summaryrefslogtreecommitdiff
path: root/tests/auth_tests/test_hashers.py
diff options
context:
space:
mode:
Diffstat (limited to 'tests/auth_tests/test_hashers.py')
-rw-r--r--tests/auth_tests/test_hashers.py32
1 files changed, 32 insertions, 0 deletions
diff --git a/tests/auth_tests/test_hashers.py b/tests/auth_tests/test_hashers.py
index f264926aff..993010b2f4 100644
--- a/tests/auth_tests/test_hashers.py
+++ b/tests/auth_tests/test_hashers.py
@@ -177,6 +177,38 @@ class TestUtilsHashPass(SimpleTestCase):
self.assertTrue(check_password('', blank_encoded))
self.assertFalse(check_password(' ', blank_encoded))
+ @skipUnless(bcrypt, "bcrypt not installed")
+ def test_bcrypt_upgrade(self):
+ hasher = get_hasher('bcrypt')
+ self.assertEqual('bcrypt', hasher.algorithm)
+ self.assertNotEqual(hasher.rounds, 4)
+
+ old_rounds = hasher.rounds
+ try:
+ # Generate a password with 4 rounds.
+ hasher.rounds = 4
+ encoded = make_password('letmein', hasher='bcrypt')
+ rounds = hasher.safe_summary(encoded)['work factor']
+ self.assertEqual(rounds, '04')
+
+ state = {'upgraded': False}
+
+ def setter(password):
+ state['upgraded'] = True
+
+ # Check that no upgrade is triggered.
+ self.assertTrue(check_password('letmein', encoded, setter, 'bcrypt'))
+ self.assertFalse(state['upgraded'])
+
+ # Revert to the old rounds count and ...
+ hasher.rounds = old_rounds
+
+ # ... check if the password would get updated to the new count.
+ self.assertTrue(check_password('letmein', encoded, setter, 'bcrypt'))
+ self.assertTrue(state['upgraded'])
+ finally:
+ hasher.rounds = old_rounds
+
def test_unusable(self):
encoded = make_password(None)
self.assertEqual(len(encoded), len(UNUSABLE_PASSWORD_PREFIX) + UNUSABLE_PASSWORD_SUFFIX_LENGTH)
generated by cgit v1.3 (git 2.53.0) at 2026-05-02 03:08:22 +0000