mitmproxy/test/test_certutils.py

import os
from netlib import certutils
import tutils


def test_dummy_ca():
    with tutils.tmpdir() as d:
        path = os.path.join(d, "foo/cert.cnf")
        assert certutils.dummy_ca(path)
        assert os.path.exists(path)

        path = os.path.join(d, "foo/cert2.pem")
        assert certutils.dummy_ca(path)
        assert os.path.exists(path)
        assert os.path.exists(os.path.join(d, "foo/cert2-cert.pem"))
        assert os.path.exists(os.path.join(d, "foo/cert2-cert.p12"))


class TestCertStore:
    def test_create_explicit(self):
        with tutils.tmpdir() as d:
            ca = os.path.join(d, "ca")
            assert certutils.dummy_ca(ca)
            c = certutils.CertStore(d)
            c.cleanup()
            assert os.path.exists(d)

    def test_create_tmp(self):
        with tutils.tmpdir() as d:
            ca = os.path.join(d, "ca")
            assert certutils.dummy_ca(ca)
            c = certutils.CertStore()
            assert not c.get_cert("foo.com", [])
            assert c.get_cert("foo.com", [], ca)
            assert c.get_cert("foo.com", [], ca)
            c.cleanup()


class TestDummyCert:
    def test_with_ca(self):
        with tutils.tmpdir() as d:
            cacert = os.path.join(d, "cacert")
            assert certutils.dummy_ca(cacert)
            p = os.path.join(d, "foo")
            certutils.dummy_cert(
                file(p, "w"),
                cacert,
                "foo.com",
                ["one.com", "two.com", "*.three.com"]
            )
            assert file(p).read()


class TestSSLCert:
    def test_simple(self):
        c = certutils.SSLCert.from_pem(file(tutils.test_data.path("data/text_cert"), "r").read())
        assert c.cn == "google.com"
        assert len(c.altnames) == 436

        c = certutils.SSLCert.from_pem(file(tutils.test_data.path("data/text_cert_2"), "r").read())
        assert c.cn == "www.inode.co.nz"
        assert len(c.altnames) == 2
        assert c.digest("sha1")
        assert c.notbefore
        assert c.notafter
        assert c.subject
        assert c.keyinfo == ("RSA", 2048)
        assert c.serial
        assert c.issuer
        assert c.to_pem()
        c.has_expired

    def test_err_broken_sans(self):
        c = certutils.SSLCert.from_pem(file(tutils.test_data.path("data/text_cert_weird1"), "r").read())
        # This breaks unless we ignore a decoding error.
        c.altnames

    def test_der(self):
        d = file(tutils.test_data.path("data/dercert")).read()
        s = certutils.SSLCert.from_der(d)
        assert s.cn
Add certutils to netlib. 2012-06-27 04:42:00 +00:00			`import os`
			`from netlib import certutils`
			`import tutils`


			`def test_dummy_ca():`
			`with tutils.tmpdir() as d:`
			`path = os.path.join(d, "foo/cert.cnf")`
			`assert certutils.dummy_ca(path)`
			`assert os.path.exists(path)`

			`path = os.path.join(d, "foo/cert2.pem")`
			`assert certutils.dummy_ca(path)`
			`assert os.path.exists(path)`
			`assert os.path.exists(os.path.join(d, "foo/cert2-cert.pem"))`
			`assert os.path.exists(os.path.join(d, "foo/cert2-cert.p12"))`


Basic certificate store implementation and cert utils API cleanup. 2013-01-05 12:15:53 +00:00			`class TestCertStore:`
			`def test_create_explicit(self):`
			`with tutils.tmpdir() as d:`
			`ca = os.path.join(d, "ca")`
			`assert certutils.dummy_ca(ca)`
			`c = certutils.CertStore(d)`
			`c.cleanup()`
			`assert os.path.exists(d)`

			`def test_create_tmp(self):`
			`with tutils.tmpdir() as d:`
			`ca = os.path.join(d, "ca")`
			`assert certutils.dummy_ca(ca)`
			`c = certutils.CertStore()`
			`assert not c.get_cert("foo.com", [])`
			`assert c.get_cert("foo.com", [], ca)`
			`assert c.get_cert("foo.com", [], ca)`
			`c.cleanup()`


Add certutils to netlib. 2012-06-27 04:42:00 +00:00			`class TestDummyCert:`
			`def test_with_ca(self):`
			`with tutils.tmpdir() as d:`
Basic certificate store implementation and cert utils API cleanup. 2013-01-05 12:15:53 +00:00			`cacert = os.path.join(d, "cacert")`
Add certutils to netlib. 2012-06-27 04:42:00 +00:00			`assert certutils.dummy_ca(cacert)`
Basic certificate store implementation and cert utils API cleanup. 2013-01-05 12:15:53 +00:00			`p = os.path.join(d, "foo")`
			`certutils.dummy_cert(`
			`file(p, "w"),`
Add certutils to netlib. 2012-06-27 04:42:00 +00:00			`cacert,`
			`"foo.com",`
			`["one.com", "two.com", "*.three.com"]`
			`)`
Basic certificate store implementation and cert utils API cleanup. 2013-01-05 12:15:53 +00:00			`assert file(p).read()`
Add certutils to netlib. 2012-06-27 04:42:00 +00:00


			`class TestSSLCert:`
			`def test_simple(self):`
Refactor certutils.SSLCert API. 2012-06-27 10:11:58 +00:00			`c = certutils.SSLCert.from_pem(file(tutils.test_data.path("data/text_cert"), "r").read())`
Add certutils to netlib. 2012-06-27 04:42:00 +00:00			`assert c.cn == "google.com"`
			`assert len(c.altnames) == 436`

Refactor certutils.SSLCert API. 2012-06-27 10:11:58 +00:00			`c = certutils.SSLCert.from_pem(file(tutils.test_data.path("data/text_cert_2"), "r").read())`
Add certutils to netlib. 2012-06-27 04:42:00 +00:00			`assert c.cn == "www.inode.co.nz"`
			`assert len(c.altnames) == 2`
			`assert c.digest("sha1")`
			`assert c.notbefore`
			`assert c.notafter`
			`assert c.subject`
			`assert c.keyinfo == ("RSA", 2048)`
			`assert c.serial`
			`assert c.issuer`
Add utility function for converstion to PEM. 2012-06-28 02:56:21 +00:00			`assert c.to_pem()`
Add certutils to netlib. 2012-06-27 04:42:00 +00:00			`c.has_expired`

Ignore SAN entries that we don't understand. 2012-07-24 02:55:54 +00:00			`def test_err_broken_sans(self):`
			`c = certutils.SSLCert.from_pem(file(tutils.test_data.path("data/text_cert_weird1"), "r").read())`
			`# This breaks unless we ignore a decoding error.`
			`c.altnames`

Add certutils to netlib. 2012-06-27 04:42:00 +00:00			`def test_der(self):`
			`d = file(tutils.test_data.path("data/dercert")).read()`
			`s = certutils.SSLCert.from_der(d)`
			`assert s.cn`