Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
publics
/
gokrb5.v7
0
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Branch: issue-390
Branches Tags
gokrb5.v7
/
messages
/
KDCReq_test.go

KDCReq_test.go 27 KB
Permalink Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426 
  1. package messages
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/hex"
    5. 

  5. 	"fmt"
    6. 

  6. 	"testing"
    7. 

  7. 	"time"
    8. 

  8. 

  9. 	"github.com/stretchr/testify/assert"
    10. 

  10. 	"gopkg.in/jcmturner/gokrb5.v7/iana"
    11. 

  11. 	"gopkg.in/jcmturner/gokrb5.v7/iana/addrtype"
    12. 

  12. 	"gopkg.in/jcmturner/gokrb5.v7/iana/msgtype"
    13. 

  13. 	"gopkg.in/jcmturner/gokrb5.v7/iana/nametype"
    14. 

  14. 	"gopkg.in/jcmturner/gokrb5.v7/iana/patype"
    15. 

  15. 	"gopkg.in/jcmturner/gokrb5.v7/test/testdata"
    16. 

  16. )
    17. 

  17. 

  18. func TestUnmarshalKDCReqBody(t *testing.T) {
    19. 

  19. 	t.Parallel()
    20. 

  20. 	var a KDCReqBody
    21. 

  21. 	b, err := hex.DecodeString(testdata.MarshaledKRB5kdc_req_body)
    22. 

  22. 	if err != nil {
    23. 

  23. 		t.Fatalf("Test vector read error: %v", err)
    24. 

  24. 	}
    25. 

  25. 	err = a.Unmarshal(b)
    26. 

  26. 	if err != nil {
    27. 

  27. 		t.Fatalf("Unmarshal error: %v", err)
    28. 

  28. 	}
    29. 

  29. 	//Parse the test time value into a time.Time type
    30. 

  30. 	tt, _ := time.Parse(testdata.TEST_TIME_FORMAT, testdata.TEST_TIME)
    31. 

  31. 

  32. 	assert.Equal(t, "fedcba90", hex.EncodeToString(a.KDCOptions.Bytes), "Request body flags not as expected")
    33. 

  33. 	assert.Equal(t, nametype.KRB_NT_PRINCIPAL, a.CName.NameType, "Request body CName NameType not as expected")
    34. 

  34. 	assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(a.CName.NameString), "Request body CName does not have the expected number of NameStrings")
    35. 

  35. 	assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, a.CName.NameString, "Request body CName entries not as expected")
    36. 

  36. 	assert.Equal(t, testdata.TEST_REALM, a.Realm, "Request body Realm not as expected")
    37. 

  37. 	assert.Equal(t, nametype.KRB_NT_PRINCIPAL, a.SName.NameType, "Request body SName nametype not as expected")
    38. 

  38. 	assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(a.SName.NameString), "Request body SName does not have the expected number of NameStrings")
    39. 

  39. 	assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, a.SName.NameString, "Request body SName entries not as expected")
    40. 

  40. 	assert.Equal(t, tt, a.From, "Request body From time not as expected")
    41. 

  41. 	assert.Equal(t, tt, a.Till, "Request body Till time not as expected")
    42. 

  42. 	assert.Equal(t, tt, a.RTime, "Request body RTime time not as expected")
    43. 

  43. 	assert.Equal(t, testdata.TEST_NONCE, a.Nonce, "Request body nounce not as expected")
    44. 

  44. 	assert.Equal(t, []int32{0, 1}, a.EType, "Etype list not as expected")
    45. 

  45. 	assert.Equal(t, 2, len(a.Addresses), "Number of client addresses not as expected")
    46. 

  46. 	for i, addr := range a.Addresses {
    47. 

  47. 		assert.Equal(t, addrtype.IPv4, addr.AddrType, fmt.Sprintf("Host address type not as expected for address item %d", i+1))
    48. 

  48. 		assert.Equal(t, "12d00023", hex.EncodeToString(addr.Address), fmt.Sprintf("Host address not as expected for address item %d", i+1))
    49. 

  49. 	}
    50. 

  50. 	assert.Equal(t, testdata.TEST_ETYPE, a.EncAuthData.EType, "Etype of request body encrypted authorization data not as expected")
    51. 

  51. 	assert.Equal(t, iana.PVNO, a.EncAuthData.KVNO, "KVNO of request body encrypted authorization data not as expected")
    52. 

  52. 	assert.Equal(t, []byte(testdata.TEST_CIPHERTEXT), a.EncAuthData.Cipher, "Ciphertext of request body encrypted authorization data not as expected")
    53. 

  53. 	assert.Equal(t, 2, len(a.AdditionalTickets), "Number of additional tickets not as expected")
    54. 

  54. 	for i, tkt := range a.AdditionalTickets {
    55. 

  55. 		assert.Equal(t, iana.PVNO, tkt.TktVNO, fmt.Sprintf("Additional ticket (%v) ticket-vno not as expected", i+1))
    56. 

  56. 		assert.Equal(t, testdata.TEST_REALM, tkt.Realm, fmt.Sprintf("Additional ticket (%v) realm not as expected", i+1))
    57. 

  57. 		assert.Equal(t, nametype.KRB_NT_PRINCIPAL, tkt.SName.NameType, fmt.Sprintf("Additional ticket (%v) SName NameType not as expected", i+1))
    58. 

