mirror of
https://github.com/caddyserver/caddy.git
synced 2025-01-22 10:25:46 +03:00
baf6db5b57
I am not a lawyer, but according to the appendix of the license, these boilerplate notices should be included with every source file.
73 lines
3.3 KiB
Go
73 lines
3.3 KiB
Go
// Copyright 2015 Light Code Labs, LLC
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package caddytls
|
|
|
|
import "testing"
|
|
|
|
func TestUnexportedGetCertificate(t *testing.T) {
|
|
defer func() { certCache = make(map[string]Certificate) }()
|
|
|
|
// When cache is empty
|
|
if _, matched, defaulted := getCertificate("example.com"); matched || defaulted {
|
|
t.Errorf("Got a certificate when cache was empty; matched=%v, defaulted=%v", matched, defaulted)
|
|
}
|
|
|
|
// When cache has one certificate in it (also is default)
|
|
defaultCert := Certificate{Names: []string{"example.com", ""}}
|
|
certCache[""] = defaultCert
|
|
certCache["example.com"] = defaultCert
|
|
if cert, matched, defaulted := getCertificate("Example.com"); !matched || defaulted || cert.Names[0] != "example.com" {
|
|
t.Errorf("Didn't get a cert for 'Example.com' or got the wrong one: %v, matched=%v, defaulted=%v", cert, matched, defaulted)
|
|
}
|
|
if cert, matched, defaulted := getCertificate(""); !matched || defaulted || cert.Names[0] != "example.com" {
|
|
t.Errorf("Didn't get a cert for '' or got the wrong one: %v, matched=%v, defaulted=%v", cert, matched, defaulted)
|
|
}
|
|
|
|
// When retrieving wildcard certificate
|
|
certCache["*.example.com"] = Certificate{Names: []string{"*.example.com"}}
|
|
if cert, matched, defaulted := getCertificate("sub.example.com"); !matched || defaulted || cert.Names[0] != "*.example.com" {
|
|
t.Errorf("Didn't get wildcard cert for 'sub.example.com' or got the wrong one: %v, matched=%v, defaulted=%v", cert, matched, defaulted)
|
|
}
|
|
|
|
// When no certificate matches, the default is returned
|
|
if cert, matched, defaulted := getCertificate("nomatch"); matched || !defaulted {
|
|
t.Errorf("Expected matched=false, defaulted=true; but got matched=%v, defaulted=%v (cert: %v)", matched, defaulted, cert)
|
|
} else if cert.Names[0] != "example.com" {
|
|
t.Errorf("Expected default cert, got: %v", cert)
|
|
}
|
|
}
|
|
|
|
func TestCacheCertificate(t *testing.T) {
|
|
defer func() { certCache = make(map[string]Certificate) }()
|
|
|
|
cacheCertificate(Certificate{Names: []string{"example.com", "sub.example.com"}})
|
|
if _, ok := certCache["example.com"]; !ok {
|
|
t.Error("Expected first cert to be cached by key 'example.com', but it wasn't")
|
|
}
|
|
if _, ok := certCache["sub.example.com"]; !ok {
|
|
t.Error("Expected first cert to be cached by key 'sub.example.com', but it wasn't")
|
|
}
|
|
if cert, ok := certCache[""]; !ok || cert.Names[2] != "" {
|
|
t.Error("Expected first cert to be cached additionally as the default certificate with empty name added, but it wasn't")
|
|
}
|
|
|
|
cacheCertificate(Certificate{Names: []string{"example2.com"}})
|
|
if _, ok := certCache["example2.com"]; !ok {
|
|
t.Error("Expected second cert to be cached by key 'exmaple2.com', but it wasn't")
|
|
}
|
|
if cert, ok := certCache[""]; ok && cert.Names[0] == "example2.com" {
|
|
t.Error("Expected second cert to NOT be cached as default, but it was")
|
|
}
|
|
}
|