JustAnotherArchivist
/
transfer.sh
forkattu lähteestä kiska/transfer.sh
1
0
Fork 1
Koodi Ongelmat 0 Pull-pyynnöt 0 Julkaisut 0 Wiki Toiminta
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
306 Commitit
17 Branchit
34 MiB
 
 
 
Puu: 03d8efbf13
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from '03d8efbf13'
${ noResults }
transfer.sh/vendor/github.com/gorilla/securecookie/securecookie_test.go

275 rivejä
6.6 KiB
Raaka Blame Historia 

  1. // Copyright 2012 The Gorilla Authors. All rights reserved.

  2. // Use of this source code is governed by a BSD-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package securecookie

  6. 

  7. import (

  8. 	"crypto/aes"

  9. 	"crypto/hmac"

  10. 	"crypto/sha256"

  11. 	"encoding/base64"

  12. 	"fmt"

  13. 	"reflect"

  14. 	"strings"

  15. 	"testing"

  16. )

  17. 

  18. // Asserts that cookieError and MultiError are Error implementations.

  19. var _ Error = cookieError{}

  20. var _ Error = MultiError{}

  21. 

  22. var testCookies = []interface{}{

  23. 	map[string]string{"foo": "bar"},

  24. 	map[string]string{"baz": "ding"},

  25. }

  26. 

  27. var testStrings = []string{"foo", "bar", "baz"}

  28. 

  29. func TestSecureCookie(t *testing.T) {

  30. 	// TODO test too old / too new timestamps

  31. 	s1 := New([]byte("12345"), []byte("1234567890123456"))

  32. 	s2 := New([]byte("54321"), []byte("6543210987654321"))

  33. 	value := map[string]interface{}{

  34. 		"foo": "bar",

  35. 		"baz": 128,

  36. 	}

  37. 

  38. 	for i := 0; i < 50; i++ {

  39. 		// Running this multiple times to check if any special character

  40. 		// breaks encoding/decoding.

  41. 		encoded, err1 := s1.Encode("sid", value)

  42. 		if err1 != nil {

  43. 			t.Error(err1)

  44. 			continue

  45. 		}

  46. 		dst := make(map[string]interface{})

  47. 		err2 := s1.Decode("sid", encoded, &dst)

  48. 		if err2 != nil {

  49. 			t.Fatalf("%v: %v", err2, encoded)

  50. 		}

  51. 		if !reflect.DeepEqual(dst, value) {

  52. 			t.Fatalf("Expected %v, got %v.", value, dst)

  53. 		}

  54. 		dst2 := make(map[string]interface{})

  55. 		err3 := s2.Decode("sid", encoded, &dst2)

  56. 		if err3 == nil {

  57. 			t.Fatalf("Expected failure decoding.")

  58. 		}

  59. 		err4, ok := err3.(Error)

  60. 		if !ok {

  61. 			t.Fatalf("Expected error to implement Error, got: %#v", err3)

  62. 		}

  63. 		if !err4.IsDecode() {

  64. 			t.Fatalf("Expected DecodeError, got: %#v", err4)

  65. 		}

  66. 

  67. 		// Test other error type flags.

  68. 		if err4.IsUsage() {

  69. 			t.Fatalf("Expected IsUsage() == false, got: %#v", err4)

  70. 		}

  71. 		if err4.IsInternal() {

  72. 			t.Fatalf("Expected IsInternal() == false, got: %#v", err4)

  73. 		}

  74. 	}

  75. }

  76. 

  77. func TestSecureCookieNilKey(t *testing.T) {

  78. 	s1 := New(nil, nil)

  79. 	value := map[string]interface{}{

  80. 		"foo": "bar",

  81. 		"baz": 128,

  82. 	}

  83. 	_, err := s1.Encode("sid", value)

  84. 	if err != errHashKeyNotSet {

  85. 		t.Fatal("Wrong error returned:", err)

  86. 	}

  87. }

  88. 

  89. func TestDecodeInvalid(t *testing.T) {

  90. 	// List of invalid cookies, which must not be accepted, base64-decoded

  91. 	// (they will be encoded before passing to Decode).

  92. 	invalidCookies := []string{

  93. 		"",

  94. 		" ",

  95. 		"\n",

  96. 		"||",

  97. 		"|||",

  98. 		"cookie",

  99. 	}

  100. 	s := New([]byte("12345"), nil)

  101. 	var dst string

  102. 	for i, v := range invalidCookies {

  103. 		for _, enc := range []*base64.Encoding{

  104. 			base64.StdEncoding,

  105. 			base64.URLEncoding,

  106. 		} {

  107. 			err := s.Decode("name", enc.EncodeToString([]byte(v)), &dst)

  108. 			if err == nil {

  109. 				t.Fatalf("%d: expected failure decoding", i)

  110. 			}

  111. 			err2, ok := err.(Error)

  112. 			if !ok || !err2.IsDecode() {

  113. 				t.Fatalf("%d: Expected IsDecode(), got: %#v", i, err)

  114. 			}

  115. 		}

  116. 	}

  117. }

  118. 

  119. func TestAuthentication(t *testing.T) {

  120. 	hash := hmac.New(sha256.New, []byte("secret-key"))

  121. 	for _, value := range testStrings {

  122. 		hash.Reset()

  123. 		signed := createMac(hash, []byte(value))

  124. 		hash.Reset()

  125. 		err := verifyMac(hash, []byte(value), signed)

  126. 		if err != nil {

  127. 			t.Error(err)

  128. 		}

  129. 	}

  130. }

  131. 

