Mercurial > hg > nginx-tests

diff ssl_sni_sessions.t @ 1478:f9718a0773b9

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Tests: skip TLS 1.3 session reuse tests with older Perl modules. SSL_reuse_ctx client support for TLS 1.3 (when negotiated) is only available in IO::Socket::SSL version 2.061 or later, Net::SSLeay version 1.88 or later.
author Sergey Kandaurov <pluknet@nginx.com>
date Mon, 20 May 2019 20:25:05 +0300
parents 4e48bf51714f
children dbce8fb5f5f8
line wrap: on
line diff
--- a/ssl_sni_sessions.t
+++ b/ssl_sni_sessions.t
@@ -46,7 +46,7 @@ http {
         ssl_session_cache shared:cache1:1m;
 
         location / {
-            return 200 $ssl_server_name:$ssl_session_reused;
+            return 200 $ssl_server_name:$ssl_session_reused:$ssl_protocol;
         }
     }
 
@@ -104,8 +104,6 @@ eval {
 };
 plan(skip_all => 'Net::SSLeay with OpenSSL SNI support required') if $@;
 
-$t->plan(6);
-
 $t->write_file('openssl.conf', <<EOF);
 [ req ]
 default_bits = 1024
@@ -129,6 +127,12 @@ foreach my $name ('localhost') {
 
 $t->run();
 
+plan(skip_all => 'no TLS 1.3 sessions')
+	if get('default', port(8080), get_ssl_context()) =~ /TLSv1.3/
+	&& ($Net::SSLeay::VERSION < 1.88 || $IO::Socket::SSL::VERSION < 2.061);
+
+$t->plan(6);
+
 ###############################################################################
 
 # check that everything works fine with default server