|
Packit Service |
084de1 |
# -*- mode: perl; -*-
|
|
Packit Service |
084de1 |
# Copyright 2016-2016 The OpenSSL Project Authors. All Rights Reserved.
|
|
Packit Service |
084de1 |
#
|
|
Packit Service |
084de1 |
# Licensed under the OpenSSL license (the "License"). You may not use
|
|
Packit Service |
084de1 |
# this file except in compliance with the License. You can obtain a copy
|
|
Packit Service |
084de1 |
# in the file LICENSE in the source distribution or at
|
|
Packit Service |
084de1 |
# https://www.openssl.org/source/license.html
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
## Test SNI/Session tickets
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
use strict;
|
|
Packit Service |
084de1 |
use warnings;
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
package ssltests;
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
our @tests = ();
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
#Note: MaxProtocol is set to TLSv1.2 as session tickets work differently in
|
|
Packit Service |
084de1 |
#TLSv1.3.
|
|
Packit Service |
084de1 |
sub generate_tests() {
|
|
Packit Service |
084de1 |
foreach my $c ("SessionTicket", "-SessionTicket") {
|
|
Packit Service |
084de1 |
foreach my $s1 ("SessionTicket", "-SessionTicket") {
|
|
Packit Service |
084de1 |
foreach my $s2 ("SessionTicket", "-SessionTicket") {
|
|
Packit Service |
084de1 |
foreach my $n ("server1", "server2") {
|
|
Packit Service |
084de1 |
my $ticket_result = expected_result($c, $s1, $s2, $n);
|
|
Packit Service |
084de1 |
my $session_id_result = "Yes"; # always, even with a ticket
|
|
Packit Service |
084de1 |
push @tests, {
|
|
Packit Service |
084de1 |
"name" => "sni-session-ticket",
|
|
Packit Service |
084de1 |
"client" => {
|
|
Packit Service |
084de1 |
"Options" => $c,
|
|
Packit Service |
084de1 |
"extra" => {
|
|
Packit Service |
084de1 |
"ServerName" => $n,
|
|
Packit Service |
084de1 |
},
|
|
Packit Service |
084de1 |
"MaxProtocol" => "TLSv1.2"
|
|
Packit Service |
084de1 |
},
|
|
Packit Service |
084de1 |
"server" => {
|
|
Packit Service |
084de1 |
"Options" => $s1,
|
|
Packit Service |
084de1 |
"extra" => {
|
|
Packit Service |
084de1 |
# We don't test mismatch here.
|
|
Packit Service |
084de1 |
"ServerNameCallback" => "IgnoreMismatch",
|
|
Packit Service |
084de1 |
},
|
|
Packit Service |
084de1 |
},
|
|
Packit Service |
084de1 |
"server2" => {
|
|
Packit Service |
084de1 |
"Options" => $s2,
|
|
Packit Service |
084de1 |
},
|
|
Packit Service |
084de1 |
"test" => {
|
|
Packit Service |
084de1 |
"ExpectedServerName" => $n,
|
|
Packit Service |
084de1 |
"ExpectedResult" => "Success",
|
|
Packit Service |
084de1 |
"SessionIdExpected" => $session_id_result,
|
|
Packit Service |
084de1 |
"SessionTicketExpected" => $ticket_result,
|
|
Packit Service |
084de1 |
}
|
|
Packit Service |
084de1 |
};
|
|
Packit Service |
084de1 |
}
|
|
Packit Service |
084de1 |
}
|
|
Packit Service |
084de1 |
}
|
|
Packit Service |
084de1 |
}
|
|
Packit Service |
084de1 |
}
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
# If the client has session tickets disabled, then No support
|
|
Packit Service |
084de1 |
# If the server initial_ctx has session tickets disabled, then No support
|
|
Packit Service |
084de1 |
# If SNI is in use, then if the "switched-to" context has session tickets disabled,
|
|
Packit Service |
084de1 |
# then No support
|
|
Packit Service |
084de1 |
sub expected_result {
|
|
Packit Service |
084de1 |
my ($c, $s1, $s2, $n) = @_;
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
return "No" if $c eq "-SessionTicket";
|
|
Packit Service |
084de1 |
return "No" if $s1 eq "-SessionTicket";
|
|
Packit Service |
084de1 |
return "No" if ($s2 eq "-SessionTicket" && $n eq "server2");
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
return "Yes";
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
}
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
# Add a "Broken" case.
|
|
Packit Service |
084de1 |
push @tests, {
|
|
Packit Service |
084de1 |
"name" => "sni-session-ticket",
|
|
Packit Service |
084de1 |
"client" => {
|
|
Packit Service |
084de1 |
"MaxProtocol" => "TLSv1.2",
|
|
Packit Service |
084de1 |
"Options" => "SessionTicket",
|
|
Packit Service |
084de1 |
"extra" => {
|
|
Packit Service |
084de1 |
"ServerName" => "server1",
|
|
Packit Service |
084de1 |
}
|
|
Packit Service |
084de1 |
},
|
|
Packit Service |
084de1 |
"server" => {
|
|
Packit Service |
084de1 |
"Options" => "SessionTicket",
|
|
Packit Service |
084de1 |
"extra" => {
|
|
Packit Service |
084de1 |
"BrokenSessionTicket" => "Yes",
|
|
Packit Service |
084de1 |
},
|
|
Packit Service |
084de1 |
},
|
|
Packit Service |
084de1 |
"server2" => {
|
|
Packit Service |
084de1 |
"Options" => "SessionTicket",
|
|
Packit Service |
084de1 |
},
|
|
Packit Service |
084de1 |
"test" => {
|
|
Packit Service |
084de1 |
"ExpectedResult" => "Success",
|
|
Packit Service |
084de1 |
"SessionTicketExpected" => "No",
|
|
Packit Service |
084de1 |
}
|
|
Packit Service |
084de1 |
};
|
|
Packit Service |
084de1 |
|
|
Packit Service |
084de1 |
generate_tests();
|