2015-07-21 11:16:13 +00:00
|
|
|
import binascii
|
2016-01-09 14:06:47 +00:00
|
|
|
|
2015-10-23 09:45:32 +00:00
|
|
|
import pytest
|
2015-07-21 11:16:13 +00:00
|
|
|
|
|
|
|
from .. import formats
|
|
|
|
|
|
|
|
|
|
|
|
def test_fingerprint():
|
|
|
|
fp = '5d:41:40:2a:bc:4b:2a:76:b9:71:9d:91:10:17:c5:92'
|
2015-07-21 11:38:40 +00:00
|
|
|
assert formats.fingerprint(b'hello') == fp
|
2015-07-21 11:16:13 +00:00
|
|
|
|
|
|
|
|
|
|
|
_point = (
|
2015-07-21 11:38:40 +00:00
|
|
|
44423495295951059636974944244307637263954375053872017334547086177777411863925, # nopep8
|
|
|
|
111713194882028655451852320740440245619792555065469028846314891587105736340201 # nopep8
|
2015-07-21 11:16:13 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
_public_key = (
|
|
|
|
'ecdsa-sha2-nistp256 '
|
|
|
|
'AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTY'
|
|
|
|
'AAABBBGI2zqveJSB+geQEWG46OvGs2h3+0qu7tIdsH8Wylr'
|
|
|
|
'V19vttd7GR5rKvTWJt8b9ErthmnFALelAFKOB/u50jsuk= '
|
|
|
|
'home\n'
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
def test_parse_public_key():
|
|
|
|
key = formats.import_public_key(_public_key)
|
2015-07-21 11:38:40 +00:00
|
|
|
assert key['name'] == b'home'
|
2015-07-21 11:16:13 +00:00
|
|
|
assert key['point'] == _point
|
|
|
|
|
2015-10-23 09:45:32 +00:00
|
|
|
assert key['curve'] == b'nist256p1'
|
2015-07-21 11:16:13 +00:00
|
|
|
assert key['fingerprint'] == '4b:19:bc:0f:c8:7e:dc:fa:1a:e3:c2:ff:6f:e0:80:a2' # nopep8
|
2015-07-21 11:38:40 +00:00
|
|
|
assert key['type'] == b'ecdsa-sha2-nistp256'
|
2015-07-21 11:16:13 +00:00
|
|
|
|
|
|
|
|
|
|
|
def test_decompress():
|
|
|
|
blob = '036236ceabde25207e81e404586e3a3af1acda1dfed2abbbb4876c1fc5b296b575'
|
2015-12-18 14:03:50 +00:00
|
|
|
vk = formats.decompress_pubkey(binascii.unhexlify(blob),
|
|
|
|
curve_name=formats.CURVE_NIST256)
|
|
|
|
assert formats.export_public_key(vk, label='home') == _public_key
|
2015-10-23 09:45:32 +00:00
|
|
|
|
|
|
|
|
|
|
|
def test_parse_ed25519():
|
|
|
|
pubkey = ('ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFBdF2tj'
|
|
|
|
'fSO8nLIi736is+f0erq28RTc7CkM11NZtTKR hello\n')
|
|
|
|
p = formats.import_public_key(pubkey)
|
|
|
|
assert p['name'] == b'hello'
|
|
|
|
assert p['curve'] == b'ed25519'
|
|
|
|
|
|
|
|
BLOB = (b'\x00\x00\x00\x0bssh-ed25519\x00\x00\x00 P]\x17kc}#'
|
|
|
|
b'\xbc\x9c\xb2"\xef~\xa2\xb3\xe7\xf4z\xba\xb6\xf1\x14'
|
|
|
|
b'\xdc\xec)\x0c\xd7SY\xb52\x91')
|
|
|
|
assert p['blob'] == BLOB
|
|
|
|
assert p['fingerprint'] == '6b:b0:77:af:e5:3a:21:6d:17:82:9b:06:19:03:a1:97' # nopep8
|
|
|
|
assert p['type'] == b'ssh-ed25519'
|
|
|
|
|
|
|
|
|
|
|
|
def test_export_ed25519():
|
|
|
|
pub = (b'\x00P]\x17kc}#\xbc\x9c\xb2"\xef~\xa2\xb3\xe7\xf4'
|
|
|
|
b'z\xba\xb6\xf1\x14\xdc\xec)\x0c\xd7SY\xb52\x91')
|
2015-12-18 14:03:50 +00:00
|
|
|
vk = formats.decompress_pubkey(pub, formats.CURVE_ED25519)
|
2015-10-23 09:45:32 +00:00
|
|
|
result = formats.serialize_verifying_key(vk)
|
|
|
|
assert result == (b'ssh-ed25519',
|
|
|
|
b'\x00\x00\x00\x0bssh-ed25519\x00\x00\x00 P]\x17kc}#\xbc'
|
|
|
|
b'\x9c\xb2"\xef~\xa2\xb3\xe7\xf4z\xba\xb6\xf1\x14\xdc'
|
|
|
|
b'\xec)\x0c\xd7SY\xb52\x91')
|
|
|
|
|
|
|
|
|
|
|
|
def test_decompress_error():
|
|
|
|
with pytest.raises(ValueError):
|
2015-12-18 14:03:50 +00:00
|
|
|
formats.decompress_pubkey('', formats.CURVE_NIST256)
|
|
|
|
|
|
|
|
|
|
|
|
def test_curve_mismatch():
|
|
|
|
# NIST256 public key
|
|
|
|
blob = '036236ceabde25207e81e404586e3a3af1acda1dfed2abbbb4876c1fc5b296b575'
|
|
|
|
with pytest.raises(ValueError):
|
|
|
|
formats.decompress_pubkey(binascii.unhexlify(blob),
|
|
|
|
curve_name=formats.CURVE_ED25519)
|
|
|
|
|
|
|
|
blob = '00' * 33 # Dummy public key
|
|
|
|
with pytest.raises(ValueError):
|
|
|
|
formats.decompress_pubkey(binascii.unhexlify(blob),
|
|
|
|
curve_name=formats.CURVE_NIST256)
|
|
|
|
|
|
|
|
blob = 'FF' * 33 # Unsupported prefix byte
|
|
|
|
with pytest.raises(ValueError):
|
|
|
|
formats.decompress_pubkey(binascii.unhexlify(blob),
|
|
|
|
curve_name=formats.CURVE_NIST256)
|
2015-10-23 09:45:32 +00:00
|
|
|
|
|
|
|
|
|
|
|
def test_serialize_error():
|
|
|
|
with pytest.raises(TypeError):
|
|
|
|
formats.serialize_verifying_key(None)
|