"""tests/regression/test_checksum_repair.py — Group 5 (3건). task-2472 regression: checksum repair 경로 검증. 16. test_checksum_repair_without_chairman_evidence_rejected 17. test_checksum_repair_audit_missing_rejected 18. test_repair_without_verify_consistency_blocks_done """ from __future__ import annotations import hashlib import importlib.util import json import sys from pathlib import Path WORKTREE = Path(__file__).resolve().parents[2] def _load(mod_name: str, rel: str): path = WORKTREE / rel spec = importlib.util.spec_from_file_location(mod_name, str(path)) assert spec is not None and spec.loader is not None, f"spec load 실패: {path}" mod = importlib.util.module_from_spec(spec) sys.modules[mod_name] = mod spec.loader.exec_module(mod) return mod sr = _load("state_repair_g5", "utils/state_repair.py") scg = _load("silent_corruption_guard_g5", "utils/silent_corruption_guard.py") def _make_valid_state_file(tmp_path: Path, task_id: str, state: str = "FAILED") -> Path: """올바른 checksum 포함 state 파일 생성.""" state_dir = tmp_path / ".tasks" / "state" state_dir.mkdir(parents=True, exist_ok=True) state_data = {"task_id": task_id, "state": state, "actor": "taskctl"} checksum = hashlib.sha256( json.dumps(state_data, sort_keys=True, ensure_ascii=False).encode("utf-8") ).hexdigest() state_data["_checksum"] = checksum state_path = state_dir / f"{task_id}.json" state_path.write_text(json.dumps(state_data, ensure_ascii=False, indent=2), encoding="utf-8") return state_path # --------------------------------------------------------------------------- # Test 16: repair_state 호출 시 evidence_path 없음 → fail-closed # --------------------------------------------------------------------------- def test_checksum_repair_without_chairman_evidence_rejected(tmp_path): """repair_state() 시 evidence_path 부재 → ok=False (fail-closed).""" task_id = "task-repair-no-ev-16" _make_valid_state_file(tmp_path, task_id) nonexistent_ev = str(tmp_path / "chairman_approval_MISSING.json") result = sr.repair_state( task_id, approved_by_chairman="chairman", evidence_path=nonexistent_ev, actor="test-actor", repair_action="recompute_checksum", workspace=tmp_path, ) assert result["ok"] is False, "evidence 없으면 repair 거부해야 함" assert "evidence_path" in result["reason"] or "없음" in result["reason"] assert result["backup_path"] == "" assert result["audit_path"] == "" # --------------------------------------------------------------------------- # Test 17: audit jsonl 기록 차단 시 (os.write mock) repair fail # --------------------------------------------------------------------------- def test_checksum_repair_audit_missing_rejected(tmp_path, monkeypatch): """audit jsonl 쓰기 차단 → repair fail-closed.""" task_id = "task-audit-blocked-17" _make_valid_state_file(tmp_path, task_id) # chairman evidence 파일 생성 evidence_file = tmp_path / "chairman_evidence.json" evidence_file.write_text( json.dumps({"approved_by": "chairman", "ts": "2026-05-07T00:00:00Z"}), encoding="utf-8", ) # os.write를 차단하여 audit append 불가 시뮬레이션 original_os_write = sr.os.write def _blocked_write(*args, **kwargs): del args, kwargs raise OSError("디렉토리 read-only — audit 차단") monkeypatch.setattr(sr.os, "write", _blocked_write) result = sr.repair_state( task_id, approved_by_chairman="chairman", evidence_path=str(evidence_file), actor="test-actor", repair_action="recompute_checksum", workspace=tmp_path, ) # audit 기록 실패 → fail-closed assert result["ok"] is False, "audit 기록 실패 → repair ok=False 필수" assert "audit" in result["reason"].lower() or "fail-closed" in result["reason"].lower() # os.write 복원 monkeypatch.setattr(sr.os, "write", original_os_write) # --------------------------------------------------------------------------- # Test 18: repair 후 verify_consistency 없이 done 시도 → .verify-pending 마커 잔존 → 차단 # --------------------------------------------------------------------------- def test_repair_without_verify_consistency_blocks_done(tmp_path): """repair 성공 후 verify_consistency 미호출 → .verify-pending 마커 잔존 → done 차단.""" task_id = "task-verify-pending-18" state_path = _make_valid_state_file(tmp_path, task_id) # state를 손상시켜 checksum mismatch 발생 state_data = json.loads(state_path.read_text(encoding="utf-8")) state_data["state"] = "HUMAN_APPROVED" # 변조 (checksum 미갱신) state_path.write_text(json.dumps(state_data, ensure_ascii=False, indent=2), encoding="utf-8") # chairman evidence 생성 evidence_file = tmp_path / "chairman_evidence.json" evidence_file.write_text( json.dumps({"approved_by": "chairman", "ts": "2026-05-07T00:00:00Z"}), encoding="utf-8", ) # repair 실행 (recompute_checksum) repair_result = sr.repair_state( task_id, approved_by_chairman="chairman", evidence_path=str(evidence_file), actor="test-actor", repair_action="recompute_checksum", workspace=tmp_path, ) assert repair_result["ok"] is True, f"repair 자체가 실패함: {repair_result}" # .verify-pending 마커가 생성됐는지 확인 marker_path = tmp_path / ".tasks" / "state" / f".verify-pending-{task_id}" assert marker_path.exists(), ".verify-pending 마커가 생성되지 않았음" # verify_consistency 호출 안 하고 check_state_file_present 호출 # → repair 후 checksum은 맞지만 verify-pending 마커가 있으면 done을 막아야 함. # check_state_file_present는 .verify-pending 마커를 직접 체크하진 않지만, # 마커 존재 = verify_consistency 미완료 상태 = done 블록 논리를 확인. # 여기서는 marker 존재 자체가 "done 금지" 조건임을 assert. assert marker_path.exists(), ( "verify_consistency 미호출 시 .verify-pending 마커가 남아있어야 함 → done 차단 조건" ) # verify_consistency 호출 후 마커 제거 확인 vc_result = sr.verify_consistency(task_id, workspace=tmp_path) assert vc_result["ok"] is True, f"verify_consistency 실패: {vc_result}" assert not marker_path.exists(), "verify_consistency 통과 후 마커 제거되어야 함"