mirror of https://github.com/fail2ban/fail2ban
BF: made tests util digest.py friendly to python3
Yaroslav Halchenko
parent
05fcb1f104
commit
86a5f42f73
|
|
@ -1,14 +1,21 @@
|
||||||
#!/bin/env python
|
#!/bin/env python
|
||||||
import requests
|
import requests
|
||||||
import md5
|
|
||||||
|
|
||||||
|
try:
|
||||||
|
import hashlib
|
||||||
|
md5sum = hashlib.md5
|
||||||
|
except ImportError: # pragma: no cover
|
||||||
|
# hashlib was introduced in Python 2.5. For compatibility with those
|
||||||
|
# elderly Pythons, import from md5
|
||||||
|
import md5
|
||||||
|
md5sum = md5.new
|
||||||
|
|
||||||
def auth(v):
|
def auth(v):
|
||||||
|
|
||||||
ha1 = md5.new(username + ':' + realm + ':' + password).hexdigest()
|
ha1 = md5sum(username + ':' + realm + ':' + password).hexdigest()
|
||||||
ha2 = md5.new("GET:" + url).hexdigest()
|
ha2 = md5sum("GET:" + url).hexdigest()
|
||||||
|
|
||||||
#response = md5.new(ha1 + ':' + v['nonce'][1:-1] + ':' + v['nc'] + ':' + v['cnonce'][1:-1]
|
#response = md5sum(ha1 + ':' + v['nonce'][1:-1] + ':' + v['nc'] + ':' + v['cnonce'][1:-1]
|
||||||
# + ':' + v['qop'][1:-1] + ':' + ha2).hexdigest()
|
# + ':' + v['qop'][1:-1] + ':' + ha2).hexdigest()
|
||||||
|
|
||||||
nonce = v['nonce'][1:-1]
|
nonce = v['nonce'][1:-1]
|
||||||
|
|
@ -17,7 +24,7 @@ def auth(v):
|
||||||
#opaque = v.get('opaque') or ''
|
#opaque = v.get('opaque') or ''
|
||||||
qop = v['qop'][1:-1]
|
qop = v['qop'][1:-1]
|
||||||
algorithm = v['algorithm']
|
algorithm = v['algorithm']
|
||||||
response = md5.new(ha1 + ':' + nonce + ':' + nc + ':' + cnonce + ':' + qop + ':' + ha2).hexdigest()
|
response = md5sum(ha1 + ':' + nonce + ':' + nc + ':' + cnonce + ':' + qop + ':' + ha2).hexdigest()
|
||||||
|
|
||||||
p = requests.Request('GET', host + url).prepare()
|
p = requests.Request('GET', host + url).prepare()
|
||||||
#p.headers['Authentication-Info'] = response
|
#p.headers['Authentication-Info'] = response
|
||||||
|
|
@ -33,13 +40,13 @@ def auth(v):
|
||||||
response="%s"
|
response="%s"
|
||||||
""" % ( username, algorithm, realm, url, nonce, qop, response )
|
""" % ( username, algorithm, realm, url, nonce, qop, response )
|
||||||
# opaque="%s",
|
# opaque="%s",
|
||||||
print p.method, p.url, p.headers
|
print(p.method, p.url, p.headers)
|
||||||
s = requests.Session()
|
s = requests.Session()
|
||||||
return s.send(p)
|
return s.send(p)
|
||||||
|
|
||||||
def preauth():
|
def preauth():
|
||||||
r = requests.get(host + url)
|
r = requests.get(host + url)
|
||||||
print r
|
print(r)
|
||||||
r.headers['www-authenticate'].split(', ')
|
r.headers['www-authenticate'].split(', ')
|
||||||
return dict([ a.split('=',1) for a in r.headers['www-authenticate'].split(', ') ])
|
return dict([ a.split('=',1) for a in r.headers['www-authenticate'].split(', ') ])
|
||||||
|
|
||||||
|
|
@ -51,7 +58,7 @@ v = preauth()
|
||||||
|
|
||||||
username="username"
|
username="username"
|
||||||
password = "password"
|
password = "password"
|
||||||
print v
|
print(v)
|
||||||
|
|
||||||
realm = 'so far away'
|
realm = 'so far away'
|
||||||
r = auth(v)
|
r = auth(v)
|
||||||
|
|
@ -67,18 +74,18 @@ r = auth(v)
|
||||||
|
|
||||||
# [Sun Jul 28 21:41:20 2013] [error] [client 127.0.0.1] Digest: unknown algorithm `super funky chicken' received: /digest/
|
# [Sun Jul 28 21:41:20 2013] [error] [client 127.0.0.1] Digest: unknown algorithm `super funky chicken' received: /digest/
|
||||||
|
|
||||||
print r.status_code,r.headers, r.text
|
print(r.status_code,r.headers, r.text)
|
||||||
v['algorithm'] = algorithm
|
v['algorithm'] = algorithm
|
||||||
|
|
||||||
|
|
||||||
r = auth(v)
|
r = auth(v)
|
||||||
print r.status_code,r.headers, r.text
|
