mirror of
https://github.com/smallstep/certificates.git
synced 2024-10-31 03:20:16 +00:00
191 lines
4.3 KiB
Go
191 lines
4.3 KiB
Go
package db
|
|
|
|
import (
|
|
"errors"
|
|
"testing"
|
|
|
|
"github.com/smallstep/assert"
|
|
"github.com/smallstep/nosql/database"
|
|
)
|
|
|
|
type MockdatabaseDB struct {
|
|
err error
|
|
ret1, ret2 interface{}
|
|
get func(bucket, key []byte) ([]byte, error)
|
|
set func(bucket, key, value []byte) error
|
|
open func(dataSourceName string, opt ...database.Option) error
|
|
close func() error
|
|
createTable func(bucket []byte) error
|
|
deleteTable func(bucket []byte) error
|
|
del func(bucket, key []byte) error
|
|
list func(bucket []byte) ([]*database.Entry, error)
|
|
update func(tx *database.Tx) error
|
|
}
|
|
|
|
func (m *MockdatabaseDB) Get(bucket, key []byte) ([]byte, error) {
|
|
if m.get != nil {
|
|
return m.get(bucket, key)
|
|
}
|
|
if m.ret1 == nil {
|
|
return nil, m.err
|
|
}
|
|
return m.ret1.([]byte), m.err
|
|
}
|
|
|
|
func (m *MockdatabaseDB) Set(bucket, key, value []byte) error {
|
|
if m.set != nil {
|
|
return m.set(bucket, key, value)
|
|
}
|
|
return m.err
|
|
}
|
|
|
|
func (m *MockdatabaseDB) Open(dataSourceName string, opt ...database.Option) error {
|
|
if m.open != nil {
|
|
return m.open(dataSourceName, opt...)
|
|
}
|
|
return m.err
|
|
}
|
|
|
|
func (m *MockdatabaseDB) Close() error {
|
|
if m.close != nil {
|
|
return m.close()
|
|
}
|
|
return m.err
|
|
}
|
|
|
|
func (m *MockdatabaseDB) CreateTable(bucket []byte) error {
|
|
if m.createTable != nil {
|
|
return m.createTable(bucket)
|
|
}
|
|
return m.err
|
|
}
|
|
|
|
func (m *MockdatabaseDB) DeleteTable(bucket []byte) error {
|
|
if m.deleteTable != nil {
|
|
return m.deleteTable(bucket)
|
|
}
|
|
return m.err
|
|
}
|
|
|
|
func (m *MockdatabaseDB) Del(bucket, key []byte) error {
|
|
if m.del != nil {
|
|
return m.del(bucket, key)
|
|
}
|
|
return m.err
|
|
}
|
|
|
|
func (m *MockdatabaseDB) List(bucket []byte) ([]*database.Entry, error) {
|
|
if m.list != nil {
|
|
return m.list(bucket)
|
|
}
|
|
return m.ret1.([]*database.Entry), m.err
|
|
}
|
|
|
|
func (m *MockdatabaseDB) Update(tx *database.Tx) error {
|
|
if m.update != nil {
|
|
return m.update(tx)
|
|
}
|
|
return m.err
|
|
}
|
|
|
|
func TestIsRevoked(t *testing.T) {
|
|
tests := map[string]struct {
|
|
key string
|
|
db *DB
|
|
isRevoked bool
|
|
err error
|
|
}{
|
|
"false/nil db": {
|
|
key: "sn",
|
|
},
|
|
"false/ErrNotFound": {
|
|
key: "sn",
|
|
db: &DB{&MockdatabaseDB{err: database.ErrNotFound, ret1: nil}},
|
|
},
|
|
"error/checking bucket": {
|
|
key: "sn",
|
|
db: &DB{&MockdatabaseDB{err: errors.New("force"), ret1: nil}},
|
|
err: errors.New("error checking revocation bucket: force"),
|
|
},
|
|
"true": {
|
|
key: "sn",
|
|
db: &DB{&MockdatabaseDB{ret1: []byte("value")}},
|
|
isRevoked: true,
|
|
},
|
|
}
|
|
for name, tc := range tests {
|
|
t.Run(name, func(t *testing.T) {
|
|
isRevoked, err := tc.db.IsRevoked(tc.key)
|
|
if err != nil {
|
|
if assert.NotNil(t, tc.err) {
|
|
assert.HasPrefix(t, tc.err.Error(), err.Error())
|
|
}
|
|
} else {
|
|
assert.Nil(t, tc.err)
|
|
assert.Fatal(t, isRevoked == tc.isRevoked)
|
|
}
|
|
})
|
|
}
|
|
}
|
|
|
|
func TestRevoke(t *testing.T) {
|
|
tests := map[string]struct {
|
|
rci *RevokedCertificateInfo
|
|
db *DB
|
|
err error
|
|
}{
|
|
"error/force isRevoked": {
|
|
rci: &RevokedCertificateInfo{Serial: "sn"},
|
|
db: &DB{&MockdatabaseDB{
|
|
get: func(bucket []byte, sn []byte) ([]byte, error) {
|
|
return nil, errors.New("force IsRevoked")
|
|
},
|
|
}},
|
|
err: errors.New("error checking revocation bucket: force IsRevoked"),
|
|
},
|
|
"error/was already revoked": {
|
|
rci: &RevokedCertificateInfo{Serial: "sn"},
|
|
db: &DB{&MockdatabaseDB{
|
|
get: func(bucket []byte, sn []byte) ([]byte, error) {
|
|
return nil, nil
|
|
},
|
|
}},
|
|
err: ErrAlreadyExists,
|
|
},
|
|
"error/database set": {
|
|
rci: &RevokedCertificateInfo{Serial: "sn"},
|
|
db: &DB{&MockdatabaseDB{
|
|
get: func(bucket []byte, sn []byte) ([]byte, error) {
|
|
return nil, database.ErrNotFound
|
|
},
|
|
set: func(bucket []byte, key []byte, value []byte) error {
|
|
return errors.New("force")
|
|
},
|
|
}},
|
|
err: errors.New("database Set error: force"),
|
|
},
|
|
"ok": {
|
|
rci: &RevokedCertificateInfo{Serial: "sn"},
|
|
db: &DB{&MockdatabaseDB{
|
|
get: func(bucket []byte, sn []byte) ([]byte, error) {
|
|
return nil, database.ErrNotFound
|
|
},
|
|
set: func(bucket []byte, key []byte, value []byte) error {
|
|
return nil
|
|
},
|
|
}},
|
|
},
|
|
}
|
|
for name, tc := range tests {
|
|
t.Run(name, func(t *testing.T) {
|
|
if err := tc.db.Revoke(tc.rci); err != nil {
|
|
if assert.NotNil(t, tc.err) {
|
|
assert.HasPrefix(t, tc.err.Error(), err.Error())
|
|
}
|
|
} else {
|
|
assert.Nil(t, tc.err)
|
|
}
|
|
})
|
|
}
|
|
}
|