def test_unwrap_existing_socket(self):
"""
Validates we can break up the TLS layer
A full request/response is sent over TLS, and later over plain text.
"""
def shutdown_handler(listener):
sock = listener.accept()[0]
ssl_sock = self.server_context.wrap_socket(sock, server_side=True)
request = consume_socket(ssl_sock)
validate_request(request)
ssl_sock.sendall(sample_response())
unwrapped_sock = ssl_sock.unwrap()
request = consume_socket(unwrapped_sock)
validate_request(request)
unwrapped_sock.sendall(sample_response())
self.start_dummy_server(shutdown_handler)
sock = socket.create_connection((self.host, self.port))
ssock = SSLTransport(sock,
self.client_context,
server_hostname="localhost")
# request/response over TLS.
ssock.sendall(sample_request())
response = consume_socket(ssock)
validate_response(response)
# request/response over plaintext after unwrap.
ssock.unwrap()
sock.sendall(sample_request())
response = consume_socket(sock)
validate_response(response)
def test_various_flags_errors(self) -> None:
server_hostname = "example-domain.com"
sock = mock.Mock()
context = mock.create_autospec(ssl_.SSLContext)
ssl_transport = SSLTransport(
sock, context, server_hostname=server_hostname, suppress_ragged_eofs=False
)
with pytest.raises(ValueError):
ssl_transport.recv(flags=1)
with pytest.raises(ValueError):
ssl_transport.recv_into(bytearray(), flags=1)
with pytest.raises(ValueError):
ssl_transport.sendall(bytearray(), flags=1)
with pytest.raises(ValueError):
ssl_transport.send(None, flags=1) # type: ignore[arg-type]