Mercurial: tests/test-patchbomb-tls.t@5b71a8d7f7ff (annotated)

29333 cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	1	#require serve ssl
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	2
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	3	Set up SMTP server:
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	4
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	5	$ CERTSDIR="$TESTDIR/sslcerts"
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	6	$ cat "$CERTSDIR/priv.pem" "$CERTSDIR/pub.pem" >> server.pem
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	7
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	8	$ python "$TESTDIR/dummysmtpd.py" -p $HGPORT --pid-file a.pid -d \
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	9	> --tls smtps --certificate `pwd`/server.pem
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	10	listening at localhost:$HGPORT
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	11	$ cat a.pid >> $DAEMON_PIDS
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	12
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	13	Ensure hg email output is sent to stdout:
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	14
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	15	$ unset PAGER
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	16
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	17	Set up repository:
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	18
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	19	$ hg init t
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	20	$ cd t
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	21	$ cat <<EOF >> .hg/hgrc
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	22	> [extensions]
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	23	> patchbomb =
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	24	> [email]
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	25	> method = smtp
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	26	> [smtp]
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	27	> host = localhost
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	28	> port = $HGPORT
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	29	> tls = smtps
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	30	> EOF
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	31
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	32	$ echo a > a
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	33	$ hg commit -Ama -d '1 0'
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	34	adding a
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	35
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	36	Utility functions:
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	37
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	38	$ DISABLECACERTS=
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	39	$ try () {
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	40	> hg email $DISABLECACERTS -f quux -t foo -c bar -r tip "$@"
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	41	> }
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	42
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	43	Our test cert is not signed by a trusted CA. It should fail to verify if
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	44	we are able to load CA certs:
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	45
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	46	#if defaultcacerts
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	47	$ try
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	48	this patch series consists of 1 patches.
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	49
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	50
29449 5b71a8d7f7ff sslutil: emit warning when no CA certificates loaded Gregory Szorc <gregory.szorc@gmail.com> parents: 29411 diff changeset	51	(an attempt was made to load CA certificates but none were loaded; see https://mercurial-scm.org/wiki/SecureConnections for how to configure Mercurial to avoid this error)
29333 cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	52	(?i)abort: .?certificate.verify.failed. (re)
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	53	[255]
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	54	#endif
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	55
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	56	$ DISABLECACERTS="--config devel.disableloaddefaultcerts=true"
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	57
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	58	Without certificates:
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	59
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	60	$ try --debug
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	61	this patch series consists of 1 patches.
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	62
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	63
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	64	(using smtps)
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	65	sending mail: smtp host localhost, port * (glob)
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	66	(verifying remote certificate)
29411 e1778b9c8d53 sslutil: abort when unable to verify peer connection (BC) Gregory Szorc <gregory.szorc@gmail.com> parents: 29333 diff changeset	67	abort: unable to verify security of localhost (no loaded CA certificates); refusing to connect
e1778b9c8d53 sslutil: abort when unable to verify peer connection (BC) Gregory Szorc <gregory.szorc@gmail.com> parents: 29333 diff changeset	68	(see https://mercurial-scm.org/wiki/SecureConnections for how to configure Mercurial to avoid this error or set hostsecurity.localhost:fingerprints=sha256:62:09:97:2f:97:60:e3:65:8f:12:5d:78:9e:35:a1:36:7a:65:4b:0e:9f:ac:db:c3:bc:6e:b6:a3:c0:16:e0:30 to trust this server)
e1778b9c8d53 sslutil: abort when unable to verify peer connection (BC) Gregory Szorc <gregory.szorc@gmail.com> parents: 29333 diff changeset	69	[255]
29333 cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	70
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	71	With global certificates:
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	72
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	73	$ try --debug --config web.cacerts="$CERTSDIR/pub.pem"
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	74	this patch series consists of 1 patches.
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	75
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	76
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	77	(using smtps)
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	78	sending mail: smtp host localhost, port * (glob)
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	79	(verifying remote certificate)
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	80	sending [PATCH] a ...
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	81
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	82	With invalid certificates:
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	83
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	84	$ try --config web.cacerts="$CERTSDIR/pub-other.pem"
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	85	this patch series consists of 1 patches.
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	86
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	87
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	88	(?i)abort: .?certificate.verify.failed. (re)
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	89	[255]
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	90
cdef60d9f442 tests: add basic tests for SMTP over SSL Yuya Nishihara <yuya@tcha.org> parents: diff changeset	91	$ cd ..

author	Gregory Szorc <gregory.szorc@gmail.com>
	Wed, 29 Jun 2016 19:43:27 -0700
changeset 29449	5b71a8d7f7ff
parent 29411	e1778b9c8d53
child 29481	5caa415aa48b
permissions	-rw-r--r--