Package org.apache.mina.filter.ssl

Class SslIdentificationAlgorithmTest

java.lang.Object

org.apache.mina.filter.ssl.SslIdentificationAlgorithmTest

public class SslIdentificationAlgorithmTest
extends Object

Test SNI matching scenarios. (tests for DIRMINA-1122)

 emptykeystore.sslTest        - empty keystore
 server-cn.keystore           - keystore with single certificate chain  (CN=mina)
 client-cn.truststore         - keystore with trusted certificate
 server-san-ext.keystore      - keystore with single certificate chain (CN=mina;SAN=*.bbb.ccc,xxx.yyy)
 client-san-ext.truststore    - keystore with trusted certificate
 

Constructor Summary

Constructors

Constructor	Description
SslIdentificationAlgorithmTest()

Method Summary

Modifier and Type	Method	Description
void	setUp()
void	shouldAuthenticateWhenServerCertificateAlternativeNameMatchesClientSNIExactly()	Subject Alternative Name (SAN) scenarios
void	shouldAuthenticateWhenServerCertificateAlternativeNameMatchesClientSNIViaWildcard()
void	shouldAuthenticateWhenServerCertificateCommonNameMatchesClientSNI()
void	shouldFailAuthenticationWhenClientMissingSNIAndIdentificationAlgorithmProvided()
void	shouldFailAuthenticationWhenMatchingAlternativeNameWildcardExactly()
void	shouldFailAuthenticationWhenMatchingAlternativeNameWithTooManyLabels()
void	shouldFailAuthenticationWhenServerCertificateCommonNameDoesNotMatchClientSNI()
void	shouldFailAuthenticationWhenServerCommonNameMatchesSNIAndSNINotInAlternativeName()

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

SslIdentificationAlgorithmTest

public SslIdentificationAlgorithmTest()

Method Detail

setUp

public void setUp()

shouldAuthenticateWhenServerCertificateCommonNameMatchesClientSNI

public void shouldAuthenticateWhenServerCertificateCommonNameMatchesClientSNI()
                                                                       throws Exception

Throws:

Exception

shouldFailAuthenticationWhenServerCertificateCommonNameDoesNotMatchClientSNI

public void shouldFailAuthenticationWhenServerCertificateCommonNameDoesNotMatchClientSNI()
                                                                                  throws Exception

Throws:

Exception

shouldFailAuthenticationWhenClientMissingSNIAndIdentificationAlgorithmProvided

public void shouldFailAuthenticationWhenClientMissingSNIAndIdentificationAlgorithmProvided()
                                                                                    throws Exception

Throws:

Exception

shouldAuthenticateWhenServerCertificateAlternativeNameMatchesClientSNIExactly

public void shouldAuthenticateWhenServerCertificateAlternativeNameMatchesClientSNIExactly()
                                                                                   throws Exception

Subject Alternative Name (SAN) scenarios

Throws:

Exception

shouldAuthenticateWhenServerCertificateAlternativeNameMatchesClientSNIViaWildcard

public void shouldAuthenticateWhenServerCertificateAlternativeNameMatchesClientSNIViaWildcard()
                                                                                       throws Exception

Throws:

Exception

shouldFailAuthenticationWhenServerCommonNameMatchesSNIAndSNINotInAlternativeName

public void shouldFailAuthenticationWhenServerCommonNameMatchesSNIAndSNINotInAlternativeName()
                                                                                      throws Exception

Throws:

Exception

shouldFailAuthenticationWhenMatchingAlternativeNameWildcardExactly

public void shouldFailAuthenticationWhenMatchingAlternativeNameWildcardExactly()
                                                                        throws Exception

Throws:

Exception

shouldFailAuthenticationWhenMatchingAlternativeNameWithTooManyLabels

public void shouldFailAuthenticationWhenMatchingAlternativeNameWithTooManyLabels()
                                                                          throws Exception

Throws:

Exception