metasploit-credential 0.14.7 → 0.14.8
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CONTRIBUTING.md +41 -9
- data/lib/metasploit/credential/exporter/core.rb +2 -2
- data/lib/metasploit/credential/exporter/pwdump.rb +2 -2
- data/lib/metasploit/credential/migrator.rb +1 -1
- data/lib/metasploit/credential/version.rb +12 -21
- data/spec/dummy/db/structure.sql +0 -1
- data/spec/lib/metasploit/credential/creation_spec.rb +8 -6
- data/spec/lib/metasploit/credential/exporter/core_spec.rb +85 -100
- data/spec/lib/metasploit/credential/exporter/pwdump_spec.rb +16 -14
- data/spec/lib/metasploit/credential/importer/core_spec.rb +12 -10
- data/spec/lib/metasploit/credential/importer/multi_spec.rb +6 -4
- data/spec/lib/metasploit/credential/importer/pwdump_spec.rb +13 -11
- data/spec/lib/metasploit/credential/importer/zip_spec.rb +7 -5
- data/spec/lib/metasploit/credential/migrator_spec.rb +13 -13
- data/spec/lib/metasploit/credential/version_spec.rb +141 -3
- data/spec/lib/metasploit/credential_spec.rb +15 -4
- data/spec/models/mdm/service_spec.rb +5 -3
- data/spec/models/mdm/session_spec.rb +4 -2
- data/spec/models/mdm/task_spec.rb +6 -4
- data/spec/models/mdm/user_spec.rb +4 -2
- data/spec/models/mdm/workspace_spec.rb +4 -2
- data/spec/models/metasploit/credential/blank_username_spec.rb +7 -5
- data/spec/models/metasploit/credential/core_spec.rb +45 -43
- data/spec/models/metasploit/credential/login/status_spec.rb +21 -19
- data/spec/models/metasploit/credential/login_spec.rb +38 -36
- data/spec/models/metasploit/credential/nonreplayable_hash_spec.rb +5 -3
- data/spec/models/metasploit/credential/ntlm_hash_spec.rb +15 -13
- data/spec/models/metasploit/credential/origin/cracked_password_spec.rb +7 -5
- data/spec/models/metasploit/credential/origin/import_spec.rb +10 -8
- data/spec/models/metasploit/credential/origin/manual_spec.rb +9 -7
- data/spec/models/metasploit/credential/origin/service_spec.rb +12 -10
- data/spec/models/metasploit/credential/origin/session_spec.rb +13 -11
- data/spec/models/metasploit/credential/password_hash_spec.rb +6 -4
- data/spec/models/metasploit/credential/password_spec.rb +5 -3
- data/spec/models/metasploit/credential/postgres_md5_spec.rb +6 -4
- data/spec/models/metasploit/credential/private_spec.rb +10 -8
- data/spec/models/metasploit/credential/public_spec.rb +7 -5
- data/spec/models/metasploit/credential/realm_spec.rb +16 -14
- data/spec/models/metasploit/credential/replayable_hash_spec.rb +5 -3
- data/spec/models/metasploit/credential/ssh_key_spec.rb +17 -15
- data/spec/models/metasploit/credential/username_spec.rb +8 -6
- data/spec/models/metasploit_data_models/search/visitor/relation_spec.rb +3 -1
- data/spec/spec_helper.rb +25 -95
- data/spec/support/shared/contexts/mdm/workspace.rb +1 -1
- data/spec/support/shared/examples/core_validations.rb +42 -117
- data/spec/support/shared/examples/single_table_inheritance_database_columns.rb +2 -2
- data/spec/support/shared/examples/timestamp_database_column.rb +2 -2
- metadata +8 -22
|
@@ -1,4 +1,6 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::Origin::Service do
|
|
2
4
|
