nee2c
/
salt
zrkadlo https://github.com/nee2c/salt.git


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190
							# -*- coding: utf-8 -*-
'''
Tests for the salt-run command
'''
# Import Python libs
from __future__ import absolute_import, print_function, unicode_literals

import logging

# Import Salt Testing libs
from tests.support.case import ShellCase
from tests.support.unit import skipIf

try:
    import libnacl.secret  # pylint: disable=unused-import
    import libnacl.sealed  # pylint: disable=unused-import
    HAS_LIBNACL = True
except ImportError:
    HAS_LIBNACL = False

log = logging.getLogger(__name__)


@skipIf(not HAS_LIBNACL, 'skipping test_nacl, libnacl is unavailable')
class NaclTest(ShellCase):
    '''
    Test the nacl runner
    '''
    def test_keygen(self):
        '''
        Test keygen
        '''
        # Store the data
        ret = self.run_run_plus(
            'nacl.keygen',
        )
        self.assertIn('pk', ret['return'])
        self.assertIn('sk', ret['return'])

    def test_enc(self):
        '''
        Test keygen
        '''
        # Store the data
        ret = self.run_run_plus(
            'nacl.keygen',
        )
        self.assertIn('pk', ret['return'])
        self.assertIn('sk', ret['return'])
        pk = ret['return']['pk']
        sk = ret['return']['sk']

        unencrypted_data = 'hello'

        # Encrypt with pk
        ret = self.run_run_plus(
            'nacl.enc',
            data=unencrypted_data,
            pk=pk,
        )
        self.assertIn('return', ret)

    def test_enc_dec(self):
        '''
        Store, list, fetch, then flush data
        '''
        # Store the data
        ret = self.run_run_plus(
            'nacl.keygen',
        )
        self.assertIn('pk', ret['return'])
        self.assertIn('sk', ret['return'])
        pk = ret['return']['pk']
        sk = ret['return']['sk']

        unencrypted_data = b'hello'

        # Encrypt with pk
        ret = self.run_run_plus(
            'nacl.enc',
            data=unencrypted_data,
            pk=pk,
        )
        self.assertIn('return', ret)
        encrypted_data = ret['return']

        # Decrypt with sk
        ret = self.run_run_plus(
            'nacl.dec',
            data=encrypted_data,
            sk=sk,
        )
        self.assertIn('return', ret)
        self.assertEqual(unencrypted_data, ret['return'])

    def test_sealedbox_enc_dec(self):
        '''
        Generate keys, encrypt, then decrypt.
        '''
        # Store the data
        ret = self.run_run_plus(
            'nacl.keygen',
        )
        self.assertIn('pk', ret['return'])
        self.assertIn('sk', ret['return'])
        pk = ret['return']['pk']
        sk = ret['return']['sk']

        unencrypted_data = b'hello'

        # Encrypt with pk
        ret = self.run_run_plus(
            'nacl.sealedbox_encrypt',
            data=unencrypted_data,
            pk=pk,
        )
        encrypted_data = ret['return']

        # Decrypt with sk
        ret = self.run_run_plus(
            'nacl.sealedbox_decrypt',
            data=encrypted_data,
            sk=sk,
        )
        self.assertEqual(unencrypted_data, ret['return'])

    def test_secretbox_enc_dec(self):
        '''
        Generate keys, encrypt, then decrypt.
        '''
        # Store the data
        ret = self.run_run_plus(
            'nacl.keygen',
        )
        self.assertIn('pk', ret['return'])
        self.assertIn('sk', ret['return'])
        pk = ret['return']['pk']
        sk = ret['return']['sk']

        unencrypted_data = b'hello'

        # Encrypt with pk
        ret = self.run_run_plus(
            'nacl.secretbox_encrypt',
            data=unencrypted_data,
            sk=sk,
        )
        encrypted_data = ret['return']

        # Decrypt with sk
        ret = self.run_run_plus(
            'nacl.secretbox_decrypt',
            data=encrypted_data,
            sk=sk,
        )
        self.assertEqual(unencrypted_data, ret['return'])

    def test_enc_dec_no_pk_no_sk(self):
        '''
        Store, list, fetch, then flush data
        '''
        # Store the data
        ret = self.run_run_plus(
            'nacl.keygen',
        )
        self.assertIn('pk', ret['return'])
        self.assertIn('sk', ret['return'])
        pk = ret['return']['pk']
        sk = ret['return']['sk']

        unencrypted_data = b'hello'

        # Encrypt with pk
        ret = self.run_run_plus(
            'nacl.enc',
            data=unencrypted_data,
            pk=None,
        )
        self.assertIn('Exception: no pubkey or pk_file found', ret['return'])

        self.assertIn('return', ret)
        encrypted_data = ret['return']

        # Decrypt with sk
        ret = self.run_run_plus(
            'nacl.dec',
            data=encrypted_data,
            sk=None,
        )
        self.assertIn('Exception: no key or sk_file found', ret['return'])