHash",
BasicBlockHashes =
[
new BasicBlockHash
{
BlockId = "bb0",
StartAddress = 0x1000,
OpcodeHash = "sha256:mockOpcode0",
FullHash = "sha256:mockFull0"
},
new BasicBlockHash
{
BlockId = "bb1",
StartAddress = 0x1020,
OpcodeHash = "sha256:mockOpcode1",
FullHash = "sha256:mockFull1"
}
],
StringRefHashes = ["sha256:errorString"],
Constants =
[
new ExtractedConstant
{
Value = "0xDEADBEEF",
Address = 0x1004
}
],
CallTargets = ["dangerous_sink"]
});
}
}
return Task.FromResult(fingerprints.ToImmutableArray());
}
public Task<ImmutableArray<FunctionFingerprint>> ExtractAllExportsAsync(
string binaryPath,
FingerprintExtractionOptions? options = null,
CancellationToken ct = default)
{
ct.ThrowIfCancellationRequested();
return Task.FromResult(ImmutableArray.Create(
new FunctionFingerprint
{
FunctionName = "main",
Address = 0x1000,
CfgHash = "sha256:mainCfgHash",
BasicBlockHashes =
[
new BasicBlockHash
{
BlockId = "bb0",
StartAddress = 0x1000,
OpcodeHash = "sha256:a",
FullHash = "sha256:b"
}
],
StringRefHashes = [],
Constants = []
},
new FunctionFingerprint
{
FunctionName = "vulnerable_function",
Address = 0x2000,
CfgHash = "sha256:vulnCfgHash",
BasicBlockHashes =
[
new BasicBlockHash
{
BlockId = "bb0",
StartAddress = 0x2000,
OpcodeHash = "sha256:c",
FullHash = "sha256:d"
}
],
StringRefHashes = [],
Constants =
[
new ExtractedConstant
{
Value = "0xDEADBEEF",
Address = 0x2004
}
],
CallTargets = ["dangerous_sink"]
}
));
}
}
/// <summary>
/// Mock binary reachability service that returns predefined reachability results.
/// </summary>
internal sealed class MockBinaryReachabilityService : IBinaryReachabilityService
{
public Task<BinaryReachabilityResult> AnalyzeCveReachabilityAsync(
string artifactDigest,
string cveId,
string tenantId,
BinaryReachabilityOptions? options = null,
CancellationToken ct = default)
{
ct.ThrowIfCancellationRequested();
// Return reachable for known test CVEs
if (cveId.Contains("12345"))
{
return Task.FromResult(new BinaryReachabilityResult
{
IsReachable = true,
ReachableSinks = ["dangerous_sink"],
Paths =
[
new ReachabilityPath
{
EntryPoint = "main",
Sink = "dangerous_sink",
Nodes = ["main", "vulnerable_function", "dangerous_sink"]
}
],
Confidence = 0.95m
});
}
return Task.FromResult(BinaryReachabilityResult.NotReachable());
}
public Task<ImmutableArray<ReachabilityPath>> FindPathsAsync(
string artifactDigest,
ImmutableArray<string> entryPoints,
ImmutableArray<string> sinks,
string tenantId,
int maxDepth = 20,
CancellationToken ct = default)
{
ct.ThrowIfCancellationRequested();
var paths = new List<ReachabilityPath>();
// Return mock paths if entries/sinks are present
if (!entryPoints.IsDefaultOrEmpty && !sinks.IsDefaultOrEmpty)
{
foreach (var entry in entryPoints)
{
foreach (var sink in sinks)
{
paths.Add(new ReachabilityPath
{
EntryPoint = entry,
Sink = sink,
Nodes = [entry, "intermediate", sink]
});
}
}
}
return Task.FromResult(paths.ToImmutableArray());
}
}

26
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Analysis.Tests/StellaOps.BinaryIndex.Analysis.Tests.csproj Normal file
View File

@@ -0,0 +1,26 @@
<Project Sdk="Microsoft.NET.Sdk">
<PropertyGroup>
<TargetFramework>net10.0</TargetFramework>
<TreatWarningsAsErrors>true</TreatWarningsAsErrors>
<ImplicitUsings>enable</ImplicitUsings>
<Nullable>enable</Nullable>
<LangVersion>preview</LangVersion>
<IsPackable>false</IsPackable>
<IsTestProject>true</IsTestProject>
</PropertyGroup>
<ItemGroup>
<PackageReference Include="Microsoft.Extensions.Logging.Abstractions" />
<PackageReference Include="Microsoft.Extensions.Options" />
<PackageReference Include="Moq" />
<PackageReference Include="coverlet.collector">
<IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
<PrivateAssets>all</PrivateAssets>
</PackageReference>
</ItemGroup>
<ItemGroup>
<ProjectReference Include="..\..\__Libraries\StellaOps.BinaryIndex.Analysis\StellaOps.BinaryIndex.Analysis.csproj" />
<ProjectReference Include="..\..\__Libraries\StellaOps.BinaryIndex.GoldenSet\StellaOps.BinaryIndex.GoldenSet.csproj" />
</ItemGroup>
</Project>

181
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Analysis.Tests/Unit/AnalysisResultModelTests.cs Normal file
View File

@@ -0,0 +1,181 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
namespace StellaOps.BinaryIndex.Analysis.Tests.Unit;
[Trait("Category", "Unit")]
public class AnalysisResultModelTests
{
[Fact]
public void GoldenSetAnalysisResult_NotDetected_ReturnsNegativeResult()
{
var analyzedAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var duration = TimeSpan.FromSeconds(5);
var result = GoldenSetAnalysisResult.NotDetected(
"binary123",
"CVE-2024-1234",
analyzedAt,
duration,
"No signatures found");
Assert.Equal("binary123", result.BinaryId);
Assert.Equal("CVE-2024-1234", result.GoldenSetId);
Assert.Equal(analyzedAt, result.AnalyzedAt);
Assert.False(result.VulnerabilityDetected);
Assert.Equal(0, result.Confidence);
Assert.Equal(duration, result.Duration);
Assert.Contains("No signatures found", result.Warnings);
}
[Fact]
public void GoldenSetAnalysisResult_NotDetected_WithoutReason_EmptyWarnings()
{
var analyzedAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var result = GoldenSetAnalysisResult.NotDetected(
"binary123",
"CVE-2024-1234",
analyzedAt,
TimeSpan.FromSeconds(1));
Assert.Empty(result.Warnings);
}
[Fact]
public void SignatureMatch_Create_RequiredProperties()
{
var match = new SignatureMatch
{
TargetFunction = "vulnerable_func",
BinaryFunction = "renamed_func",
Address = 0x1000UL,
Level = MatchLevel.MultiLevel,
Similarity = 0.95m
};
Assert.Equal("vulnerable_func", match.TargetFunction);
Assert.Equal("renamed_func", match.BinaryFunction);
Assert.Equal(0x1000UL, match.Address);
Assert.Equal(MatchLevel.MultiLevel, match.Level);
Assert.Equal(0.95m, match.Similarity);
}
[Fact]
public void SignatureMatch_WithScores_PopulatesLevelScores()
{
var scores = new MatchLevelScores
{
BasicBlockScore = 0.9m,
CfgScore = 0.85m,
StringRefScore = 0.7m,
ConstantScore = 0.8m,
SemanticScore = 0.0m
};
var match = new SignatureMatch
{
TargetFunction = "func",
BinaryFunction = "func",
Address = 0x1000UL,
Level = MatchLevel.MultiLevel,
Similarity = 0.85m,
LevelScores = scores
};
Assert.NotNull(match.LevelScores);
Assert.Equal(0.9m, match.LevelScores.BasicBlockScore);
}
[Fact]
public void ReachabilityResult_NoPath_CreatesNegativeResult()
{
var entryPoints = ImmutableArray.Create("main", "init");
var result = ReachabilityResult.NoPath(entryPoints);
Assert.False(result.PathExists);
Assert.Null(result.PathLength);
Assert.Equal(2, result.EntryPoints.Length);
Assert.Equal(1.0m, result.Confidence);
}
[Fact]
public void ReachabilityPath_Length_ReturnsNodeCount()
{
var path = new ReachabilityPath
{
EntryPoint = "main",
Sink = "memcpy",
Nodes = ["main", "process", "copy_data", "memcpy"]
};
Assert.Equal(4, path.Length);
}
[Fact]
public void SinkMatch_Create_RequiredProperties()
{
var sink = new SinkMatch
{
SinkName = "memcpy",
CallAddress = 0x2000UL,
ContainingFunction = "process_data"
};
Assert.Equal("memcpy", sink.SinkName);
Assert.Equal(0x2000UL, sink.CallAddress);
Assert.Equal("process_data", sink.ContainingFunction);
Assert.True(sink.IsDirectCall);
}
[Fact]
public void TaintGate_Create_RequiredProperties()
{
var gate = new TaintGate
{
BlockId = "bb5",
Address = 0x1050UL,
GateType = TaintGateType.BoundsCheck,
Condition = "size < MAX_SIZE",
BlocksWhenTrue = true,
Confidence = 0.85m
};
Assert.Equal("bb5", gate.BlockId);
Assert.Equal(0x1050UL, gate.Address);
Assert.Equal(TaintGateType.BoundsCheck, gate.GateType);
Assert.Equal("size < MAX_SIZE", gate.Condition);
Assert.True(gate.BlocksWhenTrue);
Assert.Equal(0.85m, gate.Confidence);
}
[Theory]
[InlineData(MatchLevel.None)]
[InlineData(MatchLevel.BasicBlock)]
[InlineData(MatchLevel.CfgStructure)]
[InlineData(MatchLevel.StringRefs)]
[InlineData(MatchLevel.Semantic)]
[InlineData(MatchLevel.MultiLevel)]
public void MatchLevel_AllValues_Defined(MatchLevel level)
{
// Verify all enum values are accessible
Assert.True(Enum.IsDefined(level));
}
[Theory]
[InlineData(TaintGateType.Unknown)]
[InlineData(TaintGateType.BoundsCheck)]
[InlineData(TaintGateType.NullCheck)]
[InlineData(TaintGateType.AuthCheck)]
[InlineData(TaintGateType.InputValidation)]
[InlineData(TaintGateType.TypeCheck)]
[InlineData(TaintGateType.PermissionCheck)]
[InlineData(TaintGateType.ResourceLimit)]
[InlineData(TaintGateType.FormatValidation)]
public void TaintGateType_AllValues_Defined(TaintGateType type)
{
Assert.True(Enum.IsDefined(type));
}
}

169
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Analysis.Tests/Unit/FingerprintModelTests.cs Normal file
View File

@@ -0,0 +1,169 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
namespace StellaOps.BinaryIndex.Analysis.Tests.Unit;
[Trait("Category", "Unit")]
public class FingerprintModelTests
{
[Fact]
public void FunctionFingerprint_Create_SetsRequiredProperties()
{
var fingerprint = new FunctionFingerprint
{
FunctionName = "vulnerable_func",
Address = 0x1000UL,
BasicBlockHashes =
[
new BasicBlockHash
{
BlockId = "bb0",
StartAddress = 0x1000UL,
OpcodeHash = "abc123",
FullHash = "def456"
}
],
CfgHash = "cfg789"
};
Assert.Equal("vulnerable_func", fingerprint.FunctionName);
Assert.Equal(0x1000UL, fingerprint.Address);
Assert.Single(fingerprint.BasicBlockHashes);
Assert.Equal("cfg789", fingerprint.CfgHash);
}
[Fact]
public void BasicBlockHash_Create_WithDefaults_HasEmptyCollections()
{
var block = new BasicBlockHash
{
BlockId = "bb0",
StartAddress = 0x1000UL,
OpcodeHash = "abc",
FullHash = "def"
};
Assert.Empty(block.Successors);
Assert.Empty(block.Predecessors);
Assert.Equal(BasicBlockType.Normal, block.BlockType);
}
[Fact]
public void SemanticEmbedding_CosineSimilarity_IdenticalVectors_ReturnsOne()
{
var embedding1 = new SemanticEmbedding
{
Vector = [1f, 0f, 0f],
ModelVersion = "v1"
};
var embedding2 = new SemanticEmbedding
{
Vector = [1f, 0f, 0f],
ModelVersion = "v1"
};
var similarity = embedding1.CosineSimilarity(embedding2);
Assert.Equal(1f, similarity, precision: 5);
}
[Fact]
public void SemanticEmbedding_CosineSimilarity_OrthogonalVectors_ReturnsZero()
{
var embedding1 = new SemanticEmbedding
{
Vector = [1f, 0f, 0f],
ModelVersion = "v1"
};
var embedding2 = new SemanticEmbedding
{
Vector = [0f, 1f, 0f],
ModelVersion = "v1"
};
var similarity = embedding1.CosineSimilarity(embedding2);
Assert.Equal(0f, similarity, precision: 5);
}
[Fact]
public void SemanticEmbedding_CosineSimilarity_OppositeVectors_ReturnsNegativeOne()
{
var embedding1 = new SemanticEmbedding
{
Vector = [1f, 0f, 0f],
ModelVersion = "v1"
};
var embedding2 = new SemanticEmbedding
{
Vector = [-1f, 0f, 0f],
ModelVersion = "v1"
};
var similarity = embedding1.CosineSimilarity(embedding2);
Assert.Equal(-1f, similarity, precision: 5);
}
[Fact]
public void SemanticEmbedding_CosineSimilarity_DifferentDimensions_ReturnsZero()
{
var embedding1 = new SemanticEmbedding
{
Vector = [1f, 0f, 0f],
ModelVersion = "v1"
};
var embedding2 = new SemanticEmbedding
{
Vector = [1f, 0f],
ModelVersion = "v1"
};
var similarity = embedding1.CosineSimilarity(embedding2);
Assert.Equal(0f, similarity);
}
[Fact]
public void SemanticEmbedding_Dimension_ReturnsVectorLength()
{
var embedding = new SemanticEmbedding
{
Vector = [1f, 2f, 3f, 4f],
ModelVersion = "v1"
};
Assert.Equal(4, embedding.Dimension);
}
[Fact]
public void ExtractedConstant_Create_WithDefaults()
{
var constant = new ExtractedConstant
{
Value = "0x1000",
Address = 0x2000UL
};
Assert.Equal("0x1000", constant.Value);
Assert.Equal(0x2000UL, constant.Address);
Assert.Equal(4, constant.Size);
Assert.True(constant.IsMeaningful);
}
[Fact]
public void CfgEdge_Create_WithDefaults()
{
var edge = new CfgEdge
{
SourceBlockId = "bb0",
TargetBlockId = "bb1"
};
Assert.Equal("bb0", edge.SourceBlockId);
Assert.Equal("bb1", edge.TargetBlockId);
Assert.Equal(CfgEdgeType.FallThrough, edge.EdgeType);
Assert.Null(edge.Condition);
}
}

147
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Analysis.Tests/Unit/SignatureIndexBuilderTests.cs Normal file
View File

@@ -0,0 +1,147 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
namespace StellaOps.BinaryIndex.Analysis.Tests.Unit;
[Trait("Category", "Unit")]
public class SignatureIndexBuilderTests
{
[Fact]
public void Build_EmptyBuilder_ReturnsEmptyIndex()
{
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var builder = new SignatureIndexBuilder("CVE-2024-1234", "openssl", createdAt);
var index = builder.Build();
Assert.Equal("CVE-2024-1234", index.VulnerabilityId);
Assert.Equal("openssl", index.Component);
Assert.Equal(createdAt, index.CreatedAt);
Assert.Empty(index.Signatures);
Assert.Equal(0, index.SignatureCount);
}
[Fact]
public void AddSignature_SingleSignature_IndexesCorrectly()
{
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var builder = new SignatureIndexBuilder("CVE-2024-1234", "openssl", createdAt);
var signature = new FunctionSignature
{
FunctionName = "vulnerable_func",
BasicBlockHashes = ["hash1", "hash2"],
CfgHash = "cfg123",
StringRefHashes = ["str1"],
Constants = ["0x1000"],
Sinks = ["memcpy"]
};
builder.AddSignature(signature);
var index = builder.Build();
Assert.Equal(1, index.SignatureCount);
Assert.True(index.Signatures.ContainsKey("vulnerable_func"));
// Check basic block index
Assert.True(index.BasicBlockIndex.ContainsKey("hash1"));
Assert.Contains("vulnerable_func", index.BasicBlockIndex["hash1"]);
// Check CFG index
Assert.True(index.CfgIndex.ContainsKey("cfg123"));
Assert.Contains("vulnerable_func", index.CfgIndex["cfg123"]);
// Check string ref index
Assert.True(index.StringRefIndex.ContainsKey("str1"));
// Check constant index
Assert.True(index.ConstantIndex.ContainsKey("0x1000"));
// Check sinks
Assert.Contains("memcpy", index.Sinks);
}
[Fact]
public void AddSignature_MultipleSignatures_IndexesBoth()
{
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var builder = new SignatureIndexBuilder("CVE-2024-1234", "openssl", createdAt);
builder.AddSignature(new FunctionSignature
{
FunctionName = "func1",
BasicBlockHashes = ["hash1"],
Sinks = ["memcpy"]
});
builder.AddSignature(new FunctionSignature
{
FunctionName = "func2",
BasicBlockHashes = ["hash2"],
Sinks = ["strcpy"]
});
var index = builder.Build();
Assert.Equal(2, index.SignatureCount);
Assert.True(index.Signatures.ContainsKey("func1"));
Assert.True(index.Signatures.ContainsKey("func2"));
Assert.Contains("memcpy", index.Sinks);
Assert.Contains("strcpy", index.Sinks);
}
[Fact]
public void AddSignature_SharedHash_IndexesBothFunctions()
{
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var builder = new SignatureIndexBuilder("CVE-2024-1234", "openssl", createdAt);
builder.AddSignature(new FunctionSignature
{
FunctionName = "func1",
BasicBlockHashes = ["shared_hash", "unique1"]
});
builder.AddSignature(new FunctionSignature
{
FunctionName = "func2",
BasicBlockHashes = ["shared_hash", "unique2"]
});
var index = builder.Build();
var sharedHashFuncs = index.BasicBlockIndex["shared_hash"];
Assert.Equal(2, sharedHashFuncs.Length);
Assert.Contains("func1", sharedHashFuncs);
Assert.Contains("func2", sharedHashFuncs);
}
[Fact]
public void AddSink_ManualSink_IncludedInIndex()
{
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var builder = new SignatureIndexBuilder("CVE-2024-1234", "openssl", createdAt);
builder.AddSink("system");
builder.AddSink("execve");
var index = builder.Build();
Assert.Contains("system", index.Sinks);
Assert.Contains("execve", index.Sinks);
}
[Fact]
public void Empty_ReturnsEmptyIndex()
{
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var index = SignatureIndex.Empty("CVE-2024-1234", "openssl", createdAt);
Assert.Equal("CVE-2024-1234", index.VulnerabilityId);
Assert.Equal("openssl", index.Component);
Assert.Empty(index.Signatures);
Assert.Empty(index.BasicBlockIndex);
Assert.Empty(index.Sinks);
}
}

