2016-04-13 19:30:57 -04:00
|
|
|
"""Common utilities for certbot_apache."""
|
2014-12-19 18:49:29 -05:00
|
|
|
import os
|
2015-07-19 19:48:27 -04:00
|
|
|
import sys
|
2015-01-24 08:12:45 -05:00
|
|
|
import unittest
|
2014-12-19 18:49:29 -05:00
|
|
|
|
2015-07-19 19:48:27 -04:00
|
|
|
import augeas
|
2014-12-19 18:49:29 -05:00
|
|
|
import mock
|
2015-07-19 19:48:27 -04:00
|
|
|
import zope.component
|
|
|
|
|
|
2015-08-05 18:39:31 -04:00
|
|
|
from acme import jose
|
|
|
|
|
|
2016-04-13 19:30:57 -04:00
|
|
|
from certbot.display import util as display_util
|
2014-12-19 18:49:29 -05:00
|
|
|
|
2016-04-13 19:30:57 -04:00
|
|
|
from certbot.plugins import common
|
2015-05-12 17:06:17 -04:00
|
|
|
|
2016-12-05 18:22:14 -05:00
|
|
|
from certbot.tests import util as test_util
|
2015-08-05 18:39:31 -04:00
|
|
|
|
2016-04-13 19:30:57 -04:00
|
|
|
from certbot_apache import configurator
|
|
|
|
|
from certbot_apache import constants
|
|
|
|
|
from certbot_apache import obj
|
2014-12-19 18:49:29 -05:00
|
|
|
|
|
|
|
|
|
2015-01-28 08:02:14 -05:00
|
|
|
class ApacheTest(unittest.TestCase): # pylint: disable=too-few-public-methods
|
2015-01-24 08:12:45 -05:00
|
|
|
|
2016-03-20 15:57:52 -04:00
|
|
|
def setUp(self, test_dir="debian_apache_2_4/multiple_vhosts",
|
|
|
|
|
config_root="debian_apache_2_4/multiple_vhosts/apache2",
|
|
|
|
|
vhost_root="debian_apache_2_4/multiple_vhosts/apache2/sites-available"):
|
2015-07-19 19:48:27 -04:00
|
|
|
# pylint: disable=arguments-differ
|
2015-01-24 08:12:45 -05:00
|
|
|
super(ApacheTest, self).setUp()
|
|
|
|
|
|
2015-06-02 09:55:16 -04:00
|
|
|
self.temp_dir, self.config_dir, self.work_dir = common.dir_setup(
|
2015-07-19 19:48:27 -04:00
|
|
|
test_dir=test_dir,
|
2016-04-13 19:30:57 -04:00
|
|
|
pkg="certbot_apache.tests")
|
2015-01-24 08:12:45 -05:00
|
|
|
|
2015-07-19 19:48:27 -04:00
|
|
|
self.config_path = os.path.join(self.temp_dir, config_root)
|
2015-12-07 05:03:54 -05:00
|
|
|
self.vhost_path = os.path.join(self.temp_dir, vhost_root)
|
2015-01-24 08:12:45 -05:00
|
|
|
|
2015-08-05 18:39:31 -04:00
|
|
|
self.rsa512jwk = jose.JWKRSA.load(test_util.load_vector(
|
|
|
|
|
"rsa512_key.pem"))
|
2015-01-24 08:12:45 -05:00
|
|
|
|
2016-01-14 19:35:20 -05:00
|
|
|
# Make sure all vhosts in sites-enabled are symlinks (Python packaging
|
|
|
|
|
# does not preserve symlinks)
|
|
|
|
|
sites_enabled = os.path.join(self.config_path, "sites-enabled")
|
|
|
|
|
if not os.path.exists(sites_enabled):
|
|
|
|
|
return
|
|
|
|
|
|
|
|
|
|
for vhost_basename in os.listdir(sites_enabled):
|
2017-09-25 15:03:09 -04:00
|
|
|
# Keep the one non-symlink test vhost in place
|
|
|
|
|
if vhost_basename == "non-symlink.conf":
|
|
|
|
|
continue
|
2016-01-14 19:35:20 -05:00
|
|
|
vhost = os.path.join(sites_enabled, vhost_basename)
