Merge pull request #86 from magento-commerce/imported-svera-magento-coding-standard-300

[Imported] AC-682: Create phpcs static check for RestrictedCodeTest

Author: svera

Magento2/Sniffs/Legacy/RestrictedCodeSniff.php

@@ -0,0 +1,134 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+declare(strict_types = 1);
+
+namespace Magento2\Sniffs\Legacy;
+
+use PHP_CodeSniffer\Sniffs\Sniff;
+use PHP_CodeSniffer\Files\File;
+
+/**
+ * Tests to find usage of restricted code
+ */
+class RestrictedCodeSniff implements Sniff
+{
+    private const ERROR_MESSAGE = "Class '%s' is restricted in %s. Suggested replacement: %s";
+    private const ERROR_CODE = "restrictedClass";
+
+    /**
+     * List of fixtures that contain restricted classes and should not be tested
+     *
+     * @var array
+     */
+    private $fixtureFiles = [];
+
+    /**
+     * Restricted classes
+     *
+     * @var array
+     */
+    private $classes = [];
+
+    /**
+     * RestrictedCodeSniff constructor.
+     */
+    public function __construct()
+    {
+        $this->loadData('restricted_classes*.php');
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public function register()
+    {
+        return [
+            T_STRING,
+            T_CONSTANT_ENCAPSED_STRING
+        ];
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public function process(File $phpcsFile, $stackPtr)
+    {
+        // phpcs:ignore
+        if (array_key_exists(basename($phpcsFile->getFilename()), $this->fixtureFiles)) {
+            return;
+        }
+
+        $tokens = $phpcsFile->getTokens();
+        $token = $tokens[$stackPtr]['content'];
+        if (array_key_exists($token, $this->classes)) {
+            if ($this->isExcluded($token, $phpcsFile)) {
+                return;
+            }
+            $phpcsFile->addError(
+                sprintf(
+                    self::ERROR_MESSAGE,
+                    $token,
+                    $phpcsFile->getFilename(),
+                    $this->classes[$token]['replacement']
+                ),
+                $stackPtr,
+                self::ERROR_CODE,
+            );
+        }
+    }
+
+    /**
+     * Checks if currently parsed file should be excluded from analysis
+     *
+     * @param string $token
+     * @param File $phpcsFile
+     * @return bool
+     */
+    private function isExcluded(string $token, File $phpcsFile): bool
+    {
+        if (in_array($phpcsFile->getFilename(), $this->fixtureFiles)) {
+            return true;
+        }
+        foreach ($this->classes[$token]['exclude'] as $exclude) {
+            if (strpos($phpcsFile->getFilename(), $exclude) !== false) {
+                return true;
+            }
+        }
+        return false;
+    }
+
+    /**
+     * Loads and merges data from fixtures
+     *
+     * @param string $filePattern
+     * @return void
+     */
+    private function loadData(string $filePattern)
+    {
+        // phpcs:ignore
+        foreach (glob(__DIR__ . '/_files/' . $filePattern) as $file) {
+            $relativePath = str_replace(
+                '\\',
+                '/',
+                str_replace(__DIR__ . DIRECTORY_SEPARATOR, '', $file)
+            );
+            array_push($this->fixtureFiles, $relativePath);
+            $this->classes = array_merge_recursive($this->classes, $this->readList($file));
+        }
+    }
+
+    /**
+     * Isolate including a file into a method to reduce scope
+     *
+     * @param string $file
+     * @return array
+     */
+    private function readList($file)
+    {
+        // phpcs:ignore
+        return include $file;
+    }
+}

