Add specs for EncryptedDataBagItem class

kamilbednarz · kamilbednarz · commit e3d863e6661f · 2014-01-01T11:57:43.000-05:00
diff --git a/chef/tests/encryption_key b/chef/tests/encryption_key
@@ -0,0 +1 @@
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
diff --git a/chef/tests/test_encrypted_data_bag_item.py b/chef/tests/test_encrypted_data_bag_item.py
@@ -0,0 +1,82 @@
+from chef import DataBag, EncryptedDataBagItem
+from chef.exceptions import ChefError, ChefUnsupportedEncryptionVersionError, ChefDecryptionError
+from chef.tests import ChefTestCase
+from chef.api import ChefAPI
+
+import copy
+
+class EncryptedDataBagItemTestCase(ChefTestCase):
+    def setUp(self):
+        super(EncryptedDataBagItemTestCase, self).setUp()
+
+        """
+        This is data encoded using knife, it contains two examples of
+        encryption methods versions: 1 and 2.
+        """
+        self.knife_examples = {
+            'id': 'test',
+            "pychef_test_ver1": {
+                "encrypted_data": "Ym5T8umtSd0wgjDYq1ZDK5dAh6OjgrTxlloGNf2xYhg=\n",
+                "iv": "GLVikZLxG0SWYnb68Pr8Ag==\n",
+                "version": 1,
+                "cipher": "aes-256-cbc"
+                },
+            "pychef_test_ver2": {
+                "encrypted_data": "m2UCN7TYqRJhGfeGFCWtdlF8qtz15W8EmCRqQ4TI4nJpGm/Bqe1WgnzekJus\n7aM0\n",
+                "hmac": "mzhfGpf/7rkkIQOSbK22zUv1X+bTCNI2l3FgMBgVOAY=\n",
+                "iv": "EKNLqsxNfiFFDZPDnyXRfw==\n",
+                "version": 2,
+                "cipher": "aes-256-cbc"
+                }
+            }
+
+    def test_get_version(self):
+        self.assertEqual(EncryptedDataBagItem.get_version({"version": "1"}), '1')
+        self.assertEqual(EncryptedDataBagItem.get_version({"version": 1}), 1)
+        self.assertEqual(EncryptedDataBagItem.get_version({"version": "2"}), '2')
+        self.assertEqual(EncryptedDataBagItem.get_version({"version": 2}), 2)
+        self.assertRaises(ChefUnsupportedEncryptionVersionError, EncryptedDataBagItem.get_version, {"version": 0})
+        self.assertRaises(ChefUnsupportedEncryptionVersionError, EncryptedDataBagItem.get_version, {"version": "not a number"})
+
+    def test__getitem__(self):
+        api = ChefAPI('https://chef_test:3000', 'client.pem', 'admin', secret_file='encryption_key')
+        bag = DataBag('test_1')
+        item = EncryptedDataBagItem(bag, 'test', api, True)
+        item.raw_data = copy.deepcopy(self.knife_examples)
+
+        self.assertEqual(item['id'], 'test')
+        self.assertEqual(item['pychef_test_ver1'], 'secr3t c0d3')
+        self.assertEqual(item['pychef_test_ver2'], '3ncrypt3d d@t@ b@g')
+
+        # Incorrect IV should raise a decryption error
+        item.raw_data['pychef_test_ver1']['iv'] = 'ZTM1MjY3OTc4ZjAwOTBlNw=='
+        self.assertRaises(ChefDecryptionError, item.__getitem__, 'pychef_test_ver1')
+
+        # Invalid HMAC should raise a decryption error
+        item.raw_data['pychef_test_ver2']['hmac'] = 'v0lMrOmi1ZgA/vtfE2NZO2mO62LagIM2KCZSrWiO/8M='
+        self.assertRaises(ChefDecryptionError, item.__getitem__, 'pychef_test_ver2')
+
+    def test__set_item__(self):
+        api = ChefAPI('https://chef_test:3000', 'client.pem', 'admin', secret_file='encryption_key')
+        bag = DataBag('test_1')
+        item = EncryptedDataBagItem(bag, 'test', api, True)
+        item['id'] = 'test'
+        api.encryption_version = 1
+        item['pychef_test_ver1'] = 'secr3t c0d3'
+        api.encryption_version = 2
+        item['pychef_test_ver2'] = '3ncrypt3d d@t@ b@g'
+
+        self.assertEqual(item['id'], 'test')
+
+        self.assertIsInstance(item.raw_data['pychef_test_ver1'], dict)
+        self.assertEqual(item.raw_data['pychef_test_ver1']['version'], 1)
+        self.assertEqual(item.raw_data['pychef_test_ver1']['cipher'], 'aes-256-cbc')
+        self.assertIsNotNone(item.raw_data['pychef_test_ver1']['iv'])
+        self.assertIsNotNone(item.raw_data['pychef_test_ver1']['encrypted_data'])
+
+        self.assertIsInstance(item.raw_data['pychef_test_ver2'], dict)
+        self.assertEqual(item.raw_data['pychef_test_ver2']['version'], 2)
+        self.assertEqual(item.raw_data['pychef_test_ver2']['cipher'], 'aes-256-cbc')
+        self.assertIsNotNone(item.raw_data['pychef_test_ver2']['iv'])
+        self.assertIsNotNone(item.raw_data['pychef_test_ver2']['hmac'])
+        self.assertIsNotNone(item.raw_data['pychef_test_ver2']['encrypted_data'])

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	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