mirror of
https://github.com/nodejs/node.git
synced 2024-11-25 08:19:38 +01:00
3e1b1dd4a9
The copyright and license notice is already in the LICENSE file. There is no justifiable reason to also require that it be included in every file, since the individual files are not individually distributed except as part of the entire package.
135 lines
3.0 KiB
JavaScript
135 lines
3.0 KiB
JavaScript
if (!process.versions.openssl) {
|
|
console.error('Skipping because node compiled without OpenSSL.');
|
|
process.exit(0);
|
|
}
|
|
|
|
|
|
var hosterr = /Hostname\/IP doesn\'t match certificate\'s altnames/g;
|
|
var testCases =
|
|
[{ ca: ['ca1-cert'],
|
|
key: 'agent2-key',
|
|
cert: 'agent2-cert',
|
|
servers: [
|
|
{ ok: true, key: 'agent1-key', cert: 'agent1-cert' },
|
|
{ ok: false, key: 'agent2-key', cert: 'agent2-cert' },
|
|
{ ok: false, key: 'agent3-key', cert: 'agent3-cert' }
|
|
]
|
|
},
|
|
|
|
{ ca: [],
|
|
key: 'agent2-key',
|
|
cert: 'agent2-cert',
|
|
servers: [
|
|
{ ok: false, key: 'agent1-key', cert: 'agent1-cert' },
|
|
{ ok: false, key: 'agent2-key', cert: 'agent2-cert' },
|
|
{ ok: false, key: 'agent3-key', cert: 'agent3-cert' }
|
|
]
|
|
},
|
|
|
|
{ ca: ['ca1-cert', 'ca2-cert'],
|
|
key: 'agent2-key',
|
|
cert: 'agent2-cert',
|
|
servers: [
|
|
{ ok: true, key: 'agent1-key', cert: 'agent1-cert' },
|
|
{ ok: false, key: 'agent2-key', cert: 'agent2-cert' },
|
|
{ ok: true, key: 'agent3-key', cert: 'agent3-cert' }
|
|
]
|
|
}
|
|
];
|
|
|
|
|
|
var common = require('../common');
|
|
var assert = require('assert');
|
|
var fs = require('fs');
|
|
var tls = require('tls');
|
|
|
|
|
|
function filenamePEM(n) {
|
|
return require('path').join(common.fixturesDir, 'keys', n + '.pem');
|
|
}
|
|
|
|
|
|
function loadPEM(n) {
|
|
return fs.readFileSync(filenamePEM(n));
|
|
}
|
|
|
|
var successfulTests = 0;
|
|
|
|
function testServers(index, servers, clientOptions, cb) {
|
|
var serverOptions = servers[index];
|
|
if (!serverOptions) {
|
|
cb();
|
|
return;
|
|
}
|
|
|
|
var ok = serverOptions.ok;
|
|
|
|
if (serverOptions.key) {
|
|
serverOptions.key = loadPEM(serverOptions.key);
|
|
}
|
|
|
|
if (serverOptions.cert) {
|
|
serverOptions.cert = loadPEM(serverOptions.cert);
|
|
}
|
|
|
|
var server = tls.createServer(serverOptions, function(s) {
|
|
s.end('hello world\n');
|
|
});
|
|
|
|
server.listen(common.PORT, function() {
|
|
var b = '';
|
|
|
|
console.error('connecting...');
|
|
var client = tls.connect(clientOptions, function() {
|
|
var authorized = client.authorized ||
|
|
hosterr.test(client.authorizationError);
|
|
|
|
console.error('expected: ' + ok + ' authed: ' + authorized);
|
|
|
|
assert.equal(ok, authorized);
|
|
server.close();
|
|
});
|
|
|
|
client.on('data', function(d) {
|
|
b += d.toString();
|
|
});
|
|
|
|
client.on('end', function() {
|
|
assert.equal('hello world\n', b);
|
|
});
|
|
|
|
client.on('close', function() {
|
|
testServers(index + 1, servers, clientOptions, cb);
|
|
});
|
|
});
|
|
}
|
|
|
|
|
|
function runTest(testIndex) {
|
|
var tcase = testCases[testIndex];
|
|
if (!tcase) return;
|
|
|
|
var clientOptions = {
|
|
port: common.PORT,
|
|
ca: tcase.ca.map(loadPEM),
|
|
key: loadPEM(tcase.key),
|
|
cert: loadPEM(tcase.cert),
|
|
rejectUnauthorized: false
|
|
};
|
|
|
|
|
|
testServers(0, tcase.servers, clientOptions, function() {
|
|
successfulTests++;
|
|
runTest(testIndex + 1);
|
|
});
|
|
}
|
|
|
|
|
|
runTest(0);
|
|
|
|
|
|
process.on('exit', function() {
|
|
console.log('successful tests: %d', successfulTests);
|
|
assert.equal(successfulTests, testCases.length);
|
|
});
|