upstream/mercurial-mirror Files · tests/test-push-http.t

debug: add a method to check the state of, and built an SSL cert chain...

debug: add a method to check the state of, and built an SSL cert chain This is only useful on Windows, and avoids the need to use Internet Explorer to build the certificate chain. I can see this being extended in the future to print information about the certificate(s) to help debug issues on any platform. Maybe even perform some of the python checks listed on the secure connections wiki page. But for now, all I need is 1) a command that can be invoked in a setup script to ensure the certificate is installed, and 2) a command that the user can run if/when a certificate changes in the future. It would have been nice to leverage the sslutil library to pick up host specific settings, but attempting to use sslutil.wrapsocket() failed the 'not sslsocket.cipher()' check in it and aborted. The output is a little more chatty than some commands, but I've seen the update take 10+ seconds, and this is only a debug command.

Augie Fackler - - Load All Authors

File last commit:

r31815:7937dabb default


                r33493:9a9f9521

default

Download file

             test-push-http.t
        
                    175 lines
            
             | 5.9 KiB
            
                | text/troff
            
             |
                Tads3Lexer
            
             / tests / test-push-http.t
          
                    History
                
                 |
                  Annotation
                 | Raw
                 |Copy content
                 |Copy permalink

      #require killdaemons

        $ hg init test

        $ cd test

        $ echo a > a

        $ hg ci -Ama

        adding a

        $ cd ..

        $ hg clone test test2

        updating to branch default

        1 files updated, 0 files merged, 0 files removed, 0 files unresolved

        $ cd test2

        $ echo a >> a

        $ hg ci -mb

        $ req() {

        >     hg serve -p $HGPORT -d --pid-file=hg.pid -E errors.log

        >     cat hg.pid >> $DAEMON_PIDS

        >     hg --cwd ../test2 push http://localhost:$HGPORT/

        >     exitstatus=$?

        >     killdaemons.py

        >     echo % serve errors

        >     cat errors.log

        >     return $exitstatus

        > }

        $ cd ../test

      expect ssl error

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        abort: HTTP Error 403: ssl required

        % serve errors

        [255]

      expect authorization error

        $ echo '[web]' > .hg/hgrc

        $ echo 'push_ssl = false' >> .hg/hgrc

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        abort: authorization failed

        % serve errors

        [255]

      expect authorization error: must have authorized user

        $ echo 'allow_push = unperson' >> .hg/hgrc

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        abort: authorization failed

        % serve errors

        [255]

      expect success

        $ cat >> .hg/hgrc <<EOF

        > allow_push = *

        > [hooks]

        > changegroup = sh -c "printenv.py changegroup 0"

        > pushkey = sh -c "printenv.py pushkey 0"

        > EOF

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        remote: adding changesets

        remote: adding manifests

        remote: adding file changes

        remote: added 1 changesets with 1 changes to 1 files

        remote: pushkey hook: HG_HOOKNAME=pushkey HG_HOOKTYPE=pushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_OLD=1 HG_RET=1

        remote: changegroup hook: HG_BUNDLE2=1 HG_HOOKNAME=changegroup HG_HOOKTYPE=changegroup HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)

        % serve errors

        $ hg rollback

        repository tip rolled back to revision 0 (undo serve)

      expect success, server lacks the httpheader capability

        $ CAP=httpheader

        $ . "$TESTDIR/notcapable"

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        remote: adding changesets

        remote: adding manifests

        remote: adding file changes

        remote: added 1 changesets with 1 changes to 1 files

        remote: pushkey hook: HG_HOOKNAME=pushkey HG_HOOKTYPE=pushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_OLD=1 HG_RET=1

        remote: changegroup hook: HG_BUNDLE2=1 HG_HOOKNAME=changegroup HG_HOOKTYPE=changegroup HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)

        % serve errors

        $ hg rollback

        repository tip rolled back to revision 0 (undo serve)

      expect success, server lacks the unbundlehash capability

        $ CAP=unbundlehash

        $ . "$TESTDIR/notcapable"

