From 590ed3d7ea555b877859f6b491020112588fe1be Mon Sep 17 00:00:00 2001 From: Emilia Kasper Date: Tue, 5 Jul 2016 19:06:23 +0200 Subject: SSL test framework: port resumption tests Systematically test every server-side version downgrade or upgrade. Client version upgrade or downgrade could be tested analogously but will be done in a later change. Reviewed-by: Rich Salz Reviewed-by: Matt Caswell --- test/README.ssltest.md | 28 ++++++++++++++++++++++++---- 1 file changed, 24 insertions(+), 4 deletions(-) (limited to 'test/README.ssltest.md') diff --git a/test/README.ssltest.md b/test/README.ssltest.md index 9d828b5146..8cd55ed2c3 100644 --- a/test/README.ssltest.md +++ b/test/README.ssltest.md @@ -82,7 +82,20 @@ The test section supports the following options: - Ignore - do not check for a session ticket (default) - Yes - a session ticket is expected - No - a session ticket is not expected - - Broken - a special test case where the session ticket callback does not initialize crypto + - Broken - a special test case where the session ticket callback does not + initialize crypto + +* HandshakeMode - which handshake flavour to test: + - Simple - plain handshake (default) + - Resume - test resumption + - (Renegotiate - test renegotiation, not yet implemented) + +* ResumptionExpected - whether or not resumption is expected (Resume mode only) + - Yes - resumed handshake + - No - full handshake (default) + +When HandshakeMode is Resume or Renegotiate, the original handshake is expected +to succeed. All configured test expectations are verified against the second handshake. * ServerNPNProtocols, Server2NPNProtocols, ClientNPNProtocols, ExpectedNPNProtocol, ServerALPNProtocols, Server2ALPNProtocols, ClientALPNProtocols, ExpectedALPNProtocol - @@ -103,9 +116,16 @@ server => { } ``` -A server2 section may optionally be defined to configure a secondary -context that is selected via the ServerName test option. If the server2 -section is not configured, then the configuration matches server. +The following sections may optionally be defined: + +* server2 - this section configures a secondary context that is selected via the + ServerName test option. This context is used whenever a ServerNameCallback is + specified. If the server2 section is not present, then the configuration + matches server. +* resume_server - this section configures the client to resume its session + against a different server. This context is used whenever HandshakeMode is + Resume. If the resume-server section is not present, then the configuration + matches server. ### Default server and client configurations -- cgit v1.2.3