  58. 		assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(tkt.SName.NameString), fmt.Sprintf("Additional ticket (%v) SName does not have the expected number of NameStrings", i+1))
    59. 

  59. 		assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, tkt.SName.NameString, fmt.Sprintf("Additional ticket (%v) SName name string entries not as expected", i+1))
    60. 

  60. 		assert.Equal(t, testdata.TEST_ETYPE, tkt.EncPart.EType, fmt.Sprintf("Additional ticket (%v) encPart etype not as expected", i+1))
    61. 

  61. 		assert.Equal(t, iana.PVNO, tkt.EncPart.KVNO, fmt.Sprintf("Additional ticket (%v) encPart KVNO not as expected", i+1))
    62. 

  62. 		assert.Equal(t, []byte(testdata.TEST_CIPHERTEXT), tkt.EncPart.Cipher, fmt.Sprintf("Additional ticket (%v) encPart cipher not as expected", i+1))
    63. 

  63. 	}
    64. 

  64. }
    65. 

  65. 

  66. func TestUnmarshalKDCReqBody_optionalsNULLexceptsecond_ticket(t *testing.T) {
    67. 

  67. 	t.Parallel()
    68. 

  68. 	var a KDCReqBody
    69. 

  69. 	b, err := hex.DecodeString(testdata.MarshaledKRB5kdc_req_bodyOptionalsNULLexceptsecond_ticket)
    70. 

  70. 	if err != nil {
    71. 

  71. 		t.Fatalf("Test vector read error: %v", err)
    72. 

  72. 	}
    73. 

  73. 	err = a.Unmarshal(b)
    74. 

  74. 	if err != nil {
    75. 

  75. 		t.Fatalf("Unmarshal error: %v", err)
    76. 

  76. 	}
    77. 

  77. 	//Parse the test time value into a time.Time type
    78. 

  78. 	tt, _ := time.Parse(testdata.TEST_TIME_FORMAT, testdata.TEST_TIME)
    79. 

  79. 

  80. 	assert.Equal(t, "fedcba98", hex.EncodeToString(a.KDCOptions.Bytes), "Request body flags not as expected")
    81. 

  81. 	assert.Equal(t, testdata.TEST_REALM, a.Realm, "Request body Realm not as expected")
    82. 

  82. 	assert.Equal(t, tt, a.Till, "Request body Till time not as expected")
    83. 

  83. 	assert.Equal(t, testdata.TEST_NONCE, a.Nonce, "Request body nounce not as expected")
    84. 

  84. 	assert.Equal(t, []int32{0, 1}, a.EType, "Etype list not as expected")
    85. 

  85. 	assert.Equal(t, 0, len(a.Addresses), "Number of client addresses not empty")
    86. 

  86. 	assert.Equal(t, 0, len(a.EncAuthData.Cipher), "Ciphertext of request body encrypted authorization data not empty")
    87. 

  87. 	assert.Equal(t, 2, len(a.AdditionalTickets), "Number of additional tickets not as expected")
    88. 

  88. 	for i, tkt := range a.AdditionalTickets {
    89. 

  89. 		assert.Equal(t, iana.PVNO, tkt.TktVNO, fmt.Sprintf("Additional ticket (%v) ticket-vno not as expected", i+1))
    90. 

  90. 		assert.Equal(t, testdata.TEST_REALM, tkt.Realm, fmt.Sprintf("Additional ticket (%v) realm not as expected", i+1))
    91. 

  91. 		assert.Equal(t, nametype.KRB_NT_PRINCIPAL, tkt.SName.NameType, fmt.Sprintf("Additional ticket (%v) SName NameType not as expected", i+1))
    92. 

  92. 		assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(tkt.SName.NameString), fmt.Sprintf("Additional ticket (%v) SName does not have the expected number of NameStrings", i+1))
    93. 

  93. 		assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, tkt.SName.NameString, fmt.Sprintf("Additional ticket (%v) SName name string entries not as expected", i+1))
    94. 

  94. 		assert.Equal(t, testdata.TEST_ETYPE, tkt.EncPart.EType, fmt.Sprintf("Additional ticket (%v) encPart etype not as expected", i+1))
    95. 

  95. 		assert.Equal(t, iana.PVNO, tkt.EncPart.KVNO, fmt.Sprintf("Additional ticket (%v) encPart KVNO not as expected", i+1))
    96. 

  96. 		assert.Equal(t, []byte(testdata.TEST_CIPHERTEXT), tkt.EncPart.Cipher, fmt.Sprintf("Additional ticket (%v) encPart cipher not as expected", i+1))
    97. 

  97. 	}
    98. 

  98. }
    99. 

  99. 

  100. func TestUnmarshalKDCReqBody_optionalsNULLexceptserver(t *testing.T) {
    101. 

  101. 	t.Parallel()
    102. 

  102. 	var a KDCReqBody
    103. 

  103. 	b, err := hex.DecodeString(testdata.MarshaledKRB5kdc_req_bodyOptionalsNULLexceptserver)
    104. 

  104. 	if err != nil {
    105. 

  105. 		t.Fatalf("Test vector read error: %v", err)
    106. 

  106. 	}
    107. 

  107. 	err = a.Unmarshal(b)
    108. 

  108. 	if err != nil {
    109. 

