[ProtoApiScrubber] Add Integration Tests

[sumitkmr2]

Commit Message: Add Integration tests.
Additional Description: Currently, the tests are added using envoy_cc_extension as envoy_extension_cc_test fails to recognize the extension as it's not registered. Once the filter's core functionality is complete, we'll do the registration and update the build rule. Currently, only request integration tests are added as response flow is not ready. Response ITs will be added once response flow code is checked-in.
Risk Level: None.
Testing: ITs added.
Docs Changes: None.
Release Notes: None.
Platform Specific Features: None.
[Optional Runtime guard:]
[Optional Fixes #Issue]
[Optional Fixes commit #PR or SHA]
[Optional Deprecated:]
[Optional API Considerations:]

[repokitteh-read-only]

As a reminder, PRs marked as draft will not be automatically assigned reviewers,
or be handled by maintainer-oncall triage.

Please mark your PR as ready when you want it to be reviewed!

🐱

Caused by: #42121 was opened by sumitkmr2.

see: more, trace.

[sumitkmr2]

/retest

[adisuissa]

Thanks, overall LGTM.
Left a few minor comments.

[adisuissa]

What's the reason for extending HttpProtocolIntegrationTest and not HttpIntegrationTest? Does it require AsyncLB?

[sumitkmr2]

Actually, I'm not sure about the exact reason. I followed proto_message_extraction and grpc_field_extraction filters and both use HttpProtocolIntegrationTest. In my view, I think it's better for extensibility when we add support for non-grpc requests carrying protobuf payloads as well. In that case, tests can easily be extended with a one-line change. Let me know if you think this is too-much future proofing and needs to be removed.

[adisuissa]

Can the expr_match be added in a non copy-paste method?
The reason is that it now depends on the spaces in the config, which makes it brittle to maintain.

[sumitkmr2]

Done. Added in a json format so that indentation is not a problem. Tried doing in a builder fashion but that wasn't much readable (i.e., one can't figure out easily the config while looking at the builder). Hope that json format is ok.

[adisuissa]

Same as expr_match above.

[sumitkmr2]

Done.

[adisuissa]

Does message_restrictions also need integrations tests?
Also does the method_restriction need to be validated?

[sumitkmr2]

Does message_restrictions also need integrations tests?

Yes, it does. @pranavrautgoogle is working on it and the PR will be out once this PR gets merged.

Also does the method_restriction need to be validated?

Yes, it is already getting validated in the filter_config.cc as of today.

[adisuissa]

Please add a one-liner comment describing what the goal of each test.

[sumitkmr2]

Done.

[adisuissa]

Please add a test that attempts to scrub a field that is not found in the data.

[sumitkmr2]

By not found in the data., do you mean not found in the descriptors? eg, a newer client library passing a field to an old envoy build? If yes, that case is not handled yet in the code. Planning to add that in next few days. The expectation in that case is that it passes through without scrubbing. I'll add the tests along with it in the UTs itself.

If you mean that it's not found in the filter config (ie, no restrictions configured for the field), then that case is already covered in the UTs and it passes through without scrubbing.

[adisuissa]

Will it be also useful to test the following cases:

• more than 1 key exists (say another_name in addition to display_name) and only one (display_name) is scrubbed?
• not sure if it's valid but a case where there's a double-nested field with the same name key { key: { display_name: "sensitive" } }.

These may already be addressed by the unit tests, and in that case, that should be sufficient.

[sumitkmr2]

The first one is already covered in the field checker UT.
The second one is interesting and is not covered anywhere, thanks for pointing out! It's a valid case - the field path for respective fields would be key, key.key and key.key.display_name. It's not possible to repro with the ApiKeys service that we are using currently for testing here in IT. I'll that case in the field checker UT where it is much simpler to repro that case. SG?

[adisuissa]

SGTM

[sumitkmr2]

Addressed comments, thanks! Will add the requested tests in the field checker UT in a separate PR to avoid conflicts as there are a lot of pending changes going on by myself and Pranav so trying to keep the scope of each PR limited to as less number of files as possible.

[sumitkmr2]

Does message_restrictions also need integrations tests?

Yes, it does. @pranavrautgoogle is working on it and the PR will be out once this PR gets merged.

Also does the method_restriction need to be validated?

Yes, it is already getting validated in the filter_config.cc as of today.

