1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
|
# -*- coding: utf-8 -*-
#
# Copyright (c) ZeroC, Inc. All rights reserved.
#
import os
class ConfigurationTestCase(ClientServerTestCase):
def setupServerSide(self, current):
# Nothing to do if we're not running this test with the C++ mapping
if not isinstance(self.getMapping(), CppMapping):
return
certsPath = os.path.abspath(os.path.join(current.testsuite.getPath(), "..", "certs"))
self.crlServer = None
self.ocspServer = None
if isinstance(platform, Windows) or isinstance(platform, Darwin):
from scripts.tests.IceSSL import revocationutil
self.crlServer = revocationutil.createCRLServer('127.0.0.1', 20001, certsPath)
self.crlServer.start()
self.ocspServer = revocationutil.createOCSPServer('127.0.0.1', 20002, certsPath)
self.ocspServer.start()
if isinstance(platform, Darwin) and current.config.buildPlatform == "macosx":
keychainPath = os.path.join(certsPath, "Find.keychain")
os.system("mkdir -p {0}".format(os.path.join(certsPath, "keychain")))
os.system("security create-keychain -p password %s" % keychainPath)
for cert in ["s_rsa_ca1.p12", "c_rsa_ca1.p12"]:
os.system("security import %s -f pkcs12 -A -P password -k %s" % (os.path.join(certsPath, cert), keychainPath))
elif current.config.openssl or platform.hasOpenSSL():
if isinstance(platform, Windows):
conf = os.path.join(current.testsuite.getPath(), "openssl.cnf")
os.environ["OPENSSL_CONF"] = conf
with open(conf, "w") as file:
file.write("# Dummy openssl configuration file to avoid warnings with Windows testing")
#
# Create copies of the CA certificates named after the subject
# hash. This is used by the tests to find the CA certificates in
# the IceSSL.DefaultDir
#
for c in ["cacert1.pem", "cacert2.pem"]:
pem = os.path.join(certsPath, c)
out = run("{openssl} x509 -subject_hash -noout -in {pem}".format(pem=pem, openssl=self.getOpenSSLCommand(current)))
shutil.copyfile(pem, "{dir}/{out}.0".format(dir=certsPath, out=out))
def teardownServerSide(self, current, success):
# Nothing to do if we're not running this test with the C++ mapping
if not isinstance(self.getMapping(), CppMapping):
return
if self.crlServer:
self.crlServer.shutdown()
if self.ocspServer:
self.ocspServer.shutdown()
certsPath = os.path.abspath(os.path.join(current.testsuite.getPath(), "..", "certs"))
if isinstance(platform, Darwin) and current.config.buildPlatform == "macosx":
os.system("rm -rf {0} {1}".format(os.path.join(certsPath, "keychain"), os.path.join(certsPath, "Find.keychain")))
elif current.config.openssl or platform.hasOpenSSL():
for c in ["cacert1.pem", "cacert2.pem"]:
pem = os.path.join(certsPath, c)
out = run("{openssl} x509 -subject_hash -noout -in {pem}".format(pem=pem, openssl=self.getOpenSSLCommand(current)))
os.remove("{dir}/{out}.0".format(out=out, dir=certsPath))
if isinstance(platform, Windows):
os.remove(os.path.join(current.testsuite.getPath(), "openssl.cnf"))
del os.environ["OPENSSL_CONF"]
def getOpenSSLCommand(self, current):
if isinstance(platform, Windows):
return os.path.join(current.testsuite.getPath(), "..", "..", "..", "msbuild", "packages",
"zeroc.openssl.v140.1.1.1.3", "build", "native", "bin", "Win32", "Release",
"openssl.exe")
else:
return "openssl"
class IceSSLConfigurationClient(Client):
def getExe(self, current):
if isinstance(platform, Windows) and current.config.openssl:
return "clientopenssl"
return Client.getExe(self, current)
class IceSSLConfigurationServer(Server):
def getExe(self, current):
if isinstance(platform, Windows) and current.config.openssl:
return "serveropenssl"
return Server.getExe(self, current)
TestSuite(__name__, [
ConfigurationTestCase(client=IceSSLConfigurationClient(args=['"{testdir}"']),
server=IceSSLConfigurationServer(args=['"{testdir}"']))
], multihost=False)
|
