Inicio Explorar Axuda
Iniciar sesión
RISCI_ATOM
/
wolfssl
réplica de https://github.com/wolfSSL/wolfssl.git
1
0
Fork 0
Ficheiros Incidencias 14 Wiki
Árbore: bc6881974d
Ramas Etiquetas
wolfssl
/
scripts
/
external.test

external.test 2.1 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 
  1. #!/usr/bin/env bash
    2. 

  2. 

  3. # external.test
    4. 

  4. 

  5. SCRIPT_DIR="$(dirname "$0")"
    6. 

  6. 

  7. server=www.wolfssl.com
    8. 

  8. ca=./certs/wolfssl-website-ca.pem
    9. 

  9. 

  10. [ ! -x ./examples/client/client ] && echo -e "\n\nClient doesn't exist" && exit 1
    11. 

  11. 

  12. # www.wolfssl.com isn't using RFC 8446 yet but the draft instead.
    13. 

  13. if ! ./examples/client/client -V | grep -q 3; then
    14. 

  14.     echo 'skipping external.test because TLS1.2 is not available.' 1>&2
    15. 

  15.     exit 77
    16. 

  16. fi
    17. 

  17. 

  18. # cloudflare seems to change CAs quickly, disabled by default
    19. 

  19. if ! test -n "$WOLFSSL_EXTERNAL_TEST"; then
    20. 

  20.     echo "WOLFSSL_EXTERNAL_TEST not set, won't run"
    21. 

  21.     exit 77
    22. 

  22. fi
    23. 

  23. if test "$WOLFSSL_EXTERNAL_TEST" == "0"; then
    24. 

  24.     echo "WOLFSSL_EXTERNAL_TEST is defined to zero, won't run"
    25. 

  25.     exit 77
    26. 

  26. fi
    27. 

  27. 

  28. 

  29. BUILD_FLAGS="$(./examples/client/client '-#')"
    30. 

  30. if echo "$BUILD_FLAGS" | fgrep -q -e ' -DWOLFSSL_SNIFFER '; then
    31. 

  31.     echo 'skipping WOLFSSL_EXTERNAL_TEST because -DWOLFSSL_SNIFFER configuration of build is incompatible.'
    32. 

  32.     exit 77
    33. 

  33. fi
    34. 

  34. 

  35. if echo "$BUILD_FLAGS" | fgrep -v -q -e ' -DHAVE_ECC '; then
    36. 

  36.     echo 'skipping WOLFSSL_EXTERNAL_TEST because -UHAVE_ECC configuration of build is incompatible.'
    37. 

  37.     exit 77
    38. 

  38. fi
    39. 

  39. 

  40. echo "WOLFSSL_EXTERNAL_TEST set, running test..."
    41. 

  41. 

  42. # is our desired server there?
    43. 

  43. "${SCRIPT_DIR}"/ping.test $server 2
    44. 

  44. RESULT=$?
    45. 

  45. [ $RESULT -ne 0 ] && exit 0
    46. 

  46. 

  47. # client test against the server
    48. 

  48. ./examples/client/client -X -C -h $server -p 443 -g -A $ca
    49. 

  49. RESULT=$?
    50. 

  50. [ $RESULT -ne 0 ] && echo -e "\n\nClient connection failed" && exit 1
    51. 

  51. 

  52. # test again, but using system CA certs to verify the server if support is enabled.
    53. 

  53. # We don't want to use --sys-ca-certs with static memory, as we don't know how
    54. 

  54. # much memory will be required to store an unbounded number of certs
    55. 

  55. BUILD_FLAGS="$(./examples/client/client '-#')"
    56. 

  56. if echo "$BUILD_FLAGS" | grep -q "WOLFSSL_SYS_CA_CERTS" && ! echo "$BUILD_FLAGS" | grep -q "WOLFSSL_STATIC_MEMORY"; then
    57. 

  57.     echo -e "\nConnecting using WOLFSSL_SYS_CA_CERTS..."
    58. 

  58.     ./examples/client/client -X -C -h $server -p 443 -g --sys-ca-certs
    59. 

  59.     RESULT=$?
    60. 

  60.     [ $RESULT -ne 0 ] && echo -e "\n\nClient connection failed when using WOLFSSL_SYS_CA_CERTS" && exit 1
    61. 

  61. fi
    62. 

  62. 

  63. exit 0
    64.