  109. 		t.Fatalf("Unmarshal error: %v", err)
    110. 

  110. 	}
    111. 

  111. 	//Parse the test time value into a time.Time type
    112. 

  112. 	tt, _ := time.Parse(testdata.TEST_TIME_FORMAT, testdata.TEST_TIME)
    113. 

  113. 

  114. 	assert.Equal(t, "fedcba90", hex.EncodeToString(a.KDCOptions.Bytes), "Request body flags not as expected")
    115. 

  115. 	assert.Equal(t, testdata.TEST_REALM, a.Realm, "Request body Realm not as expected")
    116. 

  116. 	assert.Equal(t, nametype.KRB_NT_PRINCIPAL, a.SName.NameType, "Request body SName nametype not as expected")
    117. 

  117. 	assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(a.SName.NameString), "Request body SName does not have the expected number of NameStrings")
    118. 

  118. 	assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, a.SName.NameString, "Request body SName entries not as expected")
    119. 

  119. 	assert.Equal(t, tt, a.Till, "Request body Till time not as expected")
    120. 

  120. 	assert.Equal(t, testdata.TEST_NONCE, a.Nonce, "Request body nounce not as expected")
    121. 

  121. 	assert.Equal(t, []int32{0, 1}, a.EType, "Etype list not as expected")
    122. 

  122. 	assert.Equal(t, 0, len(a.Addresses), "Number of client addresses not empty")
    123. 

  123. 	assert.Equal(t, 0, len(a.EncAuthData.Cipher), "Ciphertext of request body encrypted authorization data not empty")
    124. 

  124. 	assert.Equal(t, 0, len(a.AdditionalTickets), "Number of additional tickets not empty")
    125. 

  125. }
    126. 

  126. 

  127. func TestUnmarshalASReq(t *testing.T) {
    128. 

  128. 	t.Parallel()
    129. 

  129. 	var a ASReq
    130. 

  130. 	b, err := hex.DecodeString(testdata.MarshaledKRB5as_req)
    131. 

  131. 	if err != nil {
    132. 

  132. 		t.Fatalf("Test vector read error: %v", err)
    133. 

  133. 	}
    134. 

  134. 	err = a.Unmarshal(b)
    135. 

  135. 	if err != nil {
    136. 

  136. 		t.Fatalf("Unmarshal error: %v", err)
    137. 

  137. 	}
    138. 

  138. 	//Parse the test time value into a time.Time type
    139. 

  139. 	tt, _ := time.Parse(testdata.TEST_TIME_FORMAT, testdata.TEST_TIME)
    140. 

  140. 

  141. 	assert.Equal(t, iana.PVNO, a.PVNO, "PVNO not as expected")
    142. 

  142. 	assert.Equal(t, msgtype.KRB_AS_REQ, a.MsgType, "Message ID not as expected")
    143. 

  143. 	assert.Equal(t, 2, len(a.PAData), "Number of PAData items in the sequence not as expected")
    144. 

  144. 	for i, pa := range a.PAData {
    145. 

  145. 		assert.Equal(t, patype.PA_SAM_RESPONSE, pa.PADataType, fmt.Sprintf("PAData type for entry %d not as expected", i+1))
    146. 

  146. 		assert.Equal(t, []byte(testdata.TEST_PADATA_VALUE), pa.PADataValue, fmt.Sprintf("PAData valye for entry %d not as expected", i+1))
    147. 

  147. 	}
    148. 

  148. 	assert.Equal(t, "fedcba90", hex.EncodeToString(a.ReqBody.KDCOptions.Bytes), "Request body flags not as expected")
    149. 

  149. 	assert.Equal(t, nametype.KRB_NT_PRINCIPAL, a.ReqBody.CName.NameType, "Request body CName NameType not as expected")
    150. 

  150. 	assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(a.ReqBody.CName.NameString), "Request body CName does not have the expected number of NameStrings")
    151. 

  151. 	assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, a.ReqBody.CName.NameString, "Request body CName entries not as expected")
    152. 

  152. 	assert.Equal(t, testdata.TEST_REALM, a.ReqBody.Realm, "Request body Realm not as expected")
    153. 

  153. 	assert.Equal(t, nametype.KRB_NT_PRINCIPAL, a.ReqBody.SName.NameType, "Request body SName nametype not as expected")
    154. 

  154. 	assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(a.ReqBody.SName.NameString), "Request body SName does not have the expected number of NameStrings")
    155. 

  155. 	assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, a.ReqBody.SName.NameString, "Request body SName entries not as expected")
    156. 

  156. 	assert.Equal(t, tt, a.ReqBody.From, "Request body From time not as expected")
    157. 

  157. 	assert.Equal(t, tt, a.ReqBody.Till, "Request body Till time not as expected")
    158. 

  158. 	assert.Equal(t, tt, a.ReqBody.RTime, "Request body RTime time not as expected")
    159. 

  159. 	assert.Equal(t, testdata.TEST_NONCE, a.ReqBody.Nonce, "Request body nounce not as expected")
    160. 

  160. 	assert.Equal(t, []int32{0, 1}, a.ReqBody.EType, "Etype list not as expected")
    161. 

  161. 	assert.Equal(t, 2, len(a.ReqBody.Addresses), "Number of client addresses not as expected")
    162. 

