##// END OF EJS Templates
tests: use pyflakes as a tool, not a python module...
tests: use pyflakes as a tool, not a python module The usage of pyflakes as a Python module was introduced in e397c6d74652, to work around issue between Python 2 and Python 3. This issues are long behind us now and we can get beck to using pyflakes as a tool, giving us more flexibility about how we install it. The `hghave` requirements is modified to check that we have a tool available, instead of a python module.

File last commit:

r52603:8fe7c0e1 default
r52956:43602c67 default
Show More
test-patchbomb-tls.t
164 lines | 4.0 KiB | text/troff | Tads3Lexer
/ tests / test-patchbomb-tls.t
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 #require serve ssl
tests: fix test-patchbomb-tls.t instability...
r52391 $ wait_log() {
> pattern="$1"
> for s in $TESTDIR/seq.py 10; do
> if grep "$pattern" $TESTTMP/log > /dev/null ; then
> break
> fi
> sleep 1
> done
> }
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 Set up SMTP server:
$ CERTSDIR="$TESTDIR/sslcerts"
$ cat "$CERTSDIR/priv.pem" "$CERTSDIR/pub.pem" >> server.pem
Mads Kiilerich
tests: show test-patchbomb-tls.t smtp server log...
r51622 $ "$PYTHON" "$TESTDIR/dummysmtpd.py" -p $HGPORT --pid-file a.pid --logfile log -d \
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 > --tls smtps --certificate `pwd`/server.pem
$ cat a.pid >> $DAEMON_PIDS
Set up repository:
$ hg init t
$ cd t
$ cat <<EOF >> .hg/hgrc
> [extensions]
> patchbomb =
> [email]
> method = smtp
> [smtp]
> host = localhost
> port = $HGPORT
> tls = smtps
> EOF
$ echo a > a
$ hg commit -Ama -d '1 0'
adding a
Utility functions:
$ DISABLECACERTS=
$ try () {
> hg email $DISABLECACERTS -f quux -t foo -c bar -r tip "$@"
> }
Our test cert is not signed by a trusted CA. It should fail to verify if
we are able to load CA certs:
Manuel Jacob
tests: remove "sslcontext" check...
r45417 #if no-defaultcacertsloaded
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 $ try
this patch series consists of 1 patches.
Gregory Szorc
sslutil: emit warning when no CA certificates loaded...
r29449 (an attempt was made to load CA certificates but none were loaded; see https://mercurial-scm.org/wiki/SecureConnections for how to configure Mercurial to avoid this error)
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 (?i)abort: .*?certificate.verify.failed.* (re)
[255]
Mads Kiilerich
tests: use simple mock smtp server instead of deprecated asyncore smtpd...
r51625
tests: fix test-patchbomb-tls.t instability...
r52391 $ wait_log "ssl error:"
Mads Kiilerich
tests: use simple mock smtp server instead of deprecated asyncore smtpd...
r51625 $ cat ../log
* ssl error: * (glob)
$ : > ../log
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 #endif
Gregory Szorc
tests: better testing of loaded certificates...
r29481 #if defaultcacertsloaded
$ try
this patch series consists of 1 patches.
Matt Harbison
sslutil: inform the user about how to fix an incomplete certificate chain...
r33494 (the full certificate chain may not be available locally; see "hg help debugssl") (windows !)
Gregory Szorc
tests: better testing of loaded certificates...
r29481 (?i)abort: .*?certificate.verify.failed.* (re)
[255]
tests: fix test-patchbomb-tls.t instability...
r52391 $ wait_log "ssl error:"
Mads Kiilerich
tests: use simple mock smtp server instead of deprecated asyncore smtpd...
r51625 $ cat ../log
* ssl error: * (glob)
$ : > ../log
Gregory Szorc
tests: better testing of loaded certificates...
r29481 #endif
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 $ DISABLECACERTS="--config devel.disableloaddefaultcerts=true"
Without certificates:
$ try --debug
this patch series consists of 1 patches.
