1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
|
// Copyright 2013 Canonical Ltd.
// Licensed under the AGPLv3, see LICENCE file for details.
package environs_test
import (
"io/ioutil"
gc "launchpad.net/gocheck"
"launchpad.net/juju-core/environs"
"launchpad.net/juju-core/environs/config"
"launchpad.net/juju-core/testing"
)
type EnvironsCertSuite struct {
testing.LoggingSuite
}
var _ = gc.Suite(&EnvironsCertSuite{})
func (*EnvironsCertSuite) TestWriteCertAndKey(c *gc.C) {
defer testing.MakeEmptyFakeHome(c).Restore()
// Ensure that the juju home path is different
// from $HOME/.juju to check that WriteCertAndKey
// isn't just using $HOME.
config.SetJujuHome(c.MkDir())
cert, key := []byte("a cert"), []byte("a key")
err := environs.WriteCertAndKey("foo", cert, key)
c.Assert(err, gc.IsNil)
// Check that the generated CA key has been written correctly.
caCertPEM, err := ioutil.ReadFile(config.JujuHomePath("foo-cert.pem"))
c.Assert(err, gc.IsNil)
c.Assert(caCertPEM, gc.DeepEquals, cert)
caKeyPEM, err := ioutil.ReadFile(config.JujuHomePath("foo-private-key.pem"))
c.Assert(err, gc.IsNil)
c.Assert(caKeyPEM, gc.DeepEquals, key)
}
func (*EnvironsCertSuite) TestEnsureCertificateMissingKey(c *gc.C) {
defer testing.MakeFakeHome(c, testing.SingleEnvConfig).Restore()
envName := testing.SampleEnvName
keyPath := testing.HomePath(".juju", envName+"-cert.pem")
ioutil.WriteFile(keyPath, []byte(testing.CACert), 0600)
// Need to create the environment after the cert has been written.
env, err := environs.PrepareFromName(envName)
c.Assert(err, gc.IsNil)
writeCalled := false
_, err = environs.EnsureCertificate(env, func(name string, cert, key []byte) error {
writeCalled = true
return nil
})
c.Assert(err, gc.ErrorMatches, "environment configuration with a certificate but no CA private key")
c.Assert(writeCalled, gc.Equals, false)
}
func (*EnvironsCertSuite) TestEnsureCertificateExisting(c *gc.C) {
defer testing.MakeSampleHome(c).Restore()
env, err := environs.PrepareFromName(testing.SampleEnvName)
c.Assert(err, gc.IsNil)
writeCalled := false
created, err := environs.EnsureCertificate(env, func(name string, cert, key []byte) error {
writeCalled = true
return nil
})
c.Assert(err, gc.IsNil)
c.Assert(created, gc.Equals, environs.CertExists)
c.Assert(writeCalled, gc.Equals, false)
}
func (*EnvironsCertSuite) TestEnsureCertificate(c *gc.C) {
defer testing.MakeFakeHome(c, testing.SingleEnvConfig).Restore()
env, err := environs.PrepareFromName(testing.SampleEnvName)
c.Assert(err, gc.IsNil)
writeCalled := false
created, err := environs.EnsureCertificate(env, func(name string, cert, key []byte) error {
writeCalled = true
return nil
})
c.Assert(err, gc.IsNil)
c.Assert(created, gc.Equals, environs.CertCreated)
c.Assert(writeCalled, gc.Equals, true)
}
|