nginx-tests: ssl.t annotate

annotate ssl.t @ 1021:ebdf239722b9

Tests: relaxed proxy_cache_lock.t nolock tests to fix on Solaris. Assumed that the order of responses being arrived in nolock case may be ignored. An important part of such case is that the only last response should be cached.

author	Sergey Kandaurov <pluknet@nginx.com>
date	Fri, 02 Sep 2016 12:17:35 +0300
parents	882267679006
children	4606a2ec3d7c

rev	line source
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	1 #!/usr/bin/perl
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	2
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	3 # (C) Sergey Kandaurov
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	4 # (C) Andrey Zelenkov
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	5 # (C) Nginx, Inc.
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	6
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	7 # Tests for http ssl module.
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	8
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	9 ###############################################################################
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	10
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	11 use warnings;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	12 use strict;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	13
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	14 use Test::More;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	15
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	16 BEGIN { use FindBin; chdir($FindBin::Bin); }
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	17
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	18 use lib 'lib';
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	19 use Test::Nginx;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	20
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	21 ###############################################################################
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	22
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	23 select STDERR; $\| = 1;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	24 select STDOUT; $\| = 1;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	25
430 a82b02635614 Tests: skip ssl tests with ancient IO::Socket::SSL. Maxim Dounin <mdounin@mdounin.ru> parents: 397 diff changeset	26 eval { require IO::Socket::SSL; };
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	27 plan(skip_all => 'IO::Socket::SSL not installed') if $@;
430 a82b02635614 Tests: skip ssl tests with ancient IO::Socket::SSL. Maxim Dounin <mdounin@mdounin.ru> parents: 397 diff changeset	28 eval { IO::Socket::SSL::SSL_VERIFY_NONE(); };
a82b02635614 Tests: skip ssl tests with ancient IO::Socket::SSL. Maxim Dounin <mdounin@mdounin.ru> parents: 397 diff changeset	29 plan(skip_all => 'IO::Socket::SSL too old') if $@;
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	30
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	31 my $t = Test::Nginx->new()->has(qw/http http_ssl rewrite/)
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	32 ->has_daemon('openssl');
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	33
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	34 $t->plan(18)->write_file_expand('nginx.conf', <<'EOF');
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	35
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	36 %%TEST_GLOBALS%%
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	37
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	38 daemon off;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	39
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	40 events {
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	41 }
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	42
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	43 http {
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	44 %%TEST_GLOBALS_HTTP%%
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	45
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	46 ssl_certificate_key localhost.key;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	47 ssl_certificate localhost.crt;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	48 ssl_session_tickets off;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	49
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	50 server {
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	51 listen 127.0.0.1:8085 ssl;
882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	52 listen 127.0.0.1:8080;
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	53 server_name localhost;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	54
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	55 ssl_certificate_key inner.key;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	56 ssl_certificate inner.crt;
503 071e8941e3bf Tests: reduce shared memory zone sizes. Maxim Dounin <mdounin@mdounin.ru> parents: 430 diff changeset	57 ssl_session_cache shared:SSL:1m;
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	58
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	59 location /reuse {
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	60 return 200 "body $ssl_session_reused";
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	61 }
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	62 location /id {
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	63 return 200 "body $ssl_session_id";
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	64 }
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	65 location /cipher {
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	66 return 200 "body $ssl_cipher";
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	67 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	68 location /client_verify {
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	69 return 200 "body $ssl_client_verify";
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	70 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	71 location /protocol {
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	72 return 200 "body $ssl_protocol";
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	73 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	74 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	75
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	76 server {
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	77 listen 127.0.0.1:8081;
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	78 server_name localhost;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	79
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	80 # Special case for enabled "ssl" directive.
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	81
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	82 ssl on;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	83 ssl_session_cache builtin;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	84 ssl_session_timeout 1;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	85
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	86 location / {
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	87 return 200 "body $ssl_session_reused";
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	88 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	89 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	90
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	91 server {
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	92 listen 127.0.0.1:8082 ssl;
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	93 server_name localhost;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	94
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	95 ssl_session_cache builtin:1000;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	96
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	97 location / {
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	98 return 200 "body $ssl_session_reused";
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	99 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	100 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	101
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	102 server {
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	103 listen 127.0.0.1:8083 ssl;
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	104 server_name localhost;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	105
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	106 ssl_session_cache none;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	107
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	108 location / {
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	109 return 200 "body $ssl_session_reused";
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	110 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	111 }
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	112
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	113 server {
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	114 listen 127.0.0.1:8084 ssl;
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	115 server_name localhost;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	116
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	117 ssl_session_cache off;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	118
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	119 location / {
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	120 return 200 "body $ssl_session_reused";
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	121 }
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	122 }
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	123 }
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	124
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	125 EOF
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	126
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	127 $t->write_file('openssl.conf', <<EOF);
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	128 [ req ]
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	129 default_bits = 2048
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	130 encrypt_key = no
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	131 distinguished_name = req_distinguished_name
