diff options
| author | Daiki Ueno <dueno@redhat.com> | 2019-09-27 17:36:35 +0200 |
|---|---|---|
| committer | Daiki Ueno <dueno@redhat.com> | 2019-09-27 17:36:35 +0200 |
| commit | 058733416a418b99efd4b4091fea4d23bdcb6bae (patch) | |
| tree | 4d519131bed7520c8888a0952ab17f0726e0ccd3 /tests | |
| parent | 6a0599347d881a2b6dee6dd1f996045605da08e2 (diff) | |
| download | nss-hg-058733416a418b99efd4b4091fea4d23bdcb6bae.tar.gz | |
Bug 1494063, add -x option to tstclnt/selfserv to export keying material, r=mt
Reviewers: rrelyea, mt
Reviewed By: mt
Subscribers: HubertKario
Bug #: 1494063
Differential Revision: https://phabricator.services.mozilla.com/D29166
Diffstat (limited to 'tests')
| -rwxr-xr-x | tests/ssl/ssl.sh | 37 |
1 files changed, 36 insertions, 1 deletions
diff --git a/tests/ssl/ssl.sh b/tests/ssl/ssl.sh index a05090694..d8892ed87 100755 --- a/tests/ssl/ssl.sh +++ b/tests/ssl/ssl.sh @@ -84,7 +84,7 @@ ssl_init() PORT=$(($PORT + $padd)) fi NSS_SSL_TESTS=${NSS_SSL_TESTS:-normal_normal} - nss_ssl_run="stapling signed_cert_timestamps cov auth dtls scheme" + nss_ssl_run="stapling signed_cert_timestamps cov auth dtls scheme exporter" NSS_SSL_RUN=${NSS_SSL_RUN:-$nss_ssl_run} # Test case files @@ -1319,6 +1319,38 @@ ssl_scheme_stress() html "</TABLE><BR>" } +############################ ssl_exporter ################################### +# local shell function to test tstclnt and selfserv handling of TLS exporter +######################################################################### +ssl_exporter() +{ + html_head "SSL EXPORTER $NORM_EXT - server $SERVER_MODE/client $CLIENT_MODE" + + save_fileout=${fileout} + fileout=1 + SAVE_SERVEROUTFILE=${SERVEROUTFILE} + SERVEROUTFILE=server.out + exporters=("label" "label:10" "label:10:0xdeadbeef" "0x666f6f2c:10:0xdeadbeef" "label1:10:0xdeadbeef,label2:10") + for exporter in "${exporters[@]}"; do + start_selfserv -V tls1.2:tls1.2 -x "$exporter" + + echo "tstclnt -4 -p ${PORT} -h ${HOSTADDR} -f -d ${P_R_CLIENTDIR} $verbose ${CLIENT_OPTIONS} \\" + echo " -V tls1.2:tls1.2 -x $exporter < ${REQUEST_FILE}" + ${PROFTOOL} ${BINDIR}/tstclnt -4 -p ${PORT} -h ${HOSTADDR} -f ${CLIENT_OPTIONS} \ + -d ${P_R_CLIENTDIR} $verbose -V tls1.2:tls1.2 -x "$exporter" < ${REQUEST_FILE} 2>&1 > client.out + kill_selfserv + diff <(LC_ALL=C grep -A1 "^ *Keying Material:" server.out) \ + <(LC_ALL=C grep -A1 "^ *Keying Material:" client.out) + ret=$? + html_msg $ret 0 "${testname}" \ + "produced a returncode of $ret, expected is 0" + done + SERVEROUTFILE=${SAVE_SERVEROUTFILE} + fileout=${save_fileout} + + html "</TABLE><BR>" +} + ############################## ssl_cleanup ############################# # local shell function to finish this script (no exit since it might be # sourced) @@ -1363,6 +1395,9 @@ ssl_run() ssl_scheme ssl_scheme_stress ;; + "exporter") + ssl_exporter + ;; esac done } |