krb5 commit: Add kprop Python tests

Greg Hudson ghudson at MIT.EDU
Thu Feb 7 13:09:51 EST 2013 

https://github.com/krb5/krb5/commit/62d0f78c3b420eba1812d232c03ea25a59d5ce64
commit 62d0f78c3b420eba1812d232c03ea25a59d5ce64
Author: Greg Hudson <ghudson at mit.edu>
Date:   Sun Feb 3 12:25:10 2013 -0500

    Add kprop Python tests
    
    Create a K5Realm.kprop_port method so test scripts can invoke kprop
    usefully, and create a simple Python test script exercising the same
    kprop functionality as the dejagnu suite's kprop.exp.

 src/tests/Makefile.in |    1 +
 src/tests/t_kprop.py  |   44 ++++++++++++++++++++++++++++++++++++++++++++
 src/util/k5test.py    |   12 +++++++++---
 3 files changed, 54 insertions(+), 3 deletions(-)

diff --git a/src/tests/Makefile.in b/src/tests/Makefile.in
index f23ac44..92d8d68 100644
--- a/src/tests/Makefile.in
+++ b/src/tests/Makefile.in
@@ -76,6 +76,7 @@ check-pytests:: gcred hist kdbtest
 	$(RUNPYTEST) $(srcdir)/t_general.py $(PYTESTFLAGS)
 	$(RUNPYTEST) $(srcdir)/t_dump.py $(PYTESTFLAGS)
 	$(RUNPYTEST) $(srcdir)/t_iprop.py $(PYTESTFLAGS)
+	$(RUNPYTEST) $(srcdir)/t_kprop.py $(PYTESTFLAGS)
 	$(RUNPYTEST) $(srcdir)/t_anonpkinit.py $(PYTESTFLAGS)
 	$(RUNPYTEST) $(srcdir)/t_policy.py $(PYTESTFLAGS)
 	$(RUNPYTEST) $(srcdir)/t_kadm5_hook.py $(PYTESTFLAGS)
diff --git a/src/tests/t_kprop.py b/src/tests/t_kprop.py
new file mode 100644
index 0000000..ff62902
--- /dev/null
+++ b/src/tests/t_kprop.py
@@ -0,0 +1,44 @@
+#!/usr/bin/python
+from k5test import *
+
+conf_slave = {'dbmodules': {'db': {'database_name': '$testdir/db.slave'}}}
+
+# kprop/kpropd are the only users of krb5_auth_con_initivector, so run
+# this test over all enctypes to exercise mkpriv cipher state.
+for realm in multipass_realms(create_user=False):
+    slave = realm.special_env('slave', True, kdc_conf=conf_slave)
+
+    # Set up the kpropd acl file.
+    acl_file = os.path.join(realm.testdir, 'kpropd-acl')
+    acl = open(acl_file, 'w')
+    acl.write(realm.host_princ + '\n')
+    acl.close()
+
+    # Create the slave db.
+    dumpfile = os.path.join(realm.testdir, 'dump')
+    realm.run([kdb5_util, 'dump', dumpfile])
+    realm.run([kdb5_util, 'load', dumpfile], slave)
+    realm.run([kdb5_util, 'stash', '-P', 'master'], slave)
+
+    # Make some changes to the master db.
+    realm.addprinc('wakawaka')
+
+    # Start kpropd.
+    kpropd = realm.start_kpropd(slave, ['-d', '-t'])
+
+    realm.run([kdb5_util, 'dump', dumpfile])
+    realm.run([kprop, '-f', dumpfile, '-P', str(realm.kprop_port()), hostname])
+    output('*** kpropd output follows\n')
+    while True:
+        line = kpropd.stdout.readline()
+        if line == '':
+            break
+        output('kpropd: ' + line)
+        if 'Rejected connection' in line:
+            fail('kpropd rejected connection from kprop')
+
+            out = realm.run_kadminl('listprincs', slave)
+            if 'wakawaka' not in out:
+                fail('Slave does not have all principals from master')
+
+success('kprop tests')
diff --git a/src/util/k5test.py b/src/util/k5test.py
index 961ed79..017aa0c 100644
--- a/src/util/k5test.py
+++ b/src/util/k5test.py
@@ -209,6 +209,9 @@ Scripts may use the following realm methods and attributes:
   send an input string to the command, and expected_code=N to expect a
   return code other than 0.
 
+* realm.kprop_port(): Returns a port number based on realm.portbase
+  intended for use by kprop and kpropd.
+
 * realm.server_port(): Returns a port number based on realm.portbase
   intended for use by server processes.
 
@@ -823,8 +826,8 @@ class K5Realm(object):
         env['KRB5_KTNAME'] = self.keytab
         env['KRB5_CLIENT_KTNAME'] = self.client_keytab
         env['KRB5RCACHEDIR'] = self.testdir
-        env['KPROPD_PORT'] = str(self.portbase + 3)
-        env['KPROP_PORT'] = str(self.portbase + 3)
+        env['KPROPD_PORT'] = str(self.kprop_port())
+        env['KPROP_PORT'] = str(self.kprop_port())
         return env
 
     def run(self, args, env=None, **keywords):
@@ -832,6 +835,9 @@ class K5Realm(object):
             env = self.env
         return _run_cmd(args, env, **keywords)
 
+    def kprop_port(self):
+        return self.portbase + 3
+
     def server_port(self):
         return self.portbase + 5
 
@@ -885,7 +891,7 @@ class K5Realm(object):
         global krb5kdc
         slavedump_path = os.path.join(self.testdir, 'incoming-slave-datatrans')
         kpropdacl_path = os.path.join(self.testdir, 'kpropd-acl')
-        proc = _start_daemon([kpropd, '-D', '-P', str(self.portbase + 3),
+        proc = _start_daemon([kpropd, '-D', '-P', str(self.kprop_port()),
                               '-f', slavedump_path, '-p', kdb5_util,
                               '-a', kpropdacl_path] + args, env, 'ready')
         self._kpropd_procs.append(proc)

More information about the cvs-krb5 mailing list