move update api

cli/internal/cmd/upgradeplan.go

@@ -16,13 +16,13 @@ import (
 	"strings"
 
 	"github.com/edgelesssys/constellation/v2/cli/internal/cloudcmd"
-	"github.com/edgelesssys/constellation/v2/cli/internal/update"
 	"github.com/edgelesssys/constellation/v2/internal/attestation/measurements"
 	"github.com/edgelesssys/constellation/v2/internal/cloud/cloudprovider"
 	"github.com/edgelesssys/constellation/v2/internal/config"
 	"github.com/edgelesssys/constellation/v2/internal/constants"
 	"github.com/edgelesssys/constellation/v2/internal/file"
 	"github.com/edgelesssys/constellation/v2/internal/sigstore"
+	"github.com/edgelesssys/constellation/v2/internal/update"
 	"github.com/manifoldco/promptui"
 	"github.com/spf13/afero"
 	"github.com/spf13/cobra"

cli/internal/cmd/upgradeplan_test.go

@@ -15,11 +15,11 @@ import (
 	"strings"
 	"testing"
 
-	"github.com/edgelesssys/constellation/v2/cli/internal/update"
 	"github.com/edgelesssys/constellation/v2/internal/cloud/cloudprovider"
 	"github.com/edgelesssys/constellation/v2/internal/config"
 	"github.com/edgelesssys/constellation/v2/internal/constants"
 	"github.com/edgelesssys/constellation/v2/internal/file"
+	"github.com/edgelesssys/constellation/v2/internal/update"
 	"github.com/spf13/afero"
 	"github.com/spf13/cobra"
 	"github.com/stretchr/testify/assert"