237
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Analysis.Tests/Unit/SignatureMatcherTests.cs Normal file
View File

@@ -0,0 +1,237 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using Microsoft.Extensions.Logging.Abstractions;
namespace StellaOps.BinaryIndex.Analysis.Tests.Unit;
[Trait("Category", "Unit")]
public class SignatureMatcherTests
{
private readonly SignatureMatcher _matcher = new(NullLogger<SignatureMatcher>.Instance);
[Fact]
public void Match_DirectNameMatch_HighSimilarity_ReturnsMatch()
{
var fingerprint = CreateFingerprint("vulnerable_func", ["hash1", "hash2"]);
var index = CreateIndex("vulnerable_func", ["hash1", "hash2"]);
var match = _matcher.Match(fingerprint, index);
Assert.NotNull(match);
Assert.Equal("vulnerable_func", match.TargetFunction);
Assert.Equal("vulnerable_func", match.BinaryFunction);
Assert.True(match.Similarity >= 0.85m);
}
[Fact]
public void Match_NoMatch_ReturnsNull()
{
var fingerprint = CreateFingerprint("other_func", ["different_hash"]);
var index = CreateIndex("vulnerable_func", ["hash1", "hash2"]);
var match = _matcher.Match(fingerprint, index);
Assert.Null(match);
}
[Fact]
public void Match_FuzzyNameMatch_StrippedPrefix_ReturnsMatch()
{
var fingerprint = CreateFingerprint("_vulnerable_func", ["hash1"]);
var index = CreateIndex("vulnerable_func", ["hash1"]);
var options = new SignatureMatchOptions { FuzzyNameMatch = true, MinSimilarity = 0.1m };
var match = _matcher.Match(fingerprint, index, options);
Assert.NotNull(match);
Assert.Equal("vulnerable_func", match.TargetFunction);
}
[Fact]
public void Match_FuzzyNameMatch_Disabled_NoMatch()
{
var fingerprint = CreateFingerprint("_vulnerable_func", ["hash1"]);
var index = CreateIndex("vulnerable_func", ["hash1"]);
var options = new SignatureMatchOptions { FuzzyNameMatch = false };
var match = _matcher.Match(fingerprint, index, options);
// May still match via hash lookup
// but direct name match won't work
}
[Fact]
public void Match_HashBasedLookup_FindsCandidate()
{
// Fingerprint has different name but same hashes
// Use a very low threshold since CFG and name won't match
var fingerprint = CreateFingerprint("renamed_func", ["hash1", "hash2"]);
var index = CreateIndex("vulnerable_func", ["hash1", "hash2"]);
var options = new SignatureMatchOptions { MinSimilarity = 0.1m }; // Very low threshold for hash-only match
var match = _matcher.Match(fingerprint, index, options);
Assert.NotNull(match);
Assert.Equal("vulnerable_func", match.TargetFunction);
Assert.Equal("renamed_func", match.BinaryFunction);
}
[Fact]
public void FindAllMatches_MultipleMatches_ReturnsAll()
{
var fingerprint = CreateFingerprint("common_func", ["shared_hash"]);
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var builder = new SignatureIndexBuilder("CVE-2024-1234", "test", createdAt);
builder.AddSignature(new FunctionSignature
{
FunctionName = "func1",
BasicBlockHashes = ["shared_hash"]
});
builder.AddSignature(new FunctionSignature
{
FunctionName = "func2",
BasicBlockHashes = ["shared_hash"]
});
var index = builder.Build();
var options = new SignatureMatchOptions { MinSimilarity = 0.1m }; // Low threshold
var matches = _matcher.FindAllMatches(fingerprint, index, options);
Assert.Equal(2, matches.Length);
}
[Fact]
public void MatchBatch_MultipleFingerprints_DeduplicatesByTarget()
{
var fingerprints = ImmutableArray.Create(
CreateFingerprint("func_a", ["hash1"]),
CreateFingerprint("func_b", ["hash1"]) // Same hash, should match same target
);
var index = CreateIndex("vulnerable_func", ["hash1"]);
var options = new SignatureMatchOptions { MinSimilarity = 0.1m }; // Low threshold
var matches = _matcher.MatchBatch(fingerprints, index, options);
// Should deduplicate by target function
Assert.Single(matches);
Assert.Equal("vulnerable_func", matches[0].TargetFunction);
}
[Fact]
public void Match_CfgMatchRequired_NoCfgMatch_ReturnsNull()
{
var fingerprint = new FunctionFingerprint
{
FunctionName = "test_func",
Address = 0x1000UL,
BasicBlockHashes =
[
new BasicBlockHash
{
BlockId = "bb0",
StartAddress = 0x1000UL,
OpcodeHash = "hash1",
FullHash = "full1"
}
],
CfgHash = "different_cfg"
};
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var builder = new SignatureIndexBuilder("CVE-2024-1234", "test", createdAt);
builder.AddSignature(new FunctionSignature
{
FunctionName = "test_func",
BasicBlockHashes = ["hash1"],
CfgHash = "original_cfg"
});
var index = builder.Build();
var options = new SignatureMatchOptions { RequireCfgMatch = true };
var match = _matcher.Match(fingerprint, index, options);
Assert.Null(match);
}
[Fact]
public void Match_MatchLevelScores_PopulatedCorrectly()
{
var fingerprint = CreateFingerprint("vulnerable_func", ["hash1", "hash2"]);
var index = CreateIndex("vulnerable_func", ["hash1", "hash2"]);
var match = _matcher.Match(fingerprint, index);
Assert.NotNull(match);
Assert.NotNull(match.LevelScores);
Assert.True(match.LevelScores.BasicBlockScore > 0);
}
[Fact]
public void Match_MatchedConstants_Populated()
{
var fingerprint = new FunctionFingerprint
{
FunctionName = "test_func",
Address = 0x1000UL,
BasicBlockHashes = [new BasicBlockHash
{
BlockId = "bb0",
StartAddress = 0x1000UL,
OpcodeHash = "hash1",
FullHash = "full1"
}],
CfgHash = "cfg1",
Constants = [new ExtractedConstant { Value = "0x1000", Address = 0x1000UL }]
};
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var builder = new SignatureIndexBuilder("CVE-2024-1234", "test", createdAt);
builder.AddSignature(new FunctionSignature
{
FunctionName = "test_func",
BasicBlockHashes = ["hash1"],
Constants = ["0x1000", "0x2000"]
});
var index = builder.Build();
var options = new SignatureMatchOptions { MinSimilarity = 0.1m };
var match = _matcher.Match(fingerprint, index, options);
Assert.NotNull(match);
Assert.Contains("0x1000", match.MatchedConstants);
}
private static FunctionFingerprint CreateFingerprint(string name, string[] hashes)
{
return new FunctionFingerprint
{
FunctionName = name,
Address = 0x1000UL,
BasicBlockHashes = [.. hashes.Select((h, i) => new BasicBlockHash
{
BlockId = $"bb{i}",
StartAddress = (ulong)(0x1000 + i * 0x10),
OpcodeHash = h,
FullHash = $"full_{h}"
})],
CfgHash = $"cfg_{name}"
};
}
private static SignatureIndex CreateIndex(string funcName, string[] hashes)
{
var createdAt = new DateTimeOffset(2026, 1, 10, 0, 0, 0, TimeSpan.Zero);
var builder = new SignatureIndexBuilder("CVE-2024-1234", "test", createdAt);
builder.AddSignature(new FunctionSignature
{
FunctionName = funcName,
BasicBlockHashes = [.. hashes],
CfgHash = $"cfg_{funcName}"
});
return builder.Build();
}
}

164
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Analysis.Tests/Unit/TaintGateExtractorTests.cs Normal file
View File

@@ -0,0 +1,164 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using Microsoft.Extensions.Logging.Abstractions;
namespace StellaOps.BinaryIndex.Analysis.Tests.Unit;
[Trait("Category", "Unit")]
public class TaintGateExtractorTests
{
private readonly TaintGateExtractor _extractor = new(NullLogger<TaintGateExtractor>.Instance);
[Theory]
[InlineData("size < MAX_SIZE", TaintGateType.BoundsCheck)]
[InlineData("index >= 0 && index < array.length", TaintGateType.BoundsCheck)]
[InlineData("len <= BUFFER_SIZE", TaintGateType.BoundsCheck)]
[InlineData("count > 100", TaintGateType.BoundsCheck)] // COUNT with comparison
[InlineData("check bounds overflow", TaintGateType.BoundsCheck)]
public void ClassifyCondition_BoundsCheck_IdentifiesCorrectly(string condition, TaintGateType expected)
{
var result = _extractor.ClassifyCondition(condition);
Assert.Equal(expected, result);
}
[Theory]
[InlineData("ptr == NULL", TaintGateType.NullCheck)]
[InlineData("pointer != nullptr", TaintGateType.NullCheck)]
[InlineData("p == 0", TaintGateType.NullCheck)]
[InlineData("if (!ptr)", TaintGateType.NullCheck)]
[InlineData("null check required", TaintGateType.NullCheck)]
public void ClassifyCondition_NullCheck_IdentifiesCorrectly(string condition, TaintGateType expected)
{
var result = _extractor.ClassifyCondition(condition);
Assert.Equal(expected, result);
}
[Theory]
[InlineData("authenticated == true", TaintGateType.AuthCheck)]
[InlineData("is_auth && session_valid", TaintGateType.AuthCheck)]
[InlineData("check_auth(user)", TaintGateType.AuthCheck)]
[InlineData("token != null", TaintGateType.AuthCheck)]
[InlineData("logged_in == 1", TaintGateType.AuthCheck)]
public void ClassifyCondition_AuthCheck_IdentifiesCorrectly(string condition, TaintGateType expected)
{
var result = _extractor.ClassifyCondition(condition);
Assert.Equal(expected, result);
}
[Theory]
[InlineData("permission == ALLOW", TaintGateType.PermissionCheck)]
[InlineData("has_perm(user, resource)", TaintGateType.PermissionCheck)]
[InlineData("check_perm(role)", TaintGateType.PermissionCheck)]
[InlineData("admin != 0", TaintGateType.PermissionCheck)] // ADMIN with comparison
[InlineData("access == granted", TaintGateType.PermissionCheck)]
public void ClassifyCondition_PermissionCheck_IdentifiesCorrectly(string condition, TaintGateType expected)
{
var result = _extractor.ClassifyCondition(condition);
Assert.Equal(expected, result);
}
[Theory]
[InlineData("typeof == int", TaintGateType.TypeCheck)] // TYPEOF with comparison
[InlineData("instanceof == String", TaintGateType.TypeCheck)] // INSTANCEOF with comparison
[InlineData("type != null", TaintGateType.TypeCheck)] // TYPE with comparison
[InlineData("type_check needed", TaintGateType.TypeCheck)]
[InlineData("dynamic_cast used", TaintGateType.TypeCheck)]
public void ClassifyCondition_TypeCheck_IdentifiesCorrectly(string condition, TaintGateType expected)
{
var result = _extractor.ClassifyCondition(condition);
Assert.Equal(expected, result);
}
[Theory]
[InlineData("valid == true", TaintGateType.InputValidation)]
[InlineData("is_valid(input)", TaintGateType.InputValidation)]
[InlineData("validate(data)", TaintGateType.InputValidation)]
[InlineData("sanitize == 1", TaintGateType.InputValidation)] // SANITIZE with comparison
[InlineData("filter != null", TaintGateType.InputValidation)]
public void ClassifyCondition_InputValidation_IdentifiesCorrectly(string condition, TaintGateType expected)
{
var result = _extractor.ClassifyCondition(condition);
Assert.Equal(expected, result);
}
[Theory]
[InlineData("format == expected", TaintGateType.FormatValidation)]
[InlineData("regex != null", TaintGateType.FormatValidation)] // REGEX with comparison
[InlineData("is_format_valid(str)", TaintGateType.FormatValidation)]
[InlineData("pattern == match", TaintGateType.FormatValidation)]
[InlineData("valid_format == true", TaintGateType.FormatValidation)]
public void ClassifyCondition_FormatValidation_IdentifiesCorrectly(string condition, TaintGateType expected)
{
var result = _extractor.ClassifyCondition(condition);
Assert.Equal(expected, result);
}
[Theory]
[InlineData("limit > 0", TaintGateType.ResourceLimit)]
[InlineData("reached_limit", TaintGateType.ResourceLimit)]
[InlineData("quota > 0", TaintGateType.ResourceLimit)]
[InlineData("exceed threshold", TaintGateType.ResourceLimit)]
[InlineData("max < 100", TaintGateType.ResourceLimit)]
public void ClassifyCondition_ResourceLimit_IdentifiesCorrectly(string condition, TaintGateType expected)
{
var result = _extractor.ClassifyCondition(condition);
Assert.Equal(expected, result);
}
[Theory]
[InlineData("")]
[InlineData(" ")]
[InlineData(null)]
public void ClassifyCondition_EmptyOrNull_ReturnsUnknown(string? condition)
{
var result = _extractor.ClassifyCondition(condition!);
Assert.Equal(TaintGateType.Unknown, result);
}
[Theory]
[InlineData("x = y + z")]
[InlineData("call func()")]
[InlineData("return value")]
public void ClassifyCondition_NonSecurityCondition_ReturnsUnknown(string condition)
{
var result = _extractor.ClassifyCondition(condition);
Assert.Equal(TaintGateType.Unknown, result);
}
[Fact]
public void ClassifyConditions_MultipleConditions_ClassifiesAll()
{
var conditions = new[]
{
("bb0", 0x1000UL, "ptr == NULL"),
("bb1", 0x1010UL, "size < MAX_SIZE"),
("bb2", 0x1020UL, "x = y") // Unknown
};
var gates = _extractor.ClassifyConditions([.. conditions]);
// Should only return recognized gates
Assert.Equal(2, gates.Length);
Assert.Contains(gates, g => g.GateType == TaintGateType.NullCheck);
Assert.Contains(gates, g => g.GateType == TaintGateType.BoundsCheck);
}
[Fact]
public void ClassifyConditions_PopulatesAllFields()
{
var conditions = new[]
{
("bb0", 0x1000UL, "ptr == NULL")
};
var gates = _extractor.ClassifyConditions([.. conditions]);
Assert.Single(gates);
var gate = gates[0];
Assert.Equal("bb0", gate.BlockId);
Assert.Equal(0x1000UL, gate.Address);
Assert.Equal(TaintGateType.NullCheck, gate.GateType);
Assert.Equal("ptr == NULL", gate.Condition);
Assert.True(gate.Confidence >= 0.5m);
}
}

21
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Diff.Tests/StellaOps.BinaryIndex.Diff.Tests.csproj Normal file
View File

@@ -0,0 +1,21 @@
<Project Sdk="Microsoft.NET.Sdk">
<PropertyGroup>
<TargetFramework>net10.0</TargetFramework>
<TreatWarningsAsErrors>true</TreatWarningsAsErrors>
<ImplicitUsings>enable</ImplicitUsings>
<Nullable>enable</Nullable>
<LangVersion>preview</LangVersion>
<IsPackable>false</IsPackable>
</PropertyGroup>
<ItemGroup>
<PackageReference Include="Moq" />
<PackageReference Include="FluentAssertions" />
</ItemGroup>
<ItemGroup>
<ProjectReference Include="..\..\__Libraries\StellaOps.BinaryIndex.Diff\StellaOps.BinaryIndex.Diff.csproj" />
<ProjectReference Include="..\..\__Libraries\StellaOps.BinaryIndex.Analysis\StellaOps.BinaryIndex.Analysis.csproj" />
<ProjectReference Include="..\..\__Libraries\StellaOps.BinaryIndex.GoldenSet\StellaOps.BinaryIndex.GoldenSet.csproj" />
</ItemGroup>
</Project>

275
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Diff.Tests/Unit/DiffEvidenceTests.cs Normal file
View File

