RubyGems - ruby-tls - Versions diffs - 1.0.2 → 1.0.3 - Mend

ruby-tls 1.0.2 → 1.0.3

Files changed (19) hide show

checksums.yaml +4 -4
data/EM-LICENSE +60 -60
data/README.md +71 -71
data/Rakefile +19 -19
data/ext/Rakefile +18 -18
data/ext/tls/page.cpp +102 -102
data/ext/tls/page.h +61 -61
data/ext/tls/ssl.cpp +594 -587
data/ext/tls/ssl.h +130 -129
data/lib/ruby-tls.rb +7 -7
data/lib/ruby-tls/connection.rb +124 -121
data/lib/ruby-tls/ext.rb +39 -38
data/lib/ruby-tls/version.rb +3 -3
data/ruby-tls.gemspec +32 -32
data/spec/client.crt +31 -31
data/spec/client.key +51 -51
data/spec/comms_spec.rb +156 -147
data/spec/verify_spec.rb +120 -118
metadata +34 -34

@@ -1,38 +1,39 @@
-require 'ffi'
-require 'ffi-compiler/loader'
-module RubyTls
-    extend FFI::Library
-    ffi_lib FFI::Compiler::Loader.find('ruby-tls-ext')
-    callback :ssl_close_cb,     [:pointer],                 :void
-    callback :ssl_verify_cb,    [:pointer, :string],        :int
-    callback :ssl_dispatch_cb,  [:pointer, :pointer, :int], :void
-    callback :ssl_transmit_cb,  [:pointer, :pointer, :int], :void
-    callback :ssl_handshake_cb, [:pointer],                 :void
-    class State < FFI::Struct
-        layout  :handshake_sig, :int,
-                :close_cb,      :ssl_close_cb,
-                :verify_cb,     :ssl_verify_cb,     # Optional
-                :dispatch_cb,   :ssl_dispatch_cb,
-                :transmit_cb,   :ssl_transmit_cb,
-                :handshake_cb,  :ssl_handshake_cb,  # Optional unless first to send data
-                :ssl_box,       :pointer
-    end
-    attach_function :start_tls,     [State.by_ref, :bool, :string, :string, :bool],  :void, :blocking => true
-    attach_function :decrypt_data,  [State.by_ref, :pointer, :int],                  :void, :blocking => true
-    attach_function :encrypt_data,  [State.by_ref, :pointer, :int],                  :void, :blocking => true
-    #attach_function :get_peer_cert, [], :int, :blocking => true
-    # This loads the required OpenSSL algorithms and strings
-    attach_function :init_rubytls,  [],  :void
-    init_rubytls
-    private_class_method :init_rubytls
-end
+require 'ffi'
+require 'ffi-compiler/loader'
+module RubyTls
+    extend FFI::Library
+    ffi_lib FFI::Compiler::Loader.find('ruby-tls-ext')
+    callback :ssl_close_cb,     [:pointer],                 :void
+    callback :ssl_verify_cb,    [:pointer, :string],        :int
+    callback :ssl_dispatch_cb,  [:pointer, :pointer, :int], :void
+    callback :ssl_transmit_cb,  [:pointer, :pointer, :int], :void
+    callback :ssl_handshake_cb, [:pointer],                 :void
+    class State < FFI::Struct
+        layout  :handshake_sig, :int,
+                :close_cb,      :ssl_close_cb,
+                :verify_cb,     :ssl_verify_cb,     # Optional
+                :dispatch_cb,   :ssl_dispatch_cb,
+                :transmit_cb,   :ssl_transmit_cb,
+                :handshake_cb,  :ssl_handshake_cb,  # Optional unless first to send data
+                :ssl_box,       :pointer
+    end
+    attach_function :start_tls,     [State.by_ref, :bool, :string, :string, :bool],  :void, :blocking => true
+    attach_function :decrypt_data,  [State.by_ref, :pointer, :int],                  :void, :blocking => true
+    attach_function :encrypt_data,  [State.by_ref, :pointer, :int],                  :void, :blocking => true
+    attach_function :cleanup,       [State.by_ref],                                  :void, :blocking => true
+    #attach_function :get_peer_cert, [], :int, :blocking => true
+    # This loads the required OpenSSL algorithms and strings
+    attach_function :init_rubytls,  [],  :void
+    init_rubytls
+    private_class_method :init_rubytls
+end

