summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rwxr-xr-xsrc/regress/usr.bin/openssl/appstest.sh46
1 files changed, 38 insertions, 8 deletions
diff --git a/src/regress/usr.bin/openssl/appstest.sh b/src/regress/usr.bin/openssl/appstest.sh
index f82b0bef24..6ec3170aaa 100755
--- a/src/regress/usr.bin/openssl/appstest.sh
+++ b/src/regress/usr.bin/openssl/appstest.sh
@@ -917,26 +917,56 @@ section_message "client/server operations"
917 917
918host="localhost" 918host="localhost"
919port=4433 919port=4433
920sess_log=$user1_dir/s_client_sess.log 920sess_dat=$user1_dir/s_client_sess.dat
921s_client_out=$user1_dir/s_client.out 921s_server_out=$server_dir/s_server.out
922s_client_1_out=$user1_dir/s_client_1.out
923s_client_2_out=$user1_dir/s_client_2.out
924s_client_3_out=$user1_dir/s_client_3.out
922 925
923start_message "s_server ... start SSL/TLS test server" 926start_message "s_server ... start SSL/TLS test server"
924$openssl_bin s_server -accept $port -CAfile $ca_cert \ 927$openssl_bin s_server -accept $port -CAfile $ca_cert \
925 -cert $server_cert -key $server_key -pass pass:$server_pass \ 928 -cert $server_cert -key $server_key -pass pass:$server_pass \
926 -context "appstest.sh" -id_prefix "APPSTEST.SH" \ 929 -context "appstest.sh" -id_prefix "APPSTEST.SH" \
927 -crl_check -no_ssl2 -no_ssl3 -no_tls1 \ 930 -crl_check -no_ssl2 -no_ssl3 -no_tls1 \
928 -nextprotoneg "http/1.1,spdy/3" -alpn "http/1.1,spdy/3" \ 931 -nextprotoneg "http/1.1,spdy/3" -alpn "http/1.1,spdy/3" -www \
929 -www -quiet & 932 -msg -tlsextdebug > $s_server_out 2>&1 &
930check_exit_status $? 933check_exit_status $?
931s_server_pid=$! 934s_server_pid=$!
932echo "s_server pid = [ $s_server_pid ]" 935echo "s_server pid = [ $s_server_pid ]"
933sleep 1 936sleep 1
934 937
935start_message "s_client ... connect to SSL/TLS test server" 938start_message "s_client ... connect to SSL/TLS test server"
936$openssl_bin s_client -connect $host:$port -CAfile $ca_cert \ 939$openssl_bin s_client -connect $host:$port -CAfile $ca_cert -pause -prexit \
937 -showcerts -crl_check -issuer_checks -policy_check -pause -prexit \
938 -nextprotoneg "spdy/3,http/1.1" -alpn "spdy/3,http/1.1" \ 940 -nextprotoneg "spdy/3,http/1.1" -alpn "spdy/3,http/1.1" \
939 -sess_out $sess_log < /dev/null > $s_client_out 2>&1 941 -sess_out $sess_dat \
942 -msg -tlsextdebug < /dev/null > $s_client_1_out 2>&1
943check_exit_status $?
944
945grep 'New, TLSv1/SSLv3' $s_client_1_out > /dev/null
946check_exit_status $?
947
948grep 'Verify return code: 0 (ok)' $s_client_1_out > /dev/null
949check_exit_status $?
950
951start_message "s_client ... connect to SSL/TLS test server reusing session id"
952$openssl_bin s_client -connect $host:$port -CAfile $ca_cert -pause -prexit \
953 -sess_in $sess_dat \
954 -msg -tlsextdebug < /dev/null > $s_client_2_out 2>&1
955check_exit_status $?
956
957grep 'Reused, TLSv1/SSLv3' $s_client_2_out > /dev/null
958check_exit_status $?
959
960grep 'Verify return code: 0 (ok)' $s_client_2_out > /dev/null
961check_exit_status $?
962
963start_message "s_client ... connect to SSL/TLS test server but verify error"
964$openssl_bin s_client -connect $host:$port -CAfile $ca_cert -pause -prexit \
965 -showcerts -crl_check -issuer_checks -policy_check \
966 -msg -tlsextdebug < /dev/null > $s_client_3_out 2>&1
967check_exit_status $?
968
969grep 'Verify return code: 24 (invalid CA certificate)' $s_client_3_out > /dev/null
940check_exit_status $? 970check_exit_status $?
941 971
942start_message "s_time ... connect to SSL/TLS test server" 972start_message "s_time ... connect to SSL/TLS test server"
@@ -944,7 +974,7 @@ $openssl_bin s_time -connect $host:$port -CAfile $ca_cert -time 2
944check_exit_status $? 974check_exit_status $?
945 975
946start_message "sess_id" 976start_message "sess_id"
947$openssl_bin sess_id -in $sess_log -text -out $sess_log.out 977$openssl_bin sess_id -in $sess_dat -text -out $sess_dat.out
948check_exit_status $? 978check_exit_status $?
949 979
950sleep 1 980sleep 1
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-21 19:26:14 +0000