Nick Bozhenko f7b4df2f32 Add comprehensive test coverage for utils package improvements
This commit adds extensive test coverage for the recent improvements to the utils
package, achieving 91.5% coverage (up from 76.8%). The tests ensure the reliability
and correctness of critical utility functions.

## Test Files Added

### utils/config_accessor_test.go
Tests for the new safe accessor methods that prevent concurrent map access:
- TestGetFileSystemPublishRoots: Verifies safe copying of FileSystemPublishRoots map
- TestGetS3PublishRoots: Tests S3 publish roots accessor with nil map handling
- TestGetSwiftPublishRoots: Tests Swift publish roots accessor
- TestGetAzurePublishRoots: Tests Azure publish roots accessor
- All tests verify that modifications to returned maps don't affect the original

### utils/sanitize_test.go
Comprehensive tests for the SanitizePath security function:
- TestSanitizePath: Tests various path sanitization scenarios including:
  - Path traversal attempts (../)
  - Absolute paths (leading /)
  - Shell expansion attempts ($, `)
  - Environment variable references
  - Command injection attempts
- TestSanitizePathSecurity: Focused security tests for malicious inputs
- Ensures dangerous patterns are properly removed

### utils/checksum_extra_test.go
Tests for additional utility functions:
- TestComplete: Verifies ChecksumInfo.Complete() correctly identifies when all
  checksums (MD5, SHA1, SHA256, SHA512) are present
- TestSaveConfigRaw: Tests configuration file saving with error handling
- TestPackagePoolStorageUnmarshalJSON: Tests JSON unmarshaling for different
  storage types (Azure, Local, S3, Swift)

## Test Characteristics

1. **Comprehensive Coverage**: Tests cover both normal operation and edge cases
2. **Security Focus**: Special attention to security-sensitive functions
3. **Error Handling**: Tests verify proper error handling and edge cases
4. **Concurrency Safety**: Tests ensure thread-safe operations for shared data
5. **Real-world Scenarios**: Test cases based on actual usage patterns

## Testing Approach

All tests use the gopkg.in/check.v1 framework for consistency with the existing
codebase. Tests are designed to be:
- Fast: No external dependencies or network calls
- Deterministic: No random failures or timing dependencies
- Isolated: Each test is independent and can run in any order
- Clear: Test names and assertions clearly indicate what is being tested

These tests provide confidence that the recent race condition fixes and
improvements work correctly and don't introduce regressions.
2025-07-10 10:12:43 -04:00
2025-04-24 12:13:38 +02:00
2025-06-09 14:38:53 +02:00
2024-12-11 10:40:44 +01:00
2024-12-24 19:02:38 +01:00
2024-11-17 14:10:30 +01:00
2024-12-11 10:40:43 +01:00
2025-04-30 12:21:34 +02:00
2024-12-21 21:29:26 +01:00
2024-12-11 10:40:44 +01:00
2014-03-03 20:59:37 +04:00
2025-06-09 14:38:53 +02:00

.. image:: https://github.com/aptly-dev/aptly/actions/workflows/ci.yml/badge.svg
    :target: https://github.com/aptly-dev/aptly/actions

.. image:: https://codecov.io/gh/aptly-dev/aptly/branch/master/graph/badge.svg
    :target: https://codecov.io/gh/aptly-dev/aptly

.. image:: https://badges.gitter.im/Join Chat.svg
    :target: https://matrix.to/#/#aptly:gitter.im

.. image:: https://goreportcard.com/badge/github.com/aptly-dev/aptly
    :target: https://goreportcard.com/report/aptly-dev/aptly

aptly
=====

Aptly is a swiss army knife for Debian repository management.

.. image:: http://www.aptly.info/img/aptly_logo.png
    :target: http://www.aptly.info/

Documentation is available at `http://www.aptly.info/ <http://www.aptly.info/>`_. For support please use
open `issues <https://github.com/aptly-dev/aptly/issues>`_ or `discussions <https://github.com/aptly-dev/aptly/discussions>`_.

Aptly features:

* make mirrors of remote Debian/Ubuntu repositories, limiting by components/architectures
* take snapshots of mirrors at any point in time, fixing state of repository at some moment of time
* publish snapshot as Debian repository, ready to be consumed by apt
* controlled update of one or more packages in snapshot from upstream mirror, tracking dependencies
* merge two or more snapshots into one
* filter repository by search query, pulling dependencies when required
* publish self-made packages as Debian repositories
* REST API for remote access

Any contributions are welcome! Please see `CONTRIBUTING.md <CONTRIBUTING.md>`_.

Installation
=============

Aptly can be installed on several operating systems.

Debian / Ubuntu
----------------

Aptly is provided in the following debian packages:

* **aptly**: Includes the main Aptly binary, man pages, and shell completions
* **aptly-api**: A systemd service for the REST API, using the global /etc/aptly.conf
* **aptly-dbg**: Debug symbols for troubleshooting

The packages can be installed on official `Debian <https://packages.debian.org/search?keywords=aptly>`_ and `Ubuntu <https://packages.ubuntu.com/search?keywords=aptly>`_ distributions.

