MOD-8036 Add tests for 393 and 394 (#395)

* add test

* add comment

* comments from Meir

* add else

* tests

* formatting

* implement `enum AclCategory`

* using `TestConnection` API

Author: ephraimfeldblum

examples/acl.rs

@@ -1,6 +1,6 @@
 use redis_module::{
-    redis_module, AclPermissions, Context, NextArg, RedisError, RedisResult, RedisString,
-    RedisValue,
+    redis_module, AclCategory, AclPermissions, Context, NextArg, RedisError, RedisResult,
+    RedisString, RedisValue,
 };
 
 fn verify_key_access_for_user(ctx: &Context, args: Vec<RedisString>) -> RedisResult {
@@ -25,8 +25,9 @@ redis_module! {
     version: 1,
     allocator: (redis_module::alloc::RedisAlloc, redis_module::alloc::RedisAlloc),
     data_types: [],
+    acl_categories: [AclCategory::from("acl"), ],
     commands: [
-        ["verify_key_access_for_user", verify_key_access_for_user, "", 0, 0, 0, ""],
-        ["get_current_user", get_current_user, "", 0, 0, 0, ""],
+        ["verify_key_access_for_user", verify_key_access_for_user, "", 0, 0, 0, AclCategory::Read, AclCategory::from("acl")],
+        ["get_current_user", get_current_user, "", 0, 0, 0, vec![AclCategory::Read, AclCategory::Fast], AclCategory::from("acl")],
     ],
 }

src/context/mod.rs

@@ -926,6 +926,113 @@ bitflags! {
     }
 }
 
+#[derive(Debug, Clone, PartialEq, Eq, Default)]
+pub enum AclCategory {
+    #[default]
+    None,
+    Keyspace,
+    Read,
+    Write,
+    Set,
+    SortedSet,
+    List,
+    Hash,
+    String,
+    Bitmap,
+    HyperLogLog,
+    Geo,
+    Stream,
+    PubSub,
+    Admin,
+    Fast,
+    Slow,
+    Blocking,
+    Dangerous,
+    Connection,
+    Transaction,
+    Scripting,
+    Single(String),
+    Multi(Vec<AclCategory>),
+}
+
+impl From<Vec<AclCategory>> for AclCategory {
+    fn from(value: Vec<AclCategory>) -> Self {
+        AclCategory::Multi(value)
+    }
+}
+
+impl From<&str> for AclCategory {
+    fn from(value: &str) -> Self {
+        match value {
+            "" => AclCategory::None,
+            "keyspace" => AclCategory::Keyspace,
+            "read" => AclCategory::Read,
+            "write" => AclCategory::Write,
+            "set" => AclCategory::Set,
+            "sortedset" => AclCategory::SortedSet,
+            "list" => AclCategory::List,
+            "hash" => AclCategory::Hash,
+            "string" => AclCategory::String,
+            "bitmap" => AclCategory::Bitmap,
+            "hyperloglog" => AclCategory::HyperLogLog,
+            "geo" => AclCategory::Geo,
+            "stream" => AclCategory::Stream,
+            "pubsub" => AclCategory::PubSub,
+            "admin" => AclCategory::Admin,
+            "fast" => AclCategory::Fast,
+            "slow" => AclCategory::Slow,
+            "blocking" => AclCategory::Blocking,
+            "dangerous" => AclCategory::Dangerous,
+            "connection" => AclCategory::Connection,
+            "transaction" => AclCategory::Transaction,
+            "scripting" => AclCategory::Scripting,
+            _ if !value.contains(" ") => AclCategory::Single(value.to_string()),
+            _ => AclCategory::Multi(value.split_whitespace().map(AclCategory::from).collect()),
+        }
+    }
+}
+
+impl From<AclCategory> for String {
+    fn from(value: AclCategory) -> Self {
+        match value {
+            AclCategory::None => "".to_string(),
+            AclCategory::Keyspace => "keyspace".to_string(),
+            AclCategory::Read => "read".to_string(),
+            AclCategory::Write => "write".to_string(),
+            AclCategory::Set => "set".to_string(),
+            AclCategory::SortedSet => "sortedset".to_string(),
+            AclCategory::List => "list".to_string(),
+            AclCategory::Hash => "hash".to_string(),
+            AclCategory::String => "string".to_string(),
+            AclCategory::Bitmap => "bitmap".to_string(),
+            AclCategory::HyperLogLog => "hyperloglog".to_string(),
+            AclCategory::Geo => "geo".to_string(),
+            AclCategory::Stream => "stream".to_string(),
+            AclCategory::PubSub => "pubsub".to_string(),
+            AclCategory::Admin => "admin".to_string(),
+            AclCategory::Fast => "fast".to_string(),
+            AclCategory::Slow => "slow".to_string(),
+            AclCategory::Blocking => "blocking".to_string(),
+            AclCategory::Dangerous => "dangerous".to_string(),
+            AclCategory::Connection => "connection".to_string(),
+            AclCategory::Transaction => "transaction".to_string(),
+            AclCategory::Scripting => "scripting".to_string(),
+            AclCategory::Single(s) => s,
+            AclCategory::Multi(v) => v
+                .into_iter()
+                .map(String::from)
+                .collect::<Vec<_>>()
+                .join(" "),
+        }
+    }
+}
+
+impl std::fmt::Display for AclCategory {
+    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
+        write!(f, "{}", String::from(self.clone()))
+    }
+}
+
 /// The values allowed in the "info" sections and dictionaries.
 #[derive(Debug, Clone)]
 pub enum InfoContextBuilderFieldBottomLevelValue {

