Add some CertStatus tests

The previous commit revealed a long standing problem where CertStatus processing was broken in DTLS. This would have been revealed by better testing - so add some! Reviewed-by: Rich Salz <rsalz@openssl.org>
author: Matt Caswell <matt@openssl.org> 2016-08-30 15:20:18 +0200
committer: Matt Caswell <matt@openssl.org> 2016-08-30 15:49:10 +0200
commit: 767ccc3b77cde82c46ab4af541663f6c80e538d3 (patch)
tree: 1ef22091fd32466f6f6f9fd6df84a5f99079513f /test/ssl_test_ctx_test.c
parent: Ensure the CertStatus message adds a DTLS message header where needed (diff)
download: openssl-767ccc3b77cde82c46ab4af541663f6c80e538d3.tar.xz
openssl-767ccc3b77cde82c46ab4af541663f6c80e538d3.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/test/ssl_test_ctx_test.c b/test/ssl_test_ctx_test.c
index b54d7eab36..0f321c60f3 100644
--- a/test/ssl_test_ctx_test.c
+++ b/test/ssl_test_ctx_test.c
@@ -83,6 +83,12 @@ static int SSL_TEST_SERVER_CONF_equal(SSL_TEST_SERVER_CONF *server,
                 server->broken_session_ticket, server2->broken_session_ticket);
         return 0;
     }
+    if (server->cert_status != server2->cert_status) {
+        fprintf(stderr, "CertStatus mismatch: %s vs %s.\n",
+                ssl_certstatus_name(server->cert_status),
+                ssl_certstatus_name(server2->cert_status));
+        return 0;
+    }
     return 1;
 }
author	Matt Caswell <matt@openssl.org>	2016-08-30 15:20:18 +0200
committer	Matt Caswell <matt@openssl.org>	2016-08-30 15:49:10 +0200
commit	767ccc3b77cde82c46ab4af541663f6c80e538d3 (patch)
tree	1ef22091fd32466f6f6f9fd6df84a5f99079513f /test/ssl_test_ctx_test.c
parent	Ensure the CertStatus message adds a DTLS message header where needed (diff)
download	openssl-767ccc3b77cde82c46ab4af541663f6c80e538d3.tar.xz openssl-767ccc3b77cde82c46ab4af541663f6c80e538d3.zip