Renewer integration tests for standalone.

2026-01-23 07:20:55 +03:00 · 2015-06-25 17:16:22 +00:00
parent d543716adf
commit 040f434a61
2 changed files with 22 additions and 2 deletions
--- a/letsencrypt/renewer.py
+++ b/letsencrypt/renewer.py
@@ -12,6 +12,7 @@ import os
 import sys

 import configobj
+import zope.component

 from letsencrypt import configuration
 from letsencrypt import cli
@@ -20,6 +21,7 @@ from letsencrypt import crypto_util
 from letsencrypt import notify
 from letsencrypt import storage

+from letsencrypt.display import util as display_util
 from letsencrypt.plugins import disco as plugins_disco


@@ -64,6 +66,7 @@ def renew(cert, old_version):
    # XXX: this loses type data (for example, the fact that key_size
    #      was an int, not a str)
    config.rsa_key_size = int(config.rsa_key_size)
+    config.dvsni_port = int(config.dvsni_port)
    try:
        authenticator = plugins[renewalparams["authenticator"]]
    except KeyError:
@@ -120,6 +123,8 @@ def main(config=None, args=sys.argv[1:]):
    #       turned it off. (The boolean parameter should probably be
    #       called renewer_enabled.)

+    zope.component.provideUtility(display_util.FileDisplay(sys.stdout))
+
    cli_config = configuration.RenewerConfiguration(
        _create_parser().parse_args(args))

--- a/tests/boulder-integration.sh
+++ b/tests/boulder-integration.sh
@@ -5,14 +5,14 @@

 root="$(mktemp -d)"
 echo "\nRoot integration tests directory: $root"
+store_flags="--config-dir $root/conf --work-dir $root/work"

 # first three flags required, rest is handy defaults
 letsencrypt \
  --server http://localhost:4000/acme/new-reg \
  --no-verify-ssl \
  --dvsni-port 5001 \
-  --config-dir "$root/conf" \
-  --work-dir "$root/work" \
+  $store_flags \
  --text \
  --agree-eula \
  --email "" \
@@ -20,3 +20,18 @@ letsencrypt \
  --authenticator standalone \
  -vvvvvvv \
  auth
+
+# the following assumes that Boulder issues certificates for less than
+# 10 years, otherwise renewal will not take place
+cat <<EOF > "$root/conf/renewer.conf"
+renew_before_expiry = 10 years
+deploy_before_expiry = 10 years
+EOF
+letsencrypt-renewer $store_flags
+dir="$root/conf/archive/le.wtf"
+for x in cert chain fullchain privkey;
+do
+    latest="$(ls -1t $dir/ | grep -e "^${x}" | head -n1)"
+    live="$(readlink -f "$root/conf/live/le.wtf/${x}.pem")"
+    #[ "${dir}/${latest}" = "$live" ]  # renewer fails this test
+done