#!/usr/bin/env python """ test_formats.py Vladimir Diaz January 2017 (modified from TUF's original formats.py) See LICENSE for licensing information. Unit test for 'formats.py' """ import datetime import unittest import securesystemslib.formats import securesystemslib.schema class TestFormats(unittest.TestCase): # pylint: disable=missing-class-docstring def setUp(self): pass def tearDown(self): pass def test_schemas(self): # Test conditions for valid schemas. valid_schemas = { "ISO8601_DATETIME_SCHEMA": ( securesystemslib.formats.ISO8601_DATETIME_SCHEMA, "1985-10-21T13:20:00Z", ), "UNIX_TIMESTAMP_SCHEMA": ( securesystemslib.formats.UNIX_TIMESTAMP_SCHEMA, 499137720, ), "HASH_SCHEMA": ( securesystemslib.formats.HASH_SCHEMA, "A4582BCF323BCEF", ), "HASHDICT_SCHEMA": ( securesystemslib.formats.HASHDICT_SCHEMA, {"sha256": "A4582BCF323BCEF"}, ), "HEX_SCHEMA": ( securesystemslib.formats.HEX_SCHEMA, "A4582BCF323BCEF", ), "KEYID_SCHEMA": ( securesystemslib.formats.KEYID_SCHEMA, "123456789abcdef", ), "KEYIDS_SCHEMA": ( securesystemslib.formats.KEYIDS_SCHEMA, ["123456789abcdef", "123456789abcdef"], ), "SCHEME_SCHEMA": ( securesystemslib.formats.SCHEME_SCHEMA, "ecdsa-sha2-nistp256", ), "PATH_SCHEMA": ( securesystemslib.formats.PATH_SCHEMA, "/home/someuser/", ), "PATHS_SCHEMA": ( securesystemslib.formats.PATHS_SCHEMA, ["/home/McFly/", "/home/Tannen/"], ), "URL_SCHEMA": ( securesystemslib.formats.URL_SCHEMA, "https://www.updateframework.com/", ), "NAME_SCHEMA": ( securesystemslib.formats.NAME_SCHEMA, "Marty McFly", ), "TEXT_SCHEMA": (securesystemslib.formats.TEXT_SCHEMA, "Password: "), "BOOLEAN_SCHEMA": (securesystemslib.formats.BOOLEAN_SCHEMA, True), "RSAKEYBITS_SCHEMA": ( securesystemslib.formats.RSAKEYBITS_SCHEMA, 4096, ), "PASSWORD_SCHEMA": ( securesystemslib.formats.PASSWORD_SCHEMA, "secret", ), "PASSWORDS_SCHEMA": ( securesystemslib.formats.PASSWORDS_SCHEMA, ["pass1", "pass2"], ), "KEYVAL_SCHEMA": ( securesystemslib.formats.KEYVAL_SCHEMA, {"public": "pubkey", "private": "privkey"}, ), "PUBLIC_KEYVAL_SCHEMA": ( securesystemslib.formats.PUBLIC_KEYVAL_SCHEMA, {"public": "pubkey"}, ), "PUBLIC_KEYVAL_SCHEMA2": ( securesystemslib.formats.PUBLIC_KEYVAL_SCHEMA, {"public": "pubkey", "private": ""}, ), "RSA_SCHEME_SCHEMA_RSASSA_PSS": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsassa-pss-md5", ), "RSA_SCHEME_SCHEMA_RSASSA_PSS_2": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsassa-pss-sha1", ), "RSA_SCHEME_SCHEMA_RSASSA_PSS_3": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsassa-pss-sha224", ), "RSA_SCHEME_SCHEMA_RSASSA_PSS_4": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsassa-pss-sha256", ), "RSA_SCHEME_SCHEMA_RSASSA_PSS_5": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsassa-pss-sha384", ), "RSA_SCHEME_SCHEMA_RSASSA_PSS_6": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsassa-pss-sha512", ), "RSA_SCHEME_SCHEMA_PKCS1v15": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsa-pkcs1v15-md5", ), "RSA_SCHEME_SCHEMA_PKCS1v15_2": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsa-pkcs1v15-sha1", ), "RSA_SCHEME_SCHEMA_PKCS1v15_3": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsa-pkcs1v15-sha224", ), "RSA_SCHEME_SCHEMA_PKCS1v15_4": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsa-pkcs1v15-sha256", ), "RSA_SCHEME_SCHEMA_PKCS1v15_5": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsa-pkcs1v15-sha384", ), "RSA_SCHEME_SCHEMA_PKCS1v15_6": ( securesystemslib.formats.RSA_SCHEME_SCHEMA, "rsa-pkcs1v15-sha512", ), "KEY_SCHEMA": ( securesystemslib.formats.KEY_SCHEMA, { "keytype": "rsa", "scheme": "rsassa-pss-sha256", "keyval": {"public": "pubkey", "private": "privkey"}, }, ), "PUBLIC_KEY_SCHEMA": ( securesystemslib.formats.KEY_SCHEMA, { "keytype": "rsa", "scheme": "rsassa-pss-sha256", "keyval": {"public": "pubkey"}, }, ), "PUBLIC_KEY_SCHEMA2": ( securesystemslib.formats.KEY_SCHEMA, { "keytype": "rsa", "scheme": "rsassa-pss-sha256", "keyval": {"public": "pubkey", "private": ""}, }, ), "RSAKEY_SCHEMA": ( securesystemslib.formats.RSAKEY_SCHEMA, { "keytype": "rsa", "scheme": "rsassa-pss-sha256", "keyid": "123456789abcdef", "keyval": {"public": "pubkey", "private": "privkey"}, }, ), "SIGNATURE_SCHEMA": ( securesystemslib.formats.SIGNATURE_SCHEMA, {"keyid": "123abc", "method": "evp", "sig": "A4582BCF323BCEF"}, ), "SIGNABLE_SCHEMA": ( securesystemslib.formats.SIGNABLE_SCHEMA, { "signed": "signer", "signatures": [ { "keyid": "123abc", "method": "evp", "sig": "A4582BCF323BCEF", } ], }, ), "ANY_KEYDICT_SCHEMA": ( securesystemslib.formats.ANY_KEYDICT_SCHEMA, { "123abc": { "keytype": "rsa", "scheme": "rsassa-pss-sha256", "keyval": {"public": "pubkey", "private": "privkey"}, } }, ), } # Iterate 'valid_schemas', ensuring each 'valid_schema' correctly matches # its respective 