1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
|
# The client writes a message to Sys::Syslog native method.
# The syslogd writes it into a file and through a pipe.
# The syslogd passes it via TLS to localhost loghost.
# The cafile is the system default which has no matching cert.
# Find the message in client, file, pipe, syslogd log.
# Check that syslogd has verify failure and server has no message.
use strict;
use warnings;
use Socket;
our %args = (
syslogd => {
loghost => '@tls://localhost:$connectport',
ktrace => {
qr{NAMI "/etc/ssl/cert.pem"} => 1,
},
loggrep => {
qr{CAfile /etc/ssl/cert.pem} => 1,
qr/Logging to FORWTLS \@tls:\/\/localhost:\d+/ => '>=4',
qr/syslogd: loghost .* connection error: /.
qr/handshake failed: error:.*/.
qr/SSL3_GET_SERVER_CERTIFICATE:certificate verify failed/ => 2,
get_testgrep() => 1,
},
cacrt => "default",
},
server => {
listen => { domain => AF_UNSPEC, proto => "tls", addr => "localhost" },
up => "IO::Socket::SSL socket accept failed",
down => "Server",
exit => 255,
loggrep => {
qr/listen sock: (127.0.0.1|::1) \d+/ => 1,
qr/SSL accept attempt failed because of handshake problems/ => 1,
get_testgrep() => 0,
},
},
);
1;
|