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        remote: adding changesets

        remote: adding manifests

        remote: adding file changes

        remote: added 1 changesets with 1 changes to 1 files

        remote: pushkey hook: HG_HOOKNAME=pushkey HG_HOOKTYPE=pushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_OLD=1 HG_RET=1

        remote: changegroup hook: HG_BUNDLE2=1 HG_HOOKNAME=changegroup HG_HOOKTYPE=changegroup HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)

        % serve errors

        $ hg rollback

        repository tip rolled back to revision 0 (undo serve)

      expect push success, phase change failure

        $ cat > .hg/hgrc <<EOF

        > [web]

        > push_ssl = false

        > allow_push = *

        > [hooks]

        > prepushkey = sh -c "printenv.py prepushkey 1"

        > EOF

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        remote: adding changesets

        remote: adding manifests

        remote: adding file changes

        remote: added 1 changesets with 1 changes to 1 files

        remote: prepushkey hook: HG_BUNDLE2=1 HG_HOOKNAME=prepushkey HG_HOOKTYPE=prepushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_OLD=1 HG_PENDING=$TESTTMP/test HG_PHASES_MOVED=1 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)

        remote: pushkey-abort: prepushkey hook exited with status 1

        remote: transaction abort!

        remote: rollback completed

        abort: updating ba677d0156c1 to public failed

        % serve errors

        [255]

      expect phase change success

        $ cat >> .hg/hgrc <<EOF

        > prepushkey = sh -c "printenv.py prepushkey 0"

        > EOF

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        remote: adding changesets

        remote: adding manifests

        remote: adding file changes

        remote: added 1 changesets with 1 changes to 1 files

        remote: prepushkey hook: HG_BUNDLE2=1 HG_HOOKNAME=prepushkey HG_HOOKTYPE=prepushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_OLD=1 HG_PENDING=$TESTTMP/test HG_PHASES_MOVED=1 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)

        % serve errors

        $ hg rollback

        repository tip rolled back to revision 0 (undo serve)

      expect authorization error: all users denied

        $ echo '[web]' > .hg/hgrc

        $ echo 'push_ssl = false' >> .hg/hgrc

        $ echo 'deny_push = *' >> .hg/hgrc

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        abort: authorization failed

        % serve errors

        [255]

      expect authorization error: some users denied, users must be authenticated

        $ echo 'deny_push = unperson' >> .hg/hgrc

        $ req

        pushing to http://localhost:$HGPORT/

        searching for changes

        abort: authorization failed

        % serve errors

        [255]

        $ cd ..

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

				#require killdaemons

				$ hg init test
				$ cd test
				$ echo a > a
				$ hg ci -Ama
				adding a
				$ cd ..
				$ hg clone test test2
				updating to branch default
				1 files updated, 0 files merged, 0 files removed, 0 files unresolved
				$ cd test2
				$ echo a >> a
				$ hg ci -mb
				$ req() {
				> hg serve -p $HGPORT -d --pid-file=hg.pid -E errors.log
				> cat hg.pid >> $DAEMON_PIDS
				> hg --cwd ../test2 push http://localhost:$HGPORT/
				> exitstatus=$?
				> killdaemons.py
				> echo % serve errors
				> cat errors.log
				> return $exitstatus
				> }
				$ cd ../test

				expect ssl error

				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				abort: HTTP Error 403: ssl required
				% serve errors
				[255]

				expect authorization error

				$ echo '[web]' > .hg/hgrc
				$ echo 'push_ssl = false' >> .hg/hgrc
				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				abort: authorization failed
				% serve errors
				[255]

				expect authorization error: must have authorized user

				$ echo 'allow_push = unperson' >> .hg/hgrc
				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				abort: authorization failed
				% serve errors
				[255]