data/lib/ruby-tls/version.rb CHANGED

@@ -1,3 +1,3 @@
-module RubyTls
-    VERSION = "1.0.2"
-end
+module RubyTls
+    VERSION = "1.0.3"
+end

data/ruby-tls.gemspec CHANGED

@@ -1,32 +1,32 @@
-# -*- encoding: utf-8 -*-
-$:.push File.expand_path("../lib", __FILE__)
-require "ruby-tls/version"
-Gem::Specification.new do |s|
-    s.name        = "ruby-tls"
-    s.version     = RubyTls::VERSION
-    s.authors     = ["Stephen von Takach"]
-    s.email       = ["steve@cotag.me"]
-    s.licenses    = ["Ruby", "GPL"]
-    s.homepage    = "https://github.com/cotag/ruby-tls"
-    s.summary     = "Abstract TLS for Ruby"
-    s.description = <<-EOF
-        Allows transport layers outside Ruby TCP be secured.
-    EOF
-    s.add_dependency 'ffi-compiler', '>= 0.0.2'
-    s.add_dependency 'rake'
-    s.add_development_dependency 'rspec'
-    s.add_development_dependency 'yard'
-    s.files = Dir["{lib}/**/*"] + %w(Rakefile ruby-tls.gemspec README.md EM-LICENSE)
-    s.files += ["ext/tls/ssl.cpp", "ext/tls/ssl.h", "ext/tls/page.cpp", "ext/tls/page.h"]
-    s.test_files = Dir["spec/**/*"]
-    s.extra_rdoc_files = ["README.md"]
-    s.extensions << "ext/Rakefile"
-    s.require_paths = ["lib"]
-end
+# -*- encoding: utf-8 -*-
+$:.push File.expand_path("../lib", __FILE__)
+require "ruby-tls/version"
+Gem::Specification.new do |s|
+    s.name        = "ruby-tls"
+    s.version     = RubyTls::VERSION
+    s.authors     = ["Stephen von Takach"]
+    s.email       = ["steve@cotag.me"]
+    s.licenses    = ["Ruby", "GPL"]
+    s.homepage    = "https://github.com/cotag/ruby-tls"
+    s.summary     = "Abstract TLS for Ruby"
+    s.description = <<-EOF
+        Allows transport layers outside Ruby TCP be secured.
+    EOF
+    s.add_dependency 'ffi-compiler', '>= 0.0.2'
+    s.add_dependency 'rake'
+    s.add_development_dependency 'rspec'
+    s.add_development_dependency 'yard'
+    s.files = Dir["{lib}/**/*"] + %w(Rakefile ruby-tls.gemspec README.md EM-LICENSE)
+    s.files += ["ext/tls/ssl.cpp", "ext/tls/ssl.h", "ext/tls/page.cpp", "ext/tls/page.h"]
+    s.test_files = Dir["spec/**/*"]
+    s.extra_rdoc_files = ["README.md"]
+    s.extensions << "ext/Rakefile"
+    s.require_paths = ["lib"]
+end

