@Test public void testSniWithServerNameTrustFallbackFail(){ TLSTest test = new TLSTest().clientTrust(Trust.SNI_JKS_HOST2) .clientCert(Cert.CLIENT_PEM_ROOT_CA) .requireClientAuth(true) .serverCert(Cert.SNI_JKS) .sni(true) .serverName("host2.com") .serverTrust(Trust.SNI_SERVER_OTHER_CA_FALLBACK); test.run(false); await(); }
@Test public void testSniWithServerNameTrust(){ TLSTest test = new TLSTest().clientTrust(Trust.SNI_JKS_HOST2) .clientCert(Cert.CLIENT_PEM_ROOT_CA) .requireClientAuth(true) .serverCert(Cert.SNI_JKS) .sni(true) .serverName("host2.com") .serverTrust(Trust.SNI_SERVER_ROOT_CA_AND_OTHER_CA_1); test.run(true); await(); }
@Test public void testSniOverrideServerName() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SNI_JKS_HOST2) .address(SocketAddress.inetSocketAddress(4043, "example.com")) .serverName("host2.com") .serverCert(Cert.SNI_JKS).sni(true); test.run(true); await(); assertEquals("host2.com", cnOf(test.clientPeerCert())); }
@Test public void testSniWithServerNameTrustFail(){ TLSTest test = new TLSTest().clientTrust(Trust.SNI_JKS_HOST2) .clientCert(Cert.CLIENT_PEM_ROOT_CA) .requireClientAuth(true) .serverCert(Cert.SNI_JKS) .sni(true) .serverName("host2.com") .serverTrust(Trust.SNI_SERVER_ROOT_CA_AND_OTHER_CA_2); test.run(false); await(); }
@Test // SNI present an unknown server public void testSniWithUnknownServer1() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SERVER_JKS) .serverCert(Cert.SNI_JKS).sni(true).serverName("unknown"); test.run(true); await(); assertEquals("localhost", cnOf(test.clientPeerCert())); }
@Test public void testSniForceShortname() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SNI_JKS_HOST1) .address(SocketAddress.inetSocketAddress(4043, "host1")) .serverName("host1") .serverCert(Cert.SNI_JKS).sni(true); test.run(true); await(); assertEquals("host1", cnOf(test.clientPeerCert())); }
@Test public void testSniWithServerNameTrustFallback(){ TLSTest test = new TLSTest().clientTrust(Trust.SNI_JKS_HOST2) .clientCert(Cert.CLIENT_PEM_ROOT_CA) .requireClientAuth(true) .serverCert(Cert.SNI_JKS) .sni(true) .serverName("host2.com") .serverTrust(Trust.SNI_SERVER_ROOT_CA_FALLBACK); test.run(true); await(); }
@Test // SNI returns the certificate for the indicated server name public void testSniWithServerNameStartTLS() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SNI_JKS_HOST1) .startTLS(true) .serverCert(Cert.SNI_JKS).sni(true).serverName("host1"); test.run(true); await(); assertEquals("host1", cnOf(test.clientPeerCert())); }
@Test // SNI present an unknown server public void testSniWithUnknownServer2() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SNI_JKS_HOST2) .serverCert(Cert.SNI_JKS).sni(true).serverName("unknown"); test.run(false); await(); }
@Test // SNI returns the certificate for the indicated server name public void testSniWithServerNameStartTLS() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SNI_JKS_HOST1) .startTLS(true) .serverCert(Cert.SNI_JKS).sni(true).serverName("host1"); test.run(true); await(); assertEquals("host1", cnOf(test.clientPeerCert())); }
@Test // SNI present an unknown server public void testSniWithUnknownServer1() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SERVER_JKS) .serverCert(Cert.SNI_JKS).sni(true).serverName("unknown"); test.run(true); await(); assertEquals("localhost", cnOf(test.clientPeerCert())); }
@Test public void testSniForceShortname() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SNI_JKS_HOST1) .address(SocketAddress.inetSocketAddress(4043, "host1")) .serverName("host1") .serverCert(Cert.SNI_JKS).sni(true); test.run(true); await(); assertEquals("host1", cnOf(test.clientPeerCert())); }
@Test public void testSniWithServerNameTrustFallbackFail(){ TLSTest test = new TLSTest().clientTrust(Trust.SNI_JKS_HOST2) .clientCert(Cert.CLIENT_PEM_ROOT_CA) .requireClientAuth(true) .serverCert(Cert.SNI_JKS) .sni(true) .serverName("host2.com") .serverTrust(Trust.SNI_SERVER_OTHER_CA_FALLBACK); test.run(false); await(); }
@Test public void testSniWithServerNameTrustFallback(){ TLSTest test = new TLSTest().clientTrust(Trust.SNI_JKS_HOST2) .clientCert(Cert.CLIENT_PEM_ROOT_CA) .requireClientAuth(true) .serverCert(Cert.SNI_JKS) .sni(true) .serverName("host2.com") .serverTrust(Trust.SNI_SERVER_ROOT_CA_FALLBACK); test.run(true); await(); }
@Test public void testSniOverrideServerName() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SNI_JKS_HOST2) .address(SocketAddress.inetSocketAddress(4043, "example.com")) .serverName("host2.com") .serverCert(Cert.SNI_JKS).sni(true); test.run(true); await(); assertEquals("host2.com", cnOf(test.clientPeerCert())); }
@Test // SNI present an unknown server public void testSniWithUnknownServer2() throws Exception { TLSTest test = new TLSTest() .clientTrust(Trust.SNI_JKS_HOST2) .serverCert(Cert.SNI_JKS).sni(true).serverName("unknown"); test.run(false); await(); }
@Test public void testSniWithServerNameTrustFail(){ TLSTest test = new TLSTest().clientTrust(Trust.SNI_JKS_HOST2) .clientCert(Cert.CLIENT_PEM_ROOT_CA) .requireClientAuth(true) .serverCert(Cert.SNI_JKS) .sni(true) .serverName("host2.com") .serverTrust(Trust.SNI_SERVER_ROOT_CA_AND_OTHER_CA_2); test.run(false); await(); }
@Test public void testSniWithServerNameTrust(){ TLSTest test = new TLSTest().clientTrust(Trust.SNI_JKS_HOST2) .clientCert(Cert.CLIENT_PEM_ROOT_CA) .requireClientAuth(true) .serverCert(Cert.SNI_JKS) .sni(true) .serverName("host2.com") .serverTrust(Trust.SNI_SERVER_ROOT_CA_AND_OTHER_CA_1); test.run(true); await(); }