fionera
/
transfer.sh
派生自 kiska/transfer.sh
1
0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
您最多选择25个主题 主题必须以字母或数字开头,可以包含连字符 (-),并且长度不得超过35个字符
318 提交
9 分支
34 MiB
 
 
 
分支: kiska
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 'kiska'
${ noResults }
transfer.sh/vendor/google.golang.org/grpc/credentials/credentials_test.go

207 行
6.0 KiB
原始文件 永久链接 Blame 文件历史 

  1. /*

  2.  *

  3.  * Copyright 2016 gRPC authors.

  4.  *

  5.  * Licensed under the Apache License, Version 2.0 (the "License");

  6.  * you may not use this file except in compliance with the License.

  7.  * You may obtain a copy of the License at

  8.  *

  9.  *     http://www.apache.org/licenses/LICENSE-2.0

  10.  *

  11.  * Unless required by applicable law or agreed to in writing, software

  12.  * distributed under the License is distributed on an "AS IS" BASIS,

  13.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  14.  * See the License for the specific language governing permissions and

  15.  * limitations under the License.

  16.  *

  17.  */

  18. 

  19. package credentials

  20. 

  21. import (

  22. 	"context"

  23. 	"crypto/tls"

  24. 	"net"

  25. 	"testing"

  26. 

  27. 	"google.golang.org/grpc/testdata"

  28. )

  29. 

  30. func TestTLSOverrideServerName(t *testing.T) {

  31. 	expectedServerName := "server.name"

  32. 	c := NewTLS(nil)

  33. 	c.OverrideServerName(expectedServerName)

  34. 	if c.Info().ServerName != expectedServerName {

  35. 		t.Fatalf("c.Info().ServerName = %v, want %v", c.Info().ServerName, expectedServerName)

  36. 	}

  37. }

  38. 

  39. func TestTLSClone(t *testing.T) {

  40. 	expectedServerName := "server.name"

  41. 	c := NewTLS(nil)

  42. 	c.OverrideServerName(expectedServerName)

  43. 	cc := c.Clone()

  44. 	if cc.Info().ServerName != expectedServerName {

  45. 		t.Fatalf("cc.Info().ServerName = %v, want %v", cc.Info().ServerName, expectedServerName)

  46. 	}

  47. 	cc.OverrideServerName("")

  48. 	if c.Info().ServerName != expectedServerName {

  49. 		t.Fatalf("Change in clone should not affect the original, c.Info().ServerName = %v, want %v", c.Info().ServerName, expectedServerName)

  50. 	}

  51. 

  52. }

  53. 

  54. type serverHandshake func(net.Conn) (AuthInfo, error)

  55. 

  56. func TestClientHandshakeReturnsAuthInfo(t *testing.T) {

  57. 	done := make(chan AuthInfo, 1)

  58. 	lis := launchServer(t, tlsServerHandshake, done)

  59. 	defer lis.Close()

  60. 	lisAddr := lis.Addr().String()

  61. 	clientAuthInfo := clientHandle(t, gRPCClientHandshake, lisAddr)

  62. 	// wait until server sends serverAuthInfo or fails.

  63. 	serverAuthInfo, ok := <-done

  64. 	if !ok {

  65. 		t.Fatalf("Error at server-side")

  66. 	}

  67. 	if !compare(clientAuthInfo, serverAuthInfo) {

  68. 		t.Fatalf("c.ClientHandshake(_, %v, _) = %v, want %v.", lisAddr, clientAuthInfo, serverAuthInfo)

  69. 	}

  70. }

  71. 

  72. func TestServerHandshakeReturnsAuthInfo(t *testing.T) {

  73. 	done := make(chan AuthInfo, 1)

  74. 	lis := launchServer(t, gRPCServerHandshake, done)

  75. 	defer lis.Close()

  76. 	clientAuthInfo := clientHandle(t, tlsClientHandshake, lis.Addr().String())

  77. 	// wait until server sends serverAuthInfo or fails.

  78. 	serverAuthInfo, ok := <-done

  79. 	if !ok {

  80. 		t.Fatalf("Error at server-side")

  81. 	}

  82. 	if !compare(clientAuthInfo, serverAuthInfo) {

  83. 		t.Fatalf("ServerHandshake(_) = %v, want %v.", serverAuthInfo, clientAuthInfo)

  84. 	}

  85. }

  86. 

  87. func TestServerAndClientHandshake(t *testing.T) {

  88. 	done := make(chan AuthInfo, 1)

  89. 	lis := launchServer(t, gRPCServerHandshake, done)

  90. 	defer lis.Close()

  91. 	clientAuthInfo := clientHandle(t, gRPCClientHandshake, lis.Addr().String())

  92. 	// wait until server sends serverAuthInfo or fails.

