Mercurial > hg > nginx-tests
comparison ssl_sni_sessions.t @ 952:e9064d691790
Tests: converted tests to run in parallel.
| author | Andrey Zelenkov <zelenkov@nginx.com> |
|---|---|
| date | Tue, 21 Jun 2016 16:39:13 +0300 |
| parents | 3200d5b4ffa8 |
| children | 882267679006 |
comparison
equal
deleted
inserted
replaced
| 951:9361c7eddfc1 | 952:e9064d691790 |
|---|---|
| 37 | 37 |
| 38 ssl_certificate_key localhost.key; | 38 ssl_certificate_key localhost.key; |
| 39 ssl_certificate localhost.crt; | 39 ssl_certificate localhost.crt; |
| 40 | 40 |
| 41 server { | 41 server { |
| 42 listen 127.0.0.1:8443 ssl; | 42 listen 127.0.0.1:%%PORT_0%% ssl; |
| 43 server_name default; | 43 server_name default; |
| 44 | 44 |
| 45 ssl_session_tickets off; | 45 ssl_session_tickets off; |
| 46 ssl_session_cache shared:cache1:1m; | 46 ssl_session_cache shared:cache1:1m; |
| 47 | 47 |
| 49 return 200 $ssl_server_name:$ssl_session_reused; | 49 return 200 $ssl_server_name:$ssl_session_reused; |
| 50 } | 50 } |
| 51 } | 51 } |
| 52 | 52 |
| 53 server { | 53 server { |
| 54 listen 127.0.0.1:8443; | 54 listen 127.0.0.1:%%PORT_0%%; |
| 55 server_name nocache; | 55 server_name nocache; |
| 56 | 56 |
| 57 ssl_session_tickets off; | 57 ssl_session_tickets off; |
| 58 ssl_session_cache shared:cache2:1m; | 58 ssl_session_cache shared:cache2:1m; |
| 59 | 59 |
| 61 return 200 $ssl_server_name:$ssl_session_reused; | 61 return 200 $ssl_server_name:$ssl_session_reused; |
| 62 } | 62 } |
| 63 } | 63 } |
| 64 | 64 |
| 65 server { | 65 server { |
| 66 listen 127.0.0.1:8444 ssl; | 66 listen 127.0.0.1:%%PORT_1%% ssl; |
| 67 server_name default; | 67 server_name default; |
| 68 | 68 |
| 69 ssl_session_ticket_key ticket1.key; | 69 ssl_session_ticket_key ticket1.key; |
| 70 | 70 |
| 71 location / { | 71 location / { |
| 72 return 200 $ssl_server_name:$ssl_session_reused; | 72 return 200 $ssl_server_name:$ssl_session_reused; |
| 73 } | 73 } |
| 74 } | 74 } |
| 75 | 75 |
| 76 server { | 76 server { |
| 77 listen 127.0.0.1:8444; | 77 listen 127.0.0.1:%%PORT_1%%; |
| 78 server_name tickets; | 78 server_name tickets; |
| 79 | 79 |
| 80 ssl_session_ticket_key ticket2.key; | 80 ssl_session_ticket_key ticket2.key; |
| 81 | 81 |
| 82 location / { | 82 location / { |
| 133 | 133 |
| 134 # check that everything works fine with default server | 134 # check that everything works fine with default server |
| 135 | 135 |
| 136 my $ctx = get_ssl_context(); | 136 my $ctx = get_ssl_context(); |
| 137 | 137 |
| 138 like(get('default', 8443, $ctx), qr!default:\.!, 'default server'); | 138 like(get('default', port(0), $ctx), qr!default:\.!, 'default server'); |
| 139 like(get('default', 8443, $ctx), qr!default:r!, 'default server reused'); | 139 like(get('default', port(0), $ctx), qr!default:r!, 'default server reused'); |
| 140 | 140 |
| 141 # check that sessions are still properly saved and restored | 141 # check that sessions are still properly saved and restored |
| 142 # when using an SNI-based virtual server with different session cache; | 142 # when using an SNI-based virtual server with different session cache; |
| 143 # as session resumption happens before SNI, only default server | 143 # as session resumption happens before SNI, only default server |
| 144 # settings are expected to matter | 144 # settings are expected to matter |
| 148 # creating new sessions, uses callbacks from the default server context, but | 148 # creating new sessions, uses callbacks from the default server context, but |
| 149 # provides access to the SNI-selected server context only (ticket #235) | 149 # provides access to the SNI-selected server context only (ticket #235) |
| 150 | 150 |
| 151 $ctx = get_ssl_context(); | 151 $ctx = get_ssl_context(); |
| 152 | 152 |
| 153 like(get('nocache', 8443, $ctx), qr!nocache:\.!, 'without cache'); | 153 like(get('nocache', port(0), $ctx), qr!nocache:\.!, 'without cache'); |
| 154 like(get('nocache', 8443, $ctx), qr!nocache:r!, 'without cache reused'); | 154 like(get('nocache', port(0), $ctx), qr!nocache:r!, 'without cache reused'); |
| 155 | 155 |
| 156 # make sure tickets can be used if an SNI-based virtual server | 156 # make sure tickets can be used if an SNI-based virtual server |
| 157 # uses a different set of session ticket keys explicitly set | 157 # uses a different set of session ticket keys explicitly set |
| 158 | 158 |
| 159 $ctx = get_ssl_context(); | 159 $ctx = get_ssl_context(); |
| 160 | 160 |
| 161 like(get('tickets', 8444, $ctx), qr!tickets:\.!, 'tickets'); | 161 like(get('tickets', port(1), $ctx), qr!tickets:\.!, 'tickets'); |
| 162 like(get('tickets', 8444, $ctx), qr!tickets:r!, 'tickets reused'); | 162 like(get('tickets', port(1), $ctx), qr!tickets:r!, 'tickets reused'); |
| 163 | 163 |
| 164 ############################################################################### | 164 ############################################################################### |
| 165 | 165 |
| 166 sub get_ssl_context { | 166 sub get_ssl_context { |
| 167 return IO::Socket::SSL::SSL_Context->new( | 167 return IO::Socket::SSL::SSL_Context->new( |