1 // Copyright 2012 The Go Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style
3 // license that can be found in the LICENSE file.
24 var rsaCertPEM = `-----BEGIN CERTIFICATE-----
25 MIIB0zCCAX2gAwIBAgIJAI/M7BYjwB+uMA0GCSqGSIb3DQEBBQUAMEUxCzAJBgNV
26 BAYTAkFVMRMwEQYDVQQIDApTb21lLVN0YXRlMSEwHwYDVQQKDBhJbnRlcm5ldCBX
27 aWRnaXRzIFB0eSBMdGQwHhcNMTIwOTEyMjE1MjAyWhcNMTUwOTEyMjE1MjAyWjBF
28 MQswCQYDVQQGEwJBVTETMBEGA1UECAwKU29tZS1TdGF0ZTEhMB8GA1UECgwYSW50
29 ZXJuZXQgV2lkZ2l0cyBQdHkgTHRkMFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANLJ
30 hPHhITqQbPklG3ibCVxwGMRfp/v4XqhfdQHdcVfHap6NQ5Wok/4xIA+ui35/MmNa
31 rtNuC+BdZ1tMuVCPFZcCAwEAAaNQME4wHQYDVR0OBBYEFJvKs8RfJaXTH08W+SGv
32 zQyKn0H8MB8GA1UdIwQYMBaAFJvKs8RfJaXTH08W+SGvzQyKn0H8MAwGA1UdEwQF
33 MAMBAf8wDQYJKoZIhvcNAQEFBQADQQBJlffJHybjDGxRMqaRmDhX0+6v02TUKZsW
34 r5QuVbpQhH6u+0UgcW0jp9QwpxoPTLTWGXEWBBBurxFwiCBhkQ+V
35 -----END CERTIFICATE-----
38 var rsaKeyPEM = `-----BEGIN RSA PRIVATE KEY-----
39 MIIBOwIBAAJBANLJhPHhITqQbPklG3ibCVxwGMRfp/v4XqhfdQHdcVfHap6NQ5Wo
40 k/4xIA+ui35/MmNartNuC+BdZ1tMuVCPFZcCAwEAAQJAEJ2N+zsR0Xn8/Q6twa4G
41 6OB1M1WO+k+ztnX/1SvNeWu8D6GImtupLTYgjZcHufykj09jiHmjHx8u8ZZB/o1N
42 MQIhAPW+eyZo7ay3lMz1V01WVjNKK9QSn1MJlb06h/LuYv9FAiEA25WPedKgVyCW
43 SmUwbPw8fnTcpqDWE3yTO3vKcebqMSsCIBF3UmVue8YU3jybC3NxuXq3wNm34R8T
44 xVLHwDXh/6NJAiEAl2oHGGLz64BuAfjKrqwz7qMYr9HCLIe/YsoWq/olzScCIQDi
45 D2lWusoe2/nEqfDVVWGWlyJ7yOmqaVm/iNUN9B2N2g==
46 -----END RSA PRIVATE KEY-----
49 // keyPEM is the same as rsaKeyPEM, but declares itself as just
50 // "PRIVATE KEY", not "RSA PRIVATE KEY". https://golang.org/issue/4477
51 var keyPEM = `-----BEGIN PRIVATE KEY-----
52 MIIBOwIBAAJBANLJhPHhITqQbPklG3ibCVxwGMRfp/v4XqhfdQHdcVfHap6NQ5Wo
53 k/4xIA+ui35/MmNartNuC+BdZ1tMuVCPFZcCAwEAAQJAEJ2N+zsR0Xn8/Q6twa4G
54 6OB1M1WO+k+ztnX/1SvNeWu8D6GImtupLTYgjZcHufykj09jiHmjHx8u8ZZB/o1N
55 MQIhAPW+eyZo7ay3lMz1V01WVjNKK9QSn1MJlb06h/LuYv9FAiEA25WPedKgVyCW
56 SmUwbPw8fnTcpqDWE3yTO3vKcebqMSsCIBF3UmVue8YU3jybC3NxuXq3wNm34R8T
57 xVLHwDXh/6NJAiEAl2oHGGLz64BuAfjKrqwz7qMYr9HCLIe/YsoWq/olzScCIQDi
58 D2lWusoe2/nEqfDVVWGWlyJ7yOmqaVm/iNUN9B2N2g==
59 -----END PRIVATE KEY-----
62 var ecdsaCertPEM = `-----BEGIN CERTIFICATE-----
63 MIIB/jCCAWICCQDscdUxw16XFDAJBgcqhkjOPQQBMEUxCzAJBgNVBAYTAkFVMRMw
64 EQYDVQQIEwpTb21lLVN0YXRlMSEwHwYDVQQKExhJbnRlcm5ldCBXaWRnaXRzIFB0
65 eSBMdGQwHhcNMTIxMTE0MTI0MDQ4WhcNMTUxMTE0MTI0MDQ4WjBFMQswCQYDVQQG
66 EwJBVTETMBEGA1UECBMKU29tZS1TdGF0ZTEhMB8GA1UEChMYSW50ZXJuZXQgV2lk
67 Z2l0cyBQdHkgTHRkMIGbMBAGByqGSM49AgEGBSuBBAAjA4GGAAQBY9+my9OoeSUR
68 lDQdV/x8LsOuLilthhiS1Tz4aGDHIPwC1mlvnf7fg5lecYpMCrLLhauAc1UJXcgl
69 01xoLuzgtAEAgv2P/jgytzRSpUYvgLBt1UA0leLYBy6mQQbrNEuqT3INapKIcUv8
70 XxYP0xMEUksLPq6Ca+CRSqTtrd/23uTnapkwCQYHKoZIzj0EAQOBigAwgYYCQXJo
71 A7Sl2nLVf+4Iu/tAX/IF4MavARKC4PPHK3zfuGfPR3oCCcsAoz3kAzOeijvd0iXb
72 H5jBImIxPL4WxQNiBTexAkF8D1EtpYuWdlVQ80/h/f4pBcGiXPqX5h2PQSQY7hP1
73 +jwM1FGS4fREIOvlBYr/SzzQRtwrvrzGYxDEDbsC0ZGRnA==
74 -----END CERTIFICATE-----
77 var ecdsaKeyPEM = `-----BEGIN EC PARAMETERS-----
79 -----END EC PARAMETERS-----
80 -----BEGIN EC PRIVATE KEY-----
81 MIHcAgEBBEIBrsoKp0oqcv6/JovJJDoDVSGWdirrkgCWxrprGlzB9o0X8fV675X0
82 NwuBenXFfeZvVcwluO7/Q9wkYoPd/t3jGImgBwYFK4EEACOhgYkDgYYABAFj36bL
83 06h5JRGUNB1X/Hwuw64uKW2GGJLVPPhoYMcg/ALWaW+d/t+DmV5xikwKssuFq4Bz
84 VQldyCXTXGgu7OC0AQCC/Y/+ODK3NFKlRi+AsG3VQDSV4tgHLqZBBus0S6pPcg1q
85 kohxS/xfFg/TEwRSSws+roJr4JFKpO2t3/be5OdqmQ==
86 -----END EC PRIVATE KEY-----
89 var keyPairTests = []struct {
94 {"ECDSA", ecdsaCertPEM, ecdsaKeyPEM},
95 {"RSA", rsaCertPEM, rsaKeyPEM},
96 {"RSA-untyped", rsaCertPEM, keyPEM}, // golang.org/issue/4477
99 func TestX509KeyPair(t *testing.T) {
102 for _, test := range keyPairTests {
103 pem = []byte(test.cert + test.key)
104 if _, err := X509KeyPair(pem, pem); err != nil {
105 t.Errorf("Failed to load %s cert followed by %s key: %s", test.algo, test.algo, err)
107 pem = []byte(test.key + test.cert)
108 if _, err := X509KeyPair(pem, pem); err != nil {
109 t.Errorf("Failed to load %s key followed by %s cert: %s", test.algo, test.algo, err)
114 func TestX509KeyPairErrors(t *testing.T) {
115 _, err := X509KeyPair([]byte(rsaKeyPEM), []byte(rsaCertPEM))
117 t.Fatalf("X509KeyPair didn't return an error when arguments were switched")
119 if subStr := "been switched"; !strings.Contains(err.Error(), subStr) {
120 t.Fatalf("Expected %q in the error when switching arguments to X509KeyPair, but the error was %q", subStr, err)
123 _, err = X509KeyPair([]byte(rsaCertPEM), []byte(rsaCertPEM))
125 t.Fatalf("X509KeyPair didn't return an error when both arguments were certificates")
127 if subStr := "certificate"; !strings.Contains(err.Error(), subStr) {
