diff options
author | Pavel Březina <pbrezina@redhat.com> | 2017-02-27 12:58:06 +0100 |
---|---|---|
committer | Lukas Slebodnik <lslebodn@redhat.com> | 2017-03-30 19:07:01 +0200 |
commit | 886e0f75e6f4c7877a23a3625f8a20c09109b09d (patch) | |
tree | 87076c9830cea4090c4232652a8c5577ca3713e2 | |
parent | 36e49a842e257ac9bde71728ee3bef4299b6e6e2 (diff) | |
download | sssd-886e0f75e6f4c7877a23a3625f8a20c09109b09d.tar.gz sssd-886e0f75e6f4c7877a23a3625f8a20c09109b09d.tar.xz sssd-886e0f75e6f4c7877a23a3625f8a20c09109b09d.zip |
tcurl test: add support for tls settings
Reviewed-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
-rw-r--r-- | src/tests/tcurl_test_tool.c | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/src/tests/tcurl_test_tool.c b/src/tests/tcurl_test_tool.c index 7d3bc19f0..9cec000fb 100644 --- a/src/tests/tcurl_test_tool.c +++ b/src/tests/tcurl_test_tool.c @@ -37,9 +37,14 @@ struct tool_options { int debug; int verbose; int raw; + int tls; + int verify_peer; + int verify_host; enum tcurl_http_method method; const char *socket_path; + const char *capath; + const char *cacert; }; static void request_done(struct tevent_req *req) @@ -181,6 +186,14 @@ prepare_requests(TALLOC_CTX *mem_ctx, } } + if (opts->tls) { + ret = tcurl_req_verify_peer(requests[i], opts->capath, opts->cacert, + opts->verify_peer, opts->verify_host); + if (ret != EOK) { + goto done; + } + } + i++; } @@ -280,6 +293,12 @@ int main(int argc, const char *argv[]) { "del", 'd', POPT_ARG_NONE, NULL, 'd', "Perform a HTTP DELETE", NULL }, { "raw", 'r', POPT_ARG_NONE, &opts.raw, '\0', "Print raw protocol output", NULL }, { "verbose", 'v', POPT_ARG_NONE, &opts.verbose, '\0', "Print response code and body", NULL }, + /* TLS */ + { "tls", '\0', POPT_ARG_NONE, &opts.tls, '\0', "Enable TLS", NULL }, + { "verify-peer", '\0', POPT_ARG_NONE, &opts.verify_peer, '\0', "Verify peer when TLS is enabled", NULL }, + { "verify-host", '\0', POPT_ARG_NONE, &opts.verify_host, '\0', "Verify host when TLS is enabled", NULL }, + { "capath", '\0', POPT_ARG_STRING, &opts.capath, '\0', "Path to CA directory where peer certificate is stored", NULL }, + { "cacert", '\0', POPT_ARG_STRING, &opts.cacert, '\0', "Path to CA certificate", NULL }, POPT_TABLEEND }; |