my %run; # running server
my %doesntrun; # servers that don't work, identified by pidfile
my %serverpidfile;# all server pid file names, identified by server id
+my %runcert; # cert file currently in use by an ssl running server
# torture test variables
my $torture;
foreach my $server (@killservers) {
if($run{$server}) {
$pidlist .= "$run{$server} ";
+ $runcert{$server} = 0;
$run{$server} = 0;
}
}
$srvrname = servername_str($proto, $ipvnum, $idnum);
+ $certfile = 'stunnel.pem' unless($certfile);
+
$logfile = server_logfilename($LOGDIR, $proto, $ipvnum, $idnum);
$flags .= "--verbose " if($debugprotocol);
$flags .= "--pidfile \"$pidfile\" --logfile \"$logfile\" ";
$flags .= "--id $idnum " if($idnum > 1);
$flags .= "--ipv$ipvnum --proto $proto ";
- $flags .= "--certfile \"$certfile\" " if($certfile);
+ $flags .= "--certfile \"$certfile\" " if($certfile ne 'stunnel.pem');
$flags .= "--stunnel \"$stunnel\" --srcdir \"$srcdir\" ";
$flags .= "--connect $HTTPPORT --accept $HTTPSPORT";
}
# Here pid3 is actually the pid returned by the unsecure-http server.
+ $runcert{$server} = $certfile;
+
if($verbose) {
logmsg "RUN: $srvrname server is now running PID $httpspid\n";
}
$srvrname = servername_str($proto, $ipvnum, $idnum);
+ $certfile = 'stunnel.pem' unless($certfile);
+
$logfile = server_logfilename($LOGDIR, $proto, $ipvnum, $idnum);
$flags .= "--verbose " if($debugprotocol);
$flags .= "--pidfile \"$pidfile\" --logfile \"$logfile\" ";
$flags .= "--id $idnum " if($idnum > 1);
$flags .= "--ipv$ipvnum --proto $proto ";
- $flags .= "--certfile \"$certfile\" " if($certfile);
+ $flags .= "--certfile \"$certfile\" " if($certfile ne 'stunnel.pem');
$flags .= "--stunnel \"$stunnel\" --srcdir \"$srcdir\" ";
$flags .= "--connect $FTPPORT --accept $FTPSPORT";
}
# Here pid3 is actually the pid returned by the unsecure-ftp server.
+ $runcert{$server} = $certfile;
+
if($verbose) {
logmsg "RUN: $srvrname server is now running PID $ftpspid\n";
}
foreach my $server (@killservers) {
if($run{$server}) {
$pidlist .= "$run{$server} ";
+ $runcert{$server} = 0;
$run{$server} = 0;
}
}
}
}
$pidlist .= "$run{$server} ";
+ $runcert{$server} = 0;
$run{$server} = 0;
}
}
my $what = lc($whatlist[0]);
$what =~ s/[^a-z0-9-]//g;
+ my $certfile;
+ if($what =~ /^(ftp|http|imap|pop3|smtp)s(.*)$/) {
+ $certfile = ($whatlist[1]) ? $whatlist[1] : 'stunnel.pem';
+ }
+
if(($what eq "pop3") ||
($what eq "ftp") ||
($what eq "imap") ||
# we can't run ftps tests if libcurl is SSL-less
return "curl lacks SSL support";
}
-
+ if($runcert{'ftps'} && ($runcert{'ftps'} ne $certfile)) {
+ # stop server when running and using a different cert
+ stopserver('ftps');
+ }
if(!$run{'ftp'}) {
($pid, $pid2) = runpingpongserver("ftp", "", $verbose);
if($pid <= 0) {
$run{'ftp'}="$pid $pid2";
}
if(!$run{'ftps'}) {
- ($pid, $pid2) = runftpsserver($verbose);
+ ($pid, $pid2) = runftpsserver($verbose, "", $certfile);
if($pid <= 0) {
return "failed starting FTPS server (stunnel)";
}
# we can't run ftps tests if libcurl is SSL-less
return "curl lacks SSL support";
}
-
+ if($runcert{'https'} && ($runcert{'https'} ne $certfile)) {
+ # stop server when running and using a different cert
+ stopserver('https');
+ }
if(!$run{'http'}) {
($pid, $pid2) = runhttpserver($verbose);
if($pid <= 0) {
printf ("* pid http => %d %d\n", $pid, $pid2) if($verbose);
$run{'http'}="$pid $pid2";
}
- # FIXME properly - ssl tests may use different cert files.
- # We must stop running server when using a different cert.
if(!$run{'https'}) {
- ($pid, $pid2) = runhttpsserver($verbose,"",$whatlist[1]);
+ ($pid, $pid2) = runhttpsserver($verbose, "", $certfile);
if($pid <= 0) {
return "failed starting HTTPS server (stunnel)";
}
projects / curl / commitdiff