tests/unittests/test_handler_ca_certs.py


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64

from unittest import TestCase
from mocker import MockerTestCase

from cloudinit.CloudConfig.cc_ca_certs import handle, write_file

class TestAddCaCerts(MockerTestCase):
    def setUp(self):
        super(TestAddCaCerts, self).setUp()
        self.name = "ca-certs"
        self.cloud_init = None
        self.log = None
        self.args = []

    def test_no_config(self):
        """Test that no certificate are written if not provided."""
        config = {"unknown-key": "value"}

        mock = self.mocker.replace(write_file, passthrough=False)
        self.mocker.replay()

        handle(self.name, config, self.cloud_init, self.log, self.args)

    def test_no_trusted_list(self):
        """Test that no certificate are written if not provided."""
        config = {"ca-certs": {}}

        mock = self.mocker.replace(write_file, passthrough=False)
        self.mocker.replay()

        handle(self.name, config, self.cloud_init, self.log, self.args)

    def test_no_certs_in_list(self):
        """Test that no certificate are written if not provided."""
        config = {"ca-certs": {"trusted": []}}

        mock = self.mocker.replace(write_file, passthrough=False)
        self.mocker.replay()

        handle(self.name, config, self.cloud_init, self.log, self.args)

    def test_single_cert(self):
        """Test adding a single certificate to the trusted CAs"""
        cert = "CERT1\nLINE2\nLINE3"
        config = {"ca-certs": {"trusted": cert}}

        mock = self.mocker.replace(write_file, passthrough=False)
        mock("/usr/share/ca-certificates/cloud-init-provided.crt",
             cert, "root", "root", "644")
        self.mocker.replay()

        handle(self.name, config, self.cloud_init, self.log, self.args)

    def test_multiple_certs(self):
        """Test adding multiple certificate to the trusted CAs"""
        certs = ["CERT1\nLINE2\nLINE3", "CERT2\nLINE2\nLINE3"]
        cert_file = "\n".join(certs)
        config = {"ca-certs": {"trusted": certs}}

        mock = self.mocker.replace(write_file, passthrough=False)
        mock("/usr/share/ca-certificates/cloud-init-provided.crt",
             cert_file, "root", "root", "644")
        self.mocker.replay()

        handle(self.name, config, self.cloud_init, self.log, self.args)