cli/internal/update/update.go

@@ -1,173 +0,0 @@
-/*
-Copyright (c) Edgeless Systems GmbH
-
-SPDX-License-Identifier: AGPL-3.0-only
-*/
-
-package update
-
-import (
-	"context"
-	"encoding/json"
-	"fmt"
-	"io"
-	"net/http"
-	"net/url"
-	"path"
-	"strings"
-
-	"github.com/edgelesssys/constellation/v2/internal/constants"
-	"golang.org/x/mod/semver"
-)
-
-// VersionsList represents a list of versions for a kind of resource.
-// It has a granularity of either "major" or "minor".
-//
-// For example, a VersionsList with granularity "major" could contain
-// the base version "v1" and a list of minor versions "v1.0", "v1.1", "v1.2" etc.
-// A VersionsList with granularity "minor" could contain the base version
-// "v1.0" and a list of patch versions "v1.0.0", "v1.0.1", "v1.0.2" etc.
-type VersionsList struct {
-	// Stream is the update stream of the list.
-	// Currently, only "stable" is supported.
-	Stream string `json:"stream"`
-	// Granularity is the granularity of the base version of this list.
-	// It can be either "major" or "minor".
-	Granularity string `json:"granularity"`
-	// Base is the base version of the list.
-	// Every version in the list is a finer-grained version of this base version.
-	Base string `json:"base"`
-	// Kind is the kind of resource this list is for.
-	Kind string `json:"kind"`
-	// Versions is a list of all versions in this list.
-	Versions []string `json:"versions"`
-}
-
-// validate checks if the list is valid.
-// This performs the following checks:
-// - The stream is supported.
-// - The granularity is "major" or "minor".
-// - The kind is supported.
-// - The base version is a valid semantic version that matches the granularity.
-// - All versions in the list are valid semantic versions that are finer-grained than the base version.
-func (l *VersionsList) validate() error {
-	var issues []string
-	if l.Stream != "stable" {
-		issues = append(issues, fmt.Sprintf("stream %q is not supported", l.Stream))
-	}
-	if l.Granularity != "major" && l.Granularity != "minor" {
-		issues = append(issues, fmt.Sprintf("granularity %q is not supported", l.Granularity))
-	}
-	if l.Kind != "image" {
-		issues = append(issues, fmt.Sprintf("kind %q is not supported", l.Kind))
-	}
-	if !semver.IsValid(l.Base) {
-		issues = append(issues, fmt.Sprintf("base version %q is not a valid semantic version", l.Base))
-	}
-	var normalizeFunc func(string) string
-	switch l.Granularity {
-	case "major":
-		normalizeFunc = semver.Major
-	case "minor":
-		normalizeFunc = semver.MajorMinor
-	default:
-		normalizeFunc = func(s string) string { return s }
-	}
-	if normalizeFunc(l.Base) != l.Base {
-		issues = append(issues, fmt.Sprintf("base version %q is not a %v version", l.Base, l.Granularity))
-	}
-	for _, ver := range l.Versions {
-		if !semver.IsValid(ver) {
-			issues = append(issues, fmt.Sprintf("version %q in list is not a valid semantic version", ver))
-		}
-		if normalizeFunc(ver) != l.Base {
-			issues = append(issues, fmt.Sprintf("version %q in list is not a finer-grained version of base version %q", ver, l.Base))
-		}
-	}
-	if len(issues) > 0 {
-		return fmt.Errorf("version list is invalid:\n%s", strings.Join(issues, "\n"))
-	}
-	return nil
-}
-
-// VersionsFetcher fetches a list of versions.
-type VersionsFetcher struct {
-	httpc httpc
-}
-
-// New returns a new VersionsFetcher.
-func New() *VersionsFetcher {
-	return &VersionsFetcher{
-		httpc: http.DefaultClient,
-	}
-}
-
-// MinorVersionsOf fetches the list of minor versions for a given stream, major version and kind.
-func (f *VersionsFetcher) MinorVersionsOf(ctx context.Context, stream, major, kind string) (*VersionsList, error) {
-	return f.list(ctx, stream, "major", major, kind)
-}
-
-// PatchVersionsOf fetches the list of patch versions for a given stream, minor version and kind.
-func (f *VersionsFetcher) PatchVersionsOf(ctx context.Context, stream, minor, kind string) (*VersionsList, error) {
-	return f.list(ctx, stream, "minor", minor, kind)
-}
-
-// list fetches the list of versions for a given stream, granularity, base and kind.
-func (f *VersionsFetcher) list(ctx context.Context, stream, granularity, base, kind string) (*VersionsList, error) {
-	raw, err := getFromURL(ctx, f.httpc, stream, granularity, base, kind)
-	if err != nil {
-		return nil, fmt.Errorf("fetching versions list: %w", err)
-	}
-	list := &VersionsList{}
-	if err := json.Unmarshal(raw, &list); err != nil {
-		return nil, fmt.Errorf("decoding versions list: %w", err)
-	}
-	if err := list.validate(); err != nil {
-		return nil, fmt.Errorf("validating versions list: %w", err)
-	}
-	if !f.listMatchesRequest(list, stream, granularity, base, kind) {
-		return nil, fmt.Errorf("versions list does not match request")
-	}
-	return list, nil
-}
-
-func (f *VersionsFetcher) listMatchesRequest(list *VersionsList, stream, granularity, base, kind string) bool {
-	return list.Stream == stream && list.Granularity == granularity && list.Base == base && list.Kind == kind
-}
-
-// getFromURL fetches the versions list from a URL.
-func getFromURL(ctx context.Context, client httpc, stream, granularity, base, kind string) ([]byte, error) {
-	url, err := url.Parse(constants.CDNRepositoryURL)
-	if err != nil {
-		return nil, fmt.Errorf("parsing image version repository URL: %w", err)
-	}
-	kindFilename := path.Base(kind) + ".json"
-	url.Path = path.Join("constellation/v1/updates", stream, granularity, base, kindFilename)
-	req, err := http.NewRequestWithContext(ctx, http.MethodGet, url.String(), http.NoBody)
-	if err != nil {
-		return nil, err
-	}
-
-	resp, err := client.Do(req)
-	if err != nil {
-		return nil, err
-	}
-	defer resp.Body.Close()
-	if resp.StatusCode != http.StatusOK {
-		switch resp.StatusCode {
-		case http.StatusNotFound:
-			return nil, fmt.Errorf("versions list %q does not exist", url.String())
-		default:
-			return nil, fmt.Errorf("unexpected status code %d", resp.StatusCode)
-		}
-	}
-	content, err := io.ReadAll(resp.Body)
-	if err != nil {
-		return nil, err
-	}
-	return content, nil
-}
-
-type httpc interface {
-	Do(req *http.Request) (*http.Response, error)
-}

