File: test_hosts.py

package info (click to toggle)
python-passlib 1.9.3-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 3,184 kB
  • sloc: python: 26,132; makefile: 7
file content (99 lines) | stat: -rw-r--r-- 3,403 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
 
from passlib import hash as hashmod
from passlib import hosts
from passlib.utils import unix_crypt_schemes
from tests.utils import TestCase


class HostsTest(TestCase):
    """perform general tests to make sure contexts work"""

    # NOTE: these tests are not really comprehensive,
    #       since they would do little but duplicate
    #       the presets in apps.py
    #
    #       they mainly try to ensure no typos
    #       or dynamic behavior foul-ups.

    def check_unix_disabled(self, ctx):
        for hash in [
            "",
            "!",
            "*",
            "!$1$TXl/FX/U$BZge.lr.ux6ekjEjxmzwz0",
        ]:
            assert ctx.identify(hash) == "unix_disabled"
            assert not ctx.verify("test", hash)

    def test_linux_context(self):
        ctx = hosts.linux_context
        for hash in [
            (
                "$6$rounds=41128$VoQLvDjkaZ6L6BIE$4pt.1Ll1XdDYduEwEYPCMOBiR6W6"
                "znsyUEoNlcVXpv2gKKIbQolgmTGe6uEEVJ7azUxuc8Tf7zV9SD2z7Ij751"
            ),
            (
                "$5$rounds=31817$iZGmlyBQ99JSB5n6$p4E.pdPBWx19OajgjLRiOW0itGny"
                "xDGgMlDcOsfaI17"
            ),
            "$1$TXl/FX/U$BZge.lr.ux6ekjEjxmzwz0",
            "kAJJz.Rwp0A/I",
        ]:
            assert ctx.verify("test", hash)
        self.check_unix_disabled(ctx)

    def test_bsd_contexts(self):
        for ctx in [
            hosts.freebsd_context,
            hosts.openbsd_context,
            hosts.netbsd_context,
        ]:
            for hash in [
                "$1$TXl/FX/U$BZge.lr.ux6ekjEjxmzwz0",
                "kAJJz.Rwp0A/I",
            ]:
                assert ctx.verify("test", hash)
            h1 = "$2a$04$yjDgE74RJkeqC0/1NheSSOrvKeu9IbKDpcQf/Ox3qsrRS/Kw42qIS"
            if hashmod.bcrypt.has_backend():
                assert ctx.verify("test", h1)
            else:
                assert ctx.identify(h1) == "bcrypt"
            self.check_unix_disabled(ctx)

    def test_host_context(self):
        ctx = getattr(hosts, "host_context", None)
        if not ctx:
            self.skipTest("host_context not available on this platform")

        # validate schemes is non-empty,
        # and contains unix_disabled + at least one real scheme
        schemes = list(ctx.schemes())
        assert schemes, (
            "appears to be unix system, but no known schemes supported by crypt"
        )
        assert "unix_disabled" in schemes
        schemes.remove("unix_disabled")
        assert schemes, "should have schemes beside fallback scheme"
        assert set(unix_crypt_schemes).issuperset(schemes)

        # check for hash support
        self.check_unix_disabled(ctx)
        for scheme, hash in [
            (
                "sha512_crypt",
                (
                    "$6$rounds=41128$VoQLvDjkaZ6L6BIE$4pt.1Ll1XdDYduEwEYPCMOBiR6W6"
                    "znsyUEoNlcVXpv2gKKIbQolgmTGe6uEEVJ7azUxuc8Tf7zV9SD2z7Ij751"
                ),
            ),
            (
                "sha256_crypt",
                (
                    "$5$rounds=31817$iZGmlyBQ99JSB5n6$p4E.pdPBWx19OajgjLRiOW0itGny"
                    "xDGgMlDcOsfaI17"
                ),
            ),
            ("md5_crypt", "$1$TXl/FX/U$BZge.lr.ux6ekjEjxmzwz0"),
            ("des_crypt", "kAJJz.Rwp0A/I"),
        ]:
            if scheme in schemes:
                assert ctx.verify("test", hash)