Magento2/Sniffs/Legacy/_files/restricted_classes.php

@@ -0,0 +1,82 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+/**
+ * Classes that are restricted to use directly.
+ * A <replacement> will be suggested to be used instead.
+ * Use <whitelist> to specify files and directories that are allowed to use restricted classes.
+ *
+ * Format: array(<class_name>, <replacement>[, array(<whitelist>)]])
+ */
+return [
+    'Zend_Db_Select' => [
+        'replacement' => '\Magento\Framework\DB\Select',
+        'exclude' => [
+            'Magento/Framework/DB/Select.php',
+            'Magento/Framework/DB/Adapter/Pdo/Mysql.php',
+            'Magento/Framework/Model/ResourceModel/Iterator.php'
+        ]
+    ],
+    'Zend_Db_Adapter_Pdo_Mysql' => [
+        'replacement' => '\Magento\Framework\DB\Adapter\Pdo\Mysql',
+        'exclude' => [
+            'Magento/Framework/DB/Adapter/Pdo/Mysql.php'
+        ]
+    ],
+    'Magento\Framework\Serialize\Serializer\Serialize' => [
+        'replacement' => 'Magento\Framework\Serialize\SerializerInterface',
+        'exclude' => [
+            'Magento/Framework/App/ObjectManager/ConfigLoader/Compiled.php',
+            'Magento/Framework/App/Config/ScopePool.php',
+            'Magento/Framework/App/ObjectManager/ConfigCache.php',
+            'Magento/Framework/App/ObjectManager/ConfigLoader.php',
+            'Magento/Framework/DB/Adapter/Pdo/Mysql.php',
+            'Magento/Framework/DB/DataConverter/SerializedToJson.php',
+            'Magento/Framework/DB/Test/Unit/DataConverter/SerializedToJsonTest.php',
+            'Magento/Framework/ObjectManager/Config/Compiled.php',
+            'Magento/Framework/Interception/Config/Config.php',
+            'Magento/Framework/Interception/PluginList/PluginList.php',
+            'Magento/Framework/App/Router/ActionList.php',
+            'Magento/Framework/Serialize/Test/Unit/Serializer/SerializeTest.php',
+            'src/Magento/Setup/Module/Di/Compiler/Config/Writer/Filesystem.php',
+            'Magento/Sales/Setup/SerializedDataConverter.php',
+            'Magento/Sales/Test/Unit/Setup/SerializedDataConverterTest.php',
+            'Magento/Sales/Test/Unit/Setup/SalesOrderPaymentDataConverterTest.php',
+            'Magento/Framework/Flag.php',
+            'Magento/Widget/Setup/LayoutUpdateConverter.php',
+            'Magento/Cms/Setup/ContentConverter.php',
+            'Magento/Framework/Unserialize/Test/Unit/UnserializeTest.php'
+        ]
+    ],
+    'ArrayObject' => [
+        'replacement' => 'Custom class, extended from ArrayObject with overwritten serialize/unserialize methods',
+        'exclude' => [
+                'Magento/Theme/Model/Indexer/Design/Config.php',
+                'Magento/Ui/Model/Manager.php',
+                'Magento/Ui/Test/Unit/Model/ManagerTest.php',
+                'Magento/Backend/Model/Menu.php',
+                'Magento/CatalogSearch/Model/Indexer/Fulltext.php',
+                'Magento/CatalogSearch/Test/Unit/Model/Indexer/FulltextTest.php',
+                'Magento/Catalog/Test/Unit/Model/ProductTest.php',
+                'Magento/CatalogSearch/Model/Indexer/Fulltext.php',
+                'Magento/Framework/Test/Unit/FlagTest.php',
+                'Magento/Framework/Validator/Test/Unit/Constraint/PropertyTest.php',
+                'Magento/Framework/Indexer/Test/Unit/BatchTest.php',
+                'Magento/Framework/View/Element/UiComponent/ArrayObjectFactory.php',
+                'Magento/Framework/View/Element/UiComponent/Config/Provider/Component/Definition.php',
+                'Magento/Framework/Indexer/Action/Base.php'
+            ]
+    ],
+    'Magento\Framework\View\Element\UiComponent\ArrayObjectFactory' => [
+        'replacement' => 'Factory that creates custom class, extended from ArrayObject with overwritten '
+            . 'serialize/unserialize methods',
+        'exclude' => [
+                'Magento/Ui/Model/Manager.php',
+                'Magento/Ui/Test/Unit/Model/ManagerTest.php',
+                'Magento/Framework/View/Element/UiComponent/Config/Provider/Component/Definition.php',
+            ]
+    ]
+];

Magento2/Sniffs/Legacy/_files/restricted_classes_ee.php

@@ -0,0 +1,32 @@
+<?php
+/**
+ * Classes that are restricted to use directly.
+ * A <replacement> will be suggested to be used instead.
+ * Use <whitelist> to specify files and directories that are allowed to use restricted classes.
+ *
+ * Format: array(<class_name>, <replacement>[, array(<whitelist>)]])
+ *
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+return [
+    'Zend_Db_Select' => [
+        'exclude' => [
+            'Magento/ResourceConnections/DB/Adapter/Pdo/MysqlProxy.php'
+        ],
+    ],
+    'Magento\Framework\Serialize\Serializer\Serialize' => [
+        'exclude' => [
+            'Magento/Framework/Test/Unit/FlagTest.php',
+            'Magento/Staging/Test/Unit/Model/Update/FlagTest.php',
+            'Magento/Logging/Test/Unit/Setup/ObjectConverterTest.php'
+        ]
+    ],
+    'ArrayObject' => [
+        'exclude' => [
+            'Magento/MultipleWishlist/Test/Unit/Model/Search/Strategy/EmailTest.php',
+            'Magento/Rma/Test/Unit/Model/RmaRepositoryTest.php',
+            'Magento/Rma/Test/Unit/Model/Status/HistoryRepositoryTest.php'
+        ]
+    ]
+];

Magento2/Tests/Legacy/RestrictedCodeUnitTest.php

@@ -0,0 +1,62 @@
+<?php
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+namespace Magento2\Tests\Legacy;
+
+use DirectoryIterator;
+use PHP_CodeSniffer\Tests\Standards\AbstractSniffUnitTest;
+use RecursiveDirectoryIterator;
+use RecursiveIteratorIterator;
+
+class RestrictedCodeUnitTest extends AbstractSniffUnitTest
+{
+
+    /**
+     * @inheritdoc
+     */
+    protected function getTestFiles($testFileBase): array
+    {
+        $testFiles = [];
+
+        $dir = __DIR__.'/_files/RestrictedCodeUnitTest';
+        $di  = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($dir));
+
+        /**
+         * @var DirectoryIterator $file
+         */
+        foreach ($di as $file) {
+            if ($file->isDir()) {
+                continue;
+            }
+            $testFiles[] = $file->getPathname();
+        }
+
+        // Put them in order.
+        sort($testFiles);
+
+        return $testFiles;
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public function getErrorList($testFile = '')
+    {
+        if ($testFile === 'FileWithRestrictedClass.inc') {
+            return [
+                5 => 1,
+            ];
+        }
+        return [];
+    }
+
+    /**
+     * @inheritdoc
+     */
+    public function getWarningList()
+    {
+        return [];
+    }
+}

Magento2/Tests/Legacy/_files/RestrictedCodeUnitTest/FileWithRestrictedClass.inc

@@ -0,0 +1,12 @@
+<?php
+
+function getCheckSql($expression, $true, $false)
+{
+    if ($expression instanceof \Zend_Db_Expr || $expression instanceof \Zend_Db_Select) {
+        $expression = sprintf("IF((%s), %s, %s)", $expression, $true, $false);
+    } else {
+        $expression = sprintf("IF(%s, %s, %s)", $expression, $true, $false);
+    }
+
+    return new \Zend_Db_Expr($expression);
+}

Magento2/Tests/Legacy/_files/RestrictedCodeUnitTest/Magento/Framework/Model/ResourceModel/Iterator.php

@@ -0,0 +1,34 @@
+<?php
+
+use PHP_CodeSniffer\Tests\Standards\AbstractSniffUnitTest;
+
+/**
+ * Copyright © Magento, Inc. All rights reserved.
+ * See COPYING.txt for license details.
+ */
+
+/**
+ * This is NOT actually a test, but a file that must be ignored by RestrictedCodeSniff
+ * when doing its analysis, even if it contains restricted classes.
+ * We need this file to have the exact expected path, even with the PHP extension that makes AbstractSniffUnitTest
+ * to recognize this as an actual test file instead of a fixture.
+ */
+class IteratorDummyFile extends AbstractSniffUnitTest
+{
+    protected function shouldSkipTest()
+    {
+        return true;
+    }
+
+    protected function getErrorList() {
+        return [];
+    }
+
+    protected function getWarningList() {
+        return [];
+    }
+
+    private function withProtectedClass() {
+        return new \Zend_Db_Expr();
+    }
+}

Magento2/ruleset.xml

@@ -142,6 +142,12 @@
         <type>error</type>
         <exclude-pattern>*\.xml$</exclude-pattern>
     </rule>
+    <rule ref="Magento2.Legacy.RestrictedCode">
+        <severity>10</severity>
+        <type>error</type>
+        <exclude-pattern>*\.xml$</exclude-pattern>
+        <exclude-pattern>*\.js$</exclude-pattern>
+    </rule>
     <!-- Severity 9 warnings: Possible security and issues that may cause bugs. -->
     <rule ref="Generic.Files.ByteOrderMark">
         <severity>9</severity>