tests: verify tgt-freshness-time in Kerberos setup

tests/docker-kerberos/Dockerfile-fedora-client

@@ -26,4 +26,4 @@ ADD dev-tun.tgz /dev/
 
 RUN ldconfig
 
-CMD sshd-keygen;/usr/sbin/sshd;echo testuser123|kinit testuser@KERBEROS.TEST && /usr/sbin/openconnect kerberos.test --cafile /etc/ca.pem -b && sleep 5 && ping -w 5 192.168.1.1 && ping6 -w 5 fd91:6d87:7341:db6a::1 && kdestroy && ( /usr/sbin/openconnect kerberos.test --cafile /etc/ca.pem --cookieonly --non-inter || touch /tmp/ok ) ;sleep 3600
+CMD sshd-keygen;/usr/sbin/sshd;echo testuser123|kinit testuser@KERBEROS.TEST && /usr/sbin/openconnect kerberos.test --cafile /etc/ca.pem -b && sleep 5 && ping -w 5 192.168.1.1 && ping6 -w 5 fd91:6d87:7341:db6a::1 && kdestroy && ( /usr/sbin/openconnect kerberos.test --cafile /etc/ca.pem --cookieonly --non-inter || touch /tmp/ok1 );echo testuser123|kinit testuser@KERBEROS.TEST && sleep 61 && ( /usr/sbin/openconnect kerberos.test --non-inter --cafile /etc/ca.pem || touch /tmp/ok2 );sleep 3600

tests/docker-kerberos/ocserv.conf

@@ -4,7 +4,7 @@
 #auth = "certificate"
 #auth = "plain[/etc/ocserv/passwd]"
 auth = "pam"
-enable-auth = gssapi
+enable-auth = gssapi[tgt-freshness-time=60]
 
 # Whether to enable support for the occtl tool (i.e., either through D-BUS,
 # or via a unix socket).

tests/kerberos-test

@@ -95,18 +95,23 @@ if test ! -z "$QUIT_ON_INIT";then
 fi
 
 echo "Waiting for client tests"
-sleep 20
+sleep 100
 
 mkdir -p tmp-kerb
-rm -f ./tmp-kerb/ok
-$DOCKER cp test_ocserv_client_kerberos:/tmp/ok ./tmp-kerb/
+rm -f ./tmp-kerb/ok1 ./tmp-kerb/ok2
+$DOCKER cp test_ocserv_client_kerberos:/tmp/ok1 ./tmp-kerb/
+$DOCKER cp test_ocserv_client_kerberos:/tmp/ok2 ./tmp-kerb/
 
-if ! test -f ./tmp-kerb/ok;then
-	echo "Kerberos client tests failed"
+ret=0
+
+if ! test -f ./tmp-kerb/ok1;then
+	echo "Kerberos client basic test failed"
+	ret=1
+fi
+
+if ! test -f ./tmp-kerb/ok2;then
+	echo "Kerberos client TGT freshness test failed"
 	ret=1
-else
-	echo "Kerberos client tests completed"
-	ret=0
 fi
 
 $DOCKER stop test_ocserv_kerberos