@@ -0,0 +1,275 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using FluentAssertions;
using Xunit;
namespace StellaOps.BinaryIndex.Diff.Tests.Unit;
[Trait("Category", "Unit")]
public sealed class DiffEvidenceTests
{
[Fact]
public void FunctionRemoved_CreatesCorrectEvidence()
{
// Act
var evidence = DiffEvidence.FunctionRemoved("vuln_func");
// Assert
evidence.Type.Should().Be(DiffEvidenceType.FunctionRemoved);
evidence.FunctionName.Should().Be("vuln_func");
evidence.Weight.Should().Be(0.9m);
evidence.Description.Should().Contain("vuln_func");
}
[Fact]
public void FunctionRenamed_CreatesCorrectEvidence()
{
// Act
var evidence = DiffEvidence.FunctionRenamed("old_name", "new_name", 0.85m);
// Assert
evidence.Type.Should().Be(DiffEvidenceType.FunctionRenamed);
evidence.FunctionName.Should().Be("old_name");
evidence.Data["OldName"].Should().Be("old_name");
evidence.Data["NewName"].Should().Be("new_name");
evidence.Data["Similarity"].Should().Be("0.850");
}
[Fact]
public void CfgStructureChanged_CreatesCorrectEvidence()
{
// Act
var evidence = DiffEvidence.CfgStructureChanged("func", "hash1", "hash2");
// Assert
evidence.Type.Should().Be(DiffEvidenceType.CfgStructureChanged);
evidence.FunctionName.Should().Be("func");
evidence.Data["PreHash"].Should().Be("hash1");
evidence.Data["PostHash"].Should().Be("hash2");
evidence.Weight.Should().Be(0.5m);
}
[Fact]
public void VulnerableEdgeRemoved_CreatesCorrectEvidence()
{
// Arrange
var edges = ImmutableArray.Create("bb0->bb1", "bb1->bb2");
// Act
var evidence = DiffEvidence.VulnerableEdgeRemoved("func", edges);
// Assert
evidence.Type.Should().Be(DiffEvidenceType.VulnerableEdgeRemoved);
evidence.Weight.Should().Be(1.0m);
evidence.Data["EdgeCount"].Should().Be("2");
evidence.Data["EdgesRemoved"].Should().Contain("bb0->bb1");
}
[Fact]
public void SinkMadeUnreachable_CreatesCorrectEvidence()
{
// Arrange
var sinks = ImmutableArray.Create("memcpy", "strcpy");
// Act
var evidence = DiffEvidence.SinkMadeUnreachable("func", sinks);
// Assert
evidence.Type.Should().Be(DiffEvidenceType.SinkMadeUnreachable);
evidence.Weight.Should().Be(0.95m);
evidence.Data["SinkCount"].Should().Be("2");
}
[Fact]
public void TaintGateAdded_CreatesCorrectEvidence()
{
// Act
var evidence = DiffEvidence.TaintGateAdded("func", "BoundCheck", "len < bufsize");
// Assert
evidence.Type.Should().Be(DiffEvidenceType.TaintGateAdded);
evidence.Data["GateType"].Should().Be("BoundCheck");
evidence.Data["Condition"].Should().Be("len < bufsize");
evidence.Weight.Should().Be(0.85m);
}
[Fact]
public void SemanticDivergence_CreatesCorrectEvidence()
{
// Act
var evidence = DiffEvidence.SemanticDivergence("func", 0.45m);
// Assert
evidence.Type.Should().Be(DiffEvidenceType.SemanticDivergence);
evidence.Data["Similarity"].Should().Be("0.450");
evidence.Weight.Should().Be(0.6m);
}
[Fact]
public void IdenticalBinaries_CreatesCorrectEvidence()
{
// Act
var evidence = DiffEvidence.IdenticalBinaries("sha256:abc123");
// Assert
evidence.Type.Should().Be(DiffEvidenceType.IdenticalBinaries);
evidence.Data["Digest"].Should().Be("sha256:abc123");
evidence.Weight.Should().Be(1.0m);
}
[Theory]
[InlineData(DiffEvidenceType.FunctionRemoved)]
[InlineData(DiffEvidenceType.FunctionRenamed)]
[InlineData(DiffEvidenceType.CfgStructureChanged)]
[InlineData(DiffEvidenceType.VulnerableEdgeRemoved)]
[InlineData(DiffEvidenceType.VulnerableBlockModified)]
[InlineData(DiffEvidenceType.SinkMadeUnreachable)]
[InlineData(DiffEvidenceType.TaintGateAdded)]
[InlineData(DiffEvidenceType.ConstantChanged)]
[InlineData(DiffEvidenceType.SemanticDivergence)]
[InlineData(DiffEvidenceType.IdenticalBinaries)]
public void DiffEvidenceType_AllValuesAreDefined(DiffEvidenceType type)
{
// Assert
Enum.IsDefined(type).Should().BeTrue();
}
}
[Trait("Category", "Unit")]
public sealed class DiffOptionsTests
{
[Fact]
public void Default_HasSensibleDefaults()
{
// Act
var options = DiffOptions.Default;
// Assert
options.IncludeSemanticAnalysis.Should().BeFalse();
options.IncludeReachabilityAnalysis.Should().BeTrue();
options.SemanticThreshold.Should().Be(0.85m);
options.FixedConfidenceThreshold.Should().Be(0.80m);
options.DetectRenames.Should().BeTrue();
options.FunctionTimeout.Should().Be(TimeSpan.FromSeconds(30));
options.TotalTimeout.Should().Be(TimeSpan.FromMinutes(10));
}
[Fact]
public void DiffOptions_CanBeCustomized()
{
// Act
var options = new DiffOptions
{
IncludeSemanticAnalysis = true,
SemanticThreshold = 0.95m,
DetectRenames = false
};
// Assert
options.IncludeSemanticAnalysis.Should().BeTrue();
options.SemanticThreshold.Should().Be(0.95m);
options.DetectRenames.Should().BeFalse();
}
}
[Trait("Category", "Unit")]
public sealed class DiffMetadataTests
{
[Fact]
public void CurrentEngineVersion_IsSet()
{
// Assert
DiffMetadata.CurrentEngineVersion.Should().NotBeNullOrEmpty();
DiffMetadata.CurrentEngineVersion.Should().Be("1.0.0");
}
[Fact]
public void DiffMetadata_StoresAllProperties()
{
// Arrange
var comparedAt = DateTimeOffset.UtcNow;
var duration = TimeSpan.FromSeconds(5);
var options = DiffOptions.Default;
// Act
var metadata = new DiffMetadata
{
ComparedAt = comparedAt,
EngineVersion = DiffMetadata.CurrentEngineVersion,
Duration = duration,
Options = options
};
// Assert
metadata.ComparedAt.Should().Be(comparedAt);
metadata.EngineVersion.Should().Be("1.0.0");
metadata.Duration.Should().Be(duration);
metadata.Options.Should().Be(options);
}
}
[Trait("Category", "Unit")]
public sealed class SingleBinaryCheckResultTests
{
[Fact]
public void NotVulnerable_CreatesCorrectResult()
{
// Arrange
var binaryDigest = "sha256:abc123";
var goldenSetId = "CVE-2024-1234";
var checkedAt = DateTimeOffset.UtcNow;
var duration = TimeSpan.FromMilliseconds(50);
// Act
var result = SingleBinaryCheckResult.NotVulnerable(
binaryDigest, goldenSetId, checkedAt, duration);
// Assert
result.IsVulnerable.Should().BeFalse();
result.Confidence.Should().Be(0.9m);
result.BinaryDigest.Should().Be(binaryDigest);
result.GoldenSetId.Should().Be(goldenSetId);
result.FunctionResults.Should().BeEmpty();
}
}
[Trait("Category", "Unit")]
public sealed class FunctionRenameTests
{
[Fact]
public void FunctionRename_StoresAllProperties()
{
// Act
var rename = new FunctionRename
{
OriginalName = "old_func",
NewName = "new_func",
Confidence = 0.92m,
Similarity = 0.92m
};
// Assert
rename.OriginalName.Should().Be("old_func");
rename.NewName.Should().Be("new_func");
rename.Confidence.Should().Be(0.92m);
rename.Similarity.Should().Be(0.92m);
}
}
[Trait("Category", "Unit")]
public sealed class RenameDetectionOptionsTests
{
[Fact]
public void Default_HasSensibleDefaults()
{
// Act
var options = RenameDetectionOptions.Default;
// Assert
options.MinSimilarity.Should().Be(0.7m);
options.UseCfgHash.Should().BeTrue();
options.UseBlockHashes.Should().BeTrue();
options.UseStringRefs.Should().BeTrue();
}
}

284
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Diff.Tests/Unit/FunctionDifferTests.cs Normal file
View File

@@ -0,0 +1,284 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using FluentAssertions;
using StellaOps.BinaryIndex.Analysis;
using Xunit;
namespace StellaOps.BinaryIndex.Diff.Tests.Unit;
[Trait("Category", "Unit")]
public sealed class EdgeComparatorTests
{
private readonly EdgeComparator _comparator = new();
[Fact]
public void Compare_AllGoldenEdgesInPre_NoneInPost_AllRemoved()
{
// Arrange
var goldenEdges = ImmutableArray.Create("bb0->bb1", "bb1->bb2");
var preEdges = ImmutableArray.Create("bb0->bb1", "bb1->bb2", "bb2->bb3");
var postEdges = ImmutableArray.Create("bb2->bb3");
// Act
var diff = _comparator.Compare(goldenEdges, preEdges, postEdges);
// Assert
diff.EdgesInPre.Should().HaveCount(2);
diff.EdgesInPost.Should().BeEmpty();
diff.AllVulnerableEdgesRemoved.Should().BeTrue();
}
[Fact]
public void Compare_SomeGoldenEdgesRemain_PartialRemoval()
{
// Arrange
var goldenEdges = ImmutableArray.Create("bb0->bb1", "bb1->bb2");
var preEdges = ImmutableArray.Create("bb0->bb1", "bb1->bb2");
var postEdges = ImmutableArray.Create("bb0->bb1"); // Only one remains
// Act
var diff = _comparator.Compare(goldenEdges, preEdges, postEdges);
// Assert
diff.EdgesInPre.Should().HaveCount(2);
diff.EdgesInPost.Should().HaveCount(1);
diff.SomeVulnerableEdgesRemoved.Should().BeTrue();
diff.AllVulnerableEdgesRemoved.Should().BeFalse();
}
[Fact]
public void Compare_NoGoldenEdgesInEither_EmptyResult()
{
// Arrange
var goldenEdges = ImmutableArray.Create("bb0->bb1");
var preEdges = ImmutableArray.Create("bb5->bb6");
var postEdges = ImmutableArray.Create("bb5->bb6");
// Act
var diff = _comparator.Compare(goldenEdges, preEdges, postEdges);
// Assert
diff.EdgesInPre.Should().BeEmpty();
diff.EdgesInPost.Should().BeEmpty();
diff.NoChange.Should().BeTrue();
}
}
[Trait("Category", "Unit")]
public sealed class FunctionDifferTests
{
private readonly FunctionDiffer _differ;
private readonly EdgeComparator _edgeComparator = new();
public FunctionDifferTests()
{
_differ = new FunctionDiffer(_edgeComparator);
}
[Fact]
public void Compare_BothNull_ReturnsNotFound()
{
// Arrange
var signature = CreateSignature("func");
// Act
var result = _differ.Compare("func", null, null, signature, DiffOptions.Default);
// Assert
result.FunctionName.Should().Be("func");
result.Verdict.Should().Be(FunctionPatchVerdict.Inconclusive);
result.PreStatus.Should().Be(FunctionStatus.Absent);
result.PostStatus.Should().Be(FunctionStatus.Absent);
}
[Fact]
public void Compare_PrePresentPostNull_ReturnsFunctionRemoved()
{
// Arrange
var pre = CreateFingerprint("func");
var signature = CreateSignature("func");
// Act
var result = _differ.Compare("func", pre, null, signature, DiffOptions.Default);
// Assert
result.Verdict.Should().Be(FunctionPatchVerdict.FunctionRemoved);
result.PreStatus.Should().Be(FunctionStatus.Present);
result.PostStatus.Should().Be(FunctionStatus.Absent);
}
[Fact]
public void Compare_BothPresent_BuildsCfgDiff()
{
// Arrange
var pre = CreateFingerprint("func", cfgHash: "hash1");
var post = CreateFingerprint("func", cfgHash: "hash2");
var signature = CreateSignature("func");
// Act
var result = _differ.Compare("func", pre, post, signature, DiffOptions.Default);
// Assert
result.CfgDiff.Should().NotBeNull();
result.CfgDiff!.StructureChanged.Should().BeTrue();
result.CfgDiff.PreCfgHash.Should().Be("hash1");
result.CfgDiff.PostCfgHash.Should().Be("hash2");
}
[Fact]
public void Compare_PreNullPostPresent_ReturnsPresent()
{
// Arrange
var post = CreateFingerprint("func");
var signature = CreateSignature("func");
// Act
var result = _differ.Compare("func", null, post, signature, DiffOptions.Default);
// Assert
result.PreStatus.Should().Be(FunctionStatus.Absent);
result.PostStatus.Should().Be(FunctionStatus.Present);
}
[Fact]
public void Compare_VulnerableEdgesRemoved_ReturnsFixed()
{
// Arrange
var preBlocks = ImmutableArray.Create(
CreateBlock("bb0", ["bb1"]),
CreateBlock("bb1", ["bb2"]));
var postBlocks = ImmutableArray.Create(
CreateBlock("bb0", ["bb3"]), // Changed successor - edge removed
CreateBlock("bb3", []));
var pre = CreateFingerprint("func", blocks: preBlocks);
var post = CreateFingerprint("func", blocks: postBlocks);
var signature = CreateSignature("func", edgePatterns: ["bb0->bb1", "bb1->bb2"]);
// Act
var result = _differ.Compare("func", pre, post, signature, DiffOptions.Default);
// Assert
result.EdgeDiff.AllVulnerableEdgesRemoved.Should().BeTrue();
result.Verdict.Should().Be(FunctionPatchVerdict.Fixed);
}
[Fact]
public void Compare_NoChange_ReturnsStillVulnerable()
{
// Arrange
var blocks = ImmutableArray.Create(
CreateBlock("bb0", ["bb1"]),
CreateBlock("bb1", ["bb2"]));
var pre = CreateFingerprint("func", cfgHash: "same", blocks: blocks);
var post = CreateFingerprint("func", cfgHash: "same", blocks: blocks);
var signature = CreateSignature("func", edgePatterns: ["bb0->bb1", "bb1->bb2"]);
// Act
var result = _differ.Compare("func", pre, post, signature, DiffOptions.Default);
// Assert
result.EdgeDiff.NoChange.Should().BeTrue();
result.CfgDiff!.StructureChanged.Should().BeFalse();
result.Verdict.Should().Be(FunctionPatchVerdict.StillVulnerable);
}
[Fact]
public void Compare_WithSemanticAnalysis_ComputesSimilarity()
{
// Arrange
var preBlocks = ImmutableArray.Create(
CreateBlock("bb0", [], "hash_a"),
CreateBlock("bb1", [], "hash_b"));
var postBlocks = ImmutableArray.Create(
CreateBlock("bb0", [], "hash_a"), // Same
CreateBlock("bb1", [], "hash_c")); // Different
var pre = CreateFingerprint("func", blocks: preBlocks);
var post = CreateFingerprint("func", blocks: postBlocks);
var signature = CreateSignature("func");
var options = new DiffOptions { IncludeSemanticAnalysis = true };
// Act
var result = _differ.Compare("func", pre, post, signature, options);
// Assert
result.SemanticSimilarity.Should().NotBeNull();
result.SemanticSimilarity.Should().BeGreaterThan(0);
result.SemanticSimilarity.Should().BeLessThan(1);
}
[Fact]
public void Compare_WithSinks_ChecksReachability()
{
// Arrange
var preBlocks = ImmutableArray.Create(
CreateBlock("bb0", ["bb1"]),
CreateBlock("bb1", []));
var postBlocks = ImmutableArray.Create(
CreateBlock("bb0", ["bb2"]),
CreateBlock("bb2", [])); // bb1 removed
var pre = CreateFingerprint("func", blocks: preBlocks);
var post = CreateFingerprint("func", blocks: postBlocks);
var signature = CreateSignature("func",
edgePatterns: ["bb0->bb1"],
sinks: ["dangerous_func"]);
// Act
var result = _differ.Compare("func", pre, post, signature, DiffOptions.Default);
// Assert
// bb1 was in pre but not in post, so sink should be unreachable
result.ReachabilityDiff.Should().NotBeNull();
}
private static FunctionFingerprint CreateFingerprint(
string name,
string cfgHash = "default_hash",
ImmutableArray<BasicBlockHash>? blocks = null)
{
return new FunctionFingerprint
{
FunctionName = name,
Address = 0x1000,
CfgHash = cfgHash,
BasicBlockHashes = blocks ?? ImmutableArray.Create(
CreateBlock("bb0", ["bb1"]))
};
}
private static BasicBlockHash CreateBlock(
string id,
string[] successors,
string opcodeHash = "default_opcode_hash")
{
return new BasicBlockHash
{
BlockId = id,
StartAddress = 0x1000,
OpcodeHash = opcodeHash,
FullHash = $"full_{opcodeHash}",
Successors = [.. successors]
};
}
private static FunctionSignature CreateSignature(
string name,
ImmutableArray<string>? edgePatterns = null,
ImmutableArray<string>? sinks = null)
{
return new FunctionSignature
{
FunctionName = name,
EdgePatterns = edgePatterns ?? [],
Sinks = sinks ?? []
};
}
}

244
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Diff.Tests/Unit/PatchDiffModelTests.cs Normal file
View File