src/include/redismodule.h

@@ -1326,6 +1326,7 @@ static void RedisModule_InitAPI(RedisModuleCtx *ctx) {
     REDISMODULE_GET_API(CreateSubcommand);
     REDISMODULE_GET_API(SetCommandInfo);
     REDISMODULE_GET_API(SetCommandACLCategories);
+    REDISMODULE_GET_API(AddACLCategory);
     REDISMODULE_GET_API(SetModuleAttribs);
     REDISMODULE_GET_API(IsModuleNameBusy);
     REDISMODULE_GET_API(WrongArity);

src/lib.rs

@@ -33,6 +33,7 @@ pub use crate::context::commands;
 pub use crate::context::defrag;
 pub use crate::context::keys_cursor::KeysCursor;
 pub use crate::context::server_events;
+pub use crate::context::AclCategory;
 pub use crate::context::AclPermissions;
 #[cfg(any(
     feature = "min-redis-compatibility-version-7-4",

src/macros.rs

@@ -7,7 +7,11 @@ macro_rules! redis_command {
      $firstkey:expr,
      $lastkey:expr,
      $keystep:expr,
-     $acl_categories:expr) => {{
+     $mandatory_acl_categories:expr
+     $(, $optional_acl_categories:expr)?
+    ) => {{
+        use redis_module::AclCategory;
+
         let name = CString::new($command_name).unwrap();
         let flags = CString::new($command_flags).unwrap();
 
@@ -37,34 +41,67 @@ macro_rules! redis_command {
             )
         } == $crate::raw::Status::Err as c_int
         {
+            $crate::raw::redis_log(
+                $ctx,
+                &format!("Error: failed to create command {}", $command_name),
+            );
             return $crate::raw::Status::Err as c_int;
         }
 
-        if $acl_categories != "" {
-            let acl_categories = CString::new($acl_categories).unwrap();
+        let command =
+            unsafe { $crate::raw::RedisModule_GetCommand.unwrap()($ctx, name.as_ptr()) };
+        if command.is_null() {
+            $crate::raw::redis_log(
+                $ctx,
+                &format!("Error: failed to get command {}", $command_name),
+            );
+            return $crate::raw::Status::Err as c_int;
+        }
 
-            let command =
-                unsafe { $crate::raw::RedisModule_GetCommand.unwrap()($ctx, name.as_ptr()) };
-            if command.is_null() {
-                return $crate::raw::Status::Err as c_int;
-            }
+        let mandatory_acl_categories = AclCategory::from($mandatory_acl_categories);
+        if let Some(RM_SetCommandACLCategories) = $crate::raw::RedisModule_SetCommandACLCategories {
+            let mut acl_categories = CString::default();
+            $(
+                let optional_acl_categories = AclCategory::from($optional_acl_categories);
+                if mandatory_acl_categories != AclCategory::None && optional_acl_categories != AclCategory::None {
+                    acl_categories = CString::new(format!("{} {}", mandatory_acl_categories, optional_acl_categories)).unwrap();
+                } else if optional_acl_categories != AclCategory::None {
+                    acl_categories = CString::new(format!("{}", $optional_acl_categories)).unwrap();
+                }
+                // Warn if optional ACL categories are not set, but don't fail.
+                if RM_SetCommandACLCategories(command, acl_categories.as_ptr()) == $crate::raw::Status::Err as c_int {
+                    $crate::raw::redis_log(
+                        $ctx,
+                        &format!(
+                            "Warning: failed to set command `{}` ACL categories `{}`",
+                            $command_name, acl_categories.to_str().unwrap()
+                        ),
+                    );
+                } else
+            )?
+            if mandatory_acl_categories != AclCategory::None {
+                acl_categories = CString::new(format!("{}", mandatory_acl_categories)).unwrap();
 
