185 lines
5.8 KiB
Python
185 lines
5.8 KiB
Python
import socket
|
|
import warnings
|
|
from unittest import main
|
|
|
|
import eventlet
|
|
from eventlet import greenio
|
|
try:
|
|
from eventlet.green import ssl
|
|
except ImportError:
|
|
pass
|
|
from tests import (
|
|
LimitedTestCase, certificate_file, private_key_file, check_idle_cpu_usage,
|
|
skip_if_no_ssl
|
|
)
|
|
|
|
|
|
def listen_ssl_socket(address=('127.0.0.1', 0)):
|
|
sock = ssl.wrap_socket(
|
|
socket.socket(), private_key_file, certificate_file, server_side=True)
|
|
sock.bind(address)
|
|
sock.listen(50)
|
|
|
|
return sock
|
|
|
|
|
|
class SSLTest(LimitedTestCase):
|
|
def setUp(self):
|
|
# disabling socket.ssl warnings because we're testing it here
|
|
warnings.filterwarnings(
|
|
action='ignore',
|
|
message='.*socket.ssl.*',
|
|
category=DeprecationWarning)
|
|
|
|
super(SSLTest, self).setUp()
|
|
|
|
@skip_if_no_ssl
|
|
def test_duplex_response(self):
|
|
def serve(listener):
|
|
sock, addr = listener.accept()
|
|
sock.read(8192)
|
|
sock.write(b'response')
|
|
|
|
sock = listen_ssl_socket()
|
|
|
|
server_coro = eventlet.spawn(serve, sock)
|
|
|
|
client = ssl.wrap_socket(
|
|
eventlet.connect(('127.0.0.1', sock.getsockname()[1])))
|
|
client.write(b'line 1\r\nline 2\r\n\r\n')
|
|
self.assertEqual(client.read(8192), b'response')
|
|
server_coro.wait()
|
|
|
|
@skip_if_no_ssl
|
|
def test_ssl_close(self):
|
|
def serve(listener):
|
|
sock, addr = listener.accept()
|
|
sock.read(8192)
|
|
try:
|
|
self.assertEqual(b"", sock.read(8192))
|
|
except greenio.SSL.ZeroReturnError:
|
|
pass
|
|
|
|
sock = listen_ssl_socket()
|
|
|
|
server_coro = eventlet.spawn(serve, sock)
|
|
|
|
raw_client = eventlet.connect(('127.0.0.1', sock.getsockname()[1]))
|
|
client = ssl.wrap_socket(raw_client)
|
|
client.write(b'X')
|
|
greenio.shutdown_safe(client)
|
|
client.close()
|
|
server_coro.wait()
|
|
|
|
@skip_if_no_ssl
|
|
def test_ssl_connect(self):
|
|
def serve(listener):
|
|
sock, addr = listener.accept()
|
|
sock.read(8192)
|
|
sock = listen_ssl_socket()
|
|
server_coro = eventlet.spawn(serve, sock)
|
|
|
|
raw_client = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
|
|
ssl_client = ssl.wrap_socket(raw_client)
|
|
ssl_client.connect(('127.0.0.1', sock.getsockname()[1]))
|
|
ssl_client.write(b'abc')
|
|
greenio.shutdown_safe(ssl_client)
|
|
ssl_client.close()
|
|
server_coro.wait()
|
|
|
|
@skip_if_no_ssl
|
|
def test_ssl_unwrap(self):
|
|
def serve():
|
|
sock, addr = listener.accept()
|
|
self.assertEqual(sock.recv(6), b'before')
|
|
sock_ssl = ssl.wrap_socket(sock, private_key_file, certificate_file,
|
|
server_side=True)
|
|
sock_ssl.do_handshake()
|
|
self.assertEqual(sock_ssl.read(6), b'during')
|
|
sock2 = sock_ssl.unwrap()
|
|
self.assertEqual(sock2.recv(5), b'after')
|
|
sock2.close()
|
|
|
|
listener = eventlet.listen(('127.0.0.1', 0))
|
|
server_coro = eventlet.spawn(serve)
|
|
client = eventlet.connect((listener.getsockname()))
|
|
client.send(b'before')
|
|
client_ssl = ssl.wrap_socket(client)
|
|
client_ssl.do_handshake()
|
|
client_ssl.write(b'during')
|
|
client2 = client_ssl.unwrap()
|
|
client2.send(b'after')
|
|
server_coro.wait()
|
|
|
|
@skip_if_no_ssl
|
|
def test_sendall_cpu_usage(self):
|
|
"""SSL socket.sendall() busy loop
|
|
|
|
https://bitbucket.org/eventlet/eventlet/issue/134/greenssl-performance-issues
|
|
|
|
Idea of this test is to check that GreenSSLSocket.sendall() does not busy loop
|
|
retrying .send() calls, but instead trampolines until socket is writeable.
|
|
|
|
BUFFER_SIZE and SENDALL_SIZE are magic numbers inferred through trial and error.
|
|
"""
|
|
# Time limit resistant to busy loops
|
|
self.set_alarm(1)
|
|
|
|
stage_1 = eventlet.event.Event()
|
|
BUFFER_SIZE = 1000
|
|
SENDALL_SIZE = 100000
|
|
|
|
def serve(listener):
|
|
conn, _ = listener.accept()
|
|
conn.setsockopt(socket.SOL_SOCKET, socket.SO_SNDBUF, BUFFER_SIZE)
|
|
self.assertEqual(conn.read(8), b'request')
|
|
conn.write(b'response')
|
|
|
|
stage_1.wait()
|
|
conn.sendall(b'x' * SENDALL_SIZE)
|
|
|
|
server_sock = listen_ssl_socket()
|
|
server_coro = eventlet.spawn(serve, server_sock)
|
|
|
|
client_sock = eventlet.connect(server_sock.getsockname())
|
|
client_sock.setsockopt(socket.SOL_SOCKET, socket.SO_RCVBUF, BUFFER_SIZE)
|
|
client = ssl.wrap_socket(client_sock)
|
|
client.write(b'request')
|
|
self.assertEqual(client.read(8), b'response')
|
|
stage_1.send()
|
|
|
|
check_idle_cpu_usage(0.2, 0.1)
|
|
server_coro.kill()
|
|
|
|
@skip_if_no_ssl
|
|
def test_greensslobject(self):
|
|
def serve(listener):
|
|
sock, addr = listener.accept()
|
|
sock.write(b'content')
|
|
greenio.shutdown_safe(sock)
|
|
sock.close()
|
|
listener = listen_ssl_socket(('', 0))
|
|
eventlet.spawn(serve, listener)
|
|
client = ssl.wrap_socket(
|
|
eventlet.connect(('localhost', listener.getsockname()[1])))
|
|
self.assertEqual(client.read(1024), b'content')
|
|
self.assertEqual(client.read(1024), b'')
|
|
|
|
@skip_if_no_ssl
|
|
def test_regression_gh_17(self):
|
|
def serve(listener):
|
|
sock, addr = listener.accept()
|
|
|
|
# to simulate condition mentioned in GH-17
|
|
sock._sslobj = None
|
|
sock.sendall(b'some data')
|
|
greenio.shutdown_safe(sock)
|
|
sock.close()
|
|
|
|
listener = listen_ssl_socket(('', 0))
|
|
eventlet.spawn(serve, listener)
|
|
ssl.wrap_socket(eventlet.connect(('localhost', listener.getsockname()[1])))
|
|
|
|
if __name__ == '__main__':
|
|
main()
|