source: mod_gnutls/test/tests/05_client_handshake_error/test.yaml

mod_gnutls/0.12.0
Last change on this file was 747a9c4, checked in by Fiona Klute <fiona.klute@…>, 12 months ago

Create a new test for handling client-side handshake errors

Prior to f363569cf5563271019bfb439980c7ad08e5ac30 the test
09_verify_no_sni_fails_with_wrong_order expected the client to reject
the presented certificate. This is rather imprecise for vhost
selection testing, but did exercise an otherwise untested code path:
What happens if the client cancels the handshake?

This commit adds a new test explicitly covering that situation.

  • Property mode set to 100644
File size: 528 bytes
Line 
1- !connection
2  description: >-
3    The client doesn't trust the issuer CA, so the handshake must
4    fail.
5  gnutls_params:
6    - x509cafile=rogueca/x509.pem
7  actions:
8    - !request
9      path: /test.txt
10      expect:
11        reset: yes
12- !connection
13  description: >-
14    The server must still be operational after the failed handshake.
15  gnutls_params:
16    - x509cafile=authority/x509.pem
17  actions:
18    - !request
19      path: /test.txt
20      expect:
21        status: 200
22        body:
23          exactly: |
24            test
Note: See TracBrowser for help on using the repository browser.