upstream/mercurial-mirror Files · tests/test-url.py

tests: unify test-casefolding

Mads Kiilerich - - Load All Authors

File last commit:

r12592:f2937d64 stable


                r12603:f1646efc

default

Download file

             test-url.py
        
                    41 lines
            
             | 1.7 KiB
            
                | text/x-python
            
             |
                PythonLexer
            
             / tests / test-url.py
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        Mads Kiilerich
    
url: verify correctness of https server certificates (issue2407)...

              r12592
            
      #!/usr/bin/env python

      def check(a, b):

          if a != b:

              print (a, b)

      from mercurial.url import _verifycert

      # Test non-wildcard certificates        

      check(_verifycert({'subject': ((('commonName', 'example.com'),),)}, 'example.com'),

          None)

      check(_verifycert({'subject': ((('commonName', 'example.com'),),)}, 'www.example.com'),

          'certificate is for example.com')

      check(_verifycert({'subject': ((('commonName', 'www.example.com'),),)}, 'example.com'),

          'certificate is for www.example.com')

      # Test wildcard certificates

      check(_verifycert({'subject': ((('commonName', '*.example.com'),),)}, 'www.example.com'),

          None)

      check(_verifycert({'subject': ((('commonName', '*.example.com'),),)}, 'example.com'),

          'certificate is for *.example.com')

      check(_verifycert({'subject': ((('commonName', '*.example.com'),),)}, 'w.w.example.com'),

          'certificate is for *.example.com')

      # Avoid some pitfalls

      check(_verifycert({'subject': ((('commonName', '*.foo'),),)}, 'foo'),

          'certificate is for *.foo')

      check(_verifycert({'subject': ((('commonName', '*o'),),)}, 'foo'),

          'certificate is for *o')

      import time

      lastyear = time.gmtime().tm_year - 1

      nextyear = time.gmtime().tm_year + 1

      check(_verifycert({'notAfter': 'May  9 00:00:00 %s GMT' % lastyear}, 'example.com'),

          'certificate expired May  9 00:00:00 %s GMT' % lastyear)

      check(_verifycert({'notBefore': 'May  9 00:00:00 %s GMT' % nextyear}, 'example.com'),

          'certificate not valid before May  9 00:00:00 %s GMT' % nextyear)

      check(_verifycert({'notAfter': 'Sep 29 15:29:48 %s GMT' % nextyear, 'subject': ()}, 'example.com'),

          'no commonName found in certificate')

      check(_verifycert(None, 'example.com'),

          'no certificate received')

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

Mads Kiilerich url: verify correctness of https server certificates (issue2407)...	r12592	#!/usr/bin/env python

		def check(a, b):
		if a != b:
		print (a, b)

		from mercurial.url import _verifycert

		# Test non-wildcard certificates
		check(_verifycert({'subject': ((('commonName', 'example.com'),),)}, 'example.com'),
		None)
		check(_verifycert({'subject': ((('commonName', 'example.com'),),)}, 'www.example.com'),
		'certificate is for example.com')
		check(_verifycert({'subject': ((('commonName', 'www.example.com'),),)}, 'example.com'),
		'certificate is for www.example.com')

		# Test wildcard certificates
		check(_verifycert({'subject': ((('commonName', '*.example.com'),),)}, 'www.example.com'),
		None)
		check(_verifycert({'subject': ((('commonName', '*.example.com'),),)}, 'example.com'),
		'certificate is for *.example.com')
		check(_verifycert({'subject': ((('commonName', '*.example.com'),),)}, 'w.w.example.com'),
		'certificate is for *.example.com')

		# Avoid some pitfalls
		check(_verifycert({'subject': ((('commonName', '*.foo'),),)}, 'foo'),
		'certificate is for *.foo')
		check(_verifycert({'subject': ((('commonName', '*o'),),)}, 'foo'),
		'certificate is for *o')

		import time
		lastyear = time.gmtime().tm_year - 1
		nextyear = time.gmtime().tm_year + 1
		check(_verifycert({'notAfter': 'May 9 00:00:00 %s GMT' % lastyear}, 'example.com'),
		'certificate expired May 9 00:00:00 %s GMT' % lastyear)
		check(_verifycert({'notBefore': 'May 9 00:00:00 %s GMT' % nextyear}, 'example.com'),
		'certificate not valid before May 9 00:00:00 %s GMT' % nextyear)
		check(_verifycert({'notAfter': 'Sep 29 15:29:48 %s GMT' % nextyear, 'subject': ()}, 'example.com'),
		'no commonName found in certificate')
		check(_verifycert(None, 'example.com'),
		'no certificate received')