Home Explore Help
Sign In
yangck
/
celery
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 8c116df82a
Branches Tags
celery
/
celery
/
tests
/
security
/
test_certificate.py

test_certificate.py 2.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. from __future__ import absolute_import
    2. 

  2. 

  3. from celery.exceptions import SecurityError
    4. 

  4. from celery.security.certificate import Certificate, CertStore, FSCertStore
    5. 

  5. 

  6. from . import CERT1, CERT2, KEY1
    7. 

  7. from .case import SecurityCase
    8. 

  8. 

  9. from celery.tests.case import Mock, SkipTest, mock_open, patch
    10. 

  10. 

  11. 

  12. class test_Certificate(SecurityCase):
    13. 

  13. 

  14.     def test_valid_certificate(self):
    15. 

  15.         Certificate(CERT1)
    16. 

  16.         Certificate(CERT2)
    17. 

  17. 

  18.     def test_invalid_certificate(self):
    19. 

  19.         self.assertRaises((SecurityError, TypeError), Certificate, None)
    20. 

  20.         self.assertRaises(SecurityError, Certificate, '')
    21. 

  21.         self.assertRaises(SecurityError, Certificate, 'foo')
    22. 

  22.         self.assertRaises(SecurityError, Certificate, CERT1[:20] + CERT1[21:])
    23. 

  23.         self.assertRaises(SecurityError, Certificate, KEY1)
    24. 

  24. 

  25.     def test_has_expired(self):
    26. 

  26.         raise SkipTest('cert expired')
    27. 

  27.         self.assertFalse(Certificate(CERT1).has_expired())
    28. 

  28. 

  29. 

  30. class test_CertStore(SecurityCase):
    31. 

  31. 

  32.     def test_itercerts(self):
    33. 

  33.         cert1 = Certificate(CERT1)
    34. 

  34.         cert2 = Certificate(CERT2)
    35. 

  35.         certstore = CertStore()
    36. 

  36.         for c in certstore.itercerts():
    37. 

  37.             self.assertTrue(False)
    38. 

  38.         certstore.add_cert(cert1)
    39. 

  39.         certstore.add_cert(cert2)
    40. 

  40.         for c in certstore.itercerts():
    41. 

  41.             self.assertIn(c, (cert1, cert2))
    42. 

  42. 

  43.     def test_duplicate(self):
    44. 

  44.         cert1 = Certificate(CERT1)
    45. 

  45.         certstore = CertStore()
    46. 

  46.         certstore.add_cert(cert1)
    47. 

  47.         self.assertRaises(SecurityError, certstore.add_cert, cert1)
    48. 

  48. 

  49. 

  50. class test_FSCertStore(SecurityCase):
    51. 

  51. 

  52.     @patch('os.path.isdir')
    53. 

  53.     @patch('glob.glob')
    54. 

  54.     @patch('celery.security.certificate.Certificate')
    55. 

  55.     def test_init(self, Certificate, glob, isdir):
    56. 

  56.         cert = Certificate.return_value = Mock()
    57. 

  57.         cert.has_expired.return_value = False
    58. 

  58.         isdir.return_value = True
    59. 

  59.         glob.return_value = ['foo.cert']
    60. 

  60.         with mock_open():
    61. 

  61.             cert.get_id.return_value = 1
    62. 

  62.             x = FSCertStore('/var/certs')
    63. 

  63.             self.assertIn(1, x._certs)
    64. 

  64.             glob.assert_called_with('/var/certs/*')
    65. 

  65. 

  66.             # they both end up with the same id
    67. 

  67.             glob.return_value = ['foo.cert', 'bar.cert']
    68. 

  68.             with self.assertRaises(SecurityError):
    69. 

  69.                 x = FSCertStore('/var/certs')
    70. 

  70.             glob.return_value = ['foo.cert']
    71. 

  71. 

  72.             cert.has_expired.return_value = True
    73. 

  73.             with self.assertRaises(SecurityError):
    74. 

  74.                 x = FSCertStore('/var/certs')
    75. 

  75. 

  76.             isdir.return_value = False
    77. 

  77.             with self.assertRaises(SecurityError):
    78. 

  78.                 x = FSCertStore('/var/certs')
    79.