include_context 'Mdm::Workspace'
|
|
3
5
|
|
|
4
6
|
subject(:service_origin) do
|
|
@@ -8,23 +10,23 @@ RSpec.describe Metasploit::Credential::Origin::Service, type: :model do
|
|
|
8
10
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
9
11
|
|
|
10
12
|
context 'associations' do
|
|
11
|
-
it {
|
|
12
|
-
it {
|
|
13
|
+
it { should have_many(:cores).class_name('Metasploit::Credential::Core').dependent(:destroy) }
|
|
14
|
+
it { should belong_to(:service).class_name('Mdm::Service') }
|
|
13
15
|
end
|
|
14
16
|
|
|
15
17
|
context 'database' do
|
|
16
18
|
context 'columns' do
|
|
17
19
|
it_should_behave_like 'timestamp database columns'
|
|
18
20
|
|
|
19
|
-
it {
|
|
21
|
+
it { should have_db_column(:module_full_name).of_type(:text).with_options(null: false) }
|
|
20
22
|
|
|
21
23
|
context 'foreign keys' do
|
|
22
|
-
it {
|
|
24
|
+
it { should have_db_column(:service_id).of_type(:integer).with_options(null: false) }
|
|
23
25
|
end
|
|
24
26
|
end
|
|
25
27
|
|
|
26
28
|
context 'indices' do
|
|
27
|
-
it {
|
|
29
|
+
it { should have_db_index([:service_id, :module_full_name]).unique(true) }
|
|
28
30
|
end
|
|
29
31
|
end
|
|
30
32
|
|
|
@@ -34,13 +36,13 @@ RSpec.describe Metasploit::Credential::Origin::Service, type: :model do
|
|
|
34
36
|
FactoryGirl.build(:metasploit_credential_origin_service)
|
|
35
37
|
end
|
|
36
38
|
|
|
37
|
-
it {
|
|
39
|
+
it { should be_valid }
|
|
38
40
|
end
|
|
39
41
|
end
|
|
40
42
|
|
|
41
43
|
context 'mass assignment security' do
|
|
42
44
|
it { should_not allow_mass_assignment_of :created_at }
|
|
43
|
-
it {
|
|
45
|
+
it { should allow_mass_assignment_of :module_full_name }
|
|
44
46
|
it { should_not allow_mass_assignment_of :service }
|
|
45
47
|
it { should_not allow_mass_assignment_of :service_id }
|
|
46
48
|
it { should_not allow_mass_assignment_of :updated_at }
|
|
@@ -162,10 +164,10 @@ RSpec.describe Metasploit::Credential::Origin::Service, type: :model do
|
|
|
162
164
|
FactoryGirl.create(:metasploit_credential_origin_service)
|
|
163
165
|
end
|
|
164
166
|
|
|
165
|
-
it {
|
|
167
|
+
it { should validate_uniqueness_of(:module_full_name).scoped_to(:service_id) }
|
|
166
168
|
end
|
|
167
169
|
end
|
|
168
170
|
|
|
169
|
-
it {
|
|
171
|
+
it { should validate_presence_of :service }
|
|
170
172
|
end
|
|
171
173
|
end
|
|
@@ -1,24 +1,26 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::Origin::Session do
|
|
2
4
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
3
5
|
|
|
4
6
|
context 'associations' do
|
|
5
|
-
it {
|
|
6
|
-
it {
|
|
7
|
+
it { should have_many(:cores).class_name('Metasploit::Credential::Core').dependent(:destroy) }
|
|
8
|
+
it { should belong_to(:session).class_name('Mdm::Session') }
|
|
7
9
|
end
|
|
8
10
|
|
|
9
11
|
context 'database' do
|
|
10
12
|
context 'columns' do
|
|
11
|
-
it {
|
|
13
|
+
it { should have_db_column(:post_reference_name).of_type(:text).with_options(null: false) }
|
|
12
14
|
|
|
13
15
|
it_should_behave_like 'timestamp database columns'
|
|
14
16
|
|
|
15
17
|
context 'foreign keys' do
|
|
16
|
-
it {
|
|
18
|
+
