Startseite Erkunden Hilfe
Anmelden
yangck
/
celery
1
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: 2411d3d599
Branches Tags
celery
/
t
/
unit
/
security
/
test_serialization.py

test_serialization.py 2.2 KB
Verlauf Originalformat

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667 
  1. from __future__ import absolute_import, unicode_literals
    2. 

  2. 

  3. import base64
    4. 

  4. import os
    5. 

  5. 

  6. import pytest
    7. 

  7. from kombu.serialization import registry
    8. 

  8. from kombu.utils.encoding import bytes_to_str
    9. 

  9. 

  10. from celery.exceptions import SecurityError
    11. 

  11. from celery.security.certificate import Certificate, CertStore
    12. 

  12. from celery.security.key import PrivateKey
    13. 

  13. from celery.security.serialization import SecureSerializer, register_auth
    14. 

  14. 

  15. from . import CERT1, CERT2, KEY1, KEY2
    16. 

  16. from .case import SecurityCase
    17. 

  17. 

  18. 

  19. class test_SecureSerializer(SecurityCase):
    20. 

  20. 

  21.     def _get_s(self, key, cert, certs):
    22. 

  22.         store = CertStore()
    23. 

  23.         for c in certs:
    24. 

  24.             store.add_cert(Certificate(c))
    25. 

  25.         return SecureSerializer(PrivateKey(key), Certificate(cert), store)
    26. 

  26. 

  27.     def test_serialize(self):
    28. 

  28.         s = self._get_s(KEY1, CERT1, [CERT1])
    29. 

  29.         assert s.deserialize(s.serialize('foo')) == 'foo'
    30. 

  30. 

  31.     def test_deserialize(self):
    32. 

  32.         s = self._get_s(KEY1, CERT1, [CERT1])
    33. 

  33.         with pytest.raises(SecurityError):
    34. 

  34.             s.deserialize('bad data')
    35. 

  35. 

  36.     def test_unmatched_key_cert(self):
    37. 

  37.         s = self._get_s(KEY1, CERT2, [CERT1, CERT2])
    38. 

  38.         with pytest.raises(SecurityError):
    39. 

  39.             s.deserialize(s.serialize('foo'))
    40. 

  40. 

  41.     def test_unknown_source(self):
    42. 

  42.         s1 = self._get_s(KEY1, CERT1, [CERT2])
    43. 

  43.         s2 = self._get_s(KEY1, CERT1, [])
    44. 

  44.         with pytest.raises(SecurityError):
    45. 

  45.             s1.deserialize(s1.serialize('foo'))
    46. 

  46.         with pytest.raises(SecurityError):
    47. 

  47.             s2.deserialize(s2.serialize('foo'))
    48. 

  48. 

  49.     def test_self_send(self):
    50. 

  50.         s1 = self._get_s(KEY1, CERT1, [CERT1])
    51. 

  51.         s2 = self._get_s(KEY1, CERT1, [CERT1])
    52. 

  52.         assert s2.deserialize(s1.serialize('foo')) == 'foo'
    53. 

  53. 

  54.     def test_separate_ends(self):
    55. 

  55.         s1 = self._get_s(KEY1, CERT1, [CERT2])
    56. 

  56.         s2 = self._get_s(KEY2, CERT2, [CERT1])
    57. 

  57.         assert s2.deserialize(s1.serialize('foo')) == 'foo'
    58. 

  58. 

  59.     def test_register_auth(self):
    60. 

  60.         register_auth(KEY1, CERT1, '')
    61. 

  61.         assert 'application/data' in registry._decoders
    62. 

  62. 

  63.     def test_lots_of_sign(self):
    64. 

  64.         for i in range(1000):
    65. 

  65.             rdata = bytes_to_str(base64.urlsafe_b64encode(os.urandom(265)))
    66. 

  66.             s = self._get_s(KEY1, CERT1, [CERT1])
    67. 

  67.             assert s.deserialize(s.serialize(rdata)) == rdata
    68.