@@ -0,0 +1,244 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using FluentAssertions;
using Xunit;
namespace StellaOps.BinaryIndex.Diff.Tests.Unit;
[Trait("Category", "Unit")]
public sealed class PatchDiffModelTests
{
[Fact]
public void PatchDiffResult_NoPatchDetected_CreatesCorrectResult()
{
// Arrange
var goldenSetId = "CVE-2024-1234";
var goldenSetDigest = "sha256:abcd1234";
var binaryDigest = "sha256:same1234";
var comparedAt = DateTimeOffset.UtcNow;
var duration = TimeSpan.FromMilliseconds(100);
var options = DiffOptions.Default;
// Act
var result = PatchDiffResult.NoPatchDetected(
goldenSetId, goldenSetDigest, binaryDigest,
comparedAt, duration, options);
// Assert
result.GoldenSetId.Should().Be(goldenSetId);
result.Verdict.Should().Be(PatchVerdict.NoPatchDetected);
result.Confidence.Should().Be(1.0m);
result.PreBinaryDigest.Should().Be(binaryDigest);
result.PostBinaryDigest.Should().Be(binaryDigest);
result.Evidence.Should().HaveCount(1);
result.Evidence[0].Type.Should().Be(DiffEvidenceType.IdenticalBinaries);
}
[Theory]
[InlineData(PatchVerdict.Fixed)]
[InlineData(PatchVerdict.PartialFix)]
[InlineData(PatchVerdict.StillVulnerable)]
[InlineData(PatchVerdict.Inconclusive)]
[InlineData(PatchVerdict.NoPatchDetected)]
public void PatchVerdict_AllValuesAreDefined(PatchVerdict verdict)
{
// Assert
Enum.IsDefined(verdict).Should().BeTrue();
}
[Fact]
public void FunctionDiffResult_FunctionRemoved_CreatesCorrectResult()
{
// Act
var result = FunctionDiffResult.FunctionRemoved("vulnerable_func");
// Assert
result.FunctionName.Should().Be("vulnerable_func");
result.PreStatus.Should().Be(FunctionStatus.Present);
result.PostStatus.Should().Be(FunctionStatus.Absent);
result.Verdict.Should().Be(FunctionPatchVerdict.FunctionRemoved);
}
[Fact]
public void FunctionDiffResult_NotFound_CreatesCorrectResult()
{
// Act
var result = FunctionDiffResult.NotFound("missing_func");
// Assert
result.FunctionName.Should().Be("missing_func");
result.PreStatus.Should().Be(FunctionStatus.Absent);
result.PostStatus.Should().Be(FunctionStatus.Absent);
result.Verdict.Should().Be(FunctionPatchVerdict.Inconclusive);
}
[Fact]
public void CfgDiffResult_StructureChanged_DetectsChange()
{
// Arrange
var diff = new CfgDiffResult
{
PreCfgHash = "hash1",
PostCfgHash = "hash2",
PreBlockCount = 5,
PostBlockCount = 6,
PreEdgeCount = 7,
PostEdgeCount = 9
};
// Assert
diff.StructureChanged.Should().BeTrue();
diff.BlockCountDelta.Should().Be(1);
diff.EdgeCountDelta.Should().Be(2);
}
[Fact]
public void CfgDiffResult_NoStructureChange_WhenHashesMatch()
{
// Arrange
var diff = new CfgDiffResult
{
PreCfgHash = "samehash",
PostCfgHash = "samehash",
PreBlockCount = 5,
PostBlockCount = 5,
PreEdgeCount = 7,
PostEdgeCount = 7
};
// Assert
diff.StructureChanged.Should().BeFalse();
diff.BlockCountDelta.Should().Be(0);
diff.EdgeCountDelta.Should().Be(0);
}
}
[Trait("Category", "Unit")]
public sealed class VulnerableEdgeDiffTests
{
[Fact]
public void Compute_AllEdgesRemoved_SetsFlag()
{
// Arrange
var preEdges = ImmutableArray.Create("bb0->bb1", "bb1->bb2");
var postEdges = ImmutableArray<string>.Empty;
// Act
var diff = VulnerableEdgeDiff.Compute(preEdges, postEdges);
// Assert
diff.AllVulnerableEdgesRemoved.Should().BeTrue();
diff.EdgesRemoved.Should().HaveCount(2);
diff.EdgesAdded.Should().BeEmpty();
}
[Fact]
public void Compute_SomeEdgesRemoved_SetsFlag()
{
// Arrange
var preEdges = ImmutableArray.Create("bb0->bb1", "bb1->bb2");
var postEdges = ImmutableArray.Create("bb0->bb1");
// Act
var diff = VulnerableEdgeDiff.Compute(preEdges, postEdges);
// Assert
diff.AllVulnerableEdgesRemoved.Should().BeFalse();
diff.SomeVulnerableEdgesRemoved.Should().BeTrue();
diff.EdgesRemoved.Should().Contain("bb1->bb2");
}
[Fact]
public void Compute_NoChange_NoEdgesRemovedOrAdded()
{
// Arrange
var edges = ImmutableArray.Create("bb0->bb1", "bb1->bb2");
// Act
var diff = VulnerableEdgeDiff.Compute(edges, edges);
// Assert
diff.NoChange.Should().BeTrue();
diff.EdgesRemoved.Should().BeEmpty();
diff.EdgesAdded.Should().BeEmpty();
}
[Fact]
public void Compute_EdgesAdded_TracksNewEdges()
{
// Arrange
var preEdges = ImmutableArray.Create("bb0->bb1");
var postEdges = ImmutableArray.Create("bb0->bb1", "bb1->bb3");
// Act
var diff = VulnerableEdgeDiff.Compute(preEdges, postEdges);
// Assert
diff.EdgesAdded.Should().Contain("bb1->bb3");
diff.AllVulnerableEdgesRemoved.Should().BeFalse();
}
[Fact]
public void Empty_ReturnsEmptyDiff()
{
// Act
var empty = VulnerableEdgeDiff.Empty;
// Assert
empty.EdgesInPre.Should().BeEmpty();
empty.EdgesInPost.Should().BeEmpty();
empty.EdgesRemoved.Should().BeEmpty();
empty.EdgesAdded.Should().BeEmpty();
}
}
[Trait("Category", "Unit")]
public sealed class SinkReachabilityDiffTests
{
[Fact]
public void Compute_AllSinksUnreachable_SetsFlag()
{
// Arrange
var preSinks = ImmutableArray.Create("memcpy", "strcpy");
var postSinks = ImmutableArray<string>.Empty;
// Act
var diff = SinkReachabilityDiff.Compute(preSinks, postSinks);
// Assert
diff.AllSinksUnreachable.Should().BeTrue();
diff.SinksMadeUnreachable.Should().HaveCount(2);
diff.SinksStillReachable.Should().BeEmpty();
}
[Fact]
public void Compute_SomeSinksUnreachable_SetsFlag()
{
// Arrange
var preSinks = ImmutableArray.Create("memcpy", "strcpy");
var postSinks = ImmutableArray.Create("memcpy");
// Act
var diff = SinkReachabilityDiff.Compute(preSinks, postSinks);
// Assert
diff.AllSinksUnreachable.Should().BeFalse();
diff.SomeSinksUnreachable.Should().BeTrue();
diff.SinksMadeUnreachable.Should().Contain("strcpy");
diff.SinksStillReachable.Should().Contain("memcpy");
}
[Fact]
public void Empty_ReturnsEmptyDiff()
{
// Act
var empty = SinkReachabilityDiff.Empty;
// Assert
empty.SinksReachableInPre.Should().BeEmpty();
empty.SinksReachableInPost.Should().BeEmpty();
empty.SinksMadeUnreachable.Should().BeEmpty();
empty.SinksStillReachable.Should().BeEmpty();
}
}

369
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.Diff.Tests/Unit/VerdictCalculatorTests.cs Normal file
View File

@@ -0,0 +1,369 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using FluentAssertions;
using Xunit;
namespace StellaOps.BinaryIndex.Diff.Tests.Unit;
[Trait("Category", "Unit")]
public sealed class VerdictCalculatorTests
{
private readonly VerdictCalculator _calculator = new();
[Fact]
public void Calculate_AllFixed_ReturnsFixed()
{
// Arrange
var functionDiffs = ImmutableArray.Create(
CreateFunctionDiff("func1", FunctionPatchVerdict.Fixed),
CreateFunctionDiff("func2", FunctionPatchVerdict.Fixed));
var evidence = ImmutableArray.Create(
DiffEvidence.VulnerableEdgeRemoved("func1", ["bb0->bb1"]),
DiffEvidence.VulnerableEdgeRemoved("func2", ["bb0->bb1"]));
// Act
var (verdict, confidence) = _calculator.Calculate(
functionDiffs, evidence, DiffOptions.Default);
// Assert
verdict.Should().Be(PatchVerdict.Fixed);
confidence.Should().BeGreaterThan(0);
}
[Fact]
public void Calculate_AnyStillVulnerable_ReturnsStillVulnerable()
{
// Arrange
var functionDiffs = ImmutableArray.Create(
CreateFunctionDiff("func1", FunctionPatchVerdict.Fixed),
CreateFunctionDiff("func2", FunctionPatchVerdict.StillVulnerable));
var evidence = ImmutableArray.Create(
DiffEvidence.VulnerableEdgeRemoved("func1", ["bb0->bb1"]));
// Act
var (verdict, confidence) = _calculator.Calculate(
functionDiffs, evidence, DiffOptions.Default);
// Assert
verdict.Should().Be(PatchVerdict.StillVulnerable);
}
[Fact]
public void Calculate_PartialFixes_ReturnsPartialFix()
{
// Arrange
var functionDiffs = ImmutableArray.Create(
CreateFunctionDiff("func1", FunctionPatchVerdict.PartialFix),
CreateFunctionDiff("func2", FunctionPatchVerdict.PartialFix));
var evidence = ImmutableArray.Create(
DiffEvidence.CfgStructureChanged("func1", "h1", "h2"));
// Act
var (verdict, confidence) = _calculator.Calculate(
functionDiffs, evidence, DiffOptions.Default);
// Assert
verdict.Should().Be(PatchVerdict.PartialFix);
}
[Fact]
public void Calculate_AllInconclusive_ReturnsInconclusive()
{
// Arrange
var functionDiffs = ImmutableArray.Create(
CreateFunctionDiff("func1", FunctionPatchVerdict.Inconclusive),
CreateFunctionDiff("func2", FunctionPatchVerdict.Inconclusive));
var evidence = ImmutableArray<DiffEvidence>.Empty;
// Act
var (verdict, confidence) = _calculator.Calculate(
functionDiffs, evidence, DiffOptions.Default);
// Assert
verdict.Should().Be(PatchVerdict.Inconclusive);
}
[Fact]
public void Calculate_EmptyFunctionDiffs_ReturnsInconclusive()
{
// Arrange
var functionDiffs = ImmutableArray<FunctionDiffResult>.Empty;
var evidence = ImmutableArray<DiffEvidence>.Empty;
// Act
var (verdict, confidence) = _calculator.Calculate(
functionDiffs, evidence, DiffOptions.Default);
// Assert
verdict.Should().Be(PatchVerdict.Inconclusive);
confidence.Should().Be(0);
}
[Fact]
public void Calculate_FunctionRemoved_ContributesToFixed()
{
// Arrange
var functionDiffs = ImmutableArray.Create(
CreateFunctionDiff("func1", FunctionPatchVerdict.FunctionRemoved));
var evidence = ImmutableArray.Create(
DiffEvidence.FunctionRemoved("func1"));
// Act
var (verdict, confidence) = _calculator.Calculate(
functionDiffs, evidence, DiffOptions.Default);
// Assert
verdict.Should().Be(PatchVerdict.Fixed);
}
[Fact]
public void Calculate_MixedFixedAndPartial_ReturnsPartialFix()
{
// Arrange
var functionDiffs = ImmutableArray.Create(
CreateFunctionDiff("func1", FunctionPatchVerdict.Fixed),
CreateFunctionDiff("func2", FunctionPatchVerdict.PartialFix));
var evidence = ImmutableArray.Create(
DiffEvidence.VulnerableEdgeRemoved("func1", ["bb0->bb1"]),
DiffEvidence.CfgStructureChanged("func2", "h1", "h2"));
// Act
var (verdict, confidence) = _calculator.Calculate(
functionDiffs, evidence, DiffOptions.Default);
// Assert
verdict.Should().Be(PatchVerdict.PartialFix);
}
[Fact]
public void Calculate_LowConfidenceFixed_ReturnsInconclusive()
{
// Arrange
var functionDiffs = ImmutableArray.Create(
CreateFunctionDiff("func1", FunctionPatchVerdict.Fixed));
// No evidence = low confidence
var evidence = ImmutableArray<DiffEvidence>.Empty;
var options = new DiffOptions
{
FixedConfidenceThreshold = 0.95m // High threshold
};
// Act
var (verdict, confidence) = _calculator.Calculate(
functionDiffs, evidence, options);
// Assert
verdict.Should().Be(PatchVerdict.Inconclusive);
}
private static FunctionDiffResult CreateFunctionDiff(string name, FunctionPatchVerdict verdict)
{
return new FunctionDiffResult
{
FunctionName = name,
PreStatus = FunctionStatus.Present,
PostStatus = verdict == FunctionPatchVerdict.FunctionRemoved
? FunctionStatus.Absent
: FunctionStatus.Present,
EdgeDiff = VulnerableEdgeDiff.Empty,
ReachabilityDiff = SinkReachabilityDiff.Empty,
Verdict = verdict
};
}
}
[Trait("Category", "Unit")]
public sealed class EvidenceCollectorTests
{
private readonly EvidenceCollector _collector = new();
[Fact]
public void Collect_FunctionRemoved_AddsEvidence()
{
// Arrange
var functionDiffs = ImmutableArray.Create(new FunctionDiffResult
{
FunctionName = "vuln_func",
PreStatus = FunctionStatus.Present,
PostStatus = FunctionStatus.Absent,
EdgeDiff = VulnerableEdgeDiff.Empty,
ReachabilityDiff = SinkReachabilityDiff.Empty,
Verdict = FunctionPatchVerdict.FunctionRemoved
});
// Act
var evidence = _collector.Collect(functionDiffs, []);
// Assert
evidence.Should().Contain(e => e.Type == DiffEvidenceType.FunctionRemoved);
}
[Fact]
public void Collect_AllEdgesRemoved_AddsEvidence()
{
// Arrange
var edgeDiff = VulnerableEdgeDiff.Compute(
ImmutableArray.Create("bb0->bb1"),
ImmutableArray<string>.Empty);
var functionDiffs = ImmutableArray.Create(new FunctionDiffResult
{
FunctionName = "vuln_func",
PreStatus = FunctionStatus.Present,
PostStatus = FunctionStatus.Present,
EdgeDiff = edgeDiff,
ReachabilityDiff = SinkReachabilityDiff.Empty,
Verdict = FunctionPatchVerdict.Fixed
});
// Act
var evidence = _collector.Collect(functionDiffs, []);
// Assert
evidence.Should().Contain(e => e.Type == DiffEvidenceType.VulnerableEdgeRemoved);
}
[Fact]
public void Collect_CfgChanged_AddsEvidence()
{
// Arrange
var functionDiffs = ImmutableArray.Create(new FunctionDiffResult
{
FunctionName = "vuln_func",
PreStatus = FunctionStatus.Present,
PostStatus = FunctionStatus.Present,
CfgDiff = new CfgDiffResult
{
PreCfgHash = "hash1",
PostCfgHash = "hash2",
PreBlockCount = 5,
PostBlockCount = 6,
PreEdgeCount = 7,
PostEdgeCount = 8
},
EdgeDiff = VulnerableEdgeDiff.Empty,
ReachabilityDiff = SinkReachabilityDiff.Empty,
Verdict = FunctionPatchVerdict.PartialFix
});
// Act
var evidence = _collector.Collect(functionDiffs, []);
// Assert
evidence.Should().Contain(e => e.Type == DiffEvidenceType.CfgStructureChanged);
}
[Fact]
public void Collect_SinksMadeUnreachable_AddsEvidence()
{
// Arrange
var reachDiff = SinkReachabilityDiff.Compute(
ImmutableArray.Create("memcpy"),
ImmutableArray<string>.Empty);
var functionDiffs = ImmutableArray.Create(new FunctionDiffResult
{
FunctionName = "vuln_func",
PreStatus = FunctionStatus.Present,
PostStatus = FunctionStatus.Present,
EdgeDiff = VulnerableEdgeDiff.Empty,
ReachabilityDiff = reachDiff,
Verdict = FunctionPatchVerdict.Fixed
});
// Act
var evidence = _collector.Collect(functionDiffs, []);
// Assert
evidence.Should().Contain(e => e.Type == DiffEvidenceType.SinkMadeUnreachable);
}
[Fact]
public void Collect_LowSemanticSimilarity_AddsEvidence()
{
// Arrange
var functionDiffs = ImmutableArray.Create(new FunctionDiffResult
{
FunctionName = "vuln_func",
PreStatus = FunctionStatus.Present,
PostStatus = FunctionStatus.Present,
EdgeDiff = VulnerableEdgeDiff.Empty,
ReachabilityDiff = SinkReachabilityDiff.Empty,
SemanticSimilarity = 0.5m,
Verdict = FunctionPatchVerdict.PartialFix
});
// Act
var evidence = _collector.Collect(functionDiffs, []);
// Assert
evidence.Should().Contain(e => e.Type == DiffEvidenceType.SemanticDivergence);
}
[Fact]
public void Collect_WithRenames_AddsRenameEvidence()
{
// Arrange
var functionDiffs = ImmutableArray<FunctionDiffResult>.Empty;
var renames = ImmutableArray.Create(new FunctionRename
{
OriginalName = "old_func",
NewName = "new_func",
Confidence = 0.9m,
Similarity = 0.9m
});
// Act
var evidence = _collector.Collect(functionDiffs, renames);
// Assert
evidence.Should().Contain(e => e.Type == DiffEvidenceType.FunctionRenamed);
}
[Fact]
public void Collect_SortsByWeightDescending()
{
// Arrange
var edgeDiff = VulnerableEdgeDiff.Compute(
ImmutableArray.Create("bb0->bb1"),
ImmutableArray<string>.Empty);
var functionDiffs = ImmutableArray.Create(new FunctionDiffResult
{
FunctionName = "vuln_func",
PreStatus = FunctionStatus.Present,
PostStatus = FunctionStatus.Present,
CfgDiff = new CfgDiffResult
{
PreCfgHash = "h1",
PostCfgHash = "h2",
PreBlockCount = 1,
PostBlockCount = 2,
PreEdgeCount = 1,
PostEdgeCount = 2
},
EdgeDiff = edgeDiff,
ReachabilityDiff = SinkReachabilityDiff.Empty,
Verdict = FunctionPatchVerdict.Fixed
});
// Act
var evidence = _collector.Collect(functionDiffs, []);
// Assert
evidence.Length.Should().BeGreaterThan(1);
for (var i = 1; i < evidence.Length; i++)
{
evidence[i - 1].Weight.Should().BeGreaterThanOrEqualTo(evidence[i].Weight);
}
}
}

144
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Integration/GoldenCorpusIntegrationTests.cs Normal file
View File

