1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
|
# The client writes a message to Sys::Syslog native method.
# The syslogd writes it into a file and through a pipe.
# The syslogd passes it via TLS with client certificate to the loghost.
# The server tries to verify the connection to its TLS socket with wrong ca.
# Find the message in client, file, pipe, syslogd log.
# Check that syslogd and server have error message in log.
use strict;
use warnings;
use Errno ':POSIX';
use Socket;
my @errors = (EPIPE, ECONNRESET);
my $errors = "(". join("|", map { $! = $_ } @errors).
"|tlsv1 alert decrypt error)";
our %args = (
syslogd => {
options => [qw(-c client.crt -k client.key)],
loghost => '@tls://localhost:$connectport',
loggrep => {
qr/ClientCertfile client.crt/ => 1,
qr/ClientKeyfile client.key/ => 1,
qr/syslogd\[\d+\]: loghost .* connection error: .*$errors/ => 1,
get_testgrep() => 1,
},
},
server => {
listen => { domain => AF_UNSPEC, proto => "tls", addr => "localhost" },
sslca => "fake-ca.crt",
up => qr/IO::Socket::SSL socket accept failed/,
down => qr/SSL accept attempt failed error/,
exit => 255,
loggrep => {
qr/Server IO::Socket::SSL socket accept failed: /.
qr/.*certificate verify failed/ => 1.
},
},
);
1;
|