  132. func TestEncryption(t *testing.T) {

  133. 	block, err := aes.NewCipher([]byte("1234567890123456"))

  134. 	if err != nil {

  135. 		t.Fatalf("Block could not be created")

  136. 	}

  137. 	var encrypted, decrypted []byte

  138. 	for _, value := range testStrings {

  139. 		if encrypted, err = encrypt(block, []byte(value)); err != nil {

  140. 			t.Error(err)

  141. 		} else {

  142. 			if decrypted, err = decrypt(block, encrypted); err != nil {

  143. 				t.Error(err)

  144. 			}

  145. 			if string(decrypted) != value {

  146. 				t.Errorf("Expected %v, got %v.", value, string(decrypted))

  147. 			}

  148. 		}

  149. 	}

  150. }

  151. 

  152. func TestGobSerialization(t *testing.T) {

  153. 	var (

  154. 		sz           GobEncoder

  155. 		serialized   []byte

  156. 		deserialized map[string]string

  157. 		err          error

  158. 	)

  159. 	for _, value := range testCookies {

  160. 		if serialized, err = sz.Serialize(value); err != nil {

  161. 			t.Error(err)

  162. 		} else {

  163. 			deserialized = make(map[string]string)

  164. 			if err = sz.Deserialize(serialized, &deserialized); err != nil {

  165. 				t.Error(err)

  166. 			}

  167. 			if fmt.Sprintf("%v", deserialized) != fmt.Sprintf("%v", value) {

  168. 				t.Errorf("Expected %v, got %v.", value, deserialized)

  169. 			}

  170. 		}

  171. 	}

  172. }

  173. 

  174. func TestJSONSerialization(t *testing.T) {

  175. 	var (

  176. 		sz           JSONEncoder

  177. 		serialized   []byte

  178. 		deserialized map[string]string

  179. 		err          error

  180. 	)

  181. 	for _, value := range testCookies {

  182. 		if serialized, err = sz.Serialize(value); err != nil {

  183. 			t.Error(err)

  184. 		} else {

  185. 			deserialized = make(map[string]string)

  186. 			if err = sz.Deserialize(serialized, &deserialized); err != nil {

  187. 				t.Error(err)

  188. 			}

  189. 			if fmt.Sprintf("%v", deserialized) != fmt.Sprintf("%v", value) {

  190. 				t.Errorf("Expected %v, got %v.", value, deserialized)

  191. 			}

  192. 		}

  193. 	}

  194. }

  195. 

  196. func TestEncoding(t *testing.T) {

  197. 	for _, value := range testStrings {

  198. 		encoded := encode([]byte(value))

  199. 		decoded, err := decode(encoded)

  200. 		if err != nil {

  201. 			t.Error(err)

  202. 		} else if string(decoded) != value {

  203. 			t.Errorf("Expected %v, got %s.", value, string(decoded))

  204. 		}

  205. 	}

  206. }

  207. 

  208. func TestMultiError(t *testing.T) {

  209. 	s1, s2 := New(nil, nil), New(nil, nil)

  210. 	_, err := EncodeMulti("sid", "value", s1, s2)

  211. 	if len(err.(MultiError)) != 2 {

  212. 		t.Errorf("Expected 2 errors, got %s.", err)

  213. 	} else {

  214. 		if strings.Index(err.Error(), "hash key is not set") == -1 {

  215. 			t.Errorf("Expected missing hash key error, got %s.", err.Error())

  216. 		}

  217. 		ourErr, ok := err.(Error)

  218. 		if !ok || !ourErr.IsUsage() {

  219. 			t.Fatalf("Expected error to be a usage error; got %#v", err)

  220. 		}

  221. 		if ourErr.IsDecode() {

  222. 			t.Errorf("Expected error NOT to be a decode error; got %#v", ourErr)

  223. 		}

  224. 		if ourErr.IsInternal() {

  225. 			t.Errorf("Expected error NOT to be an internal error; got %#v", ourErr)

  226. 		}

  227. 	}

  228. }

  229. 

  230. func TestMultiNoCodecs(t *testing.T) {

  231. 	_, err := EncodeMulti("foo", "bar")

  232. 	if err != errNoCodecs {

  233. 		t.Errorf("EncodeMulti: bad value for error, got: %v", err)

  234. 	}

  235. 

  236. 	var dst []byte

  237. 	err = DecodeMulti("foo", "bar", &dst)

  238. 	if err != errNoCodecs {

  239. 		t.Errorf("DecodeMulti: bad value for error, got: %v", err)

  240. 	}

  241. }

  242. 

  243. func TestMissingKey(t *testing.T) {

  244. 	s1 := New(nil, nil)

  245. 

  246. 	var dst []byte

  247. 	err := s1.Decode("sid", "value", &dst)

  248. 	if err != errHashKeyNotSet {

  249. 		t.Fatalf("Expected %#v, got %#v", errHashKeyNotSet, err)

  250. 	}

  251. 	if err2, ok := err.(Error); !ok || !err2.IsUsage() {

  252. 		t.Errorf("Expected missing hash key to be IsUsage(); was %#v", err)

  253. 	}

  254. }

  255. 

  256. // ----------------------------------------------------------------------------

  257. 

  258. type FooBar struct {

  259. 	Foo int

  260. 	Bar string

  261. }

  262. 

  263. func TestCustomType(t *testing.T) {

  264. 	s1 := New([]byte("12345"), []byte("1234567890123456"))

  265. 	// Type is not registered in gob. (!!!)

  266. 	src := &FooBar{42, "bar"}

  267. 	encoded, _ := s1.Encode("sid", src)

  268. 

  269. 	dst := &FooBar{}

  270. 	_ = s1.Decode("sid", encoded, dst)

  271. 	if dst.Foo != 42 || dst.Bar != "bar" {

  272. 		t.Fatalf("Expected %#v, got %#v", src, dst)

  273. 	}

  274. }