func (s *signedSuite) SetUpSuite(c *gc.C) { var imageData = map[string]string{ "/unsigned/streams/v1/index.json": unsignedIndex, "/unsigned/streams/v1/image_metadata.json": unsignedProduct, } // Set up some signed data from the unsigned data. // Overwrite the product path to use the sjson suffix. rawUnsignedIndex := strings.Replace( unsignedIndex, "streams/v1/image_metadata.json", "streams/v1/image_metadata.sjson", -1) r := bytes.NewReader([]byte(rawUnsignedIndex)) signedData, err := simplestreams.Encode( r, sstesting.SignedMetadataPrivateKey, sstesting.PrivateKeyPassphrase) c.Assert(err, gc.IsNil) imageData["/signed/streams/v1/index.sjson"] = string(signedData) // Replace the image id in the unsigned data with a different one so we can test that the right // image id is used. rawUnsignedProduct := strings.Replace( unsignedProduct, "ami-26745463", "ami-123456", -1) r = bytes.NewReader([]byte(rawUnsignedProduct)) signedData, err = simplestreams.Encode( r, sstesting.SignedMetadataPrivateKey, sstesting.PrivateKeyPassphrase) c.Assert(err, gc.IsNil) imageData["/signed/streams/v1/image_metadata.sjson"] = string(signedData) testRoundTripper.Sub = jujutest.NewCannedRoundTripper( imageData, map[string]int{"signedtest://unauth": http.StatusUnauthorized}) s.origKey = imagemetadata.SetSigningPublicKey(sstesting.SignedMetadataPublicKey) }
func (s *signedSuite) TestSignedImageMetadataInvalidSignature(c *gc.C) { signedSource := simplestreams.NewURLDataSource("test", "signedtest://host/signed", utils.VerifySSLHostnames) imageConstraint := imagemetadata.NewImageConstraint(simplestreams.LookupParams{ CloudSpec: simplestreams.CloudSpec{"us-east-1", "https://ec2.us-east-1.amazonaws.com"}, Series: []string{"precise"}, Arches: []string{"amd64"}, }) imagemetadata.SetSigningPublicKey(s.origKey) _, _, err := imagemetadata.Fetch( []simplestreams.DataSource{signedSource}, simplestreams.DefaultIndexPath, imageConstraint, true) c.Assert(err, gc.ErrorMatches, "cannot read index data.*") }
func (s *signedSuite) TearDownSuite(c *gc.C) { testRoundTripper.Sub = nil imagemetadata.SetSigningPublicKey(s.origKey) }