1 # Functions used by all tests.
3 # Copyright (C) 2011-2013 Simon Ruderich
5 # This program is free software: you can redistribute it and/or modify
6 # it under the terms of the GNU General Public License as published by
7 # the Free Software Foundation, either version 3 of the License, or
8 # (at your option) any later version.
10 # This program is distributed in the hope that it will be useful,
11 # but WITHOUT ANY WARRANTY; without even the implied warranty of
12 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 # GNU General Public License for more details.
15 # You should have received a copy of the GNU General Public License
16 # along with this program. If not, see <http://www.gnu.org/licenses/>.
22 # Terminate all running servers when the script terminates.
24 # Same when the user presses Ctrl-C.
25 trap 'abort SIGINT' INT
31 certificate-localhost-proxy.pem certificate-localhost-server.pem \
32 proxy-ca-key.pem proxy-ca.pem proxy-invalid.pem proxy-key.pem
35 if test -n "$pid_server"; then
36 kill $pid_server || echo 'failed to kill gnutls-serv'
38 if test -n "$pid_tlsproxy"; then
39 kill $pid_tlsproxy || echo 'failed to kill tlsproxy'
48 "$srcdir/../src/tlsproxy-setup" >/dev/null 2>&1
51 # `make distcheck` marks the source PEM-file as read-only which is copied
52 # over when using `cp`. This causes a check failure when tlsproxy_add() is
53 # called again with the same hostname. Instead use redirection which
55 "$srcdir/../src/tlsproxy-add" "$1" < "$srcdir/$2" >/dev/null 2>&1
58 #valgrind --leak-check=full --error-exitcode=1 --track-fds=yes \
59 ../src/tlsproxy -d2 "$@" >tlsproxy-log 2>&1 &
63 gnutls-serv --http --port 4712 "$@" >/dev/null 2>&1 &
67 ./client ./proxy-ca.pem "$@" > tmp 2>&1
71 for x in 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20; do
74 # Check if each given port can be reached.
77 printf 'invalid request\r\n\r\n' \
78 | nc localhost "$port" >/dev/null 2>&1 \
82 if test -n "$ready"; then
86 echo "waiting for ports $* ..."
90 test_proxy_failure() {
91 grep 'proxy failure' tmp >/dev/null \
92 || abort 'test_proxy_failure'
93 grep 'response: HTTP/1.0 503 Forwarding failure' tmp >/dev/null \
94 || abort 'test_proxy_failure 2'
96 test_proxy_authentication_failure() {
97 grep 'proxy failure' tmp >/dev/null \
98 || abort 'test_proxy_authentication_failure'
99 grep 'response: HTTP/1.0 407 Proxy Authentication Required' tmp >/dev/null \
100 || abort 'test_proxy_authentication_failure 2'
102 test_authentication_missing() {
103 grep 'response: HTTP/1.0 407 Proxy Authentication Required' tmp >/dev/null \
104 || abort 'test_authentication_missing'
106 test_proxy_successful() {
107 grep 'response: HTTP/1.0 200 Connection established' tmp >/dev/null \
108 || abort 'test_proxy_successful'
110 test_invalid_certificate() {
111 grep 'certificate invalid' tmp >/dev/null \
112 || abort 'test_invalid_certificate'
114 test_no_invalid_certificate() {
115 grep 'certificate invalid' tmp >/dev/null \
116 && abort 'test_no_invalid_certificate' || true