test: Fix: new tests don't work with zopfli and no flate2

Pr0methean · Pr0methean · commit e124d048a2b7 · 2025-09-16T13:49:20.000-07:00
diff --git a/README.md b/README.md
@@ -39,7 +39,8 @@ The features available are:
 * `deflate-flate2`: Combine this with any `flate2` feature flag that enables a back-end, to support deflate compression
   at quality 1..=9.
 * `deflate-zopfli`: Enables deflating files with the `zopfli` library (used when compression quality is 10..=264). This
-  is the most effective `deflate` implementation available, but also among the slowest.
+  is the most effective `deflate` implementation available, but also among the slowest. If `flate2` isn't also enabled,
+  only compression will be supported and not decompression.
 * `deflate64`: Enables the deflate64 compression algorithm. Only decompression is supported.
 * `lzma`: Enables the LZMA compression algorithm. Only decompression is supported.
 * `bzip2`: Enables the BZip2 compression algorithm.
diff --git a/tests/invalid_path.rs b/tests/invalid_path.rs
@@ -1,158 +1,180 @@
-use std::io::Write;
-use zip::write::SimpleFileOptions;
-use zip::{ZipArchive, ZipWriter};
-
-/// Create a ZIP file with entries that have absolute paths (starting with /)
-/// This simulates the problematic ZIP file mentioned in the bug report
-fn create_zip_with_absolute_paths() -> Vec<u8> {
-    let buf = Vec::new();
-    let mut writer = ZipWriter::new(std::io::Cursor::new(buf));
-    let options = SimpleFileOptions::default();
-
-    // Create entries with absolute paths - this should cause "Invalid file path" error
-    writer.add_directory("/_/", options).unwrap();
-    writer.start_file("/_/file1.txt", options).unwrap();
-    writer.write_all(b"File 1 content").unwrap();
-    writer.start_file("/_/subdir/file2.txt", options).unwrap();
-    writer.write_all(b"File 2 content").unwrap();
-
-    writer.finish().unwrap().into_inner()
-}
+#[cfg(all(
+    test,
+    not(all(feature = "deflate-zopfli", not(feature = "deflate-flate2")))
+))]
+pub mod tests {
+    use std::io::Write;
+    use zip::write::SimpleFileOptions;
+    use zip::{ZipArchive, ZipWriter};
+
+    /// Create a ZIP file with entries that have absolute paths (starting with /)
+    /// This simulates the problematic ZIP file mentioned in the bug report
+    fn create_zip_with_absolute_paths() -> Vec<u8> {
+        let buf = Vec::new();
+        let mut writer = ZipWriter::new(std::io::Cursor::new(buf));
+        let options = SimpleFileOptions::default();
+
+        // Create entries with absolute paths - this should cause "Invalid file path" error
+        writer.add_directory("/_/", options).unwrap();
+        writer.start_file("/_/file1.txt", options).unwrap();
+        writer.write_all(b"File 1 content").unwrap();
+        writer.start_file("/_/subdir/file2.txt", options).unwrap();
+        writer.write_all(b"File 2 content").unwrap();
+
+        writer.finish().unwrap().into_inner()
+    }
 
-/// Create a ZIP file with entries that have Windows-style absolute paths
-fn create_zip_with_windows_absolute_paths() -> Vec<u8> {
-    let buf = Vec::new();
-    let mut writer = ZipWriter::new(std::io::Cursor::new(buf));
-    let options = SimpleFileOptions::default();
+    /// Create a ZIP file with entries that have Windows-style absolute paths
+    fn create_zip_with_windows_absolute_paths() -> Vec<u8> {
+        let buf = Vec::new();
+        let mut writer = ZipWriter::new(std::io::Cursor::new(buf));
+        let options = SimpleFileOptions::default();
 
-    // Create entries with Windows absolute paths
-    writer.add_directory("C:\\temp\\", options).unwrap();
-    writer.start_file("C:\\temp\\file1.txt", options).unwrap();
-    writer.write_all(b"File 1 content").unwrap();
+        // Create entries with Windows absolute paths
+        writer.add_directory("C:\\temp\\", options).unwrap();
+        writer.start_file("C:\\temp\\file1.txt", options).unwrap();
+        writer.write_all(b"File 1 content").unwrap();
 
-    writer.finish().unwrap().into_inner()
-}
+        writer.finish().unwrap().into_inner()
+    }
 