print(r.status_code,r.headers, r.text)
|
||||||
|
|
||||||
nonce = v['nonce']
|
nonce = v['nonce']
|
||||||
v['nonce']=v['nonce'][5:-5]
|
v['nonce']=v['nonce'][5:-5]
|
||||||
|
|
||||||
r = auth(v)
|
r = auth(v)
|
||||||
print r.status_code,r.headers, r.text
|
print(r.status_code,r.headers, r.text)
|
||||||
|
|
||||||
# [Sun Jul 28 21:05:31.178340 2013] [auth_digest:error] [pid 24224:tid 139895539455744] [client 127.0.0.1:56906] AH01793: invalid qop `auth' received: /digest/qop_none/
|
# [Sun Jul 28 21:05:31.178340 2013] [auth_digest:error] [pid 24224:tid 139895539455744] [client 127.0.0.1:56906] AH01793: invalid qop `auth' received: /digest/qop_none/
|
||||||
|
|
||||||
|
|
@ -86,7 +93,7 @@ print r.status_code,r.headers, r.text
|
||||||
v['nonce']=nonce[0:11] + 'ZZZ' + nonce[14:]
|
v['nonce']=nonce[0:11] + 'ZZZ' + nonce[14:]
|
||||||
|
|
||||||
r = auth(v)
|
r = auth(v)
|
||||||
print r.status_code,r.headers, r.text
|
print(r.status_code,r.headers, r.text)
|
||||||
|
|
||||||
#[Sun Jul 28 21:18:11.769228 2013] [auth_digest:error] [pid 24752:tid 139895505884928] [client 127.0.0.1:56964] AH01776: invalid nonce b9YAiJDiBAZZZ1b1abe02d20063ea3b16b544ea1b0d981c1bafe received - hash is not d42d824dee7aaf50c3ba0a7c6290bd453e3dd35b
|
#[Sun Jul 28 21:18:11.769228 2013] [auth_digest:error] [pid 24752:tid 139895505884928] [client 127.0.0.1:56964] AH01776: invalid nonce b9YAiJDiBAZZZ1b1abe02d20063ea3b16b544ea1b0d981c1bafe received - hash is not d42d824dee7aaf50c3ba0a7c6290bd453e3dd35b
|
||||||
|
|
||||||
|
|
@ -98,7 +105,7 @@ import time
|
||||||
time.sleep(1)
|
time.sleep(1)
|
||||||
|
|
||||||
r = auth(v)
|
r = auth(v)
|
||||||
print r.status_code,r.headers, r.text
|
print(r.status_code,r.headers, r.text)
|
||||||
|
|
||||||
# Obtained by putting the following code in modules/aaa/mod_auth_digest.c
|
# Obtained by putting the following code in modules/aaa/mod_auth_digest.c
|
||||||
# in the function initialize_secret
|
# in the function initialize_secret
|
||||||
|
|
@ -128,7 +135,7 @@ s = sha.sha(apachesecret)
|
||||||
|
|
||||||
v=preauth()
|
v=preauth()
|
||||||
|
|
||||||
print v['nonce']
|
print(v['nonce'])
|
||||||
realm = v['Digest realm'][1:-1]
|
realm = v['Digest realm'][1:-1]
|
||||||
|
|
||||||
(t,) = struct.unpack('l',base64.b64decode(v['nonce'][1:13]))
|
(t,) = struct.unpack('l',base64.b64decode(v['nonce'][1:13]))
|
||||||
|
|
@ -143,17 +150,17 @@ s.update(timepac)
|
||||||
|
|
||||||
v['nonce'] = v['nonce'][0] + timepac + s.hexdigest() + v['nonce'][-1]
|
v['nonce'] = v['nonce'][0] + timepac + s.hexdigest() + v['nonce'][-1]
|
||||||
|
|
||||||
print v
|
print(v)
|
||||||
|
|
||||||
r = auth(v)
|
r = auth(v)
|
||||||
#[Mon Jul 29 02:12:55.539813 2013] [auth_digest:error] [pid 9647:tid 139895522670336] [client 127.0.0.1:58474] AH01777: invalid nonce 59QJppTiBAA=b08983fd166ade9840407df1b0f75b9e6e07d88d received - user attempted time travel
|
#[Mon Jul 29 02:12:55.539813 2013] [auth_digest:error] [pid 9647:tid 139895522670336] [client 127.0.0.1:58474] AH01777: invalid nonce 59QJppTiBAA=b08983fd166ade9840407df1b0f75b9e6e07d88d received - user attempted time travel
|
||||||
print r.status_code,r.headers, r.text
|
print(r.status_code,r.headers, r.text)
|
||||||
|
|
||||||
url='/digest_onetime/'
|
url='/digest_onetime/'
|
||||||
v=preauth()
|
v=preauth()
|
||||||
|
|
||||||
# Need opaque header handling in auth
|
# Need opaque header handling in auth
|
||||||
r = auth(v)
|
r = auth(v)
|
||||||
print r.status_code,r.headers, r.text
|
print(r.status_code,r.headers, r.text)
|
||||||
r = auth(v)
|
r = auth(v)
|
||||||
print r.status_code,r.headers, r.text
|
print(r.status_code,r.headers, r.text)
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue