Git/testssl.sh
1
0
Fork 0
mirror of https://github.com/drwetter/testssl.sh.git synced 2025-10-31 05:45:26 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1266 from drwetter/more_unittests1

Browse Source 
t/25_baseline_starttls in line with the new scheme now
This commit is contained in:
Dirk Wetter
2019-05-06 14:08:54 +02:00
committed by GitHub
parent c5d76fec27 33ece6858d
commit 29a74713ee
1 changed files with 63 additions and 54 deletions
Download Patch File Download Diff File Expand all files Collapse all files

115
t/25_baseline_starttls.t
View File

@@ -12,102 +12,111 @@
use strict; use strict;
use Test::More; use Test::More;
use Data::Dumper; use Data::Dumper;
use JSON; # use JSON;
# if we need JSON we need to comment this and the lines below in
my $tests = 0; my $tests = 0;
my $prg="./testssl.sh";
my $check2run_smtp="--protocols --standard --pfs --server-preference --headers --vulnerable --each-cipher -q --ip=one --color 0"; my $check2run_smtp="--protocols --standard --pfs --server-preference --headers --vulnerable --each-cipher -q --ip=one --color 0";
my $check2run="-q --ip=one --color 0"; my $check2run="-q --ip=one --color 0";
my $uri=""; my $uri="";
my $socketout=""; my $socket_out="";
my $opensslout=""; my $openssl_out="";
# Blacklists we use to trigger an error:
my $socket_regex_bl='(e|E)rror|\.\/testssl\.sh: line |(f|F)atal';
my $openssl_regex_bl='(e|E)rror|(f|F)atal|\.\/testssl\.sh: line |Oops|s_client connect problem';
# my $socket_json="";
# my $openssl_json="";
# $check2run_smtp="--jsonfile tmp.json $check2run_smtp"; # $check2run_smtp="--jsonfile tmp.json $check2run_smtp";
# $check2run="--jsonfile tmp.json $check2run"; # $check2run="--jsonfile tmp.json $check2run";
die "Unable to open $prg" unless -f $prg;
$uri="smtp-relay.gmail.com:587"; $uri="smtp-relay.gmail.com:587";
# we will have client simulations later, so we don't need to run everything again: # we will have client simulations later, so we don't need to run everything again:
unlink "tmp.json"; # unlink "tmp.json";
printf "\n%s\n", "STARTTLS SMTP unit test via sockets --> $uri ..."; printf "\n%s\n", "STARTTLS SMTP unit test via sockets --> $uri ...";
$socketout = `./testssl.sh $check2run_smtp -t smtp $uri`; $socket_out = `./testssl.sh $check2run_smtp -t smtp $uri 2>&1`;
# my $socket = json('tmp.json'); # $socket_json = json('tmp.json');
unlike($socketout, qr/(e|E)rror|(f|F)atal/, ""); unlike($socket_out, qr/$socket_regex_bl/, "");
$tests++; $tests++;
unlink "tmp.json"; # unlink "tmp.json";
printf "\n%s\n", "STARTTLS SMTP unit tests via OpenSSL --> $uri ..."; printf "\n%s\n", "STARTTLS SMTP unit tests via OpenSSL --> $uri ...";
$opensslout = `./testssl.sh --ssl-native $check2run_smtp -t smtp $uri`; $openssl_out = `./testssl.sh --ssl-native $check2run_smtp -t smtp $uri 2>&1`;
# my $openssl = json('tmp.json'); # $openssl_json = json('tmp.json');
unlike($opensslout, qr/(e|E)rror|(f|F)atal|Oops|s_client connect problem/, ""); unlike($openssl_out, qr/$openssl_regex_bl/, "");
$tests++; $tests++;
$uri="pop.gmx.net:110"; $uri="pop.gmx.net:110";
unlink "tmp.json"; # unlink "tmp.json";
printf "\n%s\n", "STARTTLS POP3 unit tests via sockets --> $uri ..."; printf "\n%s\n", "STARTTLS POP3 unit tests via sockets --> $uri ...";