  162. 	for i, addr := range a.ReqBody.Addresses {
    163. 

  163. 		assert.Equal(t, addrtype.IPv4, addr.AddrType, fmt.Sprintf("Host address type not as expected for address item %d", i+1))
    164. 

  164. 		assert.Equal(t, "12d00023", hex.EncodeToString(addr.Address), fmt.Sprintf("Host address not as expected for address item %d", i+1))
    165. 

  165. 	}
    166. 

  166. 	assert.Equal(t, testdata.TEST_ETYPE, a.ReqBody.EncAuthData.EType, "Etype of request body encrypted authorization data not as expected")
    167. 

  167. 	assert.Equal(t, iana.PVNO, a.ReqBody.EncAuthData.KVNO, "KVNO of request body encrypted authorization data not as expected")
    168. 

  168. 	assert.Equal(t, []byte(testdata.TEST_CIPHERTEXT), a.ReqBody.EncAuthData.Cipher, "Ciphertext of request body encrypted authorization data not as expected")
    169. 

  169. 	assert.Equal(t, 2, len(a.ReqBody.AdditionalTickets), "Number of additional tickets not as expected")
    170. 

  170. 	for i, tkt := range a.ReqBody.AdditionalTickets {
    171. 

  171. 		assert.Equal(t, iana.PVNO, tkt.TktVNO, fmt.Sprintf("Additional ticket (%v) ticket-vno not as expected", i+1))
    172. 

  172. 		assert.Equal(t, testdata.TEST_REALM, tkt.Realm, fmt.Sprintf("Additional ticket (%v) realm not as expected", i+1))
    173. 

  173. 		assert.Equal(t, nametype.KRB_NT_PRINCIPAL, tkt.SName.NameType, fmt.Sprintf("Additional ticket (%v) SName NameType not as expected", i+1))
    174. 

  174. 		assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(tkt.SName.NameString), fmt.Sprintf("Additional ticket (%v) SName does not have the expected number of NameStrings", i+1))
    175. 

  175. 		assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, tkt.SName.NameString, fmt.Sprintf("Additional ticket (%v) SName name string entries not as expected", i+1))
    176. 

  176. 		assert.Equal(t, testdata.TEST_ETYPE, tkt.EncPart.EType, fmt.Sprintf("Additional ticket (%v) encPart etype not as expected", i+1))
    177. 

  177. 		assert.Equal(t, iana.PVNO, tkt.EncPart.KVNO, fmt.Sprintf("Additional ticket (%v) encPart KVNO not as expected", i+1))
    178. 

  178. 		assert.Equal(t, []byte(testdata.TEST_CIPHERTEXT), tkt.EncPart.Cipher, fmt.Sprintf("Additional ticket (%v) encPart cipher not as expected", i+1))
    179. 

  179. 	}
    180. 

  180. }
    181. 

  181. 

  182. func TestUnmarshalASReq_optionalsNULLexceptsecond_ticket(t *testing.T) {
    183. 

  183. 	t.Parallel()
    184. 

  184. 	var a ASReq
    185. 

  185. 	b, err := hex.DecodeString(testdata.MarshaledKRB5as_reqOptionalsNULLexceptsecond_ticket)
    186. 

  186. 	if err != nil {
    187. 

  187. 		t.Fatalf("Test vector read error: %v", err)
    188. 

  188. 	}
    189. 

  189. 	err = a.Unmarshal(b)
    190. 

  190. 	if err != nil {
    191. 

  191. 		t.Fatalf("Unmarshal error: %v", err)
    192. 

  192. 	}
    193. 

  193. 	//Parse the test time value into a time.Time type
    194. 

  194. 	tt, _ := time.Parse(testdata.TEST_TIME_FORMAT, testdata.TEST_TIME)
    195. 

  195. 

  196. 	assert.Equal(t, iana.PVNO, a.PVNO, "PVNO not as expected")
    197. 

  197. 	assert.Equal(t, msgtype.KRB_AS_REQ, a.MsgType, "Message ID not as expected")
    198. 

  198. 	assert.Equal(t, 0, len(a.PAData), "Number of PAData items in the sequence not as expected")
    199. 

  199. 	assert.Equal(t, "fedcba98", hex.EncodeToString(a.ReqBody.KDCOptions.Bytes), "Request body flags not as expected")
    200. 

  200. 	assert.Equal(t, testdata.TEST_REALM, a.ReqBody.Realm, "Request body Realm not as expected")
    201. 

  201. 	assert.Equal(t, tt, a.ReqBody.Till, "Request body Till time not as expected")
    202. 

  202. 	assert.Equal(t, testdata.TEST_NONCE, a.ReqBody.Nonce, "Request body nounce not as expected")
    203. 

  203. 	assert.Equal(t, []int32{0, 1}, a.ReqBody.EType, "Etype list not as expected")
    204. 

  204. 	assert.Equal(t, 0, len(a.ReqBody.Addresses), "Number of client addresses not empty")
    205. 

  205. 	assert.Equal(t, 0, len(a.ReqBody.EncAuthData.Cipher), "Ciphertext of request body encrypted authorization data not empty")
    206. 

  206. 	assert.Equal(t, 2, len(a.ReqBody.AdditionalTickets), "Number of additional tickets not as expected")
    207. 

