1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
|
# Copyright (c) 2016 The Johns Hopkins University/Applied Physics Laboratory
# All Rights Reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import pytest
import ssl
import testtools
from kmip.services import auth
class TestBasicAuthenticationSuite(testtools.TestCase):
"""
A test suite for the BasicAuthenticationSuite.
"""
def setUp(self):
super(TestBasicAuthenticationSuite, self).setUp()
def tearDown(self):
super(TestBasicAuthenticationSuite, self).tearDown()
def test_init(self):
auth.BasicAuthenticationSuite()
def test_protocol(self):
suite = auth.BasicAuthenticationSuite()
protocol = suite.protocol
self.assertIsInstance(protocol, int)
self.assertEqual(ssl.PROTOCOL_TLSv1, suite.protocol)
def test_ciphers(self):
suite = auth.BasicAuthenticationSuite()
ciphers = suite.ciphers
self.assertIsInstance(ciphers, str)
cipher_string = ':'.join((
'AES128-SHA',
'DES-CBC3-SHA',
'AES256-SHA',
'DHE-DSS-DES-CBC3-SHA',
'DHE-RSA-DES-CBC3-SHA',
'DH-DSS-AES128-SHA',
'DH-RSA-AES128-SHA',
'DHE-DSS-AES128-SHA',
'DHE-RSA-AES128-SHA',
'DH-RSA-AES256-SHA',
'DHE-DSS-AES256-SHA',
'DHE-RSA-AES256-SHA',
))
self.assertEqual(cipher_string, ciphers)
@pytest.mark.skipif(not hasattr(ssl, 'PROTOCOL_TLSv1_2'),
reason="Requires ssl.PROTOCOL_TLSv1_2")
class TestTLS12AuthenticationSuite(testtools.TestCase):
"""
A test suite for the TLS12AuthenticationSuite.
"""
def setUp(self):
super(TestTLS12AuthenticationSuite, self).setUp()
def tearDown(self):
super(TestTLS12AuthenticationSuite, self).tearDown()
def test_init(self):
auth.TLS12AuthenticationSuite()
def test_protocol(self):
suite = auth.TLS12AuthenticationSuite()
protocol = suite.protocol
self.assertIsInstance(protocol, int)
self.assertEqual(ssl.PROTOCOL_TLSv1_2, suite.protocol)
def test_ciphers(self):
suite = auth.TLS12AuthenticationSuite()
ciphers = suite.ciphers
self.assertIsInstance(ciphers, str)
cipher_string = ':'.join((
'AES128-SHA256',
'AES256-SHA256',
'DH-DSS-AES256-SHA256',
'DH-DSS-AES128-SHA256',
'DH-RSA-AES128-SHA256',
'DHE-DSS-AES128-SHA256',
'DHE-RSA-AES128-SHA256',
'DH-DSS-AES256-SHA256',
'DH-RSA-AES256-SHA256',
'DHE-DSS-AES256-SHA256',
'DHE-RSA-AES256-SHA256',
'ECDH-ECDSA-AES128-SHA256',
'ECDH-ECDSA-AES256-SHA256',
'ECDHE-ECDSA-AES128-SHA256',
'ECDHE-ECDSA-AES256-SHA384',
'ECDH-RSA-AES128-SHA256',
'ECDH-RSA-AES256-SHA384',
'ECDHE-RSA-AES128-SHA256',
'ECDHE-RSA-AES256-SHA384',
'ECDHE-ECDSA-AES128-GCM-SHA256',
'ECDHE-ECDSA-AES256-GCM-SHA384',
'ECDHE-ECDSA-AES128-SHA256',
'ECDHE-ECDSA-AES256-SHA384',
))
self.assertEqual(cipher_string, ciphers)
|