$socketout = `./testssl.sh $check2run -t pop3 $uri`; $socket_out = `./testssl.sh $check2run -t pop3 $uri 2>&1`;
# my $socket = json('tmp.json'); # $socket_json = json('tmp.json');
unlike($socketout, qr/(e|E)rror|(f|F)atal/, ""); unlike($socket_out, qr/$socket_regex_bl/, "");
$tests++; $tests++;
unlink "tmp.json"; # unlink "tmp.json";
printf "\n%s\n", "STARTTLS POP3 unit tests via OpenSSL --> $uri ..."; printf "\n%s\n", "STARTTLS POP3 unit tests via OpenSSL --> $uri ...";
$opensslout = `./testssl.sh --ssl-native $check2run -t pop3 $uri`; $openssl_out = `./testssl.sh --ssl-native $check2run -t pop3 $uri 2>&1`;
# my $openssl = json('tmp.json'); # $openssl_json = json('tmp.json');
unlike($opensslout, qr/(e|E)rror|(f|F)atal|Oops|s_client connect problem/, ""); unlike($openssl_out, qr/$openssl_regex_bl/, "");
$tests++; $tests++;
$uri="imap.gmx.net:143"; $uri="imap.gmx.net:143";
unlink "tmp.json"; # unlink "tmp.json";
printf "\n%s\n", "STARTTLS IMAP unit tests via sockets --> $uri ..."; printf "\n%s\n", "STARTTLS IMAP unit tests via sockets --> $uri ...";
$socketout = `./testssl.sh $check2run -t imap $uri`; $socket_out = `./testssl.sh $check2run -t imap $uri 2>&1`;
# my $socket = json('tmp.json'); # $socket_json = json('tmp.json');
unlike($socketout, qr/(e|E)rror|(f|F)atal/, ""); unlike($socket_out, qr/$socket_regex_bl/, "");
$tests++; $tests++;
printf "\n%s\n", "STARTTLS IMAP unit tests via OpenSSL --> $uri ..."; printf "\n%s\n", "STARTTLS IMAP unit tests via OpenSSL --> $uri ...";
$opensslout = `./testssl.sh --ssl-native $check2run -t imap $uri`; $openssl_out = `./testssl.sh --ssl-native $check2run -t imap $uri 2>&1`;
# my $openssl = json('tmp.json'); # $openssl_json = json('tmp.json');
unlike($opensslout, qr/(e|E)rror|(f|F)atal|Oops|s_client connect problem/, ""); unlike($openssl_out, qr/$openssl_regex_bl/, "");
$tests++; $tests++;
$uri="jabber.org:5222"; $uri="jabber.org:5222";
unlink "tmp.json"; # unlink "tmp.json";
printf "\n%s\n", "STARTTLS XMPP unit tests via sockets --> $uri ..."; printf "\n%s\n", "STARTTLS XMPP unit tests via sockets --> $uri ...";
$socketout = `./testssl.sh $check2run -t xmpp $uri`; $socket_out = `./testssl.sh $check2run -t xmpp $uri 2>&1`;
# my $socket = json('tmp.json'); # $socket_json = json('tmp.json');
unlike($socketout, qr/(e|E)rror|(f|F)atal/, ""); unlike($openssl_out, qr/$openssl_regex_bl/, "");
$tests++; $tests++;
printf "\n%s\n", "STARTTLS XMPP unit tests via OpenSSL --> $uri ..."; printf "\n%s\n", "STARTTLS XMPP unit tests via OpenSSL --> $uri ...";
$opensslout = `./testssl.sh --ssl-native $check2run -t xmpp $uri`; $openssl_out = `./testssl.sh --ssl-native $check2run -t xmpp $uri 2>&1`;
# my $openssl = json('tmp.json'); # $openssl_json = json('tmp.json');
unlike($opensslout, qr/(e|E)rror|(f|F)atal|Oops|s_client connect problem/, ""); unlike($openssl_out, qr/$openssl_regex_bl/, "");
$tests++; $tests++;
$uri="ldap.uni-rostock.de:21"; $uri="ldap.uni-rostock.de:21";
unlink "tmp.json"; # unlink "tmp.json";
printf "\n%s\n", "STARTTLS FTP unit tests via sockets --> $uri ..."; printf "\n%s\n", "STARTTLS FTP unit tests via sockets --> $uri ...";