				expect success

				$ cat >> .hg/hgrc <<EOF
				> allow_push = *
				> [hooks]
				> changegroup = sh -c "printenv.py changegroup 0"
				> pushkey = sh -c "printenv.py pushkey 0"
				> EOF
				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				remote: adding changesets
				remote: adding manifests
				remote: adding file changes
				remote: added 1 changesets with 1 changes to 1 files
				remote: pushkey hook: HG_HOOKNAME=pushkey HG_HOOKTYPE=pushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_OLD=1 HG_RET=1
				remote: changegroup hook: HG_BUNDLE2=1 HG_HOOKNAME=changegroup HG_HOOKTYPE=changegroup HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)
				% serve errors
				$ hg rollback
				repository tip rolled back to revision 0 (undo serve)

				expect success, server lacks the httpheader capability

				$ CAP=httpheader
				$ . "$TESTDIR/notcapable"
				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				remote: adding changesets
				remote: adding manifests
				remote: adding file changes
				remote: added 1 changesets with 1 changes to 1 files
				remote: pushkey hook: HG_HOOKNAME=pushkey HG_HOOKTYPE=pushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_OLD=1 HG_RET=1
				remote: changegroup hook: HG_BUNDLE2=1 HG_HOOKNAME=changegroup HG_HOOKTYPE=changegroup HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)
				% serve errors
				$ hg rollback
				repository tip rolled back to revision 0 (undo serve)

				expect success, server lacks the unbundlehash capability

				$ CAP=unbundlehash
				$ . "$TESTDIR/notcapable"
				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				remote: adding changesets
				remote: adding manifests
				remote: adding file changes
				remote: added 1 changesets with 1 changes to 1 files
				remote: pushkey hook: HG_HOOKNAME=pushkey HG_HOOKTYPE=pushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_OLD=1 HG_RET=1
				remote: changegroup hook: HG_BUNDLE2=1 HG_HOOKNAME=changegroup HG_HOOKTYPE=changegroup HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)
				% serve errors
				$ hg rollback
				repository tip rolled back to revision 0 (undo serve)

				expect push success, phase change failure

				$ cat > .hg/hgrc <<EOF
				> [web]
				> push_ssl = false
				> allow_push = *
				> [hooks]
				> prepushkey = sh -c "printenv.py prepushkey 1"
				> EOF
				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				remote: adding changesets
				remote: adding manifests
				remote: adding file changes
				remote: added 1 changesets with 1 changes to 1 files
				remote: prepushkey hook: HG_BUNDLE2=1 HG_HOOKNAME=prepushkey HG_HOOKTYPE=prepushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_OLD=1 HG_PENDING=$TESTTMP/test HG_PHASES_MOVED=1 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)
				remote: pushkey-abort: prepushkey hook exited with status 1
				remote: transaction abort!
				remote: rollback completed
				abort: updating ba677d0156c1 to public failed
				% serve errors
				[255]

				expect phase change success

				$ cat >> .hg/hgrc <<EOF
				> prepushkey = sh -c "printenv.py prepushkey 0"
				> EOF
				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				remote: adding changesets
				remote: adding manifests
				remote: adding file changes
				remote: added 1 changesets with 1 changes to 1 files
				remote: prepushkey hook: HG_BUNDLE2=1 HG_HOOKNAME=prepushkey HG_HOOKTYPE=prepushkey HG_KEY=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NAMESPACE=phases HG_NEW=0 HG_NODE=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_NODE_LAST=ba677d0156c1196c1a699fa53f390dcfc3ce3872 HG_OLD=1 HG_PENDING=$TESTTMP/test HG_PHASES_MOVED=1 HG_SOURCE=serve HG_TXNID=TXN:$ID$ HG_URL=remote:http:$LOCALIP: (glob)
				% serve errors
				$ hg rollback
				repository tip rolled back to revision 0 (undo serve)

				expect authorization error: all users denied

				$ echo '[web]' > .hg/hgrc
				$ echo 'push_ssl = false' >> .hg/hgrc
				$ echo 'deny_push = *' >> .hg/hgrc
				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				abort: authorization failed
				% serve errors
				[255]

				expect authorization error: some users denied, users must be authenticated

				$ echo 'deny_push = unperson' >> .hg/hgrc
				$ req
				pushing to http://localhost:$HGPORT/
				searching for changes
				abort: authorization failed
				% serve errors
				[255]

				$ cd ..