it { should have_db_column(:session_id).of_type(:integer).with_options(null: false) }
|
|
17
19
|
end
|
|
18
20
|
end
|
|
19
21
|
|
|
20
22
|
context 'columns' do
|
|
21
|
-
it {
|
|
23
|
+
it { should have_db_index([:session_id, :post_reference_name]).unique(true) }
|
|
22
24
|
end
|
|
23
25
|
end
|
|
24
26
|
|
|
@@ -30,13 +32,13 @@ RSpec.describe Metasploit::Credential::Origin::Session, type: :model do
|
|
|
30
32
|
FactoryGirl.build(:metasploit_credential_origin_session)
|
|
31
33
|
end
|
|
32
34
|
|
|
33
|
-
it {
|
|
35
|
+
it { should be_valid }
|
|
34
36
|
end
|
|
35
37
|
end
|
|
36
38
|
|
|
37
39
|
context 'mass assignment security' do
|
|
38
40
|
it { should_not allow_mass_assignment_of(:created_at) }
|
|
39
|
-
it {
|
|
41
|
+
it { should allow_mass_assignment_of(:post_reference_name) }
|
|
40
42
|
it { should_not allow_mass_assignment_of(:session) }
|
|
41
43
|
it { should_not allow_mass_assignment_of(:session_id) }
|
|
42
44
|
it { should_not allow_mass_assignment_of(:updated_at) }
|
|
@@ -50,10 +52,10 @@ RSpec.describe Metasploit::Credential::Origin::Session, type: :model do
|
|
|
50
52
|
FactoryGirl.create(:metasploit_credential_origin_session)
|
|
51
53
|
end
|
|
52
54
|
|
|
53
|
-
it {
|
|
54
|
-
it {
|
|
55
|
+
it { should validate_presence_of :post_reference_name }
|
|
56
|
+
it { should validate_uniqueness_of(:post_reference_name).scoped_to(:session_id) }
|
|
55
57
|
end
|
|
56
58
|
|
|
57
|
-
it {
|
|
59
|
+
it { should validate_presence_of :session }
|
|
58
60
|
end
|
|
59
61
|
end
|
|
@@ -1,7 +1,9 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::PasswordHash do
|
|
2
4
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
3
5
|
|
|
4
|
-
it {
|
|
6
|
+
it { should be_a Metasploit::Credential::Private }
|
|
5
7
|
|
|
6
8
|
context 'factories' do
|
|
7
9
|
context 'metasploit_credential_password_hash' do
|
|
@@ -9,11 +11,11 @@ RSpec.describe Metasploit::Credential::PasswordHash, type: :model do
|
|
|
9
11
|
FactoryGirl.build(:metasploit_credential_password_hash)
|
|
10
12
|
end
|
|
11
13
|
|
|
12
|
-
it {
|
|
14
|
+
it { should be_valid }
|
|
13
15
|
end
|
|
14
16
|
end
|
|
15
17
|
|
|
16
18
|
context 'validations' do
|
|
17
|
-
it {
|
|
19
|
+
it { should validate_presence_of :data }
|
|
18
20
|
end
|
|
19
21
|
end
|
|
@@ -1,7 +1,9 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::Password do
|
|
2
4
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
3
5
|
|
|
4
|
-
it {
|
|
6
|
+
it { should be_a Metasploit::Credential::Private }
|
|
5
7
|
|
|
6
8
|
context 'factories' do
|
|
7
9
|
context 'metasploit_credential_password' do
|
|
@@ -9,7 +11,7 @@ RSpec.describe Metasploit::Credential::Password, type: :model do
|
|
|
9
11
|
FactoryGirl.build(:metasploit_credential_password)
|
|
10
12
|
end
|
|
11
13
|
|
|
12
|
-
it {
|
|
14
|
+
it { should be_valid }
|
|
13
15
|
end
|
|
14
16
|
end
|
|
15
17
|
end
|
|
@@ -1,7 +1,9 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::PostgresMD5 do
|
|
2
4
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
3
5
|
|
|
4
|
-
it {
|
|
6
|
+
it { should be_a Metasploit::Credential::ReplayableHash }
|
|
5
7
|
|
|
6
8
|