@@ -0,0 +1,144 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
// Sprint: SPRINT_20260110_012_010_TEST
// Task: GTV-003 - Integration Tests
using System.Collections.Immutable;
using FluentAssertions;
using StellaOps.BinaryIndex.GoldenSet;
using Xunit;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Integration;
/// <summary>
/// Integration tests for the complete Golden Set pipeline.
/// Tests serialization roundtrips and data integrity.
/// </summary>
[Trait("Category", "Integration")]
public sealed class GoldenCorpusIntegrationTests
{
private readonly string _corpusPath;
public GoldenCorpusIntegrationTests()
{
// Find the golden corpus directory relative to test execution
var testDir = Path.GetDirectoryName(typeof(GoldenCorpusIntegrationTests).Assembly.Location)!;
_corpusPath = Path.GetFullPath(Path.Combine(testDir, "..", "..", "..", "..", "..", "..", "..", "bench", "golden-corpus", "golden-sets"));
}
[Fact]
public void CorpusPath_Exists_WhenAvailable()
{
// This test verifies the corpus path is correctly resolved
// Skip if corpus not available (e.g., in CI without full checkout)
if (!Directory.Exists(_corpusPath))
{
Assert.True(true, $"Corpus directory not available at {_corpusPath}, skipping");
return;
}
Directory.Exists(_corpusPath).Should().BeTrue($"Expected corpus at {_corpusPath}");
}
[Fact]
public void SerializeDeserializeRoundTrip_ShouldPreserveData()
{
// Arrange
var original = CreateTestDefinition("TEST-ROUNDTRIP-001");
// Act
var yaml = GoldenSetYamlSerializer.Serialize(original);
var restored = GoldenSetYamlSerializer.Deserialize(yaml);
// Assert
restored.Id.Should().Be(original.Id);
restored.Component.Should().Be(original.Component);
restored.Targets.Should().HaveCount(1);
restored.Targets[0].FunctionName.Should().Be(original.Targets[0].FunctionName);
}
[Fact]
public void Serialize_ValidDefinition_ProducesValidYaml()
{
// Arrange
var definition = CreateTestDefinition("SERIALIZE-TEST-001");
// Act
var yaml = GoldenSetYamlSerializer.Serialize(definition);
// Assert
yaml.Should().NotBeNullOrWhiteSpace();
// YAML uses snake_case naming convention
yaml.Should().Contain("SERIALIZE-TEST-001");
yaml.Should().Contain("test-component");
yaml.Should().Contain("test_function");
}
[Fact]
public void Deserialize_ValidYaml_ProducesValidDefinition()
{
// Arrange - YAML with correct property names matching GoldenSetYamlDto
var yaml = @"
id: CVE-2024-TEST
component: test-lib
targets:
- function: vulnerable_func
edges:
- bb1->bb2
sinks:
- dangerous_sink
metadata:
author_id: test@example.com
created_at: '2026-01-11T00:00:00Z'
source_ref: https://nvd.nist.gov/vuln/detail/CVE-2024-TEST
";
// Act
var definition = GoldenSetYamlSerializer.Deserialize(yaml);
// Assert
definition.Id.Should().Be("CVE-2024-TEST");
definition.Component.Should().Be("test-lib");
definition.Targets.Should().HaveCount(1);
definition.Targets[0].FunctionName.Should().Be("vulnerable_func");
definition.Targets[0].Sinks.Should().Contain("dangerous_sink");
}
[Fact]
public void MultipleDefinitions_HaveDistinctContentDigests()
{
// Arrange
var def1 = CreateTestDefinition("TEST-001");
var def2 = CreateTestDefinition("TEST-002");
// Act
var yaml1 = GoldenSetYamlSerializer.Serialize(def1);
var yaml2 = GoldenSetYamlSerializer.Serialize(def2);
// Assert
yaml1.Should().NotBe(yaml2, "Different definitions should serialize differently");
}
private static GoldenSetDefinition CreateTestDefinition(string id)
{
return new GoldenSetDefinition
{
Id = id,
Component = "test-component",
Targets =
[
new VulnerableTarget
{
FunctionName = "test_function",
Edges = [BasicBlockEdge.Parse("bb1->bb2")],
Sinks = ["dangerous_sink"]
}
],
Metadata = new GoldenSetMetadata
{
AuthorId = "test@example.com",
CreatedAt = new DateTimeOffset(2026, 1, 11, 0, 0, 0, TimeSpan.Zero),
SourceRef = "https://nvd.nist.gov/vuln/detail/" + id
}
};
}
}

26
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/StellaOps.BinaryIndex.GoldenSet.Tests.csproj Normal file
View File

@@ -0,0 +1,26 @@
<Project Sdk="Microsoft.NET.Sdk">
<PropertyGroup>
<TargetFramework>net10.0</TargetFramework>
<TreatWarningsAsErrors>true</TreatWarningsAsErrors>
<ImplicitUsings>enable</ImplicitUsings>
<Nullable>enable</Nullable>
<LangVersion>preview</LangVersion>
<IsPackable>false</IsPackable>
<IsTestProject>true</IsTestProject>
<UseXunitV3>true</UseXunitV3>
</PropertyGroup>
<ItemGroup>
<PackageReference Include="FluentAssertions" />
<PackageReference Include="Microsoft.Extensions.Caching.Memory" />
<PackageReference Include="Microsoft.Extensions.Logging.Abstractions" />
<PackageReference Include="Microsoft.Extensions.Options" />
<PackageReference Include="Microsoft.Extensions.TimeProvider.Testing" />
<PackageReference Include="NSubstitute" />
<PackageReference Include="Testcontainers.PostgreSql" />
</ItemGroup>
<ItemGroup>
<ProjectReference Include="..\..\__Libraries\StellaOps.BinaryIndex.GoldenSet\StellaOps.BinaryIndex.GoldenSet.csproj" />
</ItemGroup>
</Project>

190
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/Authoring/CweToSinkMapperTests.cs Normal file
View File

@@ -0,0 +1,190 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using FluentAssertions;
using StellaOps.BinaryIndex.GoldenSet.Authoring.Extractors;
using Xunit;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit.Authoring;
[Trait("Category", "Unit")]
public sealed class CweToSinkMapperTests
{
[Theory]
[InlineData("CWE-120", "memcpy")]
[InlineData("CWE-120", "strcpy")]
[InlineData("CWE-120", "sprintf")]
[InlineData("CWE-787", "memcpy")]
[InlineData("CWE-787", "memmove")]
public void GetSinksForCwe_BufferOverflow_ReturnsSinks(string cweId, string expectedSink)
{
// Act
var sinks = CweToSinkMapper.GetSinksForCwe(cweId);
// Assert
sinks.Should().Contain(expectedSink);
}
[Theory]
[InlineData("CWE-78", "system")]
[InlineData("CWE-78", "exec")]
[InlineData("CWE-78", "popen")]
[InlineData("CWE-77", "system")]
public void GetSinksForCwe_CommandInjection_ReturnsSinks(string cweId, string expectedSink)
{
// Act
var sinks = CweToSinkMapper.GetSinksForCwe(cweId);
// Assert
sinks.Should().Contain(expectedSink);
}
[Theory]
[InlineData("CWE-89", "sqlite3_exec")]
[InlineData("CWE-89", "mysql_query")]
[InlineData("CWE-89", "PQexec")]
public void GetSinksForCwe_SqlInjection_ReturnsSinks(string cweId, string expectedSink)
{
// Act
var sinks = CweToSinkMapper.GetSinksForCwe(cweId);
// Assert
sinks.Should().Contain(expectedSink);
}
[Theory]
[InlineData("CWE-22", "fopen")]
[InlineData("CWE-22", "open")]
[InlineData("CWE-23", "fopen")]
public void GetSinksForCwe_PathTraversal_ReturnsSinks(string cweId, string expectedSink)
{
// Act
var sinks = CweToSinkMapper.GetSinksForCwe(cweId);
// Assert
sinks.Should().Contain(expectedSink);
}
[Theory]
[InlineData("CWE-416", "free")]
[InlineData("CWE-415", "free")]
[InlineData("CWE-415", "delete")]
public void GetSinksForCwe_UseAfterFree_ReturnsSinks(string cweId, string expectedSink)
{
// Act
var sinks = CweToSinkMapper.GetSinksForCwe(cweId);
// Assert
sinks.Should().Contain(expectedSink);
}
[Theory]
[InlineData("cwe-120")] // lowercase
[InlineData("120")] // numeric only
[InlineData("CWE-120")] // standard format
public void GetSinksForCwe_DifferentFormats_NormalizesAndReturnsSinks(string cweId)
{
// Act
var sinks = CweToSinkMapper.GetSinksForCwe(cweId);
// Assert
sinks.Should().NotBeEmpty();
sinks.Should().Contain("memcpy");
}
[Theory]
[InlineData("")]
[InlineData(" ")]
[InlineData("CWE-99999")]
[InlineData("invalid")]
public void GetSinksForCwe_InvalidOrUnknown_ReturnsEmpty(string cweId)
{
// Act
var sinks = CweToSinkMapper.GetSinksForCwe(cweId);
// Assert
sinks.Should().BeEmpty();
}
[Fact]
public void GetSinksForCwes_MultipleCwes_ReturnsMergedDistinctSinks()
{
// Arrange
var cweIds = new[] { "CWE-120", "CWE-787", "CWE-78" };
// Act
var sinks = CweToSinkMapper.GetSinksForCwes(cweIds);
// Assert
sinks.Should().Contain("memcpy"); // from CWE-120 and CWE-787
sinks.Should().Contain("system"); // from CWE-78
sinks.Should().OnlyHaveUniqueItems();
}
[Fact]
public void GetSinksForCwes_EmptyInput_ReturnsEmpty()
{
// Act
var sinks = CweToSinkMapper.GetSinksForCwes(Array.Empty<string>());
// Assert
sinks.Should().BeEmpty();
}
[Theory]
[InlineData("CWE-120", SinkCategory.Memory)]
[InlineData("CWE-78", SinkCategory.CommandInjection)]
[InlineData("CWE-89", SinkCategory.SqlInjection)]
[InlineData("CWE-22", SinkCategory.PathTraversal)]
[InlineData("CWE-327", SinkCategory.Crypto)]
public void GetCategoryForCwe_KnownCwe_ReturnsCategory(string cweId, string expectedCategory)
{
// Act
var category = CweToSinkMapper.GetCategoryForCwe(cweId);
// Assert
category.Should().Be(expectedCategory);
}
[Theory]
[InlineData("")]
[InlineData("CWE-99999")]
public void GetCategoryForCwe_UnknownCwe_ReturnsNull(string cweId)
{
// Act
var category = CweToSinkMapper.GetCategoryForCwe(cweId);
// Assert
category.Should().BeNull();
}
[Fact]
public void GetCategoriesForCwes_MultipleCwes_ReturnsDistinctCategories()
{
// Arrange
var cweIds = new[] { "CWE-120", "CWE-787", "CWE-78", "CWE-89" };
// Act
var categories = CweToSinkMapper.GetCategoriesForCwes(cweIds);
// Assert
categories.Should().Contain(SinkCategory.Memory);
categories.Should().Contain(SinkCategory.CommandInjection);
categories.Should().Contain(SinkCategory.SqlInjection);
categories.Should().OnlyHaveUniqueItems();
}
[Fact]
public void GetSinksForCwes_SinksOrderedAlphabetically()
{
// Arrange
var cweIds = new[] { "CWE-120" };
// Act
var sinks = CweToSinkMapper.GetSinksForCwes(cweIds);
// Assert
sinks.Should().BeInAscendingOrder();
}
}

85
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/Authoring/ExtractionConfidenceTests.cs Normal file
View File

@@ -0,0 +1,85 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using FluentAssertions;
using StellaOps.BinaryIndex.GoldenSet.Authoring;
using Xunit;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit.Authoring;
[Trait("Category", "Unit")]
public sealed class ExtractionConfidenceTests
{
[Fact]
public void Zero_ReturnsAllZeroConfidence()
{
// Act
var confidence = ExtractionConfidence.Zero;
// Assert
confidence.Overall.Should().Be(0);
confidence.FunctionIdentification.Should().Be(0);
confidence.EdgeExtraction.Should().Be(0);
confidence.SinkMapping.Should().Be(0);
}
[Theory]
[InlineData(1.0, 1.0, 1.0, 1.0)] // Perfect scores
[InlineData(0.0, 0.0, 0.0, 0.0)] // Zero scores
[InlineData(0.8, 0.5, 0.6, 0.68)] // Mixed scores: 0.8*0.5 + 0.5*0.2 + 0.6*0.3 = 0.4 + 0.1 + 0.18 = 0.68
public void FromComponents_CalculatesWeightedOverall(
decimal funcId,
decimal edge,
decimal sink,
decimal expectedOverall)
{
// Act
var confidence = ExtractionConfidence.FromComponents(funcId, edge, sink);
// Assert
confidence.FunctionIdentification.Should().Be(funcId);
confidence.EdgeExtraction.Should().Be(edge);
confidence.SinkMapping.Should().Be(sink);
confidence.Overall.Should().BeApproximately(expectedOverall, 0.05m);
}
[Fact]
public void FromComponents_FunctionIdWeightedHighest()
{
// Arrange - only function identification has value
var confidence1 = ExtractionConfidence.FromComponents(1.0m, 0.0m, 0.0m);
// Arrange - only sink mapping has value
var confidence2 = ExtractionConfidence.FromComponents(0.0m, 0.0m, 1.0m);
// Arrange - only edge extraction has value
var confidence3 = ExtractionConfidence.FromComponents(0.0m, 1.0m, 0.0m);
// Assert - function identification should contribute most to overall
confidence1.Overall.Should().BeGreaterThan(confidence2.Overall);
confidence1.Overall.Should().BeGreaterThan(confidence3.Overall);
confidence2.Overall.Should().BeGreaterThan(confidence3.Overall); // Sink > Edge
}
[Fact]
public void FromComponents_RoundsToTwoDecimalPlaces()
{
// Act
var confidence = ExtractionConfidence.FromComponents(0.333m, 0.333m, 0.333m);
// Assert
confidence.Overall.Should().HaveDecimals(2);
}
}
internal static class DecimalExtensions
{
public static void HaveDecimals(this FluentAssertions.Numeric.NumericAssertions<decimal> assertions, int decimals)
{
var value = assertions.Subject;
var multiplied = value * (decimal)Math.Pow(10, decimals);
var rounded = Math.Round(multiplied);
(multiplied == rounded).Should().BeTrue($"Expected {decimals} decimal places, but got more");
}
}

145
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/Authoring/FunctionHintExtractorTests.cs Normal file
View File

@@ -0,0 +1,145 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using FluentAssertions;
using StellaOps.BinaryIndex.GoldenSet.Authoring.Extractors;
using Xunit;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit.Authoring;
[Trait("Category", "Unit")]
public sealed class FunctionHintExtractorTests
{
[Theory]
[InlineData("A vulnerability in the BN_mod_sqrt function allows...", "BN_mod_sqrt")]
[InlineData("in the parse_content function of parser.c", "parse_content")]
[InlineData("The vulnerability exists in the process_request function", "process_request")]
public void ExtractFromDescription_InTheFunctionPattern_ExtractsHint(string description, string expectedFunction)
{
// Act
var hints = FunctionHintExtractor.ExtractFromDescription(description, "test");
// Assert
hints.Should().Contain(h => h.Name.Equals(expectedFunction, StringComparison.OrdinalIgnoreCase));
}
[Theory]
[InlineData("The SSL_connect() function is vulnerable", "SSL_connect")]
[InlineData("calling memcpy() without bounds checking", "memcpy")]
[InlineData("The get_user_data() method fails to validate", "get_user_data")]
public void ExtractFromDescription_FunctionParenPattern_ExtractsHint(string description, string expectedFunction)
{
// Act
var hints = FunctionHintExtractor.ExtractFromDescription(description, "test");
// Assert
hints.Should().Contain(h => h.Name.Equals(expectedFunction, StringComparison.OrdinalIgnoreCase));
}
[Fact]
public void ExtractFromDescription_MultiplePatterns_ReturnsHighestConfidence()
{
// Arrange
var description = "A vulnerability in the process_data function. The process_data() method fails to validate input.";
// Act
var hints = FunctionHintExtractor.ExtractFromDescription(description, "test");
// Assert
hints.Should().Contain(h => h.Name.Equals("process_data", StringComparison.OrdinalIgnoreCase));
var processDataHint = hints.First(h => h.Name.Equals("process_data", StringComparison.OrdinalIgnoreCase));
processDataHint.Confidence.Should().BeGreaterThan(0.8m);
}
[Theory]
[InlineData("")]
[InlineData(" ")]
[InlineData(null)]
public void ExtractFromDescription_EmptyOrNull_ReturnsEmpty(string? description)
{
// Act
var hints = FunctionHintExtractor.ExtractFromDescription(description!, "test");
// Assert
hints.Should().BeEmpty();
}
[Fact]
public void ExtractFromDescription_CommonWords_FilteredOut()
{
// Arrange
var description = "A remote attacker could execute arbitrary code via the buffer overflow.";
// Act
var hints = FunctionHintExtractor.ExtractFromDescription(description, "test");
// Assert
hints.Should().NotContain(h => h.Name.Equals("remote", StringComparison.OrdinalIgnoreCase));
hints.Should().NotContain(h => h.Name.Equals("attacker", StringComparison.OrdinalIgnoreCase));
hints.Should().NotContain(h => h.Name.Equals("buffer", StringComparison.OrdinalIgnoreCase));
hints.Should().NotContain(h => h.Name.Equals("overflow", StringComparison.OrdinalIgnoreCase));
}
[Fact]
public void ExtractFromDescription_SnakeCaseFunctions_ExtractedWithLowerConfidence()
{
// Arrange
var description = "The issue is in process_user_input and validate_token_data handling.";
// Act
var hints = FunctionHintExtractor.ExtractFromDescription(description, "test");
// Assert
hints.Should().Contain(h => h.Name == "process_user_input");
hints.Should().Contain(h => h.Name == "validate_token_data");
}
[Theory]
[InlineData("Fix in BN_mod_sqrt to handle edge case", "BN_mod_sqrt")]
[InlineData("Fixed parse_packet for CVE-2024-1234", "parse_packet")]
[InlineData("Patch process_data() to validate input", "process_data")]
public void ExtractFromCommitMessage_FixPatterns_ExtractsHint(string message, string expectedFunction)
{
// Act
var hints = FunctionHintExtractor.ExtractFromCommitMessage(message, "test");
// Assert
hints.Should().Contain(h => h.Name.Equals(expectedFunction, StringComparison.OrdinalIgnoreCase));
}
[Fact]
public void ExtractFromDescription_OrderedByConfidenceDescending()
{
// Arrange - description with multiple patterns at different confidence levels
var description = "A vulnerability in the parse_input function. The process_data() method and validate_user_data are affected.";
// Act
var hints = FunctionHintExtractor.ExtractFromDescription(description, "test");
// Assert
hints.Should().HaveCountGreaterThanOrEqualTo(2);
// Hints should be ordered by confidence descending
for (var i = 0; i < hints.Length - 1; i++)
{
hints[i].Confidence.Should().BeGreaterThanOrEqualTo(hints[i + 1].Confidence);
}
}
[Fact]
public void ExtractFromDescription_SetsSourceCorrectly()
{
// Arrange
var description = "in the test_function function";
var source = "nvd";
// Act
var hints = FunctionHintExtractor.ExtractFromDescription(description, source);
// Assert
hints.Should().NotBeEmpty();
hints.First().Source.Should().Be(source);
}
}

297
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/Authoring/GoldenSetEnrichmentServiceTests.cs Normal file
View File

