Mercurial > hg > nginx-tests
comparison ssl.t @ 1094:dd8f126afa32
Tests: client certificate time variables tests.
author | Andrey Zelenkov <zelenkov@nginx.com> |
---|---|
date | Mon, 12 Dec 2016 15:53:27 +0300 |
parents | 2b0ef67ab032 |
children | 52553ea2171c |
comparison
equal
deleted
inserted
replaced
1093:2b0ef67ab032 | 1094:dd8f126afa32 |
---|---|
78 location /issuer { | 78 location /issuer { |
79 return 200 "body $ssl_client_i_dn:$ssl_client_i_dn_legacy"; | 79 return 200 "body $ssl_client_i_dn:$ssl_client_i_dn_legacy"; |
80 } | 80 } |
81 location /subject { | 81 location /subject { |
82 return 200 "body $ssl_client_s_dn:$ssl_client_s_dn_legacy"; | 82 return 200 "body $ssl_client_s_dn:$ssl_client_s_dn_legacy"; |
83 } | |
84 location /time { | |
85 return 200 "body $ssl_client_v_start!$ssl_client_v_end!$ssl_client_v_remain"; | |
83 } | 86 } |
84 } | 87 } |
85 | 88 |
86 server { | 89 server { |
87 listen 127.0.0.1:8081; | 90 listen 127.0.0.1:8081; |
152 new_certs_dir = $d | 155 new_certs_dir = $d |
153 database = $d/certindex | 156 database = $d/certindex |
154 default_md = sha1 | 157 default_md = sha1 |
155 policy = myca_policy | 158 policy = myca_policy |
156 serial = $d/certserial | 159 serial = $d/certserial |
157 default_days = 1 | 160 default_days = 3 |
158 | 161 |
159 [ myca_policy ] | 162 [ myca_policy ] |
160 commonName = supplied | 163 commonName = supplied |
161 EOF | 164 EOF |
162 | 165 |
191 | 194 |
192 my $ctx = new IO::Socket::SSL::SSL_Context( | 195 my $ctx = new IO::Socket::SSL::SSL_Context( |
193 SSL_verify_mode => IO::Socket::SSL::SSL_VERIFY_NONE(), | 196 SSL_verify_mode => IO::Socket::SSL::SSL_VERIFY_NONE(), |
194 SSL_session_cache_size => 100); | 197 SSL_session_cache_size => 100); |
195 | 198 |
196 $t->try_run('no ssl_ciphers')->plan(21); | 199 $t->try_run('no ssl_ciphers')->plan(22); |
197 | 200 |
198 ############################################################################### | 201 ############################################################################### |
199 | 202 |
200 like(get('/reuse', 8085), qr/^body \.$/m, 'shared initial session'); | 203 like(get('/reuse', 8085), qr/^body \.$/m, 'shared initial session'); |
201 like(get('/reuse', 8085), qr/^body r$/m, 'shared session reused'); | 204 like(get('/reuse', 8085), qr/^body r$/m, 'shared session reused'); |
241 | 244 |
242 like(get('/client_verify', 8085), qr/^body NONE$/m, 'client verify'); | 245 like(get('/client_verify', 8085), qr/^body NONE$/m, 'client verify'); |
243 like(get('/protocol', 8085), qr/^body (TLS|SSL)v(\d|\.)+$/m, 'protocol'); | 246 like(get('/protocol', 8085), qr/^body (TLS|SSL)v(\d|\.)+$/m, 'protocol'); |
244 like(cert('/issuer', 8085), qr!^body CN=issuer:/CN=issuer$!m, 'issuer'); | 247 like(cert('/issuer', 8085), qr!^body CN=issuer:/CN=issuer$!m, 'issuer'); |
245 like(cert('/subject', 8085), qr!^body CN=subject:/CN=subject$!m, 'subject'); | 248 like(cert('/subject', 8085), qr!^body CN=subject:/CN=subject$!m, 'subject'); |
249 like(cert('/time', 8085), qr/^body [:\s\w]+![:\s\w]+![23]$/m, 'time'); | |
246 | 250 |
247 ############################################################################### | 251 ############################################################################### |
248 | 252 |
249 sub get { | 253 sub get { |
250 my ($uri, $port) = @_; | 254 my ($uri, $port) = @_; |