Google Git
Sign in
chromium/external/github.com/google/cel-go/refs/heads/dmitriplotnikov-patch-1/./tools/compiler/compiler_test.go
blob: d528eed56741dc8544b0b24678e2c8afd4d5704a [file] [edit]
// Copyright 2025 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// https://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package compiler
import (
"reflect"
"testing"
"github.com/google/cel-go/cel"
"github.com/google/cel-go/common/env"
"github.com/google/cel-go/ext"
"github.com/google/cel-go/policy"
celpb "cel.dev/expr"
configpb "cel.dev/expr/conformance"
structpb "google.golang.org/protobuf/types/known/structpb"
)
func TestEnvironmentFileCompareTextprotoAndYAML(t *testing.T) {
t.Run("compare textproto and yaml environment files", func(t *testing.T) {
pbEnv := testEnvProto()
protoConfig, err := configFromEnvProto(t, pbEnv)
if err != nil {
t.Fatalf("configFromEnvProto(%v) failed: %v", pbEnv, err)
}
config, err := parseEnv(t, "yaml_config", "testdata/config.yaml")
if err != nil {
t.Fatalf("parseEnv(%s) failed: %v", "testdata/config.yaml", err)
}
if protoConfig.Container != config.Container {
t.Fatalf("Container got %q, wanted %q", protoConfig.Container, config.Container)
}
if !reflect.DeepEqual(protoConfig.Imports, config.Imports) {
t.Fatalf("Imports got %v, wanted %v", protoConfig.Imports, config.Imports)
}
if !reflect.DeepEqual(protoConfig.StdLib, config.StdLib) {
t.Fatalf("StdLib got %v, wanted %v", protoConfig.StdLib, config.StdLib)
}
if len(protoConfig.Extensions) != len(config.Extensions) {
t.Fatalf("Extensions count got %d, wanted %d", len(protoConfig.Extensions), len(config.Extensions))
}
for _, protoConfigExt := range protoConfig.Extensions {
found := false
for _, configExt := range config.Extensions {
if reflect.DeepEqual(protoConfigExt, configExt) {
found = true
break
}
}
if !found {
t.Fatalf("Extensions got %v, wanted %v", protoConfig.Extensions, config.Extensions)
}
}
if !reflect.DeepEqual(protoConfig.ContextVariable, config.ContextVariable) {
t.Fatalf("ContextVariable got %v, wanted %v", protoConfig.ContextVariable, config.ContextVariable)
}
if len(protoConfig.Variables) != len(config.Variables) {
t.Fatalf("Variables count got %d, wanted %d", len(protoConfig.Variables), len(config.Variables))
} else {
for i, v := range protoConfig.Variables {
for j, p := range v.TypeDesc.Params {
if p.TypeName == "google.protobuf.Any" &&
config.Variables[i].TypeDesc.Params[j].TypeName == "dyn" {
p.TypeName = "dyn"
}
}
if !reflect.DeepEqual(v, config.Variables[i]) {
t.Fatalf("Variables[%d] not equal, got %v, wanted %v", i, v, config.Variables[i])
}
}
}
if len(protoConfig.Functions) != len(config.Functions) {
t.Fatalf("Functions count got %d, wanted %d", len(protoConfig.Functions), len(config.Functions))
} else {
for i, f := range protoConfig.Functions {
if !reflect.DeepEqual(f, config.Functions[i]) {
t.Fatalf("Functions[%d] not equal, got %v, wanted %v", i, f, config.Functions[i])
}
}
}
if len(protoConfig.Features) != len(config.Features) {
t.Fatalf("Features count got %d, wanted %d", len(protoConfig.Features), len(config.Features))
} else {
for i, f := range protoConfig.Features {
if !reflect.DeepEqual(f, config.Features[i]) {
t.Fatalf("Features[%d] not equal, got %v, wanted %v", i, f, config.Features[i])
}
}
}
if len(protoConfig.Validators) != len(config.Validators) {
t.Fatalf("Validators count got %d, wanted %d", len(protoConfig.Validators), len(config.Validators))
} else {
for i, v := range protoConfig.Validators {
if !reflect.DeepEqual(v, config.Validators[i]) {
t.Fatalf("Validators[%d] not equal, got %v, wanted %v", i, v, config.Validators[i])
}
}
}
})
}
func testEnvProto() *configpb.Environment {
return &configpb.Environment{
Name: "test-environment",
Description: "Test environment",
Container: "google.expr",
Imports: []*configpb.Environment_Import{
{Name: "google.expr.proto3.test.TestAllTypes"},
},
Stdlib: &configpb.LibrarySubset{
IncludeMacros: []string{"has", "exists"},
IncludeFunctions: []*celpb.Decl{
{
Name: "_==_",
DeclKind: &celpb.Decl_Function{
Function: &celpb.Decl_FunctionDecl{
Overloads: []*celpb.Decl_FunctionDecl_Overload{
{
OverloadId: "equals",
Params: []*celpb.Type{
{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
},
ResultType: &celpb.Type{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_BOOL,
},
},
},
},
},
},
},
{
Name: "_||_",
DeclKind: &celpb.Decl_Function{
Function: &celpb.Decl_FunctionDecl{
Overloads: []*celpb.Decl_FunctionDecl_Overload{
{
OverloadId: "logical_or",
Params: []*celpb.Type{
{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_BOOL,
},