-/// Create a ZIP file that more closely simulates the soldeer registry issue
-/// with an underscore directory at the root with absolute path
-fn create_zip_like_soldeer_issue() -> Vec<u8> {
-    let buf = Vec::new();
-    let mut writer = ZipWriter::new(std::io::Cursor::new(buf));
-    let options = SimpleFileOptions::default();
-
-    // Simulate the soldeer registry structure with absolute paths
-    writer.add_directory("/_/", options).unwrap();
-    writer.add_directory("/_/forge-std/", options).unwrap();
-    writer.start_file("/_/forge-std/src/Test.sol", options).unwrap();
-    writer.write_all(b"// SPDX-License-Identifier: MIT\npragma solidity ^0.8.0;\n").unwrap();
-    writer.start_file("/_/forge-std/lib/ds-test/src/test.sol", options).unwrap();
-    writer.write_all(b"// Test contract\n").unwrap();
-
-    writer.finish().unwrap().into_inner()
-}
+    /// Create a ZIP file that more closely simulates the soldeer registry issue
+    /// with an underscore directory at the root with absolute path
+    fn create_zip_like_soldeer_issue() -> Vec<u8> {
+        let buf = Vec::new();
+        let mut writer = ZipWriter::new(std::io::Cursor::new(buf));
+        let options = SimpleFileOptions::default();
+
+        // Simulate the soldeer registry structure with absolute paths
+        writer.add_directory("/_/", options).unwrap();
+        writer.add_directory("/_/forge-std/", options).unwrap();
+        writer
+            .start_file("/_/forge-std/src/Test.sol", options)
+            .unwrap();
+        writer
+            .write_all(b"// SPDX-License-Identifier: MIT\npragma solidity ^0.8.0;\n")
+            .unwrap();
+        writer
+            .start_file("/_/forge-std/lib/ds-test/src/test.sol", options)
+            .unwrap();
+        writer.write_all(b"// Test contract\n").unwrap();
+
+        writer.finish().unwrap().into_inner()
+    }
 
-#[test]
-fn test_extract_zip_with_absolute_paths() {
-    let zip_data = create_zip_with_absolute_paths();
-    let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
-
-    // After fix: should extract successfully, stripping the leading /
-    let temp_dir = tempfile::TempDir::new().unwrap();
-    archive.extract(temp_dir.path()).unwrap();
-    
-    // Files should be extracted with the absolute path prefix stripped
-    assert!(temp_dir.path().join("_").exists());
-    assert!(temp_dir.path().join("_/file1.txt").exists());
-    assert!(temp_dir.path().join("_/subdir/file2.txt").exists());
-    
-    // Verify file contents
-    let content = std::fs::read_to_string(temp_dir.path().join("_/file1.txt")).unwrap();
-    assert_eq!(content, "File 1 content");
-}
+    #[test]
+    fn test_extract_zip_with_absolute_paths() {
+        let zip_data = create_zip_with_absolute_paths();
+        let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
 
-#[test]
-fn test_extract_zip_with_windows_absolute_paths() {
-    let zip_data = create_zip_with_windows_absolute_paths();
-    let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
-
-    // After fix: should extract successfully, stripping the C:\ prefix
-    let temp_dir = tempfile::TempDir::new().unwrap();
-    archive.extract(temp_dir.path()).unwrap();
-    
-    // Files should be extracted with the Windows absolute path prefix stripped
-    assert!(temp_dir.path().join("temp").exists());
-    assert!(temp_dir.path().join("temp/file1.txt").exists());
-    
-    // Verify file contents
-    let content = std::fs::read_to_string(temp_dir.path().join("temp/file1.txt")).unwrap();
-    assert_eq!(content, "File 1 content");
-}
+        // After fix: should extract successfully, stripping the leading /
+        let temp_dir = tempfile::TempDir::new().unwrap();
+        archive.extract(temp_dir.path()).unwrap();
 
-#[test]
-fn test_extract_soldeer_like_zip() {
-    let zip_data = create_zip_like_soldeer_issue();
-    let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
-
-    // This should now work without "Invalid file path" error
-    let temp_dir = tempfile::TempDir::new().unwrap();
-    archive.extract(temp_dir.path()).unwrap();
-    
-    // Verify the structure is extracted correctly with absolute prefix stripped
-    assert!(temp_dir.path().join("_").exists());
-    assert!(temp_dir.path().join("_/forge-std").exists());
-    assert!(temp_dir.path().join("_/forge-std/src/Test.sol").exists());
-    assert!(temp_dir.path().join("_/forge-std/lib/ds-test/src/test.sol").exists());
-    
-    // Verify file contents
-    let content = std::fs::read_to_string(temp_dir.path().join("_/forge-std/src/Test.sol")).unwrap();
-    assert!(content.contains("SPDX-License-Identifier"));
-}
+        // Files should be extracted with the absolute path prefix stripped
+        assert!(temp_dir.path().join("_").exists());
+        assert!(temp_dir.path().join("_/file1.txt").exists());
+        assert!(temp_dir.path().join("_/subdir/file2.txt").exists());
 
-#[test]
-fn test_individual_file_access_with_absolute_paths() {
-    let zip_data = create_zip_with_absolute_paths();
-    let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
-
-    // Test accessing individual files
-    for i in 0..archive.len() {
-        let file = archive.by_index(i).unwrap();
-        println!("File name: {}", file.name());
-        
-        // After our fix, enclosed_name should return a safe relative path
-        let enclosed_name = file.enclosed_name();
-        println!("Enclosed name: {:?}", enclosed_name);
-        
-        // Should now return Some with the absolute prefix stripped
-        assert!(enclosed_name.is_some());
-        let path = enclosed_name.unwrap();
-        
-        // Verify the path doesn't start with / or contain absolute components
-        assert!(!path.is_absolute());
-        assert!(!path.to_string_lossy().starts_with('/'));
+        // Verify file contents
+        let content = std::fs::read_to_string(temp_dir.path().join("_/file1.txt")).unwrap();
+        assert_eq!(content, "File 1 content");
     }
-}
 
