Skip to content

Commit

Permalink
tests: add authorization deactivation integration tests (letsencrypt#…
Browse files Browse the repository at this point in the history
…4381)

Add pending and valid authorization deactivation integration tests
  • Loading branch information
rolandshoemaker authored and Daniel McCarney committed Jul 31, 2019
1 parent 17cf6fd commit 2e45313
Show file tree
Hide file tree
Showing 4 changed files with 30 additions and 5 deletions.
6 changes: 3 additions & 3 deletions docker-compose.yml
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ version: '3'
services:
boulder:
# To minimize fetching this should be the same version used below
image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-04-08
image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-07-31
environment:
FAKE_DNS: 10.77.77.77
PKCS11_PROXY_SOCKET: tcp://boulder-hsm:5657
Expand Down Expand Up @@ -55,7 +55,7 @@ services:
working_dir: /go/src/github.com/letsencrypt/boulder
bhsm:
# To minimize fetching this should be the same version used above
image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-04-08
image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-07-31
environment:
PKCS11_DAEMON_SOCKET: tcp://0.0.0.0:5657
command: /usr/local/bin/pkcs11-daemon /usr/lib/softhsm/libsofthsm2.so
Expand All @@ -77,7 +77,7 @@ services:
logging:
driver: none
netaccess:
image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-04-08
image: letsencrypt/boulder-tools-go${TRAVIS_GO_VERSION:-1.12}:2019-07-31
environment:
GO111MODULE: "on"
GOFLAGS: "-mod=vendor"
Expand Down
2 changes: 1 addition & 1 deletion test/boulder-tools/build.sh
Original file line number Diff line number Diff line change
Expand Up @@ -50,7 +50,7 @@ go get \
git clone https://github.com/certbot/certbot /certbot
cd /certbot
./letsencrypt-auto --os-packages-only
./tools/venv3.py
./tools/venv.py
cd -

# Install pkcs11-proxy. Checked out commit was master HEAD at time
Expand Down
14 changes: 13 additions & 1 deletion test/v1_integration.py
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@
from chisel import auth_and_issue
from helpers import *

from acme import challenges
from acme import challenges, messages

import OpenSSL

Expand Down Expand Up @@ -611,3 +611,15 @@ def test_sct_embedding():
if abs(delta) > datetime.timedelta(hours=1):
raise Exception("Delta between SCT timestamp and now was too great "
"%s vs %s (%s)" % (sct.timestamp, datetime.datetime.now(), delta))

def test_auth_deactivation():
client = chisel.make_client(None)
auth = client.request_domain_challenges(random_domain())
resp = client.deactivate_authorization(auth)
if resp.body.status is not messages.STATUS_DEACTIVATED:
raise Exception("unexpected authorization status")

_, auth = auth_and_issue([random_domain()], client=client)
resp = client.deactivate_authorization(auth[0])
if resp.body.status is not messages.STATUS_DEACTIVATED:
raise Exception("unexpected authorization status")
13 changes: 13 additions & 0 deletions test/v2_integration.py
Original file line number Diff line number Diff line change
Expand Up @@ -1002,5 +1002,18 @@ def test_delete_unused_challenges():
if not isinstance(a.body.challenges[0].chall, challenges.DNS01):
raise Exception("wrong challenge type left after validation")

def test_auth_deactivation_v2():
client = chisel2.make_client(None)
csr_pem = chisel2.make_csr([random_domain()])
order = client.new_order(csr_pem)
resp = client.deactivate_authorization(order.authorizations[0])
if resp.body.status is not messages.STATUS_DEACTIVATED:
raise Exception("unexpected authorization status")

order = chisel2.auth_and_issue([random_domain()], client=client)
resp = client.deactivate_authorization(order.authorizations[0])
if resp.body.status is not messages.STATUS_DEACTIVATED:
raise Exception("unexpected authorization status")

def run(cmd, **kwargs):
return subprocess.check_output(cmd, shell=True, stderr=subprocess.STDOUT, **kwargs)

0 comments on commit 2e45313

Please sign in to comment.