Mercurial > hg > nginx-tests

comparison ssl.t @ 1094:dd8f126afa32

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Tests: client certificate time variables tests.
author Andrey Zelenkov <zelenkov@nginx.com>
date Mon, 12 Dec 2016 15:53:27 +0300
parents 2b0ef67ab032
children 52553ea2171c
comparison
equal deleted inserted replaced
1093:2b0ef67ab032 1094:dd8f126afa32
78 location /issuer { 78 location /issuer {
79 return 200 "body $ssl_client_i_dn:$ssl_client_i_dn_legacy"; 79 return 200 "body $ssl_client_i_dn:$ssl_client_i_dn_legacy";
80 } 80 }
81 location /subject { 81 location /subject {
82 return 200 "body $ssl_client_s_dn:$ssl_client_s_dn_legacy"; 82 return 200 "body $ssl_client_s_dn:$ssl_client_s_dn_legacy";
83 }
84 location /time {
85 return 200 "body $ssl_client_v_start!$ssl_client_v_end!$ssl_client_v_remain";
83 } 86 }
84 } 87 }
85 88
86 server { 89 server {
87 listen 127.0.0.1:8081; 90 listen 127.0.0.1:8081;
152 new_certs_dir = $d 155 new_certs_dir = $d
153 database = $d/certindex 156 database = $d/certindex
154 default_md = sha1 157 default_md = sha1
155 policy = myca_policy 158 policy = myca_policy
156 serial = $d/certserial 159 serial = $d/certserial
157 default_days = 1 160 default_days = 3
158 161
159 [ myca_policy ] 162 [ myca_policy ]
160 commonName = supplied 163 commonName = supplied
161 EOF 164 EOF
162 165
191 194
192 my $ctx = new IO::Socket::SSL::SSL_Context( 195 my $ctx = new IO::Socket::SSL::SSL_Context(
193 SSL_verify_mode => IO::Socket::SSL::SSL_VERIFY_NONE(), 196 SSL_verify_mode => IO::Socket::SSL::SSL_VERIFY_NONE(),
194 SSL_session_cache_size => 100); 197 SSL_session_cache_size => 100);
195 198
196 $t->try_run('no ssl_ciphers')->plan(21); 199 $t->try_run('no ssl_ciphers')->plan(22);
197 200
198 ############################################################################### 201 ###############################################################################
199 202
200 like(get('/reuse', 8085), qr/^body \.$/m, 'shared initial session'); 203 like(get('/reuse', 8085), qr/^body \.$/m, 'shared initial session');
201 like(get('/reuse', 8085), qr/^body r$/m, 'shared session reused'); 204 like(get('/reuse', 8085), qr/^body r$/m, 'shared session reused');
241 244
242 like(get('/client_verify', 8085), qr/^body NONE$/m, 'client verify'); 245 like(get('/client_verify', 8085), qr/^body NONE$/m, 'client verify');
243 like(get('/protocol', 8085), qr/^body (TLS|SSL)v(\d|\.)+$/m, 'protocol'); 246 like(get('/protocol', 8085), qr/^body (TLS|SSL)v(\d|\.)+$/m, 'protocol');
244 like(cert('/issuer', 8085), qr!^body CN=issuer:/CN=issuer$!m, 'issuer'); 247 like(cert('/issuer', 8085), qr!^body CN=issuer:/CN=issuer$!m, 'issuer');
245 like(cert('/subject', 8085), qr!^body CN=subject:/CN=subject$!m, 'subject'); 248 like(cert('/subject', 8085), qr!^body CN=subject:/CN=subject$!m, 'subject');
249 like(cert('/time', 8085), qr/^body [:\s\w]+![:\s\w]+![23]$/m, 'time');
246 250
247 ############################################################################### 251 ###############################################################################
248 252
249 sub get { 253 sub get {
250 my ($uri, $port) = @_; 254 my ($uri, $port) = @_;