1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
|
#! /usr/bin/env python
# -*- coding: utf-8 -*-
# vi:ts=4:et
import pycurl
import unittest
from . import appmanager
from . import util
setup_module, teardown_module = appmanager.setup(('app', 8383, dict(ssl=True)))
class CertinfoTest(unittest.TestCase):
def setUp(self):
self.curl = util.DefaultCurlLocalhost(8383)
def tearDown(self):
self.curl.close()
# CURLOPT_CERTINFO was introduced in libcurl-7.19.1
@util.min_libcurl(7, 19, 1)
def test_certinfo_option(self):
assert hasattr(pycurl, 'OPT_CERTINFO')
# CURLOPT_CERTINFO was introduced in libcurl-7.19.1
@util.min_libcurl(7, 19, 1)
@util.only_ssl
def test_request_without_certinfo(self):
self.curl.setopt(pycurl.URL, 'https://localhost:8383/success')
sio = util.BytesIO()
self.curl.setopt(pycurl.WRITEFUNCTION, sio.write)
# self signed certificate
self.curl.setopt(pycurl.SSL_VERIFYPEER, 0)
self.curl.perform()
assert sio.getvalue().decode() == 'success'
certinfo = self.curl.getinfo(pycurl.INFO_CERTINFO)
self.assertEqual([], certinfo)
# CURLOPT_CERTINFO was introduced in libcurl-7.19.1
@util.min_libcurl(7, 19, 1)
@util.only_ssl
def test_request_with_certinfo(self):
# CURLOPT_CERTINFO only works with OpenSSL
if 'openssl' not in pycurl.version.lower():
raise unittest.SkipTest('libcurl does not use openssl')
self.curl.setopt(pycurl.URL, 'https://localhost:8383/success')
sio = util.BytesIO()
self.curl.setopt(pycurl.WRITEFUNCTION, sio.write)
self.curl.setopt(pycurl.OPT_CERTINFO, 1)
# self signed certificate
self.curl.setopt(pycurl.SSL_VERIFYPEER, 0)
self.curl.perform()
assert sio.getvalue().decode() == 'success'
certinfo = self.curl.getinfo(pycurl.INFO_CERTINFO)
# self signed certificate, one certificate in chain
assert len(certinfo) == 1
certinfo = certinfo[0]
# convert to a dictionary
certinfo_dict = {}
for entry in certinfo:
certinfo_dict[entry[0]] = entry[1]
assert util.u('Subject') in certinfo_dict
assert util.u('PycURL test suite') in certinfo_dict[util.u('Subject')]
# CURLOPT_CERTINFO was introduced in libcurl-7.19.1
@util.min_libcurl(7, 19, 1)
@util.only_ssl
def test_getinfo_raw_certinfo(self):
# CURLOPT_CERTINFO only works with OpenSSL
if 'openssl' not in pycurl.version.lower():
raise unittest.SkipTest('libcurl does not use openssl')
self.curl.setopt(pycurl.URL, 'https://localhost:8383/success')
sio = util.BytesIO()
self.curl.setopt(pycurl.WRITEFUNCTION, sio.write)
self.curl.setopt(pycurl.OPT_CERTINFO, 1)
# self signed certificate
self.curl.setopt(pycurl.SSL_VERIFYPEER, 0)
self.curl.perform()
assert sio.getvalue().decode() == 'success'
certinfo = self.curl.getinfo_raw(pycurl.INFO_CERTINFO)
# self signed certificate, one certificate in chain
assert len(certinfo) == 1
certinfo = certinfo[0]
# convert to a dictionary
certinfo_dict = {}
for entry in certinfo:
certinfo_dict[entry[0]] = entry[1]
assert util.b('Subject') in certinfo_dict
assert util.b('PycURL test suite') in certinfo_dict[util.b('Subject')]
|
