Mercurial: tests/dummysmtpd.py annotate

annotate tests/dummysmtpd.py @ 29555:121d11814c62

hgweb: use sslutil.wrapserversocket() This patch transitions the built-in HTTPS server to use sslutil for creating the server socket. As part of this transition, we implement developer-only config options to control CA loading and whether to require client certificates. This eliminates the need for the custom extension in test-https.t to define these. There is a slight change in behavior with regards to protocol selection. Before, we would always use the TLS 1.0 constant to define the protocol version. This would *only* use TLS 1.0. sslutil defaults to TLS 1.0+. So this patch improves the security of `hg serve` out of the box by allowing it to use TLS 1.1 and 1.2 (if available).

author	Gregory Szorc <gregory.szorc@gmail.com>
date	Tue, 12 Jul 2016 23:12:03 -0700
parents	2bb0ddd8267b
children	1b8b6adb2365

rev	line source
29332 2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	1 #!/usr/bin/env python
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	2
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	3 """dummy SMTP server for use in tests"""
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	4
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	5 from __future__ import absolute_import
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	6
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	7 import asyncore
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	8 import optparse
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	9 import smtpd
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	10 import ssl
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	11 import sys
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	12
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	13 from mercurial import (
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	14 cmdutil,
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	15 )
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	16
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	17 def log(msg):
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	18 sys.stdout.write(msg)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	19 sys.stdout.flush()
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	20
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	21 class dummysmtpserver(smtpd.SMTPServer):
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	22 def __init__(self, localaddr):
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	23 smtpd.SMTPServer.__init__(self, localaddr, remoteaddr=None)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	24
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	25 def process_message(self, peer, mailfrom, rcpttos, data):
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	26 log('%s from=%s to=%s\n' % (peer[0], mailfrom, ', '.join(rcpttos)))
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	27
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	28 class dummysmtpsecureserver(dummysmtpserver):
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	29 def __init__(self, localaddr, certfile):
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	30 dummysmtpserver.__init__(self, localaddr)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	31 self._certfile = certfile
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	32
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	33 def handle_accept(self):
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	34 pair = self.accept()
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	35 if not pair:
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	36 return
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	37 conn, addr = pair
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	38 try:
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	39 # wrap_socket() would block, but we don't care
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	40 conn = ssl.wrap_socket(conn, server_side=True,
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	41 certfile=self._certfile,
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	42 ssl_version=ssl.PROTOCOL_TLSv1)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	43 except ssl.SSLError:
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	44 log('%s ssl error\n' % addr[0])
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	45 conn.close()
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	46 return
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	47 smtpd.SMTPChannel(self, conn, addr)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	48
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	49 def run():
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	50 try:
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	51 asyncore.loop()
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	52 except KeyboardInterrupt:
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	53 pass
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	54
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	55 def main():
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	56 op = optparse.OptionParser()
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	57 op.add_option('-d', '--daemon', action='store_true')
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	58 op.add_option('--daemon-postexec', action='append')
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	59 op.add_option('-p', '--port', type=int, default=8025)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	60 op.add_option('-a', '--address', default='localhost')
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	61 op.add_option('--pid-file', metavar='FILE')
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	62 op.add_option('--tls', choices=['none', 'smtps'], default='none')
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	63 op.add_option('--certificate', metavar='FILE')
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	64
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	65 opts, args = op.parse_args()
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	66 if opts.tls == 'smtps' and not opts.certificate:
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	67 op.error('--certificate must be specified')
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	68
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	69 addr = (opts.address, opts.port)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	70 def init():
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	71 if opts.tls == 'none':
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	72 dummysmtpserver(addr)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	73 else:
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	74 dummysmtpsecureserver(addr, opts.certificate)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	75 log('listening at %s:%d\n' % addr)
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	76
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	77 cmdutil.service(vars(opts), initfn=init, runfn=run,
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	78 runargs=[sys.executable, __file__] + sys.argv[1:])
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	79
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	80 if __name__ == '__main__':
2bb0ddd8267b tests: add dummy SMTP daemon for SSL tests Yuya Nishihara <yuya@tcha.org> parents: diff changeset	81 main()

Mercurial > hg

annotate tests/dummysmtpd.py @ 29555:121d11814c62