@@ -0,0 +1,297 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using FluentAssertions;
using Microsoft.Extensions.Logging.Abstractions;
using Microsoft.Extensions.Options;
using StellaOps.BinaryIndex.GoldenSet.Authoring;
using Xunit;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit.Authoring;
/// <summary>
/// Unit tests for <see cref="GoldenSetEnrichmentService"/>.
/// </summary>
[Trait("Category", "Unit")]
public sealed class GoldenSetEnrichmentServiceTests
{
private readonly IOptions<GoldenSetOptions> _options;
private readonly TimeProvider _timeProvider;
public GoldenSetEnrichmentServiceTests()
{
_options = Options.Create(new GoldenSetOptions
{
Authoring = new GoldenSetAuthoringOptions
{
EnableAiEnrichment = true
}
});
_timeProvider = TimeProvider.System;
}
[Fact]
public void IsAvailable_WhenEnabled_ReturnsTrue()
{
// Arrange
var service = CreateService(enableAi: true);
// Assert
service.IsAvailable.Should().BeTrue();
}
[Fact]
public void IsAvailable_WhenDisabled_ReturnsFalse()
{
// Arrange
var service = CreateService(enableAi: false);
// Assert
service.IsAvailable.Should().BeFalse();
}
[Fact]
public async Task EnrichAsync_WhenDisabled_ReturnsNoChanges()
{
// Arrange
var ct = TestContext.Current.CancellationToken;
var service = CreateService(enableAi: false);
var draft = CreateSampleDraft();
var context = new GoldenSetEnrichmentContext();
// Act
var result = await service.EnrichAsync(draft, context, ct);
// Assert
result.EnrichedDraft.Should().BeSameAs(draft);
result.OverallConfidence.Should().Be(0);
result.AiRationale.Should().Contain("disabled");
}
[Fact]
public async Task EnrichAsync_WithCommitAnalysis_AddsFunctions()
{
// Arrange
var ct = TestContext.Current.CancellationToken;
var service = CreateService(enableAi: true);
var draft = CreateSampleDraft();
var context = new GoldenSetEnrichmentContext
{
CommitAnalysis = new CommitAnalysisResult
{
ModifiedFunctions = ["new_function", "another_function"],
AddedConstants = ["0x1000", "0x2000"],
AddedConditions = ["bounds_check"]
}
};
// Act
var result = await service.EnrichAsync(draft, context, ct);
// Assert
result.EnrichedDraft.Targets.Should().HaveCount(3); // Original + 2 new
result.EnrichedDraft.Targets.Select(t => t.FunctionName)
.Should().Contain("new_function")
.And.Contain("another_function");
result.ActionsApplied.Should().NotBeEmpty();
result.ActionsApplied.Any(a => a.Type == EnrichmentActionTypes.FunctionAdded)
.Should().BeTrue();
}
[Fact]
public async Task EnrichAsync_WithCommitAnalysis_AddsConstants()
{
// Arrange
var ct = TestContext.Current.CancellationToken;
var service = CreateService(enableAi: true);
var draft = CreateSampleDraft();
var context = new GoldenSetEnrichmentContext
{
CommitAnalysis = new CommitAnalysisResult
{
AddedConstants = ["0x1000", "sizeof(buffer)"]
}
};
// Act
var result = await service.EnrichAsync(draft, context, ct);
// Assert
result.EnrichedDraft.Targets[0].Constants.Should().Contain("0x1000");
result.ActionsApplied.Any(a => a.Type == EnrichmentActionTypes.ConstantExtracted)
.Should().BeTrue();
}
[Fact]
public async Task EnrichAsync_WithCweIds_AddsSinks()
{
// Arrange
var ct = TestContext.Current.CancellationToken;
var service = CreateService(enableAi: true);
var draft = CreateSampleDraft();
var context = new GoldenSetEnrichmentContext
{
CweIds = ["CWE-120", "CWE-122"] // Buffer overflow CWEs
};
// Act
var result = await service.EnrichAsync(draft, context, ct);
// Assert
result.EnrichedDraft.Targets[0].Sinks.Should().NotBeEmpty();
result.ActionsApplied.Any(a => a.Type == EnrichmentActionTypes.SinkAdded)
.Should().BeTrue();
}
[Fact]
public async Task EnrichAsync_CalculatesConfidence_FromActions()
{
// Arrange
var ct = TestContext.Current.CancellationToken;
var service = CreateService(enableAi: true);
var draft = CreateSampleDraft();
var context = new GoldenSetEnrichmentContext
{
CommitAnalysis = new CommitAnalysisResult
{
ModifiedFunctions = ["vulnerable_func"]
},
CweIds = ["CWE-787"]
};
// Act
var result = await service.EnrichAsync(draft, context, ct);
// Assert
result.OverallConfidence.Should().BeGreaterThan(0);
result.OverallConfidence.Should().BeLessThanOrEqualTo(1);
}
[Fact]
public async Task EnrichAsync_RemovesUnknownPlaceholder_WhenRealTargetsAdded()
{
// Arrange
var ct = TestContext.Current.CancellationToken;
var service = CreateService(enableAi: true);
var draft = new GoldenSetDefinition
{
Id = "CVE-2024-1234",
Component = "test-component",
Targets =
[
new VulnerableTarget
{
FunctionName = "<unknown>",
Sinks = ["memcpy"]
}
],
Metadata = new GoldenSetMetadata
{
AuthorId = "test",
CreatedAt = DateTimeOffset.UtcNow,
SourceRef = "https://nvd.nist.gov/vuln/detail/CVE-2024-1234",
SchemaVersion = GoldenSetConstants.CurrentSchemaVersion
}
};
var context = new GoldenSetEnrichmentContext
{
CommitAnalysis = new CommitAnalysisResult
{
ModifiedFunctions = ["real_function"]
}
};
// Act
var result = await service.EnrichAsync(draft, context, ct);
// Assert
result.EnrichedDraft.Targets.Should().HaveCount(1);
result.EnrichedDraft.Targets[0].FunctionName.Should().Be("real_function");
result.EnrichedDraft.Targets.Any(t => t.FunctionName == "<unknown>").Should().BeFalse();
}
[Fact]
public async Task EnrichAsync_DoesNotDuplicateExistingFunctions()
{
// Arrange
var ct = TestContext.Current.CancellationToken;
var service = CreateService(enableAi: true);
var draft = CreateSampleDraft(); // Has "vulnerable_function"
var context = new GoldenSetEnrichmentContext
{
CommitAnalysis = new CommitAnalysisResult
{
ModifiedFunctions = ["vulnerable_function", "VULNERABLE_FUNCTION"] // Case-insensitive
}
};
// Act
var result = await service.EnrichAsync(draft, context, ct);
// Assert
result.EnrichedDraft.Targets.Should().HaveCount(1);
result.ActionsApplied.Any(a => a.Type == EnrichmentActionTypes.FunctionAdded)
.Should().BeFalse();
}
private GoldenSetEnrichmentService CreateService(bool enableAi)
{
var options = Options.Create(new GoldenSetOptions
{
Authoring = new GoldenSetAuthoringOptions
{
EnableAiEnrichment = enableAi
}
});
var commitAnalyzer = new MockCommitAnalyzer();
return new GoldenSetEnrichmentService(
commitAnalyzer,
options,
_timeProvider,
NullLogger<GoldenSetEnrichmentService>.Instance);
}
private static GoldenSetDefinition CreateSampleDraft()
{
return new GoldenSetDefinition
{
Id = "CVE-2024-1234",
Component = "test-component",
Targets =
[
new VulnerableTarget
{
FunctionName = "vulnerable_function",
Sinks = ["memcpy"],
Constants = []
}
],
Metadata = new GoldenSetMetadata
{
AuthorId = "test",
CreatedAt = DateTimeOffset.UtcNow,
SourceRef = "https://nvd.nist.gov/vuln/detail/CVE-2024-1234",
SchemaVersion = GoldenSetConstants.CurrentSchemaVersion
}
};
}
private sealed class MockCommitAnalyzer : IUpstreamCommitAnalyzer
{
public Task<CommitAnalysisResult> AnalyzeAsync(
ImmutableArray<string> commitUrls,
CancellationToken ct = default)
{
return Task.FromResult(CommitAnalysisResult.Empty);
}
public ParsedCommitUrl? ParseCommitUrl(string url) => null;
}
}

180
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/Authoring/ReviewWorkflowTests.cs Normal file
View File

@@ -0,0 +1,180 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using FluentAssertions;
using StellaOps.BinaryIndex.GoldenSet.Authoring;
using Xunit;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit.Authoring;
[Trait("Category", "Unit")]
public sealed class ReviewWorkflowTests
{
[Theory]
[InlineData(GoldenSetStatus.Draft, GoldenSetStatus.InReview, true)]
[InlineData(GoldenSetStatus.InReview, GoldenSetStatus.Approved, true)]
[InlineData(GoldenSetStatus.InReview, GoldenSetStatus.Draft, true)]
[InlineData(GoldenSetStatus.Approved, GoldenSetStatus.Deprecated, true)]
[InlineData(GoldenSetStatus.Deprecated, GoldenSetStatus.Archived, true)]
public void IsValidTransition_ValidTransitions_ReturnsTrue(
GoldenSetStatus from,
GoldenSetStatus to,
bool expected)
{
// Arrange
var service = CreateReviewService();
// Act
var result = service.IsValidTransition(from, to);
// Assert
result.Should().Be(expected);
}
[Theory]
[InlineData(GoldenSetStatus.Draft, GoldenSetStatus.Approved)] // Must go through InReview
[InlineData(GoldenSetStatus.Draft, GoldenSetStatus.Deprecated)]
[InlineData(GoldenSetStatus.Approved, GoldenSetStatus.Draft)] // No going back
[InlineData(GoldenSetStatus.Approved, GoldenSetStatus.InReview)]
[InlineData(GoldenSetStatus.Archived, GoldenSetStatus.Draft)] // Terminal state
[InlineData(GoldenSetStatus.Archived, GoldenSetStatus.Approved)]
public void IsValidTransition_InvalidTransitions_ReturnsFalse(
GoldenSetStatus from,
GoldenSetStatus to)
{
// Arrange
var service = CreateReviewService();
// Act
var result = service.IsValidTransition(from, to);
// Assert
result.Should().BeFalse();
}
[Fact]
public void ReviewSubmissionResult_Successful_HasCorrectProperties()
{
// Act
var result = ReviewSubmissionResult.Successful(GoldenSetStatus.InReview);
// Assert
result.Success.Should().BeTrue();
result.NewStatus.Should().Be(GoldenSetStatus.InReview);
result.Error.Should().BeNull();
result.ValidationErrors.Should().BeEmpty();
}
[Fact]
public void ReviewSubmissionResult_Failed_HasCorrectProperties()
{
// Arrange
var errors = new[] { "Error 1", "Error 2" }.ToImmutableArray();
// Act
var result = ReviewSubmissionResult.Failed("Validation failed", errors);
// Assert
result.Success.Should().BeFalse();
result.NewStatus.Should().BeNull();
result.Error.Should().Be("Validation failed");
result.ValidationErrors.Should().BeEquivalentTo(errors);
}
[Fact]
public void ReviewDecisionResult_Successful_HasCorrectProperties()
{
// Act
var result = ReviewDecisionResult.Successful(GoldenSetStatus.Approved);
// Assert
result.Success.Should().BeTrue();
result.NewStatus.Should().Be(GoldenSetStatus.Approved);
result.Error.Should().BeNull();
}
[Fact]
public void ReviewDecisionResult_Failed_HasCorrectProperties()
{
// Act
var result = ReviewDecisionResult.Failed("Not authorized");
// Assert
result.Success.Should().BeFalse();
result.NewStatus.Should().BeNull();
result.Error.Should().Be("Not authorized");
}
[Fact]
public void ChangeRequest_HasRequiredProperties()
{
// Act
var change = new ChangeRequest
{
Field = "targets[0].sinks",
CurrentValue = "memcpy",
SuggestedValue = "memcpy,strcpy",
Comment = "Add strcpy to the sink list"
};
// Assert
change.Field.Should().Be("targets[0].sinks");
change.CurrentValue.Should().Be("memcpy");
change.SuggestedValue.Should().Be("memcpy,strcpy");
change.Comment.Should().Be("Add strcpy to the sink list");
}
[Fact]
public void ReviewHistoryEntry_HasRequiredProperties()
{
// Arrange
var timestamp = DateTimeOffset.UtcNow;
// Act
var entry = new ReviewHistoryEntry
{
Action = ReviewActions.Approved,
ActorId = "reviewer@example.com",
Timestamp = timestamp,
OldStatus = GoldenSetStatus.InReview,
NewStatus = GoldenSetStatus.Approved,
Comments = "LGTM"
};
// Assert
entry.Action.Should().Be(ReviewActions.Approved);
entry.ActorId.Should().Be("reviewer@example.com");
entry.Timestamp.Should().Be(timestamp);
entry.OldStatus.Should().Be(GoldenSetStatus.InReview);
entry.NewStatus.Should().Be(GoldenSetStatus.Approved);
entry.Comments.Should().Be("LGTM");
}
[Fact]
public void ReviewActions_ContainsAllExpectedValues()
{
// Assert
ReviewActions.Created.Should().Be("created");
ReviewActions.Updated.Should().Be("updated");
ReviewActions.Submitted.Should().Be("submitted");
ReviewActions.Approved.Should().Be("approved");
ReviewActions.ChangesRequested.Should().Be("changes_requested");
ReviewActions.Published.Should().Be("published");
ReviewActions.Deprecated.Should().Be("deprecated");
ReviewActions.Archived.Should().Be("archived");
}
private static GoldenSetReviewService CreateReviewService()
{
// Create a minimal review service for testing state transitions
// Note: Store, validator, etc. are not used for IsValidTransition
return new GoldenSetReviewService(
store: null!,
validator: null!,
timeProvider: TimeProvider.System,
logger: Microsoft.Extensions.Logging.Abstractions.NullLogger<GoldenSetReviewService>.Instance);
}
}

227
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/Authoring/UpstreamCommitAnalyzerTests.cs Normal file
View File

@@ -0,0 +1,227 @@
// Licensed under AGPL-3.0-or-later. Copyright (C) 2026 StellaOps Contributors.
using System.Collections.Immutable;
using FluentAssertions;
using StellaOps.BinaryIndex.GoldenSet.Authoring;
using Xunit;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit.Authoring;
/// <summary>
/// Unit tests for <see cref="UpstreamCommitAnalyzer"/> URL parsing.
/// </summary>
[Trait("Category", "Unit")]
public sealed class UpstreamCommitAnalyzerTests
{
[Theory]
[InlineData(
"https://github.com/curl/curl/commit/abc123def456",
"github", "curl", "curl", "abc123def456")]
[InlineData(
"https://github.com/torvalds/linux/commit/1234567890abcdef",
"github", "torvalds", "linux", "1234567890abcdef")]
[InlineData(
"https://GITHUB.COM/Owner/Repo/commit/ABC123D",
"github", "Owner", "Repo", "ABC123D")]
public void ParseCommitUrl_GitHub_ExtractsCorrectly(
string url,
string expectedHost,
string expectedOwner,
string expectedRepo,
string expectedHash)
{
// Arrange
var analyzer = CreateAnalyzer();
// Act
var result = analyzer.ParseCommitUrl(url);
// Assert
result.Should().NotBeNull();
result!.Host.Should().Be(expectedHost);
result.Owner.Should().Be(expectedOwner);
result.Repo.Should().Be(expectedRepo);
result.Hash.Should().Be(expectedHash);
}
[Theory]
[InlineData(
"https://gitlab.com/gnome/glib/-/commit/abc123def456",
"gitlab", "gnome", "glib", "abc123def456")]
[InlineData(
"https://gitlab.com/owner/project/-/commit/1234567",
"gitlab", "owner", "project", "1234567")]
public void ParseCommitUrl_GitLab_ExtractsCorrectly(
string url,
string expectedHost,
string expectedOwner,
string expectedRepo,
string expectedHash)
{
// Arrange
var analyzer = CreateAnalyzer();
// Act
var result = analyzer.ParseCommitUrl(url);
// Assert
result.Should().NotBeNull();
result!.Host.Should().Be(expectedHost);
result.Owner.Should().Be(expectedOwner);
result.Repo.Should().Be(expectedRepo);
result.Hash.Should().Be(expectedHash);
}
[Theory]
[InlineData(
"https://bitbucket.org/owner/repo/commits/abc123def456",
"bitbucket", "owner", "repo", "abc123def456")]
public void ParseCommitUrl_Bitbucket_ExtractsCorrectly(
string url,
string expectedHost,
string expectedOwner,
string expectedRepo,
string expectedHash)
{
// Arrange
var analyzer = CreateAnalyzer();
// Act
var result = analyzer.ParseCommitUrl(url);
// Assert
result.Should().NotBeNull();
result!.Host.Should().Be(expectedHost);
result.Owner.Should().Be(expectedOwner);
result.Repo.Should().Be(expectedRepo);
result.Hash.Should().Be(expectedHash);
}
[Theory]
[InlineData(null)]
[InlineData("")]
[InlineData(" ")]
[InlineData("not a url")]
[InlineData("https://example.com/something")]
[InlineData("https://github.com/owner/repo")] // Missing commit part
public void ParseCommitUrl_InvalidUrl_ReturnsNull(string? url)
{
// Arrange
var analyzer = CreateAnalyzer();
// Act
var result = analyzer.ParseCommitUrl(url!);
// Assert
result.Should().BeNull();
}
[Fact]
public void ParsedCommitUrl_GetApiUrl_ReturnsCorrectGitHubApiUrl()
{
// Arrange
var parsed = new ParsedCommitUrl
{
Host = "github",
Owner = "curl",
Repo = "curl",
Hash = "abc123",
OriginalUrl = "https://github.com/curl/curl/commit/abc123"
};
// Act
var apiUrl = parsed.GetApiUrl();
// Assert
apiUrl.Should().Be("https://api.github.com/repos/curl/curl/commits/abc123");
}
[Fact]
public void ParsedCommitUrl_GetDiffUrl_ReturnsCorrectGitHubDiffUrl()
{
// Arrange
var parsed = new ParsedCommitUrl
{
Host = "github",
Owner = "curl",
Repo = "curl",
Hash = "abc123",
OriginalUrl = "https://github.com/curl/curl/commit/abc123"
};
// Act
var diffUrl = parsed.GetDiffUrl();
// Assert
diffUrl.Should().Be("https://github.com/curl/curl/commit/abc123.diff");
}
[Fact]
public void ParsedCommitUrl_GetDiffUrl_ReturnsCorrectGitLabDiffUrl()
{
// Arrange
var parsed = new ParsedCommitUrl
{
Host = "gitlab",
Owner = "gnome",
Repo = "glib",
Hash = "def456",
OriginalUrl = "https://gitlab.com/gnome/glib/-/commit/def456"
};
// Act
var diffUrl = parsed.GetDiffUrl();
// Assert
diffUrl.Should().Be("https://gitlab.com/gnome/glib/-/commit/def456.diff");
}
[Fact]
public async Task AnalyzeAsync_EmptyCommitUrls_ReturnsEmptyResult()
{
// Arrange
var ct = TestContext.Current.CancellationToken;
var analyzer = CreateAnalyzer();
// Act
var result = await analyzer.AnalyzeAsync([], ct);
// Assert
result.Should().Be(CommitAnalysisResult.Empty);
result.Commits.Should().BeEmpty();
result.ModifiedFunctions.Should().BeEmpty();
}
[Fact]
public async Task AnalyzeAsync_InvalidUrl_AddsWarning()
{
// Arrange
var ct = TestContext.Current.CancellationToken;
var analyzer = CreateAnalyzer();
// Act
var result = await analyzer.AnalyzeAsync(["not-a-valid-url"], ct);
// Assert
result.Warnings.Should().NotBeEmpty();
result.Warnings[0].Should().Contain("Could not parse commit URL");
}
private static UpstreamCommitAnalyzer CreateAnalyzer()
{
// Create with mocks for testing URL parsing (no HTTP calls)
var httpClientFactory = new MockHttpClientFactory();
var timeProvider = TimeProvider.System;
var logger = Microsoft.Extensions.Logging.Abstractions.NullLogger<UpstreamCommitAnalyzer>.Instance;
return new UpstreamCommitAnalyzer(httpClientFactory, timeProvider, logger);
}
private sealed class MockHttpClientFactory : System.Net.Http.IHttpClientFactory
{
public System.Net.Http.HttpClient CreateClient(string name) => new();
}
}