data/spec/client.crt CHANGED

@@ -1,31 +1,31 @@
------BEGIN CERTIFICATE-----
-MIIFRDCCAywCAQEwDQYJKoZIhvcNAQEFBQAwaDELMAkGA1UEBhMCRU0xFTATBgNV
-BAgTDEV2ZW50TWFjaGluZTEVMBMGA1UEChMMRXZlbnRNYWNoaW5lMRQwEgYDVQQL
-EwtEZXZlbG9wbWVudDEVMBMGA1UEAxMMRXZlbnRNYWNoaW5lMB4XDTA5MDMyOTAy
-MzE0NloXDTEwMDMyOTAyMzE0NlowaDELMAkGA1UEBhMCRU0xFTATBgNVBAgTDEV2
-ZW50TWFjaGluZTEVMBMGA1UEChMMRXZlbnRNYWNoaW5lMRQwEgYDVQQLEwtEZXZl
-bG9wbWVudDEVMBMGA1UEAxMMRXZlbnRNYWNoaW5lMIICIjANBgkqhkiG9w0BAQEF
-AAOCAg8AMIICCgKCAgEAv1FSOIX1z7CQtVBFlrB0A3/V29T+22STKKmiRWYkKL5b
-+hkrp9IZ5J4phZHgUVM2VDPOO2Oc2PU6dlGGZISg+UPERunTogxQKezCV0vcE9cK
-OwzxCFDRvv5rK8aKMscfBLbNKocAXywuRRQmdxPiVRzbyPrl+qCr/EDLXAX3D77l
-S8n2AwDg19VyI+IgFUE+Dy5e1eLoY6nV+Mq+vNXdn3ttF3t+ngac5pj5Q9h+pD5p
-67baDHSnf/7cy2fa/LKrLolVHQR9G2K6cEfeM99NtcsMbkoPs4iI3FA05OVTQHXg
-C8C8cRxrb9APl95I/ep65OIaCJgcdYxJ3QD3qOtQo6/NQsGnjbyiUxaEpjfqyT1N
-uzWD81Q8uXGNS8yD6dDynt/lseBjyp2nfC3uQ5fY18VdIcu0MJ9pezBUKrNuhlsy
-XXEZ2DXj4sY8QOvIcBqSB/zmS1nGEK55xrtkaiaNrY8fe8wRVpcPLxy+P225NFw+
-B69FJRA0Lj6Jt9BM4hV/3MSIEWwTVhuw4E02ywDYTzz1wq3ITf0tsbIPn0hXQMxD
-ohhAoKioM6u+yHtqsxD0eYaAWmHTVn5oDvOSGpvCpBfWHyA7FP5UQak0fKABEAgK
-iQYEnb294AXwXymJttfGTIV/Ne4tLN5dIpNma8UO8rlThlcr6xnTQDbR3gkTDRsC
-AwEAATANBgkqhkiG9w0BAQUFAAOCAgEAj7J8fy1LUWoVWnrXDAC9jwJ1nI/YjoSU
-6ywke3o04+nZC5S+dPnuVy+HAwsU940CoNvP6RStI/bH6JL+NIqEFmwM3M8xIEWV
-MYVPkfvQUxxGvDnaY7vv93u+6Q77HV3qlhAQBHChyuXyO7TG3+WzsiT9AnBNtAP0
-4jClt5kCAQXLO/p0SFEZQ8Ru9SM8d1i73Z0VDVzs8jYWlBhiherSgbw1xK4wBOpJ
-43XmjZsBSrDpiAXd07Ak3UL2GjfT7eStgebL3UIe39ThE/s/+l43bh0M6WbOBvyQ
-i/rZ50kd1GvN0xnZhtv07hIJWO85FGWi7Oet8AzdUZJ17v1Md/f2vdhPVTFN9q+w
-mQ6LxjackqCvaJaQfBEbqsn2Tklxk4tZuDioiQbOElT2e6vljQVJWIfNx38Ny2LM
-aiXQPQu+4CI7meAh5gXM5nyJGbZvRPsxj89CqYzyHCYs5HBP3AsviBvn26ziOF+c
-544VmHd9HkIv8UTC29hh+R64RlgMQQQdaXFaUrFPTs/do0k8n/c2bPc0iTdfi5Q2
-gq6Vi8q6Ay5wGgTtRRbn/mWKuCFjEh94z6pF9Xr06NX0PuEOdf+Ls9vI5vz6G0w6
-0Li7devEN7EKBY+7Mcjg918yq9i5tEiMkUgT68788t3fTC+4iUQ5fDtdrHsaOlIR
-8bs/XQVNE/s=
------END CERTIFICATE-----
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/spec/client.key CHANGED

