From 8f09ba471c256020f8147c421e32b4d5fc162960 Mon Sep 17 00:00:00 2001 From: Matt Caswell Date: Tue, 7 Jun 2016 16:35:38 +0100 Subject: [PATCH] Add an SSL get/set test We just do the getters/setter for tlsext_status_type. This could be extended for others in the future. Reviewed-by: Rich Salz --- test/build.info | 6 ++- test/getsettest.c | 90 +++++++++++++++++++++++++++++++++++ test/recipes/90-test_getset.t | 20 ++++++++ 3 files changed, 115 insertions(+), 1 deletion(-) create mode 100644 test/getsettest.c create mode 100644 test/recipes/90-test_getset.t diff --git a/test/build.info b/test/build.info index 95afbe3e18..c74d71783a 100644 --- a/test/build.info +++ b/test/build.info @@ -17,7 +17,7 @@ IF[{- !$disabled{tests} -}] packettest asynctest secmemtest srptest memleaktest \ dtlsv1listentest ct_test threadstest afalgtest d2i_test \ ssl_test_ctx_test ssl_test x509aux cipherlist_test asynciotest \ - bioprinttest + bioprinttest getsettest SOURCE[aborttest]=aborttest.c INCLUDE[aborttest]="{- rel2abs(catdir($builddir,"../include")) -}" ../include @@ -280,4 +280,8 @@ IF[{- !$disabled{tests} -}] _____ } -} + + SOURCE[getsettest]=getsettest.c + INCLUDE[getsettest]="{- rel2abs(catdir($builddir,"../include")) -}" ../include + DEPEND[getsettest]=../libcrypto ../libssl ENDIF diff --git a/test/getsettest.c b/test/getsettest.c new file mode 100644 index 0000000000..97d1b357cc --- /dev/null +++ b/test/getsettest.c @@ -0,0 +1,90 @@ +/* + * Copyright 2016 The OpenSSL Project Authors. All Rights Reserved. + * + * Licensed under the OpenSSL license (the "License"). You may not use + * this file except in compliance with the License. You can obtain a copy + * in the file LICENSE in the source distribution or at + * https://www.openssl.org/source/license.html + */ + +#include +#include +#include +#include + + +int main(int argc, char *argv[]) +{ + SSL_CTX *ctx = NULL; + SSL *con = NULL; + BIO *err; + int testresult = 0; + + err = BIO_new_fp(stderr, BIO_NOCLOSE | BIO_FP_TEXT); + + CRYPTO_set_mem_debug(1); + CRYPTO_mem_ctrl(CRYPTO_MEM_CHECK_ON); + + /* Test tlsext_status_type */ + ctx = SSL_CTX_new(TLS_method()); + + if (SSL_CTX_get_tlsext_status_type(ctx) != -1) { + printf("Unexpected initial value for " + "SSL_CTX_get_tlsext_status_type()\n"); + goto end; + } + + con = SSL_new(ctx); + + if (SSL_get_tlsext_status_type(con) != -1) { + printf("Unexpected initial value for SSL_get_tlsext_status_type()\n"); + goto end; + } + + if (!SSL_set_tlsext_status_type(con, TLSEXT_STATUSTYPE_ocsp)) { + printf("Unexpected fail for SSL_set_tlsext_status_type()\n"); + goto end; + } + + if (SSL_get_tlsext_status_type(con) != TLSEXT_STATUSTYPE_ocsp) { + printf("Unexpected result for SSL_get_tlsext_status_type()\n"); + goto end; + } + + SSL_free(con); + con = NULL; + + if (!SSL_CTX_set_tlsext_status_type(ctx, TLSEXT_STATUSTYPE_ocsp)) { + printf("Unexpected fail for SSL_CTX_set_tlsext_status_type()\n"); + goto end; + } + + if (SSL_CTX_get_tlsext_status_type(ctx) != TLSEXT_STATUSTYPE_ocsp) { + printf("Unexpected result for SSL_CTX_get_tlsext_status_type()\n"); + goto end; + } + + con = SSL_new(ctx); + + if (SSL_get_tlsext_status_type(con) != TLSEXT_STATUSTYPE_ocsp) { + printf("Unexpected result for SSL_get_tlsext_status_type() (test 2)\n"); + goto end; + } + + testresult = 1; + + end: + SSL_free(con); + SSL_CTX_free(ctx); + +#ifndef OPENSSL_NO_CRYPTO_MDEBUG + if (CRYPTO_mem_leaks(err) <= 0) + testresult = 0; +#endif + BIO_free(err); + + if (testresult) + printf("PASS\n"); + + return testresult?0:1; +} diff --git a/test/recipes/90-test_getset.t b/test/recipes/90-test_getset.t new file mode 100644 index 0000000000..3e245c12ab --- /dev/null +++ b/test/recipes/90-test_getset.t @@ -0,0 +1,20 @@ +#! /usr/bin/env perl +# Copyright 2016 The OpenSSL Project Authors. All Rights Reserved. +# +# Licensed under the OpenSSL license (the "License"). You may not use +# this file except in compliance with the License. You can obtain a copy +# in the file LICENSE in the source distribution or at +# https://www.openssl.org/source/license.html + + +use OpenSSL::Test; +use OpenSSL::Test::Utils; + +setup("test_getset"); + +plan skip_all => "No TLS/SSL protocols are supported by this OpenSSL build" + if alldisabled(grep { $_ ne "ssl3" } available_protocols("tls")); + +plan tests => 1; + +ok(run(test(["getsettest"])), "running getsettest"); -- 2.25.1