---> test sslserver + sslclient: four instances of sslserver (ports 50013, 50014, 50015, 50016) are used
---> sslserver @port 50015 requires client certs
++++
---> test sslclient/sslserver behavior with wrong parm (timeout 2 secs)
++++
--- sslclient prints usage message without enough arguments
sslclient: usage: sslclient [ -463hHrRdDiqQveEsSnNxX ] [ -i localip ] [ -p localport ] [ -T timeoutconn ] [ -l localname ] [ -t timeoutinfo ] [ -I interface ] [ -a cafile ] [ -A cadir ] [ -c certfile ] [ -z ciphers ] [ -k keyfile ] [ -V verifydepth ] [ -w progtimeout ] host port program
100
--- sslclient prints error message with unknown port name
sslclient: fatal: (111) unable to figure out port number for nonexistentport
111
--- sslclient prints error message when connection fails
sslclient: drop: (110) unable to connect to: 127.0.0.1 port: 16
110
--- sslclient -q does not print error message when connection fails
110
--- sslclient prints error message with unknown host name
sslclient: error: (111) No IP address for: nonexistent.local.
111
--- sslclient prints error message with unresolvable host name
sslclient: error: (111) No IP address for: thislabelistoolongbecausednshasalimitof63charactersinasinglelabel.
111
--- sslserver prints usage message without enough arguments
sslserver: usage: sslserver [ -1346UXpPhHrRoOdDqQvVIeEsSnNmzZ ] [ -c limit ] [ -x rules.cdb ] [ -B banner ] [ -g gid ] [ -u uid ] [ -b backlog ] [ -l localname ] [ -t timeout ] [ -I interface ] [ -T ssltimeout ] [ -w progtimeout ] host port program
100
--- sslserver prints error message with unknown port name
sslserver: fatal: (111) unable to figure out port number for: nonexistentport
111
--- sslserver prints error message with unknown host name
sslserver: fatal: (111) no IP address for: nonexistent.local.
111
--- sslserver prints error message with unresolvable host name
sslserver: fatal: (111) temporarily unable to figure out IP address for: thislabelistoolongbecausednshasalimitof63charactersinasinglelabel.
111
--- sslserver prints error message with non-local host name
sslserver: fatal: (111) unable to bind to: ...
111
---> test sslclient to connect to sslserver (on different port; note: cert verify will fail on localhost)
++++
--- sslclient sets basic environment variables
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslserver -e also sets TCP environment variables
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslclient recognizes -D, -z, -r, -h, -t (with elective cipher)
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslclient sets basic environment variables
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslclient -e sets TCP environment variables
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslclient -s sets TLS environment variables
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslclient looks up host names properly (localhost. -> ip6-loopback)
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslclient -v works
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslserver -N does not check certificates CN
sslclient: tls connected to: ::1 port: 50014
ok
0
--- sslserver and sslclient print errors for incompatible cipher lists for TLS < 1.3
sslclient: error: (111) unable to set cipher list
111
--- sslclient -X ignores any server certificate
sslclient: tls connected to: ::1 port: 50014
ok
0
--- sslclient -n checks hostname with certificates SAN/CN
sslclient: fatal: (111) unable to bind to: ::1 port: 50027
111
---> test sslclient to connect to sslserver requiring client cert
++++
--- sslserver prints error for no client certificate
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslserver prints error for bad client certificate
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslclient uses certificates
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
---> test sslcat to connect to sslserver@5016
++++
--- sslcat works
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslconnect works
banner0
--- https@ works
0
---> test sslconnect to connect to sslserver@5013
++++
--- sslclient and sslserver handle larger data
sslclient: tls connected to: ::1 port: 50013
0
--- sslserver times out
sslclient: tls connected to: ::1 port: 50013
bannerhereur^M
0
sslclient: tls connected to: ::1 port: 50013
banner0
---> test sslprint@50021
++++
--- sslprint prints usage message without enough arguments
sslprint: usage: sslprint[ -1346UXpPhHrRoOdDqQviIeEsS ] [ -c limit ] [ -x rules.cdb ] [ -B banner ] [ -g gid ] [ -u uid ] [ -b backlog ] [ -l localname ] [ -t timeout ] [ -T ssltimeout ] [ -w progtimeout ] [ -f lockfile ] [ -I interface ] host port program
100
--- sslprint prints error message with unknown port name
sslprint: fatal: (111) unable to figure out port number for: nonexistentport
111
--- sslprint prints error message with unknown host name
sslprint: fatal: (111) no IP address for: nonexistent.local.
