File: tls.t

package info (click to toggle)
libmojolicious-perl 9.37%2Bdfsg-2~bpo12%2B1
  • links: PTS, VCS
  • area: main
  • in suites: bookworm-backports
  • size: 4,320 kB
  • sloc: perl: 10,252; makefile: 31; javascript: 1
file content (65 lines) | stat: -rw-r--r-- 2,863 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
 
use Mojo::Base -strict;

BEGIN { $ENV{MOJO_REACTOR} = 'Mojo::Reactor::Poll' }

use Test::More;
use Mojo::IOLoop::TLS;

plan skip_all => 'set TEST_TLS to enable this test (developer only!)' unless $ENV{TEST_TLS} || $ENV{TEST_ALL};
plan skip_all => 'IO::Socket::SSL 2.009+ required for this test!'     unless Mojo::IOLoop::TLS->can_tls;

use Mojo::IOLoop;
use Mojo::Promise;
use Socket;

subtest 'Built-in certificate' => sub {
  socketpair(my $client_sock, my $server_sock, AF_UNIX, SOCK_STREAM, PF_UNSPEC)
    or die "Couldn't create socket pair: $!";
  $client_sock->blocking(0);
  $server_sock->blocking(0);
  my $promise  = Mojo::Promise->new;
  my $promise2 = Mojo::Promise->new;
  my $server   = Mojo::IOLoop::TLS->new($server_sock);
  $server->once(upgrade => sub { $promise->resolve(pop) });
  $server->once(error   => sub { warn pop });
  $server->negotiate({server => 1});
  my $client = Mojo::IOLoop::TLS->new($client_sock);
  $client->once(upgrade => sub { $promise2->resolve(pop) });
  $client->once(error   => sub { warn pop });
  $client->negotiate(tls_options => {SSL_verify_mode => 0x00});
  my ($client_result, $server_result);
  Mojo::Promise->all($promise, $promise2)->then(sub {
    ($server_result, $client_result) = map { $_->[0] } @_;
  })->wait;
  is ref $client_result, 'IO::Socket::SSL', 'right class';
  is ref $server_result, 'IO::Socket::SSL', 'right class';
};

subtest 'Built-in certificate (custom event loop and cipher)' => sub {
  my $loop = Mojo::IOLoop->new;
  socketpair(my $client_sock2, my $server_sock2, AF_UNIX, SOCK_STREAM, PF_UNSPEC)
    or die "Couldn't create socket pair: $!";
  $client_sock2->blocking(0);
  $server_sock2->blocking(0);
  my $promise  = Mojo::Promise->new->ioloop($loop);
  my $promise2 = Mojo::Promise->new->ioloop($loop);
  my $server   = Mojo::IOLoop::TLS->new($server_sock2)->reactor($loop->reactor);
  $server->once(upgrade => sub { $promise->resolve(pop) });
  $server->once(error   => sub { warn pop });
  $server->negotiate(server => 1, tls_options => {SSL_cipher_list => 'AES256-SHA:ALL'});
  my $client = Mojo::IOLoop::TLS->new($client_sock2)->reactor($loop->reactor);
  $client->once(upgrade => sub { $promise2->resolve(pop) });
  $client->once(error   => sub { warn pop });
  $client->negotiate(tls_options => {SSL_verify_mode => 0x00});
  my ($client_result, $server_result);
  Mojo::Promise->all($promise, $promise2)->then(sub {
    ($server_result, $client_result) = map { $_->[0] } @_;
  })->wait;
  is ref $client_result, 'IO::Socket::SSL', 'right class';
  is ref $server_result, 'IO::Socket::SSL', 'right class';
  my $expect = $server_result->get_sslversion eq 'TLSv1_3' ? 'TLS_AES_256_GCM_SHA384' : 'AES256-SHA';
  is $client_result->get_cipher, $expect, "$expect has been negotiatied";
  is $server_result->get_cipher, $expect, "$expect has been negotiatied";
};

done_testing;