Welcome! Log In Create A New Profile

[PATCH 3 of 3] Tests: adapted session reuse tests to work with TLSv1.3

Forum List Message List New Topic Print View

Maxim Dounin

March 10, 2023 12:02AM

# HG changeset patch
# User Maxim Dounin <mdounin@mdounin.ru>
# Date 1678424073 -10800
# Fri Mar 10 07:54:33 2023 +0300
# Node ID 946c3b39d1f9adf3f96f1c04963539ecd1c63a8f
# Parent 49d12f8c4cf69e1cbe7feccae3b0ea1ac2ca8c2f
Tests: adapted session reuse tests to work with TLSv1.3.

In TLSv1.3, session tickets are sent after the handshake, and saving session
right after the handshake is not going to work. To properly test session
resumption, sessions are now saved after some data exchange.

diff --git a/mail_ssl.t b/mail_ssl.t
--- a/mail_ssl.t
+++ b/mail_ssl.t
@@ -182,24 +182,28 @@ my $s = Test::Nginx::IMAP->new();
my ($ssl, $ses);

($s, $ssl) = get_ssl_socket(8145);
+Net::SSLeay::read($ssl);
$ses = Net::SSLeay::get_session($ssl);

($s, $ssl) = get_ssl_socket(8145, $ses);
is(Net::SSLeay::session_reused($ssl), 1, 'builtin session reused');

($s, $ssl) = get_ssl_socket(8146);
+Net::SSLeay::read($ssl);
$ses = Net::SSLeay::get_session($ssl);

($s, $ssl) = get_ssl_socket(8146, $ses);
is(Net::SSLeay::session_reused($ssl), 0, 'session not reused');

($s, $ssl) = get_ssl_socket(8147);
+Net::SSLeay::read($ssl);
$ses = Net::SSLeay::get_session($ssl);

($s, $ssl) = get_ssl_socket(8147, $ses);
is(Net::SSLeay::session_reused($ssl), 1, 'builtin size session reused');

($s, $ssl) = get_ssl_socket(8148);
+Net::SSLeay::read($ssl);
$ses = Net::SSLeay::get_session($ssl);

($s, $ssl) = get_ssl_socket(8148, $ses);
diff --git a/stream_ssl.t b/stream_ssl.t
--- a/stream_ssl.t
+++ b/stream_ssl.t
@@ -147,24 +147,32 @@ like(Net::SSLeay::read($ssl), qr/200 OK/
# ssl_session_cache

($s, $ssl) = get_ssl_socket(port(8080));
+Net::SSLeay::write($ssl, "GET / HTTP/1.0$CRLF$CRLF");
+Net::SSLeay::read($ssl);
$ses = Net::SSLeay::get_session($ssl);

($s, $ssl) = get_ssl_socket(port(8080), $ses);
is(Net::SSLeay::session_reused($ssl), 1, 'builtin session reused');

($s, $ssl) = get_ssl_socket(port(8082));
+Net::SSLeay::write($ssl, "GET / HTTP/1.0$CRLF$CRLF");
+Net::SSLeay::read($ssl);
$ses = Net::SSLeay::get_session($ssl);

($s, $ssl) = get_ssl_socket(port(8082), $ses);
isnt(Net::SSLeay::session_reused($ssl), 1, 'session not reused');

($s, $ssl) = get_ssl_socket(port(8083));
+Net::SSLeay::write($ssl, "GET / HTTP/1.0$CRLF$CRLF");
+Net::SSLeay::read($ssl);
$ses = Net::SSLeay::get_session($ssl);

($s, $ssl) = get_ssl_socket(port(8083), $ses);
is(Net::SSLeay::session_reused($ssl), 1, 'builtin size session reused');

($s, $ssl) = get_ssl_socket(port(8084));
+Net::SSLeay::write($ssl, "GET / HTTP/1.0$CRLF$CRLF");
+Net::SSLeay::read($ssl);
$ses = Net::SSLeay::get_session($ssl);

($s, $ssl) = get_ssl_socket(port(8084), $ses);
_______________________________________________
nginx-devel mailing list
nginx-devel@nginx.org
https://mailman.nginx.org/mailman/listinfo/nginx-devel

Reply Quote

RSS

Subject	Author	Views	Posted
[PATCH 1 of 3] Tests: style	Maxim Dounin	501	March 10, 2023 12:02AM
[PATCH 2 of 3] Tests: handling of EAGAIN from sysread() with IO::Socket::SSL	Maxim Dounin	115	March 10, 2023 12:02AM
Re: [PATCH 2 of 3] Tests: handling of EAGAIN from sysread() with IO::Socket::SSL	Maxim Dounin	110	March 11, 2023 04:32AM
Re: [PATCH 2 of 3] Tests: handling of EAGAIN from sysread() with IO::Socket::SSL	Sergey Kandaurov	105	March 20, 2023 11:36AM
[PATCH 3 of 3] Tests: adapted session reuse tests to work with TLSv1.3	Maxim Dounin	114	March 10, 2023 12:02AM
Re: [PATCH 3 of 3] Tests: adapted session reuse tests to work with TLSv1.3	Sergey Kandaurov	94	March 20, 2023 11:50AM
Re: [PATCH 3 of 3] Tests: adapted session reuse tests to work with TLSv1.3	Maxim Dounin	143	March 20, 2023 08:00PM
Re: [PATCH 1 of 3] Tests: style	Sergey Kandaurov	102	March 20, 2023 11:36AM

Sorry, you do not have permission to post/reply in this forum.

Online Users

itpp2012

Guests: 135

Record Number of Users: 8 on April 13, 2023

Record Number of Guests: 421 on December 02, 2018