From 1197f88c4fffdd1cbd4ab57882d2330e100a7db0 Mon Sep 17 00:00:00 2001
From: Jacob Barthelmeh <jacob@wolfssl.com>
Date: Thu, 11 Feb 2016 00:12:48 -0700
Subject: [PATCH] add psk.test script for testing

---
 configure.ac       |   3 +
 scripts/include.am |   3 +
 scripts/psk.test   | 152 +++++++++++++++++++++++++++++++++++++++++++++
 3 files changed, 158 insertions(+)
 create mode 100755 scripts/psk.test

diff --git a/configure.ac b/configure.ac
index c93569ed6..fc37082c6 100644
--- a/configure.ac
+++ b/configure.ac
@@ -2495,6 +2495,9 @@ fi
 AM_CONDITIONAL([BUILD_MCAPI], [test "x$ENABLED_MCAPI" = "xyes"])
 
 
+# check if PSK was enabled for conditionally running psk.test script
+AM_CONDITIONAL([BUILD_PSK], [test "x$ENABLED_PSK" = "xyes"])
+
 # Check for build-type conflicts
 AS_IF([test "x$ENABLED_MAXSTRENGTH" = "xyes" && \
        test "x$ENABLED_LEANPSK" = "xyes"],
diff --git a/scripts/include.am b/scripts/include.am
index 5b9d38448..5866a554e 100644
--- a/scripts/include.am
+++ b/scripts/include.am
@@ -47,6 +47,9 @@ endif
 
 endif
 
+if BUILD_PSK
+dist_noinst_SCRIPTS+= scripts/psk.test
+endif
 
 EXTRA_DIST +=  scripts/testsuite.pcap
 # leave openssl.test as extra until non bash works
diff --git a/scripts/psk.test b/scripts/psk.test
new file mode 100755
index 000000000..01313b91b
--- /dev/null
+++ b/scripts/psk.test
@@ -0,0 +1,152 @@
+#!/bin/sh
+
+# psk.test
+# copyright wolfSSL 2016
+
+# getting unique port is modeled after resume.test script
+# need a unique port since may run the same time as testsuite
+# use server port zero hack to get one
+port=0
+no_pid=-1
+server_pid=$no_pid
+counter=0
+# let's use absolute path to a local dir (make distcheck may be in sub dir)
+# also let's add some randomness by adding pid in case multiple 'make check's
+# per source tree
+ready_file=`pwd`/wolfssl_psk_ready$$
+
+echo "ready file $ready_file"
+
+create_port() {
+    while [ ! -s $ready_file -a "$counter" -lt 20 ]; do
+        echo -e "waiting for ready file..."
+        sleep 0.1
+        counter=$((counter+ 1))
+    done
+
+    if test -e $ready_file; then
+        echo -e "found ready file, starting client..."
+
+        # get created port 0 ephemeral port
+        port=`cat $ready_file`
+    else
+        echo -e "NO ready file ending test..."
+        do_cleanup
+    fi
+}
+
+remove_ready_file() {
+    if test -e $ready_file; then
+        echo -e "removing existing ready file"
+    rm $ready_file
+    fi
+}
+
+do_cleanup() {
+    echo "in cleanup"
+
+    if  [ $server_pid != $no_pid ]
+    then
+        echo "killing server"
+        kill -9 $server_pid
+    fi
+    remove_ready_file
+}
+
+do_trap() {
+    echo "got trap"
+    do_cleanup
+    exit -1
+}
+
+trap do_trap INT TERM
+
+[ ! -x ./examples/client/client ] && echo -e "\n\nClient doesn't exist" && exit 1
+
+# Usual psk server / psk client. This use case is tested in
+# tests/unit.test and is used here for just checking if PSK is enabled
+port=0
+./examples/server/server -s -R $ready_file -p $port &
+server_pid=$!
+create_port
+./examples/client/client -s -p $port
+RESULT=$?
+remove_ready_file
+# if fail here then is a settings issue so return 0
+if [ $RESULT -ne 0 ]; then
+    echo -e "\n\nPSK not enabled"
+    do_cleanup
+    exit 0
+fi
+echo ""
+
+# client test against the server
+###############################
+
+# usual psk server / psk client
+port=0
+./examples/server/server -j -R $ready_file -p $port &
+server_pid=$!
+create_port
+./examples/client/client -s -p $port
+RESULT=$?
+remove_ready_file
+if [ $RESULT -ne 0 ]; then
+    echo -e "\n\nClient connection failed"
+    do_cleanup
+    exit 1
+fi
+echo ""
+
+# Usual server / client. This use case is tested in
+# tests/unit.test and is used here for just checking if cipher suite
+# is available (one case for example is with disable-asn)
+port=0
+./examples/server/server -R $ready_file -p $port -l DHE-RSA-AES128-SHA:ECDHE-RSA-AES128-SHA256:ECDHE-RSA-DES-CBC3-SHA &
+server_pid=$!
+create_port
+./examples/client/client -p $port
+RESULT=$?
+remove_ready_file
+# if fail here then is a settings issue so return 0
+if [ $RESULT -ne 0 ]; then
+    echo -e "\n\nIssue with choosen non PSK suites"
+    do_cleanup
+    exit 0
+fi
+echo ""
+
+# psk server with non psk client
+port=0
+./examples/server/server -j -R $ready_file -p $port &
+server_pid=$!
+create_port
+./examples/client/client -p $port
+RESULT=$?
+remove_ready_file
+if [ $RESULT -ne 0 ]; then
+    echo -e "\n\nClient connection failed"
+    do_cleanup
+    exit 1
+fi
+echo ""
+
+# check fail if no auth, psk server with non psk client
+echo "Checking fail when not sending peer cert"
+port=0
+./examples/server/server -j -R $ready_file -p $port &
+server_pid=$!
+create_port
+./examples/client/client -x -p $port
+RESULT=$?
+remove_ready_file
+if [ $RESULT -eq 0 ]; then
+    echo -e "\n\nClient connected when supposed to fail"
+    do_cleanup
+    exit 1
+fi
+
+echo -e "\nALL Tests Passed"
+
+exit 0
+