|
2016-01-14 19:59:29 -05:00
|
|
|
if not os.path.islink(vhost): # pragma: no cover
|
2016-01-14 19:35:20 -05:00
|
|
|
os.remove(vhost)
|
|
|
|
|
target = os.path.join(
|
|
|
|
|
os.path.pardir, "sites-available", vhost_basename)
|
|
|
|
|
os.symlink(target, vhost)
|
|
|
|
|
|
2015-01-24 08:12:45 -05:00
|
|
|
|
2015-07-19 19:48:27 -04:00
|
|
|
class ParserTest(ApacheTest): # pytlint: disable=too-few-public-methods
|
|
|
|
|
|
2016-03-20 15:57:52 -04:00
|
|
|
def setUp(self, test_dir="debian_apache_2_4/multiple_vhosts",
|
|
|
|
|
config_root="debian_apache_2_4/multiple_vhosts/apache2",
|
|
|
|
|
vhost_root="debian_apache_2_4/multiple_vhosts/apache2/sites-available"):
|
2015-12-07 05:03:54 -05:00
|
|
|
super(ParserTest, self).setUp(test_dir, config_root, vhost_root)
|
2015-07-19 19:48:27 -04:00
|
|
|
|
2016-12-19 15:45:40 -05:00
|
|
|
zope.component.provideUtility(display_util.FileDisplay(sys.stdout,
|
|
|
|
|
False))
|
2015-07-19 19:48:27 -04:00
|
|
|
|
2016-04-13 19:30:57 -04:00
|
|
|
from certbot_apache.parser import ApacheParser
|
2015-07-19 19:48:27 -04:00
|
|
|
self.aug = augeas.Augeas(
|
|
|
|
|
flags=augeas.Augeas.NONE | augeas.Augeas.NO_MODL_AUTOLOAD)
|
2016-04-13 19:30:57 -04:00
|
|
|
with mock.patch("certbot_apache.parser.ApacheParser."
|
2015-07-19 19:48:27 -04:00
|
|
|
"update_runtime_variables"):
|
|
|
|
|
self.parser = ApacheParser(
|
2015-12-28 07:03:50 -05:00
|
|
|
self.aug, self.config_path, self.vhost_path)
|
2015-07-19 19:48:27 -04:00
|
|
|
|
|
|
|
|
|
2014-12-19 18:49:29 -05:00
|
|
|
def get_apache_configurator(
|
2016-01-14 06:25:15 -05:00
|
|
|
config_path, vhost_path,
|
|
|
|
|
config_dir, work_dir, version=(2, 4, 7), conf=None):
|
2015-07-01 19:50:48 -04:00
|
|
|
"""Create an Apache Configurator with the specified options.
|
2014-12-19 18:49:29 -05:00
|
|
|
|
2015-07-01 19:50:48 -04:00
|
|
|
:param conf: Function that returns binary paths. self.conf in Configurator
|
|
|
|
|
|
|
|
|
|
"""
|
2014-12-19 18:49:29 -05:00
|
|
|
backups = os.path.join(work_dir, "backups")
|
2015-09-30 20:16:27 -04:00
|
|
|
mock_le_config = mock.MagicMock(
|
|
|
|
|
apache_server_root=config_path,
|
2015-12-07 05:03:54 -05:00
|
|
|
apache_vhost_root=vhost_path,
|
|
|
|
|
apache_le_vhost_ext=constants.os_constant("le_vhost_ext"),
|
|
|
|
|
apache_challenge_location=config_path,
|
2015-09-30 20:16:27 -04:00
|
|
|
backup_dir=backups,
|
|
|
|
|
config_dir=config_dir,
|
|
|
|
|
temp_checkpoint_dir=os.path.join(work_dir, "temp_checkpoints"),
|
|
|
|
|
in_progress_dir=os.path.join(backups, "IN_PROGRESS"),
|
|
|
|
|
work_dir=work_dir)
|
2014-12-19 18:49:29 -05:00
|
|
|
|
2016-05-26 14:43:00 -04:00
|
|
|
with mock.patch("certbot_apache.configurator.util.run_script"):
|
|
|
|
|
with mock.patch("certbot_apache.configurator.util."
