test_invalid_certificate
echo missing proxy certificate
-mv certificate-localhost-proxy.pem .pem
+mv certificate-localhost-proxy.pem certificate-www.localhost-proxy.pem
# "invalid" to prevent user error if the proxy certificate gets deleted (but
# the server certificate is still readable).
client localhost 4712 invalid || abort 'client localhost 4712 invalid'
-mv .pem certificate-localhost-proxy.pem
+mv certificate-www.localhost-proxy.pem certificate-localhost-proxy.pem
test_proxy_successful
test_invalid_certificate
# Stop server and try a "MITM" with a bad certificate.
echo
kill $pid_server || echo 'failed to kill gnutls-serv'
+sleep 3 # necessary on some systems like OpenBSD
server_background --x509certfile "$srcdir/server-bad.pem" \
--x509keyfile "$srcdir/server-key.pem"
wait_for_ports 4712
tlsproxy_add localhost server.pem
echo mitm missing server certificate
-mv certificate-localhost-server.pem .pem
+mv certificate-localhost-server.pem certificate-www.localhost-server.pem
client localhost 4712 'test server bad' || abort 'client localhost 4712 test server bad'
-mv .pem certificate-localhost-server.pem
+mv certificate-www.localhost-server.pem certificate-localhost-server.pem
test_proxy_successful
test_invalid_certificate
echo mitm missing proxy certificate
-mv certificate-localhost-proxy.pem .pem
+mv certificate-localhost-proxy.pem certificate-www.localhost-proxy.pem
# "invalid" to prevent user error if the proxy certificate gets deleted (but
# the server certificate is still readable).
client localhost 4712 invalid || abort 'client localhost 4712 invalid'
-mv .pem certificate-localhost-proxy.pem
+mv certificate-www.localhost-proxy.pem certificate-localhost-proxy.pem
test_proxy_successful
test_invalid_certificate