diff options
author | Matt Caswell <matt@openssl.org> | 2016-08-30 14:20:18 +0100 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2016-08-30 21:14:29 +0100 |
commit | 062ed73f581ef33f319c58cda93ca818cb4095b4 (patch) | |
tree | 535af0b2c28fb117113f2172a3ef0a97744de741 /test/ssl_test_ctx.h | |
parent | 06314c029d6b1e2d184546b059d827bb7040f5d4 (diff) |
Add some CertStatus tests
The previous commit revealed a long standing problem where CertStatus
processing was broken in DTLS. This would have been revealed by better
testing - so add some!
Reviewed-by: Rich Salz <rsalz@openssl.org>
(cherry picked from commit 767ccc3b77cde82c46ab4af541663f6c80e538d3)
Diffstat (limited to 'test/ssl_test_ctx.h')
-rw-r--r-- | test/ssl_test_ctx.h | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/test/ssl_test_ctx.h b/test/ssl_test_ctx.h index 11b6c33321..c8c66d6d70 100644 --- a/test/ssl_test_ctx.h +++ b/test/ssl_test_ctx.h @@ -65,6 +65,12 @@ typedef enum { SSL_TEST_CT_VALIDATION_PERMISSIVE, SSL_TEST_CT_VALIDATION_STRICT } ssl_ct_validation_t; + +typedef enum { + SSL_TEST_CERT_STATUS_NONE = 0, /* Default */ + SSL_TEST_CERT_STATUS_GOOD_RESPONSE, + SSL_TEST_CERT_STATUS_BAD_RESPONSE +} ssl_cert_status_t; /* * Server/client settings that aren't supported by the SSL CONF library, * such as callbacks. @@ -88,6 +94,8 @@ typedef struct { char *alpn_protocols; /* Whether to set a broken session ticket callback. */ int broken_session_ticket; + /* Should we send a CertStatus message? */ + ssl_cert_status_t cert_status; } SSL_TEST_SERVER_CONF; typedef struct { @@ -164,6 +172,7 @@ const char *ssl_session_ticket_name(ssl_session_ticket_t server); const char *ssl_test_method_name(ssl_test_method_t method); const char *ssl_handshake_mode_name(ssl_handshake_mode_t mode); const char *ssl_ct_validation_name(ssl_ct_validation_t mode); +const char *ssl_certstatus_name(ssl_cert_status_t cert_status); /* * Load the test case context from |conf|. |