},
{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_BOOL,
},
},
},
ResultType: &celpb.Type{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_BOOL,
},
},
},
},
},
},
},
},
},
Extensions: []*configpb.Extension{
{
Name: "lists",
Version: "latest",
},
{
Name: "sets",
Version: "latest",
},
},
Declarations: []*celpb.Decl{
{
Name: "destination.ip",
DeclKind: &celpb.Decl_Ident{
Ident: &celpb.Decl_IdentDecl{
Type: &celpb.Type{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
},
},
},
{
Name: "origin.ip",
DeclKind: &celpb.Decl_Ident{
Ident: &celpb.Decl_IdentDecl{
Type: &celpb.Type{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
},
},
},
{
Name: "spec.restricted_destinations",
DeclKind: &celpb.Decl_Ident{
Ident: &celpb.Decl_IdentDecl{
Type: &celpb.Type{
TypeKind: &celpb.Type_ListType_{
ListType: &celpb.Type_ListType{
ElemType: &celpb.Type{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
},
},
},
},
},
},
{
Name: "spec.origin",
DeclKind: &celpb.Decl_Ident{
Ident: &celpb.Decl_IdentDecl{
Type: &celpb.Type{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
},
},
},
{
Name: "request",
DeclKind: &celpb.Decl_Ident{
Ident: &celpb.Decl_IdentDecl{
Type: &celpb.Type{
TypeKind: &celpb.Type_MapType_{
MapType: &celpb.Type_MapType{
KeyType: &celpb.Type{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
ValueType: &celpb.Type{
TypeKind: &celpb.Type_WellKnown{
WellKnown: celpb.Type_ANY,
},
},
},
},
},
},
},
},
{
Name: "resource",
DeclKind: &celpb.Decl_Ident{
Ident: &celpb.Decl_IdentDecl{
Type: &celpb.Type{
TypeKind: &celpb.Type_MapType_{
MapType: &celpb.Type_MapType{
KeyType: &celpb.Type{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
ValueType: &celpb.Type{
TypeKind: &celpb.Type_WellKnown{
WellKnown: celpb.Type_ANY,
},
},
},
},
},
},
},
},
{
Name: "locationCode",
DeclKind: &celpb.Decl_Function{
Function: &celpb.Decl_FunctionDecl{
Overloads: []*celpb.Decl_FunctionDecl_Overload{
{
OverloadId: "locationCode_string",
Params: []*celpb.Type{
{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
},
ResultType: &celpb.Type{
TypeKind: &celpb.Type_Primitive{
Primitive: celpb.Type_STRING,
},
},
},
},
},
},
},
},
Validators: []*configpb.Validator{
{Name: "cel.validator.duration"},
{
Name: "cel.validator.comprehension_nesting_limit",
Config: map[string]*structpb.Value{
"limit": structpb.NewNumberValue(2),
},
},
},
Features: []*configpb.Feature{
{
Name: "cel.feature.macro_call_tracking",
Enabled: true,
},
},
}
}
func configFromEnvProto(t *testing.T, pbEnv *configpb.Environment) (*env.Config, error) {
t.Helper()
envConfig, fileDescriptorSet, err := envProtoToConfig(pbEnv)
if err != nil {
return nil, err
}
var envOpts []cel.EnvOption
if fileDescriptorSet != nil {
envOpts = append(envOpts, cel.TypeDescs(fileDescriptorSet))
}
envOpts = append(envOpts, cel.FromConfig(envConfig, ext.ExtensionOptionFactory))
return envOptionToConfig(t, envConfig.Name, envOpts...)
}
func parseEnv(t *testing.T, name, path string) (*env.Config, error) {
t.Helper()
opts := EnvironmentFile(path)
return envOptionToConfig(t, name, opts)
}
func envOptionToConfig(t *testing.T, name string, opts ...cel.EnvOption) (*env.Config, error) {
t.Helper()
e, err := cel.NewCustomEnv(opts...)
if err != nil {
return nil, err
}
conf, err := e.ToConfig(name)
if err != nil {
return nil, err
}
return conf, nil
}
func TestFileExpressionCustomPolicyParser(t *testing.T) {
t.Run("test file expression custom policy parser", func(t *testing.T) {
envOpt := EnvironmentFile("../../policy/testdata/k8s/config.yaml")
parserOpt := policy.ParserOption(func(p *policy.Parser) (*policy.Parser, error) {
p.TagVisitor = policy.K8sTestTagHandler()
return p, nil
})
compilerOpts := []any{envOpt, parserOpt}
compiler, err := NewCompiler(compilerOpts...)
if err != nil {
t.Fatalf("NewCompiler() failed: %v", err)
}
policyFile := &FileExpression{
Path: "../../policy/testdata/k8s/policy.yaml",
}
k8sAst, _, err := policyFile.CreateAST(compiler)
if err != nil {
t.Fatalf("CreateAST() failed: %v", err)
}
if k8sAst == nil {
t.Fatalf("CreateAST() returned nil ast")
}
})
}
func TestRawExpressionCreateAst(t *testing.T) {
t.Run("test raw expression create ast", func(t *testing.T) {
envOpt := EnvironmentFile("testdata/config.yaml")
compiler, err := NewCompiler(envOpt)
if err != nil {
t.Fatalf("NewCompiler() failed: %v", err)
}
rawExpr := &RawExpression{
Value: "locationCode(destination.ip)==locationCode(origin.ip)",
}
ast, _, err := rawExpr.CreateAST(compiler)
if err != nil {
t.Fatalf("CreateAST() failed: %v", err)
}
if ast == nil {
t.Fatalf("CreateAST() returned nil ast")
}
})
}