Upstream Debian Packages
~~~~~~~~~~~~~~~~~~~~~~~~~

If a newer version (not available in Debian/Ubuntu) of aptly is required, upstream debian packages (built from git tags) can be installed as follows:

Install the following APT key (as root)::

    wget -O /etc/apt/keyrings/aptly.asc https://www.aptly.info/pubkey.txt

Define Release APT sources in ``/etc/apt/sources.list.d/aptly.list``::

    deb [signed-by=/etc/apt/keyrings/aptly.asc] http://repo.aptly.info/release DIST main

Where DIST is one of: ``buster``, ``bullseye``, ``bookworm``, ``focal``, ``jammy``, ``noble``

Install aptly packages::

    apt-get update
    apt-get install aptly
    apt-get install aptly-api  # REST API systemd service

CI Builds
~~~~~~~~~~

For testing new features or bugfixes, recent builds are available as CI builds (built from master, may be unstable!) and can be installed as follows:

Define CI APT sources in ``/etc/apt/sources.list.d/aptly-ci.list``::

    deb [signed-by=/etc/apt/keyrings/aptly.asc] http://repo.aptly.info/ci DIST main

Where DIST is one of: ``buster``, ``bullseye``, ``bookworm``, ``focal``, ``jammy``, ``noble``

Note: same gpg key is used as for the Upstream Debian Packages.

Other Operating Systems
------------------------

Binary executables (depends almost only on libc) are available on `GitHub Releases <https://github.com/aptly-dev/aptly/releases>`_ for:

- macOS / darwin (amd64, arm64)
- FreeBSD (amd64, arm64, 386, arm)
- Generic Linux (amd64, arm64, 386, arm)

Integrations
=============

Vagrant:

-   `Vagrant configuration <https://github.com/sepulworld/aptly-vagrant>`_ by
    Zane Williamson, allowing to bring two virtual servers, one with aptly installed
    and another one set up to install packages from repository published by aptly

Docker:

-    `Docker container <https://github.com/mikepurvis/aptly-docker>`_ with aptly inside by Mike Purvis
-    `Docker container <https://github.com/urpylka/docker-aptly>`_ with aptly and nginx by Artem Smirnov

With configuration management systems:

-   `Chef cookbook <https://github.com/hw-cookbooks/aptly>`_ by Aaron Baer
    (Heavy Water Operations, LLC)
-   `Puppet module <https://github.com/alphagov/puppet-aptly>`_ by
    Government Digital Services
-   `Puppet module <https://github.com/tubemogul/puppet-aptly>`_ by
    TubeMogul
-   `SaltStack Formula <https://github.com/saltstack-formulas/aptly-formula>`_ by
    Forrest Alvarez and Brian Jackson
-   `Ansible role <https://github.com/aioue/ansible-role-aptly>`_ by Tom Paine

CLI for aptly API:

-   `Ruby aptly CLI/library <https://github.com/sepulworld/aptly_cli>`_ by Zane Williamson
-   `Python aptly CLI (good for CI) <https://github.com/TimSusa/aptly_api_cli>`_ by Tim Susa

GUI for aptly API:

-   `Python aptly GUI (via pyqt5) <https://github.com/chnyda/python-aptly-gui>`_ by Cedric Hnyda

Scala sbt:

-   `sbt aptly plugin <https://github.com/amalakar/sbt-aptly>`_ by Arup Malakar

Molior:

-   `Molior Debian Build System <https://github.com/molior-dbs/molior>`_ by André Roth

Configuration
=============

etcd Database Configuration
---------------------------

When using etcd as the database backend, aptly supports several environment variables for configuration:

**Timeout Configuration:**

- ``APTLY_ETCD_TIMEOUT``: Operation timeout for etcd requests (default: ``60s``)
  
  Example: ``export APTLY_ETCD_TIMEOUT=30s``

- ``APTLY_ETCD_DIAL_TIMEOUT``: Connection timeout when establishing etcd connection (default: ``60s``)
  
  Example: ``export APTLY_ETCD_DIAL_TIMEOUT=10s``

**Connection Configuration:**

- ``APTLY_ETCD_KEEPALIVE``: Keep-alive timeout for etcd connections (default: ``7200s``)
  
  Example: ``export APTLY_ETCD_KEEPALIVE=3600s``

- ``APTLY_ETCD_MAX_MSG_SIZE``: Maximum message size in bytes for etcd requests/responses (default: ``52428800`` - 50MB)
  
  Example: ``export APTLY_ETCD_MAX_MSG_SIZE=104857600``  # 100MB

**Example Configuration:**

.. code-block:: bash

    # Set shorter timeouts for faster failure detection
    export APTLY_ETCD_TIMEOUT=30s
    export APTLY_ETCD_DIAL_TIMEOUT=10s
    
    # Increase message size for large package operations
    export APTLY_ETCD_MAX_MSG_SIZE=104857600
    
    # Run aptly with etcd backend
    aptly -config=/etc/aptly-etcd.conf mirror update debian-stable

**Features:**

- **Automatic Retry**: Read operations (Get) automatically retry up to 3 times with exponential backoff on temporary failures
- **Timeout Protection**: All etcd operations use context with timeout to prevent indefinite hangs
- **Enhanced Logging**: All etcd errors are logged with operation context for better debugging
- **Configurable Limits**: Message size limits can be adjusted for large package operations
S
Description
Aptly is a swiss army knife for Debian repository management.
Readme MIT 146 MiB
Languages
Go 67.1%
Python 31.8%
Shell 0.5%
Makefile 0.5%