ruby/test/rubygems/test_bundled_ca.rb

require 'rubygems/test_case'
require 'net/https'
require 'rubygems/request'

# = Testing Bundled CA
#
# The tested hosts are explained in detail here: https://github.com/rubygems/rubygems/commit/5e16a5428f973667cabfa07e94ff939e7a83ebd9
#
class TestBundledCA < Gem::TestCase

  THIS_FILE = File.expand_path __FILE__

  def bundled_certificate_store
    store = OpenSSL::X509::Store.new

    ssl_cert_glob =
      File.expand_path '../../../lib/rubygems/ssl_certs/*.pem', THIS_FILE

    Dir[ssl_cert_glob].each do |ssl_cert|
      store.add_file ssl_cert
    end

    store
  end

  def assert_https(host)
    if self.respond_to? :_assertions # minitest <= 4
      self._assertions += 1
    else # minitest >= 5
      self.assertions += 1
    end
    http = Net::HTTP.new(host, 443)
    http.use_ssl = true
    http.verify_mode = OpenSSL::SSL::VERIFY_PEER
    http.cert_store = bundled_certificate_store
    http.get('/')
  rescue Errno::ENOENT, Errno::ETIMEDOUT
    skip "#{host} seems offline, I can't tell whether ssl would work."
  rescue OpenSSL::SSL::SSLError => e
    # Only fail for certificate verification errors
    if e.message =~ /certificate verify failed/
      flunk "#{host} is not verifiable using the included certificates. Error was: #{e.message}"
    end
    raise
  end

  def test_accessing_rubygems
    assert_https('rubygems.org')
  end

  def test_accessing_cloudfront
    assert_https('d2chzxaqi4y7f8.cloudfront.net')
  end

  def test_accessing_s3
    assert_https('s3.amazonaws.com')
  end

end if ENV['TRAVIS']
* lib/rubygems: Update to RubyGems master commit 2a74263. This fixes several bugs in RubyGems 2.2.0.preview.1. * test/rubygems: ditto. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@43298 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2013-10-16 04:14:16 +04:00			`require 'rubygems/test_case'`
			`require 'net/https'`
			`require 'rubygems/request'`

			`# = Testing Bundled CA`
			`#`
			`# The tested hosts are explained in detail here: https://github.com/rubygems/rubygems/commit/5e16a5428f973667cabfa07e94ff939e7a83ebd9`
			`#`
			`class TestBundledCA < Gem::TestCase`

			`THIS_FILE = File.expand_path __FILE__`

			`def bundled_certificate_store`
			`store = OpenSSL::X509::Store.new`

			`ssl_cert_glob =`
			`File.expand_path '../../../lib/rubygems/ssl_certs/*.pem', THIS_FILE`

			`Dir[ssl_cert_glob].each do \|ssl_cert\|`
			`store.add_file ssl_cert`
			`end`

			`store`
			`end`

			`def assert_https(host)`
			`if self.respond_to? :_assertions # minitest <= 4`
			`self._assertions += 1`
			`else # minitest >= 5`
			`self.assertions += 1`
			`end`
			`http = Net::HTTP.new(host, 443)`
			`http.use_ssl = true`
			`http.verify_mode = OpenSSL::SSL::VERIFY_PEER`
			`http.cert_store = bundled_certificate_store`
			`http.get('/')`
* lib/rubygems: Update to RubyGems master 4bdc4f2. Important changes in this commit: RubyGems now chooses the test server port reliably. Patch by akr. Partial implementation of bundler's Gemfile format. Refactorings to improve the new resolver. Fixes bugs in the resolver. * test/rubygems: Tests for the above. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@43643 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2013-11-10 21:51:40 +04:00			`rescue Errno::ENOENT, Errno::ETIMEDOUT`
* lib/rubygems: Update to RubyGems master commit 2a74263. This fixes several bugs in RubyGems 2.2.0.preview.1. * test/rubygems: ditto. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@43298 b2dd03c8-39d4-4d8f-98ff-823fe69b080e 2013-10-16 04:14:16 +04:00			`skip "#{host} seems offline, I can't tell whether ssl would work."`
			`rescue OpenSSL::SSL::SSLError => e`
			`# Only fail for certificate verification errors`
			`if e.message =~ /certificate verify failed/`
			`flunk "#{host} is not verifiable using the included certificates. Error was: #{e.message}"`
			`end`
			`raise`
			`end`

			`def test_accessing_rubygems`
			`assert_https('rubygems.org')`
			`end`

			`def test_accessing_cloudfront`
			`assert_https('d2chzxaqi4y7f8.cloudfront.net')`
			`end`

			`def test_accessing_s3`
			`assert_https('s3.amazonaws.com')`
			`end`

			`end if ENV['TRAVIS']`