|
2015-09-30 20:16:27 -04:00
|
|
|
"exe_exists") as mock_exe_exists:
|
|
|
|
|
mock_exe_exists.return_value = True
|
2016-04-13 19:30:57 -04:00
|
|
|
with mock.patch("certbot_apache.parser.ApacheParser."
|
2015-09-30 20:16:27 -04:00
|
|
|
"update_runtime_variables"):
|
|
|
|
|
config = configurator.ApacheConfigurator(
|
|
|
|
|
config=mock_le_config,
|
|
|
|
|
name="apache",
|
|
|
|
|
version=version)
|
|
|
|
|
# This allows testing scripts to set it a bit more quickly
|
|
|
|
|
if conf is not None:
|
|
|
|
|
config.conf = conf # pragma: no cover
|
|
|
|
|
|
|
|
|
|
config.prepare()
|
2015-02-23 07:26:43 -05:00
|
|
|
|
2014-12-19 18:49:29 -05:00
|
|
|
return config
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def get_vh_truth(temp_dir, config_name):
|
|
|
|
|
"""Return the ground truth for the specified directory."""
|
2016-03-20 15:57:52 -04:00
|
|
|
if config_name == "debian_apache_2_4/multiple_vhosts":
|
2014-12-19 18:49:29 -05:00
|
|
|
prefix = os.path.join(
|
2017-09-25 15:03:09 -04:00
|
|
|
temp_dir, config_name, "apache2/sites-enabled")
|
|
|
|
|
|
2014-12-19 18:49:29 -05:00
|
|
|
aug_pre = "/files" + prefix
|
|
|
|
|
vh_truth = [
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "encryption-example.conf"),
|
2017-09-27 18:51:28 -04:00
|
|
|
os.path.join(aug_pre, "encryption-example.conf/Virtualhost"),
|
2015-07-19 05:22:10 -04:00
|
|
|
set([obj.Addr.fromstring("*:80")]),
|
2015-07-21 20:16:46 -04:00
|
|
|
False, True, "encryption-example.demo"),
|
2014-12-19 18:49:29 -05:00
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "default-ssl.conf"),
|
2017-09-25 15:03:09 -04:00
|
|
|
os.path.join(aug_pre,
|
|
|
|
|
"default-ssl.conf/IfModule/VirtualHost"),
|
|
|
|
|
set([obj.Addr.fromstring("_default_:443")]), True, True),
|
2014-12-19 18:49:29 -05:00
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "000-default.conf"),
|
|
|
|
|
os.path.join(aug_pre, "000-default.conf/VirtualHost"),
|
2016-03-20 12:08:53 -04:00
|
|
|
set([obj.Addr.fromstring("*:80"),
|
|
|
|
|
obj.Addr.fromstring("[::]:80")]),
|
|
|
|
|
False, True, "ip-172-30-0-17"),
|
2014-12-19 18:49:29 -05:00
|
|
|
obj.VirtualHost(
|
2016-04-13 19:30:57 -04:00
|
|
|
os.path.join(prefix, "certbot.conf"),
|
|
|
|
|
os.path.join(aug_pre, "certbot.conf/VirtualHost"),
|
2015-07-19 05:22:10 -04:00
|
|
|
set([obj.Addr.fromstring("*:80")]), False, True,
|
2016-04-13 19:30:57 -04:00
|
|
|
"certbot.demo"),
|
2015-11-06 03:56:50 -05:00
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "mod_macro-example.conf"),
|
|
|
|
|
os.path.join(aug_pre,
|
|
|
|
|
"mod_macro-example.conf/Macro/VirtualHost"),
|
2016-01-14 06:25:15 -05:00
|
|
|
set([obj.Addr.fromstring("*:80")]), False, True,
|
|
|
|
|
modmacro=True),
|
2015-11-24 00:19:42 -05:00
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "default-ssl-port-only.conf"),
|
2016-01-14 06:25:15 -05:00
|
|
|
os.path.join(aug_pre, ("default-ssl-port-only.conf/"
|
|
|
|
|
"IfModule/VirtualHost")),
|
2017-09-25 15:03:09 -04:00
|
|
|
