]> git.ipfire.org Git - thirdparty/haproxy.git/commit
projects / thirdparty / haproxy.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c7b5d25) | patch
REGTESTS: ssl: split tls*_reuse in stateless and stateful resume tests
authorWilliam Lallemand <wlallemand@haproxy.com>
Thu, 4 Dec 2025 13:02:01 +0000 (14:02 +0100)
committerWilliam Lallemand <wlallemand@haproxy.com>
Thu, 4 Dec 2025 14:05:56 +0000 (15:05 +0100)
commit85689b072a7f929c2656cca3fba1f2b54c836d52
treecaf569cf0c8a1f6b2a362e0545a4c5b9718a5eb8tree
parentc7b5d2552a05c1242a73333dd7dca8e3816c5c87commit | diff
REGTESTS: ssl: split tls*_reuse in stateless and stateful resume tests

Simplify ssl_reuse.vtci so it can be started with variables:

- SSL_CACHESIZE allow to specify the size of the session cache size for
  the frontend
- NO_TLS_TICKETS allow to specify the "no-tls-tickets" option on bind

It introduces these files:

- ssl/tls12_resume_stateful.vtc
- ssl/tls12_resume_stateless.vtc
- ssl/tls13_resume_stateless.vtc
- ssl/tls13_resume_stateful.vtc
- quic/tls13_resume_stateless.vtc
- quic/tls13_resume_stateful.vtc
- quic/tls13_0rtt_stateful.vtc
- quic/tls13_0rtt_stateless.vtc

stateful files have "no-tls-tickets" + tune.tls.cachesize 20000
stateless files have "tls-tickets" + tune.tls.cachesize 0

This allows to enable AWS-LC on TCP TLS1.2 and TCP TL1.3+tickets.

TLS1.2+stateless does not seem to work on WolfSSL.
12 files changed:
reg-tests/quic/tls13_0rtt.vtc [deleted file] blob | blame | history
reg-tests/quic/tls13_resume_stateful.vtc [new file with mode: 0644] blob
reg-tests/quic/tls13_resume_stateless.vtc [moved from reg-tests/quic/tls13_reuse.vtc with 77% similarity] diff | blob | blame | history
reg-tests/ssl/ssl_reuse.vtci diff | blob | blame | history
reg-tests/ssl/tls12_0rtt_stateful.vtc [new file with mode: 0644] blob
reg-tests/ssl/tls12_0rtt_stateless.vtc [moved from reg-tests/ssl/tls12_0rtt.vtc with 61% similarity] diff | blob | blame | history
reg-tests/ssl/tls12_resume_stateful.vtc [new file with mode: 0644] blob
reg-tests/ssl/tls12_resume_stateless.vtc [new file with mode: 0644] blob
reg-tests/ssl/tls13_0rtt_stateful.vtc [new file with mode: 0644] blob
reg-tests/ssl/tls13_0rtt_stateless.vtc [moved from reg-tests/ssl/tls13_0rtt.vtc with 82% similarity] diff | blob | blame | history
reg-tests/ssl/tls13_resume_stateful.vtc [moved from reg-tests/ssl/tls13_reuse.vtc with 76% similarity] diff | blob | blame | history
reg-tests/ssl/tls13_resume_stateless.vtc [moved from reg-tests/ssl/tls12_reuse.vtc with 81% similarity] diff | blob | blame | history
Mirror of https://github.com/haproxy/haproxy.git