REGTESTS: ssl: test simple case of crt-store

author William Lallemand <wlallemand@haproxy.com>

Mon, 8 Apr 2024 15:52:08 +0000 (17:52 +0200)

committer William Lallemand <wlallemand@haproxy.com>

Fri, 12 Apr 2024 13:38:54 +0000 (15:38 +0200)
author William Lallemand <wlallemand@haproxy.com>
Mon, 8 Apr 2024 15:52:08 +0000 (17:52 +0200)
committer William Lallemand <wlallemand@haproxy.com>
Fri, 12 Apr 2024 13:38:54 +0000 (15:38 +0200)
diff --git a/reg-tests/ssl/crt_store.vtc b/reg-tests/ssl/crt_store.vtc

new file mode 100644 (file)

index 0000000..685183e
--- /dev/null
+++ b/reg-tests/ssl/crt_store.vtc
@@ -0,0 +1,31 @@
+#REGTEST_TYPE=devel
+varnishtest "Test the crt-store section"
+feature cmd "$HAPROXY_PROGRAM -cc 'version_atleast(3.0-dev7)'"
+feature cmd "$HAPROXY_PROGRAM -cc 'feature(OPENSSL)'"
+feature ignore_unknown_macro
+
+#
+# Basic check for the crt-store, ensure that loading works and that we can't
+# load a crt which was used before
+#
+
+
+haproxy h1 -arg -V -conf-OK {
+    crt-store
+       load crt "${testdir}/common.crt" key "${testdir}/common.key"
+
+    listen ssl-lst
+        bind "${tmpdir}/ssl.sock" ssl crt ${testdir}/common.crt strict-sni
+
+}
+
+haproxy h2 -arg -V -conf-BAD {} {
+
+    listen ssl-lst
+        bind "${tmpdir}/ssl.sock" ssl crt ${testdir}/common.pem strict-sni
+
+    crt-store
+       load crt "${testdir}/common.pem" key "${testdir}/common.key"
+
+}
+
author	William Lallemand <wlallemand@haproxy.com>
	Mon, 8 Apr 2024 15:52:08 +0000 (17:52 +0200)
committer	William Lallemand <wlallemand@haproxy.com>
	Fri, 12 Apr 2024 13:38:54 +0000 (15:38 +0200)