Mercurial > hg > nginx-tests
comparison ssl_certificate.t @ 1966:c924ae8d7104
Tests: session reuse handling with Net::SSLeay with LibreSSL.
LibreSSL does not support session reuse with TLSv1.3, and this causes
various test failures if Net::SSLeay is compiled with LibreSSL. Notably,
this affects macOS, where Net::SSLeay compiled with LibreSSL is shipped
with the OS.
Fix is to mark relevant tests as TODO if Net::SSLeay is compiled with
LibreSSL, similarly to what we already do for LibreSSL on the server side.
| author | Maxim Dounin <mdounin@mdounin.ru> |
|---|---|
| date | Mon, 06 May 2024 00:01:46 +0300 |
| parents | d570dbcad925 |
| children | b5036a0f9ae0 |
comparison
equal
deleted
inserted
replaced
| 1965:84f4d4930835 | 1966:c924ae8d7104 |
|---|---|
| 169 TODO: { | 169 TODO: { |
| 170 local $TODO = 'no TLSv1.3 sessions, old Net::SSLeay' | 170 local $TODO = 'no TLSv1.3 sessions, old Net::SSLeay' |
| 171 if $Net::SSLeay::VERSION < 1.88 && test_tls13(); | 171 if $Net::SSLeay::VERSION < 1.88 && test_tls13(); |
| 172 local $TODO = 'no TLSv1.3 sessions, old IO::Socket::SSL' | 172 local $TODO = 'no TLSv1.3 sessions, old IO::Socket::SSL' |
| 173 if $IO::Socket::SSL::VERSION < 2.061 && test_tls13(); | 173 if $IO::Socket::SSL::VERSION < 2.061 && test_tls13(); |
| 174 local $TODO = 'not TLSv1.3 sessions in Net::SSLeay (LibreSSL)' | |
| 175 if Net::SSLeay::constant("LIBRESSL_VERSION_NUMBER") && test_tls13(); | |
| 174 | 176 |
| 175 like(get('default', 8080, $s), qr/default:r/, 'session reused'); | 177 like(get('default', 8080, $s), qr/default:r/, 'session reused'); |
| 176 | 178 |
| 177 TODO: { | 179 TODO: { |
| 178 # ticket key name mismatch prevents session resumption | 180 # ticket key name mismatch prevents session resumption |