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	132 [ req_distinguished_name ]
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	133 EOF
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	134
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	135 my $d = $t->testdir();
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	136
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	137 foreach my $name ('localhost', 'inner') {
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	138 system('openssl req -x509 -new '
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	139 . "-config '$d/openssl.conf' -subj '/CN=$name/' "
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	140 . "-out '$d/$name.crt' -keyout '$d/$name.key' "
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	141 . ">>$d/openssl.out 2>&1") == 0
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	142 or die "Can't create certificate for $name: $!\n";
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	143 }
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	144
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	145 my $ctx = new IO::Socket::SSL::SSL_Context(
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	146 SSL_verify_mode => IO::Socket::SSL::SSL_VERIFY_NONE(),
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	147 SSL_session_cache_size => 100);
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	148
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	149 $t->run();
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	150
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	151 ###############################################################################
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	152
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	153 like(http_get('/reuse', socket => get_ssl_socket($ctx, port(8085))),
952 e9064d691790 Tests: converted tests to run in parallel. Andrey Zelenkov <zelenkov@nginx.com> parents: 664 diff changeset	154 qr/^body \.$/m, 'shared initial session');
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	155 like(http_get('/reuse', socket => get_ssl_socket($ctx, port(8085))),
952 e9064d691790 Tests: converted tests to run in parallel. Andrey Zelenkov <zelenkov@nginx.com> parents: 664 diff changeset	156 qr/^body r$/m, 'shared session reused');
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	157
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	158 like(http_get('/', socket => get_ssl_socket($ctx, port(8081))), qr/^body \.$/m,
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	159 'builtin initial session');
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	160 like(http_get('/', socket => get_ssl_socket($ctx, port(8081))), qr/^body r$/m,
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	161 'builtin session reused');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	162
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	163 like(http_get('/', socket => get_ssl_socket($ctx, port(8082))), qr/^body \.$/m,
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	164 'builtin size initial session');
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	165 like(http_get('/', socket => get_ssl_socket($ctx, port(8082))), qr/^body r$/m,
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	166 'builtin size session reused');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	167
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	168 like(http_get('/', socket => get_ssl_socket($ctx, port(8083))), qr/^body \.$/m,
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	169 'reused none initial session');
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	170 like(http_get('/', socket => get_ssl_socket($ctx, port(8083))), qr/^body \.$/m,
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	171 'session not reused 1');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	172
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	173 like(http_get('/', socket => get_ssl_socket($ctx, port(8084))), qr/^body \.$/m,
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	174 'reused off initial session');
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	175 like(http_get('/', socket => get_ssl_socket($ctx, port(8084))), qr/^body \.$/m,
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	176 'session not reused 2');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	177
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	178 # ssl certificate inheritance
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	179
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	180 my $s = get_ssl_socket($ctx, port(8081));
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	181 like($s->dump_peer_certificate(), qr/CN=localhost/, 'CN');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	182
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	183 $s->close();
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	184
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	185 $s = get_ssl_socket($ctx, port(8085));
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	186 like($s->dump_peer_certificate(), qr/CN=inner/, 'CN inner');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	187
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	188 $s->close();
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	189
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	190 # session timeout
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	191
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	192 select undef, undef, undef, 2.1;
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	193
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	194 like(http_get('/', socket => get_ssl_socket($ctx, port(8081))), qr/^body \.$/m,
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	195 'session timeout');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	196
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	197 # embedded variables
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	198
952 e9064d691790 Tests: converted tests to run in parallel. Andrey Zelenkov <zelenkov@nginx.com> parents: 664 diff changeset	199 my ($sid) = http_get('/id',
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	200 socket => get_ssl_socket($ctx, port(8085))) =~ /^body (\w+)$/m;
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	201 is(length $sid, 64, 'session id');
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	202
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	203 unlike(http_get('/id'), qr/body \w/, 'session id no ssl');
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	204
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	205 like(http_get('/cipher', socket => get_ssl_socket($ctx, port(8085))),
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	206 qr/^body [\w-]+$/m, 'cipher');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	207
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	208 like(http_get('/client_verify', socket => get_ssl_socket($ctx, port(8085))),
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	209 qr/^body NONE$/m, 'client verify');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	210
974 882267679006 Tests: simplified parallel modifications in tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 952 diff changeset	211 like(http_get('/protocol', socket => get_ssl_socket($ctx, port(8085))),
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	212 qr/^body (TLS\|SSL)v(\d\|\.)+$/m, 'protocol');
97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	213
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	214 ###############################################################################
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	215
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	216 sub get_ssl_socket {
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	217 my ($ctx, $port) = @_;
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	218 my $s;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	219
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	220 eval {
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	221 local $SIG{ALRM} = sub { die "timeout\n" };
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	222 local $SIG{PIPE} = sub { die "sigpipe\n" };
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	223 alarm(2);
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	224 $s = IO::Socket::SSL->new(
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	225 Proto => 'tcp',
664 97660514e518 Tests: more http ssl tests. Andrey Zelenkov <zelenkov@nginx.com> parents: 503 diff changeset	226 PeerAddr => '127.0.0.1',
952 e9064d691790 Tests: converted tests to run in parallel. Andrey Zelenkov <zelenkov@nginx.com> parents: 664 diff changeset	227 PeerPort => $port,
370 74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	228 SSL_verify_mode => IO::Socket::SSL::SSL_VERIFY_NONE(),
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	229 SSL_reuse_ctx => $ctx,
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	230 SSL_error_trap => sub { die $_[1] }
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	231 );
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	232 alarm(0);
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	233 };
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	234 alarm(0);
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	235
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	236 if ($@) {
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	237 log_in("died: $@");
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	238 return undef;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	239 }
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	240
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	241 return $s;
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	242 }
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	243
74cfe56c7b83 Tests: simple https tests. Sergey Kandaurov <pluknet@nginx.com> parents: diff changeset	244 ###############################################################################

Mercurial > hg > nginx-tests

annotate ssl.t @ 1021:ebdf239722b9