@@ -1,51 +1,51 @@
------BEGIN RSA PRIVATE KEY-----
-MIIJKAIBAAKCAgEAv1FSOIX1z7CQtVBFlrB0A3/V29T+22STKKmiRWYkKL5b+hkr
-p9IZ5J4phZHgUVM2VDPOO2Oc2PU6dlGGZISg+UPERunTogxQKezCV0vcE9cKOwzx
-CFDRvv5rK8aKMscfBLbNKocAXywuRRQmdxPiVRzbyPrl+qCr/EDLXAX3D77lS8n2
-AwDg19VyI+IgFUE+Dy5e1eLoY6nV+Mq+vNXdn3ttF3t+ngac5pj5Q9h+pD5p67ba
-DHSnf/7cy2fa/LKrLolVHQR9G2K6cEfeM99NtcsMbkoPs4iI3FA05OVTQHXgC8C8
-cRxrb9APl95I/ep65OIaCJgcdYxJ3QD3qOtQo6/NQsGnjbyiUxaEpjfqyT1NuzWD
-81Q8uXGNS8yD6dDynt/lseBjyp2nfC3uQ5fY18VdIcu0MJ9pezBUKrNuhlsyXXEZ
-2DXj4sY8QOvIcBqSB/zmS1nGEK55xrtkaiaNrY8fe8wRVpcPLxy+P225NFw+B69F
-JRA0Lj6Jt9BM4hV/3MSIEWwTVhuw4E02ywDYTzz1wq3ITf0tsbIPn0hXQMxDohhA
-oKioM6u+yHtqsxD0eYaAWmHTVn5oDvOSGpvCpBfWHyA7FP5UQak0fKABEAgKiQYE
-nb294AXwXymJttfGTIV/Ne4tLN5dIpNma8UO8rlThlcr6xnTQDbR3gkTDRsCAwEA
-AQKCAgB495RDRQB9x6hX3F+DviI8rDGug+h5FAiwJ0IBG2o1kNdbNVsTC5dvpEmg
-uPHaugCaEP+PMZbU34mNklKlb+7QbPbH18UGqz5so9TlmYOXz9oaKD6nAWL9nqRo
-02pCXQDR3DuxbhbgFnFTIECJ/jqXkl2toGaVp83W+6kZkHP8srkMyLASihWgosc+
-xRWAGvaAZtNz7br+eT5fxuH/SEKPOl1qAZ23kXrXm1XQfizk8MnMTptkUMYv+hfl
-TM98BASUsiTs6g+opy43HFn09naOQcqkWZO/8s6Gbvhi2lVfZqi5Ba6g3lVYJ3gU
-kGoako4N9qB7WqJz+LYjVR9C4TbkkJ9OD6ArwGAx5IIzC3XKSxCyY/pUn4YumPhY
-fjvY/km54TBtx/isS1TAgjSgDUxbzrfbkh7afOXSOniy9bWJMgNqHF61dqxWxmUg
-F5Tch9zH3qFFVkXpYzDU/R8ZV+CRouCvhn0eZYDh8IqIAwjH0VjkxjPyQtrdrMd3
-gDKMVKoY31EOMLZzv8a0prjpr15A+uw30tT336qb3fofks4pZKUJw8ru9jJVir2p
-+RML6iUHCmIeceF7/N1meooSMLPJe0xgKeMb9M4Wtd/et2UNVtP8nCDG622rf2a0
-F/EudXuFgc3FB8nXRw9TCkw9xKQff38edG5xPFUEgqObbVl5YQKCAQEA5DDKGOmp
-EO5Zuf/kZfG6/AMMYwAuv1HrYTV2w/HnI3tyQ34Xkeqo+I/OqmRk68Ztxw4Kx1So
-SRavkotrlWhhDpl2+Yn1BjkHktSoOdf9gJ9z9llkLmbOkBjmupig1NUB7fq/4y2k
-MdqJXDy3uVKHJ97gxdIheMTyHiKuMJPnuT5lZtlT210Ig82P7sLQb/sgCfKVFTr0
-Z3haQ5/tBNKjq+igT4nMBWupOTD1q2GeZLIZACnmnUIhvu+3/bm0l+wiCB0DqF0T
-Wy9tlL3fqQSCqzevL7/k5Lg6tJTaP/XYePB73TsOtAXgIaoltXgRBsBUeE1eaODx
-kMT6E1PPtn7EqQKCAQEA1qImmTWGqhKICrwje40awPufFtZ/qXKVCN/V+zYsrJV1
-EnZpUDM+zfitlQCugnrQVHSpgfekI6mmVkmogO3fkNjUFTq+neg7IHOUHnqotx+3
-NMqIsyFInGstu9mfPd26fzZjUtx5wKF38LDTIJJAEJ83U3UpPBfpwKmiOGDXOa54
-2i4em/bb/hrQR6JySruZYLi0fXnGI5ZOfpkHgC/KOFkKNKAg2oh4B9qo7ACyiSNk
-yojb2mmn6g1OLPxi7wGUSrkS1HQq4an6RZ+eUO0HXVWag0QStdQ91M9IrIHgSBBG
-0e86Ar6jtD579gqsbz4ySpI/FqEI9obTC+E1/b0aIwKCAQAGz334qGCnZLXA22ZR
-tJlEFEM2YTcD9snzqMjWqE2hvXl3kjfZ3wsUABbG9yAb+VwlaMHhmSE8rTSoRwj6
-+JaM/P+UCw4JFYKoWzh6IXwrbpbjb1+SEvdvTY71WsDSGVlpZOZ9PUt9QWyAGD/T
-hCcMhZZn0RG2rQoc5CQWxxNPcBFOtIXQMkKizGvTUHUwImqeYWMZsxzASdNH2WoV
-jsPbyaGfPhmcv83ZKyDp8IvtrXMZkiaT4vlm3Xi8VeKR9jY9z7/gMob1XcEDg3c9
-cCkGOy87WZrXSLhX02mAJzJCycqom66gqNw7pPxjIiY/8VWUEZsTvkL3cymTkhjM
-9ZOhAoIBAGUaNqJe01NTrV+ZJgGyAxM6s8LXQYV5IvjuL2bJKxwUvvP2cT9FFGWD
-qYiRrKJr5ayS07IUC+58oIzu33/0DSa27JgfduD9HrT3nKMK1mSEfRFSAjiXChQc
-bIubRGapBoub/AdxMazqoovvT1R9b84kobQfcVAMV6DYh0CVZWyXYfgsV2DSVOiK
-iufjfoDzg5lLCEI+1XW3/LunrB/W4yPN1X/amf8234ublYyt+2ucD4NUGnP05xLa
-N6P7M0MwdEEKkvMe0YBBSFH5kWK/dIOjqkgBDes20fVnuuz/tL1dZW7IiIP4dzaV
-ZGEOwBEatCfqYetv6b/u3IUxDfS7Wg8CggEBALoOwkn5LGdQg+bpdZAKJspGnJWL
-Kyr9Al2tvgc69rxfpZqS5eDLkYYCzWPpspSt0Axm1O7xOUDQDt42luaLNGJzHZ2Q
-Hn0ZNMhyHpe8d8mIQngRjD+nuLI/uFUglPzabDOCOln2aycjg1mA6ecXP1XMEVbu
-0RB/0IE36XTMfZ+u9+TRjkBLpmUaX1FdIQQWfwUou/LfaXotoQlhSGAcprLrncuJ
-T44UATYEgO/q9pMM33bdE3eBYZHoT9mSvqoLCN4s0LuwOYItIxLKUj0GulL0VQOI
-SZi+0A1c8cVDXgApkBrWPDQIR9JS4de0gW4hnDoUvHtUc2TYPRnz6N9MtFY=
------END RSA PRIVATE KEY-----
+-----BEGIN RSA PRIVATE KEY-----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=
+-----END RSA PRIVATE KEY-----

