/ - Diff - snf-ganeti - Greek Research and Technology Network's projects

         request[KEY_VERSION] = version
       # Serialize the request
       return serializer.DumpJson(request)
       return serializer.DumpJson(request,
                                  private_encoder=serializer.EncodeWithPrivateFields)
     def CallRPCMethod(transport_cb, method, args, version=None):

     from ganeti import errors
     from ganeti import utils
     from ganeti import constants
     _RE_EOLSP = re.compile("[ \t]+$", re.MULTILINE)
     def DumpJson(data):
     def DumpJson(data, private_encoder=None):
       """Serialize a given object.
       @param data: the data to serialize
       @return: the string representation of data
       @param private_encoder: specify L{serializer.EncodeWithPrivateFields} if you
                               require the produced JSON to also contain private
                               parameters. Otherwise, they will encode to null.
       """
       encoded = simplejson.dumps(data)
       if private_encoder is None:
         # Do not leak private fields by default.
         private_encoder = EncodeWithoutPrivateFields
       encoded = simplejson.dumps(data, default=private_encoder)
       txt = _RE_EOLSP.sub("", encoded)
       if not txt.endswith("\n"):
-...
       @raise JSONDecodeError: if L{txt} is not a valid JSON document
       """
       return simplejson.loads(txt)
       values = simplejson.loads(txt)
       # Hunt and seek for Private fields and wrap them.
       WrapPrivateValues(values)
       return values
     def WrapPrivateValues(json):
       """Crawl a JSON decoded structure for private values and wrap them.
       @param json: the json-decoded value to protect.
       """
       # This function used to be recursive. I use this list to avoid actual
       # recursion, however, since this is a very high-traffic area.
       todo = [json]
       while todo:
         data = todo.pop()
         if isinstance(data, list): # Array
           for item in data:
             todo.append(item)
         elif isinstance(data, dict): # Object
           # This is kind of a kludge, but the only place where we know what should
           # be protected is in ganeti.opcodes, and not in a way that is helpful to
           # us, especially in such a high traffic method; on the other hand, the
           # Haskell `py_compat_fields` test should complain whenever this check
           # does not protect fields properly.
           for field in data:
             value = data[field]
             if field in constants.PRIVATE_PARAMETERS_BLACKLIST:
               if not field.endswith("_cluster"):
                 data[field] = PrivateDict(value)
               else:
                 for os in data[field]:
                   value[os] = PrivateDict(value[os])
             else:
               todo.append(value)
         else: # Values
           pass
     def DumpSignedJson(data, key, salt=None, key_selector=None):
     def DumpSignedJson(data, key, salt=None, key_selector=None,
                        private_encoder=None):
       """Serialize a given object and authenticate it.
       @param data: the data to serialize
       @param key: shared hmac key
       @param key_selector: name/id that identifies the key (in case there are
         multiple keys in use, e.g. in a multi-cluster environment)
       @param private_encoder: see L{DumpJson}
       @return: the string representation of data signed by the hmac key
       """
       txt = DumpJson(data)
       txt = DumpJson(data, private_encoder=private_encoder)
       if salt is None:
         salt = ""
       signed_dict = {
-...
       """
       signed_dict = LoadJson(txt)
       WrapPrivateValues(signed_dict)
       if not isinstance(signed_dict, dict):
         raise errors.SignatureError("Invalid external message")
       try:
-...
         for key in self:
           returndict[key] = self[key].Get()
         return returndict
     def EncodeWithoutPrivateFields(obj):
       if isinstance(obj, Private):
         return None
       raise TypeError(repr(obj) + " is not JSON serializable")
     def EncodeWithPrivateFields(obj):
       if isinstance(obj, Private):
         return obj.Get()
       raise TypeError(repr(obj) + " is not JSON serializable")

