wolfssl/scripts/external.test

#!/bin/bash

# external.test

SCRIPT_DIR="$(dirname "$0")"

server=www.wolfssl.com
ca=./certs/wolfssl-website-ca.pem

[ ! -x ./examples/client/client ] && echo -e "\n\nClient doesn't exist" && exit 1

# www.wolfssl.com isn't using RFC 8446 yet but the draft instead.
if ! ./examples/client/client -V | grep -q 3; then
    echo 'skipping external.test because TLS1.2 is not available.' 1>&2
    exit 77
fi

# cloudflare seems to change CAs quickly, disabled by default
if test -n "$WOLFSSL_EXTERNAL_TEST"; then

    BUILD_FLAGS="$(./examples/client/client '-#')"
    if echo "$BUILD_FLAGS" | fgrep -q -e ' -DWOLFSSL_SNIFFER '; then
        echo 'skipping WOLFSSL_EXTERNAL_TEST because -DWOLFSSL_SNIFFER configuration of build is incompatible.'
        exit 77
    fi

    if echo "$BUILD_FLAGS" | fgrep -v -q -e ' -DHAVE_ECC '; then
        echo 'skipping WOLFSSL_EXTERNAL_TEST because -UHAVE_ECC configuration of build is incompatible.'
        exit 77
    fi

    echo "WOLFSSL_EXTERNAL_TEST set, running test..."
else
    echo "WOLFSSL_EXTERNAL_TEST NOT set, won't run"
    exit 77
fi

# is our desired server there?
"${SCRIPT_DIR}"/ping.test $server 2
RESULT=$?
[ $RESULT -ne 0 ] && exit 0

# client test against the server
./examples/client/client -X -C -h $server -p 443 -g -A $ca
RESULT=$?
[ $RESULT -ne 0 ] && echo -e "\n\nClient connection failed" && exit 1

exit 0
script cleanup: use #!/bin/bash on all scripts that use "echo -e" (/bin/sh is sometimes a non-Bourne/non-POSIX shell, e.g. dash/ash, with no support for "echo -e"); fix whitespace. 2022-03-09 12:28:22 -06:00			`#!/bin/bash`
add external site script test to make check 2015-05-07 10:02:43 -07:00
			`# external.test`

scripts: remove use of `realpath` and fix `external.test` `external.test` could fail quietly for not finding `ping.test` for out-of-tree builds. Make it look relative to the script location. 2021-02-10 14:18:32 -08:00			`SCRIPT_DIR="$(dirname "$0")"`

add external site script test to make check 2015-05-07 10:02:43 -07:00			`server=www.wolfssl.com`
			`ca=./certs/wolfssl-website-ca.pem`

			`[ ! -x ./examples/client/client ] && echo -e "\n\nClient doesn't exist" && exit 1`

Fixes to work when compiled with TLS 1.3 only TLS 1.3 Early Data can be used with PSK and not session tickets. If only TLS 1.3 and no session tickets then no resumption. External sites don't support TLS 1.3 yet. 2018-08-28 15:37:15 +10:00			`# www.wolfssl.com isn't using RFC 8446 yet but the draft instead.`
scripts/: refactor TLS version support tests to use -V, rather than -v (which makes frivolous connection attempts). 2022-05-19 11:18:34 -05:00			`if ! ./examples/client/client -V \| grep -q 3; then`
			`echo 'skipping external.test because TLS1.2 is not available.' 1>&2`
Display SKIP instead of PASS when tests skipped for make check 2022-06-21 13:11:08 -07:00			`exit 77`
scripts/: refactor TLS version support tests to use -V, rather than -v (which makes frivolous connection attempts). 2022-05-19 11:18:34 -05:00			`fi`

			`# cloudflare seems to change CAs quickly, disabled by default`
			`if test -n "$WOLFSSL_EXTERNAL_TEST"; then`

			`BUILD_FLAGS="$(./examples/client/client '-#')"`
			`if echo "$BUILD_FLAGS" \| fgrep -q -e ' -DWOLFSSL_SNIFFER '; then`
			`echo 'skipping WOLFSSL_EXTERNAL_TEST because -DWOLFSSL_SNIFFER configuration of build is incompatible.'`
Display SKIP instead of PASS when tests skipped for make check 2022-06-21 13:11:08 -07:00			`exit 77`
Fixes to work when compiled with TLS 1.3 only TLS 1.3 Early Data can be used with PSK and not session tickets. If only TLS 1.3 and no session tickets then no resumption. External sites don't support TLS 1.3 yet. 2018-08-28 15:37:15 +10:00			`fi`
make external script test optional with env variable as CA changes more frequent than release 2015-10-20 11:56:46 -07:00
scripts/: refactor TLS version support tests to use -V, rather than -v (which makes frivolous connection attempts). 2022-05-19 11:18:34 -05:00			`if echo "$BUILD_FLAGS" \| fgrep -v -q -e ' -DHAVE_ECC '; then`
			`echo 'skipping WOLFSSL_EXTERNAL_TEST because -UHAVE_ECC configuration of build is incompatible.'`
Display SKIP instead of PASS when tests skipped for make check 2022-06-21 13:11:08 -07:00			`exit 77`
scripts/: refactor TLS version support tests to use -V, rather than -v (which makes frivolous connection attempts). 2022-05-19 11:18:34 -05:00			`fi`
Fixes to work when compiled with TLS 1.3 only TLS 1.3 Early Data can be used with PSK and not session tickets. If only TLS 1.3 and no session tickets then no resumption. External sites don't support TLS 1.3 yet. 2018-08-28 15:37:15 +10:00
scripts/: refactor TLS version support tests to use -V, rather than -v (which makes frivolous connection attempts). 2022-05-19 11:18:34 -05:00			`echo "WOLFSSL_EXTERNAL_TEST set, running test..."`
			`else`
			`echo "WOLFSSL_EXTERNAL_TEST NOT set, won't run"`
Display SKIP instead of PASS when tests skipped for make check 2022-06-21 13:11:08 -07:00			`exit 77`
Fixes to work when compiled with TLS 1.3 only TLS 1.3 Early Data can be used with PSK and not session tickets. If only TLS 1.3 and no session tickets then no resumption. External sites don't support TLS 1.3 yet. 2018-08-28 15:37:15 +10:00			`fi`
add external site script test to make check 2015-05-07 10:02:43 -07:00
scripts/: refactor TLS version support tests to use -V, rather than -v (which makes frivolous connection attempts). 2022-05-19 11:18:34 -05:00			`# is our desired server there?`
			`"${SCRIPT_DIR}"/ping.test $server 2`
			`RESULT=$?`
			`[ $RESULT -ne 0 ] && exit 0`

			`# client test against the server`
			`./examples/client/client -X -C -h $server -p 443 -g -A $ca`
			`RESULT=$?`
			`[ $RESULT -ne 0 ] && echo -e "\n\nClient connection failed" && exit 1`

add external site script test to make check 2015-05-07 10:02:43 -07:00			`exit 0`