-            if let Some(RM_SetCommandACLCategories) =
-                $crate::raw::RedisModule_SetCommandACLCategories
-            {
+                // Fail if mandatory ACL categories are not set.
                 if RM_SetCommandACLCategories(command, acl_categories.as_ptr())
                     == $crate::raw::Status::Err as c_int
                 {
                     $crate::raw::redis_log(
                         $ctx,
                         &format!(
-                            "Error: failed to set command {} ACL categories {}",
-                            $command_name, $acl_categories
+                            "Error: failed to set command `{}` mandatory ACL categories `{}`",
+                            $command_name, mandatory_acl_categories
                         ),
                     );
                     return $crate::raw::Status::Err as c_int;
                 }
             }
+        } else if mandatory_acl_categories != AclCategory::None {
+            $crate::raw::redis_log(
+                $ctx,
+                "Error: Redis version does not support ACL categories",
+            );
+            return $crate::raw::Status::Err as c_int;
         }
     }};
 }
@@ -134,7 +171,11 @@ macro_rules! redis_module {
         data_types: [
             $($data_type:ident),* $(,)*
         ],
-        $(acl_category: $acl_category:expr,)* $(,)*
+        // eg: `acl_category: [ "name_of_module_acl_category", ],`
+        // This will add the specified (optional) ACL categories.
+        $(acl_categories: [
+            $($module_acl_category:expr,)*
+        ],)?
         $(init: $init_func:ident,)* $(,)*
         $(deinit: $deinit_func:ident,)* $(,)*
         $(info: $info_func:ident,)?
@@ -146,7 +187,8 @@ macro_rules! redis_module {
                 $firstkey:expr,
                 $lastkey:expr,
                 $keystep:expr,
-                $acl_categories:expr
+                $mandatory_command_acl_categories:expr
+                $(, $optional_command_acl_categories:expr)?
               ]),* $(,)*
         ] $(,)*
         $(event_handlers: [
@@ -271,17 +313,24 @@ macro_rules! redis_module {
             )*
 
             $(
-                let category = CString::new($acl_category).unwrap();
-                if let Some(RM_AddACLCategory) = raw::RedisModule_AddACLCategory {
-                    if RM_AddACLCategory(ctx, category.as_ptr()) == raw::Status::Err as c_int {
-                        raw::redis_log(ctx, &format!("Error: failed to add ACL category {}", $acl_category));
-                        return raw::Status::Err as c_int;
+                $(
+                    if let Some(RM_AddACLCategory) = raw::RedisModule_AddACLCategory {
+                        let module_acl_category = AclCategory::from($module_acl_category);
+                        if module_acl_category != AclCategory::None {
+                            let category = CString::new(format!("{}", $module_acl_category)).unwrap();
+                            if RM_AddACLCategory(ctx, category.as_ptr()) == raw::Status::Err as c_int {
+                                raw::redis_log(ctx, &format!("Error: failed to add ACL category `{}`", $module_acl_category));
+                                return raw::Status::Err as c_int;
+                            }
+                        }
+                    } else {
+                        raw::redis_log(ctx, "Warning: Redis version does not support adding new ACL categories");
                     }
-                }
-            )*
+                )*
+            )?
 
             $(
-                $crate::redis_command!(ctx, $name, $command, $flags, $firstkey, $lastkey, $keystep, $acl_categories);
+                $crate::redis_command!(ctx, $name, $command, $flags, $firstkey, $lastkey, $keystep, $mandatory_command_acl_categories $(, $optional_command_acl_categories)?);
             )*
 
             if $crate::commands::register_commands(&context) == raw::Status::Err {

test.sh

@@ -1,2 +1,2 @@
 #!/usr/bin/env sh
-cargo test --all --all-targets --no-default-features
+cargo test --all --all-targets --no-default-features --features min-redis-compatibility-version-7-4

tests/integration.rs

@@ -275,6 +275,31 @@ fn test_get_current_user() -> Result<()> {
     Ok(())
 }
 
+#[test]
+#[cfg(feature = "min-redis-compatibility-version-7-4")]
+fn test_set_acl_categories() -> Result<()> {
+    let mut con = TestConnection::new("acl");
+
+    let res: Vec<String> = redis::cmd("ACL").arg("CAT").query(&mut con)?;
+    assert!(res.contains(&"acl".to_owned()));
+
+    Ok(())
+}
+
+#[test]
+#[cfg(feature = "min-redis-compatibility-version-8-0")]
+fn test_set_acl_categories_commands() -> Result<()> {
+    let mut con = TestConnection::new("acl");
+
+    let res: Vec<String> = redis::cmd("ACL").arg("CAT").arg("acl").query(&mut con)?;
+    assert!(
+        res.contains(&"verify_key_access_for_user".to_owned())
+            && res.contains(&"get_current_user".to_owned())
+    );
+
+    Ok(())
+}
+
 #[test]
 fn test_verify_acl_on_user() -> Result<()> {
     let mut con = TestConnection::new("acl");