cli/internal/update/update_test.go

@@ -1,279 +0,0 @@
-/*
-Copyright (c) Edgeless Systems GmbH
-
-SPDX-License-Identifier: AGPL-3.0-only
-*/
-
-package update
-
-import (
-	"bytes"
-	"context"
-	"encoding/json"
-	"io"
-	"net/http"
-	"testing"
-
-	"github.com/stretchr/testify/assert"
-	"github.com/stretchr/testify/require"
-	"go.uber.org/goleak"
-)
-
-func TestMain(m *testing.M) {
-	goleak.VerifyTestMain(m)
-}
-
-func TestValidate(t *testing.T) {
-	testCases := map[string]struct {
-		listFunc     func() *VersionsList
-		overrideFunc func(list *VersionsList)
-		wantErr      bool
-	}{
-		"valid major list": {
-			listFunc: majorList,
-		},
-		"valid minor list": {
-			listFunc: minorList,
-		},
-		"invalid stream": {
-			listFunc: majorList,
-			overrideFunc: func(list *VersionsList) {
-				list.Stream = "invalid"
-			},
-			wantErr: true,
-		},
-		"invalid granularity": {
-			listFunc: majorList,
-			overrideFunc: func(list *VersionsList) {
-				list.Granularity = "invalid"
-			},
-			wantErr: true,
-		},
-		"invalid kind": {
-			listFunc: majorList,
-			overrideFunc: func(list *VersionsList) {
-				list.Kind = "invalid"
-			},
-			wantErr: true,
-		},
-		"base ver is not semantic version": {
-			listFunc: majorList,
-			overrideFunc: func(list *VersionsList) {
-				list.Base = "invalid"
-			},
-			wantErr: true,
-		},
-		"base ver does not reflect major granularity": {
-			listFunc: majorList,
-			overrideFunc: func(list *VersionsList) {
-				list.Base = "v1.0"
-			},
-			wantErr: true,
-		},
-		"base ver does not reflect minor granularity": {
-			listFunc: minorList,
-			overrideFunc: func(list *VersionsList) {
-				list.Base = "v1"
-			},
-			wantErr: true,
-		},
-		"version in list is not semantic version": {
-			listFunc: majorList,
-			overrideFunc: func(list *VersionsList) {
-				list.Versions[0] = "invalid"
-			},
-			wantErr: true,
-		},
-		"version in list is not sub version of base": {
-			listFunc: majorList,
-			overrideFunc: func(list *VersionsList) {
-				list.Versions[0] = "v2.1"
-			},
-			wantErr: true,
-		},
-	}
-
-	for name, tc := range testCases {
-		t.Run(name, func(t *testing.T) {
-			assert := assert.New(t)
-			require := require.New(t)
-
-			list := tc.listFunc()
-			if tc.overrideFunc != nil {
-				tc.overrideFunc(list)
-			}
-			err := list.validate()
-			if tc.wantErr {
-				assert.Error(err)
-				return
-			}
-			require.NoError(err)
-		})
-	}
-}
-
-func TestList(t *testing.T) {
-	majorListJSON, err := json.Marshal(majorList())
-	require.NoError(t, err)
-	minorListJSON, err := json.Marshal(minorList())
-	require.NoError(t, err)
-	inconsistentList := majorList()
-	inconsistentList.Base = "v2"
-	inconsistentListJSON, err := json.Marshal(inconsistentList)
-	require.NoError(t, err)
-	client := newTestClient(func(req *http.Request) *http.Response {
-		switch req.URL.Path {
-		case "/constellation/v1/updates/stable/major/v1/image.json":
-			return &http.Response{
-				StatusCode: http.StatusOK,
-				Body:       io.NopCloser(bytes.NewBuffer(majorListJSON)),
-				Header:     make(http.Header),
-			}
-		case "/constellation/v1/updates/stable/minor/v1.1/image.json":
-			return &http.Response{
-				StatusCode: http.StatusOK,
-				Body:       io.NopCloser(bytes.NewBuffer(minorListJSON)),
-				Header:     make(http.Header),
-			}
-		case "/constellation/v1/updates/stable/major/v1/500.json": // 500 error
-			return &http.Response{
-				StatusCode: http.StatusInternalServerError,
