improved coverage for python (#599)

SinghHrmn · web-flow · commit 42b45935d254 · 2020-04-28T17:05:20.000-07:00
diff --git a/cve_bin_tool/checkers/python.py b/cve_bin_tool/checkers/python.py
@@ -68,9 +68,6 @@ def get_version(lines, filename):
     elif guess_contains_python(lines):
         version_info["is_or_contains"] = "contains"
 
-    elif "python" in lines:
-        version_info["is_or_contains"] = "is"
-
     if "is_or_contains" in version_info:
         version_info["modulename"] = "python"
         version_info["version"] = guess_version(lines)
diff --git a/test/binaries/test-py_thon-3.7.1_1.c b/test/binaries/test-py_thon-3.7.1_1.c
@@ -0,0 +1,12 @@
+#include <stdio.h>
+
+int main() {
+  printf("This program is designed to test the cve-bin-tool checker.");
+  printf("It outputs a few strings normally associated with python 3.7.1.");
+  printf("They appear below this line.");
+  printf("------------------");
+  printf("3.7.1");
+  printf("Fatal Python error: unable to decode the command line argument");
+
+  return 0;
+}
diff --git a/test/binaries/test-py_thon-3.7.1_2.c b/test/binaries/test-py_thon-3.7.1_2.c
@@ -0,0 +1,12 @@
+#include <stdio.h>
+
+int main() {
+  printf("This program is designed to test the cve-bin-tool checker.");
+  printf("It outputs a few strings normally associated with python 3.7.1.");
+  printf("They appear below this line.");
+  printf("------------------");
+  printf("3.7.1");
+  printf("CPython");
+
+  return 0;
+}
diff --git a/test/binaries/test-py_thon-3.7.1_3.c b/test/binaries/test-py_thon-3.7.1_3.c
@@ -0,0 +1,12 @@
+#include <stdio.h>
+
+int main() {
+  printf("This program is designed to test the cve-bin-tool checker.");
+  printf("It outputs a few strings normally associated with python 3.7.1.");
+  printf("They appear below this line.");
+  printf("------------------");
+  printf("3.7.1");
+  printf("Internal error in the Python interpreter");
+
+  return 0;
+}
diff --git a/test/test_scanner.py b/test/test_scanner.py
@@ -988,6 +988,45 @@ def _file_test(self, url, filename, package, version):
                     "CVE-2017-17522"
                 ],
             ),
+            (
+                "test-py_thon-3.7.1_1.out",
+                "python",
+                "3.7.1",
+                [
+                    # Check for known cves in this version
+                    "CVE-2019-16935"
+                ],
+                [
+                    # Check to make sure an older CVE isn't included
+                    "CVE-2017-17522"
+                ],
+            ),
+            (
+                "test-py_thon-3.7.1_2.out",
+                "python",
+                "3.7.1",
+                [
+                    # Check for known cves in this version
+                    "CVE-2019-16935"
+                ],
+                [
+                    # Check to make sure an older CVE isn't included
+                    "CVE-2017-17522"
+                ],
+            ),
+            (
+                "test-py_thon-3.7.1_3.out",
+                "python",
+                "3.7.1",
+                [
+                    # Check for known cves in this version
+                    "CVE-2019-16935"
+                ],
+                [
+                    # Check to make sure an older CVE isn't included
+                    "CVE-2017-17522"
+                ],
+            ),
             (
                 "test-python-3.7.2.out",
                 "python",