  207. 	for i, tkt := range a.ReqBody.AdditionalTickets {
    208. 

  208. 		assert.Equal(t, iana.PVNO, tkt.TktVNO, fmt.Sprintf("Additional ticket (%v) ticket-vno not as expected", i+1))
    209. 

  209. 		assert.Equal(t, testdata.TEST_REALM, tkt.Realm, fmt.Sprintf("Additional ticket (%v) realm not as expected", i+1))
    210. 

  210. 		assert.Equal(t, nametype.KRB_NT_PRINCIPAL, tkt.SName.NameType, fmt.Sprintf("Additional ticket (%v) SName NameType not as expected", i+1))
    211. 

  211. 		assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(tkt.SName.NameString), fmt.Sprintf("Additional ticket (%v) SName does not have the expected number of NameStrings", i+1))
    212. 

  212. 		assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, tkt.SName.NameString, fmt.Sprintf("Additional ticket (%v) SName name string entries not as expected", i+1))
    213. 

  213. 		assert.Equal(t, testdata.TEST_ETYPE, tkt.EncPart.EType, fmt.Sprintf("Additional ticket (%v) encPart etype not as expected", i+1))
    214. 

  214. 		assert.Equal(t, iana.PVNO, tkt.EncPart.KVNO, fmt.Sprintf("Additional ticket (%v) encPart KVNO not as expected", i+1))
    215. 

  215. 		assert.Equal(t, []byte(testdata.TEST_CIPHERTEXT), tkt.EncPart.Cipher, fmt.Sprintf("Additional ticket (%v) encPart cipher not as expected", i+1))
    216. 

  216. 	}
    217. 

  217. }
    218. 

  218. 

  219. func TestUnmarshalASReq_optionalsNULLexceptserver(t *testing.T) {
    220. 

  220. 	t.Parallel()
    221. 

  221. 	var a ASReq
    222. 

  222. 	b, err := hex.DecodeString(testdata.MarshaledKRB5as_reqOptionalsNULLexceptserver)
    223. 

  223. 	if err != nil {
    224. 

  224. 		t.Fatalf("Test vector read error: %v", err)
    225. 

  225. 	}
    226. 

  226. 	err = a.Unmarshal(b)
    227. 

  227. 	if err != nil {
    228. 

  228. 		t.Fatalf("Unmarshal error: %v", err)
    229. 

  229. 	}
    230. 

  230. 	//Parse the test time value into a time.Time type
    231. 

  231. 	tt, _ := time.Parse(testdata.TEST_TIME_FORMAT, testdata.TEST_TIME)
    232. 

  232. 

  233. 	assert.Equal(t, iana.PVNO, a.PVNO, "PVNO not as expected")
    234. 

  234. 	assert.Equal(t, msgtype.KRB_AS_REQ, a.MsgType, "Message ID not as expected")
    235. 

  235. 	assert.Equal(t, 0, len(a.PAData), "Number of PAData items in the sequence not as expected")
    236. 

  236. 	assert.Equal(t, "fedcba90", hex.EncodeToString(a.ReqBody.KDCOptions.Bytes), "Request body flags not as expected")
    237. 

  237. 	assert.Equal(t, testdata.TEST_REALM, a.ReqBody.Realm, "Request body Realm not as expected")
    238. 

  238. 	assert.Equal(t, nametype.KRB_NT_PRINCIPAL, a.ReqBody.SName.NameType, "Request body SName nametype not as expected")
    239. 

  239. 	assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(a.ReqBody.SName.NameString), "Request body SName does not have the expected number of NameStrings")
    240. 

  240. 	assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, a.ReqBody.SName.NameString, "Request body SName entries not as expected")
    241. 

  241. 	assert.Equal(t, tt, a.ReqBody.Till, "Request body Till time not as expected")
    242. 

  242. 	assert.Equal(t, testdata.TEST_NONCE, a.ReqBody.Nonce, "Request body nounce not as expected")
    243. 

  243. 	assert.Equal(t, []int32{0, 1}, a.ReqBody.EType, "Etype list not as expected")
    244. 

  244. 	assert.Equal(t, 0, len(a.ReqBody.Addresses), "Number of client addresses not empty")
    245. 

  245. 	assert.Equal(t, 0, len(a.ReqBody.EncAuthData.Cipher), "Ciphertext of request body encrypted authorization data not empty")
    246. 

  246. 	assert.Equal(t, 0, len(a.ReqBody.AdditionalTickets), "Number of additional tickets not empty")
    247. 

  247. }
    248. 

  248. 

  249. func TestUnmarshalTGSReq(t *testing.T) {
    250. 

  250. 	t.Parallel()
    251. 

  251. 	var a TGSReq
    252. 

  252. 	b, err := hex.DecodeString(testdata.MarshaledKRB5tgs_req)
    253. 

  253. 	if err != nil {
    254. 

  254. 		t.Fatalf("Test vector read error: %v", err)
    255. 

  255. 	}
    256. 

  256. 	err = a.Unmarshal(b)
    257. 

  257. 	if err != nil {
    258. 

  258. 		t.Fatalf("Unmarshal error: %v", err)
    259. 

  259. 	}
    260. 

  260. 	//Parse the test time value into a time.Time type
    261. 

  261. 	tt, _ := time.Parse(testdata.TEST_TIME_FORMAT, testdata.TEST_TIME)
    262. 

