mirror of https://github.com/docker/docs.git
106 lines
3.1 KiB
Go
106 lines
3.1 KiB
Go
package timestamp
|
|
|
|
import (
|
|
"encoding/json"
|
|
"testing"
|
|
"time"
|
|
|
|
"github.com/docker/notary/tuf/data"
|
|
"github.com/docker/notary/tuf/signed"
|
|
"github.com/stretchr/testify/assert"
|
|
|
|
"github.com/docker/notary/server/storage"
|
|
)
|
|
|
|
func TestTimestampExpired(t *testing.T) {
|
|
ts := &data.SignedTimestamp{
|
|
Signatures: nil,
|
|
Signed: data.Timestamp{
|
|
Expires: time.Now().AddDate(-1, 0, 0),
|
|
},
|
|
}
|
|
assert.True(t, timestampExpired(ts), "Timestamp should have expired")
|
|
}
|
|
|
|
func TestTimestampNotExpired(t *testing.T) {
|
|
ts := &data.SignedTimestamp{
|
|
Signatures: nil,
|
|
Signed: data.Timestamp{
|
|
Expires: time.Now().AddDate(1, 0, 0),
|
|
},
|
|
}
|
|
assert.False(t, timestampExpired(ts), "Timestamp should NOT have expired")
|
|
}
|
|
|
|
func TestGetTimestampKey(t *testing.T) {
|
|
store := storage.NewMemStorage()
|
|
crypto := signed.NewEd25519()
|
|
k, err := GetOrCreateTimestampKey("gun", store, crypto, data.ED25519Key)
|
|
assert.Nil(t, err, "Expected nil error")
|
|
assert.NotNil(t, k, "Key should not be nil")
|
|
|
|
k2, err := GetOrCreateTimestampKey("gun", store, crypto, data.ED25519Key)
|
|
|
|
assert.Nil(t, err, "Expected nil error")
|
|
|
|
// trying to get the same key again should return the same value
|
|
assert.Equal(t, k, k2, "Did not receive same key when attempting to recreate.")
|
|
assert.NotNil(t, k2, "Key should not be nil")
|
|
}
|
|
|
|
func TestGetTimestamp(t *testing.T) {
|
|
store := storage.NewMemStorage()
|
|
crypto := signed.NewEd25519()
|
|
|
|
snapshot := &data.SignedSnapshot{
|
|
Signed: data.Snapshot{
|
|
Expires: data.DefaultExpires(data.CanonicalSnapshotRole),
|
|
},
|
|
}
|
|
snapJSON, _ := json.Marshal(snapshot)
|
|
|
|
store.UpdateCurrent("gun", storage.MetaUpdate{Role: "snapshot", Version: 0, Data: snapJSON})
|
|
// create a key to be used by GetTimestamp
|
|
_, err := GetOrCreateTimestampKey("gun", store, crypto, data.ED25519Key)
|
|
assert.Nil(t, err, "GetKey errored")
|
|
|
|
_, _, err = GetOrCreateTimestamp("gun", store, crypto)
|
|
assert.Nil(t, err, "GetTimestamp errored")
|
|
}
|
|
|
|
func TestGetTimestampNewSnapshot(t *testing.T) {
|
|
store := storage.NewMemStorage()
|
|
crypto := signed.NewEd25519()
|
|
|
|
snapshot := &data.SignedSnapshot{
|
|
Signed: data.Snapshot{
|
|
Expires: data.DefaultExpires(data.CanonicalSnapshotRole),
|
|
},
|
|
}
|
|
snapshot.Signed.Version = 0
|
|
snapJSON, _ := json.Marshal(snapshot)
|
|
|
|
store.UpdateCurrent("gun", storage.MetaUpdate{Role: "snapshot", Version: 0, Data: snapJSON})
|
|
// create a key to be used by GetTimestamp
|
|
_, err := GetOrCreateTimestampKey("gun", store, crypto, data.ED25519Key)
|
|
assert.Nil(t, err, "GetKey errored")
|
|
|
|
c1, ts1, err := GetOrCreateTimestamp("gun", store, crypto)
|
|
assert.Nil(t, err, "GetTimestamp errored")
|
|
|
|
snapshot = &data.SignedSnapshot{
|
|
Signed: data.Snapshot{
|
|
Expires: data.DefaultExpires(data.CanonicalSnapshotRole),
|
|
},
|
|
}
|
|
snapshot.Signed.Version = 1
|
|
snapJSON, _ = json.Marshal(snapshot)
|
|
|
|
store.UpdateCurrent("gun", storage.MetaUpdate{Role: "snapshot", Version: 1, Data: snapJSON})
|
|
|
|
c2, ts2, err := GetOrCreateTimestamp("gun", store, crypto)
|
|
assert.NoError(t, err, "GetTimestamp errored")
|
|
assert.NotEqual(t, ts1, ts2, "Timestamp was not regenerated when snapshot changed")
|
|
assert.True(t, c1.Before(*c2), "Timestamp modification time incorrect")
|
|
}
|