context 'CONSTANTS' do
|
|
7
9
|
context 'DATA_REGEXP' do
|
|
@@ -53,7 +55,7 @@ RSpec.describe Metasploit::Credential::PostgresMD5, type: :model do
|
|
|
53
55
|
nil
|
|
54
56
|
end
|
|
55
57
|
|
|
56
|
-
it {
|
|
58
|
+
it { should be_nil }
|
|
57
59
|
end
|
|
58
60
|
|
|
59
61
|
context 'with upper case characters' do
|
|
@@ -85,7 +87,7 @@ RSpec.describe Metasploit::Credential::PostgresMD5, type: :model do
|
|
|
85
87
|
FactoryGirl.build(:metasploit_credential_postgres_md5)
|
|
86
88
|
end
|
|
87
89
|
|
|
88
|
-
it {
|
|
90
|
+
it { should be_valid }
|
|
89
91
|
end
|
|
90
92
|
end
|
|
91
93
|
|
|
@@ -1,4 +1,6 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::Private do
|
|
2
4
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
3
5
|
|
|
4
6
|
context 'database' do
|
|
@@ -6,11 +8,11 @@ RSpec.describe Metasploit::Credential::Private, type: :model do
|
|
|
6
8
|
it_should_behave_like 'single table inheritance database columns'
|
|
7
9
|
it_should_behave_like 'timestamp database columns'
|
|
8
10
|
|
|
9
|
-
it {
|
|
11
|
+
it { should have_db_column(:data).of_type(:text).with_options(null: false) }
|
|
10
12
|
end
|
|
11
13
|
|
|
12
14
|
context 'indices' do
|
|
13
|
-
it {
|
|
15
|
+
it { should have_db_index([:type, :data]).unique(true) }
|
|
14
16
|
end
|
|
15
17
|
end
|
|
16
18
|
|
|
@@ -20,13 +22,13 @@ RSpec.describe Metasploit::Credential::Private, type: :model do
|
|
|
20
22
|
FactoryGirl.build(:metasploit_credential_private)
|
|
21
23
|
end
|
|
22
24
|
|
|
23
|
-
it {
|
|
25
|
+
it { should be_valid }
|
|
24
26
|
end
|
|
25
27
|
end
|
|
26
28
|
|
|
27
29
|
context 'mass assignement security' do
|
|
28
30
|
it { should_not allow_mass_assignment_of :created_at }
|
|
29
|
-
it {
|
|
31
|
+
it { should allow_mass_assignment_of :data }
|
|
30
32
|
it { should_not allow_mass_assignment_of :id }
|
|
31
33
|
it { should_not allow_mass_assignment_of :updated_at }
|
|
32
34
|
it { should_not allow_mass_assignment_of :type }
|
|
@@ -34,9 +36,9 @@ RSpec.describe Metasploit::Credential::Private, type: :model do
|
|
|
34
36
|
|
|
35
37
|
context 'validations' do
|
|
36
38
|
context 'data' do
|
|
37
|
-
it {
|
|
39
|
+
it { should validate_non_nilness_of :data }
|
|
38
40
|
|
|
39
|
-
# `it {
|
|
41
|
+
# `it { should validate_uniqueness_of(:data).scoped_to(:type) }` tries to use a NULL type, which isn't allowed, so
|
|
40
42
|
# have to perform validation check manually
|
|
41
43
|
context 'validates uniqueness of #data scoped to #type' do
|
|
42
44
|
subject(:data_errors) do
|
|
@@ -87,7 +89,7 @@ RSpec.describe Metasploit::Credential::Private, type: :model do
|
|
|
87
89
|
existent_private.type
|
|
88
90
|
end
|
|
89
91
|
|
|
90
|
-
it {
|
|
92
|
+
it { should include(error) }
|
|
91
93
|
end
|
|
92
94
|
|
|
93
95
|
context 'without same #type' do
|
|
@@ -1,15 +1,17 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::Public do
|
|
2
4
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
3
5
|
|
|
4
6
|
context 'database' do
|
|
5
7
|
context 'columns' do
|
|
6
8
|
it_should_behave_like 'timestamp database columns'
|
|
7
9
|
|
|
8
|
-
it {
|
|
10
|
+
