Mercurial > hg > nginx-tests

annotate ssl_sni_reneg.t @ 1380:f50c7d90f5c9

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Tests: more https sni tests with renegotiation (ticket #1646).
author Sergey Kandaurov <pluknet@nginx.com>
date Tue, 02 Oct 2018 18:40:01 +0300
parents 09c2291b2bab
children ad3cb6f451a5
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
1 #!/usr/bin/perl
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
2
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
3 # (C) Sergey Kandaurov
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
4 # (C) Nginx, Inc.
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
5
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
6 # Tests for http ssl module with SNI and renegotiation.
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
7
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
8 ###############################################################################
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
9
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
10 use warnings;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
11 use strict;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
12
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
13 use Test::More;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
14
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
15 use Socket qw/ :DEFAULT CRLF /;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
16
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
17 BEGIN { use FindBin; chdir($FindBin::Bin); }
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
18
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
19 use lib 'lib';
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
20 use Test::Nginx;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
21
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
22 ###############################################################################
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
23
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
24 select STDERR; $| = 1;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
25 select STDOUT; $| = 1;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
26
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
27 eval {
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
28 require Net::SSLeay;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
29 Net::SSLeay::load_error_strings();
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
30 Net::SSLeay::SSLeay_add_ssl_algorithms();
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
31 Net::SSLeay::randomize();
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
32 };
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
33 plan(skip_all => 'Net::SSLeay not installed') if $@;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
34
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
35 eval {
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
36 my $ctx = Net::SSLeay::CTX_new() or die;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
37 my $ssl = Net::SSLeay::new($ctx) or die;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
38 Net::SSLeay::set_tlsext_host_name($ssl, 'example.org') == 1 or die;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
39 };
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
40 plan(skip_all => 'Net::SSLeay with OpenSSL SNI support required') if $@;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
41
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
42 my $t = Test::Nginx->new()->has(qw/http http_ssl/)->has_daemon('openssl')
1380
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
43 ->plan(8);
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
44
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
45 $t->write_file_expand('nginx.conf', <<'EOF');
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
46
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
47 %%TEST_GLOBALS%%
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
48
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
49 daemon off;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
50
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
51 events {
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
52 }
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
53
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
54 http {
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
55 %%TEST_GLOBALS_HTTP%%
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
56
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
57 ssl_certificate_key localhost.key;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
58 ssl_certificate localhost.crt;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
59
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
60 server {
974
882267679006 Tests: simplified parallel modifications in tests.
Andrey Zelenkov <zelenkov@nginx.com>
parents: 952
diff changeset
61 listen 127.0.0.1:8080 ssl;
1380
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
62 listen 127.0.0.1:8081 ssl;
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
63 server_name localhost;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
64
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
65 location / { }
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
66 }
1380
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
67
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
68 server {
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
69 listen 127.0.0.1:8081 ssl;
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
70 server_name localhost2;
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
71
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
72 location / { }
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
73 }
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
74 }
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
75
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
76 EOF
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
77
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
78 $t->write_file('openssl.conf', <<EOF);
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
79 [ req ]
1116
8ef51dbb5d69 Tests: reduced OpenSSL default key length to 1024.
Sergey Kandaurov <pluknet@nginx.com>
parents: 1102
diff changeset
80 default_bits = 1024
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
81 encrypt_key = no
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
82 distinguished_name = req_distinguished_name
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
83 [ req_distinguished_name ]
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
84 EOF
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
85
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
86 my $d = $t->testdir();
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
87
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
88 foreach my $name ('localhost') {
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
89 system('openssl req -x509 -new '
1220
0af58b78df35 Tests: removed single quotes from system() calls.
Sergey Kandaurov <pluknet@nginx.com>
parents: 1173
diff changeset
90 . "-config $d/openssl.conf -subj /CN=$name/ "
0af58b78df35 Tests: removed single quotes from system() calls.
Sergey Kandaurov <pluknet@nginx.com>
parents: 1173
diff changeset
91 . "-out $d/$name.crt -keyout $d/$name.key "
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
92 . ">>$d/openssl.out 2>&1") == 0
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
93 or die "Can't create certificate for $name: $!\n";
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
94 }
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
95
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
96 $t->run();
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
97
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
98 ###############################################################################
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
99
1380
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
100 my ($s, $ssl) = get_ssl_socket(8080);
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
101 ok($s, 'connection');
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
102
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
103 SKIP: {
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
104 skip 'connection failed', 3 unless $s;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
105
1173
1a54d45d5587 Tests: handled SIGPIPE in ssl_sni_reneg.t.