128 t.Fatalf("Expected %q in the error when both arguments to X509KeyPair were certificates, but the error was %q", subStr, err)
131 const nonsensePEM = `
132 -----BEGIN NONSENSE-----
134 -----END NONSENSE-----
137 _, err = X509KeyPair([]byte(nonsensePEM), []byte(nonsensePEM))
139 t.Fatalf("X509KeyPair didn't return an error when both arguments were nonsense")
141 if subStr := "NONSENSE"; !strings.Contains(err.Error(), subStr) {
142 t.Fatalf("Expected %q in the error when both arguments to X509KeyPair were nonsense, but the error was %q", subStr, err)
146 func TestX509MixedKeyPair(t *testing.T) {
147 if _, err := X509KeyPair([]byte(rsaCertPEM), []byte(ecdsaKeyPEM)); err == nil {
148 t.Error("Load of RSA certificate succeeded with ECDSA private key")
150 if _, err := X509KeyPair([]byte(ecdsaCertPEM), []byte(rsaKeyPEM)); err == nil {
151 t.Error("Load of ECDSA certificate succeeded with RSA private key")
155 func newLocalListener(t testing.TB) net.Listener {
156 ln, err := net.Listen("tcp", "127.0.0.1:0")
158 ln, err = net.Listen("tcp6", "[::1]:0")
166 func TestDialTimeout(t *testing.T) {
168 t.Skip("skipping in short mode")
170 listener := newLocalListener(t)
172 addr := listener.Addr().String()
173 defer listener.Close()
175 complete := make(chan bool)
176 defer close(complete)
179 conn, err := listener.Accept()
188 dialer := &net.Dialer{
189 Timeout: 10 * time.Millisecond,
193 if _, err = DialWithDialer(dialer, "tcp", addr, nil); err == nil {
194 t.Fatal("DialWithTimeout completed successfully")
197 if !isTimeoutError(err) {
198 t.Errorf("resulting error not a timeout: %v\nType %T: %#v", err, err, err)
202 func isTimeoutError(err error) bool {
203 if ne, ok := err.(net.Error); ok {
209 // tests that Conn.Read returns (non-zero, io.EOF) instead of
210 // (non-zero, nil) when a Close (alertCloseNotify) is sitting right
211 // behind the application data in the buffer.
212 func TestConnReadNonzeroAndEOF(t *testing.T) {
213 // This test is racy: it assumes that after a write to a
214 // localhost TCP connection, the peer TCP connection can
215 // immediately read it. Because it's racy, we skip this test
216 // in short mode, and then retry it several times with an
217 // increasing sleep in between our final write (via srv.Close
218 // below) and the following read.
