Home Verkennen Help
Inloggen
levovix
/
Nim
spiegel van https://github.com/nim-lang/Nim
Volgen 1
Ster 0
Vork 1
Bestanden Kwesties 0 Wiki
Aftakking: araq-crazy
Aftakkingen Labels
Nim
/
tests
/
untestable
/
thttpclient_ssl_env_var.nim

thttpclient_ssl_env_var.nim 2.4 KB
Permalink Geschiedenis Ruwe

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. #
    2. 

  2. #            Nim - SSL integration tests
    3. 

  3. #        (c) Copyright 2017 Nim contributors
    4. 

  4. #
    5. 

  5. #    See the file "copying.txt", included in this
    6. 

  6. #    distribution, for details about the copyright.
    7. 

  7. #
    8. 

  8. ## Warning: this test performs external networking.
    9. 

  9. ## Compile with:
    10. 

  10. ## ./bin/nim c -d:ssl -p:. tests/untestable/thttpclient_ssl_env_var.nim
    11. 

  11. ##
    12. 

  12. ## Test with:
    13. 

  13. ##  SSL_CERT_FILE=BogusInexistentFileName tests/untestable/thttpclient_ssl_env_var
    14. 

  14. ##  SSL_CERT_DIR=BogusInexistentDirName tests/untestable/thttpclient_ssl_env_var
    15. 

  15. 

  16. import httpclient, unittest, os
    17. 

  17. from net import newSocket, newContext, wrapSocket, connect, close, Port,
    18. 

  18.   CVerifyPeerUseEnvVars
    19. 

  19. from strutils import contains
    20. 

  20. 

  21. const
    22. 

  22.   expired = "https://expired.badssl.com/"
    23. 

  23.   good = "https://google.com/"
    24. 

  24. 

  25. 

  26. suite "SSL certificate check":
    27. 

  27. 

  28.   test "httpclient with inexistent file":
    29. 

  29.     if existsEnv("SSL_CERT_FILE"):
    30. 

  30.       var ctx = newContext(verifyMode=CVerifyPeerUseEnvVars)
    31. 

  31.       var client = newHttpClient(sslContext=ctx)
    32. 

  32.       checkpoint("Client created")
    33. 

  33.       check client.getContent("https://google.com").contains("doctype")
    34. 

  34.       checkpoint("Google ok")
    35. 

  35.       try:
    36. 

  36.         let a = $client.getContent(good)
    37. 

  37.         echo "Connection should have failed"
    38. 

  38.         fail()
    39. 

  39.       except:
    40. 

  40.         echo getCurrentExceptionMsg()
    41. 

  41.         check getCurrentExceptionMsg().contains("certificate verify failed")
    42. 

  42. 

  43.     elif existsEnv("SSL_CERT_DIR"):
    44. 

  44.       try:
    45. 

  45.         var ctx = newContext(verifyMode=CVerifyPeerUseEnvVars)
    46. 

  46.         var client = newHttpClient(sslContext=ctx)
    47. 

  47.         echo "Should have raised 'No SSL/TLS CA certificates found.'"
    48. 

  48.         fail()
    49. 

  49.       except:
    50. 

  50.         check getCurrentExceptionMsg() ==
    51. 

  51.           "No SSL/TLS CA certificates found."
    52. 

  52. 

  53.   test "net socket with inexistent file":
    54. 

  54.     if existsEnv("SSL_CERT_FILE"):
    55. 

  55.       var sock = newSocket()
    56. 

  56.       var ctx = newContext(verifyMode=CVerifyPeerUseEnvVars)
    57. 

  57.       ctx.wrapSocket(sock)
    58. 

  58.       checkpoint("Socket created")
    59. 

  59.       try:
    60. 

  60.         sock.connect("expired.badssl.com", 443.Port)
    61. 

  61.         fail()
    62. 

  62.       except:
    63. 

  63.         sock.close
    64. 

  64.         check getCurrentExceptionMsg().contains("certificate verify failed")
    65. 

  65. 

  66.     elif existsEnv("SSL_CERT_DIR"):
    67. 

  67.       var sock = newSocket()
    68. 

  68.       checkpoint("Socket created")
    69. 

  69.       try:
    70. 

  70.         var ctx = newContext(verifyMode=CVerifyPeerUseEnvVars) # raises here
    71. 

  71.         fail()
    72. 

  72.       except:
    73. 

  73.         check getCurrentExceptionMsg() ==
    74. 

  74.           "No SSL/TLS CA certificates found."
    75. 

  75.