Changeset f363569 in mod_gnutls


Ignore:
Timestamp:
Sep 25, 2020, 5:53:51 PM (10 months ago)
Author:
Fiona Klute <fiona.klute@…>
Branches:
asyncio, master
Children:
b4dc111
Parents:
be2ad50
Message:

Tests: Replace authority/imposter with a friendly cat identity

The SNI tests don't need an actual imposter certificate, just one with
a different identity. 09_verify_no_sni_fails_with_wrong_order now
checks for that specific certificate.

Location:
test
Files:
1 added
2 deleted
6 edited

Legend:

Unmodified
Added
Removed
  • test/Makefile.am

    rbe2ad50 rf363569  
    8181shared_identities = authority authority/client
    8282pgp_identities = $(shared_identities)
    83 x509_only_identities = authority/server authority/imposter \
     83x509_only_identities = authority/server authority/meow.test \
    8484        authority/subca authority/subca/server \
    8585        rogueca rogueca/imposter rogueca/rogueclient
     
    123123
    124124cert_templates = authority/template.in authority/client/template.in \
    125         authority/imposter/template.in authority/ocsp-responder/template \
     125        authority/meow.test/template.in authority/ocsp-responder/template \
    126126        authority/server/template.in \
    127127        authority/subca/template.in authority/subca/server/template.in \
     
    130130        rogueca/rogueclient/template.in
    131131generated_templates = authority/template authority/client/template \
    132         authority/imposter/template authority/server/template \
     132        authority/meow.test/template authority/server/template \
    133133        rogueca/imposter/template rogueca/rogueclient/template
    134134
  • test/tests/06_verify_sni_a/apache.conf

    rbe2ad50 rf363569  
    1111
    1212<VirtualHost _default_:${TEST_PORT}>
    13  ServerName imposter.example
     13 ServerName meow.test
    1414 GnuTLSEnable On
    15  GnuTLSCertificateFile  authority/imposter/x509.pem
    16  GnuTLSKeyFile          authority/imposter/secret.key
     15 GnuTLSCertificateFile  authority/meow.test/x509.pem
     16 GnuTLSKeyFile          authority/meow.test/secret.key
    1717</VirtualHost>
  • test/tests/07_verify_sni_b/apache.conf

    rbe2ad50 rf363569  
    66
    77<VirtualHost _default_:${TEST_PORT}>
    8  ServerName imposter.example
     8 ServerName meow.test
    99 GnuTLSEnable On
    10  GnuTLSCertificateFile  authority/imposter/x509.pem
    11  GnuTLSKeyFile          authority/imposter/secret.key
     10 GnuTLSCertificateFile  authority/meow.test/x509.pem
     11 GnuTLSKeyFile          authority/meow.test/secret.key
    1212</VirtualHost>
    1313
  • test/tests/08_verify_no_sni_fallback_to_first_vhost/apache.conf

    rbe2ad50 rf363569  
    1111
    1212<VirtualHost _default_:${TEST_PORT}>
    13  ServerName imposter.example
     13 ServerName meow.test
    1414 GnuTLSEnable On
    15  GnuTLSCertificateFile  authority/imposter/x509.pem
    16  GnuTLSKeyFile          authority/imposter/secret.key
     15 GnuTLSCertificateFile  authority/meow.test/x509.pem
     16 GnuTLSKeyFile          authority/meow.test/secret.key
    1717</VirtualHost>
  • test/tests/09_verify_no_sni_fails_with_wrong_order/apache.conf

    rbe2ad50 rf363569  
    33GnuTLSCache ${DEFAULT_CACHE}
    44
    5 # In this order, clients with no SNI should get the imposter's key
     5# In this order, clients with no SNI should get the cat key
    66
    77<VirtualHost _default_:${TEST_PORT}>
    8  ServerName imposter.example
     8 ServerName meow.test
    99 GnuTLSEnable On
    10  GnuTLSCertificateFile  authority/imposter/x509.pem
    11  GnuTLSKeyFile          authority/imposter/secret.key
     10 GnuTLSCertificateFile  authority/meow.test/x509.pem
     11 GnuTLSKeyFile          authority/meow.test/secret.key
    1212</VirtualHost>
    1313
  • test/tests/09_verify_no_sni_fails_with_wrong_order/test.yaml

    rbe2ad50 rf363569  
    22gnutls_params:
    33  - x509cafile=authority/x509.pem
     4  - verify-hostname=meow.test
    45  - disable-sni
    56actions:
    67  - !request
    78    path: /test.txt
     9    headers:
     10      Host: meow.test
    811    expect:
    9       reset: yes
    10 
     12      status: 200
     13      body:
     14        exactly: |
     15          test
Note: See TracChangeset for help on using the changeset viewer.