Mercurial > hg > nginx-tests
comparison stream_ssl.t @ 645:ed103c38b115
Tests: more ssl_session_cache tests in stream_ssl.t.
author | Andrey Zelenkov <zelenkov@nginx.com> |
---|---|
date | Thu, 13 Aug 2015 16:52:00 +0300 |
parents | 1925b27f24b6 |
children | f4189a38c3a4 |
comparison
equal
deleted
inserted
replaced
644:df8a498e0d50 | 645:ed103c38b115 |
---|---|
35 | 35 |
36 my $t = Test::Nginx->new()->has(qw/stream stream_ssl/)->has_daemon('openssl'); | 36 my $t = Test::Nginx->new()->has(qw/stream stream_ssl/)->has_daemon('openssl'); |
37 | 37 |
38 $t->todo_alerts() if $^O eq 'solaris'; | 38 $t->todo_alerts() if $^O eq 'solaris'; |
39 | 39 |
40 $t->plan(5)->write_file_expand('nginx.conf', <<'EOF'); | 40 $t->plan(7)->write_file_expand('nginx.conf', <<'EOF'); |
41 | 41 |
42 %%TEST_GLOBALS%% | 42 %%TEST_GLOBALS%% |
43 | 43 |
44 daemon off; | 44 daemon off; |
45 | 45 |
72 | 72 |
73 server { | 73 server { |
74 listen 127.0.0.1:8083 ssl; | 74 listen 127.0.0.1:8083 ssl; |
75 proxy_pass 127.0.0.1:8081; | 75 proxy_pass 127.0.0.1:8081; |
76 | 76 |
77 ssl_session_cache builtin:1000; | |
77 ssl_password_file password_fifo; | 78 ssl_password_file password_fifo; |
78 } | 79 } |
79 | 80 |
80 server { | 81 server { |
81 listen 127.0.0.1:8084 ssl; | 82 listen 127.0.0.1:8084 ssl; |
82 proxy_pass 127.0.0.1:8081; | 83 proxy_pass 127.0.0.1:8081; |
83 | 84 |
85 ssl_session_cache shared:SSL:1m; | |
84 ssl_certificate_key inherits.key; | 86 ssl_certificate_key inherits.key; |
85 ssl_certificate inherits.crt; | 87 ssl_certificate inherits.crt; |
86 } | 88 } |
87 } | 89 } |
88 | 90 |
137 | 139 |
138 ($s, $ssl) = get_ssl_socket(8080); | 140 ($s, $ssl) = get_ssl_socket(8080); |
139 $ses = Net::SSLeay::get_session($ssl); | 141 $ses = Net::SSLeay::get_session($ssl); |
140 | 142 |
141 ($s, $ssl) = get_ssl_socket(8080, $ses); | 143 ($s, $ssl) = get_ssl_socket(8080, $ses); |
142 is(Net::SSLeay::session_reused($ssl), 1, 'session reused'); | 144 is(Net::SSLeay::session_reused($ssl), 1, 'builtin session reused'); |
143 | 145 |
144 ($s, $ssl) = get_ssl_socket(8082); | 146 ($s, $ssl) = get_ssl_socket(8082); |
145 $ses = Net::SSLeay::get_session($ssl); | 147 $ses = Net::SSLeay::get_session($ssl); |
146 | 148 |
147 ($s, $ssl) = get_ssl_socket(8082, $ses); | 149 ($s, $ssl) = get_ssl_socket(8082, $ses); |
148 isnt(Net::SSLeay::session_reused($ssl), 1, 'session not reused'); | 150 isnt(Net::SSLeay::session_reused($ssl), 1, 'session not reused'); |
151 | |
152 ($s, $ssl) = get_ssl_socket(8083); | |
153 $ses = Net::SSLeay::get_session($ssl); | |
154 | |
155 ($s, $ssl) = get_ssl_socket(8083, $ses); | |
156 is(Net::SSLeay::session_reused($ssl), 1, 'builtin size session reused'); | |
157 | |
158 ($s, $ssl) = get_ssl_socket(8084); | |
159 $ses = Net::SSLeay::get_session($ssl); | |
160 | |
161 ($s, $ssl) = get_ssl_socket(8084, $ses); | |
162 is(Net::SSLeay::session_reused($ssl), 1, 'shared session reused'); | |
149 | 163 |
150 # ssl_certificate inheritance | 164 # ssl_certificate inheritance |
151 | 165 |
152 ($s, $ssl) = get_ssl_socket(8080); | 166 ($s, $ssl) = get_ssl_socket(8080); |
153 like(Net::SSLeay::dump_peer_certificate($ssl), qr/CN=localhost/, 'CN'); | 167 like(Net::SSLeay::dump_peer_certificate($ssl), qr/CN=localhost/, 'CN'); |