haproxy/reg-tests/ssl/wrong_ctx_storage.vtc

# commit 28962c9
# BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot
#
# We never saw unexplicated crash with SSL, so I suppose that we are
# luck, or the slot 0 is always reserved. Anyway the usage of the macro
# SSL_get_app_data() and SSL_set_app_data() seem wrong. This patch change
# the deprecated functions SSL_get_app_data() and SSL_set_app_data()
# by the new functions SSL_get_ex_data() and SSL_set_ex_data(), and
# it reserves the slot in the SSL memory space.
#
# For information, this is the two declaration which seems wrong or
# incomplete in the OpenSSL ssl.h file. We can see the usage of the
# slot 0 whoch is hardcoded, but never reserved.
#
#    #define SSL_set_app_data(s,arg)     (SSL_set_ex_data(s,0,(char *)arg))
#    #define SSL_get_app_data(s)      (SSL_get_ex_data(s,0))

#REGTEST_TYPE=bug

varnishtest "OpenSSL bug: Random crashes"
#REQUIRE_OPTIONS=OPENSSL
feature ignore_unknown_macro


haproxy h1 -conf {
  global
    tune.ssl.default-dh-param 2048
    tune.ssl.capture-buffer-size 1

  listen frt
    mode http
    bind "fd@${frt}" ssl crt ${testdir}/common.pem
    http-request redirect location /
} -start

shell {
    HOST=${h1_frt_addr}
    if [ "${h1_frt_addr}" = "::1" ] ; then
        HOST="\[::1\]"
    fi
    for i in 1 2 3 4 5; do
        curl -i -k https://$HOST:${h1_frt_port} & pids="$pids $!"
    done
    wait $pids
}
MINOR: reg-tests: Add a few regression testing files. 2018-06-20 07:26:44 +02:00			`# commit 28962c9`
			`# BUG/MAJOR: ssl: OpenSSL context is stored in non-reserved memory slot`
			`#`
			`# We never saw unexplicated crash with SSL, so I suppose that we are`
			`# luck, or the slot 0 is always reserved. Anyway the usage of the macro`
			`# SSL_get_app_data() and SSL_set_app_data() seem wrong. This patch change`
			`# the deprecated functions SSL_get_app_data() and SSL_set_app_data()`
			`# by the new functions SSL_get_ex_data() and SSL_set_ex_data(), and`
			`# it reserves the slot in the SSL memory space.`
			`#`
			`# For information, this is the two declaration which seems wrong or`
			`# incomplete in the OpenSSL ssl.h file. We can see the usage of the`
			`# slot 0 whoch is hardcoded, but never reserved.`
			`#`
			`# #define SSL_set_app_data(s,arg) (SSL_set_ex_data(s,0,(char *)arg))`
			`# #define SSL_get_app_data(s) (SSL_get_ex_data(s,0))`

REGTEST: replace LEVEL option by a more human readable one. This patch replaces LEVEL variable by REGTESTS_TYPES variable which is more mnemonic and human readable. It is uses as a filter to run the reg tests scripts where a commented #REGTEST_TYPE may be defined to designate their types. Running the following command: $ REGTESTS_TYPES=slow,default will start all the reg tests where REGTEST_TYPE is defines as 'slow' or 'default'. Note that 'default' is also the default value of REGTEST_TYPE when not specified dedicated to run all the current h.vtc files. When REGTESTS_TYPES is not specified there is no filter at all. All the tests are run. This patches also defines REGTEST_TYPE with 'slow' value for all the s.vtc files, 'bug' value for al the b.vtc files, 'broken' value for all the k.vtc files. 2019-03-29 15:07:24 +01:00			`#REGTEST_TYPE=bug`
MINOR: reg-tests: Add a few regression testing files. 2018-06-20 07:26:44 +02:00
			`varnishtest "OpenSSL bug: Random crashes"`
REGTESTS: exclude tests that require ssl, pcre if no such feature is enabled Signed-off-by: Ilya Shipitsin <chipitsine@gmail.com> 2019-04-17 12:19:56 +05:00			`#REQUIRE_OPTIONS=OPENSSL`
MINOR: reg-tests: Add a few regression testing files. 2018-06-20 07:26:44 +02:00			`feature ignore_unknown_macro`


			`haproxy h1 -conf {`
			`global`
			`tune.ssl.default-dh-param 2048`
MEDIUM: config: Deprecate tune.ssl.capture-cipherlist-size Deprecate tune.ssl.capture-cipherlist-size in favor of tune.ssl.capture-buffer-size which better describes the purpose of the setting. 2021-07-13 19:04:24 +02:00			`tune.ssl.capture-buffer-size 1`
MINOR: reg-tests: Add a few regression testing files. 2018-06-20 07:26:44 +02:00
			`listen frt`
			`mode http`
			`bind "fd@${frt}" ssl crt ${testdir}/common.pem`
			`http-request redirect location /`
			`} -start`

REGTEST/MINOR: Wrong URI syntax. Ilya Shipitsin reported that with some curl versions this reg test may fail due to a wrong URI syntax with ::1 ipv6 local address in this varnishtest script. This patch fixes this syntax issue and replaces the iteration of "procees" commands by a "shell" command to start curl processes (must be faster). Thanks to Ilya Shipitsin for having reported this VTC file bug. 2018-07-12 10:48:06 +02:00			`shell {`
			`HOST=${h1_frt_addr}`
			`if [ "${h1_frt_addr}" = "::1" ] ; then`
REGTEST/MINOR: Unexpected curl URL globling. With certain curl versions URLs which contain brackets may be interpreted by the "URL globbing parser". This patch ensures that such brackets are escaped. Thank you to Ilya Shipitsin for having reported this issue. 2018-07-13 10:44:12 +02:00			`HOST="\[::1\]"`
REGTEST/MINOR: Wrong URI syntax. Ilya Shipitsin reported that with some curl versions this reg test may fail due to a wrong URI syntax with ::1 ipv6 local address in this varnishtest script. This patch fixes this syntax issue and replaces the iteration of "procees" commands by a "shell" command to start curl processes (must be faster). Thanks to Ilya Shipitsin for having reported this VTC file bug. 2018-07-12 10:48:06 +02:00			`fi`
			`for i in 1 2 3 4 5; do`
			`curl -i -k https://$HOST:${h1_frt_port} & pids="$pids $!"`
			`done`
			`wait $pids`
			`}`