set([obj.Addr.fromstring("_default_:443")]), True, True),
|
2016-02-23 20:31:41 -05:00
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "wildcard.conf"),
|
|
|
|
|
os.path.join(aug_pre, "wildcard.conf/VirtualHost"),
|
2017-09-25 15:03:09 -04:00
|
|
|
set([obj.Addr.fromstring("*:80")]), False, True,
|
2016-05-19 19:04:18 -04:00
|
|
|
"ip-172-30-0-17", aliases=["*.blue.purple.com"]),
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "ocsp-ssl.conf"),
|
|
|
|
|
os.path.join(aug_pre, "ocsp-ssl.conf/IfModule/VirtualHost"),
|
|
|
|
|
set([obj.Addr.fromstring("10.2.3.4:443")]), True, True,
|
2017-09-25 15:03:09 -04:00
|
|
|
"ocspvhost.com"),
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "non-symlink.conf"),
|
|
|
|
|
os.path.join(aug_pre, "non-symlink.conf/VirtualHost"),
|
|
|
|
|
set([obj.Addr.fromstring("*:80")]), False, True,
|
|
|
|
|
"nonsym.link"),
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "default-ssl-port-only.conf"),
|
|
|
|
|
os.path.join(aug_pre,
|
|
|
|
|
"default-ssl-port-only.conf/VirtualHost"),
|
|
|
|
|
set([obj.Addr.fromstring("*:80")]), True, True, ""),
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(temp_dir, config_name,
|
|
|
|
|
"apache2/apache2.conf"),
|
|
|
|
|
"/files" + os.path.join(temp_dir, config_name,
|
|
|
|
|
"apache2/apache2.conf/VirtualHost"),
|
|
|
|
|
set([obj.Addr.fromstring("*:80")]), False, True,
|
|
|
|
|
"vhost.in.rootconf")]
|
2014-12-19 18:49:29 -05:00
|
|
|
return vh_truth
|
2016-07-26 18:57:11 -04:00
|
|
|
if config_name == "debian_apache_2_4/multi_vhosts":
|
|
|
|
|
prefix = os.path.join(
|
|
|
|
|
temp_dir, config_name, "apache2/sites-available")
|
|
|
|
|
aug_pre = "/files" + prefix
|
|
|
|
|
vh_truth = [
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "default.conf"),
|
|
|
|
|
os.path.join(aug_pre, "default.conf/VirtualHost[1]"),
|
|
|
|
|
set([obj.Addr.fromstring("*:80")]),
|
|
|
|
|
False, True, "ip-172-30-0-17"),
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "default.conf"),
|
|
|
|
|
os.path.join(aug_pre, "default.conf/VirtualHost[2]"),
|
|
|
|
|
set([obj.Addr.fromstring("*:80")]),
|
2016-09-28 14:34:27 -04:00
|
|
|
False, True, "banana.vomit.com"),
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "multi-vhost.conf"),
|
|
|
|
|
os.path.join(aug_pre, "multi-vhost.conf/VirtualHost[1]"),
|
|
|
|
|
set([obj.Addr.fromstring("*:80")]),
|
|
|
|
|
False, True, "1.multi.vhost.tld"),
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "multi-vhost.conf"),
|
|
|
|
|
os.path.join(aug_pre, "multi-vhost.conf/IfModule/VirtualHost"),
|
|
|
|
|
set([obj.Addr.fromstring("*:80")]),
|
|
|
|
|
False, True, "2.multi.vhost.tld"),
|
|
|
|
|
obj.VirtualHost(
|
|
|
|
|
os.path.join(prefix, "multi-vhost.conf"),
|
|
|
|
|
os.path.join(aug_pre, "multi-vhost.conf/VirtualHost[2]"),
|
|
|
|
|
set([obj.Addr.fromstring("*:80")]),
|
|
|
|
|
False, True, "3.multi.vhost.tld")]
|
2016-07-26 18:57:11 -04:00
|
|
|
return vh_truth
|
2015-07-23 04:34:51 -04:00
|
|
|
return None # pragma: no cover
|