it { should have_db_column(:username).of_type(:string).with_options(null: false) }
|
|
9
11
|
end
|
|
10
12
|
|
|
11
13
|
context 'indices' do
|
|
12
|
-
it {
|
|
14
|
+
it { should have_db_index(:username).unique(true) }
|
|
13
15
|
end
|
|
14
16
|
end
|
|
15
17
|
|
|
@@ -19,14 +21,14 @@ RSpec.describe Metasploit::Credential::Public, type: :model do
|
|
|
19
21
|
FactoryGirl.build(:metasploit_credential_public)
|
|
20
22
|
end
|
|
21
23
|
|
|
22
|
-
it {
|
|
24
|
+
it { should be_valid }
|
|
23
25
|
end
|
|
24
26
|
end
|
|
25
27
|
|
|
26
28
|
context 'mass assignment security' do
|
|
27
29
|
it { should_not allow_mass_assignment_of(:created_at) }
|
|
28
30
|
it { should_not allow_mass_assignment_of(:updated_at) }
|
|
29
|
-
it {
|
|
31
|
+
it { should allow_mass_assignment_of(:username) }
|
|
30
32
|
end
|
|
31
33
|
|
|
32
34
|
context 'search' do
|
|
@@ -1,16 +1,18 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::Realm do
|
|
2
4
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
3
5
|
|
|
4
6
|
context 'database' do
|
|
5
7
|
context 'columns' do
|
|
6
|
-
it {
|
|
7
|
-
it {
|
|
8
|
+
it { should have_db_column(:key).of_type(:string).with_options(null: false) }
|
|
9
|
+
it { should have_db_column(:value).of_type(:string).with_options(null: false) }
|
|
8
10
|
|
|
9
11
|
it_should_behave_like 'timestamp database columns'
|
|
10
12
|
end
|
|
11
13
|
|
|
12
14
|
context 'indices' do
|
|
13
|
-
it {
|
|
15
|
+
it { should have_db_index([:key, :value]).unique(true) }
|
|
14
16
|
end
|
|
15
17
|
end
|
|
16
18
|
|
|
@@ -20,7 +22,7 @@ RSpec.describe Metasploit::Credential::Realm, type: :model do
|
|
|
20
22
|
FactoryGirl.build(:metasploit_credential_active_directory_domain)
|
|
21
23
|
end
|
|
22
24
|
|
|
23
|
-
it {
|
|
25
|
+
it { should be_valid }
|
|
24
26
|
|
|
25
27
|
context '#key' do
|
|
26
28
|
subject(:key) {
|
|
@@ -38,7 +40,7 @@ RSpec.describe Metasploit::Credential::Realm, type: :model do
|
|
|
38
40
|
FactoryGirl.build(:metasploit_credential_oracle_system_identifier)
|
|
39
41
|
end
|
|
40
42
|
|
|
41
|
-
it {
|
|
43
|
+
it { should be_valid }
|
|
42
44
|
|
|
43
45
|
context '#key' do
|
|
44
46
|
subject(:key) {
|
|
@@ -56,7 +58,7 @@ RSpec.describe Metasploit::Credential::Realm, type: :model do
|
|
|
56
58
|
FactoryGirl.build(:metasploit_credential_postgresql_database)
|
|
57
59
|
end
|
|
58
60
|
|
|
59
|
-
it {
|
|
61
|
+
it { should be_valid }
|
|
60
62
|
|
|
61
63
|
context '#key' do
|
|
62
64
|
subject(:key) {
|
|
@@ -74,13 +76,13 @@ RSpec.describe Metasploit::Credential::Realm, type: :model do
|
|
|
74
76
|
FactoryGirl.build(:metasploit_credential_realm)
|
|
75
77
|
end
|
|
76
78
|
|
|
77
|
-
it {
|
|
79
|
+
it { should be_valid }
|
|
78
80
|
end
|
|
79
81
|
end
|
|
80
82
|
|
|
81
83
|
context 'mass assignment security' do
|
|
82
|
-
it {
|
|
83
|
-
it {
|
|
84
|
+
it { should allow_mass_assignment_of(:key) }
|
|
85
|
+
it { should allow_mass_assignment_of(:value) }
|
|
84
86
|
end
|
|
85
87
|
|
|
86
88
|
|
|
@@ -104,12 +106,12 @@ RSpec.describe Metasploit::Credential::Realm, type: :model do
|
|
|
104
106
|
|
|
105
107
|
context 'validations' do
