Mercurial > hg > nginx-tests
changeset 1834:df96e9d6c095
Tests: LibreSSL and BoringSSL session reuse with TLSv1.3 in stream.
LibreSSL does not support session reuse with TLSv1.3 at all. BoringSSL
with TLSv1.3 only supports session tickets, but not server-side session
cache.
author | Maxim Dounin <mdounin@mdounin.ru> |
---|---|
date | Thu, 23 Mar 2023 19:49:57 +0300 |
parents | fd9d077fee02 |
children | 3f155fe97521 |
files | stream_ssl_session_reuse.t |
diffstat | 1 files changed, 18 insertions(+), 0 deletions(-) [+] |
line wrap: on
line diff
--- a/stream_ssl_session_reuse.t Thu Mar 23 19:49:55 2023 +0300 +++ b/stream_ssl_session_reuse.t Thu Mar 23 19:49:57 2023 +0300 @@ -144,16 +144,34 @@ # - only cache none # - only cache off +TODO: { +local $TODO = 'no TLSv1.3 sessions in LibreSSL' + if $t->has_module('LibreSSL') && test_tls13(); + is(test_reuse(8443), 1, 'tickets reused'); is(test_reuse(8444), 1, 'tickets and cache reused'); + +TODO: { +local $TODO = 'no TLSv1.3 session cache in BoringSSL' + if $t->has_module('BoringSSL') && test_tls13(); + is(test_reuse(8445), 1, 'cache shared reused'); is(test_reuse(8446), 1, 'cache builtin reused'); is(test_reuse(8447), 1, 'cache builtin size reused'); + +} +} + is(test_reuse(8448), 0, 'cache none not reused'); is(test_reuse(8449), 0, 'cache off not reused'); ############################################################################### +sub test_tls13 { + my ($s, $ssl) = get_ssl_socket(8443); + return (Net::SSLeay::version($ssl) > 0x303); +} + sub test_reuse { my ($port) = @_; my ($s, $ssl) = get_ssl_socket($port);