(using smtps)
sending mail: smtp host localhost, port * (glob)
(verifying remote certificate)
Gregory Szorc
sslutil: abort when unable to verify peer connection (BC)...
r29411 abort: unable to verify security of localhost (no loaded CA certificates); refusing to connect
Gregory Szorc
tests: regenerate x509 test certificates...
r29526 (see https://mercurial-scm.org/wiki/SecureConnections for how to configure Mercurial to avoid this error or set hostsecurity.localhost:fingerprints=sha256:20:de:b3:ad:b4:cd:a5:42:f0:74:41:1c:a2:70:1e:da:6e:c0:5c:16:9e:e7:22:0f:f1:b7:e5:6e:e4:92:af:7e to trust this server)
Martin von Zweigbergk
errors: introduce SecurityError and use it in a few places...
r46527 [150]
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333
tests: fix test-patchbomb-tls.t instability...
r52391 $ wait_log "no hello:"
Mads Kiilerich
tests: show test-patchbomb-tls.t smtp server log...
r51622 $ cat ../log
Mads Kiilerich
tests: use simple mock smtp server instead of deprecated asyncore smtpd...
r51625 connection from * (glob)
Raphaël Gomès
dummysmtpd: fix EOF handling on newer versions of OpenSSL...
r52603 no hello: (b''|EOF) (re)
Mads Kiilerich
tests: show test-patchbomb-tls.t smtp server log...
r51622 $ : > ../log
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 With global certificates:
$ try --debug --config web.cacerts="$CERTSDIR/pub.pem"
this patch series consists of 1 patches.
(using smtps)
sending mail: smtp host localhost, port * (glob)
(verifying remote certificate)
sending [PATCH] a ...
Mads Kiilerich
tests: show test-patchbomb-tls.t smtp server log...
r51622 $ cat ../log
Mads Kiilerich
tests: use simple mock smtp server instead of deprecated asyncore smtpd...
r51625 connection from * (glob)
Mads Kiilerich
tests: show test-patchbomb-tls.t smtp server log...
r51622 * from=quux to=foo, bar (glob)
Mads Kiilerich
tests: improve test-patchbomb-tls.t by by logging errors and data...
r51623 MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Subject: [PATCH] a
X-Mercurial-Node: 8580ff50825a50c8f716709acdf8de0deddcd6ab
X-Mercurial-Series-Index: 1
X-Mercurial-Series-Total: 1
Message-Id: <*@test-hostname> (glob)
X-Mercurial-Series-Id: <*@test-hostname> (glob)
User-Agent: Mercurial-patchbomb* (glob)
Date: * (glob)
From: quux
To: foo
Cc: bar
# HG changeset patch
# User test
# Date 1 0
# Thu Jan 01 00:00:01 1970 +0000
# Node ID 8580ff50825a50c8f716709acdf8de0deddcd6ab
# Parent 0000000000000000000000000000000000000000
a
diff -r 0000000000000000000000000000000000000000 -r 8580ff50825a50c8f716709acdf8de0deddcd6ab a
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/a Thu Jan 01 00:00:01 1970 +0000
@@ -0,0 +1,1 @@
+a
Mads Kiilerich
tests: show test-patchbomb-tls.t smtp server log...
r51622 $ : > ../log
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 With invalid certificates:
$ try --config web.cacerts="$CERTSDIR/pub-other.pem"
this patch series consists of 1 patches.
Matt Harbison
sslutil: inform the user about how to fix an incomplete certificate chain...
r33494 (the full certificate chain may not be available locally; see "hg help debugssl") (windows !)
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 (?i)abort: .*?certificate.verify.failed.* (re)
[255]
tests: fix test-patchbomb-tls.t instability...
r52391 $ wait_log "ssl error:"
Mads Kiilerich
tests: show test-patchbomb-tls.t smtp server log...
r51622 $ cat ../log
Mads Kiilerich
tests: improve test-patchbomb-tls.t by by logging errors and data...
r51623 * ssl error: * (glob)
Mads Kiilerich
tests: show test-patchbomb-tls.t smtp server log...
r51622 $ : > ../log
Yuya Nishihara
tests: add basic tests for SMTP over SSL...
r29333 $ cd ..