111
--- sslprint prints error message with unresolvable host name
sslprint: fatal: (111) temporarily unable to figure out IP address for: thislabelistoolongbecausednshasalimitof63charactersinasinglelabel.
111
--- sslprint prints error message with non-local host name
sslprint: fatal: (111) unable to bind
111
--- sslprint prints error message with used port
sslprint: fatal: (111) unable to bind
111
--- sslprint sets basic environment variables
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslprint exits when environment changes
sslclient: error: (110) missing credentials (CA) or unable to validate server certificate
110
--- sslprint does not lose descriptors
110
--- sslserver -1v prints proper messages
::x1 : 50016
sslserver::x ciphers x 
sslserver::x cafile x xxx/rootCA_cert.pem
sslserver::x ccafile x 
sslserver::x cadir x xxx/etc
sslserver::x certchainfile x 
sslserver::x cert x xxx/::1_cert.pem
sslserver::x key x xxx/::1_key.pem
sslserver::x dhparam x xxx
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_CHACHA20_POLY1305_SHA256
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
::x1 : 50015
sslserver::x ciphers x 
sslserver::x cafile x xxx/rootCA_cert.pem
sslserver::x ccafile x xxx/rootCA_cert.pem
sslserver::x cadir x xxx/etc
sslserver::x certchainfile x 
sslserver::x cert x xxx/::1_cert.pem
sslserver::x key x xxx/::1_key.pem
sslserver::x dhparam x xxx
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x error: (111) unable to accept TLS for pid: x 
sslserver::x ended by x status 28416
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x error: (111) unable to accept TLS for pid: x 
sslserver::x ended by x status 28416
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x error: (111) unable to accept TLS for pid: x 
sslserver::x ended by x status 28416
sslserver::x status: 0/1/0
::x1 : 50014
sslserver::x ciphers x 
sslserver::x cafile x xxx/rootCA_cert.pem
sslserver::x ccafile x 
sslserver::x cadir x xxx/etc
sslserver::x certchainfile x 
sslserver::x cert x xxx/::1_cert.pem
sslserver::x key x xxx/::1_key.pem
sslserver::x dhparam x xxx
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x error: (111) unable to accept TLS for pid: x 
sslserver::x ended by x status 28416
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
::x1 : 50013
sslserver::x ciphers x 
sslserver::x cafile x xxx/rootCA_cert.pem
sslserver::x ccafile x 
sslserver::x cadir x xxx/etc
sslserver::x certchainfile x 
sslserver::x cert x xxx/::1_cert.pem
sslserver::x key x xxx/::1_key.pem
sslserver::x dhparam x xxx
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
sslserver::x status: 1/1/0
sslserver::x pid x from ::1
sslserver::x ok x Localserver:::1:x ip6-loopback:::1::x
sslserver::x tls x accept TLSv1.3:TLS_AES_256_GCM_SHA384
sslserver::x ended by x status 0
sslserver::x status: 0/1/0
::x1 : 50021
sslprint::x ciphers x 
sslprint::x cafile x xxx/rootCA_cert.pem
sslprint::x ccafile x 
sslprint::x cadir x xxx/etc
sslprint::x certchainfile x 
sslprint::x cert x xxx/::1_cert.pem
sslprint::x key x xxx/::1_key.pem
sslprint::x dhparam x xxx
sslprint::x status: 0/1
sslprint::x status: 1/1
sslprint::x pid x from ::
sslprint::x ok x Localserver:::1:x ip6-localnet:::::x
sslprint::x end x status 13
sslprint::x status: 0/1
sslprint::x status: 1/1
sslprint::x pid x from ::
sslprint::x ok x Localserver:::1:x ip6-localnet:::::x
sslprint::x end x status 13
sslprint::x status: 0/1
sslprint::x status: 1/1
sslprint::x pid x from ::
sslprint::x ok x Localserver:::1:x ip6-localnet:::::x
sslprint::x end x status 13
sslprint::x status: 0/1
sslprint::x status: 1/1
sslprint::x end x status 15
sslprint::x status: 0/1