File: resumption

package info (click to toggle)
ocserv 1.4.1-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 6,924 kB
  • sloc: ansic: 49,159; sh: 12,767; makefile: 414; xml: 29
file content (73 lines) | stat: -rwxr-xr-x 2,258 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
 
#!/bin/bash
#
# Copyright (C) 2020 Nikos Mavrogiannopoulos
#
# This file is part of ocserv.
#
# ocserv is free software; you can redistribute it and/or modify it
# under the terms of the GNU General Public License as published by the
# Free Software Foundation; either version 2 of the License, or (at
# your option) any later version.
#
# ocserv is distributed in the hope that it will be useful, but
# WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
# General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with GnuTLS; if not, write to the Free Software Foundation,
# Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.

SERV="${SERV:-../src/ocserv}"
srcdir=${srcdir:-.}
NO_NEED_ROOT=1

TMPFILE=resume.$$.tmp

. `dirname $0`/common.sh

eval "${GETPORT}"

echo "Testing ocserv session resumption... "

function finish {
  echo " * Cleaning up..."
  test -n "${PID}" && kill ${PID} >/dev/null 2>&1
  rm -f ${TMPFILE}
  rm -f ${CONFIG}
}
trap finish EXIT

update_config test1.config
launch_simple_sr_server -d 1 -f -c ${CONFIG}
PID=$!

wait_server $PID

echo -n " * Connecting to resume - TLS 1.2... "
( LD_PRELOAD=libsocket_wrapper.so gnutls-cli -d 9999 -r --priority NORMAL:-VERS-TLS-ALL:+VERS-TLS1.2:-RSA $ADDRESS --port $PORT --sni-hostname localhost --verify-hostname localhost --x509cafile="${srcdir}/certs/ca.pem" > $TMPFILE 2>&1 </dev/null ) ||
	{ cat ${TMPFILE} && fail $PID "TLS1.2: Could not connect to resume!"; }

grep "This is a resumed session" ${TMPFILE} >/dev/null
if test $? != 0;then
	cat ${TMPFILE}
	fail $PID "failed, TLS 1.2 session was not resumed"
fi

echo "ok"

echo -n " * Connecting to resume - TLS 1.3... "
( LD_PRELOAD=libsocket_wrapper.so gnutls-cli -d 9999 -r $ADDRESS --port $PORT --sni-hostname localhost --verify-hostname localhost --x509cafile="${srcdir}/certs/ca.pem" > $TMPFILE 2>&1 </dev/null ) ||
	{ cat ${TMPFILE} && fail $PID "TLS1.3: Could not connect to resume!"; }

grep "Resume Handshake was completed" ${TMPFILE} >/dev/null
if test $? != 0;then
	cat ${TMPFILE}
	fail $PID "failed, TLS 1.3 session was not resumed"
fi

echo "ok"

rm -f "$TMPFILE"

exit 0