| Quellcodebibliothek Statistik Leitseite products/Sources/formale Sprachen/Java/Openclaw/src/media/ (KI Agentensystem Version 22©) Datei vom 26.3.2026 mit Größe 10 kB |
|
Quelle input-files.fetch-guard.test.tsSprache: JAVA |
|||||||||||||||
|
import { beforeAll, beforeEach, describe, expect, it, vi } from "vitest"; const fetchWithSsrFGuardMock = vi.fn(); const convertHeicToJpegMock = vi.fn(); const detectMimeMock = vi.fn(); vi.mock("../infra/net/fetch-guard.js", () => ({ fetchWithSsrFGuard: (...args: unknown[]) => fetchWithSsrFGuardMock(...args), })); vi.mock("./image-ops.js", () => ({ convertHeicToJpeg: (...args: unknown[]) => convertHeicToJpegMock(...args), })); vi.mock("./mime.js", () => ({ detectMime: (...args: unknown[]) => detectMimeMock(...args), })); async function waitForMicrotaskTurn(): Promise<void> { await new Promise<void>((resolve) => queueMicrotask(resolve)); } let fetchWithGuard: typeof import("./input-files.js").fetchWithGuard; let extractImageContentFromSource: typeof import("./input-files.js").extractImageCo let extractFileContentFromSource: typeof import("./input-files.js").extractFileCont beforeAll(async () => { ({ fetchWithGuard, extractImageContentFromSource, extractFileContentFromSource } = await import("./input-files.js")); }); beforeEach(() => { vi.clearAllMocks(); }); function createImageSourceLimits(allowedMimes: string[], allowUrl = false) { return { allowUrl, allowedMimes: new Set(allowedMimes), maxBytes: 1024 * 1024, maxRedirects: 0, timeoutMs: allowUrl ? 1000 : 1, }; } function mockUrlFetchResponse(params: { source: Parameters<typeof extractImageContentFromSource>[0]; fetchedUrl?: string; fetchedContentType?: string; fetchedBody?: Uint8Array; }) { if (params.source.type !== "url") { return null; } const release = vi.fn(async () => {}); const responseBody = Uint8Array.from(params.fetchedBody ?? Buffer.from("url-source")) fetchWithSsrFGuardMock.mockResolvedValueOnce({ response: new Response( responseBody.buffer.slice( responseBody.byteOffset, responseBody.byteOffset + responseBody.byteLength, ), { status: 200, headers: { "content-type": params.fetchedContentType ?? "application/octet-stream" }, }, ), release, finalUrl: params.fetchedUrl ?? params.source.url, }); return release; } async function expectRejectedImageMimeCase(params: { source: Parameters<typeof extractImageContentFromSource>[0]; limits: Parameters<typeof extractImageContentFromSource>[1]; expectedError: string; fetchedUrl?: string; fetchedContentType?: string; fetchedBody?: Uint8Array; }) { const release = mockUrlFetchResponse(params); await expect(extractImageContentFromSource(params.source, params.limits)).rejects. params.expectedError, ); if (release) { expect(release).toHaveBeenCalledTimes(1); } } type ImageSourceLimits = Parameters<typeof extractImageContentFromSource>[1]; async function expectResolvedImageContentCase(params: { source: Parameters<typeof extractImageContentFromSource>[0]; limits: ImageSourceLimits; detectedMime: string; convertedBytes?: Buffer; fetchedUrl?: string; fetchedContentType?: string; fetchedBody?: Uint8Array; expectedImage: Awaited<ReturnType<typeof extractImageContentFromSource>>; }) { const release = mockUrlFetchResponse(params); detectMimeMock.mockResolvedValueOnce(params.detectedMime); if (params.convertedBytes) { convertHeicToJpegMock.mockResolvedValueOnce(params.convertedBytes); } const image = await extractImageContentFromSource(params.source, params.limits); expect(image).toEqual(params.expectedImage); expect(detectMimeMock).toHaveBeenCalledTimes(1); expect(convertHeicToJpegMock).toHaveBeenCalledTimes(params.convertedBytes ? 1 : 0); if (release) { expect(release).toHaveBeenCalledTimes(1); } } async function expectBase64ImageValidationCase(params: { source: Parameters<typeof extractImageContentFromSource>[0]; limits: Parameters<typeof extractImageContentFromSource>[1]; expectedData?: string; expectedError?: string; }) { if (params.expectedError) { await expect(extractImageContentFromSource(params.source, params.limits)).rejects. params.expectedError, ); return; } const image = await extractImageContentFromSource(params.source, params.limits); expect(image.data).toBe(params.expectedData); } describe("HEIC input image normalization", () => { it.each([ { name: "converts base64 HEIC images to JPEG before returning them", source: { type: "base64", data: Buffer.from("heic-source").toString("base64"), mediaType: "image/heic", } as const, limits: createImageSourceLimits(["image/heic", "image/jpeg"]), detectedMime: "image/heic", convertedBytes: Buffer.from("jpeg-normalized"), expectedImage: { type: "image", data: Buffer.from("jpeg-normalized").toString("base64"), mimeType: "image/jpeg", }, }, { name: "converts URL HEIC images to JPEG before returning them", source: { type: "url", url: "https://example.com/photo.heic", } as const, limits: createImageSourceLimits(["image/heic", "image/jpeg"], true), detectedMime: "image/heic", convertedBytes: Buffer.from("jpeg-url-normalized"), fetchedUrl: "https://example.com/photo.heic", fetchedContentType: "image/heic", fetchedBody: Buffer.from("heic-url-source"), expectedImage: { type: "image", data: Buffer.from("jpeg-url-normalized").toString("base64"), mimeType: "image/jpeg", }, }, { name: "keeps declared MIME for non-HEIC images after validation", source: { type: "base64", data: Buffer.from("png-like").toString("base64"), mediaType: "image/png", } as const, limits: createImageSourceLimits(["image/png"]), detectedMime: "image/png", expectedImage: { type: "image", data: Buffer.from("png-like").toString("base64"), mimeType: "image/png", }, }, ] as const)("$name", async (testCase) => { await expectResolvedImageContentCase(testCase); }); it.each([ { name: "rejects spoofed base64 images when detected bytes are not an image", source: { type: "base64" as const, data: Buffer.from("%PDF-1.4\n").toString("base64"), mediaType: "image/png", }, limits: createImageSourceLimits(["image/png", "image/jpeg"]), expectedError: "Unsupported image MIME type: application/pdf", }, { name: "rejects spoofed URL images when detected bytes are not an image", source: { type: "url" as const, url: "https://example.com/photo.png", }, limits: createImageSourceLimits(["image/png", "image/jpeg"], true), expectedError: "Unsupported image MIME type: application/pdf", fetchedUrl: "https://example.com/photo.png", fetchedContentType: "image/png", fetchedBody: Buffer.from("%PDF-1.4\n"), }, ] as const)("$name", async (testCase) => { detectMimeMock.mockResolvedValueOnce("application/pdf"); await expectRejectedImageMimeCase(testCase); expect(convertHeicToJpegMock).not.toHaveBeenCalled(); }); }); describe("fetchWithGuard", () => { it("rejects oversized streamed payloads and cancels the stream", async () => { let canceled = false; let pulls = 0; const stream = new ReadableStream<Uint8Array>({ start(controller) { controller.enqueue(new Uint8Array([1, 2, 3, 4])); }, pull(controller) { pulls += 1; if (pulls === 1) { controller.enqueue(new Uint8Array([5, 6, 7, 8])); } // keep stream open; cancel() should stop it once maxBytes exceeded }, cancel() { canceled = true; }, }); const release = vi.fn(async () => {}); fetchWithSsrFGuardMock.mockResolvedValueOnce({ response: new Response(stream, { status: 200, headers: { "content-type": "application/octet-stream" }, }), release, finalUrl: "https://example.com/file.bin", }); await expect( fetchWithGuard({ url: "https://example.com/file.bin", maxBytes: 6, timeoutMs: 1000, maxRedirects: 0, }), ).rejects.toThrow("Content too large"); // Allow cancel() microtask to run. await waitForMicrotaskTurn(); expect(canceled).toBe(true); expect(release).toHaveBeenCalledTimes(1); }); }); describe("base64 size guards", () => { it.each([ { kind: "images", expectedError: "Image too large", run: async (data: string) => { return await extractImageContentFromSource( { type: "base64", data, mediaType: "image/png" }, { allowUrl: false, allowedMimes: new Set(["image/png"]), maxBytes: 6, maxRedirects: 0, timeoutMs: 1, }, ); }, }, { kind: "files", expectedError: "File too large", run: async (data: string) => { return await extractFileContentFromSource({ source: { type: "base64", data, mediaType: "text/plain", filename: "x.txt" }, limits: { allowUrl: false, allowedMimes: new Set(["text/plain"]), maxBytes: 6, maxChars: 100, maxRedirects: 0, timeoutMs: 1, pdf: { maxPages: 1, maxPixels: 1, minTextChars: 1 }, }, }); }, }, ] as const)("rejects oversized base64 $kind before decoding", async (testCase) => { const data = Buffer.alloc(7).toString("base64"); const fromSpy = vi.spyOn(Buffer, "from"); await expect(testCase.run(data)).rejects.toThrow(testCase.expectedError); // Regression check: oversize reject happens before Buffer.from(..., "base64") allocates. const base64Calls = fromSpy.mock.calls.filter((args) => (args as unknown[])[1] === "base64 expect(base64Calls).toHaveLength(0); fromSpy.mockRestore(); }); }); describe("input image base64 validation", () => { it.each([ { name: "rejects malformed base64 payloads", source: { type: "base64", data: 'iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8/x8AAwMCAO2N4j mediaType: "image/png", } as const, limits: { allowUrl: false, allowedMimes: new Set(["image/png"]), maxBytes: 1024 * 1024, maxRedirects: 0, timeoutMs: 1, }, expectedError: "invalid 'data' field", }, { name: "normalizes whitespace in valid base64 payloads", source: { type: "base64", data: " aGVs bG8= \n", mediaType: "image/png", } as const, limits: createImageSourceLimits(["image/png"]), expectedData: "aGVsbG8=", }, ] as const)("$name", async ({ source, limits, expectedData, expectedError }) => { await expectBase64ImageValidationCase({ source, limits, ...(expectedData ? { expectedData } : {}), ...(expectedError ? { expectedError } : {}), }); }); });
¤ Dauer der Verarbeitung: 0.17 Sekunden (vorverarbeitet am 2026-06-10) ¤*© Formatika GbR, Deutschland |
|
||||||||||||||
2026-06-09