Changeset f363569 in mod_gnutls for test/tests


Ignore:
Timestamp:
Sep 25, 2020, 5:53:51 PM (10 months ago)
Author:
Fiona Klute <fiona.klute@…>
Branches:
asyncio, master
Children:
b4dc111
Parents:
be2ad50
Message:

Tests: Replace authority/imposter with a friendly cat identity

The SNI tests don't need an actual imposter certificate, just one with
a different identity. 09_verify_no_sni_fails_with_wrong_order now
checks for that specific certificate.

Location:
test/tests
Files:
5 edited

Legend:

Unmodified
Added
Removed
  • test/tests/06_verify_sni_a/apache.conf

    rbe2ad50 rf363569  
    1111
    1212<VirtualHost _default_:${TEST_PORT}>
    13  ServerName imposter.example
     13 ServerName meow.test
    1414 GnuTLSEnable On
    15  GnuTLSCertificateFile  authority/imposter/x509.pem
    16  GnuTLSKeyFile          authority/imposter/secret.key
     15 GnuTLSCertificateFile  authority/meow.test/x509.pem
     16 GnuTLSKeyFile          authority/meow.test/secret.key
    1717</VirtualHost>
  • test/tests/07_verify_sni_b/apache.conf

    rbe2ad50 rf363569  
    66
    77<VirtualHost _default_:${TEST_PORT}>
    8  ServerName imposter.example
     8 ServerName meow.test
    99 GnuTLSEnable On
    10  GnuTLSCertificateFile  authority/imposter/x509.pem
    11  GnuTLSKeyFile          authority/imposter/secret.key
     10 GnuTLSCertificateFile  authority/meow.test/x509.pem
     11 GnuTLSKeyFile          authority/meow.test/secret.key
    1212</VirtualHost>
    1313
  • test/tests/08_verify_no_sni_fallback_to_first_vhost/apache.conf

    rbe2ad50 rf363569  
    1111
    1212<VirtualHost _default_:${TEST_PORT}>
    13  ServerName imposter.example
     13 ServerName meow.test
    1414 GnuTLSEnable On
    15  GnuTLSCertificateFile  authority/imposter/x509.pem
    16  GnuTLSKeyFile          authority/imposter/secret.key
     15 GnuTLSCertificateFile  authority/meow.test/x509.pem
     16 GnuTLSKeyFile          authority/meow.test/secret.key
    1717</VirtualHost>
  • test/tests/09_verify_no_sni_fails_with_wrong_order/apache.conf

    rbe2ad50 rf363569  
    33GnuTLSCache ${DEFAULT_CACHE}
    44
    5 # In this order, clients with no SNI should get the imposter's key
     5# In this order, clients with no SNI should get the cat key
    66
    77<VirtualHost _default_:${TEST_PORT}>
    8  ServerName imposter.example
     8 ServerName meow.test
    99 GnuTLSEnable On
    10  GnuTLSCertificateFile  authority/imposter/x509.pem
    11  GnuTLSKeyFile          authority/imposter/secret.key
     10 GnuTLSCertificateFile  authority/meow.test/x509.pem
     11 GnuTLSKeyFile          authority/meow.test/secret.key
    1212</VirtualHost>
    1313
  • test/tests/09_verify_no_sni_fails_with_wrong_order/test.yaml

    rbe2ad50 rf363569  
    22gnutls_params:
    33  - x509cafile=authority/x509.pem
     4  - verify-hostname=meow.test
    45  - disable-sni
    56actions:
    67  - !request
    78    path: /test.txt
     9    headers:
     10      Host: meow.test
    811    expect:
    9       reset: yes
    10 
     12      status: 200
     13      body:
     14        exactly: |
     15          test
Note: See TracChangeset for help on using the changeset viewer.