Skip to content

Commit c283a9e

Browse files
author
Gabriel Erzse
committed
Fix tests
1 parent 584f657 commit c283a9e

File tree

3 files changed

+19
-22
lines changed

3 files changed

+19
-22
lines changed

tests/test_asyncio/test_connect.py

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -63,11 +63,12 @@ async def test_tcp_ssl_tls12_custom_ciphers(tcp_address, ssl_ciphers):
6363
host, port = tcp_address
6464
certfile = get_ssl_filename("server-cert.pem")
6565
keyfile = get_ssl_filename("server-key.pem")
66+
ca_certfile = get_ssl_filename("ca-cert.pem")
6667
conn = SSLConnection(
6768
host=host,
6869
port=port,
6970
client_name=_CLIENT_NAME,
70-
ssl_ca_certs=certfile,
71+
ssl_ca_certs=ca_certfile,
7172
socket_timeout=10,
7273
ssl_min_version=ssl.TLSVersion.TLSv1_2,
7374
ssl_ciphers=ssl_ciphers,
@@ -91,11 +92,12 @@ async def test_tcp_ssl_connect(tcp_address, ssl_min_version):
9192
host, port = tcp_address
9293
certfile = get_ssl_filename("server-cert.pem")
9394
keyfile = get_ssl_filename("server-key.pem")
95+
ca_certfile = get_ssl_filename("ca-cert.pem")
9496
conn = SSLConnection(
9597
host=host,
9698
port=port,
9799
client_name=_CLIENT_NAME,
98-
ssl_ca_certs=certfile,
100+
ssl_ca_certs=ca_certfile,
99101
socket_timeout=10,
100102
ssl_min_version=ssl_min_version,
101103
)

tests/test_connect.py

Lines changed: 8 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -58,13 +58,14 @@ def test_uds_connect(uds_address):
5858
)
5959
def test_tcp_ssl_connect(tcp_address, ssl_min_version):
6060
host, port = tcp_address
61-
certfile = get_ssl_filename("server-cert.pem")
62-
keyfile = get_ssl_filename("server-key.pem")
61+
certfile = get_ssl_filename("client-cert.pem")
62+
keyfile = get_ssl_filename("client-key.pem")
63+
ca_certfile = get_ssl_filename("ca-cert.pem")
6364
conn = SSLConnection(
6465
host=host,
6566
port=port,
6667
client_name=_CLIENT_NAME,
67-
ssl_ca_certs=certfile,
68+
ssl_ca_certs=ca_certfile,
6869
socket_timeout=10,
6970
ssl_min_version=ssl_min_version,
7071
)
@@ -82,13 +83,14 @@ def test_tcp_ssl_connect(tcp_address, ssl_min_version):
8283
)
8384
def test_tcp_ssl_tls12_custom_ciphers(tcp_address, ssl_ciphers):
8485
host, port = tcp_address
85-
certfile = get_ssl_filename("server-cert.pem")
86-
keyfile = get_ssl_filename("server-key.pem")
86+
certfile = get_ssl_filename("client-cert.pem")
87+
keyfile = get_ssl_filename("client-key.pem")
88+
ca_certfile = get_ssl_filename("ca-cert.pem")
8789
conn = SSLConnection(
8890
host=host,
8991
port=port,
9092
client_name=_CLIENT_NAME,
91-
ssl_ca_certs=certfile,
93+
ssl_ca_certs=ca_certfile,
9294
socket_timeout=10,
9395
ssl_min_version=ssl.TLSVersion.TLSv1_2,
9496
ssl_ciphers=ssl_ciphers,

tests/test_ssl.py

Lines changed: 7 additions & 14 deletions
Original file line numberDiff line numberDiff line change
@@ -20,6 +20,7 @@ class TestSSL:
2020

2121
SERVER_CERT = get_ssl_filename("server-cert.pem")
2222
SERVER_KEY = get_ssl_filename("server-key.pem")
23+
CA_CERT = get_ssl_filename("ca-cert.pem")
2324

2425
def test_ssl_with_invalid_cert(self, request):
2526
ssl_url = request.config.option.redis_ssl_url
@@ -56,13 +57,13 @@ def test_validating_self_signed_certificate(self, request):
5657
ssl_certfile=self.SERVER_CERT,
5758
ssl_keyfile=self.SERVER_KEY,
5859
ssl_cert_reqs="required",
59-
ssl_ca_certs=self.SERVER_CERT,
60+
ssl_ca_certs=self.CA_CERT,
6061
)
6162
assert r.ping()
6263
r.close()
6364

6465
def test_validating_self_signed_string_certificate(self, request):
65-
with open(self.SERVER_CERT) as f:
66+
with open(self.CA_CERT) as f:
6667
cert_data = f.read()
6768
ssl_url = request.config.option.redis_ssl_url
6869
p = urlparse(ssl_url)[1].split(":")
@@ -150,7 +151,7 @@ def _create_oscp_conn(self, request):
150151
ssl_certfile=self.SERVER_CERT,
151152
ssl_keyfile=self.SERVER_KEY,
152153
ssl_cert_reqs="required",
153-
ssl_ca_certs=self.SERVER_CERT,
154+
ssl_ca_certs=self.CA_CERT,
154155
ssl_validate_ocsp=True,
155156
)
156157
return r
@@ -171,14 +172,6 @@ def test_ssl_ocsp_called_withcrypto(self, request):
171172
assert "No AIA information present in ssl certificate" in str(e)
172173
r.close()
173174

174-
# rediss://, url based
175-
ssl_url = request.config.option.redis_ssl_url
176-
sslclient = redis.from_url(ssl_url)
177-
with pytest.raises(ConnectionError) as e:
178-
sslclient.ping()
179-
assert "No AIA information present in ssl certificate" in str(e)
180-
sslclient.close()
181-
182175
@skip_if_nocryptography()
183176
def test_valid_ocsp_cert_http(self):
184177
from redis.ocsp import OCSPVerifier
@@ -256,7 +249,7 @@ def test_mock_ocsp_staple(self, request):
256249
ssl_certfile=self.SERVER_CERT,
257250
ssl_keyfile=self.SERVER_KEY,
258251
ssl_cert_reqs="required",
259-
ssl_ca_certs=self.SERVER_CERT,
252+
ssl_ca_certs=self.CA_CERT,
260253
ssl_validate_ocsp=True,
261254
ssl_ocsp_context=p, # just needs to not be none
262255
)
@@ -276,7 +269,7 @@ def test_mock_ocsp_staple(self, request):
276269
ssl_certfile=self.SERVER_CERT,
277270
ssl_keyfile=self.SERVER_KEY,
278271
ssl_cert_reqs="required",
279-
ssl_ca_certs=self.SERVER_CERT,
272+
ssl_ca_certs=self.CA_CERT,
280273
ssl_ocsp_context=ctx,
281274
ssl_ocsp_expected_cert=open(self.SERVER_KEY, "rb").read(),
282275
ssl_validate_ocsp_stapled=True,
@@ -294,7 +287,7 @@ def test_mock_ocsp_staple(self, request):
294287
ssl_certfile=self.SERVER_CERT,
295288
ssl_keyfile=self.SERVER_KEY,
296289
ssl_cert_reqs="required",
297-
ssl_ca_certs=self.SERVER_CERT,
290+
ssl_ca_certs=self.CA_CERT,
298291
ssl_validate_ocsp_stapled=True,
299292
)
300293

0 commit comments

Comments
 (0)