220 t.Skip("skipping in short mode")
223 for delay := time.Millisecond; delay <= 64*time.Millisecond; delay *= 2 {
224 if err = testConnReadNonzeroAndEOF(t, delay); err == nil {
231 func testConnReadNonzeroAndEOF(t *testing.T, delay time.Duration) error {
232 ln := newLocalListener(t)
235 srvCh := make(chan *Conn, 1)
238 sconn, err := ln.Accept()
244 serverConfig := testConfig.Clone()
245 srv := Server(sconn, serverConfig)
246 if err := srv.Handshake(); err != nil {
247 serr = fmt.Errorf("handshake: %v", err)
254 clientConfig := testConfig.Clone()
255 conn, err := Dial("tcp", ln.Addr().String(), clientConfig)
266 buf := make([]byte, 6)
268 srv.Write([]byte("foobar"))
269 n, err := conn.Read(buf)
270 if n != 6 || err != nil || string(buf) != "foobar" {
271 return fmt.Errorf("Read = %d, %v, data %q; want 6, nil, foobar", n, err, buf)
274 srv.Write([]byte("abcdef"))
277 n, err = conn.Read(buf)
278 if n != 6 || string(buf) != "abcdef" {
279 return fmt.Errorf("Read = %d, buf= %q; want 6, abcdef", n, buf)
282 return fmt.Errorf("Second Read error = %v; want io.EOF", err)
287 func TestTLSUniqueMatches(t *testing.T) {
288 ln := newLocalListener(t)
291 serverTLSUniques := make(chan []byte)
293 for i := 0; i < 2; i++ {
294 sconn, err := ln.Accept()
299 serverConfig := testConfig.Clone()
300 srv := Server(sconn, serverConfig)
301 if err := srv.Handshake(); err != nil {
305 serverTLSUniques <- srv.ConnectionState().TLSUnique
309 clientConfig := testConfig.Clone()
310 clientConfig.ClientSessionCache = NewLRUClientSessionCache(1)
311 conn, err := Dial("tcp", ln.Addr().String(), clientConfig)
315 if !bytes.Equal(conn.ConnectionState().TLSUnique, <-serverTLSUniques) {
316 t.Error("client and server channel bindings differ")
320 conn, err = Dial("tcp", ln.Addr().String(), clientConfig)
325 if !conn.ConnectionState().DidResume {
326 t.Error("second session did not use resumption")
328 if !bytes.Equal(conn.ConnectionState().TLSUnique, <-serverTLSUniques) {
329 t.Error("client and server channel bindings differ when session resumption is used")
333 func TestVerifyHostname(t *testing.T) {
334 testenv.MustHaveExternalNetwork(t)
336 c, err := Dial("tcp", "www.google.com:https", nil)
340 if err := c.VerifyHostname("www.google.com"); err != nil {
341 t.Fatalf("verify www.google.com: %v", err)
343 if err := c.VerifyHostname("www.yahoo.com"); err == nil {
344 t.Fatalf("verify www.yahoo.com succeeded")
347 c, err = Dial("tcp", "www.google.com:https", &Config{InsecureSkipVerify: true})
351 if err := c.VerifyHostname("www.google.com"); err == nil {
352 t.Fatalf("verify www.google.com succeeded with InsecureSkipVerify=true")
354 if err := c.VerifyHostname("www.yahoo.com"); err == nil {
355 t.Fatalf("verify www.google.com succeeded with InsecureSkipVerify=true")
359 func TestVerifyHostnameResumed(t *testing.T) {
360 testenv.MustHaveExternalNetwork(t)
363 ClientSessionCache: NewLRUClientSessionCache(32),
365 for i := 0; i < 2; i++ {
366 c, err := Dial("tcp", "www.google.com:https", config)
368 t.Fatalf("Dial #%d: %v", i, err)
370 cs := c.ConnectionState()
371 if i > 0 && !cs.DidResume {
372 t.Fatalf("Subsequent connection unexpectedly didn't resume")
374 if cs.VerifiedChains == nil {
375 t.Fatalf("Dial #%d: cs.VerifiedChains == nil", i)
377 if err := c.VerifyHostname("www.google.com"); err != nil {
378 t.Fatalf("verify www.google.com #%d: %v", i, err)
384 func TestConnCloseBreakingWrite(t *testing.T) {
385 ln := newLocalListener(t)
388 srvCh := make(chan *Conn, 1)
393 sconn, err = ln.Accept()
399 serverConfig := testConfig.Clone()
400 srv := Server(sconn, serverConfig)
401 if err := srv.Handshake(); err != nil {
402 serr = fmt.Errorf("handshake: %v", err)
409 cconn, err := net.Dial("tcp", ln.Addr().String())
415 conn := &changeImplConn{
419 clientConfig := testConfig.Clone()
420 tconn := Client(conn, clientConfig)
421 if err := tconn.Handshake(); err != nil {
431 connClosed := make(chan struct{})
432 conn.closeFunc = func() error {
437 inWrite := make(chan bool, 1)
438 var errConnClosed = errors.New("conn closed for test")
439 conn.writeFunc = func(p []byte) (n int, err error) {
442 return 0, errConnClosed
445 closeReturned := make(chan bool, 1)
448 tconn.Close() // test that this doesn't block forever.
