tests: added reproducer for safe renegotiation failure with openssl

Relates #259 Signed-off-by: Nikos Mavrogiannopoulos <nmav@gnutls.org>
author: Nikos Mavrogiannopoulos <nmav@gnutls.org> 2017-12-10 15:30:37 +0100
committer: Nikos Mavrogiannopoulos <nmav@gnutls.org> 2017-12-10 15:30:40 +0100
commit: de342ba42c3b16e00823d85906f789a0c46df61b (patch)
tree: 3c3d0d3c47511ada22c02a6d4f4831554d42f60e
parent: 58ff231ae0d0c8d2c8992db98c44e511886d067e (diff)
download: gnutls-de342ba42c3b16e00823d85906f789a0c46df61b.tar.gz
1 files changed, 11 insertions, 0 deletions
diff --git a/tests/suite/testcompat-main b/tests/suite/testcompat-main
index 576652c089..735658279b 100755
--- a/tests/suite/testcompat-main
+++ b/tests/suite/testcompat-main
@@ -604,6 +604,17 @@ for ADD in "" ":%COMPAT" ":%DISABLE_SAFE_RENEGOTIATION"; do
 	wait
 
 	if test ${NO_TLS1_2} = 0; then
+		# test resumption
+		echo "${PREFIX}Check TLS 1.2 with resumption"
+		eval "${GETPORT}"
+		launch_server $$ --priority "NORMAL${ADD}" --x509certfile "${SERV_CERT}" --x509keyfile "${SERV_KEY}" --x509cafile "${CA_CERT}"
+		PID=$!
+		wait_server ${PID}
+
+		${OPENSSL_CLI} s_client -host localhost -reconnect -tls1_2 -port "${PORT}" -cert "${CLI_CERT}" -key "${CLI_KEY}" -CAfile "${CA_CERT}" </dev/null 2>&1 | grep "\:error\:" && \
+			fail ${PID} "Failed"
+		kill ${PID}
+		wait
 
 		echo "Check TLS 1.2 with DHE-RSA ciphersuite"
 		eval "${GETPORT}"
author	Nikos Mavrogiannopoulos <nmav@gnutls.org>	2017-12-10 15:30:37 +0100
committer	Nikos Mavrogiannopoulos <nmav@gnutls.org>	2017-12-10 15:30:40 +0100
commit	de342ba42c3b16e00823d85906f789a0c46df61b (patch)
tree	3c3d0d3c47511ada22c02a6d4f4831554d42f60e
parent	58ff231ae0d0c8d2c8992db98c44e511886d067e (diff)
download	gnutls-de342ba42c3b16e00823d85906f789a0c46df61b.tar.gz