REGTESTS: set_ssl_server_cert.vtc: check the sha1 from the server Check the sha1 from the server side with the sample ssl_c_sha1 sample fetch in order to evict a possible problem with "show/set ssl cert".

commit: 7b79424c05940da1cba2c84df2557b8b6d180700 [log] [tgz]
author: William Lallemand <wlallemand@haproxy.org> Thu Jan 28 16:00:22 2021 +0100
committer: William Lallemand <wlallemand@haproxy.org> Thu Jan 28 16:00:22 2021 +0100
tree: d4b90200c90378a8f2c075fc10739d6266825732
parent: 7e69637ac5a2ed50b97efa67834f0697d3f7c496 [diff] [blame]
diff --git a/reg-tests/ssl/set_ssl_server_cert.vtc b/reg-tests/ssl/set_ssl_server_cert.vtc
index 391a29b..fa3152b 100644
--- a/reg-tests/ssl/set_ssl_server_cert.vtc
+++ b/reg-tests/ssl/set_ssl_server_cert.vtc

@@ -48,6 +48,7 @@
         http-response add-header X-SSL Ok if cert_ok
         http-response add-header X-SSL Expired if cert_expired
         http-response add-header X-SSL Revoked if cert_revoked
+        http-response add-header x-ssl-sha1 %[ssl_c_sha1,hex]
 
         server s1 ${s1_addr}:${s1_port}
 } -start
@@ -56,6 +57,7 @@
   txreq
   rxresp
   expect resp.status == 200
+  expect resp.http.x-ssl-sha1 == "D9C3BAE37EA5A7EDB7B3C9BDD4DCB2FE58A412E4"
   expect resp.http.x-ssl == "Ok"
 } -run
 
@@ -81,6 +83,7 @@
     txreq
     rxresp
     expect resp.status == 200
+    expect resp.http.x-ssl-sha1 == "C625EB01A0A660294B9D7F44C5CEEE5AFC495BE4"
     expect resp.http.x-ssl == "Expired"
 } -run
 
@@ -100,6 +103,7 @@
     txreq
     rxresp
     expect resp.status == 200
+    expect resp.http.x-ssl-sha1 == "992386628A40C9D49C89BAC0058B5D45D8575151"
     expect resp.http.x-ssl == "Revoked"
 } -run
commit	7b79424c05940da1cba2c84df2557b8b6d180700	[log] [tgz]
author	William Lallemand <wlallemand@haproxy.org>	Thu Jan 28 16:00:22 2021 +0100
committer	William Lallemand <wlallemand@haproxy.org>	Thu Jan 28 16:00:22 2021 +0100
tree	d4b90200c90378a8f2c075fc10739d6266825732
parent	7e69637ac5a2ed50b97efa67834f0697d3f7c496 [diff] [blame]