async def test_start_tls_on_socket_stream(https_server):
"""
See that the backend can make a connection without TLS then
start TLS on an existing connection.
"""
backend = AsyncioBackend()
ctx = SSLConfig().load_ssl_context_no_verify(HTTPVersionConfig())
timeout = TimeoutConfig(5)
stream = await backend.open_tcp_stream(
https_server.url.host, https_server.url.port, None, timeout
)
try:
assert stream.is_connection_dropped() is False
assert stream.stream_writer.get_extra_info("cipher", default=None) is None
stream = await backend.start_tls(stream, https_server.url.host, ctx, timeout)
assert stream.is_connection_dropped() is False
assert stream.stream_writer.get_extra_info("cipher", default=None) is not None
await stream.write(b"GET / HTTP/1.1\r\n\r\n")
assert (await stream.read(8192, timeout)).startswith(b"HTTP/1.1 200 OK\r\n")
finally:
await stream.close()
async def test_start_tls_on_socket_stream(https_server, backend, get_cipher):
"""
See that the concurrency backend can make a connection without TLS then
start TLS on an existing connection.
"""
if isinstance(backend, AsyncioBackend) and sys.version_info < (3, 7):
pytest.xfail(
reason="Requires Python 3.7+ for AbstractEventLoop.start_tls()")
ctx = SSLConfig().load_ssl_context_no_verify(HTTPVersionConfig())
timeout = TimeoutConfig(5)
stream = await backend.open_tcp_stream(https_server.url.host,
https_server.url.port, None,
timeout)
try:
assert stream.is_connection_dropped() is False
assert get_cipher(stream) is None
stream = await stream.start_tls(https_server.url.host, ctx, timeout)
assert stream.is_connection_dropped() is False
assert get_cipher(stream) is not None
await stream.write(b"GET / HTTP/1.1\r\n\r\n")
assert (await stream.read(8192,
timeout)).startswith(b"HTTP/1.1 200 OK\r\n")
finally:
await stream.close()
async def test_start_tls_on_socket_stream(https_server, https_uds_server,
backend, get_cipher, use_uds):
"""
See that the concurrency backend can make a connection without TLS then
start TLS on an existing connection.
"""
ctx = SSLConfig().load_ssl_context_no_verify(HTTPVersionConfig())
timeout = TimeoutConfig(5)
if use_uds:
assert https_uds_server.config.uds is not None
stream = await backend.open_uds_stream(https_uds_server.config.uds,
https_uds_server.url.host, None,
timeout)
else:
stream = await backend.open_tcp_stream(https_server.url.host,
https_server.url.port, None,
timeout)
try:
assert stream.is_connection_dropped() is False
assert get_cipher(stream) is None
stream = await stream.start_tls(https_server.url.host, ctx, timeout)
assert stream.is_connection_dropped() is False
assert get_cipher(stream) is not None
await stream.write(b"GET / HTTP/1.1\r\n\r\n")
# stream.read() only gives us *up to* as much data as we ask for. In order to
# cleanly close the stream, we must read until the end of the HTTP response.
read = b""
ended = False
for _ in range(5): # Try read some (not too large) number of times...
read += await stream.read(8192, timeout)
# We know we're at the end of the response when we've received the body plus
# the terminating CRLFs.
if b"Hello, world!" in read and read.endswith(b"\r\n\r\n"):
ended = True
break
assert ended
assert read.startswith(b"HTTP/1.1 200 OK\r\n")
finally:
await stream.close()