263
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/GoldenSetDefinitionTests.cs Normal file
View File

@@ -0,0 +1,263 @@
using System.Collections.Immutable;
using FluentAssertions;
using StellaOps.BinaryIndex.GoldenSet;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit;
/// <summary>
/// Unit tests for GoldenSetDefinition and related models.
/// </summary>
[Trait("Category", "Unit")]
public sealed class GoldenSetDefinitionTests
{
[Fact]
public void GoldenSetDefinition_CanBeCreated_WithRequiredProperties()
{
// Arrange & Act
var definition = CreateValidDefinition();
// Assert
definition.Id.Should().Be("CVE-2024-0727");
definition.Component.Should().Be("openssl");
definition.Targets.Should().HaveCount(1);
definition.Metadata.AuthorId.Should().Be("test@example.com");
}
[Fact]
public void GoldenSetDefinition_IsImmutable()
{
// Arrange
var definition = CreateValidDefinition();
// Act
var modified = definition with { Component = "modified" };
// Assert
definition.Component.Should().Be("openssl");
modified.Component.Should().Be("modified");
}
[Fact]
public void VulnerableTarget_CanBeCreated_WithMinimalProperties()
{
// Arrange & Act
var target = new VulnerableTarget
{
FunctionName = "vulnerable_function"
};
// Assert
target.FunctionName.Should().Be("vulnerable_function");
target.Edges.Should().BeEmpty();
target.Sinks.Should().BeEmpty();
target.Constants.Should().BeEmpty();
target.TaintInvariant.Should().BeNull();
}
[Fact]
public void VulnerableTarget_CanBeCreated_WithAllProperties()
{
// Arrange & Act
var target = new VulnerableTarget
{
FunctionName = "PKCS12_parse",
Edges = [BasicBlockEdge.Parse("bb3->bb7"), BasicBlockEdge.Parse("bb7->bb9")],
Sinks = ["memcpy", "OPENSSL_malloc"],
Constants = ["0x400", "0xdeadbeef"],
TaintInvariant = "len(field) <= 0x400 required before memcpy",
SourceFile = "crypto/pkcs12/p12_kiss.c",
SourceLine = 142
};
// Assert
target.FunctionName.Should().Be("PKCS12_parse");
target.Edges.Should().HaveCount(2);
target.Sinks.Should().HaveCount(2);
target.Constants.Should().HaveCount(2);
target.TaintInvariant.Should().NotBeNullOrEmpty();
target.SourceFile.Should().Be("crypto/pkcs12/p12_kiss.c");
target.SourceLine.Should().Be(142);
}
[Fact]
public void BasicBlockEdge_Parse_ValidFormat_ReturnsEdge()
{
// Arrange & Act
var edge = BasicBlockEdge.Parse("bb3->bb7");
// Assert
edge.From.Should().Be("bb3");
edge.To.Should().Be("bb7");
}
[Fact]
public void BasicBlockEdge_Parse_WithSpaces_TrimsAndReturnsEdge()
{
// Arrange & Act
var edge = BasicBlockEdge.Parse(" bb3 -> bb7 ");
// Assert
edge.From.Should().Be("bb3");
edge.To.Should().Be("bb7");
}
[Theory]
[InlineData("")]
[InlineData(" ")]
[InlineData("bb3")]
[InlineData("bb3-bb7")]
[InlineData("->bb7")]
[InlineData("bb3->")]
public void BasicBlockEdge_Parse_InvalidFormat_ThrowsFormatException(string input)
{
// Arrange & Act
var act = () => BasicBlockEdge.Parse(input);
// Assert
act.Should().Throw<Exception>();
}
[Fact]
public void BasicBlockEdge_TryParse_ValidFormat_ReturnsTrueAndEdge()
{
// Arrange & Act
var success = BasicBlockEdge.TryParse("bb3->bb7", out var edge);
// Assert
success.Should().BeTrue();
edge.Should().NotBeNull();
edge!.From.Should().Be("bb3");
edge.To.Should().Be("bb7");
}
[Theory]
[InlineData(null)]
[InlineData("")]
[InlineData(" ")]
[InlineData("bb3")]
[InlineData("bb3-bb7")]
public void BasicBlockEdge_TryParse_InvalidFormat_ReturnsFalse(string? input)
{
// Arrange & Act
var success = BasicBlockEdge.TryParse(input, out var edge);
// Assert
success.Should().BeFalse();
edge.Should().BeNull();
}
[Fact]
public void BasicBlockEdge_ToString_ReturnsCorrectFormat()
{
// Arrange
var edge = new BasicBlockEdge { From = "bb3", To = "bb7" };
// Act
var result = edge.ToString();
// Assert
result.Should().Be("bb3->bb7");
}
[Fact]
public void WitnessInput_CanBeCreated_WithDefaultValues()
{
// Arrange & Act
var witness = new WitnessInput();
// Assert
witness.Arguments.Should().BeEmpty();
witness.Invariant.Should().BeNull();
witness.PocFileRef.Should().BeNull();
}
[Fact]
public void GoldenSetMetadata_CanBeCreated_WithRequiredProperties()
{
// Arrange & Act
var metadata = new GoldenSetMetadata
{
AuthorId = "test@example.com",
CreatedAt = DateTimeOffset.UtcNow,
SourceRef = "https://nvd.nist.gov/vuln/detail/CVE-2024-0727"
};
// Assert
metadata.AuthorId.Should().Be("test@example.com");
metadata.SourceRef.Should().StartWith("https://");
metadata.SchemaVersion.Should().Be(GoldenSetConstants.CurrentSchemaVersion);
metadata.Tags.Should().BeEmpty();
metadata.ReviewedBy.Should().BeNull();
metadata.ReviewedAt.Should().BeNull();
}
[Theory]
[InlineData(GoldenSetStatus.Draft)]
[InlineData(GoldenSetStatus.InReview)]
[InlineData(GoldenSetStatus.Approved)]
[InlineData(GoldenSetStatus.Deprecated)]
[InlineData(GoldenSetStatus.Archived)]
public void GoldenSetStatus_AllValues_AreDefined(GoldenSetStatus status)
{
// Assert
Enum.IsDefined(status).Should().BeTrue();
}
[Fact]
public void GoldenSetConstants_CurrentSchemaVersion_IsValid()
{
// Assert
GoldenSetConstants.CurrentSchemaVersion.Should().Be("1.0.0");
}
[Fact]
public void GoldenSetConstants_CveIdPattern_MatchesValidCves()
{
// Arrange
var regex = new System.Text.RegularExpressions.Regex(GoldenSetConstants.CveIdPattern);
// Act & Assert
regex.IsMatch("CVE-2024-0727").Should().BeTrue();
regex.IsMatch("CVE-2024-12345").Should().BeTrue();
regex.IsMatch("CVE-1999-0001").Should().BeTrue();
regex.IsMatch("cve-2024-0727").Should().BeFalse(); // Case sensitive
regex.IsMatch("CVE-24-0727").Should().BeFalse(); // Year too short
regex.IsMatch("CVE-2024-07").Should().BeFalse(); // ID too short
}
[Fact]
public void GoldenSetConstants_GhsaIdPattern_MatchesValidGhsas()
{
// Arrange
var regex = new System.Text.RegularExpressions.Regex(GoldenSetConstants.GhsaIdPattern);
// Act & Assert
regex.IsMatch("GHSA-abcd-efgh-ijkl").Should().BeTrue();
regex.IsMatch("GHSA-1234-5678-90ab").Should().BeTrue();
regex.IsMatch("ghsa-abcd-efgh-ijkl").Should().BeFalse(); // Case sensitive
regex.IsMatch("GHSA-abc-efgh-ijkl").Should().BeFalse(); // Segment too short
}
private static GoldenSetDefinition CreateValidDefinition() => new()
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets =
[
new VulnerableTarget
{
FunctionName = "PKCS12_parse",
Edges = [BasicBlockEdge.Parse("bb3->bb7")],
Sinks = ["memcpy"]
}
],
Metadata = new GoldenSetMetadata
{
AuthorId = "test@example.com",
CreatedAt = new DateTimeOffset(2026, 1, 10, 12, 0, 0, TimeSpan.Zero),
SourceRef = "https://nvd.nist.gov/vuln/detail/CVE-2024-0727"
}
};
}

377
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/GoldenSetValidatorTests.cs Normal file
View File

@@ -0,0 +1,377 @@
using System.Collections.Immutable;
using FluentAssertions;
using Microsoft.Extensions.Caching.Memory;
using Microsoft.Extensions.Logging.Abstractions;
using Microsoft.Extensions.Options;
using StellaOps.BinaryIndex.GoldenSet;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit;
/// <summary>
/// Unit tests for GoldenSetValidator.
/// </summary>
[Trait("Category", "Unit")]
public sealed class GoldenSetValidatorTests
{
private readonly ISinkRegistry _sinkRegistry;
private readonly IOptions<GoldenSetOptions> _options;
private readonly IGoldenSetValidator _validator;
public GoldenSetValidatorTests()
{
var cache = new MemoryCache(new MemoryCacheOptions());
_sinkRegistry = new SinkRegistry(cache, NullLogger<SinkRegistry>.Instance);
_options = Options.Create(new GoldenSetOptions());
_validator = new GoldenSetValidator(
_sinkRegistry,
_options,
NullLogger<GoldenSetValidator>.Instance);
}
[Fact]
public async Task ValidateAsync_ValidDefinition_ReturnsSuccess()
{
// Arrange
var definition = CreateValidDefinition();
var options = new ValidationOptions { OfflineMode = true };
// Act
var result = await _validator.ValidateAsync(definition, options, TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeTrue();
result.Errors.Should().BeEmpty();
result.ContentDigest.Should().StartWith("sha256:");
result.ParsedDefinition.Should().NotBeNull();
result.ParsedDefinition!.ContentDigest.Should().Be(result.ContentDigest);
}
[Fact]
public async Task ValidateAsync_MissingId_ReturnsError()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "",
Component = "openssl",
Targets = [new VulnerableTarget { FunctionName = "test" }],
Metadata = CreateValidMetadata()
};
// Act
var result = await _validator.ValidateAsync(definition, ct: TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeFalse();
result.Errors.Should().Contain(e => e.Code == ValidationErrorCodes.RequiredFieldMissing && e.Path == "id");
}
[Fact]
public async Task ValidateAsync_MissingComponent_ReturnsError()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "",
Targets = [new VulnerableTarget { FunctionName = "test" }],
Metadata = CreateValidMetadata()
};
// Act
var result = await _validator.ValidateAsync(definition, ct: TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeFalse();
result.Errors.Should().Contain(e => e.Code == ValidationErrorCodes.RequiredFieldMissing && e.Path == "component");
}
[Fact]
public async Task ValidateAsync_EmptyTargets_ReturnsError()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets = [],
Metadata = CreateValidMetadata()
};
// Act
var result = await _validator.ValidateAsync(definition, ct: TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeFalse();
result.Errors.Should().Contain(e => e.Code == ValidationErrorCodes.NoTargets);
}
[Theory]
[InlineData("CVE-2024-0727")]
[InlineData("CVE-2024-12345")]
[InlineData("GHSA-abcd-efgh-ijkl")]
public async Task ValidateAsync_ValidIdFormat_DoesNotReturnIdFormatError(string id)
{
// Arrange
var definition = CreateValidDefinition() with { Id = id };
var options = new ValidationOptions { OfflineMode = true };
// Act
var result = await _validator.ValidateAsync(definition, options, TestContext.Current.CancellationToken);
// Assert
result.Errors.Should().NotContain(e => e.Code == ValidationErrorCodes.InvalidIdFormat);
}
[Theory]
[InlineData("invalid")]
[InlineData("cve-2024-0727")]
[InlineData("CVE-24-0727")]
[InlineData("CVE-2024")]
public async Task ValidateAsync_InvalidIdFormat_ReturnsError(string id)
{
// Arrange
var definition = CreateValidDefinition() with { Id = id };
// Act
var result = await _validator.ValidateAsync(definition, ct: TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeFalse();
result.Errors.Should().Contain(e => e.Code == ValidationErrorCodes.InvalidIdFormat);
}
[Fact]
public async Task ValidateAsync_EmptyFunctionName_ReturnsError()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets = [new VulnerableTarget { FunctionName = "" }],
Metadata = CreateValidMetadata()
};
// Act
var result = await _validator.ValidateAsync(definition, ct: TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeFalse();
result.Errors.Should().Contain(e => e.Code == ValidationErrorCodes.EmptyFunctionName);
}
[Fact]
public async Task ValidateAsync_InvalidEdgeFormat_ReturnsError()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets =
[
new VulnerableTarget
{
FunctionName = "test",
Edges = [new BasicBlockEdge { From = "invalid", To = "bb7" }]
}
],
Metadata = CreateValidMetadata()
};
var options = new ValidationOptions { StrictEdgeFormat = true, OfflineMode = true };
// Act
var result = await _validator.ValidateAsync(definition, options, TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeFalse();
result.Errors.Should().Contain(e => e.Code == ValidationErrorCodes.InvalidEdgeFormat);
}
[Fact]
public async Task ValidateAsync_UnknownSink_ReturnsWarning()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets =
[
new VulnerableTarget
{
FunctionName = "test",
Edges = [BasicBlockEdge.Parse("bb1->bb2")],
Sinks = ["unknown_sink_function"]
}
],
Metadata = CreateValidMetadata()
};
var options = new ValidationOptions { ValidateSinks = true, OfflineMode = true };
// Act
var result = await _validator.ValidateAsync(definition, options, TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeTrue(); // Warnings don't block validation
result.Warnings.Should().Contain(w => w.Code == ValidationWarningCodes.UnknownSink);
}
[Fact]
public async Task ValidateAsync_KnownSink_DoesNotReturnWarning()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets =
[
new VulnerableTarget
{
FunctionName = "test",
Edges = [BasicBlockEdge.Parse("bb1->bb2")],
Sinks = ["memcpy"] // Known sink
}
],
Metadata = CreateValidMetadata()
};
var options = new ValidationOptions { ValidateSinks = true, OfflineMode = true };
// Act
var result = await _validator.ValidateAsync(definition, options, TestContext.Current.CancellationToken);
// Assert
result.Warnings.Should().NotContain(w => w.Code == ValidationWarningCodes.UnknownSink);
}
[Fact]
public async Task ValidateAsync_MissingMetadataAuthorId_ReturnsError()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets = [new VulnerableTarget { FunctionName = "test" }],
Metadata = new GoldenSetMetadata
{
AuthorId = "",
CreatedAt = DateTimeOffset.UtcNow,
SourceRef = "https://example.com"
}
};
// Act
var result = await _validator.ValidateAsync(definition, ct: TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeFalse();
result.Errors.Should().Contain(e => e.Code == ValidationErrorCodes.RequiredFieldMissing && e.Path == "metadata.author_id");
}
[Fact]
public async Task ValidateAsync_InvalidTimestamp_ReturnsError()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets = [new VulnerableTarget { FunctionName = "test" }],
Metadata = new GoldenSetMetadata
{
AuthorId = "test@example.com",
CreatedAt = default, // Invalid
SourceRef = "https://example.com"
}
};
// Act
var result = await _validator.ValidateAsync(definition, ct: TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeFalse();
result.Errors.Should().Contain(e => e.Code == ValidationErrorCodes.InvalidTimestamp);
}
[Fact]
public async Task ValidateAsync_ContentDigest_IsDeterministic()
{
// Arrange
var definition = CreateValidDefinition();
var options = new ValidationOptions { OfflineMode = true };
// Act
var result1 = await _validator.ValidateAsync(definition, options, TestContext.Current.CancellationToken);
var result2 = await _validator.ValidateAsync(definition, options, TestContext.Current.CancellationToken);
// Assert
result1.ContentDigest.Should().Be(result2.ContentDigest);
}
[Fact]
public async Task ValidateAsync_DifferentDefinitions_HaveDifferentDigests()
{
// Arrange
var definition1 = CreateValidDefinition();
var definition2 = definition1 with { Component = "different-component" };
var options = new ValidationOptions { OfflineMode = true };
// Act
var result1 = await _validator.ValidateAsync(definition1, options, TestContext.Current.CancellationToken);
var result2 = await _validator.ValidateAsync(definition2, options, TestContext.Current.CancellationToken);
// Assert
result1.ContentDigest.Should().NotBe(result2.ContentDigest);
}
[Fact]
public async Task ValidateAsync_NoEdgesOrSinks_ReturnsWarnings()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets = [new VulnerableTarget { FunctionName = "test" }],
Metadata = CreateValidMetadata()
};
var options = new ValidationOptions { OfflineMode = true };
// Act
var result = await _validator.ValidateAsync(definition, options, TestContext.Current.CancellationToken);
// Assert
result.IsValid.Should().BeTrue();
result.Warnings.Should().Contain(w => w.Code == ValidationWarningCodes.NoEdges);
result.Warnings.Should().Contain(w => w.Code == ValidationWarningCodes.NoSinks);
}
private static GoldenSetDefinition CreateValidDefinition() => new()
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets =
[
new VulnerableTarget
{
FunctionName = "PKCS12_parse",
Edges = [BasicBlockEdge.Parse("bb3->bb7")],
Sinks = ["memcpy"]
}
],
Metadata = CreateValidMetadata()
};
private static GoldenSetMetadata CreateValidMetadata() => new()
{
AuthorId = "test@example.com",
CreatedAt = new DateTimeOffset(2026, 1, 10, 12, 0, 0, TimeSpan.Zero),
SourceRef = "https://nvd.nist.gov/vuln/detail/CVE-2024-0727"
};
}

