diff options
| author | Daniel Stenberg <daniel@haxx.se> | 2009-08-11 21:48:58 +0000 |
|---|---|---|
| committer | Daniel Stenberg <daniel@haxx.se> | 2009-08-11 21:48:58 +0000 |
| commit | e73fe837a8877c0197721b91e0d5ec40cb7a2cd0 (patch) | |
| tree | 241c5ac517e86455b87876c56afafbeb26b3d1f8 /tests/data | |
| parent | a9caeb1064bf942a6c066a8c048f077409d1b937 (diff) | |
- Peter Sylvester made the HTTPS test server use specific certificates for
each test, so that the test suite can now be used to actually test the
verification of cert names etc. This made an error show up in the OpenSSL-
specific code where it would attempt to match the CN field even if a
subjectAltName exists that doesn't match. This is now fixed and verified
in test 311.
Diffstat (limited to 'tests/data')
| -rw-r--r-- | tests/data/test310 | 52 | ||||
| -rw-r--r-- | tests/data/test311 | 38 | ||||
| -rw-r--r-- | tests/data/test312 | 38 |
3 files changed, 128 insertions, 0 deletions
diff --git a/tests/data/test310 b/tests/data/test310 new file mode 100644 index 000000000..005f71310 --- /dev/null +++ b/tests/data/test310 @@ -0,0 +1,52 @@ +<testcase> +<info> +<keywords> +HTTPS +HTTP GET +</keywords> +</info> + +# +# Server-side +<reply> +<data> +HTTP/1.1 200 OK +Date: Thu, 09 Nov 2010 14:49:00 GMT +Server: test-server/fake +Content-Length: 7 + +MooMoo +</data> +</reply> + +# +# Client-side +<client> +<features> +SSL +</features> +<server> +https Server-localhost-sv.pem +</server> + <name> +simple HTTPS GET + </name> + <command> +--cacert certs/EdelCurlRoot-ca.crt https://localhost:%HTTPSPORT/310 +</command> +</client> + +# +# Verify data after the test has been "shot" +<verify> +<strip> +^User-Agent:.* +</strip> +<protocol> +GET /310 HTTP/1.1
+Host: localhost:%HTTPSPORT
+Accept: */*
+
+</protocol> +</verify> +</testcase> diff --git a/tests/data/test311 b/tests/data/test311 new file mode 100644 index 000000000..cd51fff74 --- /dev/null +++ b/tests/data/test311 @@ -0,0 +1,38 @@ +<testcase> +<info> +<keywords> +HTTPS +HTTP GET +</keywords> +</info> + +# +# Server-side +<reply> +</reply> + +# +# Client-side +<client> +<features> +SSL +</features> +<server> +https Server-localhost0h-sv.pem +</server> + <name> +HTTPS wrong subjectAltName but right CN + </name> + <command> +--cacert certs/EdelCurlRoot-ca.crt https://localhost:%HTTPSPORT/311 +</command> +</client> + +# +# Verify data after the test has been "shot" +<verify> +<errorcode> +51 +</errorcode> +</verify> +</testcase> diff --git a/tests/data/test312 b/tests/data/test312 new file mode 100644 index 000000000..5adb1e352 --- /dev/null +++ b/tests/data/test312 @@ -0,0 +1,38 @@ +<testcase> +<info> +<keywords> +HTTPS +HTTP GET +</keywords> +</info> + +# +# Server-side +<reply> +</reply> + +# +# Client-side +<client> +<features> +SSL +</features> +<server> +https Server-localhost.nn-sv.pem +</server> + <name> +HTTPS GET to localhost and null-prefixed CN cert + </name> + <command> +--cacert certs/EdelCurlRoot-ca.crt https://localhost:%HTTPSPORT/312 +</command> +</client> + +# +# Verify data after the test has been "shot" +<verify> +<errorcode> +51 +</errorcode> +</verify> +</testcase> |