| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209 |
- # Copyright (C) 2010 Internet Systems Consortium.
- #
- # Permission to use, copy, modify, and distribute this software for any
- # purpose with or without fee is hereby granted, provided that the above
- # copyright notice and this permission notice appear in all copies.
- #
- # THE SOFTWARE IS PROVIDED "AS IS" AND INTERNET SYSTEMS CONSORTIUM
- # DISCLAIMS ALL WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL
- # IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL
- # INTERNET SYSTEMS CONSORTIUM BE LIABLE FOR ANY SPECIAL, DIRECT,
- # INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING
- # FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
- # NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
- # WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- import unittest
- from pydnspp import *
- class TSIGKeyTest(unittest.TestCase):
- key_name = Name('example.com')
- secret = b'anotherRandomData'
- def test_algorithm_names(self):
- self.assertEqual(Name('hmac-md5.sig-alg.reg.int'),
- TSIGKey.HMACMD5_NAME)
- self.assertEqual(Name('hmac-sha1'), TSIGKey.HMACSHA1_NAME)
- self.assertEqual(Name('hmac-sha256'), TSIGKey.HMACSHA256_NAME)
- def test_init(self):
- key = TSIGKey(self.key_name, TSIGKey.HMACMD5_NAME, self.secret)
- self.assertEqual(self.key_name, key.get_key_name())
- self.assertEqual(Name('hmac-md5.sig-alg.reg.int'),
- key.get_algorithm_name())
- self.assertEqual(self.secret, key.get_secret())
- self.assertRaises(InvalidParameter, TSIGKey, self.key_name,
- Name('unknown-alg'), self.secret)
- self.assertEqual('hmac-sha1.',
- TSIGKey(self.key_name, TSIGKey.HMACSHA1_NAME,
- self.secret).get_algorithm_name().to_text())
- self.assertRaises(TypeError, TSIGKey, self.key_name,
- TSIGKey.HMACMD5_NAME,
- 'should be binary') # signature mismatch
- def test_str(self):
- k1 = TSIGKey('test.example:CwsLCwsLCwsLCwsLCwsLCw==:hmac-md5.sig-alg.reg.int')
- self.assertEqual(Name('test.example.'), k1.get_key_name())
- self.assertEqual(Name('hmac-md5.sig-alg.reg.int.'), k1.get_algorithm_name())
- self.assertEqual(b'\x0b\x0b\x0b\x0b\x0b\x0b\x0b\x0b\x0b\x0b\x0b\x0b\x0b\x0b\x0b\x0b',
- k1.get_secret())
- self.assertEqual('test.example.:CwsLCwsLCwsLCwsLCwsLCw==:hmac-md5.sig-alg.reg.int.',
- k1.to_text())
- self.assertRaises(InvalidParameter, TSIGKey,
- 'test.example:CwsLCwsLCwsLCwsLCwsLCw==:unsupported')
- self.assertRaises(InvalidParameter, TSIGKey,
- '::')
- self.assertRaises(InvalidParameter, TSIGKey,
- 'test.example:')
- self.assertRaises(InvalidParameter, TSIGKey,
- 'test.example:%bad_base_64%')
- self.assertRaises(InvalidParameter, TSIGKey,
- 'test.example:CwsLCwsLCwsLCwsLCwsLCw==:')
- self.assertRaises(InvalidParameter, TSIGKey,
- 'test.:example:CwsLCwsLCwsLCwsLCwsLCw==')
- class TSIGKeyRingTest(unittest.TestCase):
- key_name = Name('example.com')
- md5_name = Name('hmac-md5.sig-alg.reg.int')
- sha1_name = Name('hmac-sha1')
- sha256_name = Name('hmac-sha256')
- secret = b'someRandomData'
- def setUp(self):
- self.keyring = TSIGKeyRing()
- def test_init(self):
- self.assertEqual(0, self.keyring.size())
- self.assertRaises(TypeError, TSIGKeyRing, 1)
- self.assertRaises(TypeError, TSIGKeyRing, 'there should not be arg')
- def test_add(self):
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(self.key_name,
- TSIGKey.HMACSHA256_NAME,
- self.secret)))
- self.assertEqual(1, self.keyring.size())
- self.assertEqual(TSIGKeyRing.EXIST,
- self.keyring.add(TSIGKey(self.key_name,
- TSIGKey.HMACSHA256_NAME,
- self.secret)))
- self.assertEqual(TSIGKeyRing.EXIST,
- self.keyring.add(TSIGKey(self.key_name,
- TSIGKey.HMACSHA1_NAME,
- self.secret)))
