Mercurial > hg > nginx-tests
comparison upstream_zone_ssl.t @ 1849:72d206b37df1
Tests: fixed upstream zone ssl tests with LibreSSL and TLSv1.3.
LibreSSL does not support session reuse with TLSv1.3.
author | Maxim Dounin <mdounin@mdounin.ru> |
---|---|
date | Thu, 23 Mar 2023 19:50:30 +0300 |
parents | dbce8fb5f5f8 |
children |
comparison
equal
deleted
inserted
replaced
1848:727741cdff74 | 1849:72d206b37df1 |
---|---|
54 ssl_certificate localhost.crt; | 54 ssl_certificate localhost.crt; |
55 ssl_session_cache builtin; | 55 ssl_session_cache builtin; |
56 | 56 |
57 location / { | 57 location / { |
58 add_header X-Session $ssl_session_reused; | 58 add_header X-Session $ssl_session_reused; |
59 add_header X-Protocol $ssl_protocol; | |
59 } | 60 } |
60 } | 61 } |
61 | 62 |
62 server { | 63 server { |
63 listen 127.0.0.1:8080; | 64 listen 127.0.0.1:8080; |
112 ############################################################################### | 113 ############################################################################### |
113 | 114 |
114 like(http_get('/ssl'), qr/200 OK.*X-Session: \./s, 'ssl'); | 115 like(http_get('/ssl'), qr/200 OK.*X-Session: \./s, 'ssl'); |
115 like(http_get('/ssl'), qr/200 OK.*X-Session: \./s, 'ssl 2'); | 116 like(http_get('/ssl'), qr/200 OK.*X-Session: \./s, 'ssl 2'); |
116 like(http_get('/ssl_reuse'), qr/200 OK.*X-Session: \./s, 'ssl session new'); | 117 like(http_get('/ssl_reuse'), qr/200 OK.*X-Session: \./s, 'ssl session new'); |
118 | |
119 TODO: { | |
120 local $TODO = 'no TLSv1.3 sessions in LibreSSL' | |
121 if $t->has_module('LibreSSL') and test_tls13(); | |
122 | |
117 like(http_get('/ssl_reuse'), qr/200 OK.*X-Session: r/s, 'ssl session reused'); | 123 like(http_get('/ssl_reuse'), qr/200 OK.*X-Session: r/s, 'ssl session reused'); |
118 like(http_get('/ssl_reuse'), qr/200 OK.*X-Session: r/s, 'ssl session reused 2'); | 124 like(http_get('/ssl_reuse'), qr/200 OK.*X-Session: r/s, 'ssl session reused 2'); |
125 | |
126 } | |
119 | 127 |
120 like(http_get('/backup'), qr/200 OK.*X-Session: \./s, 'backup'); | 128 like(http_get('/backup'), qr/200 OK.*X-Session: \./s, 'backup'); |
121 like(http_get('/backup'), qr/200 OK.*X-Session: \./s, 'backup 2'); | 129 like(http_get('/backup'), qr/200 OK.*X-Session: \./s, 'backup 2'); |
122 like(http_get('/backup_reuse'), qr/200 OK.*X-Session: \./s, 'backup new'); | 130 like(http_get('/backup_reuse'), qr/200 OK.*X-Session: \./s, 'backup new'); |
131 | |
132 TODO: { | |
133 local $TODO = 'no TLSv1.3 sessions in LibreSSL' | |
134 if $t->has_module('LibreSSL') and test_tls13(); | |
135 | |
123 like(http_get('/backup_reuse'), qr/200 OK.*X-Session: r/s, 'backup reused'); | 136 like(http_get('/backup_reuse'), qr/200 OK.*X-Session: r/s, 'backup reused'); |
124 | 137 |
138 } | |
139 | |
125 ############################################################################### | 140 ############################################################################### |
141 | |
142 sub test_tls13 { | |
143 http_get('/ssl') =~ /TLSv1.3/; | |
144 } | |
145 | |
146 ############################################################################### |