-				Body:       io.NopCloser(bytes.NewBufferString("Server Error.")),
-				Header:     make(http.Header),
-			}
-		case "/constellation/v1/updates/stable/major/v1/nojson.json": // invalid format
-			return &http.Response{
-				StatusCode: http.StatusOK,
-				Body:       io.NopCloser(bytes.NewBufferString("not json")),
-				Header:     make(http.Header),
-			}
-		case "/constellation/v1/updates/stable/major/v2/image.json": // inconsistent list
-			return &http.Response{
-				StatusCode: http.StatusOK,
-				Body:       io.NopCloser(bytes.NewBuffer(inconsistentListJSON)),
-				Header:     make(http.Header),
-			}
-		case "/constellation/v1/updates/stable/major/v3/image.json": // does not match requested version
-			return &http.Response{
-				StatusCode: http.StatusOK,
-				Body:       io.NopCloser(bytes.NewBuffer(minorListJSON)),
-				Header:     make(http.Header),
-			}
-		}
-		return &http.Response{
-			StatusCode: http.StatusNotFound,
-			Body:       io.NopCloser(bytes.NewBufferString("Not found.")),
-			Header:     make(http.Header),
-		}
-	})
-
-	testCases := map[string]struct {
-		stream, granularity, base, kind string
-		overrideFile                    string
-		wantList                        VersionsList
-		wantErr                         bool
-	}{
-		"major list fetched remotely": {
-			wantList: *majorList(),
-		},
-		"minor list fetched remotely": {
-			granularity: "minor",
-			base:        "v1.1",
-			wantList:    *minorList(),
-		},
-		"list does not exist": {
-			stream:  "unknown",
-			wantErr: true,
-		},
-		"unexpected error code": {
-			kind:    "500",
-			wantErr: true,
-		},
-		"invalid json returned": {
-			kind:    "nojson",
-			wantErr: true,
-		},
-		"invalid list returned": {
-			base:    "v2",
-			wantErr: true,
-		},
-		"response does not match request": {
-			base:    "v3",
-			wantErr: true,
-		},
-	}
-
-	for name, tc := range testCases {
-		t.Run(name, func(t *testing.T) {
-			assert := assert.New(t)
-			require := require.New(t)
-
-			stream := "stable"
-			granularity := "major"
-			base := "v1"
-			kind := "image"
-			if tc.stream != "" {
-				stream = tc.stream
-			}
-			if tc.granularity != "" {
-				granularity = tc.granularity
-			}
-			if tc.base != "" {
-				base = tc.base
-			}
-			if tc.kind != "" {
-				kind = tc.kind
-			}
-
-			fetcher := &VersionsFetcher{
-				httpc: client,
-			}
-			list, err := fetcher.list(context.Background(), stream, granularity, base, kind)
-			if tc.wantErr {
-				assert.Error(err)
-				return
-			}
-			require.NoError(err)
-			assert.Equal(tc.wantList, *list)
-		})
-	}
-}
-
-// roundTripFunc .
-type roundTripFunc func(req *http.Request) *http.Response
-
-// RoundTrip .
-func (f roundTripFunc) RoundTrip(req *http.Request) (*http.Response, error) {
-	return f(req), nil
-}
-
-// newTestClient returns *http.Client with Transport replaced to avoid making real calls.
-func newTestClient(fn roundTripFunc) *http.Client {
-	return &http.Client{
-		Transport: fn,
-	}
-}
-
-func majorList() *VersionsList {
-	return &VersionsList{
-		Stream:      "stable",
-		Granularity: "major",
-		Base:        "v1",
-		Kind:        "image",
-		Versions: []string{
-			"v1.0", "v1.1", "v1.2",
-		},
-	}
-}
-
-func minorList() *VersionsList {
-	return &VersionsList{
-		Stream:      "stable",
-		Granularity: "minor",
-		Base:        "v1.1",
-		Kind:        "image",
-		Versions: []string{
-			"v1.1.0", "v1.1.1", "v1.1.2",
-		},
-	}
-}