def test_domainname_template_invalid(self):
self.assertEqual(
ValidationTools.validate_domainname_template("*foo*.foo.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("**.foo.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("f$oo.foo.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.InvalidCharacter
)
self.assertEqual(
ValidationTools.validate_domainname_template("f*$oo.foo.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.InvalidCharacter
)
self.assertEqual(
ValidationTools.validate_domainname_template("foo.*.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.
FullWildcardNotLeftmost)
self.assertEqual(
ValidationTools.validate_domainname_template("foo.co.uk.*")[0],
ValidationTools.DomainnameTemplateValidationResult.
FullWildcardNotLeftmost)
self.assertEqual(
ValidationTools.validate_domainname_template("foo*.co*.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.
MoreThanOneWildcard)
self.assertEqual(
ValidationTools.validate_domainname_template("foo.xn--foo*.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.
WildcardInInternationalDomain)
def test_domainname_template_valid(self):
self.assertEqual(
ValidationTools.validate_domainname_template("bar.de")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("y")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("d.y")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("a.d.y")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("a.d.y")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("bar.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("*.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("foo*.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("*foo.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("foo.foo*.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("foo.*foo.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
self.assertEqual(
ValidationTools.validate_domainname_template("*.xn--foo.co.uk")[0],
ValidationTools.DomainnameTemplateValidationResult.Valid)
def _validate_dNSName(self):
self._report("Enc_DER_Struct_GenName_DNS_Unexpected",
"contains unexpected domain name \"%s\"." %
(self._subject.str_value),
commonness=Commonness.UNUSUAL)
if self._subject.str_value == " ":
return self._report(
"Enc_DER_Struct_GenName_DNS_OnlyWhitespace",
"got invalid DNS name \" \" (space character).",
commonness=Commonness.HIGHLY_UNUSUAL,
compatibility=Compatibility.STANDARDS_DEVIATION)
if self._validator.allow_dnsname_wildcard_matches:
(result, label) = ValidationTools.validate_domainname_template(
self._subject.str_value)
if result != ValidationTools.DomainnameTemplateValidationResult.Valid:
if result == ValidationTools.DomainnameTemplateValidationResult.InvalidCharacter:
return self._report(
"Enc_DER_Struct_GenName_DNS_Malformed",
"has invalid domain name \"%s\", error at label \"%s\"."
% (self._subject.str_value, label),
commonness=Commonness.HIGHLY_UNUSUAL,
compatibility=Compatibility.STANDARDS_DEVIATION)
elif result == ValidationTools.DomainnameTemplateValidationResult.FullWildcardNotLeftmost:
return self._report(
"Enc_DER_Struct_GenName_DNS_Wildcard_NotLeftmost",
"has invalid domain name \"%s\". Full-label wildcard appears not as leftmost element."
% (self._subject.str_value),
commonness=Commonness.UNUSUAL,
compatibility=Compatibility.STANDARDS_DEVIATION)
elif result == ValidationTools.DomainnameTemplateValidationResult.MoreThanOneWildcard:
return self._report(
"Enc_DER_Struct_GenName_DNS_Wildcard_MulitpleWildcards",
"has invalid domain name \"%s\". More than one wildcard label present."
% (self._subject.str_value),
commonness=Commonness.UNUSUAL,
compatibility=Compatibility.STANDARDS_DEVIATION)
elif result == ValidationTools.DomainnameTemplateValidationResult.WildcardInInternationalDomain:
return self._report(
"Enc_DER_Struct_GenName_DNS_Wildcard_InternationalLabel",
"has invalid domain name \"%s\". Wildcard in international domain label \"%s\"."
% (self._subject.str_value, label),
commonness=Commonness.HIGHLY_UNUSUAL,
compatibility=Compatibility.STANDARDS_DEVIATION)
else:
raise NotImplementedError(result)
if "*" in self._subject.str_value:
# Wildcard match
labels = self._subject.str_value.split(".")
if len(labels) <= 2:
self._report(
"Enc_DER_Struct_GenName_DNS_Wildcard_BroadMatch",
"has wildcard value \"%s\", which is an extremely broad domain match."
% (self._subject.str_value),
commonness=Commonness.HIGHLY_UNUSUAL)
else:
if "*" in self._subject.str_value:
# Not permitted but wildcard present
self._report(
"Enc_DER_Struct_GenName_DNS_Wildcard_NotPermitted",
"has wildcard value \"%s\", which is not permitted for this type."
% (self._subject.str_value),
commonness=Commonness.HIGHLY_UNUSUAL)
if not "." in self._subject.str_value:
self._report(
"Enc_DER_Struct_GenName_DNS_SingleLabel",
"contains only single label \"%s\", which is highly unusual." %
(self._subject.str_value),
commonness=Commonness.HIGHLY_UNUSUAL)
validation_name = self._subject.str_value
if self._validator.allow_dnsname_wildcard_matches:
validation_name = validation_name.replace("*", "a")
result = ValidationTools.validate_domainname(validation_name)
if not result:
self._report(
"Enc_DER_Struct_GenName_DNS_Malformed",
"has invalid domain name \"%s\" (wildcard matches %s)." %
(self._subject.str_value,
"permitted" if self._validator.allow_dnsname_wildcard_matches
else "forbidden"),
commonness=Commonness.HIGHLY_UNUSUAL,
compatibility=Compatibility.STANDARDS_DEVIATION)