     instanceCommunicationNicPrefix :: String
     instanceCommunicationNicPrefix = "ganeti:communication:"
     -- | Parameters that should be protected
     --
     -- Python does not have a type system and can't automatically infer what should
     -- be the resulting type of a JSON request. As a result, it must rely on this
     -- list of parameter names to protect values correctly.
     --
     -- Names ending in _cluster will be treated as dicts of dicts of private values.
     -- Otherwise they are considered dicts of private values.
     privateParametersBlacklist :: [String]
     privateParametersBlacklist = [ "osparams_private"
                                  , "osparams_secret"
                                  , "osparams_private_cluster"
+                                 ]
     -- | Warn the user that the logging level is too low for production use.
     debugModeConfidentialityWarning :: String
     debugModeConfidentialityWarning =
       "ALERT: %s started in debug mode.\n\
       \ Private and secret parameters WILL be logged!\n"

                    \  op.Validate(True)\n\
                    \encoded = [(op.Summary(), op.__getstate__())\n\
                    \           for op in decoded]\n\
                    \print serializer.Dump(encoded)" serialized
                    \print serializer.Dump(\
                    \  encoded,\
                    \  private_encoder=serializer.EncodeWithPrivateFields)"
                    serialized
          >>= checkPythonResult
       let deserialised =
             J.decode py_stdout::J.Result [(String, OpCodes.MetaOpCode)]

b/test/py/cmdlib/node_unittest.py
229	229	self.ExecOpCodeExpectOpPrereqError(op, "Readded node doesn't have the same"
230	230	" IP address configuration as before")
231	231
232
233	232	def testNodeHasSecondaryIpButNotMaster(self):
234	233	self.master.secondary_ip = self.master.primary_ip
235	234

     """Script for unittesting the serializer module"""
     import doctest
     import unittest
     from ganeti import serializer
     from ganeti import errors
     from ganeti import ht
     from ganeti import objects
     from ganeti import serializer
     import testutils
-...
 ,
         [1, 2, 3],
         (1, 2, 3),
         { "1": 2, "foo": "bar", },
         {"1": 2,
          "foo": "bar"},
         ["abc", 1, 2, 3, 999,
+          {
             "a1": ("Hello", "World"),
             "a2": "This is only a test",
             "a3": None,
             },
+          {
             "foo": "bar",
             },
+          ]
             "osparams:": serializer.PrivateDict({
                           "foo": 5,
                          })
+          }
+        ]
+      ]
       def _TestSerializer(self, dump_fn, load_fn):
         _dump_fn = lambda data: dump_fn(
           data,
           private_encoder=serializer.EncodeWithPrivateFields
+        )
         for data in self._TESTDATA:
           self.failUnless(dump_fn(data).endswith("\n"))
           self.assertEqualValues(load_fn(dump_fn(data)), data)
           self.failUnless(_dump_fn(data).endswith("\n"))
           self.assertEqualValues(load_fn(_dump_fn(data)), data)
       def testGeneric(self):
         self._TestSerializer(serializer.Dump, serializer.Load)
-...
         self._TestSigned(serializer.DumpSignedJson, serializer.LoadSignedJson)
       def _TestSigned(self, dump_fn, load_fn):
         _dump_fn = lambda *args, **kwargs: dump_fn(
           *args,
           private_encoder=serializer.EncodeWithPrivateFields,
           **kwargs
+        )
         for data in self._TESTDATA:
           self.assertEqualValues(load_fn(dump_fn(data, "mykey"), "mykey"),
           self.assertEqualValues(load_fn(_dump_fn(data, "mykey"), "mykey"),
                                  (data, ""))
           self.assertEqualValues(load_fn(dump_fn(data, "myprivatekey",
                                                  salt="mysalt"),
           self.assertEqualValues(load_fn(_dump_fn(data, "myprivatekey",
                                                   salt="mysalt"),
                                          "myprivatekey"),
                                  (data, "mysalt"))
           keydict = {
             "mykey_id": "myprivatekey",
+            }
           self.assertEqualValues(load_fn(dump_fn(data, "myprivatekey",
                                                  salt="mysalt",
                                                  key_selector="mykey_id"),
           self.assertEqualValues(load_fn(_dump_fn(data, "myprivatekey",
                                                   salt="mysalt",
                                                   key_selector="mykey_id"),
                                          keydict.get),
                                  (data, "mysalt"))
           self.assertRaises(errors.SignatureError, load_fn,
                             dump_fn(data, "myprivatekey",
                                     salt="mysalt",
                                     key_selector="mykey_id"),
                             _dump_fn(data, "myprivatekey",
                                      salt="mysalt",
                                      key_selector="mykey_id"),
                             {}.get)
         self.assertRaises(errors.SignatureError, load_fn,
                           dump_fn("test", "myprivatekey"),
                           _dump_fn("test", "myprivatekey"),
                           "myotherkey")
         self.assertRaises(errors.SignatureError, load_fn,
-...
         self.assertEqual(serializer.LoadAndVerifyJson("\"Foo\"", ht.TAny), "Foo")
     class TestPrivate(unittest.TestCase):
       def testEquality(self):
         pDict = serializer.PrivateDict()
         pDict["bar"] = "egg"
         nDict = {"bar": "egg"}
         self.assertEqual(pDict, nDict, "PrivateDict-dict equality failure")
       def testPrivateDictUnprivate(self):
         pDict = serializer.PrivateDict()
         pDict["bar"] = "egg"
         uDict = pDict.Unprivate()
         nDict = {"bar": "egg"}
         self.assertEquals(type(uDict), dict,
                           "PrivateDict.Unprivate() did not return a dict")
         self.assertEqual(pDict, uDict, "PrivateDict.Unprivate() equality failure")
         self.assertEqual(nDict, uDict, "PrivateDict.Unprivate() failed to return")
       def testAttributeTransparency(self):
         class Dummy(object):
           pass
         dummy = Dummy()
         dummy.bar = "egg"
         pDummy = serializer.Private(dummy)
         self.assertEqual(pDummy.bar, "egg", "Failed to access attribute of Private")
       def testCallTransparency(self):
         foo = serializer.Private("egg")
         self.assertEqual(foo.upper(), "EGG", "Failed to call Private instance")
       def testFillDict(self):
         pDict = serializer.PrivateDict()
         pDict["bar"] = "egg"
         self.assertEqual(pDict, objects.FillDict({}, pDict))
       def testLeak(self):
         pDict = serializer.PrivateDict()
         pDict["bar"] = "egg"
         self.assertNotIn("egg", str(pDict), "Value leaked in str(PrivateDict)")
         self.assertNotIn("egg", repr(pDict), "Value leaked in repr(PrivateDict)")
         self.assertNotIn("egg", "{0}".format(pDict),
                          "Value leaked in PrivateDict.__format__")
         self.assertNotIn("egg", serializer.Dump(pDict),
                          "Value leaked in serializer.Dump(PrivateDict)")
       def testProperAccess(self):
         pDict = serializer.PrivateDict()
         pDict["bar"] = "egg"
         self.assertIs("egg", pDict["bar"].Get(),
                       "Value not returned by Private.Get()")
         self.assertIs("egg", pDict.GetPrivate("bar"),
                       "Value not returned by Private.GetPrivate()")
         self.assertIs("egg", pDict.Unprivate()["bar"],
                       "Value not returned by PrivateDict.Unprivate()")
         self.assertIn(
           "egg",
           serializer.Dump(pDict,
                           private_encoder=serializer.EncodeWithPrivateFields)
+        )
       def testDictGet(self):
         self.assertIs("tar", serializer.PrivateDict().GetPrivate("bar", "tar"),
                       "Private.GetPrivate() did not handle the default case")
       def testZeronessPrivate(self):
         self.assertTrue(serializer.Private("foo"),
                         "Private of non-empty string is false")
         self.assertFalse(serializer.Private(""), "Private empty string is true")
     class TestCheckDoctests(unittest.TestCase):
       def testCheckSerializer(self):
         results = doctest.testmod(serializer)
         self.assertEquals(results.failed, 0, "Doctest failures detected")
     if __name__ == "__main__":
       testutils.GanetiTestProgram()

Synnefo » snf-ganeti

Revision 560ef132