diff options
| author | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-09-06 15:19:49 +0200 |
|---|---|---|
| committer | Nikos Mavrogiannopoulos <nmav@redhat.com> | 2017-09-06 15:22:02 +0200 |
| commit | ff06b7b89b7eaa41dd6b4fe7b3d8f09c20938d52 (patch) | |
| tree | 50cfc157640d3137feb80047e76c69489bd993c0 | |
| parent | 26eabf3e9fc4e338009132359a13f470e67abf3b (diff) | |
| download | gnutls-ff06b7b89b7eaa41dd6b4fe7b3d8f09c20938d52.tar.gz | |
tests: added reproducer for safe renegotiation failure with openssl
Relates #259
Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
| -rwxr-xr-x | tests/suite/testcompat-main-openssl | 13 |
1 files changed, 12 insertions, 1 deletions
diff --git a/tests/suite/testcompat-main-openssl b/tests/suite/testcompat-main-openssl index ed5c1aa1b7..52ac265974 100755 --- a/tests/suite/testcompat-main-openssl +++ b/tests/suite/testcompat-main-openssl @@ -634,6 +634,17 @@ run_server_suite() { wait if test ${NO_TLS1_2} = 0; then + # test resumption + echo "${PREFIX}Check TLS 1.2 with resumption" + eval "${GETPORT}" + launch_server $$ --priority "NORMAL${ADD}" --x509certfile "${SERV_CERT}" --x509keyfile "${SERV_KEY}" --x509cafile "${CA_CERT}" + PID=$! + wait_server ${PID} + + ${OPENSSL_CLI} s_client -host localhost -reconnect -tls1_2 -port "${PORT}" -cert "${CLI_CERT}" -key "${CLI_KEY}" -CAfile "${CA_CERT}" </dev/null 2>&1 | grep "\:error\:" && \ + fail ${PID} "Failed" + kill ${PID} + wait echo "${PREFIX}Check TLS 1.2 with DHE-RSA ciphersuite" eval "${GETPORT}" @@ -803,7 +814,7 @@ run_server_suite() { } WAITPID="" -for mod in "" ":%COMPAT" ":%NO_ETM" ":%NO_TICKETS" ":%DISABLE_SAFE_RENEGOTIATION"; do +for mod in "" ":%COMPAT" ":%NO_ETM" ":%NO_TICKETS" ":%DISABLE_SAFE_RENEGOTIATION" ":%SAFE_RENEGOTIATION"; do run_server_suite $mod & WAITPID="$WAITPID $!" done |