449 closeReturned <- true
452 _, err = tconn.Write([]byte("foo"))
453 if err != errConnClosed {
454 t.Errorf("Write error = %v; want errConnClosed", err)
458 if err := tconn.Close(); err != errClosed {
459 t.Errorf("Close error = %v; want errClosed", err)
463 func TestConnCloseWrite(t *testing.T) {
464 ln := newLocalListener(t)
467 clientDoneChan := make(chan struct{})
469 serverCloseWrite := func() error {
470 sconn, err := ln.Accept()
472 return fmt.Errorf("accept: %v", err)
476 serverConfig := testConfig.Clone()
477 srv := Server(sconn, serverConfig)
478 if err := srv.Handshake(); err != nil {
479 return fmt.Errorf("handshake: %v", err)
483 data, err := ioutil.ReadAll(srv)
488 return fmt.Errorf("Read data = %q; want nothing", data)
491 if err := srv.CloseWrite(); err != nil {
492 return fmt.Errorf("server CloseWrite: %v", err)
495 // Wait for clientCloseWrite to finish, so we know we
496 // tested the CloseWrite before we defer the
497 // sconn.Close above, which would also cause the
498 // client to unblock like CloseWrite.
503 clientCloseWrite := func() error {
504 defer close(clientDoneChan)
506 clientConfig := testConfig.Clone()
507 conn, err := Dial("tcp", ln.Addr().String(), clientConfig)
511 if err := conn.Handshake(); err != nil {
516 if err := conn.CloseWrite(); err != nil {
517 return fmt.Errorf("client CloseWrite: %v", err)
520 if _, err := conn.Write([]byte{0}); err != errShutdown {
521 return fmt.Errorf("CloseWrite error = %v; want errShutdown", err)
524 data, err := ioutil.ReadAll(conn)
529 return fmt.Errorf("Read data = %q; want nothing", data)
534 errChan := make(chan error, 2)
536 go func() { errChan <- serverCloseWrite() }()
537 go func() { errChan <- clientCloseWrite() }()
539 for i := 0; i < 2; i++ {
541 case err := <-errChan:
545 case <-time.After(10 * time.Second):
550 // Also test CloseWrite being called before the handshake is
553 ln2 := newLocalListener(t)
556 netConn, err := net.Dial("tcp", ln2.Addr().String())
560 defer netConn.Close()
561 conn := Client(netConn, testConfig.Clone())
563 if err := conn.CloseWrite(); err != errEarlyCloseWrite {
564 t.Errorf("CloseWrite error = %v; want errEarlyCloseWrite", err)
569 func TestCloneFuncFields(t *testing.T) {
570 const expectedCount = 5
574 Time: func() time.Time {
578 GetCertificate: func(*ClientHelloInfo) (*Certificate, error) {
582 GetClientCertificate: func(*CertificateRequestInfo) (*Certificate, error) {
586 GetConfigForClient: func(*ClientHelloInfo) (*Config, error) {
590 VerifyPeerCertificate: func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error {
599 c2.GetCertificate(nil)
600 c2.GetClientCertificate(nil)
601 c2.GetConfigForClient(nil)
602 c2.VerifyPeerCertificate(nil, nil)
604 if called != (1<<expectedCount)-1 {
605 t.Fatalf("expected %d calls but saw calls %b", expectedCount, called)
609 func TestCloneNonFuncFields(t *testing.T) {
611 v := reflect.ValueOf(&c1).Elem()
614 for i := 0; i < typ.NumField(); i++ {
617 // unexported field; not cloned.
621 // testing/quick can't handle functions or interfaces and so
623 switch fn := typ.Field(i).Name; fn {
625 f.Set(reflect.ValueOf(io.Reader(os.Stdin)))
626 case "Time", "GetCertificate", "GetConfigForClient", "VerifyPeerCertificate", "GetClientCertificate":
627 // DeepEqual can't compare functions. If you add a
628 // function field to this list, you must also change
629 // TestCloneFuncFields to ensure that the func field is
632 f.Set(reflect.ValueOf([]Certificate{
633 {Certificate: [][]byte{{'b'}}},
635 case "NameToCertificate":
636 f.Set(reflect.ValueOf(map[string]*Certificate{"a": nil}))
637 case "RootCAs", "ClientCAs":
638 f.Set(reflect.ValueOf(x509.NewCertPool()))
639 case "ClientSessionCache":
640 f.Set(reflect.ValueOf(NewLRUClientSessionCache(10)))
642 f.Set(reflect.ValueOf(io.Writer(os.Stdout)))
644 f.Set(reflect.ValueOf([]string{"a", "b"}))
646 f.Set(reflect.ValueOf("b"))
648 f.Set(reflect.ValueOf(VerifyClientCertIfGiven))
649 case "InsecureSkipVerify", "SessionTicketsDisabled", "DynamicRecordSizingDisabled", "PreferServerCipherSuites":
650 f.Set(reflect.ValueOf(true))
651 case "MinVersion", "MaxVersion":
652 f.Set(reflect.ValueOf(uint16(VersionTLS12)))
653 case "SessionTicketKey":
654 f.Set(reflect.ValueOf([32]byte{}))
656 f.Set(reflect.ValueOf([]uint16{1, 2}))
657 case "CurvePreferences":
658 f.Set(reflect.ValueOf([]CurveID{CurveP256}))
659 case "Renegotiation":
660 f.Set(reflect.ValueOf(RenegotiateOnceAsClient))
662 t.Errorf("all fields must be accounted for, but saw unknown field %q", fn)
667 // DeepEqual also compares unexported fields, thus c2 needs to have run
668 // serverInit in order to be DeepEqual to c1. Cloning it and discarding
669 // the result is sufficient.
672 if !reflect.DeepEqual(&c1, c2) {
673 t.Errorf("clone failed to copy a field")
677 // changeImplConn is a net.Conn which can change its Write and Close
679 type changeImplConn struct {
681 writeFunc func([]byte) (int, error)
682 closeFunc func() error
685 func (w *changeImplConn) Write(p []byte) (n int, err error) {
686 if w.writeFunc != nil {
687 return w.writeFunc(p)
689 return w.Conn.Write(p)
692 func (w *changeImplConn) Close() error {
693 if w.closeFunc != nil {
696 return w.Conn.Close()
699 func throughput(b *testing.B, totalBytes int64, dynamicRecordSizingDisabled bool) {
700 ln := newLocalListener(b)
705 // Less than 64KB because Windows appears to use a TCP rwin < 64KB.