$socketout = `./testssl.sh $check2run -t ftp $uri`; $socket_out = `./testssl.sh $check2run -t ftp $uri 2>&1`;
# my $socket = json('tmp.json'); # $socket_json = json('tmp.json');
# OCSP stapling fails sometimes with: 'offered, error querying OCSP responder (ERROR: No Status found)' # OCSP stapling fails sometimes with: 'offered, error querying OCSP responder (ERROR: No Status found)'
$socketout =~ s/ error querying OCSP responder .*\n//g; $socket_out =~ s/ error querying OCSP responder .*\n//g;
unlike($socketout, qr/(e|E)rror|(f|F)atal/, ""); unlike($socket_out, qr/$socket_regex_bl/, "");
$tests++; $tests++;
printf "\n%s\n", "STARTTLS FTP unit tests via OpenSSL --> $uri ..."; printf "\n%s\n", "STARTTLS FTP unit tests via OpenSSL --> $uri ...";
$opensslout = `./testssl.sh --ssl-native $check2run -t ftp $uri`; $openssl_out = `./testssl.sh --ssl-native $check2run -t ftp $uri 2>&1`;
# my $openssl = json('tmp.json'); # $openssl_json = json('tmp.json');
# OCSP stapling fails sometimes with: 'offered, error querying OCSP responder (ERROR: No Status found)' # OCSP stapling fails sometimes with: 'offered, error querying OCSP responder (ERROR: No Status found)'
$opensslout =~ s/ error querying OCSP responder .*\n//g; $openssl_out =~ s/ error querying OCSP responder .*\n//g;
unlike($opensslout, qr/(e|E)rror|(f|F)atal|Oops|s_client connect problem/, ""); unlike($openssl_out, qr/$openssl_regex_bl/, "");
$tests++; $tests++;
@@ -115,25 +124,25 @@ $tests++;
$uri="ldap.telesec.de:389"; $uri="ldap.telesec.de:389";
printf "\n%s\n", "STARTTLS LDAP unit tests via OpenSSL --> $uri ..."; printf "\n%s\n", "STARTTLS LDAP unit tests via OpenSSL --> $uri ...";
$opensslout = `./testssl.sh --ssl-native $check2run -t ldap $uri`; $openssl_out = `./testssl.sh --ssl-native $check2run -t ldap $uri 2>&1`;
# my $openssl = json('tmp.json'); # $openssl_json = json('tmp.json');
unlike($opensslout, qr/(e|E)rror|(f|F)atal|Oops|s_client connect problem/, ""); unlike($openssl_out, qr/$openssl_regex_bl/, "");
$tests++; $tests++;
$uri="news.newsguy.com:119"; $uri="news.newsguy.com:119";
unlink "tmp.json"; # unlink "tmp.json";
printf "\n%s\n", "STARTTLS NNTP unit tests via sockets --> $uri ..."; printf "\n%s\n", "STARTTLS NNTP unit tests via sockets --> $uri ...";
$socketout = `./testssl.sh $check2run -t nntp $uri`; $socket_out = `./testssl.sh $check2run -t nntp $uri 2>&1`;
# my $socket = json('tmp.json'); # $socket_json = json('tmp.json');
unlike($socketout, qr/(e|E)rror|(f|F)atal/, ""); unlike($socket_out, qr/$socket_regex_bl/, "");
$tests++; $tests++;
printf "\n%s\n", "STARTTLS NNTP unit tests via OpenSSL --> $uri ..."; printf "\n%s\n", "STARTTLS NNTP unit tests via OpenSSL --> $uri ...";
$opensslout = `./testssl.sh --ssl-native $check2run -t nntp $uri`; $openssl_out = `./testssl.sh --ssl-native $check2run -t nntp $uri 2>&1`;
# my $openssl = json('tmp.json'); # $openssl_json = json('tmp.json');
unlike($opensslout, qr/(e|E)rror|(f|F)atal|Oops|s_client connect problem/, ""); unlike($openssl_out, qr/$openssl_regex_bl/, "");
$tests++; $tests++;
@@ -143,7 +152,7 @@ $tests++;
done_testing($tests); done_testing($tests);
unlink "tmp.json"; # unlink "tmp.json";
sub json($) { sub json($) {
my $file = shift; my $file = shift;