- self.assertEqual(TSIGKeyRing.EXIST,
- self.keyring.add(TSIGKey(Name('EXAMPLE.COM'),
- TSIGKey.HMACSHA1_NAME,
- self.secret)))
- self.assertEqual(1, self.keyring.size())
- def test_add_more(self):
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(self.key_name,
- TSIGKey.HMACSHA256_NAME,
- self.secret)))
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(Name('another.example'),
- TSIGKey.HMACMD5_NAME,
- self.secret)))
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(Name('more.example'),
- TSIGKey.HMACSHA1_NAME,
- self.secret)))
- self.assertEqual(3, self.keyring.size())
- self.assertRaises(TypeError, self.keyring.add, 1)
- self.assertRaises(TypeError, self.keyring.add, 'invalid arg')
- def test_remove(self):
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(self.key_name,
- TSIGKey.HMACSHA256_NAME,
- self.secret)))
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.remove(self.key_name))
- self.assertEqual(TSIGKeyRing.NOTFOUND,
- self.keyring.remove(self.key_name))
- self.assertRaises(TypeError, self.keyring.add, 1)
- self.assertRaises(TypeError, self.keyring.add, 'invalid arg')
- self.assertRaises(TypeError, self.keyring.add, self.key_name, 0)
- def test_remove_from_some(self):
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(self.key_name,
- TSIGKey.HMACSHA256_NAME,
- self.secret)))
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(Name('another.example'),
- TSIGKey.HMACMD5_NAME,
- self.secret)))
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(Name('more.example'),
- TSIGKey.HMACSHA1_NAME,
- self.secret)))
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.remove(Name('another.example')))
- self.assertEqual(TSIGKeyRing.NOTFOUND,
- self.keyring.remove(Name('noexist.example')))
- self.assertEqual(2, self.keyring.size())
- def test_find(self):
- self.assertEqual((TSIGKeyRing.NOTFOUND, None),
- self.keyring.find(self.key_name, self.md5_name))
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(self.key_name,
- self.sha256_name,
- self.secret)))
- (code, key) = self.keyring.find(self.key_name, self.sha256_name)
- self.assertEqual(TSIGKeyRing.SUCCESS, code)
- self.assertEqual(self.key_name, key.get_key_name())
- self.assertEqual(TSIGKey.HMACSHA256_NAME, key.get_algorithm_name())
- self.assertEqual(self.secret, key.get_secret())
- (code, key) = self.keyring.find(Name('different-key.example'),
- self.sha256_name)
- self.assertEqual(TSIGKeyRing.NOTFOUND, code)
- self.assertEqual(None, key)
- (code, key) = self.keyring.find(self.key_name, self.md5_name)
- self.assertEqual(TSIGKeyRing.NOTFOUND, code)
- self.assertEqual(None, key)
- self.assertRaises(TypeError, self.keyring.find, 1)
- self.assertRaises(TypeError, self.keyring.find, 'should be a name')
- self.assertRaises(TypeError, self.keyring.find, self.key_name, 0)
- def test_find_from_some(self):
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(self.key_name,
- self.sha256_name,
- self.secret)))
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(Name('another.example'),
- self.md5_name,
- self.secret)))
- self.assertEqual(TSIGKeyRing.SUCCESS,
- self.keyring.add(TSIGKey(Name('more.example'),
- self.sha1_name,
- self.secret)))
- (code, key) = self.keyring.find(Name('another.example'), self.md5_name)
- self.assertEqual(TSIGKeyRing.SUCCESS, code)
- self.assertEqual(Name('another.example'), key.get_key_name())
- self.assertEqual(TSIGKey.HMACMD5_NAME, key.get_algorithm_name())
- self.assertEqual((TSIGKeyRing.NOTFOUND, None),
- self.keyring.find(Name('noexist.example'),
- self.sha1_name))
- self.assertEqual((TSIGKeyRing.NOTFOUND, None),
- self.keyring.find(Name('another.example'),
- self.sha1_name))
- if __name__ == '__main__':
- unittest.main()
|