707 const bufsize = 32 << 10
710 buf := make([]byte, bufsize)
711 for i := 0; i < N; i++ {
712 sconn, err := ln.Accept()
714 // panic rather than synchronize to avoid benchmark overhead
715 // (cannot call b.Fatal in goroutine)
716 panic(fmt.Errorf("accept: %v", err))
718 serverConfig := testConfig.Clone()
719 serverConfig.CipherSuites = nil // the defaults may prefer faster ciphers
720 serverConfig.DynamicRecordSizingDisabled = dynamicRecordSizingDisabled
721 srv := Server(sconn, serverConfig)
722 if err := srv.Handshake(); err != nil {
723 panic(fmt.Errorf("handshake: %v", err))
725 if _, err := io.CopyBuffer(srv, srv, buf); err != nil {
726 panic(fmt.Errorf("copy buffer: %v", err))
731 b.SetBytes(totalBytes)
732 clientConfig := testConfig.Clone()
733 clientConfig.CipherSuites = nil // the defaults may prefer faster ciphers
734 clientConfig.DynamicRecordSizingDisabled = dynamicRecordSizingDisabled
736 buf := make([]byte, bufsize)
737 chunks := int(math.Ceil(float64(totalBytes) / float64(len(buf))))
738 for i := 0; i < N; i++ {
739 conn, err := Dial("tcp", ln.Addr().String(), clientConfig)
743 for j := 0; j < chunks; j++ {
744 _, err := conn.Write(buf)
748 _, err = io.ReadFull(conn, buf)
757 func BenchmarkThroughput(b *testing.B) {
758 for _, mode := range []string{"Max", "Dynamic"} {
759 for size := 1; size <= 64; size <<= 1 {
760 name := fmt.Sprintf("%sPacket/%dMB", mode, size)
761 b.Run(name, func(b *testing.B) {
762 throughput(b, int64(size<<20), mode == "Max")
768 type slowConn struct {
773 func (c *slowConn) Write(p []byte) (int, error) {
780 time.Sleep(100 * time.Microsecond)
781 allowed := int(time.Since(t0).Seconds()*float64(c.bps)) / 8
782 if allowed > len(p) {
786 n, err := c.Conn.Write(p[wrote:allowed])
796 func latency(b *testing.B, bps int, dynamicRecordSizingDisabled bool) {
797 ln := newLocalListener(b)
803 for i := 0; i < N; i++ {
804 sconn, err := ln.Accept()
806 // panic rather than synchronize to avoid benchmark overhead
807 // (cannot call b.Fatal in goroutine)
808 panic(fmt.Errorf("accept: %v", err))
810 serverConfig := testConfig.Clone()
811 serverConfig.DynamicRecordSizingDisabled = dynamicRecordSizingDisabled
812 srv := Server(&slowConn{sconn, bps}, serverConfig)
813 if err := srv.Handshake(); err != nil {
814 panic(fmt.Errorf("handshake: %v", err))
820 clientConfig := testConfig.Clone()
821 clientConfig.DynamicRecordSizingDisabled = dynamicRecordSizingDisabled
823 buf := make([]byte, 16384)
824 peek := make([]byte, 1)
826 for i := 0; i < N; i++ {
827 conn, err := Dial("tcp", ln.Addr().String(), clientConfig)
831 // make sure we're connected and previous connection has stopped
832 if _, err := conn.Write(buf[:1]); err != nil {
835 if _, err := io.ReadFull(conn, peek); err != nil {
838 if _, err := conn.Write(buf); err != nil {
841 if _, err = io.ReadFull(conn, peek); err != nil {
848 func BenchmarkLatency(b *testing.B) {
849 for _, mode := range []string{"Max", "Dynamic"} {
850 for _, kbps := range []int{200, 500, 1000, 2000, 5000} {
851 name := fmt.Sprintf("%sPacket/%dkbps", mode, kbps)
852 b.Run(name, func(b *testing.B) {
853 latency(b, kbps*1000, mode == "Max")