source-git / openssl

Clone
Source Code
GIT

Blame test/ssl-tests/06-sni-ticket.conf.in

c8 c8s master
  1.   c4476c2d191c8f18018d947521358ac6321a212e
  2.   test
  3.   ssl-tests
  4.   06-sni-ticket.conf.in
Blob History Raw
Packit c4476c 
# -*- mode: perl; -*-
Packit c4476c 
# Copyright 2016-2016 The OpenSSL Project Authors. All Rights Reserved.
Packit c4476c 
#
Packit c4476c 
# Licensed under the OpenSSL license (the "License").  You may not use
Packit c4476c 
# this file except in compliance with the License.  You can obtain a copy
Packit c4476c 
# in the file LICENSE in the source distribution or at
Packit c4476c 
# https://www.openssl.org/source/license.html
Packit c4476c
Packit c4476c
Packit c4476c 
## Test SNI/Session tickets
Packit c4476c
Packit c4476c 
use strict;
Packit c4476c 
use warnings;
Packit c4476c
Packit c4476c 
package ssltests;
Packit c4476c
Packit c4476c
Packit c4476c 
our @tests = ();
Packit c4476c
Packit c4476c 
#Note: MaxProtocol is set to TLSv1.2 as session tickets work differently in
Packit c4476c 
#TLSv1.3.
Packit c4476c 
sub generate_tests() {
Packit c4476c 
    foreach my $c ("SessionTicket", "-SessionTicket") {
Packit c4476c 
        foreach my $s1 ("SessionTicket", "-SessionTicket") {
Packit c4476c 
            foreach my $s2 ("SessionTicket", "-SessionTicket") {
Packit c4476c 
                foreach my $n ("server1", "server2") {
Packit c4476c 
                    my $ticket_result = expected_result($c, $s1, $s2, $n);
Packit c4476c 
                    my $session_id_result = "Yes"; # always, even with a ticket
Packit c4476c 
                    push @tests, {
Packit c4476c 
                        "name" => "sni-session-ticket",
Packit c4476c 
                        "client" => {
Packit c4476c 
                            "Options" => $c,
Packit c4476c 
                            "extra" => {
Packit c4476c 
                                "ServerName" => $n,
Packit c4476c 
                            },
Packit c4476c 
                            "MaxProtocol" => "TLSv1.2"
Packit c4476c 
                        },
Packit c4476c 
                        "server" => {
Packit c4476c 
                            "Options" => $s1,
Packit c4476c 
                            "extra" => {
Packit c4476c 
                                # We don't test mismatch here.
Packit c4476c 
                                "ServerNameCallback" => "IgnoreMismatch",
Packit c4476c 
                            },
Packit c4476c 
                        },
Packit c4476c 
                        "server2" => {
Packit c4476c 
                            "Options" => $s2,
Packit c4476c 
                        },
Packit c4476c 
                        "test" => {
Packit c4476c 
                            "ExpectedServerName" => $n,
Packit c4476c 
                            "ExpectedResult" => "Success",
Packit c4476c 
                            "SessionIdExpected" => $session_id_result,
Packit c4476c 
                            "SessionTicketExpected" => $ticket_result,
Packit c4476c 
                        }
Packit c4476c 
                    };
Packit c4476c 
                }
Packit c4476c 
            }
Packit c4476c 
        }
Packit c4476c 
    }
Packit c4476c 
}
Packit c4476c
Packit c4476c 
# If the client has session tickets disabled, then No support
Packit c4476c 
# If the server initial_ctx has session tickets disabled, then No support
Packit c4476c 
# If SNI is in use, then if the "switched-to" context has session tickets disabled,
Packit c4476c 
#    then No support
Packit c4476c 
sub expected_result {
Packit c4476c 
    my ($c, $s1, $s2, $n) = @_;
Packit c4476c
Packit c4476c 
    return "No" if $c eq "-SessionTicket";
Packit c4476c 
    return "No" if $s1 eq "-SessionTicket";
Packit c4476c 
    return "No" if ($s2 eq "-SessionTicket" && $n eq "server2");
Packit c4476c
Packit c4476c 
    return "Yes";
Packit c4476c
Packit c4476c 
}
Packit c4476c
Packit c4476c 
# Add a "Broken" case.
Packit c4476c 
push @tests, {
Packit c4476c 
    "name" => "sni-session-ticket",
Packit c4476c 
    "client" => {
Packit c4476c 
        "MaxProtocol" => "TLSv1.2",
Packit c4476c 
        "Options" => "SessionTicket",
Packit c4476c 
        "extra" => {
Packit c4476c 
            "ServerName" => "server1",
Packit c4476c 
        }
Packit c4476c 
    },
Packit c4476c 
    "server" => {
Packit c4476c 
        "Options" => "SessionTicket",
Packit c4476c 
        "extra" => {
Packit c4476c 
              "BrokenSessionTicket" => "Yes",
Packit c4476c 
        },
Packit c4476c 
    },
Packit c4476c 
    "server2" => {
Packit c4476c 
        "Options" => "SessionTicket",
Packit c4476c 
    },
Packit c4476c 
    "test" => {
Packit c4476c 
        "ExpectedResult" => "Success",
Packit c4476c 
        "SessionTicketExpected" => "No",
Packit c4476c 
    }
Packit c4476c 
};
Packit c4476c
Packit c4476c 
generate_tests();

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation