Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 1d15f68a633f8b28a97327234b66969ced204bae
commit1d15f68a633f8b28a97327234b66969ced204bae[log] [tgz]
authorWilliam Lallemand <wlallemand@haproxy.com>Tue Apr 28 21:52:38 2020 +0200
committerWilly Tarreau <w@1wt.eu>Thu May 07 18:39:48 2020 +0200
treeed438e9eb0982d8b7c956f52c65fd89fd6ef0a2c
parentdb4ff4575dacf2d4580355e1e0a0bfc5c5afa63c [diff]
REGTEST: ssl: test the client certificate authentication

This reg-test tests the client auth feature of HAProxy for both the
backend and frontend section with a CRL list.

This reg-test uses 2 chained listeners because vtest does not handle the
SSL. Test the frontend client auth and the backend side at the same
time.

It sends 3 requests: one with a correct certificate, one with an expired
one and one which was revoked. The client then checks if we received the
right one with the right error.

Certificates, CA and CRL are expiring in 2050 so it should be fine for
the CI.

This test could be backported as far as HAProxy 1.6

(cherry picked from commit 2e0dbb74126115e91adcf584f671cd9d1952ddd9)
Signed-off-by: Willy Tarreau <w@1wt.eu>
(cherry picked from commit 5dc38adfdb08290706ca9e1b0d35d74d2198d359)
Signed-off-by: Willy Tarreau <w@1wt.eu>
6 files changed
tree: ed438e9eb0982d8b7c956f52c65fd89fd6ef0a2c
  1. .github/
  2. contrib/
  3. doc/
  4. ebtree/
  5. examples/
  6. include/
  7. reg-tests/
  8. scripts/
  9. src/
  10. tests/
  11. .cirrus.yml
  12. .gitignore
  13. .travis.yml
  14. BRANCHES
  15. CHANGELOG
  16. CONTRIBUTING
  17. INSTALL
  18. LICENSE
  19. MAINTAINERS
  20. Makefile
  21. README
  22. ROADMAP
  23. SUBVERS
  24. VERDATE
  25. VERSION