[sumitkmr2]

Done. Added in a json format so that indentation is not a problem. Tried doing in a builder fashion but that wasn't much readable (i.e., one can't figure out easily the config while looking at the builder). Hope that json format is ok.

[sumitkmr2]

Done.

[sumitkmr2]

Done.

[sumitkmr2]

By not found in the data., do you mean not found in the descriptors? eg, a newer client library passing a field to an old envoy build? If yes, that case is not handled yet in the code. Planning to add that in next few days. The expectation in that case is that it passes through without scrubbing. I'll add the tests along with it in the UTs itself.

If you mean that it's not found in the filter config (ie, no restrictions configured for the field), then that case is already covered in the UTs and it passes through without scrubbing.

[sumitkmr2]

The first one is already covered in the field checker UT.
The second one is interesting and is not covered anywhere, thanks for pointing out! It's a valid case - the field path for respective fields would be key, key.key and key.key.display_name. It's not possible to repro with the ApiKeys service that we are using currently for testing here in IT. I'll that case in the field checker UT where it is much simpler to repro that case. SG?

[sumitkmr2]

Actually, I'm not sure about the exact reason. I followed proto_message_extraction and grpc_field_extraction filters and both use HttpProtocolIntegrationTest. In my view, I think it's better for extensibility when we add support for non-grpc requests carrying protobuf payloads as well. In that case, tests can easily be extended with a one-line change. Let me know if you think this is too-much future proofing and needs to be removed.

[adisuissa]

Thanks, overall LGTM.
Can you please run this under tsan with runs_per_test=1000 to reduce the chances of introducing flaky tests?

[adisuissa]

nit: preffer constexpr absl::string_view

[sumitkmr2]

done

[adisuissa]

nit: use yaml instead of this (no need for double curly brackets everywhere, and makes the code a bit more concise - example).

[sumitkmr2]

Yeah, it was in yaml before but changed it to json due to spacing constraints while doing replacement of parameters {0}, {1}, etc. as discussed here.
In json, spacing doesn't matter so it's not brittle now.

[adisuissa]

Another approach is using a different approach than format replace.
What about using a format replacement for simple elements (strings, numbers), and using the protobuf methods (e.g., PackFrom()) for non-simple elements?

[sumitkmr2]

I've refactored the code to make it more configurable and readable at the same time. Let me know if this looks better now. Also, I'll be adding more Integration tests with different input types and different CEL expressions, etc. in follow-up CLs.

[adisuissa]

I think we are back to square 1 with this, but as you will be the codeowner on this and it is only test code, then I can live with that.

[adisuissa]

style-nit: please move right after the class declaration.

[sumitkmr2]

done.

[sumitkmr2]

Addressed comments, thanks!
Also, ran the following command to test flakiness:

envoy$ bazel test   --config=tsan   --runs_per_test=1000   --cache_test_results=no   --test_output=errors    //test/extensions/filters/http/proto_api_scrubber:integration_test
INFO: Invocation ID: d9aed359-0255-4f37-964a-ce8f86721e2f
INFO: Analyzed target //test/extensions/filters/http/proto_api_scrubber:integration_test (0 packages loaded, 20 targets configured).
INFO: Found 1 test target...
Target //test/extensions/filters/http/proto_api_scrubber:integration_test up-to-date:
  *****/execroot/envoy/bazel-out/k8-fastbuild/bin/test/extensions/filters/http/proto_api_scrubber/integration_test
INFO: Elapsed time: 786.311s, Critical Path: 114.53s
INFO: 1001 processes: 1 internal, 1000 linux-sandbox.
INFO: Build completed successfully, 1001 total actions

Executed 1 out of 1 test: 1 test passes.

[sumitkmr2]

Yeah, it was in yaml before but changed it to json due to spacing constraints while doing replacement of parameters {0}, {1}, etc. as discussed here.
In json, spacing doesn't matter so it's not brittle now.

[sumitkmr2]

done.

[sumitkmr2]

done

[sumitkmr2]

Addressed pending comment.

[sumitkmr2]

I've refactored the code to make it more configurable and readable at the same time. Let me know if this looks better now. Also, I'll be adding more Integration tests with different input types and different CEL expressions, etc. in follow-up CLs.

[adisuissa]

Thanks, merging.

[adisuissa]

I think we are back to square 1 with this, but as you will be the codeowner on this and it is only test code, then I can live with that.

[adisuissa]

SGTM