diff options
| author | Jari Vetoniemi <jari.vetoniemi@indooratlas.com> | 2020-03-16 18:49:26 +0900 |
|---|---|---|
| committer | Jari Vetoniemi <jari.vetoniemi@indooratlas.com> | 2020-03-30 00:39:06 +0900 |
| commit | fcbf63e62c627deae76c1b8cb8c0876c536ed811 (patch) | |
| tree | 64cb17de3f41a2b6fef2368028fbd00349946994 /jni/ruby/test/rubygems/test_gem_security_trust_dir.rb | |
Fresh start
Diffstat (limited to 'jni/ruby/test/rubygems/test_gem_security_trust_dir.rb')
| -rw-r--r-- | jni/ruby/test/rubygems/test_gem_security_trust_dir.rb | 98 |
1 files changed, 98 insertions, 0 deletions
diff --git a/jni/ruby/test/rubygems/test_gem_security_trust_dir.rb b/jni/ruby/test/rubygems/test_gem_security_trust_dir.rb new file mode 100644 index 0000000..7b0d450 --- /dev/null +++ b/jni/ruby/test/rubygems/test_gem_security_trust_dir.rb @@ -0,0 +1,98 @@ +require 'rubygems/test_case' + +unless defined?(OpenSSL::SSL) then + warn 'Skipping Gem::Security::TrustDir tests. openssl not found.' +end + +class TestGemSecurityTrustDir < Gem::TestCase + + CHILD_CERT = load_cert 'child' + + def setup + super + + @dest_dir = File.join @tempdir, 'trust' + + @trust_dir = Gem::Security::TrustDir.new @dest_dir + end + + def test_cert_path + digest = OpenSSL::Digest::SHA1.hexdigest PUBLIC_CERT.subject.to_s + + expected = File.join @dest_dir, "cert-#{digest}.pem" + + assert_equal expected, @trust_dir.cert_path(PUBLIC_CERT) + end + + def test_issuer_of + assert_nil @trust_dir.issuer_of(CHILD_CERT) + + @trust_dir.trust_cert PUBLIC_CERT + + assert_equal PUBLIC_CERT.to_pem, @trust_dir.issuer_of(CHILD_CERT).to_pem + end + + def test_load_certificate + @trust_dir.trust_cert PUBLIC_CERT + + path = @trust_dir.cert_path PUBLIC_CERT + + assert_equal PUBLIC_CERT.to_pem, @trust_dir.load_certificate(path).to_pem + end + + def test_name_path + digest = OpenSSL::Digest::SHA1.hexdigest PUBLIC_CERT.subject.to_s + + expected = File.join @dest_dir, "cert-#{digest}.pem" + + assert_equal expected, @trust_dir.name_path(PUBLIC_CERT.subject) + end + + def test_trust_cert + @trust_dir.trust_cert PUBLIC_CERT + + trusted = @trust_dir.cert_path PUBLIC_CERT + + assert_path_exists trusted + + mask = 0100600 & (~File.umask) + + assert_equal mask, File.stat(trusted).mode unless win_platform? + + assert_equal PUBLIC_CERT.to_pem, File.read(trusted) + end + + def test_verify + refute_path_exists @dest_dir + + @trust_dir.verify + + assert_path_exists @dest_dir + + mask = 040700 & (~File.umask) + + assert_equal mask, File.stat(@dest_dir).mode unless win_platform? + end + + def test_verify_file + FileUtils.touch @dest_dir + + e = assert_raises Gem::Security::Exception do + @trust_dir.verify + end + + assert_equal "trust directory #{@dest_dir} is not a directory", e.message + end + + def test_verify_wrong_permissions + FileUtils.mkdir_p @dest_dir, :mode => 0777 + + @trust_dir.verify + + mask = 040700 & (~File.umask) + + assert_equal mask, File.stat(@dest_dir).mode unless win_platform? + end + +end if defined?(OpenSSL::SSL) + |