def test_tls_context_less_secure(): tls_cert = create_file('cert.cert') tls_key = create_file('key.key') cfile = create_config(('listen=127.0.0.1:25', 'tls_listen=127.0.0.1:9000', 'tls_cert={}'.format(tls_cert), 'tls_key={}'.format(tls_key), )) conf = Config(cfile).load() conf.args = Args((('less_secure', True), )) with mock.patch('ssl.SSLContext.load_cert_chain'): _context(use_tls=True)
def test_tls_context_dhparams(): tls_cert = create_file('cert.cert') tls_key = create_file('key.key') tls_dhparams = create_file('dhparams.pem') cfile = create_config(('listen=127.0.0.1:25', 'tls_listen=127.0.0.1:9000', 'tls_cert={}'.format(tls_cert), 'tls_key={}'.format(tls_key), 'tls_dhparams={}'.format(tls_dhparams))) conf = Config(cfile).load() conf.args = Args((('less_secure', False), )) with mock.patch('ssl.SSLContext.load_cert_chain'), \ mock.patch('ssl.SSLContext.load_dh_params') as dh: _context(use_tls=True) assert dh.called is True
def test_tls_context_less_secure(): tls_cert = create_file("cert.cert") tls_key = create_file("key.key") cfile = create_config( ( "listen=127.0.0.1:25", "tls_listen=127.0.0.1:9000", "tls_cert={}".format(tls_cert), "tls_key={}".format(tls_key), ) ) conf = Config(cfile).load() conf.args = Args((("less_secure", True),)) with mock.patch("ssl.SSLContext.load_cert_chain"): _context(use_tls=True)
def test_tls_context_dhparams(): tls_cert = create_file("cert.cert") tls_key = create_file("key.key") tls_dhparams = create_file("dhparams.pem") cfile = create_config( ( "listen=127.0.0.1:25", "tls_listen=127.0.0.1:9000", "tls_cert={}".format(tls_cert), "tls_key={}".format(tls_key), "tls_dhparams={}".format(tls_dhparams), ) ) conf = Config(cfile).load() conf.args = Args((("less_secure", False),)) with mock.patch("ssl.SSLContext.load_cert_chain"), mock.patch( "ssl.SSLContext.load_dh_params" ) as dh: _context(use_tls=True) assert dh.called is True
def test_tls_context_no_config(): ctx = _context() assert ctx is None