open-vault/builtin/logical/pki/cert_util_test.go

package pki

import (
	"testing"

	"github.com/hashicorp/vault/logical"
)

func TestPki_FetchCertBySerial(t *testing.T) {
	storage := &logical.InmemStorage{}

	cases := map[string]struct {
		Req        *logical.Request
		StorageKey string
	}{
		"cert, valid colon": {
			&logical.Request{
				Operation: logical.ReadOperation,
				Path:      "certs/10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",
				Storage:   storage,
			},
			"10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",
		},
		"cert, revoked colon": {
			&logical.Request{
				Operation: logical.ReadOperation,
				Path:      "revoked/10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",
				Storage:   storage,
			},
			"10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",
		},
		"cert, valid hyphen": {
			&logical.Request{
				Operation: logical.ReadOperation,
				Path:      "certs/10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",
				Storage:   storage,
			},
			"10-e6-fc-62-b7-41-8a-d5-00-5e-45-b6",
		},
		"cert, revoked hyphen": {
			&logical.Request{
				Operation: logical.ReadOperation,
				Path:      "revoked/10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",
				Storage:   storage,
			},
			"10-e6-fc-62-b7-41-8a-d5-00-5e-45-b6",
		},
		"cert, ca": {
			&logical.Request{
				Operation: logical.ReadOperation,
				Path:      "ca",
				Storage:   storage,
			},
			"",
		},
		"cert, crl": {
			&logical.Request{
				Operation: logical.ReadOperation,
				Path:      "crl",
				Storage:   storage,
			},
			"",
		},
	}

	for name, tc := range cases {
		// Put pseudo-cert in inmem storage
		err := storage.Put(&logical.StorageEntry{
			Key:   tc.Req.Path,
			Value: []byte("some data"),
		})
		if err != nil {
			t.Fatalf("error writing to storage on %s: %s", name, err)
		}

		certEntry, err := fetchCertBySerial(tc.Req, tc.Req.Path, tc.StorageKey)
		if err != nil {
			t.Fatalf("fetchBySerial error on %s: %s", name, err)
		}

		// Check for non-nil on valid/revoked certs
		if certEntry == nil && tc.Req.Path != "ca" && tc.Req.Path != "crl" {
			t.Fatalf("fetchBySerial returned nil on %s", name)
		}
	}
}
Tests for cert and crl util 2017-04-26 06:46:01 +00:00			`package pki`

			`import (`
			`"testing"`

			`"github.com/hashicorp/vault/logical"`
			`)`

Rename tests, use HandleRequest() for existing paths 2017-04-27 13:47:56 +00:00			`func TestPki_FetchCertBySerial(t *testing.T) {`
Tests for cert and crl util 2017-04-26 06:46:01 +00:00			`storage := &logical.InmemStorage{}`

			`cases := map[string]struct {`
			`Req *logical.Request`
			`StorageKey string`
			`}{`
			`"cert, valid colon": {`
			`&logical.Request{`
			`Operation: logical.ReadOperation,`
			`Path: "certs/10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",`
			`Storage: storage,`
			`},`
			`"10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",`
			`},`
			`"cert, revoked colon": {`
			`&logical.Request{`
			`Operation: logical.ReadOperation,`
			`Path: "revoked/10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",`
			`Storage: storage,`
			`},`
			`"10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",`
			`},`
			`"cert, valid hyphen": {`
			`&logical.Request{`
			`Operation: logical.ReadOperation,`
			`Path: "certs/10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",`
			`Storage: storage,`
			`},`
			`"10-e6-fc-62-b7-41-8a-d5-00-5e-45-b6",`
			`},`
			`"cert, revoked hyphen": {`
			`&logical.Request{`
			`Operation: logical.ReadOperation,`
			`Path: "revoked/10:e6:fc:62:b7:41:8a:d5:00:5e:45:b6",`
			`Storage: storage,`
			`},`
			`"10-e6-fc-62-b7-41-8a-d5-00-5e-45-b6",`
			`},`
			`"cert, ca": {`
			`&logical.Request{`
			`Operation: logical.ReadOperation,`
			`Path: "ca",`
			`Storage: storage,`
			`},`
			`"",`
			`},`
			`"cert, crl": {`
			`&logical.Request{`
			`Operation: logical.ReadOperation,`
			`Path: "crl",`
			`Storage: storage,`
			`},`
			`"",`
			`},`
			`}`

			`for name, tc := range cases {`
			`// Put pseudo-cert in inmem storage`
			`err := storage.Put(&logical.StorageEntry{`
			`Key: tc.Req.Path,`
			`Value: []byte("some data"),`
			`})`
			`if err != nil {`
			`t.Fatalf("error writing to storage on %s: %s", name, err)`
			`}`

			`certEntry, err := fetchCertBySerial(tc.Req, tc.Req.Path, tc.StorageKey)`
			`if err != nil {`
			`t.Fatalf("fetchBySerial error on %s: %s", name, err)`
			`}`

			`// Check for non-nil on valid/revoked certs`
Add remaining tests 2017-04-26 20:05:58 +00:00			`if certEntry == nil && tc.Req.Path != "ca" && tc.Req.Path != "crl" {`
Tests for cert and crl util 2017-04-26 06:46:01 +00:00			`t.Fatalf("fetchBySerial returned nil on %s", name)`
			`}`
			`}`
			`}`