|
|
106
108
|
context 'on #key' do
|
|
107
|
-
it {
|
|
108
|
-
it {
|
|
109
|
+
it { should ensure_inclusion_of(:key).in_array(Metasploit::Model::Realm::Key::ALL) }
|
|
110
|
+
it { should validate_presence_of :key }
|
|
109
111
|
end
|
|
110
112
|
|
|
111
113
|
context 'on #value' do
|
|
112
|
-
it {
|
|
114
|
+
it { should validate_presence_of :value }
|
|
113
115
|
|
|
114
116
|
# key cannot be NULL so `validate_uniqueness_of(:value).scoped_to(:key)` does not work because it tries a NULL
|
|
115
117
|
# key
|
|
@@ -162,7 +164,7 @@ RSpec.describe Metasploit::Credential::Realm, type: :model do
|
|
|
162
164
|
existent_realm.value
|
|
163
165
|
end
|
|
164
166
|
|
|
165
|
-
it {
|
|
167
|
+
it { should include(error) }
|
|
166
168
|
end
|
|
167
169
|
|
|
168
170
|
context 'without same #value' do
|
|
@@ -1,7 +1,9 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::ReplayableHash do
|
|
2
4
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
3
5
|
|
|
4
|
-
it {
|
|
6
|
+
it { should be_a Metasploit::Credential::PasswordHash }
|
|
5
7
|
|
|
6
8
|
context 'factories' do
|
|
7
9
|
context 'metasploit_credential_replayable_hash' do
|
|
@@ -9,7 +11,7 @@ RSpec.describe Metasploit::Credential::ReplayableHash, type: :model do
|
|
|
9
11
|
FactoryGirl.build(:metasploit_credential_replayable_hash)
|
|
10
12
|
end
|
|
11
13
|
|
|
12
|
-
it {
|
|
14
|
+
it { should be_valid }
|
|
13
15
|
end
|
|
14
16
|
end
|
|
15
17
|
end
|
|
@@ -1,4 +1,6 @@
|
|
|
1
|
-
|
|
1
|
+
require 'spec_helper'
|
|
2
|
+
|
|
3
|
+
describe Metasploit::Credential::SSHKey do
|
|
2
4
|
it_should_behave_like 'Metasploit::Concern.run'
|
|
3
5
|
|
|
4
6
|
#
|
|
@@ -16,7 +18,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
16
18
|
FactoryGirl.build(:metasploit_credential_dsa_key)
|
|
17
19
|
end
|
|
18
20
|
|
|
19
|
-
it {
|
|
21
|
+
it { should be_valid }
|
|
20
22
|
|
|
21
23
|
it 'has DSA key type' do
|
|
22
24
|
expect(metasploit_credential_dsa_key.data).to match(/-----BEGIN DSA PRIVATE KEY-----/)
|
|
@@ -29,7 +31,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
29
31
|
FactoryGirl.build(:metasploit_credential_rsa_key)
|
|
30
32
|
end
|
|
31
33
|
|
|
32
|
-
it {
|
|
34
|
+
it { should be_valid }
|
|
33
35
|
|
|
34
36
|
it 'has RSA key type' do
|
|
35
37
|
expect(metasploit_credential_rsa_key.data).to match(/-----BEGIN RSA PRIVATE KEY-----/)
|
|
@@ -42,12 +44,12 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
42
44
|
FactoryGirl.build(:metasploit_credential_ssh_key)
|
|
43
45
|
end
|
|
44
46
|
|
|
45
|
-
it {
|
|
47
|
+
it { should be_valid }
|
|
46
48
|
end
|
|
47
49
|
end
|
|
48
50
|
|
|
49
51
|
context 'validations' do
|
|
50
|
-
it {
|
|
52
|
+
it { should validate_presence_of :data }
|
|
51
53
|
|
|
52
54
|
context 'on #data' do
|
|
53
55
|
subject(:data_errors) do
|
|
@@ -90,7 +92,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
90
92
|
false
|
|
91
93
|
end
|
|
92
94
|
|
|
93
|
-
it {
|
|
95
|
+
it { should include(error) }
|
|
94
96
|
end
|
|
95
97
|
end
|
|
96
98
|
|
|
@@ -154,7 +156,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
154
156
|
ssh_key.valid?
