mosquitto/test/broker/08-ssl-connect-no-auth.py

#!/usr/bin/env python3

# Test whether a valid CONNECT results in the correct CONNACK packet using an SSL connection.

from mosq_test_helper import *

if sys.version < '2.7':
    print("WARNING: SSL not supported on Python 2.6")
    exit(0)

def write_config(filename, port1, port2):
    with open(filename, 'w') as f:
        f.write("port %d\n" % (port2))
        f.write("allow_anonymous true\n")
        f.write("\n")
        f.write("listener %d\n" % (port1))
        f.write("allow_anonymous true\n")
        f.write("cafile ../ssl/all-ca.crt\n")
        f.write("certfile ../ssl/server.crt\n")
        f.write("keyfile ../ssl/server.key\n")

(port1, port2) = mosq_test.get_port(2)
conf_file = os.path.basename(__file__).replace('.py', '.conf')
write_config(conf_file, port1, port2)

rc = 1
keepalive = 10
connect_packet = mosq_test.gen_connect("connect-success-test", keepalive=keepalive)
connack_packet = mosq_test.gen_connack(rc=0)

broker = mosq_test.start_broker(filename=os.path.basename(__file__), port=port2, use_conf=True)

try:
    sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
    context = ssl.create_default_context(ssl.Purpose.SERVER_AUTH, cafile="../ssl/test-root-ca.crt")
    ssock = context.wrap_socket(sock, server_hostname="localhost")
    ssock.settimeout(20)
    ssock.connect(("localhost", port1))

    mosq_test.do_send_receive(ssock, connect_packet, connack_packet, "connack")

    rc = 0

    ssock.close()
except mosq_test.TestError:
    pass
finally:
    os.remove(conf_file)
    broker.terminate()
    broker.wait()
    (stdo, stde) = broker.communicate()
    if rc:
        print(stde.decode('utf-8'))

exit(rc)
Convert tests to Python 3 2019-03-28 21:32:12 +00:00			`#!/usr/bin/env python3`
Initial contribution. 2014-05-07 22:27:00 +00:00
			`# Test whether a valid CONNECT results in the correct CONNACK packet using an SSL connection.`

Use test helper for importing modules. 2018-11-27 11:26:21 +00:00			`from mosq_test_helper import *`
Initial contribution. 2014-05-07 22:27:00 +00:00
			`if sys.version < '2.7':`
			`print("WARNING: SSL not supported on Python 2.6")`
			`exit(0)`

Experimental parallel testing for broker. 2018-04-15 22:25:04 +00:00			`def write_config(filename, port1, port2):`
			`with open(filename, 'w') as f:`
			`f.write("port %d\n" % (port2))`
Breaking: allow_anonymous defaults to false. 2020-09-16 13:33:32 +00:00			`f.write("allow_anonymous true\n")`
Experimental parallel testing for broker. 2018-04-15 22:25:04 +00:00			`f.write("\n")`
			`f.write("listener %d\n" % (port1))`
Breaking: allow_anonymous defaults to false. 2020-09-16 13:33:32 +00:00			`f.write("allow_anonymous true\n")`
Experimental parallel testing for broker. 2018-04-15 22:25:04 +00:00			`f.write("cafile ../ssl/all-ca.crt\n")`
			`f.write("certfile ../ssl/server.crt\n")`
			`f.write("keyfile ../ssl/server.key\n")`

			`(port1, port2) = mosq_test.get_port(2)`
			`conf_file = os.path.basename(__file__).replace('.py', '.conf')`
			`write_config(conf_file, port1, port2)`

Initial contribution. 2014-05-07 22:27:00 +00:00			`rc = 1`
			`keepalive = 10`
			`connect_packet = mosq_test.gen_connect("connect-success-test", keepalive=keepalive)`
			`connack_packet = mosq_test.gen_connack(rc=0)`

Experimental parallel testing for broker. 2018-04-15 22:25:04 +00:00			`broker = mosq_test.start_broker(filename=os.path.basename(__file__), port=port2, use_conf=True)`
Initial contribution. 2014-05-07 22:27:00 +00:00
			`try:`
			`sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM)`
tests: replace use of ssl.wrap_socket that throws warnings in Python 3.10 The function ssl.wrap_socket() is deprecated starting Python 3.7 because it does not support hostname matching (which is considered insecure). In Python 3.10, the function now throws warnings at runtime, which makes Ubuntu / Debian autopkgtest fail. The function ssl.SSLContext.wrap_socket comes in as the replacement and has support for SNI and hostname matching. Replaced all uses of ssl.wrap_socket() by equivalent using ssl.SSLContext.wrap_socket(). Signed-off-by: Olivier Gayot <olivier.gayot@canonical.com> 2022-02-07 09:29:02 +00:00			`context = ssl.create_default_context(ssl.Purpose.SERVER_AUTH, cafile="../ssl/test-root-ca.crt")`
			`ssock = context.wrap_socket(sock, server_hostname="localhost")`
Initial contribution. 2014-05-07 22:27:00 +00:00			`ssock.settimeout(20)`
Experimental parallel testing for broker. 2018-04-15 22:25:04 +00:00			`ssock.connect(("localhost", port1))`
Initial contribution. 2014-05-07 22:27:00 +00:00
Simplify broker tests with helper function. 2018-08-01 21:51:19 +00:00			`mosq_test.do_send_receive(ssock, connect_packet, connack_packet, "connack")`

			`rc = 0`
Initial contribution. 2014-05-07 22:27:00 +00:00
			`ssock.close()`
Simplify "expect_packet" tests. 2020-08-12 10:06:09 +00:00			`except mosq_test.TestError:`
			`pass`
Initial contribution. 2014-05-07 22:27:00 +00:00			`finally:`
Experimental parallel testing for broker. 2018-04-15 22:25:04 +00:00			`os.remove(conf_file)`
Initial contribution. 2014-05-07 22:27:00 +00:00			`broker.terminate()`
			`broker.wait()`
Experimental parallel testing for broker. 2018-04-15 22:25:04 +00:00			`(stdo, stde) = broker.communicate()`
Initial contribution. 2014-05-07 22:27:00 +00:00			`if rc:`
Fix printing on broker tests. 2019-04-02 13:06:28 +00:00			`print(stde.decode('utf-8'))`
Initial contribution. 2014-05-07 22:27:00 +00:00
			`exit(rc)`