Sergey Kandaurov <pluknet@nginx.com>
parents: 1116
diff changeset
106 local $SIG{PIPE} = 'IGNORE';
1a54d45d5587 Tests: handled SIGPIPE in ssl_sni_reneg.t.
Sergey Kandaurov <pluknet@nginx.com>
parents: 1116
diff changeset
107
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
108 Net::SSLeay::write($ssl, 'GET / HTTP/1.0' . CRLF);
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
109
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
110 ok(Net::SSLeay::renegotiate($ssl), 'renegotiation');
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
111 ok(Net::SSLeay::set_tlsext_host_name($ssl, 'localhost'), 'SNI');
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
112
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
113 Net::SSLeay::write($ssl, 'Host: localhost' . CRLF . CRLF);
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
114
1377
09c2291b2bab Tests: relaxed test for no response on SSL renegotiation attempt.
Sergey Kandaurov <pluknet@nginx.com>
parents: 1220
diff changeset
115 ok(!Net::SSLeay::read($ssl), 'response');
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
116
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
117 }
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
118
1380
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
119 # virtual servers
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
120 # in [1.15.4..1.15.5) SSL_OP_NO_RENEGOTIATION is cleared in servername callback
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
121
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
122 ($s, $ssl) = get_ssl_socket(8081);
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
123 ok($s, 'connection 2');
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
124
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
125 SKIP: {
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
126 skip 'connection failed', 3 unless $s;
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
127
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
128 Net::SSLeay::write($ssl, 'GET / HTTP/1.0' . CRLF);
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
129
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
130 ok(Net::SSLeay::renegotiate($ssl), 'renegotiation');
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
131 ok(Net::SSLeay::set_tlsext_host_name($ssl, 'localhost'), 'SNI');
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
132
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
133 Net::SSLeay::write($ssl, 'Host: localhost' . CRLF . CRLF);
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
134
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
135 ok(!Net::SSLeay::read($ssl), 'virtual servers');
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
136
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
137 }
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
138
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
139 ###############################################################################
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
140
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
141 sub get_ssl_socket {
1380
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
142 my ($port) = @_;
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
143 my $s;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
144
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
145 my $dest_ip = inet_aton('127.0.0.1');
1380
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
146 my $dest_serv_params = sockaddr_in(port($port), $dest_ip);
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
147
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
148 eval {
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
149 local $SIG{ALRM} = sub { die "timeout\n" };
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
150 local $SIG{PIPE} = sub { die "sigpipe\n" };
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
151 alarm(2);
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
152 socket($s, &AF_INET, &SOCK_STREAM, 0) or die "socket: $!";
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
153 connect($s, $dest_serv_params) or die "connect: $!";
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
154 alarm(0);
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
155 };
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
156 alarm(0);
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
157
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
158 if ($@) {
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
159 log_in("died: $@");
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
160 return undef;
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
161 }
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
162
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
163 my $ctx = Net::SSLeay::CTX_new() or die("Failed to create SSL_CTX $!");
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
164 my $ssl = Net::SSLeay::new($ctx) or die("Failed to create SSL $!");
1102
89d7d4d1be40 Tests: whitespace fixes.
Andrey Zelenkov <zelenkov@nginx.com>
parents: 1020
diff changeset
165 Net::SSLeay::set_fd($ssl, fileno($s));
1380
f50c7d90f5c9 Tests: more https sni tests with renegotiation (ticket #1646).
Sergey Kandaurov <pluknet@nginx.com>
parents: 1377
diff changeset
166 Net::SSLeay::set_tlsext_host_name($ssl, 'localhost');
807
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
167 Net::SSLeay::connect($ssl) or die("ssl connect");
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
168
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
169 return ($s, $ssl);
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
170 }
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
171
5540ee8a12ce Tests: https sni tests with renegotiation (ticket #845).
Sergey Kandaurov <pluknet@nginx.com>
parents:
diff changeset
172 ###############################################################################