  262. 

  263. 	assert.Equal(t, iana.PVNO, a.PVNO, "PVNO not as expected")
    264. 

  264. 	assert.Equal(t, msgtype.KRB_TGS_REQ, a.MsgType, "Message ID not as expected")
    265. 

  265. 	assert.Equal(t, 2, len(a.PAData), "Number of PAData items in the sequence not as expected")
    266. 

  266. 	for i, pa := range a.PAData {
    267. 

  267. 		assert.Equal(t, patype.PA_SAM_RESPONSE, pa.PADataType, fmt.Sprintf("PAData type for entry %d not as expected", i+1))
    268. 

  268. 		assert.Equal(t, []byte(testdata.TEST_PADATA_VALUE), pa.PADataValue, fmt.Sprintf("PAData valye for entry %d not as expected", i+1))
    269. 

  269. 	}
    270. 

  270. 	assert.Equal(t, "fedcba90", hex.EncodeToString(a.ReqBody.KDCOptions.Bytes), "Request body flags not as expected")
    271. 

  271. 	assert.Equal(t, nametype.KRB_NT_PRINCIPAL, a.ReqBody.CName.NameType, "Request body CName NameType not as expected")
    272. 

  272. 	assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(a.ReqBody.CName.NameString), "Request body CName does not have the expected number of NameStrings")
    273. 

  273. 	assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, a.ReqBody.CName.NameString, "Request body CName entries not as expected")
    274. 

  274. 	assert.Equal(t, testdata.TEST_REALM, a.ReqBody.Realm, "Request body Realm not as expected")
    275. 

  275. 	assert.Equal(t, nametype.KRB_NT_PRINCIPAL, a.ReqBody.SName.NameType, "Request body SName nametype not as expected")
    276. 

  276. 	assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(a.ReqBody.SName.NameString), "Request body SName does not have the expected number of NameStrings")
    277. 

  277. 	assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, a.ReqBody.SName.NameString, "Request body SName entries not as expected")
    278. 

  278. 	assert.Equal(t, tt, a.ReqBody.From, "Request body From time not as expected")
    279. 

  279. 	assert.Equal(t, tt, a.ReqBody.Till, "Request body Till time not as expected")
    280. 

  280. 	assert.Equal(t, tt, a.ReqBody.RTime, "Request body RTime time not as expected")
    281. 

  281. 	assert.Equal(t, testdata.TEST_NONCE, a.ReqBody.Nonce, "Request body nounce not as expected")
    282. 

  282. 	assert.Equal(t, []int32{0, 1}, a.ReqBody.EType, "Etype list not as expected")
    283. 

  283. 	assert.Equal(t, 2, len(a.ReqBody.Addresses), "Number of client addresses not as expected")
    284. 

  284. 	for i, addr := range a.ReqBody.Addresses {
    285. 

  285. 		assert.Equal(t, addrtype.IPv4, addr.AddrType, fmt.Sprintf("Host address type not as expected for address item %d", i+1))
    286. 

  286. 		assert.Equal(t, "12d00023", hex.EncodeToString(addr.Address), fmt.Sprintf("Host address not as expected for address item %d", i+1))
    287. 

  287. 	}
    288. 

  288. 	assert.Equal(t, testdata.TEST_ETYPE, a.ReqBody.EncAuthData.EType, "Etype of request body encrypted authorization data not as expected")
    289. 

  289. 	assert.Equal(t, iana.PVNO, a.ReqBody.EncAuthData.KVNO, "KVNO of request body encrypted authorization data not as expected")
    290. 

  290. 	assert.Equal(t, []byte(testdata.TEST_CIPHERTEXT), a.ReqBody.EncAuthData.Cipher, "Ciphertext of request body encrypted authorization data not as expected")
    291. 

  291. 	assert.Equal(t, 2, len(a.ReqBody.AdditionalTickets), "Number of additional tickets not as expected")
    292. 

  292. 	for i, tkt := range a.ReqBody.AdditionalTickets {
    293. 

  293. 		assert.Equal(t, iana.PVNO, tkt.TktVNO, fmt.Sprintf("Additional ticket (%v) ticket-vno not as expected", i+1))
    294. 

  294. 		assert.Equal(t, testdata.TEST_REALM, tkt.Realm, fmt.Sprintf("Additional ticket (%v) realm not as expected", i+1))
    295. 

  295. 		assert.Equal(t, nametype.KRB_NT_PRINCIPAL, tkt.SName.NameType, fmt.Sprintf("Additional ticket (%v) SName NameType not as expected", i+1))
    296. 

  296. 		assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(tkt.SName.NameString), fmt.Sprintf("Additional ticket (%v) SName does not have the expected number of NameStrings", i+1))
    297. 

  297. 		assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, tkt.SName.NameString, fmt.Sprintf("Additional ticket (%v) SName name string entries not as expected", i+1))
    298. 

  298. 		assert.Equal(t, testdata.TEST_ETYPE, tkt.EncPart.EType, fmt.Sprintf("Additional ticket (%v) encPart etype not as expected", i+1))
    299. 

  299. 		assert.Equal(t, iana.PVNO, tkt.EncPart.KVNO, fmt.Sprintf("Additional ticket (%v) encPart KVNO not as expected", i+1))
    300. 

  300. 		assert.Equal(t, []byte(testdata.TEST_CIPHERTEXT), tkt.EncPart.Cipher, fmt.Sprintf("Additional ticket (%v) encPart cipher not as expected", i+1))
    301. 

  301. 	}
    302. 

  302. }
    303. 

  303. 

  304. func TestUnmarshalTGSReq_optionalsNULLexceptsecond_ticket(t *testing.T) {
    305. 

  305. 	t.Parallel()
    306. 

  306. 	var a TGSReq
    307. 

  307. 	b, err := hex.DecodeString(testdata.MarshaledKRB5tgs_reqOptionalsNULLexceptsecond_ticket)
    308. 

  308. 	if err != nil {
    309. 

  309. 		t.Fatalf("Test vector read error: %v", err)
    310. 

  310. 	}
    311. 

  311. 	err = a.Unmarshal(b)
    312. 

  312. 	if err != nil {
    313. 

  313. 		t.Fatalf("Unmarshal error: %v", err)
    314. 

  314. 	}
    315. 

  315. 	//Parse the test time value into a time.Time type
    316. 

  316. 	tt, _ := time.Parse(testdata.TEST_TIME_FORMAT, testdata.TEST_TIME)
    317. 

  317. 

  318. 	assert.Equal(t, iana.PVNO, a.PVNO, "PVNO not as expected")
    319. 

  319. 	assert.Equal(t, msgtype.KRB_TGS_REQ, a.MsgType, "Message ID not as expected")
    320. 

  320. 	assert.Equal(t, 0, len(a.PAData), "Number of PAData items in the sequence not as expected")
    321. 

  321. 	assert.Equal(t, "fedcba98", hex.EncodeToString(a.ReqBody.KDCOptions.Bytes), "Request body flags not as expected")
    322. 

  322. 	assert.Equal(t, testdata.TEST_REALM, a.ReqBody.Realm, "Request body Realm not as expected")
    323. 

  323. 	assert.Equal(t, tt, a.ReqBody.Till, "Request body Till time not as expected")
    324. 

  324. 	assert.Equal(t, testdata.TEST_NONCE, a.ReqBody.Nonce, "Request body nounce not as expected")
    325. 

  325. 	assert.Equal(t, []int32{0, 1}, a.ReqBody.EType, "Etype list not as expected")
    326. 

  326. 	assert.Equal(t, 0, len(a.ReqBody.Addresses), "Number of client addresses not empty")
    327. 

  327. 	assert.Equal(t, 0, len(a.ReqBody.EncAuthData.Cipher), "Ciphertext of request body encrypted authorization data not empty")
    328. 

  328. 	assert.Equal(t, 2, len(a.ReqBody.AdditionalTickets), "Number of additional tickets not as expected")
    329. 

  329. 	for i, tkt := range a.ReqBody.AdditionalTickets {
    330. 

  330. 		assert.Equal(t, iana.PVNO, tkt.TktVNO, fmt.Sprintf("Additional ticket (%v) ticket-vno not as expected", i+1))
    331. 

  331. 		assert.Equal(t, testdata.TEST_REALM, tkt.Realm, fmt.Sprintf("Additional ticket (%v) realm not as expected", i+1))
    332. 

  332. 		assert.Equal(t, nametype.KRB_NT_PRINCIPAL, tkt.SName.NameType, fmt.Sprintf("Additional ticket (%v) SName NameType not as expected", i+1))
    333. 

  333. 		assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(tkt.SName.NameString), fmt.Sprintf("Additional ticket (%v) SName does not have the expected number of NameStrings", i+1))
    334. 

  334. 		assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, tkt.SName.NameString, fmt.Sprintf("Additional ticket (%v) SName name string entries not as expected", i+1))
    335. 

  335. 		assert.Equal(t, testdata.TEST_ETYPE, tkt.EncPart.EType, fmt.Sprintf("Additional ticket (%v) encPart etype not as expected", i+1))
    336. 

  336. 		assert.Equal(t, iana.PVNO, tkt.EncPart.KVNO, fmt.Sprintf("Additional ticket (%v) encPart KVNO not as expected", i+1))
    337. 

  337. 		assert.Equal(t, []byte(testdata.TEST_CIPHERTEXT), tkt.EncPart.Cipher, fmt.Sprintf("Additional ticket (%v) encPart cipher not as expected", i+1))
    338. 

  338. 	}
    339. 

  339. }
    340. 

  340. 

  341. func TestUnmarshalTGSReq_optionalsNULLexceptserver(t *testing.T) {
    342. 

  342. 	t.Parallel()
    343. 

  343. 	var a TGSReq
    344. 

  344. 	b, err := hex.DecodeString(testdata.MarshaledKRB5tgs_reqOptionalsNULLexceptserver)
    345. 

  345. 	if err != nil {
    346. 

  346. 		t.Fatalf("Test vector read error: %v", err)
    347. 

  347. 	}
    348. 

  348. 	err = a.Unmarshal(b)
    349. 

  349. 	if err != nil {
    350. 

  350. 		t.Fatalf("Unmarshal error: %v", err)
    351. 

  351. 	}
    352. 

  352. 	//Parse the test time value into a time.Time type
    353. 

  353. 	tt, _ := time.Parse(testdata.TEST_TIME_FORMAT, testdata.TEST_TIME)
    354. 

