diff options
author | Fedor Indutny <fedor@indutny.com> | 2014-12-17 20:30:04 +0700 |
---|---|---|
committer | Fedor Indutny <fedor@indutny.com> | 2014-12-17 20:45:02 +0700 |
commit | 0e19476595729c850f07befea93e864822cd8459 (patch) | |
tree | a868c3dd1becd87b7b5ea9fd2b645dd61e68ae8c /test/parallel/test-tls-sni-option.js | |
parent | 165b70f146e163b82a09bb869463708516c08cf6 (diff) | |
download | android-node-v8-0e19476595729c850f07befea93e864822cd8459.tar.gz android-node-v8-0e19476595729c850f07befea93e864822cd8459.tar.bz2 android-node-v8-0e19476595729c850f07befea93e864822cd8459.zip |
test: split test in parallel/sequential
Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
PR-URL: https://github.com/iojs/io.js/pull/172
Fix: iojs/io.js#139
Diffstat (limited to 'test/parallel/test-tls-sni-option.js')
-rw-r--r-- | test/parallel/test-tls-sni-option.js | 167 |
1 files changed, 167 insertions, 0 deletions
diff --git a/test/parallel/test-tls-sni-option.js b/test/parallel/test-tls-sni-option.js new file mode 100644 index 0000000000..57c17163a7 --- /dev/null +++ b/test/parallel/test-tls-sni-option.js @@ -0,0 +1,167 @@ +// Copyright Joyent, Inc. and other Node contributors. +// +// Permission is hereby granted, free of charge, to any person obtaining a +// copy of this software and associated documentation files (the +// "Software"), to deal in the Software without restriction, including +// without limitation the rights to use, copy, modify, merge, publish, +// distribute, sublicense, and/or sell copies of the Software, and to permit +// persons to whom the Software is furnished to do so, subject to the +// following conditions: +// +// The above copyright notice and this permission notice shall be included +// in all copies or substantial portions of the Software. +// +// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS +// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF +// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN +// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, +// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR +// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE +// USE OR OTHER DEALINGS IN THE SOFTWARE. + +if (!process.features.tls_sni) { + console.error('Skipping because node compiled without OpenSSL or ' + + 'with old OpenSSL version.'); + process.exit(0); +} + +var common = require('../common'), + assert = require('assert'), + fs = require('fs'), + tls = require('tls'); + +function filenamePEM(n) { + return require('path').join(common.fixturesDir, 'keys', n + '.pem'); +} + +function loadPEM(n) { + return fs.readFileSync(filenamePEM(n)); +} + +var serverOptions = { + key: loadPEM('agent2-key'), + cert: loadPEM('agent2-cert'), + SNICallback: function(servername, callback) { + var context = SNIContexts[servername]; + + // Just to test asynchronous callback + setTimeout(function() { + if (context) { + if (context.emptyRegression) + callback(null, {}); + else + callback(null, tls.createSecureContext(context)); + } else { + callback(null, null); + } + }, 100); + } +}; + +var SNIContexts = { + 'a.example.com': { + key: loadPEM('agent1-key'), + cert: loadPEM('agent1-cert') + }, + 'b.example.com': { + key: loadPEM('agent3-key'), + cert: loadPEM('agent3-cert') + }, + 'c.another.com': { + emptyRegression: true + } +}; + +var serverPort = common.PORT; + +var clientsOptions = [{ + port: serverPort, + key: loadPEM('agent1-key'), + cert: loadPEM('agent1-cert'), + ca: [loadPEM('ca1-cert')], + servername: 'a.example.com', + rejectUnauthorized: false +}, { + port: serverPort, + key: loadPEM('agent2-key'), + cert: loadPEM('agent2-cert'), + ca: [loadPEM('ca2-cert')], + servername: 'b.example.com', + rejectUnauthorized: false +}, { + port: serverPort, + key: loadPEM('agent3-key'), + cert: loadPEM('agent3-cert'), + ca: [loadPEM('ca1-cert')], + servername: 'c.wrong.com', + rejectUnauthorized: false +}, { + port: serverPort, + key: loadPEM('agent3-key'), + cert: loadPEM('agent3-cert'), + ca: [loadPEM('ca1-cert')], + servername: 'c.another.com', + rejectUnauthorized: false +}]; + +var serverResults = [], + clientResults = [], + serverErrors = [], + clientErrors = [], + serverError, + clientError; + +var server = tls.createServer(serverOptions, function(c) { + serverResults.push(c.servername); +}); + +server.on('clientError', function(err) { + serverResults.push(null); + serverError = err.message; +}); + +server.listen(serverPort, startTest); + +function startTest() { + function connectClient(i, callback) { + var options = clientsOptions[i]; + clientError = null; + serverError = null; + + var client = tls.connect(options, function() { + clientResults.push( + /Hostname\/IP doesn't/.test(client.authorizationError || '')); + client.destroy(); + + next(); + }); + + client.on('error', function(err) { + clientResults.push(false); + clientError = err.message; + next(); + }); + + function next() { + clientErrors.push(clientError); + serverErrors.push(serverError); + + if (i === clientsOptions.length - 1) + callback(); + else + connectClient(i + 1, callback); + } + }; + + connectClient(0, function() { + server.close(); + }); +} + +process.on('exit', function() { + assert.deepEqual(serverResults, ['a.example.com', 'b.example.com', + 'c.wrong.com', null]); + assert.deepEqual(clientResults, [true, true, false, false]); + assert.deepEqual(clientErrors, [null, null, null, "socket hang up"]); + assert.deepEqual(serverErrors, [null, null, null, "Invalid SNI context"]); +}); |