278
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/GoldenSetYamlSerializerTests.cs Normal file
View File

@@ -0,0 +1,278 @@
using FluentAssertions;
using StellaOps.BinaryIndex.GoldenSet;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit;
/// <summary>
/// Unit tests for GoldenSetYamlSerializer.
/// </summary>
[Trait("Category", "Unit")]
public sealed class GoldenSetYamlSerializerTests
{
private const string ValidYaml = """
id: CVE-2024-0727
component: openssl
targets:
- function: PKCS12_parse
edges:
- bb3->bb7
- bb7->bb9
sinks:
- memcpy
- OPENSSL_malloc
constants:
- '0x400'
- '0xdeadbeef'
taint_invariant: len(field) <= 0x400 required before memcpy
source_file: crypto/pkcs12/p12_kiss.c
source_line: 142
- function: PKCS12_unpack_p7data
edges:
- bb1->bb3
sinks:
- d2i_ASN1_OCTET_STRING
witness:
arguments:
- --file
- <fuzz.bin>
invariant: Malformed PKCS12 with oversized authsafe
poc_file_ref: 'sha256:abc123def456abc123def456abc123def456abc123def456abc123def456abc123'
metadata:
author_id: security-team@example.com
created_at: '2025-01-10T12:00:00Z'
source_ref: https://nvd.nist.gov/vuln/detail/CVE-2024-0727
reviewed_by: senior-analyst@example.com
reviewed_at: '2025-01-11T09:00:00Z'
tags:
- memory-corruption
- heap-overflow
- pkcs12
schema_version: '1.0.0'
""";
[Fact]
public void Deserialize_ValidYaml_ReturnsDefinition()
{
// Act
var definition = GoldenSetYamlSerializer.Deserialize(ValidYaml);
// Assert
definition.Id.Should().Be("CVE-2024-0727");
definition.Component.Should().Be("openssl");
definition.Targets.Should().HaveCount(2);
definition.Witness.Should().NotBeNull();
definition.Metadata.AuthorId.Should().Be("security-team@example.com");
}
[Fact]
public void Deserialize_ParsesTargets_Correctly()
{
// Act
var definition = GoldenSetYamlSerializer.Deserialize(ValidYaml);
// Assert
var target1 = definition.Targets[0];
target1.FunctionName.Should().Be("PKCS12_parse");
target1.Edges.Should().HaveCount(2);
target1.Edges[0].ToString().Should().Be("bb3->bb7");
target1.Edges[1].ToString().Should().Be("bb7->bb9");
target1.Sinks.Should().Contain("memcpy");
target1.Sinks.Should().Contain("OPENSSL_malloc");
target1.Constants.Should().Contain("0x400");
target1.TaintInvariant.Should().Be("len(field) <= 0x400 required before memcpy");
target1.SourceFile.Should().Be("crypto/pkcs12/p12_kiss.c");
target1.SourceLine.Should().Be(142);
}
[Fact]
public void Deserialize_ParsesWitness_Correctly()
{
// Act
var definition = GoldenSetYamlSerializer.Deserialize(ValidYaml);
// Assert
definition.Witness.Should().NotBeNull();
definition.Witness!.Arguments.Should().Contain("--file");
definition.Witness.Arguments.Should().Contain("<fuzz.bin>");
definition.Witness.Invariant.Should().Be("Malformed PKCS12 with oversized authsafe");
definition.Witness.PocFileRef.Should().StartWith("sha256:");
}
[Fact]
public void Deserialize_ParsesMetadata_Correctly()
{
// Act
var definition = GoldenSetYamlSerializer.Deserialize(ValidYaml);
// Assert
definition.Metadata.AuthorId.Should().Be("security-team@example.com");
definition.Metadata.CreatedAt.Should().Be(new DateTimeOffset(2025, 1, 10, 12, 0, 0, TimeSpan.Zero));
definition.Metadata.SourceRef.Should().Be("https://nvd.nist.gov/vuln/detail/CVE-2024-0727");
definition.Metadata.ReviewedBy.Should().Be("senior-analyst@example.com");
definition.Metadata.ReviewedAt.Should().Be(new DateTimeOffset(2025, 1, 11, 9, 0, 0, TimeSpan.Zero));
definition.Metadata.Tags.Should().Contain("memory-corruption");
definition.Metadata.Tags.Should().Contain("heap-overflow");
definition.Metadata.Tags.Should().Contain("pkcs12");
definition.Metadata.SchemaVersion.Should().Be("1.0.0");
}
[Fact]
public void Serialize_ValidDefinition_ProducesYaml()
{
// Arrange
var definition = CreateValidDefinition();
// Act
var yaml = GoldenSetYamlSerializer.Serialize(definition);
// Assert
yaml.Should().Contain("id: CVE-2024-0727");
yaml.Should().Contain("component: openssl");
yaml.Should().Contain("function: PKCS12_parse");
yaml.Should().Contain("author_id: test@example.com");
}
[Fact]
public void RoundTrip_PreservesAllData()
{
// Arrange
var original = CreateValidDefinition();
// Act
var yaml = GoldenSetYamlSerializer.Serialize(original);
var restored = GoldenSetYamlSerializer.Deserialize(yaml);
// Assert
restored.Id.Should().Be(original.Id);
restored.Component.Should().Be(original.Component);
restored.Targets.Should().HaveCount(original.Targets.Length);
restored.Targets[0].FunctionName.Should().Be(original.Targets[0].FunctionName);
restored.Targets[0].Edges.Should().HaveCount(original.Targets[0].Edges.Length);
restored.Targets[0].Edges[0].ToString().Should().Be(original.Targets[0].Edges[0].ToString());
restored.Metadata.AuthorId.Should().Be(original.Metadata.AuthorId);
}
[Fact]
public void Deserialize_MinimalYaml_ReturnsDefinition()
{
// Arrange
const string minimalYaml = """
id: CVE-2024-0727
component: openssl
targets:
- function: vulnerable_function
metadata:
author_id: test@example.com
created_at: '2025-01-10T12:00:00Z'
source_ref: https://example.com
""";
// Act
var definition = GoldenSetYamlSerializer.Deserialize(minimalYaml);
// Assert
definition.Id.Should().Be("CVE-2024-0727");
definition.Component.Should().Be("openssl");
definition.Targets.Should().HaveCount(1);
definition.Targets[0].FunctionName.Should().Be("vulnerable_function");
definition.Targets[0].Edges.Should().BeEmpty();
definition.Targets[0].Sinks.Should().BeEmpty();
definition.Witness.Should().BeNull();
}
[Theory]
[InlineData("")]
[InlineData(" ")]
public void Deserialize_EmptyOrWhitespace_ThrowsArgumentException(string yaml)
{
// Act
var act = () => GoldenSetYamlSerializer.Deserialize(yaml);
// Assert
act.Should().Throw<ArgumentException>();
}
[Fact]
public void Deserialize_MissingRequiredField_ThrowsInvalidOperationException()
{
// Arrange
const string invalidYaml = """
component: openssl
targets:
- function: test
metadata:
author_id: test@example.com
created_at: '2025-01-10T12:00:00Z'
source_ref: https://example.com
""";
// Act
var act = () => GoldenSetYamlSerializer.Deserialize(invalidYaml);
// Assert
act.Should().Throw<InvalidOperationException>()
.WithMessage("*id*");
}
[Fact]
public void Serialize_OmitsNullAndEmptyValues()
{
// Arrange
var definition = new GoldenSetDefinition
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets =
[
new VulnerableTarget { FunctionName = "test" }
],
Metadata = new GoldenSetMetadata
{
AuthorId = "test@example.com",
CreatedAt = new DateTimeOffset(2025, 1, 10, 12, 0, 0, TimeSpan.Zero),
SourceRef = "https://example.com"
}
};
// Act
var yaml = GoldenSetYamlSerializer.Serialize(definition);
// Assert
yaml.Should().NotContain("witness:");
yaml.Should().NotContain("reviewed_by:");
yaml.Should().NotContain("edges:");
yaml.Should().NotContain("sinks:");
}
private static GoldenSetDefinition CreateValidDefinition() => new()
{
Id = "CVE-2024-0727",
Component = "openssl",
Targets =
[
new VulnerableTarget
{
FunctionName = "PKCS12_parse",
Edges = [BasicBlockEdge.Parse("bb3->bb7"), BasicBlockEdge.Parse("bb7->bb9")],
Sinks = ["memcpy", "OPENSSL_malloc"],
Constants = ["0x400"],
TaintInvariant = "len(field) <= 0x400 required before memcpy",
SourceFile = "crypto/pkcs12/p12_kiss.c",
SourceLine = 142
}
],
Witness = new WitnessInput
{
Arguments = ["--file", "<fuzz.bin>"],
Invariant = "Malformed PKCS12 with oversized authsafe"
},
Metadata = new GoldenSetMetadata
{
AuthorId = "test@example.com",
CreatedAt = new DateTimeOffset(2025, 1, 10, 12, 0, 0, TimeSpan.Zero),
SourceRef = "https://nvd.nist.gov/vuln/detail/CVE-2024-0727",
Tags = ["memory-corruption", "pkcs12"]
}
};
}

238
src/BinaryIndex/__Tests/StellaOps.BinaryIndex.GoldenSet.Tests/Unit/SinkRegistryTests.cs Normal file
View File

@@ -0,0 +1,238 @@
using FluentAssertions;
using Microsoft.Extensions.Caching.Memory;
using Microsoft.Extensions.Logging.Abstractions;
using StellaOps.BinaryIndex.GoldenSet;
namespace StellaOps.BinaryIndex.GoldenSet.Tests.Unit;
/// <summary>
/// Unit tests for SinkRegistry.
/// </summary>
[Trait("Category", "Unit")]
public sealed class SinkRegistryTests
{
private readonly ISinkRegistry _sinkRegistry;
public SinkRegistryTests()
{
var cache = new MemoryCache(new MemoryCacheOptions());
_sinkRegistry = new SinkRegistry(cache, NullLogger<SinkRegistry>.Instance);
}
[Theory]
[InlineData("memcpy")]
[InlineData("strcpy")]
[InlineData("sprintf")]
[InlineData("gets")]
[InlineData("system")]
[InlineData("exec")]
[InlineData("popen")]
[InlineData("dlopen")]
[InlineData("LoadLibrary")]
[InlineData("fopen")]
[InlineData("open")]
[InlineData("connect")]
[InlineData("send")]
[InlineData("recv")]
[InlineData("sqlite3_exec")]
[InlineData("mysql_query")]
[InlineData("free")]
[InlineData("realloc")]
[InlineData("malloc")]
[InlineData("OPENSSL_malloc")]
[InlineData("EVP_DecryptUpdate")]
[InlineData("PKCS12_parse")]
public void IsKnownSink_KnownSink_ReturnsTrue(string sinkName)
{
// Act
var result = _sinkRegistry.IsKnownSink(sinkName);
// Assert
result.Should().BeTrue();
}
[Theory]
[InlineData("unknown_function")]
[InlineData("my_custom_function")]
[InlineData("foobar")]
[InlineData("")]
public void IsKnownSink_UnknownOrInvalidSink_ReturnsFalse(string sinkName)
{
// Act
var result = _sinkRegistry.IsKnownSink(sinkName);
// Assert
result.Should().BeFalse();
}
[Fact]
public async Task GetSinkInfoAsync_KnownSink_ReturnsSinkInfo()
{
// Act
var info = await _sinkRegistry.GetSinkInfoAsync("memcpy", TestContext.Current.CancellationToken);
// Assert
info.Should().NotBeNull();
info!.Name.Should().Be("memcpy");
info.Category.Should().Be(SinkCategory.Memory);
info.CweIds.Should().Contain("CWE-120");
info.CweIds.Should().Contain("CWE-787");
info.Severity.Should().Be("high");
info.Description.Should().NotBeNullOrEmpty();
}
[Fact]
public async Task GetSinkInfoAsync_UnknownSink_ReturnsNull()
{
// Act
var info = await _sinkRegistry.GetSinkInfoAsync("unknown_function", TestContext.Current.CancellationToken);
// Assert
info.Should().BeNull();
}
[Fact]
public async Task GetSinkInfoAsync_EmptyString_ReturnsNull()
{
// Act
var result = await _sinkRegistry.GetSinkInfoAsync("", TestContext.Current.CancellationToken);
// Assert
result.Should().BeNull();
}
[Fact]
public async Task GetSinksByCategoryAsync_Memory_ReturnsSinksInCategory()
{
// Act
var sinks = await _sinkRegistry.GetSinksByCategoryAsync(SinkCategory.Memory, TestContext.Current.CancellationToken);
// Assert
sinks.Should().NotBeEmpty();
sinks.Should().Contain(s => s.Name == "memcpy");
sinks.Should().Contain(s => s.Name == "strcpy");
sinks.Should().Contain(s => s.Name == "free");
sinks.Should().Contain(s => s.Name == "malloc");
sinks.Should().OnlyContain(s => s.Category == SinkCategory.Memory);
}
[Fact]
public async Task GetSinksByCategoryAsync_CommandInjection_ReturnsSinksInCategory()
{
// Act
var sinks = await _sinkRegistry.GetSinksByCategoryAsync(SinkCategory.CommandInjection, TestContext.Current.CancellationToken);
// Assert
sinks.Should().NotBeEmpty();
sinks.Should().Contain(s => s.Name == "system");
sinks.Should().Contain(s => s.Name == "exec");
sinks.Should().Contain(s => s.Name == "popen");
sinks.Should().OnlyContain(s => s.Category == SinkCategory.CommandInjection);
}
[Fact]
public async Task GetSinksByCategoryAsync_UnknownCategory_ReturnsEmpty()
{
// Act
var sinks = await _sinkRegistry.GetSinksByCategoryAsync("unknown_category", TestContext.Current.CancellationToken);
// Assert
sinks.Should().BeEmpty();
}
[Fact]
public async Task GetSinksByCategoryAsync_EmptyString_ReturnsEmpty()
{
// Act
var result = await _sinkRegistry.GetSinksByCategoryAsync("", TestContext.Current.CancellationToken);
// Assert
result.Should().BeEmpty();
}
[Fact]
public async Task GetSinksByCweAsync_CWE120_ReturnsSinksWithCwe()
{
// Act
var sinks = await _sinkRegistry.GetSinksByCweAsync("CWE-120", TestContext.Current.CancellationToken);
// Assert
sinks.Should().NotBeEmpty();
sinks.Should().Contain(s => s.Name == "memcpy");
sinks.Should().Contain(s => s.Name == "strcpy");
sinks.Should().Contain(s => s.Name == "gets");
sinks.Should().Contain(s => s.Name == "strcat");
sinks.Should().OnlyContain(s => s.CweIds.Contains("CWE-120", StringComparer.OrdinalIgnoreCase));
}
[Fact]
public async Task GetSinksByCweAsync_CWE78_ReturnsSinksWithCwe()
{
// Act
var sinks = await _sinkRegistry.GetSinksByCweAsync("CWE-78", TestContext.Current.CancellationToken);
// Assert
sinks.Should().NotBeEmpty();
sinks.Should().Contain(s => s.Name == "system");
sinks.Should().Contain(s => s.Name == "exec");
sinks.Should().Contain(s => s.Name == "popen");
sinks.Should().OnlyContain(s => s.CweIds.Contains("CWE-78", StringComparer.OrdinalIgnoreCase));
}
[Fact]
public async Task GetSinksByCweAsync_UnknownCwe_ReturnsEmpty()
{
// Act
var sinks = await _sinkRegistry.GetSinksByCweAsync("CWE-99999", TestContext.Current.CancellationToken);
// Assert
sinks.Should().BeEmpty();
}
[Fact]
public async Task GetSinksByCweAsync_EmptyString_ReturnsEmpty()
{
// Act
var result = await _sinkRegistry.GetSinksByCweAsync("", TestContext.Current.CancellationToken);
// Assert
result.Should().BeEmpty();
}
[Fact]
public void SinkCategory_Constants_AreCorrect()
{
// Assert
SinkCategory.Memory.Should().Be("memory");
SinkCategory.CommandInjection.Should().Be("command_injection");
SinkCategory.CodeInjection.Should().Be("code_injection");
SinkCategory.PathTraversal.Should().Be("path_traversal");
SinkCategory.Network.Should().Be("network");
SinkCategory.SqlInjection.Should().Be("sql_injection");
SinkCategory.Crypto.Should().Be("crypto");
}
[Fact]
public async Task GetSinksByCategoryAsync_IsCached()
{
// Act - Call twice
var sinks1 = await _sinkRegistry.GetSinksByCategoryAsync(SinkCategory.Memory, TestContext.Current.CancellationToken);
var sinks2 = await _sinkRegistry.GetSinksByCategoryAsync(SinkCategory.Memory, TestContext.Current.CancellationToken);
// Assert - Both should return same data (cached)
sinks1.Should().BeEquivalentTo(sinks2);
}
[Fact]
public async Task GetSinksByCweAsync_IsCached()
{
// Act - Call twice
var sinks1 = await _sinkRegistry.GetSinksByCweAsync("CWE-120", TestContext.Current.CancellationToken);
var sinks2 = await _sinkRegistry.GetSinksByCweAsync("CWE-120", TestContext.Current.CancellationToken);
// Assert - Both should return same data (cached)
sinks1.Should().BeEquivalentTo(sinks2);
}
}