use std::io; use std::sync::Arc; use std::net::ToSocketAddrs; use tokio::prelude::*; use tokio::net::TcpStream; use rustls::ClientConfig; use tokio_rustls::{ TlsConnector, client::TlsStream }; async fn get(config: Arc, domain: &str, port: u16) -> io::Result<(TlsStream, String)> { let connector = TlsConnector::from(config); let input = format!("GET / HTTP/1.0\r\nHost: {}\r\n\r\n", domain); let addr = (domain, port) .to_socket_addrs()? .next().unwrap(); let domain = webpki::DNSNameRef::try_from_ascii_str(&domain).unwrap(); let mut buf = Vec::new(); let stream = TcpStream::connect(&addr).await?; let mut stream = connector.connect(domain, stream).await?; stream.write_all(input.as_bytes()).await?; stream.flush().await?; stream.read_to_end(&mut buf).await?; Ok((stream, String::from_utf8(buf).unwrap())) } #[tokio::test] async fn test_tls12() -> io::Result<()> { let mut config = ClientConfig::new(); config.root_store.add_server_trust_anchors(&webpki_roots::TLS_SERVER_ROOTS); config.versions = vec![rustls::ProtocolVersion::TLSv1_2]; let config = Arc::new(config); let domain = "tls-v1-2.badssl.com"; let (_, output) = get(config.clone(), domain, 1012).await?; assert!(output.contains("tls-v1-2.badssl.com")); Ok(()) } #[should_panic] #[test] fn test_tls13() { unimplemented!("todo https://github.com/chromium/badssl.com/pull/373"); } #[tokio::test] async fn test_modern() -> io::Result<()> { let mut config = ClientConfig::new(); config.root_store.add_server_trust_anchors(&webpki_roots::TLS_SERVER_ROOTS); let config = Arc::new(config); let domain = "mozilla-modern.badssl.com"; let (_, output) = get(config.clone(), domain, 443).await?; assert!(output.contains("mozilla-modern.badssl.com")); Ok(()) }