  354. 

  355. 	assert.Equal(t, iana.PVNO, a.PVNO, "PVNO not as expected")
    356. 

  356. 	assert.Equal(t, msgtype.KRB_TGS_REQ, a.MsgType, "Message ID not as expected")
    357. 

  357. 	assert.Equal(t, 0, len(a.PAData), "Number of PAData items in the sequence not as expected")
    358. 

  358. 	assert.Equal(t, "fedcba90", hex.EncodeToString(a.ReqBody.KDCOptions.Bytes), "Request body flags not as expected")
    359. 

  359. 	assert.Equal(t, testdata.TEST_REALM, a.ReqBody.Realm, "Request body Realm not as expected")
    360. 

  360. 	assert.Equal(t, nametype.KRB_NT_PRINCIPAL, a.ReqBody.SName.NameType, "Request body SName nametype not as expected")
    361. 

  361. 	assert.Equal(t, len(testdata.TEST_PRINCIPALNAME_NAMESTRING), len(a.ReqBody.SName.NameString), "Request body SName does not have the expected number of NameStrings")
    362. 

  362. 	assert.Equal(t, testdata.TEST_PRINCIPALNAME_NAMESTRING, a.ReqBody.SName.NameString, "Request body SName entries not as expected")
    363. 

  363. 	assert.Equal(t, tt, a.ReqBody.Till, "Request body Till time not as expected")
    364. 

  364. 	assert.Equal(t, testdata.TEST_NONCE, a.ReqBody.Nonce, "Request body nounce not as expected")
    365. 

  365. 	assert.Equal(t, []int32{0, 1}, a.ReqBody.EType, "Etype list not as expected")
    366. 

  366. 	assert.Equal(t, 0, len(a.ReqBody.Addresses), "Number of client addresses not empty")
    367. 

  367. 	assert.Equal(t, 0, len(a.ReqBody.EncAuthData.Cipher), "Ciphertext of request body encrypted authorization data not empty")
    368. 

  368. 	assert.Equal(t, 0, len(a.ReqBody.AdditionalTickets), "Number of additional tickets not empty")
    369. 

  369. }
    370. 

  370. 

  371. //// Marshal Tests ////
    372. 

  372. 

  373. func TestMarshalKDCReqBody(t *testing.T) {
    374. 

  374. 	t.Parallel()
    375. 

  375. 	var a KDCReqBody
    376. 

  376. 	b, err := hex.DecodeString(testdata.MarshaledKRB5kdc_req_body)
    377. 

  377. 	if err != nil {
    378. 

  378. 		t.Fatalf("Test vector read error: %v", err)
    379. 

  379. 	}
    380. 

  380. 	err = a.Unmarshal(b)
    381. 

  381. 	if err != nil {
    382. 

  382. 		t.Fatalf("Unmarshal error: %v", err)
    383. 

  383. 	}
    384. 

  384. 	// Marshal and re-unmarshal the result nd then compare
    385. 

  385. 	mb, err := a.Marshal()
    386. 

  386. 	if err != nil {
    387. 

  387. 		t.Fatalf("Unmarshal error: %v", err)
    388. 

  388. 	}
    389. 

  389. 	assert.Equal(t, b, mb, "Marshal bytes of KDCReqBody not as expected")
    390. 

  390. }
    391. 

  391. 

  392. func TestMarshalASReq(t *testing.T) {
    393. 

  393. 	t.Parallel()
    394. 

  394. 	var a ASReq
    395. 

  395. 	b, err := hex.DecodeString(testdata.MarshaledKRB5as_req)
    396. 

  396. 	if err != nil {
    397. 

  397. 		t.Fatalf("Test vector read error: %v", err)
    398. 

  398. 	}
    399. 

  399. 	err = a.Unmarshal(b)
    400. 

  400. 	if err != nil {
    401. 

  401. 		t.Fatalf("Unmarshal error: %v", err)
    402. 

  402. 	}
    403. 

  403. 	mb, err := a.Marshal()
    404. 

  404. 	if err != nil {
    405. 

  405. 		t.Fatalf("Marshal of ticket errored: %v", err)
    406. 

  406. 	}
    407. 

  407. 	assert.Equal(t, b, mb, "Marshal bytes of ASReq not as expected")
    408. 

  408. }
    409. 

  409. 

  410. func TestMarshalTGSReq(t *testing.T) {
    411. 

  411. 	t.Parallel()
    412. 

  412. 	var a TGSReq
    413. 

  413. 	b, err := hex.DecodeString(testdata.MarshaledKRB5tgs_req)
    414. 

  414. 	if err != nil {
    415. 

  415. 		t.Fatalf("Test vector read error: %v", err)
    416. 

  416. 	}
    417. 

  417. 	err = a.Unmarshal(b)
    418. 

  418. 	if err != nil {
    419. 

  419. 		t.Fatalf("Unmarshal error: %v", err)
    420. 

  420. 	}
    421. 

  421. 	mb, err := a.Marshal()
    422. 

  422. 	if err != nil {
    423. 

  423. 		t.Fatalf("Marshal of ticket errored: %v", err)
    424. 

  424. 	}
    425. 

  425. 	assert.Equal(t, b, mb, "Marshal bytes of TGSReq not as expected")
    426. 

  426. }
    427.