-#[test]
-fn test_security_still_prevents_directory_traversal() {
-    let buf = Vec::new();
-    let mut writer = ZipWriter::new(std::io::Cursor::new(buf));
-    let options = SimpleFileOptions::default();
-
-    // Create a ZIP with directory traversal attempts
-    writer.start_file("../../../etc/passwd", options).unwrap();
-    writer.write_all(b"malicious content").unwrap();
-    writer.start_file("foo/../../../etc/shadow", options).unwrap();
-    writer.write_all(b"more malicious content").unwrap();
-
-    let zip_data = writer.finish().unwrap().into_inner();
-    let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
-
-    // These should still fail due to directory traversal protection
-    for i in 0..archive.len() {
-        let file = archive.by_index(i).unwrap();
-        let enclosed_name = file.enclosed_name();
-        
-        // Directory traversal attempts should still return None
-        assert!(enclosed_name.is_none(), "Directory traversal should still be blocked for: {}", file.name());
+    #[test]
+    fn test_extract_zip_with_windows_absolute_paths() {
+        let zip_data = create_zip_with_windows_absolute_paths();
+        let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
+
+        // After fix: should extract successfully, stripping the C:\ prefix
+        let temp_dir = tempfile::TempDir::new().unwrap();
+        archive.extract(temp_dir.path()).unwrap();
+
+        // Files should be extracted with the Windows absolute path prefix stripped
+        assert!(temp_dir.path().join("temp").exists());
+        assert!(temp_dir.path().join("temp/file1.txt").exists());
+
+        // Verify file contents
+        let content = std::fs::read_to_string(temp_dir.path().join("temp/file1.txt")).unwrap();
+        assert_eq!(content, "File 1 content");
+    }
+
+    #[test]
+    fn test_extract_soldeer_like_zip() {
+        let zip_data = create_zip_like_soldeer_issue();
+        let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
+
+        // This should now work without "Invalid file path" error
+        let temp_dir = tempfile::TempDir::new().unwrap();
+        archive.extract(temp_dir.path()).unwrap();
+
+        // Verify the structure is extracted correctly with absolute prefix stripped
+        assert!(temp_dir.path().join("_").exists());
+        assert!(temp_dir.path().join("_/forge-std").exists());
+        assert!(temp_dir.path().join("_/forge-std/src/Test.sol").exists());
+        assert!(temp_dir
+            .path()
+            .join("_/forge-std/lib/ds-test/src/test.sol")
+            .exists());
+
+        // Verify file contents
+        let content =
+            std::fs::read_to_string(temp_dir.path().join("_/forge-std/src/Test.sol")).unwrap();
+        assert!(content.contains("SPDX-License-Identifier"));
+    }
+
+    #[test]
+    fn test_individual_file_access_with_absolute_paths() {
+        let zip_data = create_zip_with_absolute_paths();
+        let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
+
+        // Test accessing individual files
+        for i in 0..archive.len() {
+            let file = archive.by_index(i).unwrap();
+            println!("File name: {}", file.name());
+
+            // After our fix, enclosed_name should return a safe relative path
+            let enclosed_name = file.enclosed_name();
+            println!("Enclosed name: {:?}", enclosed_name);
+
+            // Should now return Some with the absolute prefix stripped
+            assert!(enclosed_name.is_some());
+            let path = enclosed_name.unwrap();
+
+            // Verify the path doesn't start with / or contain absolute components
+            assert!(!path.is_absolute());
+            assert!(!path.to_string_lossy().starts_with('/'));
+        }
     }
-}
+
+    #[test]
+    fn test_security_still_prevents_directory_traversal() {
+        let buf = Vec::new();
+        let mut writer = ZipWriter::new(std::io::Cursor::new(buf));
+        let options = SimpleFileOptions::default();
+
+        // Create a ZIP with directory traversal attempts
+        writer.start_file("../../../etc/passwd", options).unwrap();
+        writer.write_all(b"malicious content").unwrap();
+        writer
+            .start_file("foo/../../../etc/shadow", options)
+            .unwrap();
+        writer.write_all(b"more malicious content").unwrap();
+
+        let zip_data = writer.finish().unwrap().into_inner();
+        let mut archive = ZipArchive::new(std::io::Cursor::new(zip_data)).unwrap();
+
+        // These should still fail due to directory traversal protection
+        for i in 0..archive.len() {
+            let file = archive.by_index(i).unwrap();
+            let enclosed_name = file.enclosed_name();
+
+            // Directory traversal attempts should still return None
+            assert!(
+                enclosed_name.is_none(),
+                "Directory traversal should still be blocked for: {}",
+                file.name()
+            );
+        }
+    }
+}