'schema_type'. for (schema_type, valid_schema) in valid_schemas.values(): if not schema_type.matches( # pylint: disable=no-member valid_schema ): print("bad schema: " + repr(valid_schema)) self.assertEqual( True, schema_type.matches(valid_schema), # pylint: disable=no-member ) # Test conditions for invalid schemas. # Set the 'valid_schema' of 'valid_schemas' to an invalid # value and test that it does not match 'schema_type'. for (schema_type, valid_schema) in valid_schemas.values(): invalid_schema = 0xBAD if isinstance(schema_type, securesystemslib.schema.Integer): invalid_schema = "BAD" self.assertEqual( False, schema_type.matches( # pylint: disable=no-member invalid_schema ), ) def test_unix_timestamp_to_datetime(self): # Test conditions for valid arguments. self.assertTrue( datetime.datetime, securesystemslib.formats.unix_timestamp_to_datetime(499137720), ) datetime_object = datetime.datetime(1985, 10, 26, 1, 22) self.assertEqual( datetime_object, securesystemslib.formats.unix_timestamp_to_datetime(499137720), ) # Test conditions for invalid arguments. self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.unix_timestamp_to_datetime, "bad", ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.unix_timestamp_to_datetime, 1000000000000000000000, ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.unix_timestamp_to_datetime, -1, ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.unix_timestamp_to_datetime, ["5"], ) def test_datetime_to_unix_timestamp(self): # Test conditions for valid arguments. datetime_object = datetime.datetime(2015, 10, 21, 19, 28) self.assertEqual( 1445455680, securesystemslib.formats.datetime_to_unix_timestamp( datetime_object ), ) # Test conditions for invalid arguments. self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.datetime_to_unix_timestamp, "bad", ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.datetime_to_unix_timestamp, 1000000000000000000000, ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.datetime_to_unix_timestamp, ["1"], ) def test_format_base64(self): # Test conditions for valid arguments. data = "updateframework".encode("utf-8") self.assertEqual( "dXBkYXRlZnJhbWV3b3Jr", securesystemslib.formats.format_base64(data) ) self.assertTrue( isinstance(securesystemslib.formats.format_base64(data), str) ) # Test conditions for invalid arguments. self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.format_base64, 123, ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.format_base64, True, ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.format_base64, ["123"], ) def test_parse_base64(self): # Test conditions for valid arguments. base64 = "dXBkYXRlZnJhbWV3b3Jr" self.assertEqual( b"updateframework", securesystemslib.formats.parse_base64(base64) ) self.assertTrue( isinstance(securesystemslib.formats.parse_base64(base64), bytes) ) # Test conditions for invalid arguments. self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.parse_base64, 123, ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.parse_base64, True, ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.parse_base64, ["123"], ) self.assertRaises( securesystemslib.exceptions.FormatError, securesystemslib.formats.parse_base64, "/", ) def test_encode_canonical(self): # Test conditions for valid arguments. encode = securesystemslib.formats.encode_canonical result = [] output = result.append self.assertEqual('""', encode("")) self.assertEqual("[1,2,3]", encode([1, 2, 3])) self.assertEqual("[1,2,3]", encode([1, 2, 3])) self.assertEqual("[]", encode([])) self.assertEqual("{}", encode({})) self.assertEqual('{"A":[99]}', encode({"A": [99]})) self.assertEqual('{"A":true}', encode({"A": True})) self.assertEqual('{"B":false}', encode({"B": False})) self.assertEqual('{"x":3,"y":2}', encode({"x": 3, "y": 2})) self.assertEqual('{"x":3,"y":null}', encode({"x": 3, "y": None})) # Test condition with escaping " and \ self.assertEqual('"\\""', encode('"')) self.assertEqual('"\\\\"', encode("\\")) self.assertEqual('"\\\\\\""', encode('\\"')) # Condition where 'encode()' sends the result to the callable # 'output'. self.assertEqual(None, encode([1, 2, 3], output)) self.assertEqual("[1,2,3]", "".join(result)) # Test conditions for invalid arguments. self.assertRaises( securesystemslib.exceptions.FormatError, encode, securesystemslib.exceptions.FormatError, ) self.assertRaises(securesystemslib.exceptions.FormatError, encode, 8.0) self.assertRaises( securesystemslib.exceptions.FormatError, encode, {"x": 8.0} ) self.assertRaises( securesystemslib.exceptions.FormatError, encode, 8.0, output ) self.assertRaises( securesystemslib.exceptions.FormatError, encode, {"x": securesystemslib.exceptions.FormatError}, ) # Run unit test. if __name__ == "__main__": unittest.main()