  93. 	serverAuthInfo, ok := <-done

  94. 	if !ok {

  95. 		t.Fatalf("Error at server-side")

  96. 	}

  97. 	if !compare(clientAuthInfo, serverAuthInfo) {

  98. 		t.Fatalf("AuthInfo returned by server: %v and client: %v aren't same", serverAuthInfo, clientAuthInfo)

  99. 	}

  100. }

  101. 

  102. func compare(a1, a2 AuthInfo) bool {

  103. 	if a1.AuthType() != a2.AuthType() {

  104. 		return false

  105. 	}

  106. 	switch a1.AuthType() {

  107. 	case "tls":

  108. 		state1 := a1.(TLSInfo).State

  109. 		state2 := a2.(TLSInfo).State

  110. 		if state1.Version == state2.Version &&

  111. 			state1.HandshakeComplete == state2.HandshakeComplete &&

  112. 			state1.CipherSuite == state2.CipherSuite &&

  113. 			state1.NegotiatedProtocol == state2.NegotiatedProtocol {

  114. 			return true

  115. 		}

  116. 		return false

  117. 	default:

  118. 		return false

  119. 	}

  120. }

  121. 

  122. func launchServer(t *testing.T, hs serverHandshake, done chan AuthInfo) net.Listener {

  123. 	lis, err := net.Listen("tcp", "localhost:0")

  124. 	if err != nil {

  125. 		t.Fatalf("Failed to listen: %v", err)

  126. 	}

  127. 	go serverHandle(t, hs, done, lis)

  128. 	return lis

  129. }

  130. 

  131. // Is run in a separate goroutine.

  132. func serverHandle(t *testing.T, hs serverHandshake, done chan AuthInfo, lis net.Listener) {

  133. 	serverRawConn, err := lis.Accept()

  134. 	if err != nil {

  135. 		t.Errorf("Server failed to accept connection: %v", err)

  136. 		close(done)

  137. 		return

  138. 	}

  139. 	serverAuthInfo, err := hs(serverRawConn)

  140. 	if err != nil {

  141. 		t.Errorf("Server failed while handshake. Error: %v", err)

  142. 		serverRawConn.Close()

  143. 		close(done)

  144. 		return

  145. 	}

  146. 	done <- serverAuthInfo

  147. }

  148. 

  149. func clientHandle(t *testing.T, hs func(net.Conn, string) (AuthInfo, error), lisAddr string) AuthInfo {

  150. 	conn, err := net.Dial("tcp", lisAddr)

  151. 	if err != nil {

  152. 		t.Fatalf("Client failed to connect to %s. Error: %v", lisAddr, err)

  153. 	}

  154. 	defer conn.Close()

  155. 	clientAuthInfo, err := hs(conn, lisAddr)

  156. 	if err != nil {

  157. 		t.Fatalf("Error on client while handshake. Error: %v", err)

  158. 	}

  159. 	return clientAuthInfo

  160. }

  161. 

  162. // Server handshake implementation in gRPC.

  163. func gRPCServerHandshake(conn net.Conn) (AuthInfo, error) {

  164. 	serverTLS, err := NewServerTLSFromFile(testdata.Path("server1.pem"), testdata.Path("server1.key"))

  165. 	if err != nil {

  166. 		return nil, err

  167. 	}

  168. 	_, serverAuthInfo, err := serverTLS.ServerHandshake(conn)

  169. 	if err != nil {

  170. 		return nil, err

  171. 	}

  172. 	return serverAuthInfo, nil

  173. }

  174. 

  175. // Client handshake implementation in gRPC.

  176. func gRPCClientHandshake(conn net.Conn, lisAddr string) (AuthInfo, error) {

  177. 	clientTLS := NewTLS(&tls.Config{InsecureSkipVerify: true})

  178. 	_, authInfo, err := clientTLS.ClientHandshake(context.Background(), lisAddr, conn)

  179. 	if err != nil {

  180. 		return nil, err

  181. 	}

  182. 	return authInfo, nil

  183. }

  184. 

  185. func tlsServerHandshake(conn net.Conn) (AuthInfo, error) {

  186. 	cert, err := tls.LoadX509KeyPair(testdata.Path("server1.pem"), testdata.Path("server1.key"))

  187. 	if err != nil {

  188. 		return nil, err

  189. 	}

  190. 	serverTLSConfig := &tls.Config{Certificates: []tls.Certificate{cert}}

  191. 	serverConn := tls.Server(conn, serverTLSConfig)

  192. 	err = serverConn.Handshake()

  193. 	if err != nil {

  194. 		return nil, err

  195. 	}

  196. 	return TLSInfo{State: serverConn.ConnectionState()}, nil

  197. }

  198. 

  199. func tlsClientHandshake(conn net.Conn, _ string) (AuthInfo, error) {

  200. 	clientTLSConfig := &tls.Config{InsecureSkipVerify: true}

  201. 	clientConn := tls.Client(conn, clientTLSConfig)

  202. 	if err := clientConn.Handshake(); err != nil {

  203. 		return nil, err

  204. 	}

  205. 	return TLSInfo{State: clientConn.ConnectionState()}, nil

  206. }