diff options
author | Daniel Lowrey <rdlowrey@php.net> | 2015-03-04 23:55:42 -0700 |
---|---|---|
committer | Daniel Lowrey <rdlowrey@php.net> | 2015-03-04 23:55:42 -0700 |
commit | 65a9a5ca1283cf7ed59a5a14362fd6de0ad713b8 (patch) | |
tree | 524d1d1eccee3b91b8d106acc8ea017641710760 /ext/openssl/tests/bug68265.phpt | |
parent | 1de1ff75f516d6a4124fa7408b92f7470452fa74 (diff) | |
download | php-git-65a9a5ca1283cf7ed59a5a14362fd6de0ad713b8.tar.gz |
Fixed bug #68265 (SAN match fails with trailing DNS dot)
Diffstat (limited to 'ext/openssl/tests/bug68265.phpt')
-rw-r--r-- | ext/openssl/tests/bug68265.phpt | 41 |
1 files changed, 41 insertions, 0 deletions
diff --git a/ext/openssl/tests/bug68265.phpt b/ext/openssl/tests/bug68265.phpt new file mode 100644 index 0000000000..aff9a9e511 --- /dev/null +++ b/ext/openssl/tests/bug68265.phpt @@ -0,0 +1,41 @@ +--TEST-- +Bug #68265: SAN match fails with trailing DNS dot +--SKIPIF-- +<?php +if (!extension_loaded("openssl")) die("skip openssl not loaded"); +if (!function_exists("proc_open")) die("skip no proc_open"); +--FILE-- +<?php +$serverCode = <<<'CODE' + $serverUri = "ssl://127.0.0.1:64321"; + $serverFlags = STREAM_SERVER_BIND | STREAM_SERVER_LISTEN; + $serverCtx = stream_context_create(['ssl' => [ + 'local_cert' => __DIR__ . '/bug68265.pem', + 'passphrase' => 'elephpant', + ]]); + + $server = stream_socket_server($serverUri, $errno, $errstr, $serverFlags, $serverCtx); + phpt_notify(); + + stream_socket_accept($server, 30); +CODE; + +$clientCode = <<<'CODE' + $serverUri = "ssl://127.0.0.1:64321"; + $clientFlags = STREAM_CLIENT_CONNECT; + $clientCtx = stream_context_create(['ssl' => [ + 'verify_peer' => false, + 'verify_peer_name' => true, + 'peer_name' => 'debs.ak-online.net', + ]]); + + phpt_wait(); + + var_dump(stream_socket_client($serverUri, $errno, $errstr, 1, $clientFlags, $clientCtx)); +CODE; + +include 'ServerClientTestCase.inc'; +ServerClientTestCase::getInstance()->run($clientCode, $serverCode); +--EXPECTF-- +resource(%d) of type (stream) + |