|
|
155
157
|
end
|
|
156
158
|
|
|
157
|
-
it {
|
|
159
|
+
it { should be_empty }
|
|
158
160
|
end
|
|
159
161
|
end
|
|
160
162
|
|
|
@@ -173,7 +175,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
173
175
|
ssh_key.valid?
|
|
174
176
|
end
|
|
175
177
|
|
|
176
|
-
it {
|
|
178
|
+
it { should include(error) }
|
|
177
179
|
end
|
|
178
180
|
end
|
|
179
181
|
|
|
@@ -201,7 +203,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
201
203
|
true
|
|
202
204
|
end
|
|
203
205
|
|
|
204
|
-
it {
|
|
206
|
+
it { should include(error) }
|
|
205
207
|
end
|
|
206
208
|
|
|
207
209
|
context 'without #encrypted' do
|
|
@@ -253,7 +255,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
253
255
|
cipher.random_key
|
|
254
256
|
end
|
|
255
257
|
|
|
256
|
-
it {
|
|
258
|
+
it { should be_encrypted }
|
|
257
259
|
end
|
|
258
260
|
|
|
259
261
|
context 'without encrypted' do
|
|
@@ -331,7 +333,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
331
333
|
unencrypted_key.to_pem
|
|
332
334
|
end
|
|
333
335
|
|
|
334
|
-
it {
|
|
336
|
+
it { should be_a OpenSSL::PKey.const_get(key_type) }
|
|
335
337
|
end
|
|
336
338
|
end
|
|
337
339
|
end
|
|
@@ -357,7 +359,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
357
359
|
nil
|
|
358
360
|
end
|
|
359
361
|
|
|
360
|
-
it {
|
|
362
|
+
it { should be_nil }
|
|
361
363
|
end
|
|
362
364
|
|
|
363
365
|
context 'with DSA key' do
|
|
@@ -365,7 +367,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
365
367
|
FactoryGirl.build(:metasploit_credential_dsa_key)
|
|
366
368
|
end
|
|
367
369
|
|
|
368
|
-
it {
|
|
370
|
+
it { should be_a OpenSSL::PKey::DSA }
|
|
369
371
|
end
|
|
370
372
|
|
|
371
373
|
context 'with RSA key' do
|
|
@@ -373,7 +375,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
373
375
|
FactoryGirl.build(:metasploit_credential_rsa_key)
|
|
374
376
|
end
|
|
375
377
|
|
|
376
|
-
it {
|
|
378
|
+
it { should be_a OpenSSL::PKey::RSA }
|
|
377
379
|
end
|
|
378
380
|
|
|
379
381
|
context 'with nil' do
|
|
@@ -417,7 +419,7 @@ RSpec.describe Metasploit::Credential::SSHKey, type: :model do
|
|
|
417
419
|
private_key
|
|
418
420
|
end
|
|
419
421
|
|
|
420
|
-
it {
|
|
422
|
+
it { should be_private }
|
|
421
423
|
end
|
|
422
424
|
end
|
|
423
425
|
end
|