mitmproxy/test/test_certutils.py

import os
from libmproxy import certutils
import tutils


def test_dummy_ca():
    with tutils.tmpdir() as d:
        path = os.path.join(d, "foo/cert.cnf")
        assert certutils.dummy_ca(path)
        assert os.path.exists(path)

        path = os.path.join(d, "foo/cert2.pem")
        assert certutils.dummy_ca(path)
        assert os.path.exists(path)
        assert os.path.exists(os.path.join(d, "foo/cert2-cert.pem"))
        assert os.path.exists(os.path.join(d, "foo/cert2-cert.p12"))


class TestDummyCert:
    def test_with_ca(self):
        with tutils.tmpdir() as d:
            cacert = os.path.join(d, "foo/cert.cnf")
            assert certutils.dummy_ca(cacert)
            p = certutils.dummy_cert(
                os.path.join(d, "foo"),
                cacert,
                "foo.com",
                ["one.com", "two.com", "*.three.com"]
            )
            assert os.path.exists(p)

            # Short-circuit
            assert certutils.dummy_cert(
                os.path.join(d, "foo"),
                cacert,
                "foo.com",
                []
            )

    def test_no_ca(self):
        with tutils.tmpdir() as d:
            p = certutils.dummy_cert(
                d,
                None,
                "foo.com",
                []
            )
            assert os.path.exists(p)


class TestSSLCert:
    def test_simple(self):
        c = certutils.SSLCert(file(tutils.test_data.path("data/text_cert"), "r").read())
        assert c.cn == "google.com"
        assert len(c.altnames) == 436

        c = certutils.SSLCert(file(tutils.test_data.path("data/text_cert_2"), "r").read())
        assert c.cn == "www.inode.co.nz"
        assert len(c.altnames) == 2
        assert c.digest("sha1")
        assert c.notbefore
        assert c.notafter
        assert c.subject
        assert c.keyinfo == ("RSA", 2048)
        assert c.serial
        assert c.issuer
        c.has_expired

    def test_der(self):
        d = file(tutils.test_data.path("data/dercert")).read()
        s = certutils.SSLCert.from_der(d)
        assert s.cn
Factor out cert operations in to certutils.py. 2012-02-29 00:20:53 +00:00			`import os`
			`from libmproxy import certutils`
Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`import tutils`
Factor out cert operations in to certutils.py. 2012-02-29 00:20:53 +00:00

Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`def test_dummy_ca():`
			`with tutils.tmpdir() as d:`
Factor out cert operations in to certutils.py. 2012-02-29 00:20:53 +00:00			`path = os.path.join(d, "foo/cert.cnf")`
			`assert certutils.dummy_ca(path)`
			`assert os.path.exists(path)`

			`path = os.path.join(d, "foo/cert2.pem")`
			`assert certutils.dummy_ca(path)`
			`assert os.path.exists(path)`
			`assert os.path.exists(os.path.join(d, "foo/cert2-cert.pem"))`
			`assert os.path.exists(os.path.join(d, "foo/cert2-cert.p12"))`


Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`class TestDummyCert:`
Factor out cert operations in to certutils.py. 2012-02-29 00:20:53 +00:00			`def test_with_ca(self):`
Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`with tutils.tmpdir() as d:`
			`cacert = os.path.join(d, "foo/cert.cnf")`
			`assert certutils.dummy_ca(cacert)`
			`p = certutils.dummy_cert(`
			`os.path.join(d, "foo"),`
			`cacert,`
			`"foo.com",`
			`["one.com", "two.com", "*.three.com"]`
			`)`
			`assert os.path.exists(p)`
Factor out cert operations in to certutils.py. 2012-02-29 00:20:53 +00:00
Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`# Short-circuit`
			`assert certutils.dummy_cert(`
			`os.path.join(d, "foo"),`
			`cacert,`
			`"foo.com",`
			`[]`
			`)`
Factor out cert operations in to certutils.py. 2012-02-29 00:20:53 +00:00
			`def test_no_ca(self):`
Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`with tutils.tmpdir() as d:`
			`p = certutils.dummy_cert(`
			`d,`
			`None,`
			`"foo.com",`
			`[]`
			`)`
			`assert os.path.exists(p)`
Factor out cert operations in to certutils.py. 2012-02-29 00:20:53 +00:00

Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`class TestSSLCert:`
Factor out cert operations in to certutils.py. 2012-02-29 00:20:53 +00:00			`def test_simple(self):`
Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`c = certutils.SSLCert(file(tutils.test_data.path("data/text_cert"), "r").read())`
Create an SSL certificate class. 2012-03-04 21:22:47 +00:00			`assert c.cn == "google.com"`
			`assert len(c.altnames) == 436`
Factor out cert operations in to certutils.py. 2012-02-29 00:20:53 +00:00
Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`c = certutils.SSLCert(file(tutils.test_data.path("data/text_cert_2"), "r").read())`
Create an SSL certificate class. 2012-03-04 21:22:47 +00:00			`assert c.cn == "www.inode.co.nz"`
			`assert len(c.altnames) == 2`
Expand SSL cert support - Capture the remote SSL certificate - Expose the remote cert as an attribute on Response - Expand the certutils.SSLCert interface to expose more cert info 2012-04-02 04:19:00 +00:00			`assert c.digest("sha1")`
			`assert c.notbefore`
			`assert c.notafter`
			`assert c.subject`
			`assert c.keyinfo == ("RSA", 2048)`
			`assert c.serial`
Add a details page, available from a flow view with the 'X' shortcut At the moment, this shows the upstream SSL certificate details. More fine-grained detail that doesn't fit in the flow view itself will be added. 2012-04-02 23:10:25 +00:00			`assert c.issuer`
Expand SSL cert support - Capture the remote SSL certificate - Expose the remote cert as an attribute on Response - Expand the certutils.SSLCert interface to expose more cert info 2012-04-02 04:19:00 +00:00			`c.has_expired`

			`def test_der(self):`
Port mitmproxy test suite entirely to nose. 2012-06-09 01:42:43 +00:00			`d = file(tutils.test_data.path("data/dercert")).read()`
Expand SSL cert support - Capture the remote SSL certificate - Expose the remote cert as an attribute on Response - Expand the certutils.SSLCert interface to expose more cert info 2012-04-02 04:19:00 +00:00			`s = certutils.SSLCert.from_der(d)`
			`assert s.cn`