data/spec/comms_spec.rb CHANGED

@@ -1,147 +1,156 @@
-require 'ruby-tls'
-describe RubyTls do
-    describe RubyTls::State do
-        before :each do
-            @client = RubyTls::State.new
-            @server = RubyTls::State.new
-            @server_started  = false
-            @server_stop = false
-            @client_stop = false
-        end
-        it "should be able to send and receive encrypted comms" do
-            @server_data = []
-            @client_data = []
-            @interleaved = []
-            @client[:close_cb] = proc {
-                @client_data << 'client stopped'
-                @interleaved << 'client stopped'
-                @client_stop = true
-            }
-            @client[:dispatch_cb] = proc { |state, data, len|
-                @client_data << data.read_string(len)
-                @interleaved << data.read_string(len)
-            }
-            @client[:transmit_cb] = proc { |state, data, len|
-                if not @server_started
-                    @server_started = true
-                    RubyTls.start_tls(@server, true, '', '', false)
-                end
-                data = data.get_bytes(0, len)
-                RubyTls.decrypt_data(@server, data, data.length) unless @client_stop
-            }
-            @client[:handshake_cb] = proc { |state|
-                @client_data << 'ready'
-                @interleaved << 'client ready'
-                sending = 'client request'
-                RubyTls.encrypt_data(@client, sending, sending.length) unless @client_stop
-            }
-            @server[:close_cb] = proc {
-                @server_data << 'server stop'
-                @interleaved << 'server stop'
-                @server_stop = true
-            }
-            @server[:dispatch_cb] = proc { |state, data, len|
-                @server_data << data.read_string(len)
-                @interleaved << data.read_string(len)
-                sending = 'server response'
-                RubyTls.encrypt_data(@server, sending, sending.length) unless @server_stop
-            }
-            @server[:transmit_cb] = proc { |state, data, len|
-                data = data.get_bytes(0, len)
-                RubyTls.decrypt_data(@client, data, data.length) unless @server_stop
-            }
-            @server[:handshake_cb] = proc { |state|
-                @server_data << 'ready'
-                @interleaved << 'server ready'
-            }
-            RubyTls.start_tls(@client, false, '', '', false)
-            expect(@client_data).to eq(['ready', 'server response'])
-            expect(@server_data).to eq(['ready', 'client request'])
-            expect(@interleaved).to eq(['server ready', 'client ready', 'client request', 'server response'])
-        end
-    end
-    describe RubyTls::Connection do
-        before :each do
-            @client = RubyTls::Connection.new
-            @server = RubyTls::Connection.new
-            @server_started  = false
-            @server_stop = false
-            @client_stop = false
-        end
-        it "should be able to send and receive encrypted comms" do
-            @server_data = []
-            @client_data = []
-            @interleaved = []
-            @client.close_cb do
-                @client_data << 'client stopped'
-                @interleaved << 'client stopped'
-                @client_stop = true
-            end
-            @client.dispatch_cb do |data|
-                @client_data << data
-                @interleaved << data
-            end
-            @client.transmit_cb do |data|
-                if not @server_started
-                    @server_started = true
-                    @server.start(:server => true)
-                end
-                @server.decrypt(data) unless @client_stop
-            end
-            @client.handshake_cb do
-                @client_data << 'ready'
-                @interleaved << 'client ready'
-                @client.encrypt('client request') unless @client_stop
-            end
-            @server.close_cb do
-                @server_data << 'server stop'
-                @interleaved << 'server stop'
-                @server_stop = true
-            end
-            @server.dispatch_cb do |data|
-                @server_data << data
-                @interleaved << data
-                @server.encrypt('server response') unless @server_stop
-            end
-            @server.transmit_cb do |data|
-                @client.decrypt(data) unless @server_stop
-            end
-            @server.handshake_cb do
-                @server_data << 'ready'
-                @interleaved << 'server ready'
-            end
-            @client.start
-            expect(@client_data).to eq(['ready', 'server response'])
-            expect(@server_data).to eq(['ready', 'client request'])
-            expect(@interleaved).to eq(['server ready', 'client ready', 'client request', 'server response'])
-        end
-    end
-end
+require 'ruby-tls'
+describe RubyTls do
+    describe RubyTls::State do
+        before :each do
+            @client = RubyTls::State.new
