rooty/yubikey-val
1
0
Fork 0
mirror of https://github.com/Yubico/yubikey-val.git synced 2025-01-20 19:52:15 +01:00
Code Issues Projects Releases Wiki Activity

Added systemtest functionality. System tests unders systemtests/

Browse Source
This commit is contained in:
Olov Danielson 2010-01-18 10:06:03 +00:00
parent 9cf8bce177
commit a350d7dbec
2 changed files with 178 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

60
systemtests/setupTest.php Normal file
View File

@ -0,0 +1,60 @@
<?php
require_once 'PHPUnit/Framework.php';
require_once 'Auth/Yubico.php';
require_once(dirname(__FILE__) . '/../ykval-otpgen.php');
require_once(dirname(__FILE__) . '/../ykval-log.php');
require_once(dirname(__FILE__) . '/../ykval-db.php');
class setupTest extends PHPUnit_Framework_TestCase
{
public function setup()
{
$this->yubi = &new Auth_Yubico('1', null);
$this->yubi->setURLPart("api2.yubico.com/wsapi/verify");
}
function microtime_float()
{
list($usec, $sec) = explode(" ", microtime());
return ((float)$usec + (float)$sec);
}
function testStandardValidation()
{
$myKey=new otpgen("mysql:dbname=ykval_systemtest;host=127.0.0.1",
"ykval-systester",
"lab",
array(),
"ykval-systemtest",
"ccccccccgchv");
$otp=$myKey->getOtp();
$this->assertTrue(is_string($otp), "getOtp should return a string");
$this->assertEquals(44, strlen($otp), "OTP should have length 32");
$auth=$this->yubi->verify($otp);
if (PEAR::isError($auth)) {
echo "\nERROR MESSAGE IS " . $auth->getMessage() . "\n";
}
$this->assertFalse(PEAR::isError($auth), "An error should not have been raised by this OTP.");
$validation_pool=array("api3.yubico.com/wsapi/verify",
"api4.yubico.com/wsapi/verify",
"api5.yubico.com/wsapi/verify");
// We except the calls to these to fail with replayed_otp.
foreach ($validation_pool as $server){
$this->yubi->setURLPart($server);
$auth=$this->yubi->verify($otp);
$this->assertTrue(PEAR::isError($auth), "An error should have been raised by this OTP.");
$this->assertEquals("REPLAYED_OTP", $auth->getMessage(), "OTP should be reported as replayed.");
}
}
}
?>

118
ykval-otpgen.php Normal file
View File

@ -0,0 +1,118 @@
<?php
/**
* Class for creating new OTPs for testing purposes
*
* LICENSE:
*
* Copyright (c) 2009 Yubico. All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions
* are met:
*
* o Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* o Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
* o The names of the authors may not be used to endorse or promote
* products derived from this software without specific prior written
* permission.
*
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
* "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
* LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
* A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
* OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
* LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
* THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*
* @author Olov Danielson <olov@yubico.com>
* @copyright 2010 Yubico
* @license http://opensource.org/licenses/bsd-license.php New BSD License
* @link http://www.yubico.com/
* @link http://code.google.com/p/yubikey-val-server-php/
*/
class OtpGen
{
public function __construct($db_dsn, $db_username, $db_password, $db_options, $name='ykval-otpgen', $yk_publicname)
{
$this->myLog = new Log($name);
$this->db=new Db($db_dsn, $db_username, $db_password, $db_options, $name . ':db');
$this->isConnected=$this->db->connect();
// First obtain private ID and AES-key
if($yubikey=$this->db->findBy('yubikeys', 'yk_publicname', $yk_publicname, 1)) {
$this->yk_internalname=$yubikey['yk_internalname'];
$this->yk_aeskey=$yubikey['yk_aeskey'];
} else {
$this->myLog->log(LOG_WARNING, 'Failed to obtain data for yubikey ' . $yk_publicname);
}
$this->yk_publicname = $yk_publicname;
$this->yk_counter = $this->stepYkCounter();
$this->yk_use = 0;
$this->yk_low = rand(0,65535);
$this->yk_high = rand(0,255);
// Store start time as well so we can step yk_low, yk_high correctly
$this->start_time=time();
}
public function getOtp()
{
# TODO. Add the rest of the values to string and execute. !
$execstring=sprintf("ykgenerate %s %s %04x %04x %02x %02x" ,
$this->yk_aeskey,
$this->yk_internalname,
$this->yk_counter,
$this->yk_low,
$this->yk_high,
$this->yk_use++);
if ($this->yk_use>=256) {
$this->yk_use=0;
$this->yk_counter=$this->stepYkCounter();
}
echo $execstring . "\n";
$otp=system($execstring);
return $this->yk_publicname . $otp;
}
private function stepYkCounter()
{
if ($this->yk_publicname) {
if($yubikey=$this->db->findBy('yubikeys', 'yk_publicname', $this->yk_publicname, 1)) {
$new_counter = $yubikey['yk_counter'] + 1;
if ($this->db->updateBy('yubikeys',
'yk_publicname',
$this->yk_publicname,
array('yk_counter'=>$new_counter))) {
$this->myLog->log(LOG_NOTICE, "Yubikey " . $this->yk_publicname . " stepped counter value to " . $new_counter);
return $new_counter;
} else {
$this->myLog->log(LOG_WARNING, "Failed to update counter value for yubikey " . $this->yk_publicname);
}
} else {
$this->myLog->log(LOG_WARNING, "Failed to get data for yubikey " . $this->yk_publicname);
}
} else {
$this->myLog->log(LOG_WARNING, "yk_publicname not set up correctly for class ykval-otpgen.php. We shouldn't be here.");
}
return false;
}
}