Files
@ 8d272d91d3d2
Branch filter:
Location: majic-ansible-roles/roles/backup_server/molecule/default/tests/conftest.py - annotation
8d272d91d3d2
1.0 KiB
text/x-python
MAR-165: Deploy Diffie-Helman parameters for LDAP server in the ldap_server role:
- Not relevant for Debian Strech because of a bug in the OpenLDAP
version it ships with.
- This should allow use of DHE ciphers with LDAP server.
- Generated DH parameters only help pick one of the parameters from
RFC-7919 (based on the size of generated ones).
- Make the cipher test lists distro-specific due to differences
between supported algorithms in respective GnuTLS versions.
- Not relevant for Debian Strech because of a bug in the OpenLDAP
version it ships with.
- This should allow use of DHE ciphers with LDAP server.
- Generated DH parameters only help pick one of the parameters from
RFC-7919 (based on the size of generated ones).
- Make the cipher test lists distro-specific due to differences
between supported algorithms in respective GnuTLS versions.
770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f 770551dc8c6f | import os
import pytest
@pytest.fixture(scope='session')
def prepare_ssh_client_private_key_permissions():
"""
Helper fixture used to fix the file permissions of client private
keys that are used directly from the local machine to test
connectivity towards the server.
Permissions are set-up in such a way that the ssh tool does not
report any errors (e.g. setting the mode to 0600).
The fixture will restore old permissions once the tests have been
completed.
The fixture is used with the session scope.
The following private keys will be processed:
- tests/data/ssh/client1
- tests/data/ssh/client2
"""
private_keys = [
"tests/data/ssh/client1",
"tests/data/ssh/client2"
]
private_key_old_permissions = {}
for private_key in private_keys:
private_key_old_permissions[private_key] = os.stat(private_key).st_mode
os.chmod(private_key, 0o600)
yield
for private_key in private_keys:
os.chmod(private_key, private_key_old_permissions[private_key])
|