+            @server = RubyTls::State.new
+            @server_started  = false
+            @server_stop = false
+            @client_stop = false
+        end
+        it "should be able to send and receive encrypted comms" do
+            @server_data = []
+            @client_data = []
+            @interleaved = []
+            @client[:close_cb] = proc {
+                @client_data << 'client stopped'
+                @interleaved << 'client stopped'
+                @client_stop = true
+            }
+            @client[:dispatch_cb] = proc { |state, data, len|
+                @client_data << data.read_string(len)
+                @interleaved << data.read_string(len)
+            }
+            @client[:transmit_cb] = proc { |state, data, len|
+                if not @server_started
+                    @server_started = true
+                    RubyTls.start_tls(@server, true, '', '', false)
+                end
+                data = data.get_bytes(0, len)
+                RubyTls.decrypt_data(@server, data, data.length) unless @client_stop
+            }
+            @client[:handshake_cb] = proc { |state|
+                @client_data << 'ready'
+                @interleaved << 'client ready'
+                sending = 'client request'
+                RubyTls.encrypt_data(@client, sending, sending.length) unless @client_stop
+            }
+            @server[:close_cb] = proc {
+                @server_data << 'server stop'
+                @interleaved << 'server stop'
+                @server_stop = true
+            }
+            @server[:dispatch_cb] = proc { |state, data, len|
+                @server_data << data.read_string(len)
+                @interleaved << data.read_string(len)
+                sending = 'server response'
+                RubyTls.encrypt_data(@server, sending, sending.length) unless @server_stop
+            }
+            @server[:transmit_cb] = proc { |state, data, len|
+                data = data.get_bytes(0, len)
+                RubyTls.decrypt_data(@client, data, data.length) unless @server_stop
+            }
+            @server[:handshake_cb] = proc { |state|
+                @server_data << 'ready'
+                @interleaved << 'server ready'
+            }
+            RubyTls.start_tls(@client, false, '', '', false)
+            RubyTls.cleanup(@client)
+            RubyTls.cleanup(@server)
+            expect(@client_data).to eq(['ready', 'server response'])
+            expect(@server_data).to eq(['ready', 'client request'])
+            expect(@interleaved).to eq(['server ready', 'client ready', 'client request', 'server response'])
+        end
+    end
+    describe RubyTls::Connection do
+        before :each do
+            @client = RubyTls::Connection.new
+            @server = RubyTls::Connection.new
+            @server_started  = false
+            @server_stop = false
+            @client_stop = false
+        end
+        it "should be able to send and receive encrypted comms" do
+            @server_data = []
+            @client_data = []
+            @interleaved = []
+            @client.close_cb do
+                @client_data << 'client stopped'
+                @interleaved << 'client stopped'
+                @client_stop = true
+            end
+            @client.dispatch_cb do |data|
+                @client_data << data
+                @interleaved << data
+            end
+            @client.transmit_cb do |data|
+                if not @server_started
+                    @server_started = true
+                    @server.start(:server => true)
+                end
+                @server.decrypt(data) unless @client_stop
+            end
+            @client.handshake_cb do
+                @client_data << 'ready'
+                @interleaved << 'client ready'
+                @client.encrypt('client request') unless @client_stop
+            end
+            @server.close_cb do
+                @server_data << 'server stop'
+                @interleaved << 'server stop'
+                @server_stop = true
+            end
+            @server.dispatch_cb do |data|
+                @server_data << data
+                @interleaved << data
+                @server.encrypt('server response') unless @server_stop
+            end
+            @server.transmit_cb do |data|
+                @client.decrypt(data) unless @server_stop
+            end
+            @server.handshake_cb do
+                @server_data << 'ready'
+                @interleaved << 'server ready'
+            end
+            @client.start
+            @client.cleanup
+            @server.cleanup
+            # Calls to encrypt should not cause crashes after cleanup
+            @server.encrypt('server response')
+            @client.encrypt('client request')
+            expect(@client_data).to eq(['ready', 'server response'])
+            expect(@server_data).to eq(['ready', 'client request'])
+            expect(@interleaved).to eq(['server ready', 'client ready', 'client request', 'server response'])
+        end
+    end
+end